Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

What's the main difference between signcode.exe and signtool.exe?

Tags:

code-signing

I can't really see a big difference other than signtool is newer and requires different file formats for your digital certificate?

like image 570
Stephane Grenier Avatar asked Apr 21 '09 01:04

Stephane Grenier


2 Answers

They both accomplish the same thing -- code signing. As you pointed out, the principal difference is that signcode requires the private key and software publisher certificate to be in two separate files (.pvk, .spc).

The more modern signtool requires that they are contained in a single Personal Information Exchange (.pfx) file. (You also need the .pfx file format to use the Association of Shareware Professionals' PAD signing toolkit.)

like image 60
John Feminella Avatar answered Oct 21 '22 07:10

John Feminella


In addition to John Feminella's answer above, signtool allows you to alternatively provide the thumbprint hash of the certificate instead of the .pfx file if the cert is loaded into the local (user or machine) certificate store.

like image 37
Michael Ferreira Avatar answered Oct 21 '22 07:10

Michael Ferreira