0

I am pretty new to Code Signing and I'm here to ask for your help to find the best solution to my problem.

My problem: A client asked me to add a digitally signature to the .exe file and the .dll file I sent to him. At the moment I don't have any, since nobody asked me such a thing until now.

First question: In your opinion, may I ask him to buy the certificate himself? After all, I think he would prefer the name of his society to appear on the Certificate rather than my name.

Second question: If he buys the certificate needed how can I access the file on my PC and how can I have the password of the certificate? I read the procedure described here InnoSetup - Code Signing Certificate about how to sign an .exe file through Inno Setup and it tells that the file and the password are needed. Should he send me the file and give me his password?

Third questions: What other options I have? Should I buy the certificate myself? Since it's the first time after 3 years that someone asks me such a thing, I would prefer not to buy a certificate valid for a year.

Fourth question: Is there any option to buy a one-time certificate? That is valid for just an application and that doesn't expire after a year?

Thank you very much for your help!

Paslet87
  • 35
  • 4
  • Careful with your first question, which has the wording of "in your opinion..." One of the valid reasons to close a question on Stack Overflow is that the question calls for opinion. Stick to the objectively answerable parts of your question. Like the linked question, which asks "How can I go about signing my installation file?" Which is a great question. In short though, if you are the vendor, you should have a signing certificate. Also, asking for options to buy certificates is not a coding question, and calls for third party resources (another valid close reason.) Trim this question. – Wyck May 26 '22 at 13:09

0 Answers0