Watch, Follow, &
Connect with Us

For forums, blogs and more please visit our
Developer Tools Community.


ID: 27898, Magenta Systems Code Signing Trust and Certificate Check

by Angus Robertson Email: Anonymous


SignProg functions are designed for Code Signing, aka Microsoft
Authenticode. Currently just two functions that check if an EXE, DLL or CAB file has a valid code signing certificate, that the certificate is trusted and that the program is not corrupted.
Download Details
FTP  download also available
CDN Login Required to Download. (You will be redirected to the login page if you click on the Download Link)
To download this, you must have registered:
A free membership

For Delphi, Version 7.0  to 17.0 141 downloads
Copyright: No significant restrictions


Size: 5,453,776 bytes
Updated on Wed, 12 Sep 2012 02:59:19 GMT
Originally uploaded on Fri, 13 Aug 2010 09:44:05 GMT
SHA1 Hash: E25919CA74BA027322E9A64732D7531C7B103466
MD5 Hash: AFAEE5B4F881F8B4E3A2573804269FE9

    Explore the files in this upload

Description
SignProg functions are designed for Code Signing, aka Microsoft Authenticode. Currently just two functions that check if an EXE, DLL or CAB file has a valid code signing certificate, that the certificate is trusted and that the program is not corrupted. These functions were written to support an remote program updater tool, to ensure the new program was not corrupted, but may also be used to self test a Delphi application for image corruption.

ProgVerifyTrust - simple function to check code signing certificate exists and is valid and not expired, and the program image is not corrupted. This should work with Windows 2000 and later (which have wintrust.dll).

ProgVerifyCert - similar to ProgVerifyTrust, but also extracts the certificate information, names, dates, etc. But this function needs
capicom.dll COM object to be installed (from which the CAPICOM_TLB type library is reated), which is a free redistributable file, included with this code.

Microsoft claims Capicom is deprecated with Windows 7, but the DLL still works. You need to register the COM object by running 'regsvr32.exe capicom.dll'.

A Windows demonstration application TRUSTCHK.EXE is supplied, with source and compiled program. A directory signed-samples includes several programs to test checking signatures, trustnone.exe is nsigned, trustbad.exe is deliberately corrupted, trustexpired.cab has an expired certificate, trustodd.exe has an untrusted self signed certificate, trustok.exe is valid.

This distribution includes Capicom 2.1.0.2 with numerous example source demos (none Pascal) and a tools directory with various Microsoft executable code signing tools, of which signcode.exe is the one actually used to a sign a program, demonstrated by signtest.bat command file. An old test certificate is included, but developers really need to buy their own Authenticode Code Signing Certificate from Verisign, Thawte or other vendors.

Supports both VCL Win32 and Win64, but there is no 64-bit version of
capicom.dll so some functionality is not available.


For more information, see http://www.magsys.co.uk/delphi/

   Latest Comments  View All Add New

Move mouse over comment to see the full text

Could not retrieve comments. Please try again later.

Server Response from: ETNACDC03