Windows Authenticode Portable Executable Signature Format

Полная версия документа на гугл диске

Для получения наиболее актуальной информации смотри:

http://www.microsoft.com/whdc/winlogo/drvsign/Authenticode_PE.mspx

Applicable Standards

В качестве основы для Authenticode используют следующие отраслевые стандарты:

Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile http://www.ietf.org/rfc/rfc3280.txt

PKCS #7: Cryptographic Message Syntax Standard

http://www.rsa.com/rsalabs/node.asp?id=2129

PKCS #9: Selected Attribute Types
http://www.rsa.com/rsalabs/node.asp?id=2131

Authenticode PE Signature Format References

Следующие ссылки содержат информацию, которая напрямую связана с этой статьей:

Microsoft Portable Executable and Common Object File Format Specification

http://www.microsoft.com/whdc/system/platform/firmware/PECOFF.mspx

Object IDs associated with Microsoft cryptography

http://support.microsoft.com/kb/287547

WinVerifyTrust Function

http://msdn2.microsoft.com/en-us/library/aa388208.aspx

ImageGetDigestStream Function

http://msdn2.microsoft.com/en-us/library/ms680160.aspx

General Code Signing References

Code Signing Best Practices

http://www.microsoft.com/whdc/winlogo/drvsign/best_practices.mspx

Kernel-Mode Code Signing Walkthrough

http://www.microsoft.com/whdc/winlogo/drvsign/kmcs_walkthrough.mspx

Windows SDK Tools to Sign Files and Check Signatures (SignTool, MakeCat, and SetReg) http://msdn2.microsoft.com/en-us/library/aa388151(VS.85).aspx

Windows Driver Kit (WDK) (contains Authenticode signing tools)

http://www.microsoft.com/whdc/devtools/WDK/default.mspx

Microsoft Windows Software Development Kit for Windows Vista and .NET Framework 3.0 Runtime Components http://www.microsoft.com/downloads/details.aspx?FamilyID=4377F86D-C913- 4B5C-B87E-EF72E5B4E065&displaylang=en

Certificate stores
http://technet2.microsoft.com/windowsserver/en/library/1c4d3c02-e996- 450a-bf4f-9a12d245a7eb1033.mspx?mfr=true