I am developing an AIR application. I am exporting the release build as native installer by signing it with a digital certificate that was bought from TC Trust Center. Following flow happens with the setup.exe created.
- This setup.exe is now uploaded to a host to enable users to download the setup file.
- A user downloads this using browser and double clicks on the downloaded setup.exe.
- Windows shows up开发者_运维百科 a security warning pop up and states that the publisher is unknown.
- After clicking continue, the AIR installer shows up the correct publisher name
- And when the program is installed the control panel also shows up the correct publisher name.
I would like to know why is Windows security warning unable to detect the publisher name? And how can this issue be resolved. Kindly help. Thanks in advance :)
Publisher name must not necessarily be taken from the signature. In fact, in Control Panel it's taken from the registry record rather than from the signature, so this is not a proof.
Most likely you needed to include intermediate CA certificates with the signature, and the tool didn't do this automatically.
Open Explorer, and right-click on your setup.exe and invoke Properties dialog. If the signature is present and recognized, Digital Signature tab will appear in the properties. This doesn't mean that the signature is valid, though. You need to go to this Tab and check the certificates used for signing, their status and the certificate chain. The certificate chain must be complete and lead up to recognized root or trusted CA certificate (recognized means that Windows has it in it's trust list).
精彩评论