Downloading and running a piece of code from the Internet is a fundamentally dangerous act.
Microsoft attempted to ameliorate the problem through a standard called authenticode. This is a technology for signing files with a non-forgeable digital signature. Signing a file this way ensures that any alteration to the file is detectable, and the signer of the file can be positively identified.
To digitally sign a control, you will need to obtain a certificate from a certificate authority, which can be located by using the term “certificate authority” in a Web-based search engine. Follow the directions for signing controls from the certificate authority you decide to use.
If you do not sign and timestamp your executables and .cab files, Internet Explorer may display a warning message (which gets more threatening with each major rev of IE) to let the user know they are taking a risk if they continue with the installation. This is normally suppressed when the source is in the ‘Trusted Sites’ zone.
We provide the cab file and ocx file with the digital signature in the full verion. We allow the licensed users to sign the EDraw Office Viewer Component with your own digital signature too.
One Response to “Signing EDraw Office Viewer ActiveX control”
Leave a Reply
You must be logged in to post a comment.
August 15th, 2007 at 12:03 am
Simple method to sign the CAB or ActiveX Control:
Firstly you should have the CabArc.Exe, cert2spc.exe, MAKECERT.EXE and SignCode.Exe. If you haven’t the four tools, you can download it from the http://www.ocxt.com/download/signtools.zip
Then you can craete a .bat file as follow to complete the sign process automationally.
;package\signcode officeviewer.ocx -spc package\Certificate\mycert.spc -v package\Certificate\mykey.pvk -a sha1 -t http://timestamp.wotrust.com/timestamp -i http://www.edrawsoft.com -n “EDraw Office Viewer Component”
;pause
package\cabarc.exe -s 6144 N officeviewer.cab officeviewer.inf officeviewer.ocx
pause
;package\signcode officeviewer.cab -spc package\Certificate\mycert.spc -v package\Certificate\mykey.pvk -a sha1 -t http://timestamp.wotrust.com/timestamp -i http://www.edrawsoft.com -n “EDraw Office Viewer Component”
;pause