Signing redistributable files RRS feed

  • Question

  • Hi,

    we have developed drivers and a control application for Windows XP, Vista and Win7. We use a coinstaller to do parts of the driver installation and it uses difxapi calls. I've included difxapi.dll in the driver package. I sign all the binary files in our package (app, coinstaller  and driver sys) but not the difxapi.dll since it is signed by Microsoft. Is it correct not to sign the difxapi.dll file? Our customer has asked why we don't sign the difxapi dll. I'm convinced we should not be signing it, but so far I've not found any information about whether these Microsoft supplied redistributables should be signed by us or not.


    Thanks for any info


    Wednesday, August 18, 2010 10:49 PM

All replies

  • Why is it important to sign a redistributable which is already signed by Microsoft ?

    I dont really think that you can code sign an executable more than once.

    Friday, August 20, 2010 5:55 PM
  • Prateek, thanks for your input. I've come to the conclusion that I'll not sign it and the customer will have to live with Microsoft's signature, it is a Microsoft supplied library and it should be signed by Microsoft.




    Friday, August 20, 2010 6:52 PM