五个新知识:微软SHA2补丁,亚信专业工具,微软官方文档,使用过期签名
不支持SHA2算法的计算机更新补丁:
https://technet.microsoft.com/zh-CN/library/security/3033929.aspx
亚信专业工具:
https://www.trustasia.com/solutions/signtools.htm
微软官方文档(很多内容):
https://msdn.microsoft.com/en-us/library/windows/hardware/dn653556(v=vs.85).aspx Code-Signing Best Practices
https://msdn.microsoft.com/en-us/library/windows/hardware/dn653569(v=vs.85).aspx Kernel-Mode Code Signing Walkthrough
https://msdn.microsoft.com/en-us/library/windows/hardware/hh967734(v=vs.85).aspx 发布驱动
对驱动签名:
https://msdn.microsoft.com/en-us/library/windows/hardware/ff548702%28v=vs.85%29.aspx
https://msdn.microsoft.com/en-us/library/windows/hardware/ff552275(v=vs.85).aspx
https://msdn.microsoft.com/en-us/library/windows/hardware/ff552289(v=vs.85).aspx
https://msdn.microsoft.com/en-us/library/windows/hardware/ff546234(v=vs.85).aspx
https://msdn.microsoft.com/en-us/library/windows/hardware/dn170454%28v=vs.85%29.aspx
使用过期签名:
http://www.cystc.org/?p=3440
Windows 64位内核驱动签名(Kernel Signing)
https://www.myssl.cn/guide/cs_win64.asp
--------------------------------------------------
Software Publisher Certificate (SPC)
eventvwr.exe 可查看相应的驱动启动时有没有错误(Windows日志-->系统)
certmgr.msc
买startssl,超级好用,无敌好用
net start一下驱动看看,有没有什么提示。。。(注意使用具有UAC的CMD)
sc start
--------------------------------------------------
But as I remember the signing process is the following:
1. Buy a certificate which is purposed only for Windows driver signing. I.e. the certificates to sign applications are not valid for this process.
2. Download a corresponding cross-certificate from https://msdn.microsoft.com/en-us/libra...85%29.aspx
3. Use instructions from Microsoft to sign the driver with both certificates. https://msdn.microsoft.com/en-us/libra...85%29.aspx