"签名已损坏或无效"从IE浏览器下载 [英] "signature is corrupt or invalid" downloading from IE
问题描述
我得到了一个Certum证书来签名我的C#应用程序。一切似乎是确定,我可以执行应用程序,也看到它的有效证书。
I got a Certum certificate to sign my C# application. Everything seems to be ok and I can execute the application and also see the valid certificate on it.
但是,如果我把它上传到我的网页上(与Visual Studio或发布同时上传EXE)我无法使用Internet Explorer上的Windows7下载。我总是得到这样的信息:签名已损坏或无效。但一旦它是在PC上,似乎是有效的。我知道,是在IE中的错误在2013年,但它应该得到解决。
But, if I upload it to my webpage (publishing with Visual Studio or also uploading the EXE) I can't download it with Internet Explorer on Windows7. I get always this message: "Signature is corrupt or invalid". But once it is on the PC it seems to be valid. I know, there was a bug on IE in the year 2013 but it should be solved.
在Windows 10,也的SmartScreen阻止此exe文件,我不能下载。我付这个证书来证明我的应用程序是安全的,现在我得到了比以前的问题:(
On Windows 10, Smartscreen also blocks this exe and I can't download it. I paid this certificate to show that my app is secure and now I got more problems than before :(
的我不知道我是否可以插入链接在这里我的应用程序的
修改:我发现从微软这个文件:
的 HTTP://social.technet .microsoft.com /维基/内容/文章/ 32288.windows-执法的-验证码代码签名和-timestamping.aspx
- 看起来,微软的IE(也是谷歌Chrome浏览器)不允许再下载SHA-1签名的应用程序从1月1,因为它不够安全。
Edit: I found this document from Microsoft: http://social.technet.microsoft.com/wiki/contents/articles/32288.windows-enforcement-of-authenticode-code-signing-and-timestamping.aspx - Seems that Microsoft with IE (but also Google with Chrome) doesn't allow to download SHA-1 signed applications anymore since 1. january because it is not secure enough.
推荐答案
确定,现在我可以说:有没有解决办法
OK, now I can say: THERE IS NO SOLUTION!
至少暂时不考虑(一月2016)
At least not for the moment (January 2016).
- 所有新证书必须在Windows7的/ 8和Windows 10
- 的 Certum <击>没有SHA -2的OpenSource选项证书二月以来也Certum的OpenSource证书具有SHA-2散列可能性!
A SHA-2散列
- All new certificates must have a SHA-2 hash on Windows7/8 and Windows 10
- Certum
doesn't have SHA-2 certificates for the OpenSource optionSince february also the OpenSource certificate from Certum has SHA-2 hash possibility!
<罢工>所以,如果你想创建一个WindowsXP的应用程序,你可以从Certum使用开源的标志。如果你想签上你的新OS应用程序,如果你买了Certum开放源代码证书!
这篇关于"签名已损坏或无效"从IE浏览器下载的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
