Signing Custom Package Files

Digital signatures identify the source of programs and guarantee that the code has not changed since it was signed. Depending on which operating systems users are running and how security levels are set, users might be prevented from or warned against downloading programs that are not digitally signed. If you are running a 32-bit version of Internet Explorer, you should digitally sign the cabinet (.cab) files created by the Internet Explorer Customization wizard, unless you specify in the wizard that the local intranet zone is to have a low security setting. You should also digitally sign any custom components you distribute with Internet Explorer for those Windows versions.

Note If you are running Internet Explorer on the Windows 16-bit or UNIX operating systems, you do not need to sign your programs or .cab files. These systems do not support Authenticode technology.

To digitally sign .cab files or custom programs, you need to carry out the following steps:

1. Obtain a digital certificate from a Certification Authority (CA), such as VeriSign or GTE.

2. Sign the code.

For more information about signing your files, see Chapter 12 , "Preparing for the IEAK."

.