Menu
I'm quite new to digital signatures and I'm trying to make my .NET application appear as secure when people run it on different computers. I have generated myself a Let's Encrypt certificate and it works as expected on my web page. Following various resources I converted the certificate to PFX and tried to use it for digital signing, but then VS yells that "The selected certificate file is not valid for code signing". When I ran SignTool on my EXE file, I got an error "No certificates were found that met all the given criteria" and debugging showed that my cert didn't pass the EKU filter.
Is what I'm trying to achieve even possible? And if so, what am I doing wrong?
493
So no, you cannot use an SSL Certificate to sign scripts and executables and you cannot secure your website's connections with a Code Signing certificate.
To enable HTTPS on your website, you need to get a certificate (a type of file) from a Certificate Authority (CA). Let's Encrypt is a CA. In order to get a certificate for your website's domain from Let's Encrypt, you have to demonstrate control over the domain.
LetsEncrypt is only for "certificates only for TLS server authentication, and not for any other purpose". They do not support code signing certificates. https://community.letsencrypt.org/t/code-signing-certificates/815 and https://community.letsencrypt.org/t/do-you-support-code-signing/370
114
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
