Hi everyone:
I’m a freelance developer. Most of my work-for-hire is not signed by me. (The final signing is done by the client using their own corporate digital certificates.)
I myself though have developed several free tools that I let people download off my web site. There’s no charge for that software, there’s no adware in it, no data mining, and no other strings attached. It’s just something that I’ve developed over the years that I want to share with the world. (In other words, I’m not getting any money for doing that.)
I sign those tools with my regular (non-EV) digital certificate that I purchased from Comodo. I chose that CA because of their reasonable pricing. As I said above, I don’t get any income from that free software. (I obviously have to “eat up” the cost of the regular cert, but luckily that wasn’t much and I could afford it.)
So recently it came up to my attention that Windows 10 no longer accepts cross-signed kernel drivers and a publisher needs to obtain an EV cert to pass their certification to have Microsoft sign it themselves. Here’s the video with info:
https://channel9.msdn.com/Events/Windows/Filter-Plugfest28/Driver-Certification-on-Windows-Client-and-Server
OK. I can probably pass the certification and such, but…
I tried to apply for an EV cert at DigiCert and later at Comodo and both CAs told me that they will not issue a certificate for an individual developer and that the minimum I need to have is a business record (i.e. start a business and have a DBA record) in my state.
So my question to freelancers, hobbyist and other developers – how do you get out of this catch-22? How do you get an EV cert if you don’t have a business registered under your name? Can you share the process?
PS. Besides that, I am not mentioning the cost of an EV cert, that is at least $300+ (provided that you can pay $1,000 up front for 3 years.)
This will kill my free software!