Hello OSR Community,
I'm looking for some clarity on the codesigning requirements for an FSFilter HSM minfilter driver.
I was previously using an OV codesigning certificate (expiring soon), with a cross-certificate, to sign the minifilter sys and cat files. This allowed the minifilter to be installed on Windows 10 client machines without any issues. I believe the cross-certificate is what allowed it to be successfully installed on Windows 10 without needing an EV codesigning certificate or attestation signing. I know these cross-certificates are being deprecated and most are set to expire in about a year, which means it is not a viable option for the future.
It appears that there will no longer be a way forward signing with an OV certificate and that it is absolutely required to:
Is this correct?
I really appreciate any assistance you folks can provide.
It looks like you're new here. If you want to get involved, click one of these buttons!
|Upcoming OSR Seminars|
|OSR has suspended in-person seminars due to the Covid-19 outbreak. But, don't miss your training! Attend via the internet instead!||Kernel Debugging||30 Mar 2020||OSR Seminar Space|
|Developing Minifilters||20 Apr 2020||LIVE ONLINE|
|Writing WDF Drivers||11 May 2020||LIVE ONLINE|
|Internals & Software Drivers||28 Sept 2020||Dulles, VA|