Hello
I got a question regarding the signing of x64 boot drivers and their loading on post-Vista x64 systems:
When we install our boot drivers, user can select to trust the publisher (“always trust”) and ?install?, then our vendor certificate will *automatically* be imported into system and stay there forever, our boot drivers will work correctly; The user might also not select to “always trust” our vendor certificate, but install our drivers all the same.
I want to understand :
If the user installs but does not “always trust”, then the drivers install correctly while in the installation process (we have our own application to install our drivers), but then, on boot, they won’t load?
This seems weird to me.
The system is able to know that the drivers are boot drivers (it’s in the inf file) and then that if the user don’t select to “always trust”, the driver will never load!
I’d like to make sure that I understood correctly
Thanks in advance