Hello guys:
I just got my Class 3 certificate (it’s named VeriSign Code Signing (Class 3) Digital ID) from VeriSign. But, it’s not .cer as what I imagined. That’s a .pvk and a .spc.
Should I convert them to a .pfx file? If yes, how can I install it to my certificate store? Then, how to sign my driver without a .cer file?
Since WDK just simply says : follow the instructions on the certificate authority’s web site… and VeriSign says : please refer to your signing tools vendor’s specific instructions… It seems that both of them think that it’s another party’s duty to explain the steps to customers. Sigh…
Or, are we wasting money on a wrong certificate?
BTW: When my colleagues tried to buy a Class 3 certificate from VeriSign, they could not find such product on their website. After couple hours searching, they were still not sure if that one named Code Signing Digital ID was the one they wanted. It seems that this business is not well regulated.