截屏视频帮助

Do signed assemblies/dlls require net connection for validation at startup

创建时间: 17 12 月 2013 • Updated: 06 6 月 2014 | 1 条评论
此问题已解决。 请查看解决方案。

My company provides Windows based software products to clients in the form of DLLs and exes (both managed/.NET and unmanaged).  Some of our clients run our products on machines that have no internet/network connection in isolated environments.  We're wondering if we should sign (i.e., using Symantec Code Signing) our exes/dlls as we've seen posts of long dll load times as validation occurs at startup that requires internet connection?  Is this a concern?

Related questions:

1) Does a signed DLL/EXE attempt to validate its signing/certificate at startup to the point that a network/internet connection is required or optimal?

2) Do things work differently for the above based on whether managed or unmanaged DLLs?

3) Does the Generatepublishevidence property setting influence the above?

Thanks

操作系统:

评论 1 Comment跳转至最新评论

DomSYMC 的图片

Code signing does not require any internet connection in order to check the certificate at time of download or installation of a signed application.

What is happening when a customer is downloading your application let say from a CD for example, the certificate is referencing the already installed roots that are already installed on your customers operating system. So when a customer is connecting without a internet connection they will still be able to trust the certificate and not get a unknown publisher from your signed application.

解决方案