uthenticode icon indicating copy to clipboard operation
uthenticode copied to clipboard
verified publisher icon trailofbits

Verify the timestamp signature

Open woodruffw opened this issue 6 years ago • 0 comments

In addition to the signature and certificate chain, we should also verify the timestamp signature embedded in each Authenticode SignedData.

Documentation for these is a little inconsistent, but they seem to be mostly standard PKCS#9 countersignatures:

  • https://docs.microsoft.com/en-us/windows/win32/seccrypto/time-stamping-authenticode-signatures?redirectedfrom=MSDN

osslsigncode's codebase will probably be helpful here.

woodruffw avatar Apr 24 '20 19:04 woodruffw