Re-signing a logo-certified device driver

Discussion in 'Windows Vista Drivers' started by Jojo, Jun 21, 2007.

  1. Jojo

    Jojo Guest

    We have a device driver that already carries the Windows Vista certification
    logo. Now we need to change the digital signature of the driver’s SYS file.
    If we sign this file using another digital certificate will it affect its
    certification? Do we need to re-submit this driver for certification again?
    Jojo, Jun 21, 2007
  2. Jojo

    Ray Trent Guest

    In short, yes. Any change to any file mentioned in the INF (or the INF)
    will require re-WHQLing. Since the signature of a binary is embedded in
    the binary, that's included in that.

    You'd have to ask the WHQL folks, but I bet that it could go in under
    the rules for drivers that just changed their marketing name or
    localization, so you might not need to re-*test*...

    However, one might ask *why* you need to change the signature of the
    Ray Trent, Jun 21, 2007
  3. Jojo

    Jojo Guest

    Hi Ray,

    Thanks for your reply.

    :) Actually, I already expect people to ask, why the need to change the
    signature. The reason is purely client requirement. We signed the driver
    using our digital certificate before we sent it to WHQL for certification,
    now our client does not want our name being displayed anywhere on the file.
    Jojo, Jun 22, 2007
  4. Well, Ray's advice isn't quite accurate. Ray is right that normally if you
    change a binary it will change the hash and invalid the catalog file. BUT,
    you can add a signature to a binary without changing it's hash.

    So, if you submit a driver package to WHQL and WHQL signs the catalog file,
    you can subsequently sign or re-sign the driver binaries without invalidating
    the WHQL-signed catalog file.
    Jennifer Stepler [MSFT], Aug 3, 2007
