Feature #1591
use hardware token
0%
Description
Hi Patrick,
is it possible the we can use the tool with a hardware token?
You can't get a signing certificate anymore and put into a jks file:
As of June 1, 2023, all Code Signing Certificates must comply with the new CA/B Forum regulations to ensure that the subscriber’s private key is generated, stored, and used in a suitable FIPS-compliant hardware.
Do you have expireince with that?
Files
History
Updated by Patrick Talbot about 1 year ago
Yes, I do have experience with that, I'll try to compile a version compatible with that.
Updated by Patrick Talbot about 1 year ago
- Tracker changed from Defect to Feature
- Status changed from New to Resolved
See v1.4 that I just released.
You will need to create a token config.cfg file (see the content of the zip for an example of the content), refer to the internet on which dll or dylib this should point to, depending on your OS.
You will see a new dialog in the tool to set the path to that file + the alias of your certificate in the token + the token password. You need to fill these information before running the signing itself.
Updated by Patrick Talbot about 1 year ago
Actually, better use v1.4.1 that I just released, which will make it easier to find the alias of the token certificate to use...
Updated by Harjo Kompagnie about 1 month ago
- File Schermafbeelding 2025-03-25 om 11.22.38.png Schermafbeelding 2025-03-25 om 11.22.38.png added
- File Schermafbeelding 2025-03-25 om 11.22.56.png Schermafbeelding 2025-03-25 om 11.22.56.png added
Hi Patrick, for an other project I need to sign jars with the new USB Token.
I want to order this one, (With Token shipping) See attachments
This token will work with the latest version of the signtester?
Just doublechecking, before spending 502,- dollar. ;-)