Comments on: Affordable code-signing certificates, no chance!

By: carlos

carlos — Tue, 09 Sep 2008 20:04:42 +0000

yes it’s signed by CACE TECHNOLOGIES.

By: Fowl

Fowl — Mon, 08 Sep 2008 08:43:12 +0000

I don’t believe that they (daemon tools) are doing anything “suspect”, a virtual DVD drive is very useful.

Unfortunately I just discovered that their actual kernel-mode code is provided by Duplex Secure Ltd. which I assume has a real cert – although this box is “compromised” as it were (has daemon tools installed) so I can’t be certain.

By: Oliver

Oliver — Mon, 08 Sep 2008 08:38:56 +0000

Phew, that’s kind of ugly, don’t you think? But yes, it’s likely they do not get through WHQL at the very least, they are using quite some tricks in their driver

By: Fowl

Fowl — Mon, 08 Sep 2008 08:11:56 +0000

I think daemon tools installs their root CA when you install it for the first time.

By: Oliver

Oliver — Mon, 08 Sep 2008 08:06:24 +0000

Carlos: have you checked whether the driver is signed? I know it loads, but from experience as driver developer I know that Vista x64 does not allow unsigned code, at most test-signed but in this case you have to install the respective CA certificate.

By: carlos

carlos — Mon, 08 Sep 2008 04:49:34 +0000

Well WinPcap install fine in vista x64

By: Fowl

Fowl — Sun, 07 Sep 2008 11:32:32 +0000

What Rick Brewster for Paint.Net did was create a LLC. He describes this on his blog: http://blog.getpaint.net/2007/08/08/paintnet-begets-dotpdn-llc/

Although he seemed to be able get a certificate as “Rick Brewster” before hand so perhaps you might want to contact him to find out how.