All geek questions in one place

Why Windows Smart Screen unexpectedly “protects” a computer after acquiring a new certificate

So, I had a certificate from Comodo and I bought through KSoftware, which I use to sign my software, so it does not generate a warning when users download it, it works fine, but the 2-year certificate expired last month. I acquired a new certificate last week and applied it to a new version of my application, but now when I download it, it warns me of an unknown publisher, and when I click on additional information, it shows my full address instead of my JThink company name .

I looked through my old and new certificate in the browser and noticed that I have Jthink ltd in the old certificate and JThink in the new, would it cause?

Update

Smart screen problem

Comodo will report that there is a time before Microsoft starts accepting new certificates, and this will still be a problem, even if the company information is identical, because the certificate is no different.

This is true, and what length of scale are we talking about here?

+6
source share
2 answers

You just need to wait a while. Windows collects different data for your new certificate (total number of downloads, etc.), and in the near future (depending on download speed) it will mark it as white (if everything is OK). And all your downloads signed using this new certificate will no longer be blocked.

The same mechanism applies (as I think) when booting without certificates at all. Windows builds a reputation for the file, and after some critical number of “good” downloads, it marks the file as OK. The same logic applies to certificates. Thus, you no longer have to wait if your certificate has a "good reputation".

+1
source

You need to use a signature certificate with an extended validation code that provides a more reliable security certificate for your Windows binary. Regular code signing certificates are not verified using Windows smart screen protection.

I had a similar issue when Windows 10 was released with Windows screen protector with more advanced security features.

https://www.digicert.com/code-signing/ev-code-signing.htm

0
source

Source: https://habr.com/ru/post/1015028/

More articles:


All Articles