• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Code Signing Examples
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Code Signing Examples

  • Subject: Re: Code Signing Examples
  • From: Tim Murison <email@hidden>
  • Date: Fri, 20 Feb 2009 12:29:55 -0500
  • Thread-topic: Code Signing Examples
> Can anyone point me to sample code on how to verify an application or
> process is signed?  My application executes a couple other processes and I
> would like to validate their signatures before I blindly execute them.  I've
> found a ton of Apple documentation on the theory but not a lot on practical
> application within my code.  I've also looked at simply running the codesign
> utility and parsing its XML output, but this seems like a weak design.  What
> is codesign gets replaced?

I've recently finished implementing exactly what you are talking about. I
based my work on this patent filed by Apple:

http://www.freepatentsonline.com/y2008/0168553.html

If you take a look, they describe, in 6 lines, how to verify the signature
of a running process.

The functions they use are implemented in libsecurity_codesigning which is
opensource and available from the darwin opensource page and compiled into
the Security.framework. I'm pretty sure the APIs are private and not
necessarily portable to future versions of OS X.



***********************************************************************

This e-mail and its attachments are confidential, legally privileged, may be subject to copyright and sent solely for the attention of the addressee(s).
Any unauthorized use or disclosure is prohibited. Statements and opinions expressed in this e-mail may not represent those of Radialpoint.

Le contenu de ce courriel est confidentiel, privilégié et peut être soumis à des droits d'auteur. Il est envoyé à l'intention exclusive de son ou de ses
destinataires. Il est interdit de l'utiliser ou de le divulguer sans autorisation. Les opinions exprimées dans le présent courriel peuvent diverger de celles de Radialpoint.
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
References: 
 >Code Signing Examples (From: "Tom Fortmann" <email@hidden>)

  • Prev by Date: Code Signing Examples
  • Next by Date: Re: Code Signing Examples
  • Previous by thread: Code Signing Examples
  • Next by thread: Re: Code Signing Examples
  • Index(es):
    • Date
    • Thread