New
#1
To #1 I'll clip you what Microsoft has to say about that:
What cracks me up about that statement: They basically say "Even if we digitally sign the file, you can't be sure if it's authentic" Doesn't that statement contradict the sense and purpose of the whole process ???A digital signature is an electronic security mark that can be added to files. It allows you to verify the publisher of a file and helps verify that the file has not changed since it was digitally signed.
If the file doesn't have a valid digital signature, there's no way for you to be sure that the file is actually from the source it claims to be from, or that it has not been tampered with (possibly by a virus) since it was published. It's safer to avoid opening the file unless you know for certain who created it and whether the contents are safe to open.
Even a valid digital signature doesn't verify that the contents of the file are harmless. You must decide if you should trust the contents of the file based on the identity of the publisher and where you are downloading the file from.
As for #2 as a dev you can submit your file to Microsoft to obtain said digital sign
As for #3 because it costs money and it takes time for your files to be processed. Sometimes the cost of the driver or program doesn't cover the licensing fees ...that together with Microsoft's statement, that even a signed file could be bogus might influence decisions not having their material signed in the first place.
I hope that explains your questions
Happy Turkey Day
-DG
Ya thanks a lot buddy. Microsoft is very bad company!