Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Changes in Windows Authenticode Signature Verification [Dec 13, 2013]

22 Jan 2014   #1
NoN

Windows 7 Professional SP1 - x64 [Non-UEFI Boot]
 
 
Changes in Windows Authenticode Signature Verification [Dec 13, 2013]

Does some of you have enable the Authenticode Signature Verification in their Registry settings since this: Microsoft Security Bulletin MS13-098 Vulnerability in Windows Could Allow Remote Code Execution (2893294)

??? ...It has to be done before June 10, 2014 (for those interrested) which i did.

Quote:
Test the Improvement to Authenticode Signature Verification.
Quote:
Microsoft recommends that customers test how this change to Authenticode signature verification behaves in their environment by enabling it prior to June 10, 2014. To enable the Authenticode signature verification improvements, modify the registry to add the EnableCertPaddingCheck value as detailed below.



Microsoft Security Advisory (2915720)
Changes in Windows Authenticode Signature Verification

Quote:
Published: Tuesday, December 10, 2013 | Updated: Friday, December 13, 2013
Version: 1.1
General Information

Executive Summary

Microsoft is announcing the availability of an update for all supported releases of Microsoft Windows to change how signatures are verified for binaries signed with the Windows Authenticode signature format. The change is included with Security Bulletin MS13-098, but will not be enabled until June 10, 2014. Once enabled, the new default behavior for Windows Authenticode signature verification will no longer allow extraneous information in the WIN_CERTIFICATE structure. Note that after June 10, 2014, Windows will no longer recognize non-compliant binaries as signed.
Recommendation. Microsoft recommends that by June 10, 2014, executables authors ensure that all signed binaries comport with this new verification behavior by containing no extraneous information in the WIN_CERTIFICATE structure. Microsoft also recommends that customers appropriately test this change to evaluate how it will behave in their environments. Please see the Suggested Actions section of this advisory for more information.
Source: Microsoft Security Advisory (2915720): Changes in Windows Authenticode Signature Verification


My System SpecsSystem Spec
.

Reply

 Changes in Windows Authenticode Signature Verification [Dec 13, 2013]




Thread Tools





Similar help and support threads
Thread Forum
Office 2013 --OUTLOOK 2013 requires Internet connection to set up
Hi there Unless you have an ACTIVE Internet connection (or other Network Mail Server connection such as Exchange) you will NOT be able to set up OUTLOOK 2013. Outlook 2013 requires (and there is no option unlike in Outlook 2010 to disable it by unchecking a box) a TEST email to be sent and...
Microsoft Office
Verification: Windows 7 Upgrade Retail Disc on new HDD
I have found several posts from 2009 that have mentioned the possibility of installing Windows 7 on a new/empty/formatted HDD with an Upgrade edition. I have not, however, found anything recent on this. I have an unused, full retail version of Windows 7 Ultimate 64 bit Upgrade handy and am going to...
Installation & Setup
Outlook 2013 (Office 2013) Help to De-Uglify
Hi there Whoever designed the base colors for Office 2013 must have been totally STONE DEAF and COLOR BLIND at the same time. I can't believe that comments weren't made before this stuff was allowed out of the door. There's almost no possibilities to customize the backgrounds or colors and...
Microsoft Office
ATM 2013 (Acronis True Image 2013) with USB3 HDD
Hi there Anybody used this yet -- I need to upgrade my imaging program - I now have USB3 slots on the laptop and want to know if Acronis 2013 will backup / restore to a USB3(only) external disk at USB3 speeds. I don't want this to run in USB2 compatibility mode speed. I can use the try before...
Backup and Restore
Windows Live Account Blocked - How Do I Obtain Verification Code?
My Windows Live account has been temporarily blocked. Message says Windows Live will send a verification code to my mobile phone, only this doesn't work in my area of Arkansas. So how do I obtain required verification code and unblock my account? Thanks in advance.........
Browsers & Mail
Need verification on something here
My boss is currently running Windows XP. He has been absolutely refusing to upgrade to 7, because he is afraid of losing his current files. He has stuff stashed all over his drive and has not had a clean install since 2001. I have finally convinced him to get 7 based on this alone... Buy a new hard...
Installation & Setup

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 07:40.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App