Posted by Joe Barta on 01/22/06 03:56

Jose wrote:

> When you talk about signing an ActiveX control as "safe", who is
> doing the signing, and what's to prevent the programmer from lying
> - that is, coding an evil program and signing it as "safe". What,
> exactly, does "signing as safe" involve, and mean?


In my reading I stumbled on the following at:
http://www.4guysfromrolla.com/webtech/091698-1.shtml

<quote>
Liscencing Your ActiveX Control:
To liscence your ActiveX control, you must have your control
"digitally signed" by a third party company, such as Verisign. These
companies charge you money to evaluate your software to make sure that
it does not cause implicit harm to the machine it runs on. If your
control has no gapping security holes, and does not compromise the
integrity of the system it runs on, Verisign will assign you a digital
signature, which will be displayed when the user is prompted to
download your ActiveX control.
</quote>

Joe Bara

• Next in forum: Re: Trust (was CSS Button Designer)
• Prev in forum: Re: Trust (was CSS Button Designer)
• Thread view: Re: Trust (was CSS Button Designer)

[Reply to this message]