AuthentiCode

Authenticode is a Microsoft technology for digitally signing software to verify its origin and integrity on Windows. It uses standard X.509 public-key cryptography and PKCS #7 (CMS) signatures. A code signing certificate, issued by a trusted certificate authority, signs the executable or installer, producing a PKCS#7 signature that is embedded in the PE file’s signature block. The signature can include the certificate chain up to a trusted root and an optional RFC 3161 timestamp.

Verification of an Authenticode signature is supported by Windows tools such as SignTool and the WinVerifyTrust

Authenticode signatures are commonly used on Windows executables, dynamic-link libraries, drivers, installers, and other packaged software

Security and limitations: while a valid Authenticode signature provides assurance about origin and integrity, it does