http://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspxOne feature that will start to show up on the latest CTP of Whidbey is test key signing -- basically delay signing++. Lets do a quick review of what delay signing is , and then see where test key signing takes over. Recall a delay signed assembly is oneen-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#484924Wed, 26 Oct 2005 02:59:50 GMT91d46819-8472-40ad-a661-2c78acb4018c:484924Kevin Westhead&quot;Note that you need to register the test public key only, attempting to register the full keypair will result in the message: 'The public key supplied for test signing is invalid.'&quot; <br> <br>Doesn't this mean that the line <br> <br>D:\src&gt;sn -Vr assembly.dll testKey.snk <br> <br>should actually be <br> <br>D:\src&gt;sn -Vr assembly.dll testPublicKey.snk <br> <br>You also mentioned a couple of problems with managing test keys. Is this feature currently in use on the CLR and BCL teams? If so, how are they managing their test keys?http://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#489276Sat, 05 Nov 2005 02:42:20 GMT91d46819-8472-40ad-a661-2c78acb4018c:489276shawnfaHi Kevin -- you're write, I meant to register the public key, and I've updated it. <br> <br>This feature is not currently used by the CLR and BCL teams (we used delay signing for Whidbey), but we could move towards it in the future. <br> <br>-Shawnhttp://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#530984Mon, 13 Feb 2006 18:57:37 GMT91d46819-8472-40ad-a661-2c78acb4018c:530984Teucer's Quiverhttp://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#1886679Thu, 15 Mar 2007 14:45:48 GMT91d46819-8472-40ad-a661-2c78acb4018c:1886679hevean<p>Hi all,</p> <p>what's the different between 'sn -TS....' and 'sn -Ra'. and what's the different between the re-signed .dll file via 'sn -TS....' and via 'sn -TS....'. </p> <p>Thanks :) </p>http://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#1890240Fri, 16 Mar 2007 01:37:56 GMT91d46819-8472-40ad-a661-2c78acb4018c:1890240shawnfa<p>SN -TS test signs an assembly as I described in this post. &nbsp;That means the assembly will not load unless the machine has registerd the test key pair for that assembly.</p> <p>SN -Ra re-signs an assembly, leaving it with a valid signature. &nbsp;Since the signature is valid, it does not require any special configuration to verify on the user's machine.</p> <p>-Shawn</p> http://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#2633019Mon, 14 May 2007 23:58:46 GMT91d46819-8472-40ad-a661-2c78acb4018c:2633019Steve<p>Am I trying to understand the world of digital signing, so I'm probably missing something ... but if an internal signing authority can resign a delay signed or test signed assembly, what prevents a malicious person from re-signing an assembly that I have deployed? &nbsp;Does this imply that there needs to be some link between the test and official keys? &nbsp;I assume there is some way to re-sign a delay signed assembly with a different public key if the original key is lost or compromised?</p>http://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#2651374Tue, 15 May 2007 18:31:40 GMT91d46819-8472-40ad-a661-2c78acb4018c:2651374shawnfa<p>Hi Steve,</p> <p>The intent is that you never deploy a test signed assembly. &nbsp;Once you are ready to ship your final bits, then you'll apply the real signature. &nbsp;This signature can only be calculated if you have both the private and public key for the assembly.</p> <p>A third party could of course resign your assembly with their own key. &nbsp;This would have the effect of changing the public key of the assembly however, which gives the assembly an entirely different identity.</p> <p>-Shawn</p> <p>(The link between the test key and the public key that you mention is kept in the registry in the skip verification entries by the way.)</p> http://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#2655272Tue, 15 May 2007 22:30:40 GMT91d46819-8472-40ad-a661-2c78acb4018c:2655272Steve<p>Hello again,</p> <p>Thanks for your reply. &nbsp;I have a situation where I inherited a project that was delay signed but I only have the public key - the original key pair is not available. &nbsp;The assemblies have not been deployed, so I am trying to find out what my options are when deployment time comes. &nbsp;I tried generating another key pair and delay signed a test assembly that was previous signed with the original public key with the new public key. &nbsp;When I tried to use this test assembly it would load, saying it had been tampered with. &nbsp;Do you know how I can resolve this issue? &nbsp;Thanks again,</p> <p>Steve</p>http://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#2818117Wed, 23 May 2007 18:52:29 GMT91d46819-8472-40ad-a661-2c78acb4018c:2818117shawnfa<p>If you've lost the private key for the assembly's public key, your only option is to generate a new key pair to sign the assemblies with. &nbsp;This will of course end up changing the identity of the assemblies -- however if we allowed anyone to sign assemblies who did not have the corresponding private key, this would totally invalidate the purpose of the signatures :-)</p> <p>-Shawn </p> http://blogs.msdn.com/shawnfa/archive/2005/10/24/484170.aspx#9634580Fri, 22 May 2009 04:14:55 GMT91d46819-8472-40ad-a661-2c78acb4018c:9634580David DeWinter &raquo; The AllowPartiallyTrustedCallersAttribute (APTCA) &ndash; #6<p>PingBack from <a rel="nofollow" target="_new" href="http://blogs.rev-net.com/ddewinter/2009/05/21/the-allowpartiallytrustedcallersattribute-aptca-6/">http://blogs.rev-net.com/ddewinter/2009/05/21/the-allowpartiallytrustedcallersattribute-aptca-6/</a></p>