How to Sign ActiveX Controls

ActiveX controls are small applications that enable you to view graphics, interactive programs and animation on websites. A user must download an Active X control before viewing the content of a site that requires it. Active X controls should be digitally signed to reassure the user that the ActiveX control she is about to download is safe and from the website she wants to view. Signing the ActiveX controls verifies that the contents of the downloaded file have not been tampered with by an outside party.

• 1

  Go to a certificate authority website and obtain a digital certificate. Thawte, Verisign and Instant SSL are all examples of certificate authorities (see Resources).

• 2

  Sign the ActiveX control. ActiveX controls can be digitally signed using "signcode.exe," which is a file-signing tool. An example of what a signed ActiveX control looks like is:

  Signcode -prog myfilename -name displayname -info http://www.mycompany-inc-10.com - spc mycredentials.spc -pvk myprivatekey.pvk

• 3

  Test the signed ActiveX control. Click "Start," then "Run" and type "chktrust filename," where "filename" is the name of the ActiveX control file. Your signed ActiveX control certificate will display with all of your information listed on the certificate.