Windows 10: how to update vista sha-2 signed drivers

Discus and support how to update vista sha-2 signed drivers in Windows 10 Gaming to solve the problem; where can I find the patch to udpate vista with sha-2 signed drivers?... Discussion in 'Windows 10 Gaming' started by fpefpe, Feb 8, 2022.

  1. fpefpe Win User

    how to update vista sha-2 signed drivers


    where can I find the patch to udpate vista with sha-2 signed drivers?

    :)
     
    fpefpe, Feb 8, 2022
    #1
  2. Vlastimil Win User

    SHA-2 Code Signing questions

    First and foremost, this is my very first experience with Code Signing.

    I bought Standard Code Signing from Certum for 3 years.

    It is SHA-2 based:

    They are all normal Windows Executables; for end users, both portable and installers.

    Questions:

    1. Bearing in mind the certificate has been issued 10. 10. 2016, i.e. after 1. 1. 2016, does this somehow influence how the signature will behave? I ask this on behalf of reading about deprecation of SHA-1, e.g.:

    2. Should I also timestamp? What is this good for? Are there any disadvantages of timestamping? I found this, which does not really clear things up:

    3. Supposing I would drop support for XP and Vista, will SHA-2 code signature work properly on Windows 7? I read on DigiCert that SHA-2 Code Signing support on Windows 7 is Partial:

    4. There is a havoc around cross-signing SHA-2 (SHA-256 in particular) and SHA-1. Supposing as I said I will no longer support WinXP and Vista, do I need this?
     
    Vlastimil, Feb 8, 2022
    #2
  3. grawity Win User
    SHA-2 Code Signing questions

    No, it won't.

    Timestamps are a proof by a third party that the signature was in fact made at a specific time, and was not merely the result of you winding back your computer's clock.

    So the primary use of timestamps is to prove that the signature was made before the certificate expired – or, more importantly, before it was revoked.

    For example, if someone's private signing key leaks and they revoke their certificate, this would normally mean all signatures made with it (past and future) become invalid. However, signatures that were timestamped could remain valid because it is known that they were made before the revocation.

    The SHA-1 deprecation in Windows' Authenticode also appears to use timestamping so that old programs signed using SHA-1 would still show as correctly signed, while still disallowing anyone after the cutoff from "back-dating" new signatures.

    Since there are quite a few free & public timestamping authorities, there's no reason not to.

    First note that SHA-1/SHA-2 is involved in several places – it is used separately when the issuing CA signs your certificate, and when you sign the actual executable (and even when the timestamping authority counter-signs your signature). In other words, there is a chain of signatures, and every single of them has its own hash.

    It is also possible that signatures on certificates are validated by different code than signatures on executables, and one could support SHA-2 while the other still doesn't.

    So the actual situation is that Windows XP SP3 fully supports certificates signed using SHA-2, it merely doesn't support executables signed using SHA-2. This is mentioned in KB 968730, also this TechNet post.

    However, in Authenticode it's possible to add multiple signatures to the same executable (aka dual-signing or nested signing), so you can have a SHA-1-based signature for older systems and a SHA-2-based one for newer ones.

    With osslsigncode, you can first make a SHA-1 signature with -h sha1, then run it again with -nest -h sha256 to add a SHA-2 one. The same works with signtool sign /as /fd sha256 /td sha256 (append signature). For example, the nightly PuTTY builds are dual-signed and work on all Windows versions, despite using a SHA-256-signed certificate.

    (I'm not counting XP SP2 and older here, since, well.)
     
    grawity, Feb 8, 2022
    #3
  4. Brink Win User

    how to update vista sha-2 signed drivers

    2019 SHA-2 Code Signing Support requirement for Windows Update

    Source: https://support.microsoft.com/en-us/...ndows-and-wsus
     
    Brink, Feb 8, 2022
    #4
Thema:

how to update vista sha-2 signed drivers

Loading...
  1. how to update vista sha-2 signed drivers - Similar Threads - update vista sha

  2. Issues with WIn 7, Connecting using RDP shows SHA-1 trying to Update to SHA-2

    in Windows 10 Gaming
    Issues with WIn 7, Connecting using RDP shows SHA-1 trying to Update to SHA-2: Hello I have a system that due to software compatibily it is required to run Windows 7.I have WIndow 7 x64 ENT with SP 1 installed and as far as I can see has been fully updated with WIndows updates.I have installed the following update KB4474419 for Windows 7 x64 systems but...
  3. Error 13 is Caused by SHA-2 on Win7,how to solve it?

    in Windows 10 Gaming
    Error 13 is Caused by SHA-2 on Win7,how to solve it?: Installed the SHA-2 for Win7 x86 yesterday,now the system doesn't boot and the system say error 13 https://answers.microsoft.com/en-us/windows/forum/all/error-13-is-caused-by-sha-2-on-win7how-to-solve-it/ffaa886e-9df4-4b0c-9218-2b9b8a44858d
  4. Error 13 is Caused by SHA-2 on Win7,how to solve it?

    in Windows 10 Software and Apps
    Error 13 is Caused by SHA-2 on Win7,how to solve it?: Installed the SHA-2 for Win7 x86 yesterday,now the system doesn't boot and the system say error 13 https://answers.microsoft.com/en-us/windows/forum/all/error-13-is-caused-by-sha-2-on-win7how-to-solve-it/ffaa886e-9df4-4b0c-9218-2b9b8a44858d
  5. how to update vista sha-2 signed drivers

    in Windows 10 Software and Apps
    how to update vista sha-2 signed drivers: where can I find the patch to udpate vista with sha-2 signed drivers? https://answers.microsoft.com/en-us/windows/forum/all/how-to-update-vista-sha-2-signed-drivers/dd3c5ff0-9213-4f9f-8a53-b43d0967e3bb
  6. Win Vista driver update

    in Windows 10 Gaming
    Win Vista driver update: I got a computer from work cause the hard drive was bad so I took it home and put the hard drive from my old win vista computer and now I need to update the drivers but my computer wont connect to the internet through WiFi or wired. The computer says the network adapter has a...
  7. Win Vista driver update

    in Windows 10 Software and Apps
    Win Vista driver update: I got a computer from work cause the hard drive was bad so I took it home and put the hard drive from my old win vista computer and now I need to update the drivers but my computer wont connect to the internet through WiFi or wired. The computer says the network adapter has a...
  8. 2019 SHA-2 Code Signing Support requirement for Windows Update

    in Windows 10 News
    2019 SHA-2 Code Signing Support requirement for Windows Update: 2019 SHA-2 Code Signing Support requirement for Windows and WSUS Applies to: Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 Service Pack 2, Windows 10 version 1607, Windows 10 version 1703, Windows 10 version 1709, Windows 10 version...
  9. 2019 SHA-2 Code Signing Support requirement for Windows Update

    in Windows 10 News
    2019 SHA-2 Code Signing Support requirement for Windows Update: 2019 SHA-2 Code Signing Support requirement for Windows and WSUS Applies to: Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 Service Pack 2, Windows 10 version 1607, Windows 10 version 1703, Windows 10 version 1709, Windows 10 version...
  10. SHA 2 Encryption

    in AntiVirus, Firewalls and System Security
    SHA 2 Encryption: SHA 2 is due in a few months. Anyone hear any rumors. I think we will get the SHA 256bit Thanks 27878