> OK, thank you. Is it possible, would you happen to know, for an application > to verify its own signature? I do this on Windows (using WinVerifyTrust) to > check that the code has not been tampered with. Can't trust anybody these > days :) >
It is possible, but the APIs to code-signing are private. That said, they are very easy to work with and the code is open-source (libsecurity_codesigning). Here is an Apple patent that talks about their code-signing library and includes a 6-line sample for doing dynamic validation: http://www.freepatentsonline.com/y2008/0168553.html _______________________________________________ Cocoa-dev mailing list ([email protected]) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to [email protected]
