How to add publisher in Installshield 2018

by

Maybe check this first: Installshield Custom Dialogue Installer

It seems you can submit files for malware analysis by Microsoft now. Try it out – it seems this yields “trust” – though I am unsure of any costs involved.

UPDATE: Also check this answer: How to avoid the “Windows Defender SmartScreen prevented an unrecognized app from starting warning” – a description of a strategy for getting your application and setup trusted.

Microsoft: SmartScreen FAQ (cross-link for safe-keeping).

  • Trust: SmartScreen is “trust-based” – you gain reputation (or lose it).
  • Grapevine: Usage analysis is based on submitted real-world user data from many sources: IE, Edge, Windows, Anti-Virus, download volume, download logs, download URL past history, web-site reputation, etc...
  • EV-Certificate: Signing with an EV-certificate buys trust outright. Interesting concept.
  • Say What?: Full details and exact mechanism of trust calculation is unknown.

The overall idea is that what is downloaded all the time by many users without major incidents is probably not harmful.

Digital Signing

I am outdated on certificates, but how well signing will work largely depends on the nature of your certificate – whether it points to a valid root certificate already present by default on your users’ target computers (a self-signed certificate will not be present by default for example – obviously I guess) and what type of certificate it is (see below regarding EV certificate).

In your case the Installshield help file probably provides the information you need to use the certificate you mention. Here is the online version of that help: Installshield 2018: Digital Signing & Security. I believe your VeriSign certificate should work, if it is up to date (I presume SHA256 – Installshield 2015 upwards) and that it is a valid code signing certificate (as opposed to some other type of certificate).

Root Certificates: Microsoft Trusted Root Certificate Program – Portal (2018)

SmartScreen

Beyond signing, we are now (Windows 8 onwards) dealing with “smart screening” (see sample blocking dialog from Windows Defender). A reputation-based system (see the accepted answer in the linked question as well) with setup / application telemetry data determining if your setup is considered safe – in other words a simple, old-school certificate just isn’t enough anymore to gain trust. So they tell me :-).

You can apparently use an EV code-signing certificate to “buy trust” (interesting concept – one would have to say) – it is essentially a more expensive certificate with USB hardware token security and a more rigorous vetting process for the buyer (and there are further details): “Programs signed by an EV Code Signing certificate can immediately establish reputation with SmartScreen reputation services even if no prior reputation exists for that file or publisher.

To point out the obvious, the below links are not meant as endorsements:

Disclaimer: I am on shaky ground with these issues due to lack of experience, but the provided answer is “best effort” to help get you going. Please do report any important discoveries with comments to the answer or just edit the answer in-situ for the rest of the community (or add your own answer obviously).

Linking Monster: And now, the link-fest. Apologies :-).

Some Further SmartScreen Links For Safekeeping:

Some Further Certificate Links For Safekeeping:

More Related Contents:

  1. Windows Installer “Error 1308. Source file not found” when uninstalling patch in sequence scenario
  2. How to add new framework version in Installment Requirement page of InstallShield?
  3. Windows 10 not detecting on installshield
  4. Enable installation logs for MSI installer without any command line arguments
  5. What installation product to use? InstallShield, WiX, Wise, Advanced Installer, etc [closed]
  6. Extract MSI from EXE
  7. What is the purpose of administrative installation initiated using msiexec /a?
  8. How do I avoid common design flaws in my WiX / MSI deployment solution?
  9. How can I determine what causes repeated Windows Installer self-repair?
  10. Website is not getting created in IIS – limited edition of InstallShield
  11. Why does MSI require the original .msi file to proceed with an uninstall?
  12. How do I avoid triggering MSI self-repair with my WiX / MSI package?
  13. How does one auto update a windows application the way Google Chrome does? [closed]
  14. Installshield Custom Dialogue Installer
  15. Inno Setup – Signing fails with “Sign Tool failed with exit code 0x1”
  16. Installing Multiple Instances by different msi having same Package Code
  17. Create MSI from extracted setup files
  18. What is the best practice to auto upgrade MSI based application?
  19. windows Installer – uninstalling previous version when the versions differ in installation policy (per-user, per-machine)
  20. What is the best tool kit to transform .msi into .exe?
  21. Use cx-freeze to create an msi that adds a shortcut to the desktop
  22. External handler for msiexec MsiSetExternalUI
  23. How to execute custom action only in install (not uninstall)
  24. Unselected Feature Being Installed
  25. How do I avoid distributing sensitive information in my MSI by accident?
  26. MSI Build uninstall- Installed directory not removing
  27. VersionNT MSI property on Windows 10
  28. How to prevent “This program might not have installed correctly” messages on Vista
  29. How to replace a file in a msi installer?
  30. Simplest solution to replace a tiny file inside an MSI?

Leave a Comment