AUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA structure

The AUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA structure contains time stamp policy information that can be used in certificate chain verification of files.

Syntax

typedef struct _AUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA {
  DWORD cbSize;
  DWORD dwRegPolicySettings;
  BOOL  fCommercial;
} AUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA, *PAUTHENTICODE_TS_EXTRA_CERT_CHAIN_POLICY_PARA;

Members

cbSize

The size, in bytes, of this structure.

dwRegPolicySettings

Flag set during installation that can be modified by a user. The SetReg tool found in the Authenticode Tool Pack can be used to select or cancel the selection of each value. Flag values can be combined using a bitwise-OR operation.

Value Meaning
WTPF_TRUSTTEST
Trust any "TEST" certificate.
WTPF_TESTCANBEVALID
Check any "TEST" certificate for validity.
WTPF_IGNOREEXPIRATION
Use expiration date.
WTPF_IGNOREREVOKATION
Do revocation check.
WTPF_OFFLINEOK_IND
If the source is offline, trust any individual certificates.
WTPF_OFFLINEOK_COM
If the source is offline, trust any commercial certificates.
WTPF_OFFLINEOKNBU_IND
If the source is offline, trust any individual certificates. Do not use UI.
WTPF_OFFLINEOKNBU_COM
If the source is offline, trust any commercial certificates. Do not use checking UI.
WTPF_VERIFY_V1_OFF
Turn off verification of v1 certificates.
WTPF_IGNOREREVOCATIONONTS
Ignore time stamp revocation checks.
WTPF_ALLOWONLYPERTRUST
Allow only items in personal trust database.

fCommercial

BOOL flag. If TRUE, a signer has been verified by a certification authority (CA) as meeting certain minimum financial standards.

Requirements

   
Minimum supported client Windows XP [desktop apps only]
Minimum supported server Windows Server 2003 [desktop apps only]
Header wincrypt.h