I am using Innosetup to create an installer and I want to sign my application so the unverified publisher message does not pop up. The software is to be installed on an embedded machine running windows 7 that is not connected to the internet. The user will download the executable from something like dropbox into a USB and take it to the embedded computer. How can I get it to not show the unverified publisher message?
My requirements are to not use a Certificate Authority such as Verisign, Symantec, Comodo etc.. and the embedded machine has no internet connection.
** It might me okay if the message shows up the very first time... but any subsequent install it should not appears.
I read up a lot of information on signing but I am confused on how to do this without internet connectivity and without CA.
Here is what I gathered:
The official way to get rid of the warning is to get ourselves verified through a CA (Certificate Authority) such as Verisign, Comodo, Symantec ... This costs money $$ and the process is extensive. We would have to provide information about the company, licenses, financial documents, .... Then the process takes 2 weeks. After that we sign our software using a private key and when the user downloads our software, I think the user has to be online the very first time. Certificates have timelimits for how long they are valid and it just sounds like a painful thing to do.