Driver Signing
As I said in the opening pages of this chapter, drivers are very powerful and thus very dangerous. They must come from trustworthy sources in an unmodified form.
Driver signing is a way for administrators and users to be assured that the driver they are installing is directly from the vendor it is supposed to be from and has not been tampered with along the way. Driver signing uses cryptographic signing to attach additional information to a driver, including the author and the fact that it has passed Microsoft's WHQL (Windows Hardware Quality Labs) testing. No modification is made to the actual driver binary; rather, information is placed into a catalog (.CAT) file that ships with the driver.
Currently, the only way to have a driver ...
Get Microsoft® Windows® 2000 Security Handbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
