Log In
Home
02/24/2014
Offline
Hello,
To comply with U.S. critical infrastructure regulations we're required to verify the integrity of all software via file hashes. In the past we've always compared the hash of the installer file to the hash provided on the company/organization's website.
From what I can tell there aren't any hashes for the software provided on the OPC Foundation's website, but I noticed in the release notes that "all binaries are signed with SHA256." I'm not sure how that applies to our verification process, however.
Any suggestions would be greatly appreciated.
05/30/2017
Offline
All binaries and installers are signed with a code signing certificate. This approach is typical for windows only installers/executables.
That said, we have a couple linux binaries that will need the SHA256 hash. Are you using those?
02/24/2014
Offline
My apologies, I should have stated that I'm using the OPC Core Components Redistributables.
Your reply helped me determine that the code signing certificate is perfect for our requirements.
Thanks very much, Randy!
1 Guest(s)
Usage Policy