A program can be digitally signed to verify the developer or publisher of the program. Digital signatures provide a means to authenticate that software actually came from the claimed author and has not been modified since the author published the software. However, they don't guarantee that the software is safe to use, since even adware/spyware may be signed digitally.
On a Microsoft Windows system, information on the digital signature
can be viewed with the PowerShell cmdlet Get-AuthenticodeSignature,
which is included with Microsoft Windows 7 and later; PowerShell is also
available from Microsoft for earlier versions of their operating system.
The Sysinternals tool, Sigcheck from Microsoft may also be used
to check the digital signature on a file.
[ More Info ]
