Share via

Hardware Program Verification using Azure's Trusted Signing (instead of EV Code Signing Certificate)

Justas Urbonas 5 Reputation points
2026-04-21T21:50:26.9433333+00:00

Hi,

Is it possible to possible to upload and submit drivers for Microsoft's Hardware Program attestation and getting approved for the program using Azure Trusted Signing, since it requires the same KYC-level verification?

Or do I have to purchase a $300/year EV Code Signing certificate just for the sake of the approval?

Thank you!

Justas

Windows development | Windows Driver Kit (WDK)
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Taki Ly (WICLOUD CORPORATION) 1,500 Reputation points Microsoft External Staff Moderator
    2026-04-22T07:08:15.41+00:00

    Hello @Justas Urbonas ,

    Unfortunately, the short answer is no. You cannot use Azure's Trusted Signing for the Microsoft Hardware Program attestation. You will still need to purchase an EV Code Signing certificate because:

    1. Hardware Program Strict Requirements: The Microsoft Hardware Dev Center explicitly requires an Extended Validation (EV) code signing certificate to register your company and to submit drivers (.cab or .hlkx files) for attestation. They do not accept standard code signing certificates.
    2. Azure Trusted Signing Limitations: While Azure Trusted Signing provides robust identity verification, the Azure Trusted Signing FAQ clearly states that it currently does not support EV certificates, nor does it support signing Windows drivers.

    So yes, to get approved for the program and sign your kernel-mode drivers, purchasing an EV Code Signing certificate is currently the only supported path.

    I hope this clarifies the situation. If you found my response helpful, I would greatly appreciate it if you could provide feedback by following this guide.

    Thank you.

    Was this answer helpful?

  2. AI answer

    2026-04-21T21:50:47.58+00:00

    Azure Trusted Signing cannot currently be used instead of an EV code signing certificate for registration and driver submission in the Windows Hardware Developer/Hardware Dev Center program.

    For the Hardware Developer Program and for submitting drivers (including attestation signing) through the hardware dashboard/Dev Portal, an extended validation (EV) code signing certificate is explicitly required:

    • To register for the Hardware Developer Program, an EV code signing certificate is required; it must be uploaded on the Manage certificates page for the registration request to be considered for approval.
    • To establish a Hardware Dev Center/Partner Center hardware dashboard account (needed for driver signing via the Dev Portal), an EV code signing certificate is required.
    • For attestation signing of drivers, the prerequisites explicitly state that an EV code signing certificate is required; if the organization does not have one, it must purchase an EV certificate from a supported certificate authority.

    Trusted Signing is not mentioned as an accepted alternative in the Hardware Developer Program registration or driver signing requirements. The documented path for getting approved and submitting drivers is to obtain and use an EV code signing certificate from a supported CA and associate it with the Partner Center hardware account.

    References:

    AI-generated content may be incorrect. Read our transparency notes for more information.

    Was this answer helpful?

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.