This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 7.000000000000001%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Hello!
I'm trying to figure out how to certify/sign a Windows kernel driver, software only (no hardware device involved).
Do I have to test with the HLK to certify/sign a software-only driver or can I go with attestation signing, considering the driver should be installed on Windows Server machines?
According to https://learn.microsoft.com/en-us/windows-hardware/drivers/dashboard/code-signing-reqs :
Since we want to have customers use the driver also on Windows Server 2016 potentially, to my understanding (which may be wrong) from the above, attestation signing will not be an option for us, correct? Any way we can go around HLK testing (again, software-only driver, no hardware involved).
Also, in case we do need to test with HLK, what is the criteria according to which it is decided how many dedicated physical client/target machines we need to test on? is it per major Windows version? minor version? something else?
Thanks and have a great weekend!
