Creates digital, self-signed test certificates for use in abylonsoft software programs and more (Product group: Freeware)
Digital certificates consist of a key pair and are used in many areas. Certificates can support different uses, such as unique identification by signature or encryption of different data. Certificate-based encryption is used, for example, for the secure transmission of Internet pages using SSL or email encryption. The software products of
abylonsoft also support the encryption of data with certificates as secret keys.
Certificates are normally issued by certificate service providers. These check the correctness of the given data and receive for it a corresponding exhibition fee. For many applications, however, this is not necessary. For these purposes the free software abylon SELFCERT enables the generation of self-signed test certificates (X.509 v3).
For this freeware abylonsoft does not assume any warranty and guarantee. The certificates can be used in the private and business environment for test purposes.
Price (commercial version): 50,00 €
Single version, incl. VAT.
Private use unrestricted free of charge!
Digital certificates are widespread in today's society and play a very important role. They guarantee authenticity, integrity and authenticity and enable secure encryption.
The numerous application examples for digital certificates are summarized in our tutorials.
NOTE: The self-signed certificates created with abylon SELFCERT are not qualified according to the German Signature Act (SigG §2 Nr. 7) and cannot legally replace a handwritten signature. In the private or locally limited business environment, however, they offer good services. The software abylon SELFCERT is offered free of charge as Freeware without guarantee.
The certificate created with the software abylon SELFCERT from public and private key is available as
PFX file. This can be used with a certificate chip card or Token. Usually, however, it is simply installed in the Windows-certificate-database.
Full antivirus Test: Download3K Clean Award
Giga-Redaktions-Bewertung: 4 von 5 Sternen
Software Informer: 100% Clean Award
totul este bine
If you only use a self signed certificate to validate the contents of your distributed executables then it provides zero assurances to your customers that the digital signature is valid and created by you unless they install a validated copy of your self signed signature in their security stores to validate the executables against which is a massive security no-no. I could use your selfcert to create a fresh signature with all your data in the fields, edit your binaries and sign it with the spoofed self signed certificate and only YOU could prove it was not signed by you, everyone else would just get the same error as we get on your self signed certificate. Now if you signed it with a properly created and validated certificate your customers could validate the signature as OK with no errors and it would be MUCH harder for me to spoof your validated countersigned certificate. Self signed certificates are a cludge for developers in house private testing NOT for use in public unless one is willing to downgrade security digital certificates provide as a whole! Whether it is for SSL/TLS or executable signing, requiring end users to routinely accept certificates that do not sit within the established Certifying Authorities chain is a bad thing to ask. In certain very limited circumstances it is understandable with imbedded https servers on internet of things just to obfuscate the traffic but to teach end users to accept self signed certificates as if they were as good as those that are from a valid certifying authority is just bad actor behaviour in my opinion.
In the case of the abylon SELFCERT software, we explicitly point out that these are self-signed certificates. There are already application scenarios where a self-signed certificate is completely sufficient. However, this is up to each individual. Of course, only those who are familiar with the matter should use them.
When it comes to the signature of the software we offer, your statement is correct to a certain extent. Those who find self-signed software too insecure should keep their hands off it. In addition, everyone should think about where he downloads a software. NOBODY should obtain software from a source they do not know.
In our eyes, even software signed with an official certificate is not really safe. Who looks exactly at the data in the certificate? Is the data correct or maybe just similar. Not only for this reason we see the certification rather as a business model of a few, than as a real protection for the user. But this is of course only our personal opinion.
z. Google, for example, also uses only self-signed certificates for all Android apps, which each developer creates himself.
We can discuss this topic for a long time. Maybe we will change our attitude sometime. For more information - we have not developed the abylon SELFCERT tool for signing data, but for encrypting data.
hello, just to say what a pity that the certificate isn't truted by trustprovider, doing desinfection's tools I use your program but in virustotal.com it's said "A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider."
Do you mean the signature of the setup file or the certificates created with the software.
The software abylon SELFCERT creates only so-called self-signed certificates. These are quite sufficient for many cases, especially in the private sector.
For the signature of the setup, we also used only a self-signed certificate. Therefore, the certificate chain is also interrupted. In our eyes, there are no advantages for the user in the case of the signature with a commercial acquired certificate.
Or how do you see this?
is possible to generate new sha256 certificate with this tool?
Currently supports abylon SELFCERT only SHA1.
A note or observation intended to explain, illustrate, or
criticise the meaning of a writing, book, etc.;
explanation; annotation; exposition.
Hi Maria, unfortunately, we are not clear about what you want to express with your message. We would very grateful for a more detailed explanation, alternatively by email.