Codesigning plug-ins


#1

A little off-topic but interesting.
Do you code sign your plug-ins (excluding PACE/AAX)?

What I know:
Mac:
Developers gets codesign as part of their Apple Developer program.

Windows:
Respected sign must be issued from formal CA.

Linux I have no clue.

Dynamic Libs: Code sign can be validated only by the host (since it’s not a real executable)
Currently only Pro Tools AAX utilize codesign integrated with PACE solution.

  • Do you see any benefit of code-signing plug-ins?
  • Do you only sign your installers?
  • If you have a Authenticode compatible code-sign from a CA. do you use it while signing you AAX plugin? is it worth switching to such sign?