X509 Digital Certificates

Digital Certificates are used by AllIncontext to:

• Code Sign AllIncontext Programs.
• For Added Value Tickets (AVTs) which allow the concurrent running of AllIncontext Programs using an AllIncontext Certificate Chain (HTTPS Direct, Symantec knowledge page).

The first uses a Comodo SHA256RSA Certificate and the second uses an AllIncontext SHA512RSA Certificate. The AllIncontext Certificate Policy and Certificate Practice Statement are here, and AllIncontext Object Identifiers (OIDs) are here.

Code Signing AllIncontext Programs

AllIncontext programs are signed with a Comodo SHA256 code signing certificate. This certificate links to the certificate chain that exists by default in the Windows certificates store and allows the programs to be easily installed to be run One at a Time, free of charge. However, if you want to run AllIncontext programs Concurrently, you will need to purchase an AllIncontext Added Value Ticket (AVT), which uses an AllIncontext Certificate SHA512 Chain, and you will need to install on your PC the following Certificates:

1. The AllIncontext Trusted Root Certification Authority certificate. This is a certiicate using the SHA512 hash algorithm for signatures.
2. The AllIncontext Intermediate Certification Authority certificate in the chain below the Root Authority. This is a certiicate using the SHA512 hash algorithm for signatures. It's Enhanced Key Usage (EKU) is for Secure Email and the AllIncontext Object Identifier (OID) for File Encryption.
3. The AllIncontext AVT that you purchased for the concurrent running of AllIncontext programs. This is a certiicate using the SHA512 hash algorithm for signatures. It's Enhanced Key Usage (EKU) is for Secure Email and the AllIncontext Object Identifier (OID) for File Encryption.

All the above Certificates have a Key Length of 4096 bits. By contrast, many certificates use SHA256 as the Hash algorithm and have Key Lengths of 2048 bits.

Both the AllIncontext Root and Intermediate certificates are available to be installed from the AllIncontext RunCMD program (Code Signed with AllIncontext Limited's Comodo SHA256 Code Signing certificate) and RunCMD also has an HTML How-to Help file on the process to be followed for certificate installation. The Root and Intermediate certificates only need to be installed infrequently. Your AVT needs to be installed yearly.