Deployment and Authenticode Signing
There are many cases where you may want to sign an application or component so that users can verify who published it and that it is safe. This is recommended for Cab files that will be downloaded by means of a Web browser; you may also want to sign installers that will be used to install applications from the Web.
Visual Studio deployment tools make it possible for you to sign an installer, merge module, or Cab file using Microsoft Authenticode technology. You must first obtain a digital certificate in order to use these features.
To enable Authenticode signing in your deployment project, in Solution Explorer, right-click the project node and click Properties. In the Property Pages dialog box, check Authenticode signature. Then enter the full path to a valid certificate file and private key file in the Certificate file and Private key file fields. Optionally, you can timestamp the certificate by providing the address of a timestamping server in the Timestamp server URL field.