Specifies whether the assembly will be fully or partially signed.

/delaysign[+ | -]

+ | -

Optional. Use /delaysign- if you want a fully signed assembly. Use /delaysign+ if you want to place the public key in the assembly and reserve space for the signed hash. The default is /delaysign-.

The /delaysign option has no effect unless used with /keyfile or /keycontainer.

When you request a fully signed assembly, the compiler hashes the file that contains the manifest (assembly metadata) and signs that hash with the private key. The resulting digital signature is stored in the file that contains the manifest. When an assembly is delay signed, the compiler does not compute and store the signature but reserves space in the file so the signature can be added later.

For example, by using /delaysign+, a developer in an organization can distribute unsigned test versions of an assembly that testers can register with the global assembly cache and use. When work on the assembly is completed, the person responsible for the organization's private key can fully sign the assembly. This compartmentalization protects the organization's private key from disclosure, while allowing all developers to work on the assemblies.

See Creating and Using Strong-Named Assemblies for more information on signing an assembly.

To set /delaysign in the Visual Studio integrated development environment

  1. Have a project selected in Solution Explorer. On the Project menu, click Properties. For more information, see Introduction to the Project Designer.

  2. Click the Signing tab.

  3. Set the value in the Delay sign only box.

Community Additions