Merge pull request #5371 from MicrosoftDocs/alvinashcraft/main-smartappcontrol-add-ecc-note

alvinashcraft · web-flow · commit bbda535163a0 · 2025-04-29T11:07:11.000-04:00
Add note to Smart App Control about ECC signature support
diff --git a/hub/apps/develop/smart-app-control/code-signing-for-smart-app-control.md b/hub/apps/develop/smart-app-control/code-signing-for-smart-app-control.md
@@ -1,24 +1,34 @@
 ---
 title: Sign your app for Smart App Control compliance
-description: How to sign your code to ensure Smart App Control compliance
-ms.topic: article
+description: Learn how to sign your code to ensure Smart App Control compliance using one of several supported methods.
+ms.topic: concept-article
 ms.date: 09/20/2022
+# customer intent: As a Windows developer, I want to learn how to sign my code to ensure Smart App Control compliance.
 ---
 
 # Sign your app for Smart App Control compliance
 
 Code signing is a cryptographic operation that can be performed on an app in order to verify its contents and publisher. Smart App Control considers apps signed with a trusted digital certificate to be safe, and allows them to run on a protected computer.
 
+> [!NOTE]
+> Smart App Control's signature check does not currently support Elliptic-curve cryptography (ECC) signatures.
+
 There are several ways to sign your app.
 
 ## Obtain a code signing certificate from a trusted provider
 
-Code can be signed with any certificate, but Smart App Control only considers certificates issued by trusted providers. For information about how to obtain a code signing certificate from a trusted provider, see [Manage code signing certificates](/windows-hardware/drivers/dashboard/code-signing-cert-manage#get-or-renew-a-code-signing-certificate)
+Code can be signed with any certificate, but Smart App Control only considers certificates issued by trusted providers. For information about how to obtain a code signing certificate from a trusted provider, see [Manage code signing certificates](/windows-hardware/drivers/dashboard/code-signing-cert-manage#get-or-renew-a-code-signing-certificate).
 
 ## Sign your app with Trusted Signing
 
 [Trusted Signing](https://techcommunity.microsoft.com/t5/security-compliance-and-identity/trusted-signing-is-in-public-preview/ba-p/4103457) (formerly Azure Code Signing) is the preferred way to sign your app. Trusted Signing is currently in public preview.
 
 ## Sign your app with signtool.exe
 
-Signtool.exe is an app included with Visual Studio that can sign apps with a digital certificate. For instructions on how to sign your app with signtool.exe, see [How to sign an app package using SignTool](/windows/win32/appxpkg/how-to-sign-a-package-using-signtool)
+Signtool.exe is an app included with Visual Studio that can sign apps with a digital certificate. For instructions on how to sign your app with signtool.exe, see [How to sign an app package using SignTool](/windows/win32/appxpkg/how-to-sign-a-package-using-signtool).
+
+## Related content
+
+- [Manage code signing certificates](/windows-hardware/drivers/dashboard/code-signing-cert-manage#get-or-renew-a-code-signing-certificate)
+- [Trusted Signing](https://techcommunity.microsoft.com/t5/security-compliance-and-identity/trusted-signing-is-in-public-preview/ba-p/4103457)
+- [SignTool](/windows/win32/seccrypto/signtool)
