Does Hyper-V support digital signatures with VHD disk files?

Question

Does Hyper-V provide a mechanism (like ESX/vSphere) to identify digitally signed VHD files? Is it even possible to sign a VHD file?

Background: I am trying to provide a virtual appliance to my prospective customers, which they could just import in their hypervisor setup - be it ESX/vCenter, XenServer or Hyper-V. Towards that end, I export the VM in an OVF package and then sign it. Now, these signatures are verified and reported by vSphere/ESX, when anybody imports the OVF file on ESX. But Hyper-V doesn't support importing an OVF package. So, I have to convert the disk (.vmdk) into .vhd, which can be attached with a VM in Hyper-V. My goal is to ensure that VHD is not tampered with, after I publish it and before anyone imports it in his/her setup.

score 5 · Answer 1 · answered May 08 '14 at 14:02

5

If you want to make sure the image has not been tampared with, just publish an MD5/SHA checksum, as many others do with such types of downloads.

There is nothing built-in to hyper-v

answered May 08 '14 at 14:02

MichelZ

11,238

score 3 · Accepted Answer · answered May 08 '14 at 10:40

3

How do you think that would work? The signature would be invalid the moment the appliance changes anything in the file.

No, it is not supported.

answered May 08 '14 at 10:40

TomTom

52,109
7
59
142

Does Hyper-V support digital signatures with VHD disk files?

2 Answers2