After downloading the installation file, you can complete download verification to prove the authenticity and integrity of the downloaded installation file with a fair degree of certainty. This step is completely optional but highly recommended. You can skip this step and continue with the installation.
- Authentication validates that downloaded file was created by the signee, in this case signee is Xilinx Inc. In other words, it shows that downloaded file is not forged by a third party.
- Integrity validates that contents of downloaded file are not tampered by third party. In summary, download verification allows users to validate if downloaded file indeed is prepared by Xilinx and if the contents of the downloaded file have been altered or not.
The Digest, Signature and Public Key options are provided on download page for the purpose of download verification.
There are two ways to verify the authenticity and integrity of downloaded files. You can choose one or both of the following methods to ensure the authenticity and integrity of downloaded files.
For both of the above methods, before you can verify and authenticate the downloaded file, you must download, import, and trust the public key.