generating a device‑related identifier

Question

generating a device‑related identifier

Anjali Narvekar 0

I’m working on a UWP application where we need to associate a device with app‑specific logic (for example, licensing tied to a device). We previously used an API that generated a device‑related identifier, but its stability has changed on some Windows versions.

Before redesigning our approach, I want to understand which Microsoft‑supported APIs are recommended today for generating a stable and reliable per‑device identifier in UWP.

Specifically, I would like guidance on:

Whether SystemIdentification is the preferred API for this scenario

Whether identifiers derived from system‑provided firmware information are appropriate in UWP

Whether UWP apps should rely solely on publisher‑scoped identifiers or use a different model

I am not looking to circumvent platform restrictions—only for the officially supported guidance for UWP apps that need a stable device association mechanism.

3 answers

Your answer

Answer 1

Hi @Anjali Narvekar ,

Thanks for reaching out.

The currently recommended API is
SystemIdentification.GetSystemIdForPublisher()
from the Windows.System.Profile namespace.
→ Official method documentation: https://learn.microsoft.com/en-us/uwp/api/windows.system.profile.systemidentification.getsystemidforpublisher

This has emerged as the preferred choice:

It generates a stable, device-bound ID that is scoped to your publisher (all apps published by you on the same device will see the same ID; apps from other publishers will see completely different values).
→ Explanation of publisher scoping & uniqueness: https://learn.microsoft.com/en-us/uwp/api/windows.system.profile.systemidentification.getsystemidforpublisher#remarks
The ID survives most real-world changes: app reinstalls, Windows upgrades, restarts, and — in the majority of cases — even full clean installs of Windows.
→ Persistence / durability documented here: https://learn.microsoft.com/en-us/uwp/api/windows.system.profile.systemidentification.getsystemidforpublisher#remarks
It is generated from the most stable sources the system can access (in priority order):
1. TPM (Trusted Platform Module) → highest stability
2. UEFI firmware → still very reliable
3. Registry fallback → least persistent (can change after a clean Windows install or major reset)
  → Detailed explanation of each source (Tpm, Uefi, Registry): https://learn.microsoft.com/en-us/uwp/api/windows.system.profile.systemidentificationsource

You should always check the .Source property to understand how trustworthy the ID is on that particular machine.

Here’s a simple code sample:

using Windows.System.Profile;
using Windows.Security.Cryptography;

var info = SystemIdentification.GetSystemIdForPublisher();

if (info == null || info.Source == SystemIdentificationSource.None)
{
    // Rare case — treat as new/unknown device
    return null;
}

string deviceId = CryptographicBuffer.EncodeToHexString(info.Id);
// or: string deviceId = Convert.ToBase64String(info.Id.ToArray());

string source = info.Source.ToString(); // "Tpm", "Uefi", or "Registry"

// Typically send both deviceId + source to your server

If Source is Tpm or Uefi → treat the ID as highly reliable and use it as the main license key
If Source is Registry → treat it as temporary (consider allowing a one-time reactivation or additional verification)
→ Guidance on handling different sources: https://learn.microsoft.com/en-us/uwp/api/windows.system.profile.systemidentification.getsystemidforpublisher#remarks

It’s far too sensitive to driver updates, CPU microcode patches, storage controller changes, etc.

→ HardwareIdentification class reference (notice the reduced recommendation): https://learn.microsoft.com/en-us/uwp/api/windows.system.profile.hardwareidentification

Give it a try on a few different machines (ones with TPM and some older ones without) and check what. values you’re getting. If anything looks unexpected (e.g., mostly falling back to Registry or IDs changing unexpectedly), just reply with more details (Windows build, device type, Source value) and I’ll help dig deeper.

Hope this clears things up and gives you a solid path forward!

Jay Pham (WICLOUD CORPORATION) 3,415 Reputation points Microsoft External Staff Moderator

2026-02-12T02:29:40.18+00:00

Hello @Anjali Narvekar ,

Just checking in — I haven’t heard back from you for a while, I hope everything works out as you expected. I understand things can get busy or priorities may shift. If you’re still experiencing the issue or need further support, feel free to jump back in at any time — I will always be here and happy to help. Wishing you all the best with your work! Just checking in — I haven’t heard back from you for a while, I hope everything works out as you expected. I understand things can get busy or priorities may shift.

If you’re still experiencing the issue or need further support, feel free to jump back in at any time — I will always be here and happy to help.

Wishing you all the best with your work!
Anjali Narvekar 0 Reputation points

2026-02-12T04:58:14.04+00:00

Hello Jay. We are trying to incorporate your solution. Will let you know in case we come across any issues. Thank you
Danny Nguyen (WICLOUD CORPORATION) 6,455 Reputation points Microsoft External Staff Moderator

2026-02-17T10:38:59.03+00:00

Hi, just checking in, is there any update on this post?
Jay Pham (WICLOUD CORPORATION) 3,415 Reputation points Microsoft External Staff Moderator

2026-02-23T09:12:24.61+00:00

Hello @Anjali Narvekar ,

May I kindly ask if there are any updates? Please don’t hesitate to reach out if you have any questions.

Answer 2

Anjali Narvekar 0

Hi

How can i trust the SystemIdentification API for my UWP app which is already in production for a long time with millions of users using it. Do you have any insights on any other public applications which are using this API.

Also in case I decide to go ahead with this API, can you suggest which all windows OS hardware models and connected devices I need to test before rolling out in production

Answer 3

For generating a stable and reliable per-device identifier in UWP applications, you can consider the following Microsoft-supported APIs:

SystemIdentification: This API is indeed a preferred option for generating device-related identifiers. It provides a unique system identifier based on the app publisher ID or user ID. You can use the GetSystemIdForPublisher method to obtain an identifier that is specific to the app publisher on the current device. This identifier is unique for each system and persists across restarts, reinstalls, and upgrades of Windows, making it suitable for licensing tied to a device.
Identifiers from System Firmware: Identifiers derived from system-provided firmware information, such as those obtained from the Trusted Platform Module (TPM) or Unified Extensible Firmware Interface (UEFI), are appropriate in UWP. These identifiers are designed to be stable and can provide a reliable means of uniquely identifying a device.
Publisher-Scoped Identifiers: UWP apps should consider using publisher-scoped identifiers as they ensure that the identifier is unique to the publisher across all users on that device. This approach helps maintain a consistent association between the app and the device, which is crucial for scenarios like licensing.

In summary, using the SystemIdentification API along with identifiers from system firmware is a recommended approach for achieving a stable device association in UWP applications.

Share via

generating a device‑related identifier

3 answers

Your answer