Code Signing
Generate and protect cryptographic keys required for code signing processes
- About Code Signing
- Solutions
- Related Products
- Resources
About Code Signing
Code signing is a security mechanism that verifies the authenticity and integrity of files and program code using digital certificates. It involves digitally signing executables and scripts to:
- Confirm the software author
- Ensure the code remains unaltered since signing
- Prove software trustworthiness to users and devices
Generating and Protecting Cryptographic keys Used for Code Signing
Code signing certificates rely on asymmetric cryptography, using a public and private key pair. The public key is included in the certificate sent to users, while the private key is used for signing the code.
A Hardware Security Module (HSM) securely generates and stores these cryptographic keys, ensuring the private key never leaves its protected environment. By keeping the key isolated, HSMs prevent unauthorized access and misuse, eliminating the risk of fraudulent code signing.
Solutions for Code Signing
Utimaco’s General Purpose HSMs can be applied for code signing across various environments. All HSMs are FIPS 140-2 Level 3 certified, ensuring a secure environment for cryptographic keys. Key benefits:
- FIPS 140-2 Level 3 or 4 certified, with options for eIDAS and classified environments.
- Entry-level to high-speed models, supporting up to 40,000 RSA 2K operations / s
- PQC-ready: u.trust General Purpose HSM Se-Series is designed crypto-agile and can be extended with PQC algorithms
Related Products
Il offre une fonctionnalité multi-tenant évolutive, des performances supérieures et des possibilités de personnalisation pour une large gamme d'applications.
Le module de sécurité matériel est spécialisé dans la conformité eIDAS et les cas d'utilisation classifiés VS-NfD.
Le seul module de sécurité matériel du marché certifié selon la norme FIPS 140-2 niveau 4, qui répond aux exigences les plus élevées en matière de sécurité physique.
Le General Purpose Hardware Security Module as a Service d'Utimaco donne accès à un HSM FIPS 140-2 de niveau 3 hébergé par Utimaco dans un centre de données sécurisé et certifié.
Resources
Join us for an insightful webinar and explore the top 5 applications of Hardware Security Modules (HSMs) as well as the essential role they play in securing digital environments.
The top 5 use cases of a Hardware Security Module (HSM) – incl. Demo
Join us for an insightful webinar and explore the top 5 applications of Hardware Security Modules (HSMs) as well as the essential role they play in securing digital environments.
Watch Now
Ensuring secure cryptographic key storage, management, and generation
Security Solutions managed by u.trust General Purpose HSM and GaraSign
Ensuring secure cryptographic key storage, management, and generation
Téléchargement
The u.trust General Purpose HSM Se-Series combines superior performance with multi-tenancy. From entry-level to high-performance use cases, all models are future-proof with post quantum cryptography readiness and are FIPS 140-2 Level 3 certified.
u.trust General Purpose HSM Se-Series
The u.trust General Purpose HSM Se-Series combines superior performance with multi-tenancy. From entry-level to high-performance use cases, all models are future-proof with post quantum cryptography readiness and are FIPS 140-2 Level 3 certified.
Téléchargement
