Code Signing

Code Signing – a fundamental way to secure innovation

Software is increasingly becoming the target of cyber-crime, being maliciously altered or falsified in pursuit of fraudulent or even terroristic objectives. A single breach in this ‘chain of trust’ can put an entire business at risk, resulting in loss of revenue and the need to rebuild trust with customers, partners, and investors.

Within a DevOp environment, teams may produce more machine identities than the rest of the organization combined. Software developers and distributors are therefore recommended to code-sign their software to protect end users and the reputation of the business. Digitally ‘signing’ the file that is to be distributed provides proof that the code has not been tampered with and that it is coming from a known source.

HSM-based code signing is the most secure way to physically and digitally secure code.

Business value

Digitally Secure Code

Applying a digital certificate to software and applications verifies that it comes from a known source, guaranteeing authenticity & integrity.
Applications and software distributed over the internet, binds the identity of the publisher to the software.
Digitally signed applications display the name of the publisher on the install screen providing the end user with confirmation that they are downloading from a trusted source.

Maximum Security & Compliance

Provides proof that the software has not been tampered with.
Secure key storage and processing inside the secure boundary of the HSM
Extensive key management with key authorization
Authenticates the identity of the developer- promotes end-to-end trust
Securing the signing process- use of HSMs to ensure that private keys can only be accessed by authorised users or systems

Scalable and flexible

Multiple integrations with PKI applications, database encryption
PKI can be managed on-premise or cloud-based.
Secures key storage and processing inside the secure boundary of industry-grade HSM
Extensive key management with key authorization