What is a Code Signing Certificate?
A Code Signing Certificate is a digital certificate that contains information that fully identifies an entity and is issued by a Certificate Authority such as GlobalSign. The Digital Certificate binds the identity of an organization to a public key that is mathematically related to a private key pair. The use of private and public key systems is called Public Key Infrastructure (PKI). The developer signs code with its private key and the end user uses the developer’s public key to verify the developers identity. Learn more about Code Signing and the differences between signed and unsigned code.
GlobalSign allows standard and EV Code Signing Certificates to be installed on customer HSMs or in Azure Key Vault. Contact us for more information about these deployment options.
Note: USB token not included in HSM or Key Vault deployments.
Multiple Platform Support
GlobalSign Code Signing Certificates support multiple platforms using the same certificate.
Code Signing For Software Vendors and Organizations
GlobalSign Code Signing Certificates are used by developers on all platforms to digitally sign the applications and software they distribute over the Internet. Code Signing essentially provides the same assurance as a shrink wrapped CD as the signed code includes the name of the publisher and assurance that the code hasn't been tampered with since being published. Anyone downloading software off of the internet can make a decision whether or not to trust the software.
Code Signing Certificates use a unique cryptographic hash to bind the identity of the publisher to the software. Security warnings that appear with unsigned code are replaced with notifications containing the software publisher's information, preventing users from abandoning the install and increasing download rates. Signing code adds an essential layer of trust to the installation process.
Code Signing proves the signed software is legitimate, comes from a known software vendor, and that the code has not been tampered with since being published. Code Signing prevents users abandoning the installation of an application due to security warning messages, malicious alternation of legitimate code, and identity theft of vendor author.
Standard vs. EV Code Signing Certificates
EV Code Signing certificates build on the existing benefits of standard Code Signing certificates to offer stronger levels of assurance that the identity of the publisher is correct and has been verified.
- Strict vetting process assures end users that the identity of the publisher has been verified
- Immediate reputation with Microsoft SmartScreen Filter removes scary warning messages to end users that the application might be malicious