Code Signing
Code signing using digital certificates is the most effective way to attest that the software is not malicious. Keeping code-signing certificates secure is therefore critical for business continuity. Organizations must safeguard the cryptographic keys used to secure the certificates across networks. For example, end-users trust code-signing certificates, certified by the Root Certificates in their Trust Store. However, a compromised private key can sign trusted software until the certificate is revoked. Revoking is not always possible or practical.
Managing these keys and certificates creates operational complexity, especially with software development practices like using CI/CD pipelines, where software updates happen continuously, sometimes as frequently as multiple times per hour. Developers need centralized and simple access to keys for code signing, as using multiple, proprietary key management solutions results in key sprawl, making it difficult to track and secure them.
Fortanix Data Security Manager (DSM) is a unified platform that delivers comprehensive security and support to manage cryptographic keys and certificates for many leading code signing tools, including the Microsoft SignTool, Java JarSigner, Docker Notary, and others.
Secured by FIPS 140-2 Level 3 certified HSMs, the solution supports all types of asymmetric keys, signing, and hashing algorithms used for code signing, including post-quantum encryption algorithms. Role-based access control (RBAC) for users, applications, and groups provides authorization and separation of duties. Using plugins in DSM SaaS, large enterprises can verify the metadata associated with the signed data and control the use of keys.
Quorum approval provides an extra layer of control and protection and prevents a single user from taking high-impacting administrative actions such as disabling or deleting critical keys. Such actions may require approval from multiple administrators to take effect. Compromised Code signing keys can affect operational processes in high-impact environments such as hospitals where medical IoT devices are critical for life-or-death situations and revoking certificates is impossible.
Accelerate DevOps workflows
Integrate code signing processes with existing developer tools and workflows using DSM’s REST APIs, or using legacy API client libraries (e.g. CNG, JCE, PKCS#11). DevOps can let their app signing tools access keys and certificates from any location without delays and disruptions. DevOps organizations can enforce granular control options for various signing keys used throughout the development cycle. For example, they can assign different keys and certificates for testing (CI), and for deployment (CD), with distinct authorization requirements.
Simplified Audits
Other Product
Foxit PDF Editor
foxitSolusi Cepat, Ringan, dan Profesional untuk Kelola Dokumen PDFFoxit PDF EditorDi era digital saat ini, penggunaan dokumen PDF sudah menjadi standar dalam berbagai aktivitas bisnis, pendidikan, hingga administrasi. Namun, tidak semua software PDF mampu memberikan...
WPS Office Pro
WPS Office ProSoftware Office Terbaik, Ringan, dan Hemat untuk Bisnis ModernWPS OfficeDi era digital saat ini, kebutuhan akan software office yang cepat, ringan, dan efisien menjadi semakin penting. Banyak perusahaan dan individu mencari alternatif yang tidak hanya...
Rekomendasi Software Terbaru 2026 untuk Bisnis, Desain, dan Infrastruktur IT
Di era transformasi digital yang semakin cepat, penggunaan software yang tepat menjadi kunci utama untuk meningkatkan efisiensi operasional, produktivitas tim, serta keamanan sistem IT perusahaan. Tahun 2026 menghadirkan berbagai inovasi software yang dirancang untuk...
BlueCat Networks
BlueCatSmart Solutions for DNS, DHCP, and IPAM (DDI) & Modern Network InfrastructureBlueCat NetworksBlueCat Networks is a leading network infrastructure platform that helps organizations manage, secure, and automate core network services such as DNS, DHCP, and IP...
CorelDRAW Graphics Suite 2025
CorelDRAWCorelDRAW GRAPHICS SUITE 2025Professional Graphic Design Solutions for Businesses & CreatorsCorelDRAW Graphics SuiteCorelDRAW Graphics Suite is professional vector graphics design software that is widely used by designers, printers, branding teams, and...
ISL online
ISL onlineProfessional Remote Desktop & Remote Support SolutionISL onlineISL Online is reliable remote desktop software that allows you to access, control, and support computers or other devices from anywhere — ideal for IT teams, technical support, server...
