A lot has changed in the world of Code Signing since the month of June. And you must be curious about it too! The blog will explain key attestation, supporting hardware, and the pros and cons of using this method to deliver code signing certificates. New guidelines for distributing code signing certificates went into effect on June 1, 2023, to increase security. One of the most significant improvements requires the delivery of certificates using safe Hardware Security Modules (HSMs.

Public Key Infrastructure (PKI) plays a vital role in managing the public keys utilized by networks. It’s used for public-key encryption, identity management, certificate distribution, and revocation. The foundation of a PKI system lies in asymmetric cryptography involving a pair of public and private keys. Safeguarding the X509 private key is an essential aspect of PKI management.

DigiCert is a reputable Certificate Authority (CA) that offers code signing certificates for ensuring software application integrity and security. Whether you are a developer looking to order a new code signing certificate or an existing certificate holder seeking to renew, DigiCert provides a seamless process to meet your needs. This article will guide you through the seamless steps of ordering or renewing your DigiCert code signing certificate.

Discover in this article, What is Azure, its types, and the difference between standard and premium Azure key vaults. Learn about Managed HSM Vs. Vault, features, and compatibilities.

Beginning on June 1, 2023, at 00:00 UTC, industry standards will mandate that private keys for code signing certificates must be stored on hardware that meets specific security certifications such as FIPS 140 Level 2, Common Criteria EAL 4+, or an equivalent standard. This requirement applies to all new code signing certificate requests and requests for renewal and reissue of existing certificates.

At SignMyCode, we understand the importance of streamlined and secure code signing certificate delivery. Our certificate delivery methods have been updated to ensure compliance with the latest standards. This article pertains to Code Signing certificates acquired after May 14, 2023. All Code Signing certificates now require installation on physical hardware tokens.

We will dive into the world of Luna Network HSM 7. You can explore its capabilities and the two options available: SafeNet Luna Network HSM 7 and Thales Luna Network HSM 7. Also, discover how these solutions enhance security and protect your cryptographic keys.

Under the CA/B Forum BRs for Code Signing Certificates v2.8, Sectigo Certificate Services has implemented a hosted key attestation service to ensure the verification of hardware-backed keypairs during the issuance and management of Code Signing Certificates.