• TURKTRUST Unauthorized CA Certificates

    Although unrelated to Entrust, I thought you might be interested in the news about TURKTRUST.

        in Certificate Management, SSL, SSL Deployment, Technical
    0
  • Adobe Code-Signing Certificate Compromised

    Adobe announced they received two malicious utilities signed by a valid Adobe code-signing certificate. The code-signing certificate was compromised though an attack on their code-signing system. The code-signing certificate will be revoked on October 4, 2012, and will impact all code being signed after July 12, 2012. A supporting security advisory has been issued. The compromise of the code-signing certificate

        in Technical
    0
  • Code Signing: Best Practices

    The biggest issue with code signing is the protection of the private signing key associated with the code signing certificate. If the key gets compromised, then your certificate is worthless. A compromised key may also jeopardizethe software that you have already signed. Here are some best practices for code signing: 1. Minimize access to private keys Computers with keys should

        in Code Signing
    0
  • Self-Signed Versus Trusted CA Certificates

    In most cases you have to sign your code in order to get it installed on the operating system. You can sign your code using a self-signed certificate or using a certificate issued by a publicly-trusted CA. Due to the costs of buying a code signing certificate from a publicly-trusted CA, some users will decide to try a self-signed certificate.

        in Code Signing
    0
  • Code Signing: Best Practices

    The biggest issue with code signing is the protection of the private signing key associated with the code signing certificate. If the key gets compromised, then your certificate is worthless. A compromised key may also jeopardizethe software that you have already signed. Here are some best practices for code signing: 1. Minimize access to private keys Computers with keys should

        in Code Signing
    0
  • Self-Signed Versus Trusted CA Certificates

    In most cases you have to sign your code in order to get it installed on the operating system. You can sign your code using a self-signed certificate or using a certificate issued by a publicly-trusted CA. Due to the costs of buying a code signing certificate from a publicly-trusted CA, some users will decide to try a self-signed certificate.

        in Code Signing
    0
Page 1 of 212