Code signing to protect your applications
Given the prevalence of malware and Advanced Persistent Threats (APTs), many software vendors, providers of online services, and enterprise IT organizations are under pressure to increase the security of their code signing process. The nShield CodeSigning solution helps software producers of all types implement highly secure and efficient code signing processes that protect their organizations from risks associated with software tampering. Combining tamper-resistant nShield HSMs with support from Entrust Professional Services (PS), the nShield CodeSigning solution is backed by our extensive expertise in code signing best practices and standards of due care. HSMs provide tamper-resistant, certified protection for private code signing keys and a secure platform to perform critical digital signature processes. nShield CodeSigning also offers a flexible range of capabilities to simplify and automate the code signing request/approval workflow for organizations with more complex requirements.
Each nShield CodeSigning solution includes one or more nShield HSMs, the nShield CodeSigning framework, and service days appropriate to your specific requirements. Entrust PS will design and configure your solution to support your specific code signing workflow. nShield CodeSigning is offered in three configurations:
- Developer. This code signing solution is designed for the individual developer workstation for low volumes of code signing.
- Workgroup. This code signing solution is designed for organizations with multiple build stations where a shared signing resource is advantageous.
- Enterprise. This code signing solution is designed for larger organizations with requirements for highly controlled software signing approval process workflows with robust end-to-end audit capabilities.
Simplify and streamline the code signing process using workflow automation capabilities.
Get a high-assurance code signing process appropriate to your organization’s size and scope.
Maximize protection from outsider and insider attacks with a tamper-resistant code signing solution.