Code signing

Code Signing

Code Signing – a fundamental way to secure innovation

Software is increasingly becoming the target of cyber-crime, being maliciously altered or falsified in pursuit of fraudulent or even terroristic objectives. Software developers and distributors are recommended to code-sign their software. Digitally ‘signing’ the file that is to be distributed provides proof that the code has not been tampered with and that it is coming from a known source.

HSM-based code signing is the most secure way to physically and digitally secure code.

Business value

Business value


Digitally Secure Code

  • Applying a digital certificate to software and applications verifies that it comes from a known source, guaranteeing authenticity & integrity.
  • Applications and software distributed over the internet, binds the identity of the publisher to the software.
  • Digitally signed applications display the name of the publisher on the install screen providing the end user with confirmation that they are downloading from a trusted source.

Maximum Security & Compliance

  • Provides proof that the software has not been tampered with.
  • Secure key storage and processing inside the secure boundary of the HSM
  • Extensive key management with key authorization
  • Authenticates the identity of the developer- promotes end-to-end trust
  • Securing the signing process- use of HSMs to ensure that private keys can only be accessed by authorised users or systems

Scalable and flexible

  • Multiple integrations with PKI applications, database encryption
  • PKI can be managed on-premise or cloud-based.
  • Secures key storage and processing inside the secure boundary of industry-grade HSM
  • Extensive key management with key authorization

Remote Access

  • Extensive mechanisms for remote administration
  • Efficient key management and firmware updates via remote access Automation of remote diagnosis via SNMP (Simple Network Management Protocol

Software Simulator included

Included simulator allowing for evaluation and integration testing to benchmark the best possible solution for each specific case

Deployment options

Deployment options


On Premise

  • Useful for centralized use cases without a requirement of scalability or remote accessibility and existing legacy infrastructure
  • Defined total cost of ownership
  • Complete control on hardware and software, including configuration and upgrades
  • Secured uptime in areas with insatiable internet connectivity
  • Preferred choice in industry-segments where regulation imposes restrictions

In the Cloud

  • Strategic architectural fit & risk management for your high value assets
  • Provides flexibility, scalability and availability of HSM-as-a-service
  • Ideal for a multi-cloud strategy, supporting multi-cloud deployments & allows for migration flexibility
  • Allows you to seamlessly work with any Cloud Service Provider
  • Easy-to-use remote management and on-site key ceremony service option
  • Full control over data through  encryption key life-cycle and key administration
  • Secured data privacy through Bring-Your-Own-Key procedures

Contact us

We look forward to answering your questions.

Get in touch with us

Talk to one of our specialists and find out how Utimaco can help you today.