EV Code Signing

Overview
EV Code Signing
Pricing

Increase customer confidence and download rates


EV Code Signing Certificates combine all the benefits of regular code signing plus additional features including:

  • Company address and organization type displayed in the certificate
  • Time stamping, signature does not expire once certificate expires
  • Certificate stored on a hardware token for two-factor authentication
  • Required to access the Windows Hardware Development Center Dashboard Portal


Exclusive GlobalSign Features

  • Digitally sign an unlimited number of apps with a single certificate

  • Access to GlobalSign’s superior support

  • Compatible with major platforms (Authenticode, Office VBA, Java, Adobe AIR, Mac OS, Mozilla)


Addressing weak verification and key protection

EV Code Signing addresses two of the most commonly used vulnerabilities malware developers leverage to spread their malicious code – weak identity verification processes and poor private key protection.

  • Strict vetting process – Applicants for EV Code Signing certificates go through a more rigorous application process than regular code signing certificates. In addition to verifying the publisher’s organization name, other corporate information, such as physical address and jurisdiction, are vetted. This thorough verification process makes it much more difficult for malware developers to impersonate and obtain a code signing credential to use for signing malware under the guise of a legitimate development company.

  • Certificate stored on USB token – All GlobalSign Code Signing certificates are stored on cryptographic tokens. This makes it much more difficult for a malicious party to copy or steal the private key and use it to sign malicious software under the identity of the actual certificate holder.


Multiple Platform Support


GlobalSign Code Signing Certificates support multiple platforms using the same certificate.

  • MS Authenticode
  • Adobe AIR
  • Apple
  • Mozilla & Netscape Objects
  • Macros & VBA
  • Java

 


Standard vs. EV Code Signing Certificates

EV Code Signing certificates build on the existing benefits of standard Code Signing certificates to offer stronger levels of assurance that the identity of the publisher is correct and has been verified.

  • Strict vetting process assures end users that the identity of the publisher has been verified
  • EV Code Signing Certificates are required to access the Windows Hardware Developer Center Dashboard Portal through which all kernel-mode drivers targeting Windows 10 (Build 1607 and later) must be signed