Secure Your Code

Digitally sign your code to increase user trust and download rates

  • Remove unknown publisher security warnings
  • Protects software from tampering and malware injection
  • Sign Authenticode, Oce VBA, Adobe AIR, Mozilla, Mac OS

Start Securing Your Code

You need a Code Signing Certificate to digitally sign your code. Pricing depends on the level of verification and the amount of information contained in the certificate.

Standard Code Signing

From / year
  • Compatible with major platforms
  • Company identity in certificate
  • Removes "unknown publisher"
  • Security Warnings

Token Implementation

- Key storage on USB token or other hardware storage token

HSM Implementation

- Key storage on HSM or Azure Key Vault, provided by customer

>

Extended Validation (EV) Code Signing

From / year
  • All features of standard Code Signing
  • Company name, address, and type included in certificate
  • Immediate reputation with Microsoft SmartScreen Filter

Token Implementation

- Key storage on USB token, provided by GlobalSign

HSM Implementation

- Key storage on HSM or Azure Key Vault, provided by customer

  Standard Code Signing Certificates Extended Validation (EV) Code Signing Certificates
Certificate Features
Information displayed in Certificate Organization Name Organization Name
Organization address
Type of Organization
Removes "unknown publisher" security warnings
Siganature does not expire when Time Stamping is applied Time stamping available & recommended Time stamping available & recommended
Sign an unlimited number of applications
Compatible with major platforms (Authenticode, Office VBA, Java, Adobe AIR. Mac OS, Mozilla)
Key storage options You have a choice of storing keys on a token or HSM, not provided by GlobalSign.

Token options (choose “Token Implementation” at checkout)
- Cryptographic USB token
- Other hardware storage token
- SD card or USB token

HSM options (choose “HSM Implementation” at checkout)
- HSM
- Azure Key Vault
By default, a cryptographic USB token is included with EV Code Signing Certificates.

If you’d prefer, EV Code Signing Certificates can be stored on an HSM or Azure Key Vault (provided by customer). Please select the “HSM Implementation” option at checkout.
Immediate reputation with Microsoft SmartScreen No
Pricing
1 Year
2 Year
3 Year
Token Implementation
HSM Implementation
Standard Code Signing Certificates
Certificate Features
Information displayed in Certificate Organization Name
Removes "unknown publisher" security warnings
Siganature does not expire when Time Stamping is applied Time stamping available & recommended
Sign an unlimited number of applications
Compatible with major platforms (Authenticode, Office VBA, Java, Adobe AIR. Mac OS, Mozilla)
Key storage options You have a choice of storing keys on a token or HSM, not provided by GlobalSign.

Token options (choose “Token Implementation” at checkout)
- Cryptographic USB token
- Other hardware storage token
- SD card or USB token

HSM options (choose “HSM Implementation” at checkout)
- HSM
- Azure Key Vault
Immediate reputation with Microsoft SmartScreen No
Pricing
1 Year
2 Year
3 Year
Token Implementation
HSM Implementation
Extended Validation (EV) Code Signing Certificates
Certificate Features
Information displayed in Certificate Organization Name
Organization address
Type of Organization
Removes "unknown publisher" security warnings
Siganature does not expire when Time Stamping is applied Time stamping available & recommended
Sign an unlimited number of applications
Compatible with major platforms (Authenticode, Office VBA, Java, Adobe AIR. Mac OS, Mozilla)
Key storage options By default, a cryptographic USB token is included with EV Code Signing Certificates.

If you’d prefer, EV Code Signing Certificates can be stored on an HSM or Azure Key Vault (provided by customer). Please select the “HSM Implementation” option at checkout.
Immediate reputation with Microsoft SmartScreen
Pricing
1 Year
2 Year
3 Year
Token Implementation
HSM Implementation

*GlobalSign allows standard and EV Code Signing Certificates to be installed on customer HSMs or in Azure Key Vault. Contact us for more information about these deployment options.
^USB token not included in HSM or Key Vault deployments.

Please ensure to order your certificate from the Region where the company in the certificate is based, and with the correct currency. If your certificate request upon ordering does not match these criteria, your order may risk being delayed, and/or not being processed.

Select Region
 

What are the Key Storage Options for Code Signing Certificates?

One of the leading causes of code signing attacks is key compromise, where a malicious party gains access to the private key of a legitimate publisher and fraudulently uses it to sign a corrupt or altered file. Storing the keys on secure cryptographic hardware, such as a USB token or Hardware Security Module (HSM), significantly decreases the chance of key compromise compared to storing the keys locally.

We recommend the strongest key protection possible, and it’s been a requirement for Extended Validation (EV) Code Signing Certificates since they were introduced in 2014. The latest Certificate Authority Security Council (CASC) guidelines require all code signing certificates to be stored on hardware. For standard code signing, GlobalSign recommends protecting private keys with a cryptographic hardware product or TPM over other removable hardware such as a thumb drive or SD card. GlobalSign EV Code Signing Certificates are automatically shipped with a cryptographic USB token, unless HSM implementation option is selected at checkout.

If you or your company currently utilize a hardware security module (HSM) such as Azure Key Vault, you have the option to select that implementation when purchasing either standard or EV code signing certificates.

Why should you digitally sign your code?

Code Signing Certificates are used by developers on all platforms to digitally sign the applications and software they distribute over the Internet. Code Signing essentially provides the same assurance as a shrink wrapped CD – the signed code includes the name of the publisher and assurance that the code hasn't been tampered with since being published. Anyone downloading software off of the internet can make a decision whether or not to trust the software.

  • Digitally Sign Emails

    Prove authorship and prevent tampering, assuring the email recipient that the email came from you, not an imposter and that the content of the email has not been altered in transit.

  • Encrypt Emails

    Ensure your message can only be opened by the intended recipient, protect emails in transit and at rest, and keep sensitive information from falling into the wrong hands

Digitally Sign Across Multiple Platforms with One Certificate

Why choose GlobalSign for Code Signing?

Unlimited Signing Capabilities

Sign as many applications as needed with no additional fees.

Sign Multiple Platforms

Digitally sign Authenticode, Office VBA, Adobe AIR, Mozilla, Mac OS with one certificate.

Industry-leading local language support

GlobalSign has offices worldwide offering local language customer support and account management.

Long Term Validity

Timestamping is included and recommend allowing for long term validity, meaning the signature on code does not expire what the certificate expires.

Prevent Security Warnings & Increase Downloads

Digitally signing code prevents users from abandoning the installation process by removing alarming security messages that accompany unsigned code.

Immediate Reputation with Microsoft SmartScreen

GlobalSign Extended Validation (EV) Code Signing Certificates establish immediate reputation with Microsoft’s SmartScreen Filter, removing scary warning messages.

What customers are saying

Outstanding service

My interaction for about a week with GlobalSign has been very pleasant. Response of your executives was quick and positive and delivery of service was outstanding. Thanks for your support.

Mohan Lal Hirwal, 05/15/2018

Michael Trotta Rocks

I'm pretty sure Michael Trotta is plugged directly into your service, via some cybernetic contraption that you have yet to patent. I really sppreciate his candor, and the speed of his responses!

Daniel Kloepfer, 12/05/2019

Easy to Understand

The process and instructions have been made easier to understand with the step-wise instructions and FAQs, especially those, like me, without access to an IT department.

Dietrich Bartel, 07/08/2019

Our Customers & Partners