Symantec SSL   Partner in Ukraine logo HTTPS

Проблемы использования традиционного CodeSign

Приватный ключ хранится локально - поэтому есть вероятность быть украденным, скопированным или скомпрометированным

Symantec Cloud-based Code Signing Service

Вы получаете все преимущества лучших технологий CodeSign без рисков или неприятностей.

  1. Права доступа на основе иерархии
  2. Полная отчетность и аудит
  3. Автоматическая метка времени
  4. Поддержка всех типов подписи в том числе Microsoft, Java and Android
  5. API-интерфейс для автоматизации процессов
  6. ...

Maintain Integrity of Files and Apps

  • Eliminate issues from lost and stolen signing keys by leveraging Symantec’s secure cloud-based service
  • Maintain control with role-based authorization
  • Avoid fraud by using authentication by IP address(es)
  • Minimize non-compliance and enforce accountability with detailed reports and audit logs on signing activities

Maintain Business Continuity

  • Minimize adverse business impacts when keys are revoked by deploying unique keys and automatic time stamping
  • Maintain reputation rating in Microsoft’s application reputation model and adopt best practices by deploying rotating keys
  • Utilize Symantec’s world class vetting services for developers

Drive Business Agility

  • Support all major file types and integrate with third-party test houses
  • Expedite process time with batch update of apps
  • Flexibility to use Private Roots or to chain to a Trusted Root
  • Integrate with other systems and activities via full set of SOAP APIs
  • Customize email notifications to meet business needs
  • Cloud-based, with easy-to-use dashboard for code signing and management of keys and signing requests
  • Role-based access control on code signing
  • Access restriction by IP range and IP logging when applications are signed
  • Unique signing keys
  • Rotating pool of keys
  • Support for all major file types: Microsoft, Java desktop, Java mobile, Android, file hashes and others
  • Unlimited test signings and capability to integrate with third-party test houses
  • Option for automatic time stamping ( RFC 3161 or Authenticode )
  • Capability for Admins to approve or reject signing requests
  • Option to use Private Roots or chain to a Trusted Root
  • SOAP APIs for integration with other systems and workflows
  • Reports and audit logs to track signed code and activities
  • Capability to customize email notification by language as well as enable/disable emails
  • Assign signing/services to developers
  • Option for developer vetting

Overview
Traditional code signing provides a way for software publishers to assure their customers that the apps and files they have downloaded are, indeed, from them and have not been tampered with. Unfortunately, inadequate controls around this process can lead to malware propagation. According to IDG News Service, “Malware authors are signing their malicious creations with stolen digital certificates to bypass antivirus detection and defense mechanisms” (IDG News, March 15, 2012). Compromised certificates make news headlines and can lead to poor reputation for your company, and revoking these certificates could result in your distributed applications to suddenly appear as untrusted. Symantec Secure App Service is a cloud-based code signing and management solution with a complete range of services to help enterprises control and secure their code signing activities and keys easily. Services include vetting and approval of software publishers, code signing, key protection and revocation, administrative controls, reporting and audit logs.

Maintain Integrity of Files and Apps, and Secure Keys
Traditional code signing requires companies to have tight management controls over their code signing activities and keys. Without proper security and controls, there is no tracking of signing activity or auditing, no accountability for signing, no rights management, and the signing keys are often vulnerable to theft or can easily be lost. Symantec Secure App Service provides security and convenience: you can sign desktop files and apps and then secure the keys in the same cloud service. This helps prevent keys from being stolen and deployed for nefarious purposes while ensuring the integrity of files downloaded by users.

Maintain Business Continuity with Rotating Keys and Unique Keys
Contrary to industry best practices, some companies use the same key to sign many of their files and apps. If the key is compromised and needs to be revoked, all the files and apps signed using that key will have to be recalled and will not be available to users. Companies may experience a ripple effect in terms of costs associated with unavailability of these assets to their users as well as additional resources required to track and re-secure the assets. With Symantec Secure App Service, companies can deploy unique keys to minimize adverse business impacts in the event a key is revoked. In addition, for publishers on Windows®, they are provided with a pool of keys to sign and rotate through. This allows them to maintain their ranking with Microsoft SmartScreen®Filter while minimizing the business impact if a key has to be revoked.

Enforce accountability with reports, and audit logs
Traditional code signing warns users when files and apps are tampered prior to download and protects users and businesses from malware. In order to attain an enterprise-wide view of keys and code signing activities, administrators would have to spend additional resources to discover and track that information. Symantec Secure App Service provides reports and audit logs so that administrators can easily track and monitor activities. The availability of reports and audit logs helps companies enforce accountability and compliance. Companies have access to reports and logs on all signing activities in one area providing them with insight and data for risk analysis, forecasting and resourcing.
Top ^



Написати повідомлення

Ваш email
Ваш телефон
Тема повідомлення
Текст повідомлення
Symantec SSL  сертификаты для Украины Слава Україні !


Symantec SSE+ лого адграфиксЗамовити зворотній дзвінок >>>
є питання: зателефонуйте +380672576220 skype: webtrust.ua
Top ^
Усі серти * Code * PDF * Email * IoT * Wi-Fi * PKI * DV * OV * EV * Новости * Help *