Register Now

     First Name:
     Last Name:
     Title:
     Company:
     Address:
     Dept/BOX/ MS:
     City:
     State/Prov:
     Zip/Postal Code:
     Country:
     Email:
     Phone: - -
     Fax: - -
     Company URL:

Register Now
Featured Speakers:
 
  • Eric Bruno,  Principal, Allure Technology, Inc.
     
  • Richard Hall, CISSP,  Senior Manager, Product Management; Symantec Corporation
     

    Symantec Privacy Policy


    Bookmark and Share

     
     
    A Dr. Dobb's Webcast:

    Next-Generation Code Signing: Protecting Your Business and Your Users

    Duration: 60 Minutes

    Attendees will learn:

    • What Extended Validation means in the context of code signing
    • Why Extended Validation (EV) Code Signing certificates are more secure than traditional code signing certificates
    • How Windows 8 and other next-generation systems can treat applications signed with an EV Code Signing certificate differently
    • The importance of reputation for your applications now and into the future

    Traditionally, code signing has served as the initial step in keeping personal computer systems secure. Developers sign code, and if something bad happens with that code, we know who distributed it and could act accordingly. Recently, traditional code signing certificates have been used to sign malware. Likely stolen, these signatures have allowed for significant damage to be done to otherwise secure systems. Something needed to be done to address this issue.

    In order to provide a more secure digital signature, the Certificate Authority industry has introduced Extended Validation (EV) Code Signing. Unlike traditional code signing certificates, EV Code Signing provides the highest level of authentication available for a code signing certificate and requires a hardware token and associated PIN in order to sign code, providing an extra layer of protection for software developers and consumers. Introduction of this hardware element to the code signing process makes EV Code Signing certificate theft much more difficult, allowing browsers, operating systems, and users to be more confident in the identity of the developer and the integrity of the application. Due to more stringent developer authentication and more secure code signing, an application signed with an EV Code Signing certificate can be recognized and treated differently than an application with a traditional digital signature or lacking a digital signature.

    The EV Code Signing process can provide reputation service within browsers, operating systems and security software an additional source of confidence in applications signed with EV Code Signing certificates. Symantec has partnered with Microsoft to integrate EV Code Signing certificate status with their SmartScreen® reputation services in Internet Explorer and Windows 8. Programs signed by an EV Code Signing certificate can immediately establish reputation with SmartScreen reputation services even if no prior reputation exists for that file or publisher. This means there are potentially fewer warning messages when a user tries to run your application.

    Users can have more confidence when downloading applications from developers who have taken advantage of Symantec's EV Code Signing Certificates. When users download your application they can feel safe, knowing that they are downloading an application from a developer that is trusted by Symantec, the world's leading Certificate Authority.


     
     

    UBM Tech - 600 Community Drive, Manhasset, New York 11030 - Privacy Statement