Code Signing Certificates
Code Signing certificates are used for digitally signing software, scripts, and applications. They ensure that the code comes from a verified publisher and has not been altered after signing. This allows users to see a trusted developer's name and prevents warnings about unknown sources. Certificates thus increase trust, security, and the professional image of the developer.
Select CertificateMoney-back guarantee within 30 days, no questions asked.
How does application signing work?
When signing an application, a digital signature is created that verifies the origin and immutability of the file. The process involves calculating a hash from the file, which is signed using a certificate (e.g., in the cloud) and then reattached to the file.
The operating system verifies upon execution that the signature is valid and the file has not been modified. This allows users to see the publisher's name, and the system does not issue security warnings.
If the signature is valid, the user will see the publisher's name without any security warnings. If it is missing or invalid, the system may display a warning or block the execution.
Comparison of Code Signing Certificates in Our Offer
The table below shows a comparison of Code Signing certificates and the information they contain. Use it to decide on a specific Code Signing certificate.
| Code Signing Certificate | Trustworthiness in Windows | Publisher's Identity Confirmation | Certificate Stored in the Cloud | Price from SSLmarket | Order | ||
|---|---|---|---|---|---|---|---|
| Prices listed are without VAT. | |||||||
| Code Signing | $310.00 | Code Signing | |||||
| Code Signing EV | $775.00 | Buy | |||||
| Code Signing + KeyLocker | $310.00 + $200.00 for KeyLocker | Buy | |||||
Why Use Code Signing?
Immutability
A signed application cannot be modified without invalidating the signature. This means that the electronic signature guarantees the integrity of the application, ensuring that the content has not been altered since signing.
Authenticity
The Code Signing signature is used to verify the identity of the signer. It uses encryption technology to prove that the person who signed the application is really who they claim to be.
Protection against Malware
All current systems block the execution of unsigned code and applications (in Windows, it is SmartScreen). Digital signature of applications is necessary for user security. Users can trust that they are not running fraudulent and malicious software.
AUTOMATION of Code Signing
In today's era of agile development, where software is continuously updated and released, automation of code signing is essential. DigiCert provides tools that allow easy integration of Code Signing certificates directly into your automated build and release processes. For code signing automation, the most suitable tool is the Software Trust Manager.
Why SSLmarket?
20 years of experience
No one understands digital certificates and application signing like we do. We will help you obtain your first TLS certificate or automate their lifecycle in a company. Entrust our experts.
Number 1 in Europe
We are the largest seller of digital certificates in Europe. We have the highest form of partnership with CA DigiCert and hold many awards. You will not find a more qualified partner for data security.
Leader in Innovations
We bring you the latest products and innovations from the world's largest certification authority, CA DigiCert. Do not compromise and choose the best available. We are already prepared for PQC.
ZONER (operator of sslmarket.cz) has been offering TLS/SSL certificates since 2005. We offer our customers professional support in the Czech language, and our team of specialists will solve any problem. Server security is made easy with us, and anyone can handle it.
Our offer includes only fully trusted and established certification authorities Secure Site, Thawte, GeoTrust and RapidSSL for the Czech Republic.
Our well-done work is confirmed by receiving several prestigious awards. The most valuable achievement is the Partner of the Year 2019 award, which DigiCert presents to the best partner of all. A complete overview of our achievements can be found on the Successes and Awards of SSLmarket page.
- 24/7 support in Czech
- technical support for troubleshooting
- an expert team will solve any problem
- billing in Czech crowns
- 30-day money-back guarantee
- clear Czech administration
- certificate issuance from 1 minute
- perfect expiration alerts for certificates
- FREE certificate regeneration
- we help you automate certificates
- largest selection of TLS/SSL certificates
- we offer only trusted TLS/SSL certificates
FAQ - Frequently Asked Questions
Is the Code Signing certificate tied to my domain name?
No, Code Signing is not issued for a domain, but for a specific organization. The name of this organization is in the Common name.
What can I sign?
With a DigiCert Code Signing certificate, you can sign various types of software and scripts to ensure they come from a trusted source and have not been changed after issuance.
✅ What can be signed:
- Executable files: .exe, .dll, .ocx, .msi, .cab>
- Windows drivers (WHLK/HLK)
- Java applications: .jar
- Macros and VBA scripts in Microsoft Office
- PowerShell scripts: .ps1
- macOS applications and packages (via Apple Developer ID)
- Adobe AIR applications
- .NET applications and libraries
- Scripts and installers in various environments
⚠️ What cannot be signed:
- Code requiring qualified electronic signature per eIDAS
- Files not intended for distribution
- Formats and platforms that do not support digital signature
Is timestamped code valid after the Code Signing certificate expires?
Yes, timestamped code remains valid even after the certificate expires. If you use a timestamp when signing, the system will verify that the code was signed during the certificate's validity period. This keeps the signature trustworthy. Without using a timestamp, it's necessary to re-sign the code with a new certificate.
How can I timestamp VBA projects?
See the article Instructions for timestamping VBA code on DigiCert.com
Is there a limit to the number of applications I can sign with a Code Signing certificate?
No, you can sign an unlimited number of applications with the certificate. When you have a Code Signing certificate on a token, you can sign without limits. The number of signatures is only accounted for in cloud services:
- DigiCert KeyLocker - you have 1000 signatures during the certificate's validity, and additional signatures can be purchased.
- Software Trust Manager - signatures are licensed for the contract duration.
How do I sign using a cloud-based certificate?
Signing using a Code Signing certificate is simple and fast. It uses so-called hash-based signing, where a hash is first calculated from the file, which is then sent to the cloud for signing. The file itself is not transferred anywhere – only the signed hash is returned to the signature. This makes the entire process secure and efficient.
You can utilize cloud hash signing with these products:
