• Digital Trust Solutions
  • Purchase
  • Insights
  • Partners
  • Support
  • Contact Us
  • Language
Back
Back

Talk To A Support Representative

Americas
1.877.438.8776 (Toll Free US and Canada)
1.520.477.3102
1.801.701.9601 (Spanish)
1.800.579.2848 (Enterprise only)
1.801.769.0749 (Enterprise only)
Europe, Middle East Africa
+44.203.788.7741
Asia Pacific, Japan
+61.3.9674.5500
Email Sales Email Support
Back

Secure, update, monitor and control connected devices at scale

DOWNLOAD NOW

The smarter way to manage certificate lifecycles

LAUNCH EVENT

The biggest thing in 30 years of PKI

 

REGISTER NOW

2022 Edition of the TLS/SSL Best Practices Guide

DOWNLOAD NOW

2022 Edition of the TLS/SSL Best Practices Guide

DOWNLOAD NOW
WEBINAR

Taming device, identity and certificate sprawl

WATCH NOW

How to establish a signing policy DevOps will actually adopt

GET THE GUIDE

Get a global perspective on managing document signing and regulations

DOWNLOAD NOW

Secure, update, monitor and control connected devices at scale 

DOWNLOAD NOW

Secure, update, monitor and control connected devices at scale

DOWNLOAD NOW

Secure, update, monitor and control connected devices at scale

Download now
Back

The 2022 Best Practices Guide to manage the industry’s best certificates

LEARN MORE

Powerful, all-in-one website security

The choice for digital-first businesses

Secure, flexible and essential certificates

  • Award-winning support
  • 99% browser compatibility
  • Available in OV and EV
  • DigiCert Basic Seal

Flexible, capable and easy to add

  • Available for all DigiCert OV certificates
  • Secures primary domain
  • Secures unlimited subdomains

Multiple domains. Flexible options.

  • Available on all DigiCert OV and EV certificates
  • Secure up to 250 subdomains
  • Unified Communications Certificate (UCC)
  • SAN (Subject Alternative Names) certificate

Today’s most-advanced seal of trust

  • Win customer trust
  • Increase conversions
  • Features preferred by 83% of consumers
  • Named “most modern” by consumers

Start delivering email your customers can trust

  • Reduce risk of phishing exposure with DMARC
  • Empower visual verification in customers’ inboxes
  • Increase email open rates

EU compliant, qualified and trusted

  • QWAC (Qualified Web Authentication Certificate)
  • eIDAS Qualified eSignature Certificates
  • eIDAS Qualified eSeal Certificates
  • Swiss ZertES Certificates
  • Netherlands PKIoverheid Certificates

Pre-quantum is the time to prepare

  • Only available with Secure Site Pro certificates
  • Preview your quantum readiness
  • Hybrid certificate for pre- and post-validity
  • Full documentation available

Achieve PSD2 compliance

  • DigiCert is an EU Qualified Trust Service Provider (QTSP)
  • Qualified TLS/SSL Certificates
  • e-Seal and QSealC certificates

Sign code and protect software

  • Protect your IP
  • OV or EV certificates available
  • Optional timestamp and key vault
  • Support for HSMs

Client certificates to secure your business

  • Encrypt email with S/MIME
  • Enable two-factor authentication
  • Manage access to network assets

Trusted document signing for the leading workflows

  • Establishes legally binding identities
  • Globally trusted
  • Individual or organization certificates available

The 2022 Best Practices Guide to manage the industry’s best certificates

DOWNLOAD NOW

The latest best practices for the industry’s best certificate

DOWNLOAD NOW

Get the checklist that’s helped thousands of companies improve certificate management

DOWNLOAD NOW

Get the checklist that’s helped thousands of companies improve certificate management

DOWNLOAD NOW

Get the 2022 Edition of the TLS/SSL best practices guide

DOWNLOAD NOW

Get the 2022 Edition of the TLS/SSL best practices guide

DOWNLOAD NOW

See how the DigiCert Smart Seal wins throughout the customer journey

SEE THE DATA

Learn how VMCs help IT, Risk Management and Marketing at the same time

GET THE GUIDE

The only Qualified Trust Services Provider with global reach and local expertise

WATCH VIDEO

See the PQC toolkit documentation

SEE DOCS

Everything you need to achieve PSD2 compliance

DOWNLOAD NOW

Manage code signing, keys and policies at scale for greater trust

GET THE GUIDE
WEBINAR

Taming device, identity and certificate sprawl

WATCH NOW

Get a global perspective on managing document signing regulations

DOWNLOAD NOW
Back
WEBINAR

Taming device, identity and certificate sprawl

WATCH NOW

Executive Summary

While the world is pushed—or forced—toward digitizing all business processes, workflows and functions, the lessons from the early days of the Internet can be a predictor of success. Learn how Digital Trust can make or break your strategy and how the wrong solution may be setting your organization up for failure in less than three years.

View the webinar on-demand: “Taming Certificate Sprawl”

WATCH NOW
Back

PARTNERSHIP BUILT ON TRUST

WATCH NOW

Powerful partnerships delivering digital trust around the world for:

  • Enterprises
  • Small & Medium Businesses
  • Governments
  • Technology Alliances
  • Consortia

PARTNERSHIP BUILT ON TRUST

Digital trust solutions create new opportunities for Acmetek

WATCH NOW
Back

CONTACT OUR SUPPORT TEAM

 
Americas
1.877.438.8776 (Toll Free US and Canada)
1.520.477.3102
1.801.701.9601 (Spanish)
1.800.579.2848 (Enterprise only)
1.801.769.0749 (Enterprise only)
Europe, Middle East Africa
+44.203.788.7741
Asia Pacific, Japan
+61.3.9674.5500
EMAIL SALES > EMAIL SUPPORT >

CONTACT OUR SUPPORT TEAM

 
Americas
1.877.438.8776 (Toll Free US and Canada)
1.520.477.3102
1.801.701.9601 (Spanish)
1.800.579.2848 (Enterprise only)
1.801.769.0749 (Enterprise only)
Europe, Middle East Africa
+44.203.788.7741
Asia Pacific, Japan
+61.3.9674.5500
Email Sales Email Support
Secure Software Manager Hero
DigiCert® Secure Software Manager

Automated
code signing

Continuous signing for your CI/CD pipeline. No
more vulnerability gaps in your DevOps loop.
That’s digital trust for the real world.
FREE TRIAL
Why Automate?
Features
Use Cases
Resources
Help

WHY AUTOMATE CODE SIGNING?

Companies depend on code signing to provide consumers with assurance of software and publisher authenticity, ensure the integrity of IT operations, and prevent malware propagation or data breaches. However, manual code signing processes can still leave software applications vulnerable to attack. Key theft, misused keys, server breaches, and insecure processes can permit code with malware to be signed and distributed as trusted software. Automation of code signing workflows helps eliminate these points of vulnerability, delivering:

  • End-to-end security
  • Policy compliance
  • Faster remediation
  • Improved cryptoagility

Make digital trust automatic

DigiCert® Secure Software Manager improves software security with code-signing workflow automation that reduces points of vulnerability with end-to-end company-wide security and control in the code signing process—all without slowing down your DevOps pipelines.

Key capabilities include:

Secure Keys

Signing keys are safely secured in on-premises or cloud HSMs, protected from theft or insecure key practices, with fine-grained access and usage control options 

Policy Enforcement

Granular roles and permissions with automated workflows ensure compliance with security policy. 

Centralized Management 

Audit trail of who signed what, when, with full certificate lifecycle handling, facilitates management and remediation.

Integration with CI/CD

Integration with CI/CD pipelines ensures efficient and consistent signing without slowing down development. 

ENTERPRISE-GRADE FEATURES  

DigiCert® Secure Software Manager delivers the flexibility and control those enterprises require: 

Granular account management and user access controls

Configure workflows that give you centralized control over your security policies:

  • Configure and standardize workflow features, user structures, roles and permissions
  • Easy-to-generate dedicated private CA for facilities with site-specific requirements
  • Enterprise-wide certificate landscape with import and export of self-signed, private and public end-entity certificates from any CA
  • Easy-to-audit tracking of signing activity with timestamping for rapid remediation

 

Key and certificate security controls

Prevent unauthorized access and use of signing keys with secure key storage, access, and handling:

  • Integration with on-premises or cloud-delivered HSMs
  • Key access profiles that map to key handling needs: production, test,
    on-demand, offline, open, restricted
  • Static, dynamic, and roaming usage models
  • Dual-user confirmation options
  • Certificate profile templates and workflows
  • Fine-grained granular key access authorization with multi-factor authentication

Release process controls

Prevent malware from being injected to build servers, with verification that code being signed during the release process matches a baseline build .

Seamless integration with DevOps workflow

Gain workflow and process security without slowing down agile development objectives:

  • Native integration with DevOps CI/CD tools, such as Jenkins, Azure Pipelines, Gradle and more via PKCS11/KSPs
  • Hash signing to reduce latency while keeping code secure
  • Signing via API, command-line, or console
  • Common interface to multiple signing tools

SUPPORTS DIVERSE USE CASES & FILE TYPES 

Seamlessly protect and manage everything from published software to deployment environments to firmware, with broad support for file types.

Published Software
IT Applications
Firmware
Containers
Software Images
Mobile Apps

Authenticode  |  Android  |  Apple | ClickOnce | Debian | Docker 

 GPG  | JAVA  |  Nuget  | OpenSSL | RPM  |  XML

FLEXIBLE DEPLOYMENT THAT SCALES

Streamline deployment and new feature rollout with a container-based architecture that future-proofs your investment and enables you to stay abreast of industry compliance requirements:

  • Achieve fast time to value with a container-based architecture that is rapidly deployed and highly scalable
  • Flexibility in deployment models: on-premises, public or private cloud, or hybrid
  • Pair with local datacenters for in-country requirements
  • Dedicated private CA options

HEAR FROM OUR CUSTOMERS

“We have 6,000-plus developers on six continents. Trying to secure all the keys that they need (for code signing) would be a nightmare. With SSM, the keys remain in the cloud, and access is provided to sign with them, but not to get the actual keys themselves. That is a huge win for us.”

David Nalley, Vice President, Infrastructure, The Apache Software Foundation
Read More

A foundation for digital trust

DigiCert ONE is more than just a platform. It’s a new way of thinking about how you secure and manage everything of value in your organization. From the individual website to the massive enterprise, DigiCert ONE makes security, validation, and identity powerful and easy. No matter the size or use, DigiCert ONE delivers control and simplicity for the highest level of assurance.

Take a look at our other DigiCert ONE managers

DIGICERT CERTCENTRAL® TLS MANAGER
DIGICERT® IOT DEVICE MANAGER
DIGICERT® TRUST LIFECYCLE MANAGER
DIGICERT® DOCUMENT SIGNING MANAGER
Already using DigiCert ONE? Log in now.

 Related Resources

DATASHEET

Secure Software with Code Signing Workflow Automation

DOWNLOAD
DeNA Case Study Thumbnail
CASE STUDY

Automated Signing Speeds Build Times While Improving the User Experience

DOWNLOAD
VIDEO

Key sharing opens your DevOps to attack

WATCH NOW

Connect with an expert to learn how DigiCert solutions
can help you deliver digital trust  

By supplying my information and clicking submit, I agree to receive communications about DigiCert products and services, and I agree to DigiCert and its affiliates processing my data in accordance with DigiCert’s Privacy Policy.

  • The most-trusted global provider of high-assurance TLS/SSL, PKI, IoT and signing solutions.