Secure, update, monitor and control connected devices at scale
- Digital Trust for:
- Enterprise IT, PKI & Identity
- Websites & Servers
- Code & Software
- Documents & Signing
- IoT & Connected Devices
Manage PKI and Certificate risk in one place now
Manage PKI and Certificate risk in one place now
The smarter way to manage certificate lifecycles
Continuous Signing for CI/CD & DevOps
Secure, flexible and global signing
Trusted from silicon to in-the-field
Device security without compromise
Accelerate secure app development
2022 Edition of the TLS/SSL Best Practices Guide
2022 Edition of the TLS/SSL Best Practices Guide
How to establish a signing policy DevOps will actually adopt
Get a global perspective on managing document signing and regulations
Secure, update, monitor and control connected devices at scale
Secure, update, monitor and control connected devices at scale
Secure, update, monitor and control connected devices at scale
The 2022 Best Practices Guide to manage the industry’s best certificates
Compare the most trusted certificates:
Powerful, all-in-one website security
- Priority Validation & Support
- Malware Scanning Service
- Vulnerability & PCI Scan
- Continuous CT Log Monitoring
- DigiCert Smart Seal or Norton Seal
- Industry-leading Warranty
The choice for digital-first businesses
- Priority validation & support
- Malware scan
- DigiCert Smart Seal
- Leading warranty
Secure, flexible and essential certificates
- Award-winning support
- 99% browser compatibility
- Available in OV and EV
- DigiCert Basic Seal
Flexible, capable and easy to add
- Available for all DigiCert OV certificates
- Secures primary domain
- Secures unlimited subdomains
Multiple domains. Flexible options.
- Available on all DigiCert OV and EV certificates
- Secure up to 250 subdomains
- Unified Communications Certificate (UCC)
- SAN (Subject Alternative Names) certificate
Today’s most-advanced seal of trust
- Win customer trust
- Increase conversions
- Features preferred by 83% of consumers
- Named “most modern” by consumers
Start delivering email your customers can trust
- Reduce risk of phishing exposure with DMARC
- Empower visual verification in customers’ inboxes
- Increase email open rates
Pre-quantum is the time to prepare
- Only available with Secure Site Pro certificates
- Preview your quantum readiness
- Hybrid certificate for pre- and post-validity
- Full documentation available
Achieve PSD2 compliance
- DigiCert is an EU Qualified Trust Service Provider (QTSP)
- Qualified TLS/SSL Certificates
- e-Seal and QSealC certificates
Sign code and protect software
- Protect your IP
- OV or EV certificates available
- Optional timestamp and key vault
- Support for HSMs
Client certificates to secure your business
- Encrypt email with S/MIME
- Enable two-factor authentication
- Manage access to network assets
Trusted document signing for the leading workflows
- Establishes legally binding identities
- Globally trusted
- Individual or organization certificates available
The 2022 Best Practices Guide to manage the industry’s best certificates
The latest best practices for the industry’s best certificate
Get the checklist that’s helped thousands of companies improve certificate management
Get the checklist that’s helped thousands of companies improve certificate management
Get the 2022 Edition of the TLS/SSL best practices guide
Get the 2022 Edition of the TLS/SSL best practices guide
See how the DigiCert Smart Seal wins throughout the customer journey
Learn how VMCs help IT, Risk Management and Marketing at the same time
The only Qualified Trust Services Provider with global reach and local expertise
See the PQC toolkit documentation
Everything you need to achieve PSD2 compliance
Manage code signing, keys and policies at scale for greater trust
Get a global perspective on managing document signing regulations
WEBINAR
Taming device, identity and certificate sprawl
Digital Trust for the Real World
Explore these pages to discover how DigiCert and its partners are helping organizations establish, manage and extend digital trust to solve real-world problems.
View the webinar on-demand: “Taming Certificate Sprawl”
PARTNERSHIP BUILT ON TRUST
partnerships delivering digital trust around the world with:
- System Integrators
- Software Developers & Solution Providers
- OEMs
- Distributors & Resellers
- Managed Service Providers
- Cloud Service Providers
CONTACT OUR SUPPORT TEAM
- Support
- Resources
- Tools
CONTACT OUR SUPPORT TEAM
DigiCert® Software Trust Manager
Software
Supply Chain Security
Protect your software supply chain from threats. Code
signing, threat detection, and SBOMS. That’s digital trust
for the real world.
Guard Against SSC Attacks
Software supply chain attacks (SSC) are on the rise. If your customers depend on the integrity of your software, then you can depend on DigiCert to secure your software supply chain. We provide secure storage of your code signing keys with role-based access minimizing the chance of an attacker accessing private keys. Leverage a policy-driven approach to releasing software: run a deep analysis of your software binaries looking for malware and vulnerabilities, and then securely code sign the application only if your policies have been met. We deliver:
- Enterprise-hardened secure code signing
- Threat detection scanning on software binaries
- Software bill of materials
- Automation for CI/CD pipelines
Make digital trust automatic
DigiCert® Software Trust Manager improves software security with code-signing and threat detection workflow automation that identifies and reduces points of vulnerability with end-to-end company-wide security and control in the release process—all without slowing down your DevOps pipelines.
Key capabilities include:
Secure Keys
Signing keys are safely secured in on-premises or cloud HSMs, protected from theft or insecure key practices, with fine-grained access and usage control options.
Policy Enforcement
Granular roles and permissions with automated workflows ensure compliance with security policy.
Centralized Management
Audit trail of who signed what, when, with full certificate lifecycle handling, facilitates management and remediation.
Integration with CI/CD
Integration with CI/CD pipelines ensures efficient and consistent signing without slowing down development.
Threat Detection
Powered by ReversingLabs, advanced detection of threats such as malware, software tampering, and inclusion of secrets in open-source software, proprietary software, containers, and release packages.
Software Bill of Materials
Comprehensive software bill of materials generated from the final software binary for all components within the binary.
ENTERPRISE-GRADE FEATURES
DigiCert Software Trust Manager delivers the flexibility and control that enterprises require.
Granular account management and user access controls
Configure workflows that give you centralized control over your security policies:
- Configure and standardize workflow features, user structures, roles and permissions
- Easy-to-generate dedicated private CA for facilities with site-specific requirements
- Enterprise-wide certificate landscape with import and export of self-signed, private and public end-entity certificates from any CA
- Easy-to-audit tracking of signing activity with timestamping for rapid remediation
Key and certificate security controls
Prevent unauthorized access and use of signing keys with secure key storage, access, and handling:
- Integration with on-premises or cloud-delivered HSMs
- Key access profiles that map to key handling needs: production, test, on-demand, offline, open, restricted
- Static, dynamic, and roaming usage models
- Dual-user confirmation options
- Certificate profile templates and workflows
- Fine-grained granular key access authorization with multi-factor authentication
Release process controls
Prevent malware from being injected to build servers, with verification that code being signed during the release process matches a baseline build.
Threat Detection
Powered by ReversingLabs, deep analysis of software binaries for threats, software tampering, and other vulnerabilities:
- Uses the world’s largest private database of known malware signatures
- Scans any type of software binary
- Generates a software bill of materials, even for components from third-party open-source and proprietary software
Seamless integration with DevOps workflow
Gain workflow and process security without slowing down agile development objectives:
- Native integration with DevOps CI/CD tools, such as Jenkins, Azure Pipelines, Gradle and more via PKCS11/KSPs
- Hash signing to reduce latency while keeping code secure
- Signing via API, command-line, or console
- Common interface to multiple signing tools
SUPPORTS DIVERSE USE CASES & FILE TYPES
Seamlessly protect and manage everything from published software to deployment environments to firmware, with broad support for file types.
Published Software
IT Applications
Firmware
Containers
Software Images
Mobile Apps
Authenticode | Android | Apple | ClickOnce | Debian | Docker
GPG | JAVA | Nuget | OpenSSL | RPM | XML
FLEXIBLE DEPLOYMENT THAT SCALES
Streamline deployment and new feature rollout with a container-based architecture that future-proofs your investment and enables you to stay abreast of industry compliance requirements:
- Achieve fast time to value with a container-based architecture that is rapidly deployed and highly scalable
- Flexibility in deployment models: on-premises, public or private cloud, or hybrid
- Pair with local datacenters for in-country requirements
- Dedicated private CA options
HEAR FROM OUR CUSTOMERS
“We have 6,000-plus developers on six continents. Trying to secure all the keys that they need (for code signing) would be a nightmare. With Software Trust Manager, the keys remain in the cloud, and access is provided to sign with them, but not to get the actual keys themselves. That is a huge win for us.”
David Nalley, Vice President, Infrastructure, The Apache Software Foundation
A foundation for digital trust
DigiCert® ONE is more than just a platform. It’s a new way of thinking about how you secure and manage everything of value in your organization. From the individual website to the massive enterprise, DigiCert ONE makes security, validation, and identity powerful and easy. No matter the size or use, DigiCert ONE delivers control and simplicity for the highest level of assurance.
Take a look at our other DigiCert ONE managers
DIGICERT CERTCENTRAL® TLS MANAGER
DIGICERT® IOT TRUST MANAGER
DIGICERT® TRUST LIFECYCLE MANAGER
DIGICERT® DOCUMENT TRUST MANAGER
Already using DigiCert ONE? Log in now.
Related Resources
DATASHEET
Protect software integrity across the software supply chain
CASE STUDY
Automated Signing Speeds Build Times While Improving the User Experience
DATASHEET
-
The most-trusted global provider of high-assurance TLS/SSL, PKI, IoT and signing solutions.
-
-
© 2023 DigiCert, Inc. All rights reserved.
Legal Repository WebTrust Audits Terms of Use Privacy Policy Accessibility Cookie Settings Privacy Request Form