Software Publisher

Software Publisher certificate is most of all used to ensure integrity of created software. It protects applications or files published or sent across the Internet against hackers’ interference and harmful codes infections. Since the certificate carries a software author’s details and/or data of a company that produced an application, it is also used to confirm the authenticity of software by means of reliable authentication of an application’s author.

• reliable software identification – certified information concerning an author of an application and/or a company that produced the software,
• guaranteed security of an application – protection against code modifications by third parties,
• protection against getting infected with a harmful code (viruses, Trojan horses, etc.),
• high level of the certificate issuer’s financial liability.
  

• X.509 v.3 (RFC5280), compliant,
• secured with RSA-SHA1 cryptographic function,
• minimal cryptographic key length RSA/DSA 2048 bit, EC 571 bit: sect571k1 (NIST K-571) and sect571r1 (NIST B-571),
• issued by CERTUM - a certificate authority holding a WebTrust certificate which confirms the compliance with international standards for Certification Authorities,
• issued by CERTUM - whose root certificate is automatically recognized as trusted in modern web browsers,
• verification of the certificate's status is possible via CRL lists and the OCSP protocol.

To obtain the certificate:

• Internet browser supporting X.509 certificates (e.g. Internet Explorer, Netscape Comunicator, Opera, Firefox)
• Installed Certum CA certificate of the main certification authority (so-called ‘root’)

To sign code or file:

• Internet browser supporting X.509 certificates – to sign Netscape forms and objects, to sign codes in MacOS system or similar.
• Visual Basic – to sign macros based on Microsoft Visual Basic for Applications (VBA) technology.
• ToolSign.sh script – to sign on UNIX/Linux platforms
• proCertumCombi software – to sign any files on Windows platform