Open Source Code Signing

The certificate confirming the identity of an author working under the Open Source license.

Code Signing certificates enable software developers to digitally sign the original code and recipients to verify data integrity. They eliminate the anonymity of applications published on the Internet by including the author’s name. They guarantee that the software has not been modified by unauthorized persons or viruses from the time of its signing by the software developer.

The Open Source Code Signing certificate is meant for software developers and publishers who work under the Open Source licence.

  • Simplified authentication of the ordering party (minimum formalities, immediate issue)
  • Compliance with WebTrustSM/TM
  • Issued by CERTUM, whose root certificate is automatically recognized as trustworthy by all popular web browsers and Microsoft products
  • Standard (24-hour)_period for issuance of certificate after successful data authentication
  • Secured by the SHA-2 function
  • Protection of intellectual property and brands of software publishers
  • Types of supported files: .docm, xlsm, .pptm, .xpi, .jar, .war, .ear, exe, .dll, .ocx, .cab, .msi.
  • Confirmation of responsibility for the certification process
  • Free revocation and exchange
  • Possible to store the certificate on a cryptographic smart card
  • Free time stamp
  • OCSP – Online Certificate Status Protocol
  • Possible internal and external signatures creation
  • Examples of tools that may be used for signing: MS Office 2000+, ToolSign.sh and openSSL for UNIX/Linux, Firefox, Key Manager, Jarsigner and verifier from Java JDK 1.5+, SignTool, SignCode, Visual Studio Express
  • Certificate status verification service available by using the certificate revocation list (CRL) and the Online Certificate Status Protocol (OCSP),
  • Validity period: 1 year
  • Technical support 24h

A commercial version of the certificate is also available – Standard Code Signing certificate – intended for digital code signing for the majority of the available operating systems.

Certificate verification – minimum formalities

The procedure for obtaining the Open Source Code Signing certificate is simple. No fees for the trial version.

Learn more

Encryption strength

Recommended key length 2048 – 4096. Minimum encryption key length: RSA/DSA 2048 bit, EC 571 bit: sect571k1 (NIST K-571) and sect571r1 (NIST B-571).

Learn more

The benefits of Open Source Code Signing are the following:

The certificate confirms the identity of the application author or software publisher. It protects against code modifications – you gain security and your clients’ trust.

Learn more


In particular, recommended for protecting:
  • programs on UNIX/Linux platforms
  • VBA macros
  • Apple application (from OS X)
  • Firefox and Netscape add-ons
  • Adobe AIR
  • Java applets
  • Internet applications based on JAVA technology
  • ActiveX components and controls
  • binary files in Visual Studio