SBN

Signum SaaS on Microsoft Azure: The Easy Way to Securely Sign Code

As software supply chain attacks continue to threaten organizations, it’s becoming more important to have secure code signing practices in place. Code signing keys are prime targets for attackers seeking access to sensitive data and compromise security. However, security measures often come at the expense of productivity, causing friction in developer workflows. Developers are often hesitant to add additional steps to their process, and security teams may disrupt development processes by requiring security measures such as code signing. Additionally, sensitive signing keys are often left unprotected on USB drives, build servers, or developer workstations, making them prime targets for attackers seeking to steal and compromise keys.

The workload and resources needed to manage and update signing solutions in-house, as well as the time it takes to implement and deploy new solutions, can also be barriers. Despite these challenges, having secure code-signing practices is essential to protect against supply chain attacks and prevent attackers from using stolen code signing keys to sign malicious code disguised as trusted software.

Make signing effortless for developers and easy to manage for security

Enter Keyfactor Signum SaaS, now available on Microsoft Azure. This code-signing solution is designed to help developers sign code and containers securely without disrupting productivity. With Signum SaaS on Azure, businesses can maintain secure practices while still allowing developers to use the same tools they’re already familiar with, ensuring ease of use and speed of deployment.

  • Integrate with Native Tools: Keyfactor Signum integrates natively with popular signing tools like Microsoft SignTool, OpenSSL, and Jarsigner via the KSP interface for Windows and PKCS11 interface for Linux, making it transparent to developers. 
  • Secure Key Storage: Sensitive signing keys are generated and stored in HSM to ensure the highest level of protection and comply with CA/B Forum Extended Validation code signing certificate requirements. 
  • Policy and Governance: A simple web interface makes it easy to define who can sign what, when, and where, with complete auditability of all signing activities. 
  • Authentication: Only authorized developers and admins can sign code and manage signing policies via integration with Identity Providers, making it easy to deploy rapidly throughout the organization.

Ready to learn more?

The post Signum SaaS on Microsoft Azure: The Easy Way to Securely Sign Code appeared first on Keyfactor.

*** This is a Security Bloggers Network syndicated blog from Blog Archive | Keyfactor authored by Keyfactor Team. Read the original post at: https://www.keyfactor.com/blog/signum-saas-on-microsoft-azure-the-easy-way-to-securely-sign-code/