Sign Code Securely,
From Anywhere

DigiCert Software Trust Manager is an easier, more secure way for your team to digitally sign software files

If you have multiple developers who need to digitally sign software, managing your code signing certificates, keys, and access can be a real challenge. Managing access to code signing keys is especially challenging if your team works from different offices around the world. DigiCert Software Trust Manager makes it easy for development teams to securely and easily sign files:

  • Sign from anywhere using the web interface, API, or integrations
  • Use your favorite tools to sign files (eg Microsoft SignTool)
  • Integrate into your systems with connectors or the API
  • Keep keys secure with HSM storage and limited key access
  • Manage permissions with granular controls to ensure nobody has access who shouldn’t
  • Log everything so you know which files were signed, by who, and when

Supports the platforms and tools you use

Supported Platfroms
Supported Tools

Give development teams access to sign
code…while keeping your keys secure

DigiCert Software Trust Manager allows developers to sign code when and where they need to, without needing a copy of the signing private key. Your private keys will stay securely stored on secure hardware, while developers use the platform to remotely (and securely) submit signing requests.

David Nalley

David NalleyVice President, Infrastructure

Apache

“We have 6,000-plus developers on six continents. Trying to secure all the keys that they need (for code signing) would be a nightmare. With DigiCert Secure Software Manager, the keys remain in the cloud, and access is provided to sign with them, but not to get the actual keys themselves. That is a huge win for us.”

Simplify Your Code Signing Process

DigiCert Software Trust Manager makes code signing secure by protecting your private keys from theft or unauthorized use, but it also makes it much easier for your entire team. No more shipping USB tokens with certificates or trying to remember which machine is storing the private key. DigiCert Software Trust Manager makes signing software as easy as sending an email—just login and click “Sign”.

Hardware
Secured Keys

Each of your private keys is automatically protected on a hardware security module—so they can’t be stolen or accidentally uploaded to a GitHub repo.

Enforced
Signing Policies

Maintain full control over who can sign code, and when by delegating privileges to authorized developers during scheduled release windows.

Track
Every Signature

You’ll know every piece of code that’s been signed with your keys (and who signed it), thanks to detailed, permanent signing logs.

Automated
Code Signing

You don’t need to change what you’re already doing. Integrate code signing into your Cl/CD and DevOps flows using APIs and/or integrations.

Request a Quote