Code Signing Certificates
Code Signing certificates are used for digitally signing software, scripts, and applications. They ensure that the code comes from a verified publisher and has not been altered after signing. Because of this, users see a trusted developer name and are not warned about unknown sources. Certificates thus increase trust, security, and the professional image of the developer.
Select Certificate30-day money-back guarantee, no questions asked.
How Does Application Signing Work?
When signing an application, a digital signature is created which verifies the origin and unchangeability of the file. The process occurs by calculating a hash from the file, signing it with the certificate (e.g., in the cloud), and attaching it back to the file.
The operating system verifies upon running that the signature is valid and the file has not been modified. This way, users see the publisher's name and the system does not report security warnings.
If the signature is valid, users will see the publisher's name without any security warning. If missing or invalid, the system may display a warning or block execution.
Comparison of Code Signing Certificates in Our Offer
The table below provides a comparison of Code Signing certificates and the information they contain. It helps you decide on a specific Code Signing certificate.
| Code Signing Certificate | Trust in Windows | Publisher Identity Confirmation | Certificate Stored in Cloud | Price from SSLmarket | Order | ||
|---|---|---|---|---|---|---|---|
| Prices exclude VAT. | |||||||
| Code Signing | £240.00 | Code Signing | |||||
| Code Signing EV | £580.00 | Buy | |||||
| Code Signing + KeyLocker | £240.00 + £155.00 for KeyLocker | Buy | |||||
Why Use Code Signing?
Immutability
A signed application cannot be modified without invalidating the signature. This means that the electronic signature ensures the integrity of the application, which allows verifying that the content has not been changed after signing.
Authenticity
The Code Signing signature serves to verify the identity of the signer. Encryption technology is used to prove that the person signing the application is truly who they claim to be.
Protection against Malicious Code
All current systems block the execution of unsigned code and applications (in Windows, it is SmartScreen). A digital signature of applications is necessary for user safety. The user is assured they are not running fraudulent and harmful software.
Code Signing AUTOMATION
In today's era of agile development, where software is continuously updated and released, code signing automation is essential. DigiCert offers tools that enable easy integration of Code Signing certificates directly into your automated build and release processes. The best tool for automating Code Signing is the Software Trust Manager.
Why SSLmarket?
20 Years of Experience
Nobody understands digital certificates and application signing like we do. We will help you obtain your first TLS certificate or automate their lifecycle in your company. Trust our experts.
Number 1 in Europe
We are the largest seller of digital certificates in Europe. We have the highest level of partnership with CA DigiCert and hold many awards. You will not find a more qualified partner for data security.
Leader in Innovation
We bring you the latest products and innovations from the world's largest certification authority - CA DigiCert. Do not compromise and choose the best available. We are already ready for PQC.
The company ZONER (operator of sslmarket.cz) has been offering TLS/SSL certificates since 2005. We offer professional support in Czech to our customers, and our team of specialists solves any problem. Thanks to us, server security is simple and manageable for everyone.
Our offer includes only fully trusted and established certification authorities Secure Site, Thawte, GeoTrust, and RapidSSL for the Czech Republic.
Confirmation of our well-performed work is the receipt of several significant awards. Our most valuable achievement is the Partner of the Year 2019 award given by DigiCert to the best partner of all. You will find a complete overview of our achievements on the page SSLmarket Achievements and Awards.
- 24/7 support in Czech
- technical support for issues
- expert team solves any problem
- billing in Czech crowns
- 30-day money-back guarantee
- clear Czech administration
- certificate issuance in as fast as 1 minute
- perfect expiration notices
- FREE certificate re-issuance
- we will help automate certificates
- largest selection of TLS/SSL certificates
- we only offer trusted TLS/SSL certificates
FAQ - Frequently Asked Questions
Is the Code Signing certificate bound to my domain name?
No, it isn't. Code Signing is not issued for a domain, but for a specific organization. This organization's name is in the Common name.
What can I sign?
A DigiCert Code Signing certificate can sign various types of software and scripts to ensure they originate from a trusted source and have not been altered after issuance.
✅ What can be signed:
- Executable files: .exe, .dll, .ocx, .msi, .cab>
- Windows Drivers (WHLK/HLK)
- Java applications: .jar
- Macros and VBA scripts in Microsoft Office
- PowerShell scripts: .ps1
- macOS applications and packages (through Apple Developer ID)
- Adobe AIR applications
- .NET applications and libraries
- Scripts and installers in various environments
⚠️ What cannot be signed:
- Code requiring a qualified electronic signature per eIDAS
- Files not intended for distribution
- Formats and platforms not supporting digital signatures
Is the time-stamped code valid even after the Code Signing certificate expires?
Yes, time-stamped code remains valid even after certificate expiration. If you use a timestamp during signing, the system verifies that the code was signed during the certificate's validity. This ensures the continued trustworthiness of the signature. Without a timestamp, the code must be re-signed with a new certificate.
How can I timestamp VBA projects?
See the article Instructions for timestamping VBA code on DigiCert.com
Is there a limit to the number of applications I can sign with a Code Signing certificate?
No, you can sign an unlimited number of applications with the certificate. If you have a Code Signing certificate on a token, you can sign endlessly. The number of signatures is only considered in cloud services:
- DigiCert KeyLocker - during certificate validity, you have 1000 signatures, with more available for purchase.
- Software Trust Manager - signatures are licensed for the contract duration.
How do you sign using a certificate in the cloud?
Signing with a Code Signing certificate is simple and quick. It uses hash-based signing, where a hash is first calculated from the file and then sent to the cloud for signing. The file itself is not transmitted anywhere - only the signed hash is returned for attachment. This makes the whole process secure and efficient.
You can use cloud hash signing with these products:
