Code Signing Certificates
Packaged software uses branding and trusted sales outlets to assure users of its
integrity, but these are not available when code is transmitted on the Internet.
Additionally, there is no guarantee that the code hasn't been altered while being
downloaded. Browsers typically exhibit a warning message explaining the possible
dangers of downloading data, but do nothing to actually see whether the code is
what it claims to be. A more active approach must be taken to make the Internet
a reliable medium for distributing software.
Use of digital signatures – Code Signing Certificates - enables software developers
to include information about themselves and their code with their software. End
users who download digitally signed .exe, .doc, .dll, .air, .jar or other files
can be confident. The code really comes from you and has not been altered or corrupted
since it was created and signed. Code signing certificates ensure the data has been
protected with high encryption and has not been altered in transmission.
It is absolutely necessary for any publisher intending to distribute code or content over the Internet or corporate networks to use a Code Signing Certificate. Secure customers are happy customers. Code Signing Certificates allow business and software publishers to assure their customers about who produced the content and that it has not been tampered with since it’s initial distribution. Newer operating systems and Internet browsers are often set to higher security levels, which often require signed content. Software publishers who do not use a Thawte Code Signing Certificate simply won’t be taken seriously in today’s environment.