W-Global's new Code Signing Certificates are perfect for software publishers and content providers of dynamic link libraries (.dll files), ActiveX controls, .cab files, HTML content or any other software distributed over the Internet or via an extranet. Time-stamping service provided, allowing distribution of signed code beyond certificate Expiration. Protects your intellectual property by warding off impersonation and tampering. Can be applied to virus updates, Microsoft® Office documents with macros, software releases, firmware images, configuration files and other types of files.

Used by content publishers to append digital signatures to their products, W-Global Code Signing Certificates are fully integrated with Industry-Standard Technology. These digital signatures prove to consumers of the content the identity of the creator and validate that content has not been tampered with since it was originally distributed. Code signing digital signatures can be used to sign content including firmware images, macros, software components, virus updates, configuration files or other types of content for secure delivery over the Internet or other mechanisms. With the rapid growth of Internet distribution of content and tightened security settings in many newer browsers and/or operating systems, Code signing has becoming increasingly important.

The software publisher requests a code-signing certificate from us. Either in a file or in the Windows/Internet Explorer certificate store, a public key will be created on requestor's machine. We never receive the private key. We will send an email containing a link to download the certificate file once the information provided has been validated and the certificate has been issued. The publisher creates the software component or other content to be signed. Supplied by platform vendor, the publisher uses a code-signing tool to add a digital signature to the content. To extend the life of the software component beyond the validity period of the code-signing certificate, an optional time stamp can also be added to the digital signature. The digital signature contains an encrypted hash of the software component, which is used to verify that the code has not been tampered with after it is signed. SignTool.exe from Microsoft is used for signing most standard Windows code (.exe., .dll, .ocx, .cab,). The publisher will need to specify the code to be signed, the private key file, the code signing certificate and optionally the time stamping server URL. Jarsigner is used for signing Java applications. Jarsigner, starting with Java 5, added support for time stamping. If a time stamp is to be added to the code, an Internet connection is required. The software publisher verifies the digital signature, before distributing the product. SignTool.exe from Microsoft is used for verifying digital signatures for most standard Windows code formats.