2024年5月1日 · Starting May 30, 2023, DigiCert requires private keys for code signing certificates to be stored on hardware certified as FIPS 140-2 level 2, Common Criteria EAL 4+, or equivalent that supports 3072-bit or larger keys.

2024年2月27日 · DigiCert’s timeline ensures we update our code signing certificate process so that private keys for code signing certificates are stored on hardware certified as FIPS 140-2 Level 2, Common Criteria EAL 4+, or equivalent by May 30, 2023. Our timeline also allows you to transition to the supported provisioning methods by May 16, 2023.

2022年11月3日 · After June 1, 2023, key material for all code signing certificates will no longer be exportible and there will no longer be activation links sent as part of the issuing process. SSL.com’s OV and IV Code Signing certificates help protect your code from unauthorized tampering and compromise with a secure level of validation. Why Is This Occurring?

Starting on June 1, 2023, at 00:00 UTC, industry standards will require private keys for standard code signing certificates to be stored on hardware certified as FIPS 140 Level 2, Common Criteria EAL 4+, or equivalent.

2024年2月12日 · Effective June 1, 2023, a private key should be generated and protected in a FIPS 140‐2 Level 2 or Common Criteria EAL 4+ compliant devices for both Standard and EV CodeSigning Certificates.

From the 15th June 2025, the CA/B Forum has directed that the maximum validity period for a Code Signing Certificate will be reduced from 39 months to 460 days. And to manage this change effectively, GlobalSign will stop issuing 2 Year and 3 Year Code Signing Certificates from the 28th February 2025. Why is This Shift Happening?

Effective 15th June 2025, Code Signing Certificates will have a maximum validity of 460 days (approximately 15 months). Starting 28th Feb 2025, GlobalSign will no longer issue 2-year or 3-year Code Signing Certificates. How Does This Impact You?

2023年8月3日 · As of May 14, 2023, new requirements for Code Signing certificates have been introduced, impacting how organizations obtain and use these essential tools. This article sheds light on the changes, focusing on certificates purchased after the earlier date.

2023年4月4日 · Starting June 1, 2023, code signing certificate keys must be stored on a hardware security module or token that’s certified as FIPS 140 Level 2, Common Criteria EAL 4+, or equivalent. This is intended to fight against an increasingly common problem—stolen code signing keys being used to sign and distribute malware.

Beginning on June 1, 2023, at 00:00 UTC, industry standards will mandate that private keys for code signing certificates must be stored on hardware that meets specific security certifications such as FIPS 140 Level 2, Common Criteria EAL 4+, or an equivalent standard.