Extended Validation (EV) Code Signing Certificates
To prevent tampering or compromise of applications by unauthorized parties, software developers digitally sign their programs with code signing certificates.
SSL.com Extended Validation Code Signing certificates offer the highest level of authentication and security available in signing code, resulting in more trust and higher download counts of your signed applications. Programs signed with an SSL.com EV Code Signing certificate immediately work with Internet Explorer and Windows® SmartScreen® reputation services. For device driver publishers, an EV Code Signing certificate is REQUIRED as a first step for Windows Kernel Mode Signing (see Windows Kernel Mode Signing Policy for more details).
EV Code Signing is short for Extended Validation Code Signing. The intensive publisher vetting process makes Extended Validation certificates a much safer option and the preferred option of device driver publishers, among others.
These digital certificates are especially useful in applications that are distributed through the Internet, where applications can pass through a number of suspicious parties or websites before it finally gets downloaded and installed.
Unsigned applications can easily be altered to include malware or viruses, and these untrusted applications will display warning messages resulting in lower installation yields. A code signing certificate issued from a trusted Certificate Authority such as SSL.com can prevent all of those problems.EV code signing certificates may be shipped or installed on YubiKey FIPS USB tokens, and may also be enrolled in eSigner, SSL.com’s cloud-based code and document signing platform that supports multiple users and team members.
- eSigner pricing information is available on SSL.com’s main eSigner page. Please read Remote EV Code Signing with eSigner for information on enrollment and use
- If you already own a YubiKey FIPS that you would like to install EV code signing certificates on, please read our how-to on YubiKey attestation
- If you have another FIPS 140-2 Level 2-validated device or cloud HSM service you would like to use, please fill out our HSM attestation request form
- eSigner CKA (Cloud Key Adapter) is also available, allowing tools such as SignTool.exe or Certutil.exe to use eSigner CSC for EV code signing operations
EV Code Signing Certificates combine all the benefits of OV Code Signing Certificates, including these additional features:
Build Reputation and Increase User Confidence