InfoQ Homepage Code Signing Content on InfoQ

News

RSS Feed

Development

Microsoft Launches Trusted Signing in Public Preview: an End-to-End Signing Solution for Developers

Microsoft recently launched Trusted Signing in Public Preview, a fully-managed end-to-end signing solution for developers backed by a Microsoft-managed certification authority.

Steef-Jan Wiggers
on May 15, 2024
DevOps

AWS Signer Simplifies Signing and Verifying Container Images

AWS has released AWS Signer Container Image Signing (AWS Signer) to provide native AWS support for signing and verifying container images in registries such as Amazon Elastic Container Registry (Amazon ECR). AWS Signer manages code signing certificates, public and private keys, and provides lifecycle management tooling.

Matt Campbell
on Jun 25, 2023
DevOps

Sigstore Releases Python Client

Sigstore has announced the 1.0 stable release of sigstore-python, a Python-based Sigstore-compatible client. The client provides a CLI as well as an importable Python API. It is able to sign and verify with any Sigstore-supported identity and has ambient identity detection for supported environments.

Matt Campbell
on Jan 17, 2023
DevOps

Sigstore Moves to GA with Enhanced Stability and Reliability

The Open Source Security Foundation (OpenSSF) has moved Sigstore, an artifact signing, and verification technology, into general availability. This announcement sees the Sigstore certificate authority, Fulcio, and transparency log, Rekor, also move into GA with their 1.0 releases. The release brings improved stability and reliability to the services for use within production workloads.

Matt Campbell
on Nov 05, 2022
Development

Linux Foundation Sigstore Aims to Be the Let's Encrypt of Code Signing

Backed by the Linux Foundation, Sigstore aims to provide a non-profit service to foster the adoption of cryptographic signing by open source projects to make the software supply chain more secure.

Sergio De Simone
on Mar 16, 2021
Code Signing For Individual Developers

Code Signing is a mechanism for software users to trust executable code that is published on the internet before downloading and running it. Until now, this was practically beyond the reach of the individual developer, due to costs and processes involved. However, some stores are now offering Thawte code-signing certificates for individual developers for $99 per year.

Roopesh Shenoy
on Dec 19, 2011

Topics

Panel: What Does the Future of Computing Looks Like

Key Trends from 2024: Cell-based Architecture, DORA & SPACE, LLM & SLM, Cloud Databases and Portals

Generally AI: Time to Travel

Leveraging Internal Developer Portals to Achieve Strategic Initiatives

Bits, Bots, and Banter: A Deep Dive into How Tech Teams Work in a DevOps World

Helpful links

Choose your language

News

Microsoft Launches Trusted Signing in Public Preview: an End-to-End Signing Solution for Developers

AWS Signer Simplifies Signing and Verifying Container Images

Sigstore Releases Python Client

Sigstore Moves to GA with Enhanced Stability and Reliability

Linux Foundation Sigstore Aims to Be the Let's Encrypt of Code Signing

Code Signing For Individual Developers

Panel: What Does the Future of Computing Looks Like

Cloudflare 2024 Year in Review: Strong Growth for GitHub Copilot and Go Surpasses Node.js

AWS Adds News Amazon Q Developer Agent Capabilities: Doc Generation, Code Reviews, and Unit Tests

Key Trends from 2024: Cell-based Architecture, DORA & SPACE, LLM & SLM, Cloud Databases and Portals

How to Architect Software for a Greener Future

Key Takeaways from QCon & InfoQ Dev Summits with a Look ahead to 2025 Conferences

How to Go from Copy and Paste Deployments to Full GitOps

Leveraging Internal Developer Portals to Achieve Strategic Initiatives

Leveraging AI Platforms to Improve Developer Experience – From Personal Hackathon to AI at Scale

LLaMA-Mesh: NVIDIA’s Breakthrough in Unifying 3D Mesh Generation and Language Models

DeepThought-8B Leverages LLaMA-3.1 8B to Create a Compact Reasoning Model

Qwen Team Unveils QwQ-32B-Preview: Advancing AI Reasoning and Analytics

Prometheus 3.0 Brings New UI, OpenTelemetry Support and More

Pinterest's Use of Honeycomb for Enhanced CI Observability and Build Stability

Bits, Bots, and Banter: A Deep Dive into How Tech Teams Work in a DevOps World

QCon London

InfoQ Dev Summit Boston

InfoQ Dev Summit Munich

QCon San Francisco

InfoQ Dev Summit New York

InfoQ Software Architects' Newsletter

Login with:

Don't have an InfoQ account?

News