An Extended Validation or EV Code Signing Digital Certificate

An Extended Validation or EV Code Signing Certificate – The Next Generation Software Code Security

An Extended Validation or EV Code Signing is designed for developers and publishers to secure their software and web application codes, contents, scripts and other digital objects from an unwanted third party malware attacks. An EV Code Signing certificate allows to enhance user’s confidence while downloading applications or software over the Internet. Having software signed by this next generation EV Code Signing security establish a layer of reputation with the SmartScreen® Application Reputation technology, which reduces warning messages in Windows® and Internet Explorer.

An EV Code Signing certificate requires a strict validation and authentication process such as an EV SSL certificates holds while issuance of certificate. It’s indeed now that developer and software publishers to have an EV Code Signing Certificate to verify their identity during the authentication process. In additionally, an EV Code Signing requires the use of hardware to sign applications. The purpose of using this hardware is for protection against theft or unintentional use of code signing certificate.

What is Microsoft’s SmartScreen® Filter?

The programs signed by an EV Code Signing can immediately establish reputation with the Microsoft’s SmartScreen® Filter which uses information about an application’s reputation to inform end users if the application isn’t well known or might be malicious. Launching with Internet Explorer 9.0 and Windows 8, applications signed with an EV code signing certificate have an instant reputation recognized, so no troubling messages will be presented to the Downloader.

Microsoft SmartScreen Application Reputation clearly shows deference between known and unknown publishers IE9, and gives special action to applications protected with EV Code Signing Certificates.

SmartScreen for IE8 produces a red warning bar for any new application, regardless of publisher.

ie8-red-warning-message

For applications protected with a traditional code signing certificate, IE9 issues a yellow bar indicating that the app is “signed and unknown,” thus helping users understand that the publisher is a trusted entity.

ie9-yello-warning-message

If an application is signed with an EV Code Signing Certificate and contains no malware, IE9 grants that application immediate reputation, and a user’s download avoids SmartScreen filter warnings altogether.

Who offers an EV Code Signing Certificate?

Top most SSL certificate providers including Certificate Authorities offer an EV Code Signing certificate, you can avoid useless warning messages and protect your software from theft, tampering and malware. A Certificate Authorities who offer an EV Code Signing Certificate:

ev-code-signing-banner

Features & Benefits of an EV Code Signing Certificate

  • Highest Level of Extended Validation authentication
  • Strict validation process
  • Robust encryption
  • Help establish reputation with Microsoft’s SmartScreen® filter
  • Required for user-mode and kernel-mode drivers on Windows 10
  • SHA-256 algorithm, compliant with Microsoft’s SHA-1 deprecation plan
  • Hardware token and PIN to protect your keys
  • Two-factor authentication
  • Company address and organization type displayed in the certificate
  • An EV Code Signing Certificate compatible with major platforms (Authenticode, Office VBA, Java, Adobe AIR, Mac OS, Mozilla)
  • Support for Hardware Security Modules (HSM)
  • Free 24/7 technical support

Let’s Compare an EV Code Signing Certificates from SSL Certificate Authorities:

Brand symantec-logo ca-digicert ca-globalsign
Certificate Authority (CA) SYMANTEC™ DigiCert GlobalSign
SSL Certificate EV Code Signing Certificate EV Code Signing Certificate EV Code Signing Certificate
CA Rating

Symantec Reviews

DigiCert Reviews

GlobalSign Reviews

Pricing for 1 Year $699 $449 $410
Pricing for 2 Years $609.50/Yr $399/Yr $380/Yr
As Low As $579.67/Yr $331/Yr $316/Yr
Issuance Speed 1-10 business days 1-10 business days 1-10 business days
Validation Required Extended Validation of Organization Extended Validation of Organization Extended Validation of Organization
Immediate Reputation with Microsoft’s SmartScreen® Filter Yes Yes Yes
Two-factor Authentication Yes Yes Yes
Microsoft Authenticode® Yes Yes Yes
Microsoft Office & Microsoft VBA Yes Yes Yes
Microsoft Kernel-Mode Code Signing Yes Yes Yes
Adobe® AIR® Yes Yes Yes
Java® Yes Yes Yes
Mozilla® Objects Yes Yes Yes
Other major platforms Yes Yes Yes
Unlimited, free re-keying for the certificate lifetime Yes Yes Yes
Support Options Yes Yes Yes
Refund Policy 30 Days 30 Days 30 Days
Certificate Authority Review Read Reviews Read Reviews Read Reviews
Read More Read More Read More Read More
Buy Now Buy Now Buy Now Buy Now

 

How Does Code Singing Works?

Top SSL Certificate Comparison References

Highly Recommended Code Signing Security Discussion by Experts