Accelerating DevOps with Secure Code Signing and Key Storage in the Cloud
Ken Kelly, Senior Sales Engineer, Fortanix and Ganesh Gopalan, Product Manager, AppViewX
About this talk
Digitally signing code is critical to the software development process to validate the integrity of the code and authenticity of the software. However, lax code signing processes and the mishandling of certificates and private keys has led to many high-profile software supply chain vulnerabilities and attacks.
To address this, new code signing requirements from the CA/Browser Forum went into effect on June 1, 2023. This major change now requires the use of FIPS 140-2 Level 2 or Common Criteria EAL 4+ hardware security modules (HSMs) or tokens to store and protect private keys associated with all publicly trusted code signing certificates.
While this change is initially disruptive, it can also be used to modernize and improve your code signing process. By implementing a SaaS code signing solution backed by a compliant cloud-based HSM, you can seamlessly integrate secure and compliant code signing into your CI/CD pipeline.
Join experts from AppViewX and Fortanix as we discuss this change, the impact to you and an integrated cloud signing and HSM solution you can deploy today.
Here’s what you’ll learn by attending:
- Instant SaaS deployment and rapid time to value
- Fully compliant HSM and secure code signing process
- Seamless integration with CI/CD pipeline to boost performance
- Accelerate agile and secure software development
The Fortanix Data Security Expert webinar channel contains educational content related to data security topics including encryption, key management, tokenization, secure devops, and confidential computing.…