Extended Validation (EV) Code Signing Certificates include all the standard benefits of digitally signed code plus a rigorous vetting process and hardware security requirement, so your users can have even greater confidence in the integrity of your applications.
-
-Two-Factor Authentication: An encrypted token containing the private key is stored on a USB device that you receive after you purchase your certificate. Only those who have the physical device can sign code with your EV code signing certificate, providing reinforced authentication and enhanced security.
-
-Time-Sensitive Signing: Adding an optional timestamp means your signature lives on even after the original EV code signing certificate used to sign it has expired. Without a timestamp, your signature expires when the certificate expires, requiring you to re-sign your code.
-
-Automatic Smartscreen® Reputation: Microsoft’s SmartScreen® Application Reputation filter reduces warning messages, increasing brand reputation and end-user trust.
-
-Support for Hardware Security Modules (HSM): EV code signing certificates can be installed on HSMs, giving you more control over your certificates and their private keys. Anyone in your organization with authorized access to the HSM can use the stored certificate to sign code.
-
-Universal Platform Compatibility: There is no need to reissue your certificate to sign code for a different platform (e.g., Authenticode, Kernel Mode, etc.)