NIST publishes Security Considerations for Code Signing, a White Paper that describes features and architectural relationships of typical code-signing solutions that are widely deployed today to support various use cases. The White Paper defines code-signing use cases and identifies some security problems that can arise when applying code-signing solutions to those use cases. It also provides recommendations for avoiding those problems and resources for more information.
Sign up for updates from NIST
Created January 26, 2018, Updated February 05, 2018