NIST Publishes a White Paper on Security Considerations for Code Signing

NIST publishes Security Considerations for Code Signing, a White Paper that describes features and architectural relationships of typical code-signing solutions that are widely deployed today to support various use cases. The White Paper defines code-signing use cases and identifies some security problems that can arise when applying code-signing solutions to those use cases. It also provides recommendations for avoiding those problems and resources for more information.