Keyfactor Signum is a secure code signing as a service platform designed to protect sensitive keys and automate policy enforcement. It integrates seamlessly with existing tools and build processes, ensuring efficient and secure code signing without disrupting workflows.

Key Features

• Secure Key Management: Generates and stores private signing keys in a FIPS 140-2 certified Hardware Security Module (HSM) in the cloud.
• Policy Enforcement: Defines granular access and usage policies for private signing keys, with user and server authentication.
• Integration with CI/CD Tools: Supports tools like SignTool, Jarsigner, Cosign, OpenSSL, Jenkins, and Microsoft HLK.
• Audit Trails: Provides a full audit trail for key access and usage.
• Centralized Dashboard: Manages all code signing certificates, policies, and approval workflows.

Benefits

• Enhanced Security: Protects against unauthorized access and misuse of signing keys.
• Streamlined Development: Integrates with existing workflows, reducing manual errors and speeding up development.
• Compliance Simplification: Ensures regulatory compliance by securing keys and maintaining audit trails.