Security Code Advanced

Code signing certificates-sign software and scripts securely

Sign executable files, plugins, and scripts with code signing certificates. Verify authenticity and prevent tampering.

UnderHost NOC Network Operations

10 min read Updated June 2026

On this page

What is code signing?
Why sign code?
Obtain code signing cert
Sign code

Code signing proves code came from you and hasn't been modified. Users see your verified identity when installing, and browsers don't warn about "unknown publisher".

Why sign code

Users trust signed code more than unsigned
Browsers/Windows show verified publisher name
No security warnings for legitimate software
Verify code hasn't been altered

Obtain code signing certificate

Purchase from trusted CA (DigiCert, Sectigo, etc.)
Verify your identity (personal or organization)
Receive certificate and private key
Keep key safe - it's your identity

Sign your code

Windows executables

signtool sign /f cert.pfx /p password /t http://timestamp.example.com program.exe

macOS

codesign --sign "Developer ID" app.app

Protect your code signing key

Your code signing private key is your identity. If compromised, attackers can sign malware as you.

Related: Key management

Was this article helpful?

Need security-focused hosting?

UnderHost services include DDoS-aware infrastructure, SSL support, account isolation, backups, and security guidance.

View Secure Hosting CustomerPanel

Chat with Winston. chat.underhost.com