Chat With Us
We are here for you!
Talk to a fellow human.
In order to sign your code and documents, you pass the code and documents which you want to authenticate through a hashing algorithm and then use your private key to sign the hash, which results in a digital signature. You then build a signature block, which contains the digital signature and the code-signing certificate.
Tools like Microsoft's SignTool let you time stamp the signature block based on the current date and time that a time stamping service provider, such as Sectigo, provides. Finally, you bind the time stamped signature block to the original software. Now you can publish the signed software on your Web site for download.
As part of this process you will need to know the URL of Sectigo's time stamping server:
There are two popular time stamping protocols, which are both supported by our time stamping server:
Note: If you are signing several pieces of software with a script, please add a delay of 15 seconds or more between signings so that you're not hammering our servers.