Overview of Trusted Signing
Microsoft recently unveiled Trusted Signing in Public Preview, which is an advanced, fully managed signing service. Previously known as Azure Code Signing, this enhanced service is designed to streamline the signing process for developers through robust security measures and easy certificate management.
Key Features of Trusted Signing
Trusted Signing allows developers to sign code for both public and private trusts efficiently and securely. It integrates directly with tools like SignTool.exe, GitHub, and Visual Studio for seamless CI/CD pipeline integration. The service is backed by Microsoft-managed certification authority and utilizes FIPS 140-2 Level 3 HSMs for handling certificates.
Security and Efficiency
The service enhances security with features like Smart App Control and SmartScreen, ensuring that signed code maintains integrity and trustworthiness. Developers can expect a swift signing process complemented by a timestamping feature for enhanced verification.
Setting Up Trusted Signing
Setting up Trusted Signing is straightforward. Developers can create a Trusted Signing account within a resource group in their Azure subscription, which allows them to manage identity validation and certificate profiles effectively.
Pricing and Availability
Trusted Signing offers two tiers: Basic and Premium. The Basic SKU costs $9.99 per month for 5,000 signatures, and the Premium SKU is priced at $99.99 per month for 100,000 signatures. During the Public Preview period, which lasts until June 2024, developers can use the service for free.
Future Plans and Community Feedback
In response to community inquiries, there are plans to expand the service to support signing on Linux and macOS platforms. This expansion would solidify Trusted Signing as a comprehensive solution for developers across various operating systems.
For more detailed information on how to utilize Trusted Signing and its benefits, developers are encouraged to refer to the official Microsoft documentation.