What is crypto agility in code signing?
Crypto agility is a principle for gradually improving security and attack resistance in a secure infrastructure based on cryptography.
Any cryptographic algorithm has weaknesses. As cryptographic research and computing power evolves the ability of existing algorithms to protect data privacy and integrity is reduced.
In an eco system for distribution and deployment of code, the use of multiple code signatures in parallel enables the code signing system to be crypto agile. New cryptographic algorithms are introduced and new deployment environments are set up to require signatures with stronger cryptography. By increasing the lowest cryptographic strength supported in any target environment where the code is deployed, the use of legacy algorithms may be phased out and the security of the eco system is kept strong enough to resist attacks.
How PrimeKey can help
Learn more about PrimeKey's code signing solution, for preventing harmful firmware and software updates: