What is crypto agility in code signing?

Back to Wiki

Crypto Agility is a principle for gradually improving security and attack resistance in a secure infrastructure based on cryptography. Any cryptographic algorithm has weaknesses. As cryptographic research and computing power evolves the ability of existing algorithms to protect data privacy and integrity is reduced.

In an eco system for distribution and deployment of code, the use of multiple code signatures in parallel enables the code signing system to be crypto agile. New cryptographic algorithms are introduced and new deployment environments are set up to require signatures with stronger cryptography. By increasing the lowest cryptographic strength supported in any target environment where the code is deployed, the use of legacy algorithms may be phased out and the security of the eco system is kept strong enough to resist attacks.

Learn more:
Code signing solution

How can we help?

  • Hidden
    I accept that PrimeKey stores my information, and I accept cookies for analysis and business identification. Read more about cookies and privacy policy here.
Contact us