This document explains how to set up and configure Microsoft Authenticode with an HSM.
The Thales Hardware Security Module (HSM) integrates with Microsoft Authenticode to enable you to identify the publisher of a software component before it is downloaded from the Internet, and to verify that no one has altered the code after it has been signed. Authenticode relies on proven cryptographic techniques and the use of one or more private keys to sign and time-stamp the published software. It is important to maintain the confidentiality of these keys. The benefits of using an HSM with Microsoft Authenticode include:
- Protection for the organizational credentials of the software publisher
- Secure storage of the private key
- FIPS 140-2 level 3 validated hardware
- Provision of a trusted time-stamp to Authenticode