Back
-
Solutions
Back
Digital Trust for:
Enterprise IT, PKI & Identity
Code & Software Signing
Documents & eSignatures
IoT & Connected Devices
Manage PKI and Certificate Risk in One Place
- Buy
-
Insights
BackResources
Explore these pages to discover how ÃÛÌÒTV is helping organizations establish, manage and extend digital trust to solve real-world problems.
-
Partners
Back
ÃÛÌÒTV Partner Network
- Support
- Contact us
-
Language
DIGICERT ® SOFTWARE TRUST MANAGER
Secure Code Signing and Policy Governance
Protect your software supply chain with integrated scanning, signing, governance and compliance.
ÃÛÌÒTV Software Trust Manager
Ìý
Ìý
The ÃÛÌÒTV® ONE Platform
Trust Your Software
Govern code signing and release trusted software with ÃÛÌÒTV
From Chaos to Flow
Software signing begins with keypair storage, but true software trust demands more—managing complex global teams, vulnerabilities, and evolving regulations—all while preparing for Post-Quantum Cryptography (PQC).
You need a solution that transforms costly chaos into a streamlined flow that matches the pace of your software development needs.
Use Cases
Ìý
CENTRALIZED GOVERNANCE
Ensure consistency and compliance by encoding best practices into your team- and role-based access control (RBAC).
THREAT SCANNING
Check that your software is free of vulnerabilities, malware, and license issues prior to release when it is more economical to fix.
POLICY-DRIVEN SIGNING
Manage and securely store your public and private certificates and keypairs, including automatic re-keying and systematic PQC-ready encryption updates.
INTEGRATION & AUTOMATION
Seamlessly integrate threat scanning and code signing into your release infrastructure and CI/CD processes, with automation to keep the flow going.
The ÃÛÌÒTV Difference
Advanced Code SigningÌý
Scan for threats, manage SBOMs, store keys compliantly, and control access centrally–all in addition to regular and hash code signing.
Ìý
Ìý
Policy-driven Privileges
Enforce security policies by embedding privileges into user profiles while demonstrating compliance to auditors with signature and activity logs.
Ìý
Modern IntegrationsÌý
Integrate code signing and threat scanning into your DevOps pipelines. Shave time off producing releases by automating these activities. We connect to most modern CI/CD platforms.
Ìý
Compliance in Action
Learn how Software Trust Manager embeds your policies into profiles that govern access and action. See where threat scanning results guide you to fix the issues.
Sign Secure Software
Unlike most signing tools, Software Trust Manager includes threat scanning and SBOMs, in addition to key and certificate management, and granular access control, for creating a policy-driven approach to securely releasing software.
Gain Control with Centralized Governance
Enforce enterprise signing policies while enabling decentralized operations.
- Prevent Unauthorized Signing: Flexible, role-based policies determine signing permissions.
- Enforce Signing Guardrails:Sign releases only when rules, like threat scanning criteria, are met.
- Enable Approval Workflows:Customize multi-level approval workflows for riskier actions.
Boost Security with Integrated Scanning
Understand malware and vulnerability risks before you sign.
- Scan Everything:ÌýInspect projects, open source, 3rd party libraries, AI models, containers, and binaries.
- Uncover Vulnerabilities:ÌýFlag malware, CVEs, exposed secrets, and misconfigurations before release.
- Generate & Sign SBOMs:ÌýList software bill of materials, improve transparency, and support compliance.
Manage Signing with Policy-Driven Controls
Sign with confidence by orchestrating policies, profiles, and compliance.
- Secure Signing Keys:ÌýSecure all your keys in a centralized, FIPS/CC-compliant cloud-based HSM.
- Manage Key Lifecycles:ÌýAutomate certificate and key lifecycle for expiry, rotation, and renewal.
- Ensure PQC Readiness:ÌýBe PQC-ready with NIST-approved quantum signing algorithms.
Streamline Delivery with Modern Integrations
Make threat scanning and code signing part of the CI/CD process.
- Integrate with DevOps:ÌýSign and scan from within your build and release tools.
- Enforce Signing Policies:ÌýAutomatically apply signing, security, and access policies.
- Improve Team Efficiencies:ÌýStreamline the scan, sign, and deliver workflow with automation.
Business Outcomes
Protect Your Reputation
Reduce your attack surface with code scanned for malware, vulnerabilities, and exposed secrets.
Comply With Regulations
Ensure consistency and compliance across your certificate and key landscape with centralized governance and policies.
Lower Remediation Costs
Avoid the excessive costs of fixing security issues in released software and track released components in SBOMs.
Operational Control with Flexibility
DeNA moved from in-office EV code signing with dongles to signing anywhere with secure cloud keypairs, while gaining more control and increased signing speed.
“The frequency of releases, such as minor bug fixes and feature additions, which often occur several times a week, made it a hassle forÌýoperations to physically sign off."
Atsushi Ono, Technical Director and Senior Project Manager, Coopel Business Development Promotion
Related Resources
-
The most-trusted global provider of high-assurance TLS/SSL, PKI, IoT and signing solutions.Ìý
-
© 2025 ÃÛÌÒTV. All rights reserved.
Legal Repository Audits & Certifications Terms of Use Privacy Center Accessibility Cookie Settings