The Scary and Terrible Code Signing Problem You Don't Know You Have

SSL 3.0 / TLS 1.0 certificates are built on the X.509v3 PKI standard and provide the framework that the code signing process uses. Code signing uses PKI and X.509v3 certificates issued by a trusted certificate authority to validate that the code being installed on a device comes from a trusted...

By

Sandra Dunn

October 28, 2015

All papers are copyrighted. No re-posting of papers is permitted

Related Content

Cyber Defense Essentials

October 6, 2021

Can We Move Past Blocklists to Automated Takedowns?

Penetration Testing and Ethical Hacking

October 6, 2021

Striking from the Shadows: Applying and Analyzing Mitigation Techniques to Bypass Antivirus Payload Detection

September 16, 2021

Cloud Multi-Account Policy Enforcement