Are there any affordable options for #ssl #codesigning my #dotnet apps without spending a fortune?

I just want something to sign some personal apps that family members use so don’t really want to be spending £120+ each year.

I can self sign them but not sure this achieves anything.

I fear there is no option but to pay up

We've developed a solution to make the MacOS Ventura workaround (https://sbgrid.org//wiki/macos) for code-signing issues unnecessary and are currently working our way through the collection. If you see a "this application is damaged" message, please let us know at bugs@sbgrid.org and we'll prioritize a fix for that application.

#SBGrid
#Science
#codesigning
#software

RT @contracts2_0
Practitioners are valuable #partners for #codesigning novel contracts 🤝🌱
Discover why a well established #participatory process is worth the effort in #VoicesFromTheField 8.

https://www.youtube.com/watch?v=Pe30LBWQz1Y

@essrg @ZALF_leibniz @ProjectConsole @effectH2020 @HorizonEU @INBOVlaanderen

GitHub code-signing certificates stolen (but will be revoked this week) - There was a breach, so the bad news isn't great, but the good news isn't too bad... https://nakedsecurity.sophos.com/2023/01/31/github-code-signing-certificates-stolen-but-will-be-revoked-this-week/ #certificatebreach #vulnerability #codesigning #compromise #microsoft #dataloss #github

@timbray I've been signing commits for quite a while, and I find this really important. #GPG #CodeSigning

When an app on #macOS is adhoc signed, what determines if it is allowed to run? I see mentions of a kernel cache, but if that's it, there must also be something to fill it?

For example, I compile a simple C app, the linker auto-signs it, when/how is it trusted?

I have a scenario where a linker-signed binary is rejected, but resigning it (with `codesign`) works, and it's a complete mystery to me why.

#CodeSigning

As the article says, #certificate management is hard, somewhat opaque, and can be challenging to manage. Abuses of the system will be around awhile. #infosec #pki #codesigning #malware
https://arstechnica.com/information-technology/2022/12/microsoft-digital-certificates-have-once-again-been-abused-to-sign-malware/

Microsoft digital certificates have once again been abused to sign malware - Enlarge (credit: Getty Images)

Microsoft has once again been c... - https://arstechnica.com/?p=1904163 #digitalcertificate #codesigning #microsoft #malware #biz&it

Cool stuff happening with code signing #sigstore #supplyChain #codeSigning https://blog.trailofbits.com/2022/11/08/sigstore-code-signing-verification-software-supply-chain/

What SolarWinds Tells Us About Securing the Software Development Supply Chain - The recent SolarWinds attack highlights an Achilles heel for enterprises: software update... https://feeds.feedblitz.com/~/654147256/0/thesecurityledger~What-SolarWinds-Tells-Us-About-Securing-the-Software-Development-Supply-Chain/ #applicationdevelopment #certificateauthority #softwaredevelopment #digitalcertificate #cybersecurity #technologies #codesigning #supplychain #solarwinds #topstories #companies

Lenovo, HP, Dell Peripherals Face Unpatched Firmware Bugs - A lack of proper code-signing verification and authentication for firmware updates opens the door ... more: https://threatpost.com/lenovo-hp-dell-peripherals-unpatched-firmware/152936/ #improperauthentication #remotecodeexecution #vulnerabilities #firmwareupdates #cryptography #cyberattacks #verification #codesigning #peripherals #eclypsium #unpatched #lenovo #dell #hp