What is code signing?
Code signing is a technology used to verify the authenticity of the publisher of a download in order to avoid a computer virus or malware. Software signed with a digital signature is considered safe to download. Unsafe or unrecognized software publishers may be identified by a pop-up window indicating that the publisher or author was not recognized and warning the user that the download was from an appropriate source.
Code signing software can identify hash algorithms (types of electronic signatures) and authors of publication codes through digital certificates. These certificates use protection technologies such as public and private encryption keys. The issuer's private key can be identified from the digital certificate. This protection technology has largely been adapted and is only one of several measures to prevent the spread of computer viruses.
Distribution security is seen as a major benefit of code signing. It makes mirror sites impossible and gives software developers a lot of control over their copyrighted works. However, signing code cannot promise complete protection from aggressive and complex viruses. It mainly makes sure that downloads have not been changed.