Online Support Helpline: +48 91 4472 850 Buy in Certum Reseller Network
$
Search
Advanced Search
My Cart
  • My orders

Standard Code Signing - set

Secure your software with a Standard Code Signing certificate, which provides:

  • Integrity
  • Elimination of the "Unknown publisher" message
  • Trust of your software users
  • Building a Microsoft SmartScreen Filter reputation

The set includes a Code Signing certificate and a cryptoCertum cryptographic card. 

New validity rules – information for buyers of 2- and 3year products

Starting from February 27, 2026, a single Code Signing certificate may be valid for a maximum of 459 days. Therefore, when purchasing a 2 or 3year product, one or more free reissues will be required during the service period. More details are available in the "Certificate Validity"

from  €169.00  gross from  €169.00  net
 gross  net
In stock
Card activation courier delivery
Standard Code Signing Set
main product photo

The Standard Code Signing certificate is a certificate that allows you to digitally sign software. The certificate is trusted by Microsoft and supports building the Microsoft SmartScreen Filter reputation.

By securing your software with a Standard Code Signing certificate, you can protect your code from unauthorized modification and provide users with the security of the downloaded application.

By signing your code with a Standard Code Signing certificate, people who download and install your software:

  • Wil not see “unknown publisher” warnings;
  • Will be sure that the software comes from a trusted source;
  • Will be guaranteed that the downloaded program hasn't been modified after its release;
  • Will be less likely to see the Microsoft SmartScreen Filter screen, which you eliminate by signing the software.

Read about the certificate issuance and usage information, available on the next product description tabs. 

Certificate Validity

From February 27, 2026, the maximum validity of Code Signing certificates is reduced to 459 days.

The 2 and 3year products remain available, but:

Certificates issued within the product must meet current validity limits.
Therefore, when using a 2 or 3year product, it will be necessary to perform one or more reissues during the product’s validity period.

This means that you purchase a product for 2 or 3 years, but you do not receive a single certificate valid for that entire time.
Instead, you gain the ability to issue multiple new certificates free of charge, each compliant with the current maximum validity.

Why is this changing?

These changes, introduced by the CA/Browser Forum in Ballot CSC-31, aim to strengthen the security of digital certificates and the software supply chain.

Example workflow for a 3 year product

  1. Day 0 – product activation
    You activate the product and issue the first certificate valid for up to 459 days.
  2. Before day 459 – required reissue
    You must issue a new certificate.
    • The process is free of charge.
    • The identity verification of your organization may be reused if it is still within its validity period.
    • You will be informed by email in advance about the need to perform a reissue, ensuring continuity of software signing.
  3. Issuance of the second certificate
    You receive a new certificate, again valid for up to 459 days.
  4. Before the next expiration
    You perform another reissue to obtain the next certificate.

Result

Through consecutive reissues, you maintain continuous software signing capability for the full 3 years, even though a single certificate cannot be valid longer than 459 days.
Full instructions for performing a reissue are available here.

Components of the set

Set includes:

  • Mini cryptographic card cryptoCertum 3.7 IDPrime 940C (the size of a mobile SIM card);
  • Card reader ACR40T-A1.
Use and benefits

Benefits of the Standard Code Signing certificate:

  • Protect the good name of the brand and build the company's reputation;
  • Gain the trust of users;
  • Provide reliable identification of the origin of the software;
  • Receive a guarantee of the integrity of your applications;
  • Make the installation of your software easier and ensure that it meets the requirements of the platforms on which it is installed;
  • Add a timestamp, so that after the certificate expires, your application can still be installed without warnings about the lack of a signature.

 

Compatibility:

  • Trusted by Microsoft, also for building the reputation of Microsoft SmartScreen Filter;
  • Trusted in Java;
  • Supports signing using tools installed in Linux/Unix and macOS systems;
  • Supports signing a number of file extensions, depending on the tool used, including: .exe, .msi, .dll, .jar, .war, etc. .
Technical requirements

Requirements:

  • proCertum CardManager application
  • Cryptographic card reader
  • Cryptographic card reader drivers
  • Cryptographic card cryptoCertum 3.5 or cryptoCertum 3.6 or cryptoCertum 3.7
  • Initialized common card profile

Specification:

  • Data in the certificate: natural person data, natural person and his/her organization data or organization data only
  • Compliant with the X.509 v.3 (RFC5280) standard
  • Minimum length of cryptographic keys: RSA 3072 bit
  • Key storage: CC EAL6+
  • Issued in accordance with the international WebTrustSM/TM standard and CA/Browser Forum

Note: Please be advised that in case of returning the Standard Code Signing set, it is not possible to return the cryptographic card and refund for it.

Verification

The verification process and documents required to issue a certificate are described in the instructions at: https://support.certum.eu/en/code-signing-required-documents/

Declaration of Conformity

Product name and type: Standard Code Signing - set
The set includes:
cryptoCertum 3.7 card (IDPrime 940C) and Mini ACR40T-A1 (USB type A) reader
Model number or other identifier: IDPrime 940C
Safety warnings Data loss:
Improper storage or use of cryptographic cards can lead to the loss of data stored on them.
Unauthorized access:
Loss, theft and lack of proper security features can allow unauthorized access to data stored on the card. Do not share your access data with others, and remember to use strong passwords.
Physical damage:
Store the card in conditions that prevent its destruction. Cryptographic cards are sensitive to mechanical damage, such as bending, breaking or flooding. Prolonged use of the card in unsuitable temperature conditions can lead to overheating and damage.
Instructions for use Malware infection:
Do not connect the card to untrusted devices. Connecting a card to an unprotected device can result in a malware infection.
Updated software:
Use only up-to-date software. Using a card with outdated software can increase the risk of vulnerability to cyberattacks.
Inappropriate disposal:
Use the card according to the handling instructions. Improper removal of the card from the reader can lead to damage to the data or the card itself.
Compliance information This product complies with the requirements of Regulation of the European Parliament and of the Council (EU) 2023/988 of May 10, 2023 on general product safety.
The product also meets the relevant requirements of applicable harmonized standards and/or other EU laws:
  • Common Criteria EAL6 (ISO/IEC 15408);
  • aseCSP Minidriver (zgodność z SafeNet Minidriver);
  • GlobalPlatform 2.2.1;
  • Java Card 3.1.0;
  • ISO/IEC 7816 (części 1–4, 8).
Model number or other identifier: ACR40T-A1 (USB type A)
Safety warnings Avoid physical damage:
Protect the reader case from damage and destruction, the USB connector from damage. Do not connect the reader to the device if the case, connector or cable is damaged.
Protection against moisture and heat:
The USB reader should be stored in a dry place, away from sources of moisture and heat. It is recommended to use a protective case to prevent mechanical damage.
Use in accordance with the intended use of the equipment:
It is forbidden to modify hardware or software, to use in conditions that do not comply with the instructions.
Instructions for use Connecting and disconnecting:
Connect and disconnect the reader to the device according to the device's instructions.
Card compatibility:
Only standard smart cards that meet normative requirements can be inserted into the reader. It is forbidden to insert any other items into the reader.
Software updates:
Regularly updating the USB reader's software is key to ensuring its compatibility and security. Check the availability of updates on the manufacturer's website and install them according to the instructions.
Compliance information This product complies with the requirements of Regulation of the European Parliament and of the Council (EU) 2023/988 of May 10, 2023 on general product safety.
The product also meets the relevant requirements of applicable harmonized standards and/or other EU laws:
  • ISO 7816,
  • USB CCID,
  • PC/SC,
  • Microsoft WHQL,
  • TAA,
  • UL 62368,
  • Microsoft® WHQL
  • CE,
  • UKCA,
  • FCC,
  • RoHS,
  • REACH,
  • VCCI,
  • WEEE.
Information on service life and warranty

The Guarantor shall ensure the efficient operation of the Product for which this warranty card is issued, provided that the Product is used for its intended purpose and in accordance with the recommendations contained in the Product documentation or in the Online Store.

Standard manufacturer's warranty:

1 year – for corporate customers,

2 years – for individual customers.

Manufacturer or importer data:

Company name: Asseco Data Systems

Mailing address: Królowej Korony Polskiej 21, 70-486 Szczecin

Contact email address: infolinia@certum.pl

Phone no.:+48 914 801 340
To Top