Check Point® Software Technologies Ltd. announced new Infinity Platform capabilities to accelerate zero trust, strengthen threat prevention, reduce complexity, and simplify security operations.
AppViewX SIGN+ Released
November 15, 2023
AppViewX launched AppViewX SIGN+, a flexible and secure code signing solution that enables DevOps teams to quickly and easily secure their software supply chain.
With multiple deployment options, including code signing as a service, AppViewX SIGN+ seamlessly integrates into DevOps processes to enable frictionless code signing to validate the integrity of software applications and their components.
“The recent CA/Browser (CA/B) Forum requirements for code signing certificates and keys to be stored on secure hardware is in direct response to increasing threats targeting weak code signing processes and critical software supply chain vulnerabilities,” said Ravishankar Chamarajnagar, Chief Product Officer at AppViewX. “Code-signing certificates and keys have become high-value targets for attackers, as evidenced in the SolarWinds compromise. With AppViewX SIGN+, we are offering a fully compliant code signing solution that allows developers to easily sign code, maintain speed and agility, and prove the integrity, validity, and security of code throughout the software development lifecycle.”
Using a centralized and integrated approach, AppViewX SIGN+ simplifies and secures code signing for source code, binaries, containers, and firmware. AppViewX SIGN+ integrates with native signing tools, CI/CD pipelines and workflows to ensure all code is signed before deployment, and meets security and compliance requirements. It also provides full visibility and policy-driven control over private key storage, code-signing certificate management, and access.
AppViewX SIGN+ provides the following capabilities and benefits:
Secure and Protected Code Signing
-Supports private and public code signing certificates for both internal and external use cases
- CA/B Forum compliant private key protection – FIPS 140-2 (and higher) certified HSMs
- Timestamping to support long term validation of signatures
- Supports all standard asymmetric cryptographic algorithms, RSA, ECDSA, and DSA, and is Post-Quantum Cryptography ready
Seamless and Flexible Deployment and Integrations
- Deployment options include on-premises and SaaS offerings for enterprise DevOps teams and outsourced development operations
- Integration with native signing tools and CI/CD pipelines to integrate code signing in build processes
- Option to upload and sign code in the AppViewX SIGN+ console
Code Signing Policy and Access Control
- Centralized control of code signing certificates and private keys
- Role based access control and policy controlled signing to ensure user permissions and authorization and key protection
- Visibility into signing events including usage, signing and audit trails
With flexible deployment and integration options, AppViewX SIGN+ is available now and is part of the AppViewX Digital Trust Platform that includes AppViewX CERT+, AppViewX PKI+, and AppViewX KUBE+ for automating PKI and certificate lifecycle management across complex hybrid multi-cloud environments.
Industry News
February 04, 2025
February 04, 2025
WaveMaker announced the release of WaveMaker AutoCode, an AI-powered plugin for the Figma universe that produces pixel-perfect front-end components with lightning fast accuracy.
February 04, 2025
DoiT announced the acquisition of PerfectScale, an automated Kubernetes (K8s) optimization and governance platform.
February 03, 2025
Parasoft earned a top spot as a Leader and Fast Mover in the latest GigaOm Radar Report on API Functional Automated Testing.
February 03, 2025
Linux Foundation Europe and OpenSSF announced a global joint-initiative to help prepare maintainers, manufacturers, and open source stewards for the implementation of the EU Cyber Resilience Act (CRA) and future cybersecurity legislation targeting jurisdictions around the world.
January 30, 2025
OutSystems announced the general availability (GA) of Mentor on OutSystems Developer Cloud (ODC).
January 30, 2025
Kurrent announced availability of public internet access on its managed service, Kurrent Cloud, streamlining the connectivity process and empowering developers with ease of use.
January 29, 2025
MacStadium highlighted its major enterprise partnerships and technical innovations over the past year. This momentum underscores MacStadium’s commitment to innovation, customer success and leadership in the Apple enterprise ecosystem as the company prepares for continued expansion in the coming months.
Traefik Labs Delivers API Gateway and Ingress Controller Integration for Nutanix Kubernetes Platform
January 29, 2025
Traefik Labs announced the integration of its Traefik Proxy with the Nutanix Kubernetes Platform® (NKP) solution.
January 28, 2025
Perforce Software announced the launch of AI Validation, a new capability within its Perfecto continuous testing platform for web and mobile applications.
January 28, 2025
Mirantis announced the launch of Rockoon, an open-source project that simplifies OpenStack management on Kubernetes.
January 28, 2025
Endor Labs announced a new feature, AI Model Discovery, enabling organizations to discover the AI models already in use across their applications, and to set and enforce security policies over which models are permitted.
January 27, 2025
Qt Group is launching Qt AI Assistant, an experimental tool for streamlining cross-platform user interface (UI) development.
January 27, 2025
Sonatype announced its integration with Buy with AWS, a new feature now available through AWS Marketplace.
January 27, 2025
Endor Labs, Aikido Security, Arnica, Amplify, Kodem, Legit, Mobb and Orca Security have launched Opengrep to ensure static code analysis remains truly open, accessible and innovative for everyone:
