Bleeping Computer

GitHub revokes code signing certificates stolen in repo hack

GitHub says unknown attackers have stolen encrypted code-signing certificates for its Desktop and Atom applications after gaining access to some of its development and release planning repositories.
Infosecurity-magazine.com

Code Signing: How to Respond to the Hidden Threat

How do you know the code you’re using can be trusted? It’s a very important question – organizations and developers need to know code is genuine and hasn’t been tampered with, or they could risk ...
WeLiveSecurity

Code certificate laissez-faire leads to banking Trojans

Code signing certificates are used to authoritatively identify a software publisher and to guarantee that the content signed with the certificate has not been tampered with between the time it was ...
Purdue University

InCommon Certificate Service

Purdue is a member of the InCommon Federation. The InCommon Federation provides unlimited certificates via their InCommon Certificate Service to its member institutions for a single price. Server and ...
InfoWorld

Finally! A minimum standard for certificate authorities

IT admins, take note: The CA Security Council will require you to prove you are taking appropriate steps to secure your private keys from theft or misuse The Certificate Authority Security Council has ...