Changes related to Code Signing certificates

Starting June 1, 2023, a new regulation will come into effect for the issuance of Code Signing certificates. The CA/Browser Forum has decided that from this date, it will be mandatory for all new Code Signing certificates to be stored on a Hardware Security Device.

The reason for this is the impact of stolen private keys from software-based solutions, where private keys are often stored as separate files.

The new regulation already applies to EV Code Signing certificates, which have long been issued on so-called PKI tokens. All orders placed from May 15th will be issued under the new regulation, making it no longer possible to create a CSR and private key yourself.

Due to the requirement, a price increase will also be implemented to cover the costs of shipping, token provisioning, and the actual hardware.