When do you think we'll see more standards introduced for code signing?

Within the next 6 months13%

Within the next 7-12 months62%

Within the next 1-2 years21%

I have no idea3%


1.4k views3 Comments

Head of Cyber Security in Manufacturing, 501 - 1,000 employees
Aviation is quite strong on it, with the topics around: ED-202, ED-203, ED-204, Part-IS and a few more. 

With high probability in Europe with the introduction of Cyber Resiliency Act i hope too see further adoption of code signing.
CISO in Software, 10,001+ employees
I would love to hear from the community on where/what forum they think these standards will appear or should reside in?
President and National Managing Principal in Software, 501 - 1,000 employees
I wish I really knew.  I feel like standards for assessing the certificate management side of Code Signing (i.e. WebTrust) have been around for sometime and are not used as much as they could be.  I'd be up for other standards, but the integrity of code has never been more important IMO.

Content you might like

Patch management: to reduce attack surface and avoid system misconfigurations39%

Malware and ransomware prevention: to protect endpoints from social engineering attacks58%

Malware and fileless malware detection and response: to protect against malicious software49%

Threat Hunting: to detect unknown threats that are acting or dormant in your environment and have bypassed the security controls33%

Not planning to change endpoint security strategy10%



Yes — always.38%

No, I don't mind sharing my data48%

Not yet, but I might opt out soon9%

Don’t know — I need to check!4%



CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
41k views131 Upvotes319 Comments