GlobalSign Brazil and DINAMO Networks Collaborate to Deliver Code Signing Solution Compliant with New CA/B Forum Standards Recently, the CA/B Forum, a voluntary organization comprising leading Certification Authorities (CAs) and vendors of Internet browser software, updated its Code Signing security standards. These changes have significant implications for the generation and management of digital certificates. The first major shift involves the installation of Code Signing certificates across multiple machines. Previously permissible with Trusted Platform Modules (TPM), retrieval is now restricted to FIPS 140-2 Level 2-compliant cryptographic devices, tokens, or Hardware Security Modules (HSMs). Additionally, the CA/B Forum has increased the required key pair size from 2048 bits to 3072 bits.
In response to these changes, GlobalSign, a global leader in identity security, digital signatures, and IoT solutions, has partnered with DINAMO Networks, a Brazilian expert in digital security and encryption. DINAMO Networks is known for manufacturing HSMs in Brazil. Together, they are addressing a critical market need by offering an innovative solution: the DINAMO Pocket, a mini HSM that supports GlobalSign Code Signing and complies with the new CA/B Forum regulations. This device allows secure and flexible management of up to 200 digital certificates.
“The CA/B Forum’s updates have caused notable issues in the Brazilian market, such as shortages of tokens and increased inspections by the Federal Revenue Service, which have hindered the import of these devices. We aim to offer developers a practical alternative produced locally and compliant with international security standards, enabling them to continue signing their code in line with CA/B Forum requirements,” explains Luiza Dias, CEO of GlobalSign Brazil.
Marcelo Buz, Director of ID and Electronic Signature at DINAMO Networks, notes that while many clients are interested in HSMs, traditional models can cost over R$ 100,000, making them inaccessible for smaller companies. “The DINAMO Pocket represents significant savings and adds value to our product range,” Buz adds. He also mentions that GlobalSign Code Signing can be stored in the cloud, which may influence the choice between cloud and DINAMO Pocket based on the consumer’s profile and certificate renewal time, which ranges from one to three years.
Product and Partnership
The DINAMO Pocket is designed to store GlobalSign Code Signing products, enabling multiple developers to access the same digital certificate while ensuring governance and access traceability. Code Signing certificates use unique encryption to link the manufacturer’s identity to the software, enhancing credibility during installation, verifying legitimacy, and ensuring code integrity. The DINAMO Pocket’s compact size, similar to that of a TV modem, makes it easy to integrate into various environments.
“Combining GlobalSign’s digital certificate security with our HSM’s convenience offers developers a robust solution for protecting and verifying their products. We are confident in this partnership as our technology is already utilized in major projects across Brazil,” says Marco Zanini, CEO of DINAMO Networks.
Market estimates indicate that approximately 7 million Code Signing certificates are issued globally each year, with Latin America representing 10% of this market and Brazil being a major issuer. “We anticipate a positive reception for the DINAMO Pocket among developers, with an initial goal of capturing at least 2% of the Brazilian Code Signing market. This partnership with GlobalSign Brazil marks an exciting step forward,” Zanini adds.
Dias concludes, “We are thrilled with this partnership, as it aligns with our goal to address market needs and adapt to regulatory changes. The DINAMO Pocket stands out for its cost-effectiveness and represents a significant advancement in our offerings.”
For more information about the DINAMO Pocket and its capabilities, visit the GlobalSign Brazil and DINAMO Networks websites.