Code signing: Why it matters for mobile developers

An Article for TechTarget by Denim Group’s CTO, Dan Cornell

April 2013

Code signing creates a system of trust among mobile users, but it doesn’t bolster the security of the app itself, says expert Dan Cornell.

Code signing is the process of attaching a digital signature to application binaries. To understand digital signatures, it is helpful to think first about physical signatures and how they are used with legal documents. A signature on a legal document should indicate that the signer has read the document, understands it and agrees to be bound by the terms of the agreement.

Read Article>> 

About Dan Cornell

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.