February 27, 2018
Software runs our modern-day world. Software vendors frequently distribute software and software updates via online channels. Recent security-related incidents demonstrate the need to protect the integrity, authenticity and provenance of software products. A common mechanism to protect software (code) is to apply a digital signature. Code is signed to identify who prepared the code and to provide assurance that the code has not been maliciously modified.
In support of a newly awarded task order from the National Institute of Standards and Technology (NIST), Electrosoft is developing security guidance and best practices related to the implementation and use of code signing systems. Such guidance will assist software vendors in implementing code development and distribution systems that are less vulnerable to malicious attacks. The guidance will also offer stronger mechanisms for consumers to vet code prior to installation and use.
Electrosoft delivers a diversified set of technology-based solutions and services differentiated by thought leadership and innovation. Since 2001, we have coupled our domain knowledge and experience with proven, mature management practices to deliver the right solutions on time and within budget. These practices include an ISO 9001:2015 registered Quality Management System (QMS) and Capability Maturity Model Integration (CMMI) Level 3 assessed processes. Headquartered in Reston, Virginia, Electrosoft is an 8(a) certified Small Disadvantaged Business (SDB) and an 8(m) certified Economically Disadvantaged Woman Owned Small Business (EDWOSB). For more information about Electrosoft, visit our website at www.electrosoft-inc.com.