Click the PKI-by-PrimeKey-SignServer-logo to visit
Search for:
Click here to learn about PrimeKey Support Services!

News and Info

SignServer 3.7.0 is now out! Visit the download section to get SignServer.
Posted: 2015-09-30

Main Features of SignServer!

See complete list of features
Posted: 2014-10-24

Authenticode Code Signing with SignServer!
Read our Tech Blog on Authenticode Code Signing with SignServer, or
check out the turn-key Code Signing Appliance.
Posted: 2015-07-05

What is SignServer?

SignServer is an application framework performing cryptographic operations for other applications. It's intended to be used in environments where keys are supposed to be protected in hardware but it isn't possible to connect such hardware to existing enterprise applications or where the operations are considered extra sensitive so the hardware has to be protected more carefully. Another usage is to provide a simplified method to provide signatures in different application managed from one location in the company.

SignServer is based on loadable modules that perform various operations. SignServer has ready to use modules for:

  • TimeStamp Authority: RFC 3161 and MS authenticode compliant
  • Signers for different documents: PDF, XML, XAdES (BES and T), ODF, OOXML
  • ePassport Document Signer: MRTD Document Signer, Master List (CSCA ML) Signer
  • Code Signing: Portable Executables (Authenticode)
  • General purpose signers: CMS, Plain signatures
  • Validators for documents: XML, XAdES-BES, XAdES-T

The modules can be used using HTTP or web services interfaces. SignServer also contains functions for:

  • Certificate Validation Service Framework for validating certificates using CRLs or OCSP

SignServer has been designed for high-availability and can be clustered for maximum reliability.

Different kinds of tokens can be used to perform sign and crypto operations:

  • Soft token using JKS or PKCS12 files.
  • PKCS#11 HSM tokens, such as the Utimaco CryptoServer, SafeNet ProtectServer and Luna, Thales nShield or AEP KeyPer.

What's new in SignServer 3.7?

Some of the major new features in version 3.7 are:

  • Individual keys and certificates support
  • Batch signing support in client CLI
  • Initial support for building using Maven
  • GUI improvments
  • Upgraded dependencies

More information can be found in the manual or in the changelog.

Open Source Software

SignServer is OSI Certified Open Source Software. OSI Certified is a certification mark of the Open Source Initiative.

The source code of SignServer is hosted in a (mostly) public Subversion repository and downloads including ones with the complete source code can be downloaded from SourceForge.

Support and development

Commercial support, development, integration and maintenance for SignServer is available through PrimeKey Solutions.