Enable Code Signing for application configuration data and scripts [Removed in Security Center 1.3]

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 1 minute to read

    • Manage Code Signing for application configuration data and scripts on your instance.

    Code Signing can help improve security by validating sensitive application configuration data and scripts before they are used. Code Signing creates digital signatures for the data which later are checked to confirm the authenticity and integrity of the data. This verification prevents malicious data or scripts from being used on the instance which may lead to full compromise of the instance.

    Use the com.snc.kmf.signature.validation.flag property to manage Code Signing for application configuration data and scripts. When this property is to set to true, Code Signing is enabled for application configuration data and scripts.

    Warning:
    This is a safe harbor property, meaning the value can't be altered once it's changed. It is non-revertible.

    More information

    Attribute Description
    Configuration name com.snc.kmf.signature.validation.flag
    Configuration type System Properties (/sys_properties_list.do)
    Data type boolean
    Recommended value true
    Default value false
    Category Malicious code
    Security risk
    • Severity score: 6
    • CVSS score: Medium
    • Security risk details: Setting this property to true enables Code Signing, which helps improve security by validating sensitive application configuration data and scripts.
    Dependencies and prerequisites None