SHA 256 Support For Symantec Code Signing Certificates is Here

Secure Hash Algorithm 256 (SHA-2 or SHA-256) support on Symantec Code Signing for Individuals and Symantec Code Signing for Organizations is available starting April 1st, 2013 on the following Symantec Code Signing platforms: Microsoft® Authenticode™, Java™, Adobe® Air® and Microsoft® Office Visual Basic® for Applications (VBA). You will be able to select the option for SHA-2 through the ordering pages, reissue process and via the Application Programmatic Interface (API) for QuickOrder, QuickInvite and Reissue.

SHA-2 was published by National Institute of Standards and Technology (NIST) as U.S. Federal Information Processing Standard.

Please note that some older applications and operating systems do not support SHA-2, for example, Windows™ XP Service Pack 2 or lower does not support the use of SHA-2. Java SDK 1.4.2 or higher needs to be installed and used on the server for SHA-2 support for Java server support.

If you are using a Windows environment, please refer to the following blog for SHA-2 deployment:

Please refer to  for SHA-2 deployment on Java servers.

In addition, Apache™ version 2.x or higher is required to support SHA-2 on Apache based servers and Open SSL 1.1.x will be required  for certificate signing request and private key generation.

SHA-2 support is available to you as option in securing your code signing certificates. Please select the secure hash algorithm that is aligned with your corporate policy.

Leave a Reply