Cryptographic libraries and frameworks

When your private key is stored in DigiCert​​®​​ Software Trust Manager, a cryptographic library or framework generates a hash of the file you want to sign. The hash is sent to Software Trust Manager, where your private key signs it. The signed hash is then returned to your signing tool. This process keeps your private key protected while allowing you to create digital signatures for files using the cryptographic library or framework.