October 2018

New code signing hierarchy

DigiCert will be updating our code signing PKI hierarchy to modernize and streamline our code signing certificate offerings, and begin the integration with DigiCert’s platforms now that the acquisition is complete. We expect to issue all new code signing certificates from DigiCert’s hierarchy by October 31, 2018.

These changes apply to all code signing products - Microsoft Authenticode, Oracle Java, and Extended Validation.

For information on changes to the PKI hierarchy, visit this Knowledge Base article.

What do I need to do?

No action is required for most code signing certificate customers. New, renewed, and reissued certificates will be automatically issued from the new DigiCert hierarchy starting October 2018.

If you have development or other internal environments that use the Symantec hierarchy, make sure you install the new DigiCert roots.

Are my current certificates and signed files affected?

There is no impact to existing code signing certificates or the validity of signed files, whether timestamped or otherwise. Existing code signing certificates are valid until their expiration dates. Files already signed are still viewed as secure and verified.

Organization and domain consolidation

As we complete our transition into DigiCert, we’re consolidating organization and domain authentication processes for all certificate types, which will simplify organization and domain statuses in the Managed PKI for SSL Control Center.