Installers, patches and updates are digitally signed or provided with cryptographic checksums as part of software development.
Topic
Secure software development
Applicable to
Non Classified, Official, Protected, Secret, Top Secret
History
Mar 2025
Installers, patches and updates are digitally signed or provided with cryptographic checksums as part of software development.
References to ‘application development’ were changed to ‘software development’.
Sep 2022
Installers, patches and updates are digitally signed or provided with cryptographic checksums as part of application development.
A new control was added covering software developers digitally signing or providing cryptographic checksums for installers, patches and updates as part of application development.