EV Code Signing

The highest trust code signing — instant SmartScreen reputation, kernel-mode driver signing, and hardware-token-free CI/CD via cloud HSM. Full organization identity on every installer.
Configure & Buy See how it works

Key Benefits

Instant SmartScreen reputation

EV certificates receive immediate SmartScreen reputation — zero download warning on first install.

All vital company information displayed

Company name, address, and identity are fully verified and displayed on every signed binary.

Kernel-mode driver signing

Required for Windows 10 kernel-mode and user-mode drivers — only EV certificates qualify.

Windows Hardware Dev Center access

EV certificate required for Dashboard Portal submission and driver distribution.

Who Is It For?

Enterprises distributing to end users

Needing instant download trust without SmartScreen friction from day one.

Driver & firmware publishers

EV is the only certificate type for Windows kernel-mode and user-mode drivers.

DevOps & CI/CD teams

Needing EV-level signing in automated pipelines via cloud HSM — no physical token.

Windows Hardware partners

Requiring Dashboard Portal access for driver submission and certification.

Purchase & Pricing

1. Select Certificate Duration

1 Year
$349.00/yr
2 Years
Save 14%
$299.00/yr
3 Years
Save 29%
$249.00/yr
4 Years
Save 43%
$200.00/yr
5 Years
Save 57%
$149.00/yr

2. Select Key Storage & Delivery (optional)

YubiKey

Physical Token
+ $279.00
YubiKey Quantity $279 each

YubiKey & EV certificates: YubiKey tokens are fully suitable for OV code signing. If you require EV code signing ā€” particularly for kernel-mode driver signing (Microsoft HLK) ā€” a YubiKey may not meet those requirements. Contact us to discuss EV-compatible token options.

Delivery Queue

Standard

3ā€“5 business days after validation (Continental US)

Express + $329.00

1 day after validation

Bring Your own Cloud HSM

Self-managed infrastructure
+ Starting at $500.00

SSL.com must attest your key to your chosen provider before issuing the certificate. This fee is a one-time charge per order.

AWS CloudHSM
Attestation Fee
$1,500
Google Cloud HSM
Attestation Fee
$1,500
Azure Dedicated HSM
Attestation Fee
$500.00

What is attestation? Before issuing your certificate, SSL.com verifies that your private key was generated and is stored inside your cloud HSM ā€” not exportable to software. This one-time attestation fee covers the verification process with your chosen provider.

Looking for a simpler option? SSL.com eSigner for Code provides cloud-based signing with no HSM to provision, no attestation fee, and a lower total cost for most teams.

Bring your own on-premises HSM

SSL performs an attestation ceremony for your compliant on-premises HSM.
+ Custom Pricing

Please contact sales.

3. Validation Speed (optional)

Choose how quickly your organization or identity is validated before your certificate is issued.

Standard

3ā€“5 day validation Ā· 2ā€“3 day US shipping Validation completed after all agreements, entity info submitted, and a successful callback to a listed phone number. International shipping tracked; delivery subject to customs. Included

Expedited

2 business day validation Ā· overnight US delivery 2 business days priority validation from first complete submission and callback. Token shipped overnight in continental US. +$599.00

Order Summary

ProductEV Code Signing
Term2 years
Rate$116.00/yr
Savingsā€”
Key storageeSigner Cloud Signing
Signing subscription$15.00/mo
ValidationStandard
Validation feeIncluded
Total $1,464.00
+ eSigner Cloud Signing - Tier 1 Subscription - $15.00/mo

How It Works

1 — Purchase

Select EV duration and complete your order.

2 — Organization & EV validation

SSL.com validates your organization identity using extended validation procedures.

3 — Certificate issued

Certificate issued with your verified organization details. Must be stored on a FIPS 140-2 validated hardware token or cloud HSM.

4 — Sign your code

Use signtool.exe with your hardware token.

5 — Timestamp

Always timestamp at signing — EV signed code remains trusted permanently with a valid timestamp.

Compliance & Standards

CA/B Forum EV Code Signing Requirements

Issued under CA/B Forum EV Code Signing Baseline Requirements.

Microsoft Authenticode (EV)

Required for kernel-mode drivers and immediate Microsoft SmartScreen reputation.

Windows Hardware Dev Center

EV certificate required for portal access and driver submission.

WebTrust for Code Signing BR

SSL.com is audited annually by BDO under WebTrust for Code Signing Baseline Requirements.

Frequently Asked Questions

CA/B Forum EV requirements mandate that EV private keys be stored in a FIPS 140-2 Level 2 validated HSM. A cloud HSM satisfies this requirement without physical hardware.

With OV, SmartScreen reputation builds over time. With EV, reputation is immediate from the first download — zero user-facing SmartScreen warnings.

No — if you timestamp at signing time, the signature remains valid indefinitely even after the certificate expires.

Yes — Microsoft requires an EV code signing certificate for Windows 10 kernel-mode drivers. No other certificate type qualifies.

Ready to get EV Code Signing?

Instant SmartScreen reputation, kernel-mode driver signing, and full organization validation — the highest trust code signing available.
Configure & Buy

Related Products

IV Code Signing

Individual developer — personal name, no business entity required.

Learn more

OV Code Signing

Organization signing without EV requirements — your company name on every installer.

Learn more

Sole Proprietor EV

Same EV trust for individuals — no registered business entity required.

Learn more

We’d love your feedback

Take our survey and let us know your thoughts on your recent purchase.

Take Survey
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognizing you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.

For more information read ourĀ Cookie and privacy statement.

3rd Party Cookies

This website uses Google Analytics & Statcounter to collect anonymous information such as the number of visitors to the site, and the most popular pages.

Keeping these cookies enabled helps us to improve our website.

Show details
Powered by  GDPR Cookie Compliance