Nobody wants to download something that will affect their computer negatively and Operating Systems are well aware of this. That’s why they’ve gone out of their way to generate warning messages anytime someone attempts to download something that may not come from a trustworthy source.
To software developers and engineers, these messages can mean the difference between someone adopting your software and someone forgetting it in their download folder. And losing users is bad for business—bad for the bottom line. So how do you become a trustworthy source? How do you prevent those messages and alerts from popping up before someone attempts to run YOUR software or code?
Individual Validation is a little different than Organizational Validation because you’re not proving that you’re a company, rather you’re a single developer that must prove your identity to the CA. We’ll go into how in each individual section, but for now, just know there are essentially three different components.
PLEASE NOTE only Sectigo/Comodo will issue a Code Signing Certificate to an individual.
The first requirement for all Individual Validated Code Signing Certificates is Identity Authentication. Here the CA will attempt to verify the identity of the individual applying for the certificate.
What is Identity Authentication?
To satisfy the Identity Authentication requirement, the CA will need to make sure that you are who you say you are. That means verifying the personal identity of the applicant.
There are two options for completing Individual Validation.
1. Submit the following documents to Sectigo:
- Copy of valid government-issued photo ID, such as driver's license, passport, or military ID. You may redact sensitive information, however your photo, name, address, and expiration date of the ID must be visible.
- Photo of yourself holding the ID so that all information and the photo are readable
2. If your photo ID does not have a valid address, you must complete the Face to Face Verification form. The Face to Face form and all associated documents must be signed and notarized by an authorized notary in your area. Required documents include:
- Face to Face Verification form (click here to download Face to Face form)
- Copy of valid government-issued photo ID, such as driver's license, passport, or military ID
- Financial document in your name, such as valid credit/debit card, mortgage statement, or bank statement
- Non-financial document in your name, such as landline phone bill, utility bill, birth certificate, or court order
Submit all documentation using Sectigo Ticketing Portal.
Once your documentation is submitted and approved, you will have completed the Individual Validation process and will shortly after receive the Code Signing Certificate Collection Email from Sectigo.
Please read our guides for collecting the certificate if you are ready to proceed:
How to Export Certificate from Internet Explorer