This SignServer 5.11.2 maintenance release provides enhanced flexibility for integration with Identity Providers using JSON Web Tokens (JWTs).

The release also contains improvements and error corrections related to MS Authenticode CMS Signer's compatibility with Microsoft SignTool.

Deployment options include SignServer Hardware Appliance, SignServer Software Appliance, and SignServer Cloud.

If you do not have SignServer 5.11 yet, check out the new features and other highlights in the SignServer 5.11 Release Notes.

Upgrade Information

Review the SignServer Upgrade Notes for important information about this release. For upgrade instructions, see Upgrade SignServer.

Change Log: Resolved Issues

The following lists fixed bugs and implemented features in SignServer 5.11.2.

Issues Resolved in 5.11.2

Released February 2023

New Features

DSS-2356 - Configuration option in JwtAuthorizer to not require typ=JWT


DSS-2540 - MSAuthCodeCMSSigner should not include signingTime attribute

Bug Fixes

DSS-2528 - MSAuthCodeCMSSigner encodes signedData in BER instead of DER

DSS-2537 - Regression: Encoding of null parameters in digest algorithm identifiers for MSAuthCode signatures changed after Bouncy Castle upgrade