COMMUNITY EDITION JUNE 2023

The SignServer team is pleased to announce the newest release of our open source signing software SignServer Community Edition with version 6.0 and thank each and every SignServer Contributor for your work in getting us here.

These release notes cover new SignServer Community features and improvements implemented between SignServer Community 5.11 and SignServer Community 6.0.

This latest community release includes several new features, including a REST interface and Post-Quantum Readiness with support for Dilithium and SPHINCS+ candidate algorithms. The release also brings technology upgrades including support for Java 17.

Highlights

REST Interface

SignServer 6 includes a REST interface for signing operations. The REST interface supports all existing authorizers. Future versions of SignServer will extend the functionality of the SignServer REST interface and new integrations are recommended to use the REST interface rather than SOAP/HTTP.

Post-Quantum Readiness

SignServer 6 adds support for the Dilithium candidate algorithm in the CMS signer. The final standard for the Dilithium algorithm is planned to be released by NIST during 2024 and the candidate algorithm shall not be used for production purposes. Still, with the support for the Dilithium candidate algorithm in SignServer, customers can prepare for the transition to quantum-safe algorithms. The Keyfactor Post Quantum Signature Verifier App on GitHub has been extended with support for the Dilithium candidate algorithm and can be used to test algorithms. For more information, see the guide Post-Quantum Code Signing How-to.

Technology upgrades

As a new major version the technology stack supported by SignServer 6 includes some important updates compared to SignServer 5. SignServer 6 supports running on Java 17 in addition to Java 11. Running on WildFly 26 as the application server is also supported and the SignServer use of application server is based on JEE8. Bouncy Castle has been upgraded to version 1.73.

Downloads and Resources

SignServer Community releases follow the release schedule for the Enterprise Edition, including all major and feature releases.

There are several options available for downloading the latest SignServer Community:

  • SignServer Community is available for download from GitHub.
  • SignServer Community Container is available for download from Docker Hub.
  • SignServer Community is available for download from SourceForge.

For download links and resources, see signserver.org.

Want to learn more about our open source software? Get in touch over at SignServer Discussions on GitHub, a collective space where you can share feedback and contribute ideas to future releases. We would love to hear from you.

Keyfactor Community

In the Keyfactor Community, developers, engineers, and security teams can get hands-on with Keyfactor's open source PKI and signing software, share ideas with peers, and learn from industry experts. Find out more and sign up for the Keyfactor Community Newsletter at signserver.org.