18. Integrity Verification

The application installer packages and binaries are digitally code signed by Extended Verification code signing certificates to prevent tampering or modification of the packages. That can be verified by checking the digital signature of the installer packages and binaries.

SyskeyOT publishes the cryptographic hashes for the product release binaries which does not support digital signatures. E.g. linux deployments.

For the cryptographic hashes for the release binaries signed with digital signatures will be provided upon request.