You will need to generate a private key with a minimum key size of 3072 bits for an RSA key. VikingCloud will support two options for your private key generation:
Your private key represents your organization’s identity! Code signed with your private key can be traced back to your organization.
Beginning May 27, 2023, VikingCloud will require proof that your Private Key is generated, stored, and used in a suitable Hardware Crypto Module with a unit design form factor certified as conforming to at least FIPS 140-2 Level 2 or Common Criteria EAL 4+. The following items will provide VikingCloud with proof of your Private Key Protection:
Location - Enter the location where your business operates. If you are an international customer in a country without a State/Province or City/Locality, leave those fields blank.
Organization - Enter the full, unabbreviated legal name of your business. Include any applicable suffix, such as "Inc" or "LLC". If your company name is registered in an abbreviated form, then you may use that abbreviation if you want.
Organizational Unit - This field will not be included in your certificate, so you can leave it blank.
Common Name - Enter the same value as you entered for your Organization.
Email Address - Enter the address of the person responsible for code signing in your organization. This field is optional.
In order to create your Java code-signing CSR, make sure that the Java Development Kit (JDK) is installed on your server or local computer. You can generate your CSR and sign it using the private key that you have created in your Hardware Crypto Module.
Now navigate to the location of your saved CSR and open it with a suitable text editor such as Notepad, TextEdit, or vi. Copy the entire text - including the top and bottom dashed lines. You can paste this text directly into the VikingCloud Control Center - Submit your CSR to proceed to validation.