Comodo Code Signing Supports Mozilla Standards
January 28th, 2009
Comodo, a Certification Authority and internet security company, today announced that Comodo code-signing certificates enable developers to sign Mozilla extensions or Add-ons for a variety of different operating systems such as Microsoft Windows, Mac OS X and Linux. The company says that Mozilla applications recognize XPIs as trusted when they are signed with a Comodo Code-Signing certificate.
It adds that XPI (pronounced “Zippy”) is short for Cross Platform Install. The company claims that XPI enables developers to create installer modules for their programs meant to enhance Mozilla applications such as Firefox, Thunderbird, Sea Monkey and Sunbird. It explains that Comodo Code-Signing certificates verify and authenticate the entity that has created the XPI file, allowing end users to trust their execution. The company further says that most browsers will not accept action commands from downloaded code unless the code is signed by a trusted Certificate Authority.
“You still need to trust, but verify,” said Melih Abdulhayoglu CEO Comodo. “If you get a file called InstallMe.XPI, do you trust the person who sent it to you? What if it contains malware that might damage your computer? It is much easier to prevent your computer from allowing an untrusted file to install than it is to detect a problem and fix it after the fact.”
