In our current work with RPMs, we’re adding digital signatures to our PHP packages to enhance their security. Package Signing ensures the integrity of a package at rest by detecting and deterring tampering. A package is signed with a private key, which is then validated by the public key provided by the package builder and installed by the user. This technique complements TLS encryption, which guards against tampering and snooping in transport.
Author Archive for: Calvin Buckley
About Calvin Buckley
Recognized by IBM as a 2020 Fresh Face of IBM i, Calvin exhibits remarkable talent for expanding the use of IBM i through open source development. Upon joining Seiden Group in early 2020, he turned his skills to re-engineering popular PHP modules to work with the new 64-bit Community PHP, helping our customers avoid application rewrites when continuing with the free use of PHP on IBM i. Calvin’s deep knowledge of the PASE environment on IBM i makes him a valuable member of our support team. If it’s broken, he can fix it.