Code Signing and Encryption

Powering Trusted Software—from Development to Deployment
Key Features Why Bootloader Signing Matters Access Options Extended Security Measures Accelerate Security & Compliance

CommScope PRiSM™ (Permission Rights Signing Manager) is an online platform for secure code signing, encryption, and policy control over users’ permissions across diverse firmware and software.

Whether you’re protecting a bootloader, updating software and firmware, or preparing for certification, PRiSM helps secure your software supply chain—at scale and in compliance with emerging global standards.

Key Features of PRiSM

Centralized Key Control – Sign, encrypt, and manage keys securely in one place. Keys are generated through a multi-party-controlled process and stored in FIPS-certified hardware security modules (HSMs), ensuring that no single individual ever has full access or control.
Granular Policy Enforcement – Role-based access controls (RBAC) define and restrict which users or build systems can perform signing and encryption operations with specific keys.
Audit Trails – Captures detailed records of all signing activities, including what was signed, when, by whom, and from where, to support compliance, traceability, and security audits
Bootloader & Application Signing – Supports vendor-specific formats (STMicroelectronics, Broadcom, Qualcomm, HiSilicon, Xilinx, Maxilinear, MediaTek, Intel, TI, etc.)
Multi-Platform Signing – Supports for Android APK signing, JAR signatures, Microsoft Authenticode, Docker containers, Kubernetes Helm charts, and custom formats
Debug Access Signing – Control and authenticate debug interface

Why Bootloader Signing Matters

Secure boot and firmware update are security foundations for:

  • EU Cyber Resilience Act (CRA)
  • U.S. Cyber Trust Mark
  • UK Telecoms Security Act (TSA)
  • CSA Matter, IEC 62443, and NIST SP 800-193

PRiSM enables secure signing and encryption of firmware images—including bootloaders—using FIPS 140-2 Level 3 HSMs, meeting the strictest security and compliance requirements.

Access Options

  • Web-Based GUI – User-friendly interface for manual operations.
  • RESTful API – Integrate PRiSM into your CI/CD pipelines for automated processes.
  • Command-Line Tool – For developers preferring terminal-based interactions.

Extended Security Measures

  • Georedundant Infrastructure – Architected for global reliability and disaster recovery, with multi-layered physical and network security protections.
  • Strong authentication – Supports both hardware-based tokens and software-based authenticators to ensure secure, role-based access to various operations.

Accelerate Security & Compliance

PRiSM empowers device makers and software teams to:

  • Meet regulatory requirements with confidence
  • Scale secure signing workflows from R&D manufacturing to post-deployment
  • Enable trusted boot, OTA update, and recovery paths

Learn More

Contact us today to schedule a demo or learn more about PRiSM.

Chat