Inferensys

Glossary

Sigstore

An open-source project enabling automated, free digital signing and verification of software artifacts using short-lived certificates issued via OpenID Connect identities.
Stylish WeWork-like workspace with hot desks and document wall, professional searching through enterprise knowledge base on a mounted ultrawide display, warm industrial pendants overhead.
CRYPTOGRAPHIC VERIFICATION

What is Sigstore?

Sigstore is an open-source project that enables automated, free digital signing and verification of software artifacts using short-lived certificates issued via OpenID Connect identities.

Sigstore automates the code signing process by issuing ephemeral, short-lived certificates bound to an OpenID Connect (OIDC) identity, eliminating the need for developers to manage, rotate, or protect long-lived private keys. This keyless workflow cryptographically links a software artifact to the email address or workload identity of its creator, providing a verifiable chain of custody.

The project's core components—Fulcio (certificate authority), Rekor (transparency log), and Cosign (signing tool)—work in concert to make signing transparent and auditable. By recording every signature event in an append-only, immutable transparency log, Sigstore enables automated policy enforcement and allows security teams to detect unauthorized or compromised signing events in the software supply chain.

CRYPTOGRAPHIC TRANSPARENCY

Key Features of Sigstore

Sigstore provides a free, automated mechanism for signing and verifying software artifacts using short-lived certificates tied to OpenID Connect identities, eliminating the burden of long-term key management.

01

Keyless Signing via OIDC

Eliminates the need for developers to manage, rotate, or protect long-lived private keys. Sigstore binds a short-lived ephemeral keypair to an OpenID Connect (OIDC) identity, such as a Google or GitHub account.

  • The signing certificate is generated on the fly and valid for only 10 minutes.
  • This removes the risk of leaked or stolen static signing keys.
  • Trust is rooted in the identity provider's authentication, not a manually distributed public key.
02

Transparency Log (Rekor)

An append-only, cryptographically verifiable public ledger that records every signing event. This makes the issuance of certificates auditable and detectable if a signing identity is compromised.

  • Merkle Tree construction ensures tamper-evident storage.
  • Monitors can watch the log for unauthorized signatures tied to a specific identity.
  • Provides a chain of custody for software provenance, enabling 'trust but verify' workflows.
03

Automated Verification with Cosign

The cosign CLI tool integrates directly into CI/CD pipelines to sign and verify container images, blobs, and other artifacts. Verification checks the signature against the Transparency Log and the OIDC identity.

  • cosign verify ensures an artifact was signed by a trusted identity within its validity window.
  • Supports policy-based admission control via integrations with Kubernetes admission controllers.
  • Enforces Binary Authorization by blocking unsigned or improperly attested images from production.
04

Fulcio Certificate Authority

A root Certificate Authority (CA) that issues short-lived code-signing certificates upon successful OIDC authentication. Fulcio does not require prior registration.

  • The CA verifies the user's identity via an OIDC token, then issues an X.509 certificate.
  • The certificate embeds the OIDC identity, enabling verification without a centralized key server.
  • This decouples the trust anchor from a specific organization's key management infrastructure.
05

Integration with SLSA Framework

Sigstore serves as a critical technical building block for achieving higher Supply-chain Levels for Software Artifacts (SLSA) compliance. It provides the non-falsifiable attestations required for provenance.

  • Generates verifiable in-toto attestations for build steps.
  • Enables reproducible builds by signing the resulting artifact hash.
  • Supports the generation of a cryptographically verifiable SBOM signature, linking a software inventory to a trusted builder identity.
SIGSTORE EXPLAINED

Frequently Asked Questions

Clear, technical answers to the most common questions about Sigstore's keyless signing architecture, its role in software supply chain security, and how it integrates with modern DevSecOps pipelines.

Sigstore is an open-source project that enables free, automated digital signing and verification of software artifacts using short-lived certificates issued via OpenID Connect (OIDC) identities. It eliminates the need for developers to manage long-lived private keys manually.

Core Workflow

  1. Authentication: A developer or CI/CD pipeline authenticates to an OIDC provider (e.g., Google, GitHub, Microsoft) to prove their identity.
  2. Certificate Issuance: The Sigstore Fulcio certificate authority issues a short-lived X.509 code-signing certificate (valid for ~10 minutes) binding the verified OIDC identity to a public key.
  3. Signing: The artifact is signed using the private key generated ephemerally for that session.
  4. Transparency Logging: The signing event is recorded immutably in the Rekor transparency log, providing an auditable, append-only record.
  5. Verification: Consumers use the cosign tool to verify the signature against the transparency log, ensuring the artifact was signed by a trusted identity and the certificate was valid at the time of signing.
Prasad Kumkar

About the author

Prasad Kumkar

CEO & MD, Inference Systems

Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.

His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.