{"id":7593,"date":"2022-07-12T23:03:37","date_gmt":"2022-07-13T07:03:37","guid":{"rendered":"https:\/\/cheapsslsecurity.com\/blog\/?p=7593"},"modified":"2022-07-12T23:04:54","modified_gmt":"2022-07-13T07:04:54","slug":"best-practices-for-code-signing-certificates","status":"publish","type":"post","link":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/","title":{"rendered":"Best Practices for Code Signing Certificates"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">The process of getting your software and other executables signed with a certificate from a trusted certificate authority is called code signing. Signing your code will help verify the integrity of your code and it is more like a seal that guarantees that the code has not been tampered with or altered after it was signed.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This process is quite straightforward, but there are certain issues with code signing. Sometimes, attackers steal private keys and jeopardize the <a href=\"https:\/\/cheapsslsecurity.com\/blog\/code-signing-certificate-a-zenith-milestone-for-software-developers\/\">code or software<\/a> you already signed. So it is crucial to take certain measures to keep private keys safe.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In this article, we have listed the seven best code signing practices. If you already have a code signing certificate, we believe these best practices will help you secure your private keys and help you securely sign your code. If you do not have a code signing certificate, you can get a <a href=\"https:\/\/cheapsslsecurity.com\/sslproducts\/codesigningcertificate.html\">code signing certificate from a trusted certificate authority like DigiCert, Comodo, or Sectigo<\/a>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Top 7 Code Signing Best Practices<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\"><a><\/a>1. Access to Private Keys<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">It is important to give access to private keys only to authorized personnel. Losing a code signing certificate\u2019s <a href=\"https:\/\/cheapsslsecurity.com\/blog\/private-key-and-public-key-explained\/\">private key<\/a> or the private key getting compromised is one of the critical security threats. Hackers who steal the private keys will be able to sign any code with the stolen private key. They also sell it on the dark web for a huge profit. The best way to make sure your private keys are safe and to prevent them from being illicitly used is by controlling access to private keys. Access has to be given only to specific people and you can also use physical security solutions to minimize access to the keys. Likewise, make sure only certain computers can access private keys.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">2. Secure the Key Storage Device<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Employees might use certain devices to store the private keys. Make sure those devices are not left outside where others can pick them up and copy the contents stored in the device, including the private keys of a <a href=\"https:\/\/cheapsslsecurity.com\/blog\/what-is-code-signing-certificate-and-how-to-use-it\/\">code signing certificate<\/a>. It is important to keep the device in a locked drawer to make sure the private keys are secure.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">3. Use Strong Passwords<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Protect your private keys with 16-character solid passwords when you transport them. The password you use to secure the cryptographic hardware has to be generated randomly and must be a combination of numbers, special characters, upper case, and lower case letters to make it hard to crack. Malicious actors can easily decrypt passwords that include names, locations, birthdays, etc.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">4. Use Cryptographic Hardware<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">One of the best ways to protect your private keys is by using cryptographic hardware. Cryptographic hardware uses the latest encryption algorithms to protect private keys and it will ensure that no third party can get their hands on your private keys. You can very well use a FIPS 140 Level 2-certified product to keep your private keys secure. This device will not allow the private keys to be exported and will require multi-factor authentication.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">5. Code Authentication<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Code authentication has to be made a part of the actual development cycle and the code must be authenticated before it is released. Fully authenticate your executables, software, etc., before you sign them. To prevent signing malicious or unapproved code, set up a separate process for approving the code and signing it. This process will help confirm that your files or software are ready to be signed.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">6. Scan Your Code<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Though code signing states who wrote the code and when it was published, it does not ascertain that the code is safe. If you accidentally use your code signing certificate to sign an infected code, you might get into trouble as the infected software or the downloadable will harm the user\u2019s device. This could result in the revocation of your code signing certificate and due to strict validation requirements, you might find it hard to get a new code signing certificate.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">To prevent all this from happening, perform a full QA testing to make sure there are no issues or bugs. Likewise, a code review will help ensure that the code is thoroughly checked. You can scan your code for viruses to verify its safety before signing it.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">7. Revoke Compromised Code Signing Certificates<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">If you notice that your private keys have been compromised, report it immediately to the certificate authority. If your code signing certificate was used to sign malware or if the keys were compromised, it is important to request the certificate authority to revoke the certificate. If you time-stamped the signed code, you can select a revocation date before the date of compromise to show that the code signed before the date of revocation of the certificate has not been impacted.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><a><\/a>The Final Word<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/cheapsslsecurity.com\/digicert\/code-signing-certificate.html\">Code signing<\/a> is the best way to secure your code as it guarantees users that the integrity of the code they downloaded is intact and has not been tampered with. To boost the security of your organization, follow the above-mentioned best practices for signing code.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The process of getting your software and other executables signed with a certificate from a trusted certificate authority is called code signing. Signing your code will help verify the integrity of your code and it is more like a seal that guarantees that the code has not been tampered with or altered after it was<\/p>\n","protected":false},"author":8,"featured_media":7598,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5],"tags":[],"class_list":["post-7593","post","type-post","status-publish","format-standard","has-post-thumbnail","category-ssl-pki"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Best Practices for Code Signing Certificates<\/title>\n<meta name=\"description\" content=\"Software developers sign their code to prove that their code is authentic and free from malware. As a developer, learn what are the best code signing practices you must follow.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Best Practices for Code Signing Certificates\" \/>\n<meta property=\"og:description\" content=\"Software developers sign their code to prove that their code is authentic and free from malware. As a developer, learn what are the best code signing practices you must follow.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/\" \/>\n<meta property=\"og:site_name\" content=\"Savvy Security\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/cheapsslsecurities\" \/>\n<meta property=\"article:published_time\" content=\"2022-07-13T07:03:37+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-07-13T07:04:54+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2022\/07\/best-practices-for-code-signing-certificates.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"800\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Savvy Security\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@sslsecurity\" \/>\n<meta name=\"twitter:site\" content=\"@sslsecurity\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Savvy Security\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/\"},\"author\":{\"name\":\"Savvy Security\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#\\\/schema\\\/person\\\/1ce9a5743b7f25b5be6e4972864b4493\"},\"headline\":\"Best Practices for Code Signing Certificates\",\"datePublished\":\"2022-07-13T07:03:37+00:00\",\"dateModified\":\"2022-07-13T07:04:54+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/\"},\"wordCount\":837,\"image\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/best-practices-for-code-signing-certificates.png\",\"articleSection\":[\"SSL &amp; PKI\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/\",\"url\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/\",\"name\":\"Best Practices for Code Signing Certificates\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/best-practices-for-code-signing-certificates.png\",\"datePublished\":\"2022-07-13T07:03:37+00:00\",\"dateModified\":\"2022-07-13T07:04:54+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#\\\/schema\\\/person\\\/1ce9a5743b7f25b5be6e4972864b4493\"},\"description\":\"Software developers sign their code to prove that their code is authentic and free from malware. As a developer, learn what are the best code signing practices you must follow.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/#primaryimage\",\"url\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/best-practices-for-code-signing-certificates.png\",\"contentUrl\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/best-practices-for-code-signing-certificates.png\",\"width\":1200,\"height\":800,\"caption\":\"best practices for code signing certificates\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/best-practices-for-code-signing-certificates\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Best Practices for Code Signing Certificates\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/\",\"name\":\"Savvy Security\",\"description\":\"Practical cybersecurity advice\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#\\\/schema\\\/person\\\/1ce9a5743b7f25b5be6e4972864b4493\",\"name\":\"Savvy Security\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g\",\"caption\":\"Savvy Security\"},\"description\":\"Welcome to Savvy Security, a blog focused on providing practical cybersecurity advice for website owners and small businesses. Our team brings you the latest news, best practices and tips you can use to protect your business...without a multi-million dollar budget or 24\\\/7 security teams.\",\"sameAs\":[\"blogadmin\"],\"url\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/author\\\/blogadmin\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Best Practices for Code Signing Certificates","description":"Software developers sign their code to prove that their code is authentic and free from malware. As a developer, learn what are the best code signing practices you must follow.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/","og_locale":"en_US","og_type":"article","og_title":"Best Practices for Code Signing Certificates","og_description":"Software developers sign their code to prove that their code is authentic and free from malware. As a developer, learn what are the best code signing practices you must follow.","og_url":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/","og_site_name":"Savvy Security","article_publisher":"https:\/\/www.facebook.com\/cheapsslsecurities","article_published_time":"2022-07-13T07:03:37+00:00","article_modified_time":"2022-07-13T07:04:54+00:00","og_image":[{"width":1200,"height":800,"url":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2022\/07\/best-practices-for-code-signing-certificates.png","type":"image\/png"}],"author":"Savvy Security","twitter_card":"summary_large_image","twitter_creator":"@sslsecurity","twitter_site":"@sslsecurity","twitter_misc":{"Written by":"Savvy Security","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/#article","isPartOf":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/"},"author":{"name":"Savvy Security","@id":"https:\/\/cheapsslsecurity.com\/blog\/#\/schema\/person\/1ce9a5743b7f25b5be6e4972864b4493"},"headline":"Best Practices for Code Signing Certificates","datePublished":"2022-07-13T07:03:37+00:00","dateModified":"2022-07-13T07:04:54+00:00","mainEntityOfPage":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/"},"wordCount":837,"image":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/#primaryimage"},"thumbnailUrl":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2022\/07\/best-practices-for-code-signing-certificates.png","articleSection":["SSL &amp; PKI"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/","url":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/","name":"Best Practices for Code Signing Certificates","isPartOf":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/#primaryimage"},"image":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/#primaryimage"},"thumbnailUrl":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2022\/07\/best-practices-for-code-signing-certificates.png","datePublished":"2022-07-13T07:03:37+00:00","dateModified":"2022-07-13T07:04:54+00:00","author":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/#\/schema\/person\/1ce9a5743b7f25b5be6e4972864b4493"},"description":"Software developers sign their code to prove that their code is authentic and free from malware. As a developer, learn what are the best code signing practices you must follow.","breadcrumb":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/#primaryimage","url":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2022\/07\/best-practices-for-code-signing-certificates.png","contentUrl":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2022\/07\/best-practices-for-code-signing-certificates.png","width":1200,"height":800,"caption":"best practices for code signing certificates"},{"@type":"BreadcrumbList","@id":"https:\/\/cheapsslsecurity.com\/blog\/best-practices-for-code-signing-certificates\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cheapsslsecurity.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Best Practices for Code Signing Certificates"}]},{"@type":"WebSite","@id":"https:\/\/cheapsslsecurity.com\/blog\/#website","url":"https:\/\/cheapsslsecurity.com\/blog\/","name":"Savvy Security","description":"Practical cybersecurity advice","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cheapsslsecurity.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/cheapsslsecurity.com\/blog\/#\/schema\/person\/1ce9a5743b7f25b5be6e4972864b4493","name":"Savvy Security","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g","caption":"Savvy Security"},"description":"Welcome to Savvy Security, a blog focused on providing practical cybersecurity advice for website owners and small businesses. Our team brings you the latest news, best practices and tips you can use to protect your business...without a multi-million dollar budget or 24\/7 security teams.","sameAs":["blogadmin"],"url":"https:\/\/cheapsslsecurity.com\/blog\/author\/blogadmin\/"}]}},"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/posts\/7593","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/comments?post=7593"}],"version-history":[{"count":0,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/posts\/7593\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/media\/7598"}],"wp:attachment":[{"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/media?parent=7593"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/categories?post=7593"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/tags?post=7593"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}