VeriSign Public Certification Services

YOU MUST READ THIS CODE SIGNING SERVICES AGREEMENT ("SUBSCRIBER AGREEMENT") BEFORE APPLYING FOR, ACCEPTING, OR USING A CODE SIGNING CERTIFICATE. IF YOU DO NOT AGREE TO THE TERMS OF THIS SUBSCRIBER AGREEMENT, DO NOT APPLY FOR, ACCEPT, OR USE THE CODE SIGNING CERTIFICATE.

THIS SUBSCRIBER AGREEMENT will become effective on the date you submit the certificate application to the designated issuing authority ("IA"). By submitting this Subscriber Agreement (and certificate application) you are requesting that the IA issue a Code Signing Certificate to you and are expressing your agreement to the terms of this Subscriber Agreement. VeriSign's Public Certification Services are governed by time, which is incorporated by reference into this Subscriber Agreement. The CPS is published on the Internet in VeriSign's repository at https://www.verisign.com/repository and is available via E-Mail from: CPS-requests@verisign.com. Amendments to the CPS are also posted in VeriSign's repository at https://www.verisign.com/repository/updates.

YOU AGREE TO THE USE OF THE CODE SIGNING CERTIFICATE AND ANY RELATED IA SERVICES IN ACCORDANCE WITH THE CPS AND THIS AGREEMENT. YOU AGREE TO SPECIFICALLY ABIDE BY THE TERMS OF VERISIGN'S RELYING PARTY AGREEMENT ("RPA") AND CPS SECTION 8 WHEN RELYING UPON ANY CODE SIGNING CERTIFICATE OR OTHER CERTIFICATE ISSUED BY AN IA. The RPA is posted in VeriSign's repository at https://www.verisign.com/repository/RPA. In addition to the CPS and RPA, you agree to Sections 1-8 below.

Additional Terms and Conditions.

1. Use Restrictions. You are prohibited from using your Code Signing Certificate (i) for or on behalf of any other organization, (ii), on more then one machine at a time, (iii) to distribute malicious or harmful content of any kind or content that would otherwise have the effect of inconveniencing the recipient of such content, (iv) for any purpose other then its intended use, (v) and transferring control or permitting access of the private key corresponding to the public key in the ID to anyone other then the technical contact provided for at the time of enrollment. Certificates shall only be used during the validity period.

2. Revocation. If your organization name and/or the technical contact change, you must immediately notify VeriSign and VeriSign shall revoke your Code Signing Certificate. VeriSign retains the right to revoke your Code Signing Certificate, if within forty-five (45) days of receiving an invoice from VeriSign, you do not pay the invoice. In order to maintain the trust and integrity of the VeriSign Trust Network^SM ("VTN"), VeriSign in its sole discretion, retains the right to revoke your Code Signing Certificate for failure to perform your obligations under this agreement and any other activities VeriSign considers harmful to the VTN.

3. Obligations Upon Revocation or Expiration. Upon expiration or revocation of your Code Signing Certificate, you shall permanently remove it from the machine on which it is installed and shall not use it for any purpose thereafter.

4. Requirements for Verification. VeriSign shall issue a Code Signing Certificate only after VeriSign has communicated directly over the telephone with the Corporate Contact provided at the time of enrollment. If VeriSign is unable to communicate with the Corporate Contact, it is the responsibility of the Corporate Contact to contact VeriSign at the callback number provided by VeriSign. Your failure to callback in a timely manner may delay the verification and approval of your Code Signing Certificate application.

5. Two Day Service Guarantee. (This Section only applies to Code Signing Pro). VeriSign shall issue your Code Signing Pro Certificate within (2) business days (excluding weekends and VeriSign recognized holidays) after you submit your certificate application to VeriSign provided that you: 1) are an organization located in the United States, 2) select to pay by credit card and submit a valid credit card number, 3) submit a Dun and Bradstreet DUNS number that VeriSign is able validate through its normal validation procedures stated in the CPS ("Guarantee Period"). Your sole and exclusive remedy for VeriSign's failure to issue your Code Signing ID within the Guarantee Period, shall be the refund of fifty-percent (50%) of the retail price you paid for the Code Signing Certificate. THIS SERVICE GUARANTEE DOES NOT APPLY TO ANY OTHER VERISIGN PRODUCT OR SERVICE.

6. Third Party Service Providers. If you are purchasing a product from VeriSign that includes one or more services provided by a third party (such as website monitoring or security checking services by Keynote Systems, Inc., Qualys, Inc., or Netcraft, Inc.) or listing in a directory (such as listing in the Network Solutions' dotcom directory^SM), you hereby consent to our disclosure of your certificate application and enrollment information to these third party service providers and agree that they may contact you directly regarding their services. Any terms and conditions for these products shall be provided to you directly by the third party service provider. VeriSign disclaims any and all warranties, refuses any and all liability, and shall not provide partial refunds for any services provided by a third party.

7. NETSURE^® NOTICE: THE NETSURE^® CERTIFICATES ISSUED UNDER THIS AGREEMENT AND OTHER AGREEMENTS AND THEIR EFFECTIVE DATES UNDER THE NETSURE^® PROTECTION PLAN ("PLAN") ARE LISTED AT WWW.VERISIGN.COM/REPOSITORY/NS_LIST. THE PLAN PROVIDES YOU WITH CERTAIN LIMITED WARRANTIES, DISCLAIMS ALL OTHER WARRANTIES, INCLUDING WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE, AND LIMITS LIABILITY. THE CERTIFICATE LIFETIME LIMIT (AS DEFINED IN THE PLAN) FOR YOUR SSL CERTIFICATE CORRESPONDS TO THE AMOUNT LISTED WITH THE PRODUCT DESCRIPTION PRESENTED TO YOU DURING ENROLLMENT. FOR INFORMATION ON THE PLAN, SEE HTTPS://WWW.VERISIGN.COM/REPOSITORY/NETSURE.

8. Authenticode Limitations. (This Section only applies to customers who have purchased Microsoft Authenticode Signing Certificate). You hereby make the following software publisher's pledge to all users and the applicable IA concerning software that the software publisher digital signs with a private key corresponding to the public key contained in a certificate: In addition to the other representations, obligations, and warranties contained or referenced in the certificate application, you represent and warrant that you shall exercise reasonable care consistent with prevailing industry standards to exclude programs, extraneous code, viruses, or data that may be reasonably expected to damage, misappropriate, or interfere with the use of data, software systems, or operations of the other party. Issuing Authorities and VeriSign shall not be held responsible for the breach of such representations and warranties by you under any circumstance. The decision of the applicable IA and VeriSign shall be final as to whether or not (i) you materially breached this agreement, and (ii) any responsive actions taken (or not taken) by the IA and VeriSign were necessary and appropriate.

YOU DEMONSTRATE YOUR KNOWLEDGE AND ACCEPTANCE OF THE TERMS OF THIS SUBSCRIBER AGREEMENT BY EITHER (I) SUBMITTING AN APPLICATION FOR A CODE SIGNING CERTIFICATE TO VERISIGN, OR (II) USING THE CODE SIGNING CERTIFICATE, WHICHEVER OCCURS FIRST.