# Verifying Signature of a Debian Package
# Digital Signatures
All Debian packages built by pipelines carry a valid GPG signature signed by ABB.
You are required to verify the digital signature carried by all downloaded Debian packages. The operating system comes with GPG program pre-installed for signature verification:
- Download the public key.
Upload the public key file onto the Edge computer; save it as
key.asc.Import the public key:
gpg --import key.asc.Verify the package signature:
gpg --verify <file>.deb. If the signature is valid and genuine, the output will contain the following text:gpg: Good signature from "ABBDebian" [unknown]