Sorry to go off topic here, but they mentioned digitally signed updates (or software for that matter). My question is how do they accomplish this, and wouldn't an attacker be able to generate this same digital code?