EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Certificate for TimeStamping

Also by EldoS: BizCrypto
Components for BizTalk® and SQL Server® Integration Services that let you securely store and transfer information in your business automation solutions.
Posted: 11/12/2008 07:14:53
by Mohammad Khorsandi (Basic support level)
Joined: 05/05/2008
Posts: 34

I have a question about time-stamping,
Is there generate a special certificate for time-stamping?

Posted: 11/12/2008 07:59:26
by Ken Ivanov (EldoS Corp.)

I do not understand your question, sorry.

The only requirement for certificates of timestamping service is the following:
The TSA MUST sign each time-stamp message with a key reserved specifically for that purpose. A TSA MAY have distinct private keys, e.g., to accommodate different policies, different algorithms, different private key sizes or to increase the performance. The corresponding certificate MUST contain only one instance of the extended key usage field extension as defined in [RFC2459] Section with KeyPurposeID having value:

id-kp-timeStamping. This extension MUST be critical.

The following object identifier identifies the KeyPurposeID having
value id-kp-timeStamping.

id-kp-timeStamping OBJECT IDENTIFIER ::= {iso(1)
identified-organization(3) dod(6)
internet(1) security(5) mechanisms(5) pkix(7)
kp (3) timestamping (8)}



Topic viewed 1172 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!