EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Certificate for TimeStamping

Posted: 11/12/2008 07:14:53
by Mohammad Khorsandi (Basic support level)
Joined: 05/05/2008
Posts: 34

I have a question about time-stamping,
Is there generate a special certificate for time-stamping?

Posted: 11/12/2008 07:59:26
by Ken Ivanov (Team)

I do not understand your question, sorry.

The only requirement for certificates of timestamping service is the following:
The TSA MUST sign each time-stamp message with a key reserved specifically for that purpose. A TSA MAY have distinct private keys, e.g., to accommodate different policies, different algorithms, different private key sizes or to increase the performance. The corresponding certificate MUST contain only one instance of the extended key usage field extension as defined in [RFC2459] Section with KeyPurposeID having value:

id-kp-timeStamping. This extension MUST be critical.

The following object identifier identifies the KeyPurposeID having
value id-kp-timeStamping.

id-kp-timeStamping OBJECT IDENTIFIER ::= {iso(1)
identified-organization(3) dod(6)
internet(1) security(5) mechanisms(5) pkix(7)
kp (3) timestamping (8)}



Topic viewed 1268 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!