EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Certificate for TimeStamping

Also by EldoS: Rethync
The cross-platform framework that simplifies synchronizing data between mobile and desktop applications and servers and cloud storages
Posted: 11/12/2008 07:14:53
by Mohammad Khorsandi (Basic support level)
Joined: 05/05/2008
Posts: 34

I have a question about time-stamping,
Is there generate a special certificate for time-stamping?

Posted: 11/12/2008 07:59:26
by Ken Ivanov (EldoS Corp.)

I do not understand your question, sorry.

The only requirement for certificates of timestamping service is the following:
The TSA MUST sign each time-stamp message with a key reserved specifically for that purpose. A TSA MAY have distinct private keys, e.g., to accommodate different policies, different algorithms, different private key sizes or to increase the performance. The corresponding certificate MUST contain only one instance of the extended key usage field extension as defined in [RFC2459] Section with KeyPurposeID having value:

id-kp-timeStamping. This extension MUST be critical.

The following object identifier identifies the KeyPurposeID having
value id-kp-timeStamping.

id-kp-timeStamping OBJECT IDENTIFIER ::= {iso(1)
identified-organization(3) dod(6)
internet(1) security(5) mechanisms(5) pkix(7)
kp (3) timestamping (8)}



Topic viewed 1171 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!