EldoS | Feel safer!

Software components for data protection, secure storage and transfer

ocsp client question

Also by EldoS: Solid File System
A virtual file system that offers a feature-rich storage for application documents and data with built-in compression and encryption.
#8176
Posted: 11/12/2008 17:56:53
by Chris Frattinger (Basic support level)
Joined: 11/12/2008
Posts: 7

Using the evaluation version I was trying to use the how-to for obtaining ocsp information. What appears to be the ocsp extension info shows an AccessMethod OID of 43.6.1.5.5.7.48.1 instead of 1.3.6.1.5.5.7.48.1. The AccessLocation seems to point to the ocsp responder http://<ip>/ocsp.
Thanks,
Chris
#8180
Posted: 11/12/2008 23:43:12
by Ken Ivanov (EldoS Corp.)

Thank you for contacting us.

"43 06 01 05 05 07 48" is an ASN.1-encoded form of the 1.3.6.1.5.5.7.48.1 object identifier. Use SBUtils.Unit.OIDToStr() method to convert the encoded OID to the textual form.
#10038
Posted: 05/17/2009 00:56:09
by Thanh Nguyen Trung (Priority Standard support level)
Joined: 09/12/2008
Posts: 73

Hi,

I have a silly question:
SBB has several classes for OCSP and Timestamp including:
- TELFileOcspClient - TELHTTPOcspClient
- TELFileTSPClient - TELHTTPTSPClient
I don't know the use cases of these classes. For example, we have a tsp service, 3161 compilant and it works for Acrobat. our tsp service is deployed in ISS throgh the port 318. I cann't use TELHTTPTspClient with our tsp service and we have to use TELFILETSPClient.
We also have a ocsp service in port 8001 and wonder which kind of OCSPClient we should use.
We are developing a service to accept any tsp/ocsp service, so i wonder if there is a way to check when we sould use TELFileTspClient (TelFileOcspClient) instead of TELHttpTspClient (TelhttpOcspClient).

Thanks
Thanh
#10040
Posted: 05/17/2009 12:05:44
by Eugene Mayevski (EldoS Corp.)

TSP and OCSP are two completely different things. They have *nothing* in common. So you should not treat them as "tsp/ocsp service".

Quote
Thanh Nguyen Trung wrote:
so i wonder if there is a way to check when we sould use TELFileTspClient (TelFileOcspClient) instead of TELHttpTspClient (TelhttpOcspClient).


ElFile*Client components let you use your own transport (be it HTTP client or other transport), while ElHTTP*Client provide a link to ElHTTPSClient class. That's the main difference between those two pairs of classes.


Sincerely yours
Eugene Mayevski

Reply

Statistics

Topic viewed 1677 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!