EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Authentication with the TSA

Also by EldoS: MsgConnect
Cross-platform protocol-independent communication framework for building peer-to-peer and client-server applications and middleware components.
#16610
Posted: 06/09/2011 06:55:08
by Salvador Soto (Basic support level)
Joined: 04/26/2011
Posts: 14

Hello,

we are trying to make timestamping to files

The processes we follow are:

* Find the file we want to add timestamp
* Make hash to file
* It is sent to the Time Stamp Authority (TSA)
* The TSA responds with an encrypted file that contains the timestamp.
* We will decode and we verify that it has integrated the timestamp


We have a certificate which we have to authenticate with the TSA.

Currently, we get in touch but without authentication.

What procedure or method should we follow?


Greetings
#16611
Posted: 06/09/2011 07:06:19
by Vsevolod Ievgiienko (EldoS Corp.)

Thank you for contacting us.

Do you use ElHTTPTSPClient to communicate with your TSA?
#16612
Posted: 06/09/2011 07:12:36
by Vsevolod Ievgiienko (EldoS Corp.)

I see from your previous post that you use ElHTTPTSPClient.

If yes then you should store your certificate into ElHTTPTSPClient.HTTPClient.ClientCertStorage (see http://www.eldos.com/documentation/sb...rage.html).
#16613
Posted: 06/09/2011 07:20:02
by Salvador Soto (Basic support level)
Joined: 04/26/2011
Posts: 14

Thank you for you help.
#16711
Posted: 06/20/2011 10:59:10
by Salvador Soto (Basic support level)
Joined: 04/26/2011
Posts: 14

Hello,

we have a certificate, which is to identify with the TSA (Time Stamp Authority)

We with the help of two forms to look out our certificate.

We work with visual basic

The code is:

Dim As TElWinCertStorage SystemStore
Dim Cert As New TElX509Certificate
If CERTIFICADO_INDEX = -1 Then
CERTIFICADO_INDEX = frmCertificadoIndex.Obtener
End If

SystemStore = New TElWinCertStorage
SystemStore.SystemStores.BeginUpdate ()
try
SystemStore.SystemStores.Clear ()
SystemStore.SystemStores.Add ("MY")
finally
SystemStore.SystemStores.EndUpdate ()
End Try
Cert = SystemStore.Certificates (CERTIFICADO_INDEX)


If ("" & CERTIFICADO_CLAVE). Trim = "" Then
CERTIFICADO_CLAVE = frmCertificadoClave.Obtener
End If


Then, we want to identify us or authenticate us to the TSA, for that somehow the TSA knows who is request a timestamping.

We have done this, but really we do not know if it is well.

Dim signer As New SBMessages.TElMessageSigner
Dim memoryCertorage As New TElMemoryCertStorage

signer.CertStorage = memoryCertorage
Dim httpTspClient As New SBHTTPTSPClient.TElHTTPTSPClient
signer.TSPClient = httpTspClient
signer.CertStorage.Add(Cert, True)


Thanks
#16712
Posted: 06/20/2011 11:18:37
by Eugene Mayevski (EldoS Corp.)

You seem to have not read Vsevolod's response above. Please do.


Sincerely yours
Eugene Mayevski
#16713
Posted: 06/20/2011 11:45:02
by Salvador Soto (Basic support level)
Joined: 04/26/2011
Posts: 14

Hello,

I have read Vsevolod's response.

But then it is like this:

conector_http.ClientCertStorage.Add (Cert, True)

connector_hhtp is an object of type httpclient

and
How do we know that we identity us?,how the TSA take our certificate?, how do we know if it has successfully added the certificate?


Thanks you for your help
#16715
Posted: 06/20/2011 12:55:01
by Eugene Mayevski (EldoS Corp.)

Quote
Salvador Soto wrote:
But then it is like this:


You also need to create an instance of TElMemoryCertStorage and assign it to ClientCertStorage property of TElHTTPClient class.

It can be more complicated, if the complete certificate chain needs to be built.

Quote
Salvador Soto wrote:
How do we know that we identity us?,how the TSA take our certificate?, how do we know if it has successfully added the certificate?


If TSA doesn't like it, it won't let your request and you'll get an exception saying that timestamping failed. In the next build of SecureBlackbox there will be OnHTTPError event in TElHTTPTSPClient, and this event will tell you the [error] response code returned by HTTP client.


Sincerely yours
Eugene Mayevski
Also by EldoS: Solid File System
A virtual file system that offers a feature-rich storage for application documents and data with built-in compression and encryption.

Reply

Statistics

Topic viewed 1322 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!