Our company currently implementing TSA (Time Stamp Authority) service. And now we are searching CA (Certification Authority), which could issue certificate with intended usage: Timestamping. I contacted with few CA's, but they offer just Digital ID certificates, and know nothing about TSA. Maybe someone has experience with such problem?
Asked
Active
Viewed 612 times
4
-
what does this have to do with SSL? – President James K. Polk May 31 '10 at 20:03
-
Or certification (to pass a professional skills exam) as opposed to *certificates*? – T.Rob Jun 05 '10 at 01:48
1 Answers
4
I doubt you will find any commercial CAs offer certificates with timestamping usage. There is no market and it goes against their interests also. Just like the certificate with CA or OSCPSigning usage, you can only get it if you have some kind of business deal with CA.
If you are offering a TSP service, you can just use regular cert and ignore the usage. Depending on the library you use, it may not check usage at all. However, Java 6 does check it.
You can also use a self-signed cert and distribute your root CA to whoever wants to do verification locally.
ZZ Coder
- 74,484
- 29
- 137
- 169