Stack Overflow
Stack Overflow

Questions tagged [rfc3161]

RFC issued by the IETF in 2001 is about the "Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP)"

IETF RFC 3161 defines file formats and operational protocols for requesting and delivering assertions of proofs that a datum existed before a particular date.

Abstract from RFC file:

This document describes the format of a request sent to a Time Stamping Authority (TSA) and of the response that is returned. It also establishes several security-relevant requirements for TSA operation, with regards to processing requests to generate responses.

34 questions
20
votes
5 answers

How can I use RFC3161 (trusted) timestamps to prove the age of commits in my Git repository?

Updated I have posted a script I'm using for this to the StackExchange Code Review site. My original question for this was Is there a way I can sign a Git commit with an X.509 certificate and timestamp?. For a while I thought I could only get…
Ryan J
  • 2,502
  • 5
  • 31
  • 41
19
votes
3 answers

Verify RFC 3161 trusted timestamp

In my build process, I want to include a timestamp from an RFC-3161-compliant TSA. At run time, the code will verify this timestamp, preferably without the assistance of a third-party library. (This is a .NET application, so I have standard hash…
P Daddy
  • 28,912
  • 9
  • 68
  • 92
6
votes
2 answers

How do I securely sign data with a timestamp?

I would like to sign records in a database with a secure timestamp to prove they have not been altered by anyone after that date. What methods or protocols should I consider? RFC 3161? Most of the websites I've found that claim to provide that…
joeforker
  • 40,459
  • 37
  • 151
  • 246
5
votes
1 answer

What RFC 3161 public timeserver URLs can be used with signtool.exe?

I'm using signtool.exe on Windows to code sign with a SHA256 signature. The only example I see (from Symantec) shows using: http://timestamp.geotrust.com/tsa ..as the time server. E.g.: signtool.exe sign /a /s MY /n "Common name" /as /fd sha256 /tr…
Daniel
  • 8,794
  • 4
  • 48
  • 71
5
votes
1 answer

How to build a RFC 3161 time stamp using Bouncy Castle

we need to implement our own PDF timestamping mechanism based on X509 certificate (including private key of course) and RFC 3161. I've googled and asked here on SO and proper solution would be to re-implement TSAClient class to do timestamping…
user3232054
  • 65
  • 1
  • 5
4
votes
0 answers

Add timestamp to PDF signature using PHP

Using tcpdf library I'm able to add a signature to pdf but timestamp (RFC3161) is not yet implemented in this library (applyTSA) and I need this feature. According to ISO 32000-1:2008: Time stamp information as an unsigned attribute (PDF 1.6): The…
h2odev
  • 634
  • 9
  • 21
3
votes
2 answers

Java Implementation of time stamp protocol

We currently using openssl for timestamping. I wonder, is there a Java implementation of Time stamp protocol (RFC 3161).
ayengin
  • 1,606
  • 1
  • 22
  • 47
3
votes
2 answers

Timestamp server rfc3161 response token generation in Python

I'm trying to implement tsa server on python using twisted. Currently I'm using openssl binary to generate response, but this seems ugly to me, that's why I'm trying to figure out how to make response token with m2crypto. Thanks in advance for…
frx
  • 492
  • 5
  • 15
2
votes
3 answers

Timestamp Response is Incorrect - BouncyCastle

Trying to request a timestamp (RFC 3161) by using BouncyCastle and connecting to http://timestamping.edelweb.fr/service/tsp. I do get a TimestampResponse back from the server but it seems to be without an actual date. This is the code: public static…
willcodejavaforfood
  • 43,223
  • 17
  • 81
  • 111
2
votes
1 answer

TimeStampResponse

I am using Bouncy Castle to read response from Time Stamp server in .NET.Now i want to show time stamp server certificate to client, how can I read time stamp server certificate from response? Thanks in advance.
buda
  • 2,372
  • 1
  • 18
  • 23
2
votes
1 answer

Decoding timestamp encoded in ASN.1 (javascript)

I am trying to decode the timestamp which I am receiving from my HTTP post request, but this is a really complex task, I do not even have any proper insight into ASN.1/RFC 3161 so if anyone out there is willing to help me out, I would really be…
Lovro Bilješković
  • 95
  • 1
  • 1
  • 9
2
votes
1 answer

Trusted Timestamps - understanding the format (rfc3161)

[edit: I've written a blogpost that explains everything in detail: look here] Hi! I'm desperately trying to build a service for trusted timestamps based on rfc3161. I've decided to use the free trusted timestamp service at zeitstempel.dfn.de. My…
David Müller
  • 5,291
  • 2
  • 29
  • 33
2
votes
1 answer

Timestamping using TSA URL and Java APIs

Can anyone please help me in understanding the process and Java APIs used while timestamping a signature. I need to sign a file and timestamp it using TSA url "http://timestamp.globalsign.com/scripts/timstamp.dll" using Java APIs. I am able to sign…
Nishant Kumar
  • 235
  • 2
  • 4
  • 13
1
vote
0 answers

How can RFC 3161 timestamp information be stored in a PDF in PHP?

I have been given a task to apply a secure RFC 3161 timestamping functionality to our Laravel PDF builder. So we have the PDF - we need a timestamp, but it is somewhat open ended as to how we make sure the file itself is valid. Many desktop products…
Jonathan Ma
  • 556
  • 6
  • 20
1
vote
0 answers

How to make git repository tamperproof using RFC 3161 timestamps?

I would like to create a git repository where it can be proven that every commit (plus the entire previous history) existed at a certain point in time, and I'd like this proof to be contained inside the commits by using a RFC 3161 TSA timestamping…
matthias_buehlmann
  • 4,641
  • 6
  • 34
  • 76
1
2 3