rfc3161

I generated a RFC 3161 TimeStampResp out of a RFC 3161 TimeStampReq using openSSL. Therefore I used a self signed CA cert and a TSA cert issued by the self-signed CA using this command: openssl ts -reply -queryfile request.tsq -signer TSAcert.pem -out response.tsr The response was created. openssl ts -reply -text -in response.tsr genereated the following output: Status info: Status: Granted. Status description: unspecified Failure info: unspecified TST info: Version: 1 Policy OID: tsa_policy1 Hash Algorithm: sha256 Message data: 0000 - 43 2c bb 03 28 48 42 06-c0 c8 95 ee d8 32 9d 29 C,..(HB...

I'm trying to implement tsa server on python using twisted. Currently I'm using openssl binary to generate response, but this seems ugly to me, that's why I'm trying to figure out how to make response token with m2crypto. Thanks in advance for help! Maris. EDITED: how to achieve with m2crypto?: openssl ts -reply -section tsa_config1 -queryfile query.tsq -out response.tsr M2Crypto does not yet wrap those pieces of openssl, so you can't use M2Crypto for what you are using the openssl command line client for. You can simply use the rfc3162ng module. download the certificate of your favorite TSA:

[ edit : I've written a blogpost that explains everything in detail: look here ] Hi! I'm desperately trying to build a service for trusted timestamps based on rfc3161. I've decided to use the free trusted timestamp service at zeitstempel.dfn.de . My question is how i shall contact this service in order to receive a valid response. Regarding the request format, the RFC tells: TimeStampReq ::= SEQUENCE { version INTEGER { v1(1) }, messageImprint MessageImprint, --a hash algorithm OID and the hash value of the data to be --time-stamped reqPolicy TSAPolicyId OPTIONAL, nonce INTEGER OPTIONAL,

Can anyone please help me in understanding the process and Java APIs used while timestamping a signature. I need to sign a file and timestamp it using TSA url " http://timestamp.globalsign.com/scripts/timstamp.dll " using Java APIs. I am able to sign the file using java.security APIs but unable to timestamp it. Your question is a bit broad... I will give you some info which I hope it will point you on the right direction. The thing is that you want to use a timestamp service to perform a timestamp signature using the service there: http://timestamp.globalsign.com/scripts/timstamp.dll . First