RHC3161 : Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP)
(snip)
The TSA is REQUIRED:
to use a trustworthy source of time.
to include a trustworthy time value for each time-stamp token.
to include a unique integer for each newly generated time-stamp
token.
to produce a time-stamp token upon receiving a valid request
from the requester, when it is possible.
to include within each time-stamp token an identifier to
uniquely indicate the security policy under which the token was
created.
to only time-stamp a hash representation of the datum, i.e.,
a data imprint associated with a one-way collision
resistant hash-function uniquely identified by an OID.
to examine the OID of the one-way collision resistant hash-
function and to verify that the hash value length is consistent
with the hash algorithm.
not to examine the imprint being time-stamped in any way (other
than to check its length, as specified in the previous bullet).
not to include any identification of the requesting entity in
the time-stamp tokens.
to sign each time-stamp token using a key generated exclusively
for this purpose and have this property of the key indicated on
the corresponding certificate.
to include additional information in the time-stamp token, if
asked by the requester using the extensions field, only for the
extensions that are supported by the TSA. If this is not
possible, the TSA SHALL respond with an error message.
通信内容の秘密は保証されるの?内容が盗み読まれたら困るものばかりじゃ? (スコア:2, 興味深い)
Re:通信内容の秘密は保証されるの?内容が盗み読まれたら困るものばかりじゃ? (スコア:3, 参考になる)
Re:通信内容の秘密は保証されるの?内容が盗み読まれたら困るものばかりじゃ? (スコア:2, 参考になる)
参考までに日本語訳版
e文書法に対応する場合にも使われるRFC3161 (スコア:1, 参考になる)
e文書法の場合は、作成者の電子署名とタイムスタンプとの2種の署名で成り立ちます。
なんせ、電子署名の有効期限が短いので、5年、10年補完義務のある書類では
電子署名が有効期限切れになってしまって用を成さない。
だから、その時間に確かに作られたのだ、というタイムスタンプが必要となるのですね。