Timestamps de confianza: comprender el formato (RFC3161)

StackOverflow https://stackoverflow.com/questions/5045416

Pregunta

[ Editar : he escrito un blogpost que explica todo detalladamente: busca aquí ]

¡Hola!

Estoy tratando desesperadamente de crear un servicio para las marcas de tiempo de confianza basadas en RFC3161.He decidido utilizar el servicio de tiempo libre de confianza gratuito en zeitstempel.dfn.de . .

Mi pregunta es cómo me pondré en contacto con este servicio para recibir una respuesta válida.Con respecto al formato de solicitud, la RFC cuenta: 

TimeStampReq ::= SEQUENCE  {
   version                      INTEGER  { v1(1) },
   messageImprint               MessageImprint,
     --a hash algorithm OID and the hash value of the data to be

     --time-stamped
   reqPolicy             TSAPolicyId              OPTIONAL,
   nonce                 INTEGER                  OPTIONAL,
   certReq               BOOLEAN                  DEFAULT FALSE,
   extensions            [0] IMPLICIT Extensions  OPTIONAL  }

donde 

   MessageImprint ::= SEQUENCE  {
        hashAlgorithm                AlgorithmIdentifier,
        hashedMessage                OCTET STRING  }

He encontrado una cliente que me ayudó un poco.

Sin embargo, todavía no sé cómo debo construir la solicitud del servicio de marca de tiempo.

Saludos!

¿Fue útil?

Solución

I'm glad that you find our software helpful. But you refer to our old service. Please visit www.ntp.org.pl - you'll find there the latest version of timestamping client and a lot of other useful free software related to time topic.

I'm not sure what you want to do. Maybe if you give a few more details, I'd be able to help you better. Anyway, I'll give you some hints, where to find some precious information.

Firs of all, you should look at OpenSSL project: http://www.openssl.org/docs/apps/ts.html# There is an example, how to create TSRequest. The request is stored in file, so you can read it's content. Later, you can send request to the server using this: http://www.openssl.org/docs/apps/tsget.html#

Antoher trick you can do is to install some sniffer (for example Wireshark - www.wireshark.org/ ), start our client from www.ntp.org.pl , send request, then find proper packet in wireshark to see what it contains.

Feel free to ask, if you have some additional questions. Please, give some more information about your service.

Licenciado bajo: CC-BY-SA con atribución
No afiliado a StackOverflow
scroll top