On Thu, Jul 28, 2005, coco coco wrote: > > > >Just found a link which may help: > > > >http://www.thawte.com/support/code/msauth.html#timestamp > > > > Thanks a lot. Sorry to sound like a dumbass, but how do I put that > information into the certificate when I signed it? :) I mean, how do I > specify the URL of the tsa, which extension to use ? >
You don't. The timestamp URL is something you use on the command line of the relevant authenticode signing tool. It then queries the timestamp server gets a timestamp back and includes it in the signed object. The whole point of a timestamp is to ensure that signed objects still work after the certificate has expired by providing assurance that they were signed at or before a stated time. > If someone could give an ASN.1 def of a MS authenticode cert, that would > help too. There's all sorts of extraneous garbage in some of the official authenticode certificates. You don't need any of it. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
