Re: Trusted timestamping

2009-10-07 Thread Harald Hanche-Olsen
+ Fearghas McKay fm-li...@st-kilda.org: http://www.itconsult.co.uk/stamper.htm Has been around since ~1995 and just works whenever I have used it, albeit some time ago. It publishes time stamp info on Usenet, comp.security.pgp.announce which shows the last activity was in 2002...

RE: Trusted timestamping

2009-10-07 Thread Alex Pankratov
-Original Message- From: pgut001 [mailto:pgut...@wintermute01.cs.auckland.ac.nz] On Behalf Of Peter Gutmann Sent: October 5, 2009 10:07 PM To: a...@poneyhot.org; cryptography@metzdowd.com Subject: Re: Trusted timestamping Alex Pankratov a...@poneyhot.org writes: I have

Re: Trusted timestamping

2009-10-07 Thread Fearghas McKay
On 6 Oct 2009, at 14:48, Harald Hanche-Olsen wrote: As explained at http://www.itconsult.co.uk/stamper/stampnew.htm they moved to alt.security.pgp in 2002. But ... the latest timestamp summary I can see there is from May 2009, so I guess the point stands, unless it's just google groups that

Re: Trusted timestamping

2009-10-05 Thread PaweĊ‚ Krawczyk
On Sun, 04 Oct 2009 23:42:22 +0200 Alex Pankratov a...@poneyhot.org wrote: There is for example timestamp.verisign.com, but there is no documentation or description of it whatsoever. From European world plagued with qualified electronic signature disease - timestamp servers usually are

Re: Trusted timestamping

2009-10-05 Thread Ian G
On 04/10/2009 23:42, Alex Pankratov wrote: I guess my main confusion at the moment is why large CAs of Verisign's size not offering any standalone timestamping services. My view is that there is no demand for this as a service. The apparent need for it is more a paper requirement that came

RE: Trusted timestamping

2009-10-05 Thread piers.bowness
-Original Message- On Sunday, October 04, 2009 5:42 PM Alex Pankratov a...@poneyhot.org wrote: Does anyone know what's the state of affairs in this area ? I think there are two factors. 1) This is complex problem and 2) Where it might have really been required (i.e. the courts) it

Re: Trusted timestamping

2009-10-05 Thread Thierry Moreau
. There is also a way to timestamp signed PDFs, but the there appears to be nothing _trusted_ about available Trusted Timestamping Authorities. Just a bunch of random companies that call themselves that way and provide no indication why they should actually be *trusted*. No audit practicies

Re: Trusted timestamping

2009-10-05 Thread silky
into Authenticode signature of signed executable files. There is also a way to timestamp signed PDFs, but the there appears to be nothing _trusted_ about available Trusted Timestamping Authorities. Just a bunch of random companies that call themselves that way and provide no indication why

Re: Trusted timestamping

2009-10-05 Thread Fearghas McKay
On 5 Oct 2009, at 16:04, Ian G wrote: My view is that there is no demand for this as a service. The apparent need for it is more a paper requirement that came out of PKI world's search for a perfect product than any business need. E.g., if you think you want it, you might be better