|

Computer Security

»

Encryption and Cryptography

»

TSP over https

View: New views

5 Messages — Rating Filter: Alert me

	TSP over https by GuTyKa :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hi! Unfortunately I cannot push a timestamp request over https protocol with Cryptlib :( If anyone has a sample code or any idea how to start I would be realy grateful to read it :) Thank you! GuTyKa _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.
	Re: TSP over https by GuTyKa :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hi! Maybe there is someone who could help or give some idea how to wrap a HTTPS layer over a TSP session. Thank you! GuTyKa gutyka@... írta: > Hi! > > Unfortunately I cannot push a timestamp request over https protocol with > Cryptlib :( If anyone has a sample code or any idea how to start I would > be realy grateful to read it :) > > Thank you! > GuTyKa > > _______________________________________________ > Cryptlib mailing list > Cryptlib@... via Mail: > cryptlib-request@... > Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ > http://news.gmane.org/gmane.comp.encryption.cryptlib > Posts from non-subscribed addresses are blocked to prevent spam, please > subscribe in order to post messages. _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.
	Re: TSP over https by Peter Gutmann :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message gutyka@... writes: >Unfortunately I cannot push a timestamp request over https protocol with >Cryptlib :( If anyone has a sample code or any idea how to start I would be >realy grateful to read it :) TSP isn't normally run over HTTPS, if you wanted to do this you'd have to either write your own network plugin to intercept the TSP traffic and redirect it into an SSL session (see the manual for details on network-layer plugins) or adapt the existing network-layering code that allows you to layer a TSP session over an SSL session, see io/net_trans.c and related files. Peter. _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.
	Re: TSP over https by GuTyKa :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Thank you Peter! In the meantime I've made a workaround on the problem so now I make the detached signature file with Cryptlib then use OpenTSA to generate the timestamp. Unfortunately it is not acceptable to have two separate file for the signature and timestamp. Is there an easy way to combine these? Can I add an already generated timestamp attribute to a detached signature somehow? Thanks for the help! GuTyKa Peter Gutmann wrote: > gutyka@... writes: > >> Unfortunately I cannot push a timestamp request over https protocol with >> Cryptlib :( If anyone has a sample code or any idea how to start I would be >> realy grateful to read it :) > > TSP isn't normally run over HTTPS, if you wanted to do this you'd have to > either write your own network plugin to intercept the TSP traffic and redirect > it into an SSL session (see the manual for details on network-layer plugins) > or adapt the existing network-layering code that allows you to layer a TSP > session over an SSL session, see io/net_trans.c and related files. > > Peter. _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.
	Re: TSP over https by Peter Gutmann :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message gutyka@... writes: >In the meantime I've made a workaround on the problem so now I make the >detached signature file with Cryptlib then use OpenTSA to generate the >timestamp. Unfortunately it is not acceptable to have two separate file for >the signature and timestamp. Is there an easy way to combine these? Can I add >an already generated timestamp attribute to a detached signature somehow? No, because a timestamp is bound to the signature data and there's no easy way to inject that into an envelope. (That is, you could hack the code to allow you to attach arbitrary timestamp data, see the code in mechs/sign_cms.c, but it's not supported as a standard facility). Peter. _______________________________________________ Cryptlib mailing list Cryptlib@... via Mail: cryptlib-request@... Archive: ftp://ftp.franken.de/pub/crypt/cryptlib/archives/ http://news.gmane.org/gmane.comp.encryption.cryptlib Posts from non-subscribed addresses are blocked to prevent spam, please subscribe in order to post messages.