Timestamping Service Technical Information
traidsk edited this page Apr 19, 2024
·
20 revisions
Timestamping Service is a HTTP service that responds to HTTP POST method
| Parameter | Value |
|---|---|
| LIVE Service address |
Issuer CN=EE Certification Centre Root CA http://tsa.sk.ee https://tsa.sk.ee Issuer CN=SK TSA CA 2023E http://tsa.sk.ee/ecc Issuer CN=SK TSA CA 2023R http://tsa.sk.ee/rsa All TEST endpoints available also via HTTPS. TLS certificate for HTTPS endpoint to be included in the client application trust list is available at https://c.sk.ee/tsa-tls/tsa_sk_ee.crt |
| LIVE Service certificate |
SK TIMESTAMPING AUTHORITY 2023 SK TIMESTAMPING UNIT 2024E SK TIMESTAMPING UNIT 2024R |
| TEST environment endpoints |
Issuer CN=TEST of SK TSA CA 2023E [http://tsa.demo.sk.ee/tsa] (http://tsa.demo.sk.ee/tsa) (ECC-256 TSU Public Key certificate) Issuer CN=TEST of SK TSA CA 2023E http://tsa.demo.sk.ee/tsaecc (ECC-256 TSU Public Key certificate) Issuer CN=TEST of SK TSA CA 2023R http://tsa.demo.sk.ee/tsarsa (RSA-4096 TSU Public Key certificate) All TEST endpoints available also via HTTPS TLS certificate for HTTPS endpoint to be included in the client application trust list is available at https://c.sk.ee/tsa-tls/tsa_demo_sk_ee.crt |
| TEST Service certificates |
DEMO SK TIMESTAMPING AUTHORITY 2020 DEMO SK TIMESTAMPING AUTHORITY 2023E DEMO SK TIMESTAMPING AUTHORITY 2023R |
| Parameter | Value |
|---|---|
| Repository | Timestamping Authority Practice Statement v7.0 PDF |
| Timestamping policy OID | 0.4.0.2023.1.1 |
| Supported hash algorithms | SHA256, SHA384, SHA512 |
| Signing key parameter | 2048bit RSA, 4096bit RSA, elliptic curve P-256 |
| Signing algorithm available | SHA512withRSA, SHA256withECDSA |
| Supported service policies | 0.4.0.2023.1.1 |
| Supported extensions in requests | Not specified |
| Responses to the correct requests include the following | - Status information - Operation Okay - Signing hash algorithm - Timestamping policy OID - Timestamp time - Timestamping Service Certificate (not incl. certificate chain) - Extensions in use - nonce value - Precision (0x01 seconds) - tsa (timestamping service certificate DN) |
| Responses to the incorrect requests include the following | - Status information Rejected - Error description |
| Response to the request from a client that has no access to the timestamping service | HTTP status code 403 - Forbidden |
| Response to the non-timestamping query | HTTP status code 400 - Bad request |