-
Filing this as a RFC, since the exact scope of a good/sane RFC 3161 API isn't fully clear.
## Background
[RFC 3161](https://www.ietf.org/rfc/rfc3161.txt) defines the Time Stamp Protocol (TSP), w…
-
作者您好,我按照您的教程搭建了本地的时间戳服务器,使用TimeStamping.exe正常,编译了HookSigntool.dll修改为了本地服务器,但是使用亚洲诚信签名工具还是显示时间戳错误。
我尝试使用signtool.exe去补签时间戳,执行命令
signtool.exe timestamp /t http://localhost:1003/TSA/2013-07-01T00:00:00…
allsj updated
2 months ago
-
While validating the tsa cert chain after signing, we must ask the signer to provide their trusted TSA root cert. This is because most of the TSA servers are using `http` instead of `https`, building …
-
- 取得文件的Property属性
利用FileVersionInfo クラス
FileVersionInfo里包含了很多有用的属性:
CompanyName,FileDescription,FileMajorPart,FileMinorPart,FileName,FileVersion,OriginalFilename,ProductMajorPart,ProductMinorPart,P…
-
As of June 1st, code signing certificates are delivered as E-Token (on USB stick), not possible anymore to create a PFX from it. How can we sign the apps using functionality of BcContainerHelper? Any …
-
Affected Version:
Version 2.8 (Compiled from tarball on Ubuntu 22.04.4 LTS)
Command:
```sh
osslsigncode sign \
-pkcs11module /usr/lib/libeToken.so \
-pkcs11cert 'pkcs11:token=;type=cert'…
-
### Is your feature request related to a problem?
Signature validation will fail if signing key/certificates are expired. In this case, signers need to rotate the key/certificates in time and re-si…
-
### Background and motivation
As a C# developer, I would like to have the Oids constants exposed to me so that I do not need to add my own constants for the same thing, thus reducing the size of my f…
-
RFC3161 does not define a specification for the API path of a TSA, only standardizing the input and output as timestamp request and response structures. The Sigstore TSA implementation defines the pat…
-
### Description
It would be great if sigstore-go could not just verify, but also sign bundles.
There aren't many libraries that support signing bundles today (just sigstore-js?) This would also allo…