We are working on optimizing the digital signing process using the signtool.exe digest options. So far the workflow looks like this: Create the digest on the client: signtool.exe sign /f cert /fd...

TL;DR Question Does the expiry of the Timestamp Certificate have any bearing on the validity of the signed file (under normal Windows operation)? Preamble The basics of Code Signing and Timestampin...

I need to digitally sign&timestamp a PE file (EFI, actually) on Linux. I found 3 tools for signing PE files: pesign, osslsigncode and signcode (mono), but it seems none quite fits my needs. The...

Updated I have posted a script I'm using for this to the StackExchange Code Review site. My original question for this was Is there a way I can sign a Git commit with an X.509 certificate and tim...

In my build process, I want to include a timestamp from an RFC-3161-compliant TSA. At run time, the code will verify this timestamp, preferably without the assistance of a third-party library. (Thi...

I try to send a SOAP message in an XML file to a webservice and than grab the binary output and decode it. Endpoint uses HTTPS protocol, so I used TrustManager in my code to avoid PKIX problems. Yo...

I'm curious if there is way to digitally sign documents (technically any piece of data), such as contracts or photos, so that 10 years from now, it can be proven that they are from this time, not f...

We just switched from a SHA-1 to a SHA-2 code signing certificate. (As background info, we sign .exe and .xap files on Windows with signtool.exe, using COMODO code signing certificates.) We do this...

I would like to timestamp my DLL file with my own Authenticode Timestamping Service. Is this possible? How could I achieve this?

After a jar is signed and the -tsa option was used, how can I validate that the time stamp was included? I tried: jarsigner -verify -verbose -certs myApp.jar But the output does not specify anyt...

Would like to know if anybody knows any free(trial) time-stamp server service. I would like to test time stamping features in itext. Like I used Start Com class 1 as free CA for testing purpo...

I have an issue creating a valid CMS signature with Bouncy Castle using a trusted timestamp. The signature creation works well (I want to include the signature to a PDF file), the signature is vali...

is it possible to timestamp PDF document offline using iText or any other component? I've googled standard solution utilizing iText and TSAClient class but it requires TSA as online service. We h...

I was reading What happens when a code signing certificate expires - Stack Overflow and wondering about a more solid answer. The answer provided was more about setting up your own CA. Even with you...

Is there a cryptographic mechanism by which it is possible to sign a document with a date, such that it is not possible to forge that same signature at a later date? Maybe some sort of server that ...

[edit: I've written a blogpost that explains everything in detail: look here] Hi! I'm desperately trying to build a service for trusted timestamps based on rfc3161. I've decided to use the free t...

If I set a timestamp with signing, what happens? What if I don't set? Is it essential? Why is it recommended?

I have just got my code signing certificate from StartSSL and am trying to sign our installer. The signing process goes well and I get an installer exe that Windows no longer complains about being...

I would like to sign records in a database with a secure timestamp to prove they have not been altered by anyone after that date. What methods or protocols should I consider? RFC 3161? Most of the ...