38 messages in org.oasis-open.lists.dssRE: [dss] Timestamping| From | Sent On | Attachments |
|---|---|---|
| Trevor Perrin | Mar 18, 2003 1:31 pm | |
| Dimitri Andivahis | Mar 19, 2003 3:12 pm | |
| Trevor Perrin | Mar 19, 2003 8:35 pm | |
| Dimitri Andivahis | Mar 20, 2003 4:27 pm | |
| jmessing | Mar 20, 2003 4:46 pm | |
| Trevor Perrin | Mar 20, 2003 7:41 pm | |
| jmessing | Mar 20, 2003 8:42 pm | |
| Robert Zuccherato | Mar 21, 2003 7:09 am | |
| Robert Zuccherato | Mar 21, 2003 7:36 am | |
| Trevor Perrin | Mar 21, 2003 3:10 pm | |
| Dimitri Andivahis | Mar 21, 2003 3:35 pm | |
| Dimitri Andivahis | Mar 21, 2003 4:07 pm | |
| Trevor Perrin | Mar 21, 2003 6:24 pm | |
| Nick Pope | Mar 22, 2003 6:58 am | |
| Robert Zuccherato | Mar 24, 2003 7:40 am | |
| Robert Zuccherato | Mar 24, 2003 7:44 am | |
| Robert Zuccherato | Mar 24, 2003 7:51 am | |
| Nick Pope | Mar 24, 2003 8:28 am | |
| Trevor Perrin | Mar 24, 2003 12:03 pm | |
| Gregor Karlinger | Mar 25, 2003 7:39 am |  .bin |
| Gregor Karlinger | Mar 25, 2003 8:05 am | .bin |
| kare...@esat.kuleuven.ac.be | Mar 25, 2003 8:38 am | |
| Trevor Perrin | Mar 25, 2003 10:48 am | |
| Nick Pope | Mar 25, 2003 11:34 am | |
| Robert Zuccherato | Mar 27, 2003 11:08 am | |
| Gregor Karlinger | Mar 31, 2003 12:07 am | .bin |
| Nick Pope | Mar 31, 2003 4:42 am | |
| Dimitri Andivahis | Apr 1, 2003 3:24 pm | |
| Karel Wouters | Apr 2, 2003 4:21 am | |
| Trevor Perrin | Apr 3, 2003 11:47 am | |
| Robert Zuccherato | Apr 3, 2003 11:49 am | |
| Robert Zuccherato | Apr 3, 2003 12:29 pm | |
| Trevor Perrin | Apr 3, 2003 2:06 pm | |
| Dimitri Andivahis | Apr 4, 2003 5:57 am | |
| Dimitri Andivahis | Apr 4, 2003 3:00 pm | |
| Dimitri Andivahis | Apr 4, 2003 3:24 pm | |
| Trevor Perrin | Apr 4, 2003 11:39 pm | |
| Trevor Perrin | Apr 7, 2003 11:56 am |
| Subject: | RE: [dss] Timestamping | |
|---|---|---|
| From: | Trevor Perrin (tre...@trevp.net) | |
| Date: | Apr 7, 2003 11:56:17 am | |
| List: | org.oasis-open.lists.dss | |
Hi Dimitri,
To explain my point on the call -
If a timestamp needs to be handed to a TSA of a particular type to be verified, then the timestamp might as well be opaque to any client - a client requests it be created, and then some other client requests it be verified, but the client doesn't care about the contents.
I think the value of spec'ing the internals of a linked timestamp format is only if we want independently implemented TSAs and timestamp "verifiers" (which may or may not be TSAs themselves) to interoperate, i.e. if we want a timestamp produced by a TSA to be verifiable by independently implemented verifying services.
But achieving that seems complicated. The TSA producing a timestamp has lots of options, in terms of different aggregating, accumulating, linking, and publishing schemes. Either we'd need to only support a specific approach to each of these, or design a data format and verifying algorithm (and perhaps other supporting protocols/data formats, for publishing derived values and retrieving them) so general it would work no matter how the timestamp issuer does things.
Probably either way is doable, but given that we can do a simple, signed timestamp that's "good enough" for most people, and given that linking schemes are IPR-encumbered, I think we should design a format and protocol general/extensible enough to support linking schemes in the future, but not tackle them right away.
But we should figure out what requirements we need to put in, to support extensibility to linking schemes. For example, you mentioned that timestamp production might be a 2-phase process, where you get part of the signature right away, and then come back after a round ends to get the rest. What other specific requirements would we need to add to support linked schemes?
Trevor