Hello! Our company currently implementing TSA (Time Stamp Authority) service. And now we are searching CA (Certification Authority), which could issue certificate with intended usage: Timestamping. I contacted with few CA's, but they offer just Digital ID certificates, and know nothing about TSA. Maybe someone has experience with such problem? Thank You!
+2
A:
I doubt you will find any commercial CAs offer certificates with timestamping usage. There is no market and it goes against their interests also. Just like the certificate with CA or OSCPSigning usage, you can only get it if you have some kind of business deal with CA.
If you are offering a TSP service, you can just use regular cert and ignore the usage. Depending on the library you use, it may not check usage at all. However, Java 6 does check it.
You can also use a self-signed cert and distribute your root CA to whoever wants to do verification locally.
ZZ Coder
2010-06-01 17:33:33