CSP Timestamping Authority is an on-premises timestamping solution based on RFC 3161 that guarantees that data, including documents or code, exists at a given time through the generation of digitally signed timestamps. Specifically:

• Proof of the time when a digital signature was applied or validated.
• Prevents code rejection, ensuring that the signature is valid when signing.
• Enables digital signature verification after the certificate used for the signature is revoked or expired.

 When deployed on Cryptographic Security Platform, this Entrust solution adds the following to the Base installation integration report.

Hardware secure modules supported by CSP Timestamping Authority

CSP Timestamping Authority supports the following Hardware Secure Modules (HSM).

When integrating a Hardware Security Module (HSM):

• You do not need to install the client drivers because the solution already includes this software. However, these client drivers cannot be updated.
• You cannot use HSMs from different providers simultaneously, meaning that nShield and Thales HSMs cannot coexist within the same deployment.
• You can only use 1/N card sets. A card set of, for example, 2/5 cards is not supported.
• Changing the settings of an Entrust nShield HSM requires the steps described in Administrating nShield HSM integration.

Signature key generation algorithms supported by CSP Validation Authority

CSP Validation Authority supports the following algorithms for generating the OCSP response signing key.