A Web Services Based Architecture for Digital Time Stamping

This paper describes the results of a research activity conducted cooperatively by an academic and an industrial party. It presents a practical solution for and an experience in the implementation of time stamping services and their exposition to the Internet. We present the main state-of-the-art algorithms for time stamping applications, thoroughly discuss pros and cons of each technique, and highlight the crucial issues raised by their practical implementation. Then we present an architecture which provides both relative temporal authentication, based on a linear linking scheme, and absolute temporal authentication, based on publishing mechanisms as well as on a trusted time source. In order to guarantee ubiquity and interoperability, the actual implementation of the proposed architecture relies on the emerging Web services technology for exposing time stamping functionalities to the Internet. Experimental tests have demonstrated the effectiveness of the proposed solution.

[1]  Bernard P. Zajac Applied cryptography: Protocols, algorithms, and source code in C , 1994 .

[2]  Alessandro Cilardo,et al.  Using Web Services Technology for Inter-enterprise Integration of Digital Time Stamping , 2003, OTM Workshops.

[3]  L. Romano,et al.  Providing Interoperable Time Stamping Services , 2003 .

[4]  Bruce Schneier,et al.  Applied cryptography (2nd ed.): protocols, algorithms, and source code in C , 1995 .

[5]  Ronald L. Rivest,et al.  The MD5 Message-Digest Algorithm , 1992, RFC.

[6]  Stuart Haber,et al.  How to time-stamp a digital document , 1990, Journal of Cryptology.

[7]  Carlisle M. Adams,et al.  Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) , 2001, RFC.

[8]  Robert J. Boncella Secure Sockets Layer (SSL) , 2004 .

[9]  Bart Preneel,et al.  RIPEMD-160: A Strengthened Version of RIPEMD , 1996, FSE.

[10]  Ralph C. Merkle,et al.  A Certified Digital Signature , 1989, CRYPTO.

[11]  Josh Benaloh,et al.  Efficient Broadcast Time-Stamping , 1991 .

[12]  Stuart Haber,et al.  Secure names for bit-strings , 1997, CCS '97.

[13]  Alessandro Cilardo,et al.  Providing Digital Time Stamping Services to Mobile Devices , 2003, 2003 The Ninth IEEE International Workshop on Object-Oriented Real-Time Dependable Systems.

[14]  Ralph C. Merkle,et al.  Protocols for Public Key Cryptosystems , 1980, 1980 IEEE Symposium on Security and Privacy.

[15]  Harry M. Sneed Encapsulating legacy software for use in client/server systems , 1996, Proceedings of WCRE '96: 4rd Working Conference on Reverse Engineering.

[16]  Alfred Menezes,et al.  Handbook of Applied Cryptography , 2018 .

[17]  Jan Willemson,et al.  Time-Stamping with Binary Linking Schemes , 1998, CRYPTO.

[18]  Russ Housley,et al.  Cryptographic Message Syntax (CMS) , 2002, RFC.