Time Stamping is a valuable complement to digital signing practices, enabling organizations to record when a digital item was signed.
With the BlueCerts Time Stamping Service powered by SwissSign, companies can assure, through the use of timestamps, the legal validity and conformance of their electronic documents.
For some applications the timing of a digital signature is critical as for example in the case of stock trades or some legal proceedings.
Even when time is not intrinsic in the applications, time stamping is helpful for record keeping and audit processes, because it offers a mechanism witch prove that the digital certificate was valid at the time it was used.
Many software programs as Microsoft office, support time stamping capabilities.
Risk with insecure Time Stamping:
. The inability to trust electronic processes can result in costly paper trails to back up electronic recalls
. Insecure time stamping or digital signing processes can expose an organization to compliance problems and legals challenges.
. By Manipulations a computer clock, an attacker can easily compromise a software based time stamping process.
Price policy is based on a minimum of 1 000 000 documents per year
Regular business requires documents to be signed with a signature and date. But In the digital business world one can digitally sign documents with the necessary timestamps being delivered via a timestamp service. Timestamps have advantages over the dates associated with a handwritten signature. If a document which has been signed with a digital timestamp is subsequently altered, the timestamp becomes invalid. Thus the “integrity” of an electronic document can be ensured.
· Accredited and qualified according to Law
· Small budget solution – volume discount with increasing volume, 10 signatures free per day, annual invoice for ordered volume
· Simple and automated usage based on standard interfaces
· Proof of time and integrity
· Only the hash will be signed (a fingerprint of your document) – BlueCerts does not see the content of your documents
· Combined use possible – including signing services, organisation certificates and code signing certificates. In this way you can show evidence of ownership and provide non-repudiation guarantees for your documents.
How does a time stamp service work?Typically documents have a PDF/A format. Initially a fingerprint of the document will be created – a so-called “hash”. The hash comprises a small set of digits and characters representing the complete document. If the document is ever changed the new hash will be completely different. This hash will be sent to SwissSign. SwissSign signs the hash with its private key. The signed hash is then combined with the original PDF document to produce a signed PDF document. By using the public key of the timestamp service anybody can quickly check whether the timestamp is valid or not.
Which software do I need to communicate with the BlueCerts powered by SwissSign Time stamp service?
As BlueCerts Time Stamping Solution powered by SwissSign uses the international standard RFC3161, you can use any standard application which also uses this standard. You simply need to configure your application (for example Adobe Acrobat X Pro) to use the URL http://tsa.swisssign.net in order to address the timestamp service.
BLUE Digital Signature
BLUE Time Stamping