On Thu, Jul 28, 2005, Dr. Stephen Henson wrote: > On Thu, Jul 28, 2005, coco coco wrote: > > > > > Ok, sounds simple enough, so I create a root CA with openssl, then sign a > > certificate > > for a fictitious user, which use that to sign an Office VBA (just some dummy > > stuff, doing nothing). > > > > After loading up my VBA, I see it has no timestamp, and according to the > > msdn site, the signature is timestamped by connecting to the CA (which > > issued > > the certificate) and get the timestamp signed by that CA. And this is done > > in the background, during code signing. I digged around, there's no other > > way to do it. > > > > Well when I tried the timestamp could be added by using any appropriate > timestamping server. At the time only VeriSign's was available, there may be a > few more now: I notice there's a Thatwe timestamping CA in MSIE. > > The authenticode timestamping stuff at the time used a non-standard format, > though it was documented. >
Just found a link which may help: http://www.thawte.com/support/code/msauth.html#timestamp Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
