Aller au contenu
SESHAT

RFC 3161 Timestamps

Overview

Section intitulée « Overview »

RFC 3161 defines a protocol for trusted timestamps from a Time Stamping Authority (TSA). SESHAT integrates with FreeTSA, providing ISO/IEC 18014-2 certified timestamps.

Why TSA Timestamps?

Section intitulée « Why TSA Timestamps? »

While blockchain provides timestamps, RFC 3161 adds:

FeatureBlockchainRFC 3161
StandardCustomISO/IEC 18014-2
Legal acceptanceGrowingEstablished
VerificationOn-chainOffline possible
IndependenceCrypto ecosystemTraditional PKI

Belt and suspenders: Use both for maximum legal protection.

Configuration

Section intitulée « Configuration »
Fenêtre de terminal
ENABLE_TSA=true
TSA_URL=https://freetsa.org/tsr  # Default

How It Works

Section intitulée « How It Works »

  1. Hash Prepared

    The Merkle root of your bundle is computed.

  2. Request Sent

    ASN.1 DER-encoded TimeStampReq sent to TSA.

  3. Token Received

    TSA returns signed TimeStampResp (.tsr file).

  4. Stored

    TIMESTAMP.tsr included in bundle.

Verification

Section intitulée « Verification »

Verify with OpenSSL:

Fenêtre de terminal
# Download FreeTSA certificate chain
curl -O https://freetsa.org/files/cacert.pem
curl -O https://freetsa.org/files/tsa.crt


# Verify timestamp
openssl ts -verify \
  -in TIMESTAMP.tsr \
  -data PROOF_CHAIN.json \
  -CAfile cacert.pem \
  -untrusted tsa.crt

Expected output:

Verification: OK

FreeTSA Details

Section intitulée « FreeTSA Details »
  • Provider: FreeTSA.org
  • Standard: RFC 3161 / ISO/IEC 18014-2
  • Cost: Free
  • Accuracy: Synchronized to UTC
  • Certificate: Publicly verifiable