CSP Timestamping Authority is an on-premises timestamping solution based on RFC 3161 that guarantees that data, including documents or code, exists at a given time through the generation of digitally signed timestamps. Specifically:
- Proof of the time when a digital signature was applied or validated.
- Prevents code rejection, ensuring that the signature is valid when signing.
- Enables digital signature verification after the certificate used for the signature is revoked or expired.
See the following table for supported Hardware Security Modules (HSMs).
Hardware | Client driver | Firmware |
|---|---|---|
Entrust nShield Connect XC | 13.7.3 (FIPS 140-2 Level 3 mode supported) | 12.60.15 & 12.60.2 |
Entrust nShield 5c | 13.7.3 | 13.2.4 |
Thales Luna HSM 7 | 10.7.0 | 7.7.1-20 |
When integrating a Hardware Security Module (HSM):
- You do not need to install the client drivers because the solution already includes this software. However, these client drivers cannot be updated.
- You cannot use HSMs from different providers simultaneously, meaning that nShield and Thales HSMs cannot coexist within the same deployment.
- You can only use 1/N card sets. A card set of, for example, 2/5 cards is not supported.
- Changing the settings of an Entrust nShield HSM requires the steps described in Administrating nShield HSM integration.