locked
How to generate single signature for code signing and timestamp RRS feed

  • Question

  • Hi we are developing Win 7 VC++ app using Crypto APIs. 
    Here code signing is done using Cryptsignhash() method, that generates the signature. Later for time stamping CryptRetriveTimestamp() method is used which also generate the time stamp signature. Thus we wanted to know whether there is any single Crypto API available that can do code signing and timestamping together and shall generate single signature. At verification side it should be also possible to separate code signing and timestamp signatures prior to verification. 

    Any help is highly appreciated. Thanks.

    Friday, April 17, 2015 5:21 AM

Answers

  • On 4/17/2015 1:21 AM, Babu12345 wrote:

    *Hi we are developing Win 7 VC++ app using Crypto APIs. *
    *Here code signing is done using Cryptsignhash() method, that generates the signature. Later for time stamping CryptRetriveTimestamp() method is used which also generate the time stamp signature. Thus we wanted to know whether there is any single Crypto API available that can do code signing and timestamping together and shall generate single signature.

    No. Normally, you don't counter-sign the actual data - you counter-sign and time stamp your signature. You don't want to transmit the whole data (which could be a) large and b) confidential) to a third party. This is why it's a two step process.


    Igor Tandetnik
    • Marked as answer by Shu 2017 Monday, April 27, 2015 1:10 PM
    Friday, April 17, 2015 3:03 PM