Publications
Withdrawn on July 01, 2025.
Recommendation for Digital Signature Timeliness
Documentation
Topics
Date Published: September 2009
Planning Note (07/01/2025):
This publication has been withdrawn. Learn more at the Crypto Publication Review Project.
Author(s)
Elaine Barker (NIST)
Establishing the time when a digital signature was generated is often a critical consideration. A signed message that includes the (purported) signing time provides no assurance that the private key was used to sign the message at that time unless the accuracy of the time can be trusted. With the appropriate use of digital signature-based timestamps from a Trusted Timestamp Authority (TTA) and/or verifier-supplied data that is included in the signed message, the signatory can provide some level of assurance about the time that the message was signed.
Establishing the time when a digital signature was generated is often a critical consideration. A signed message that includes the (purported) signing time provides no assurance that the private key was used to sign the message at that time unless the accuracy of the time can be trusted. With the...
See full abstract
Establishing the time when a digital signature was generated is often a critical consideration. A signed message that includes the (purported) signing time provides no assurance that the private key was used to sign the message at that time unless the accuracy of the time can be trusted. With the appropriate use of digital signature-based timestamps from a Trusted Timestamp Authority (TTA) and/or verifier-supplied data that is included in the signed message, the signatory can provide some level of assurance about the time that the message was signed.
Hide full abstract
Keywords
Digital signatures; timeliness; timestamp; Trusted Timestamp Authority
Control Families
System and Communications Protection
