(0 Items) Login Register
Skip Navigation LinksProducts > ADSS TSA Server > Features

ADSS Timestamp Server Features

ADSS TSA can be deployed as a stand-alone timestamp server or as a TSA management proxy for other TSAs. The latter is of value where other timestamp servers do not offer authentication and transaction logging and reporting, which is typical in case of specialist timestamp server hardware devices. ADSS timestamp server key features include:

Easy to use Timestamp software

  • Multiple TSA Policies

    A single installation of ADSS TSA can run multiple TSA profiles each with their own time stamping policy and with unique timestamp server signing keys. screenshot

  • Detailed Reporting

    Specific reports can be produced based on requestor activity within a defined date range for commercial purposes. ADSS TSA provides detailed reports on authorised system usage, on a per-client basis and also records each timestamp token issued, all within in secured logs.
    screenshot 1 | screenshot 2 | screenshot3

  • Timestamp server - service statistics

Advance Security

  • Algorithms & Key lengths

    ADSS TSA supports long key lengths – currently up to 4096-bits. It also supports strong hash algorithms currently SHA-1, SHA-256, SHA-384 and SHA-512. It supports FIPS 140-2 and CC EAL4+ HSMs. screenshot

  • Maximum Security

    Timestamp services can be provided over SSL/TLS with client authentication, Operator access is also controlled with SSL/TLS client certificates. Keys can be managed inside a secure FIPS approved HSM. Logs are tamper-evident. Operating under dual control is possible.

  • Access Control

    In order to filter unwanted users, timestamp requestors can be authenticated using SSL client certificates and/or IP addresses. This ensures the timestamping server is not abused by unauthorised users. screenshot

  • Real-Time Alerts

    Configure emails and/or SMS alerts for specific events and send these to specific server operators. SNMP alerting is also supported.

  • HSM

    Can work with all popular PKCS#11 HSMs, e.g. from SafeNet, nCipher/Thales and AET. Supports multiple PKCS#11 devices at the same time, including use of smartcards and USB tokens. Cryptographic keys can be grouped for purposes of high availability.

Platform Independent RFC 3161 Server

  • Multi-platform Support

    ADSS TSA is available on Windows, Solaris and Linux. It supports multiple databases including SQL Server, Oracle, PostgreSQL and MySQL. It also supports multiple HSM vendors.

  • Flexible Trust Model

    Timestamp server’s keys can be self-certified, or a delegated certificate can be issued by an inbuilt CA module or external CA.

A compliant RFC 3161 Server

  • ADSS TSA Standards Compliance

    ADSS TSA is a implements time stamp Protocol (TSP as specified in RFC3161). It seemlessly interacts with the following standard PKCS#7, PKCS#11, SSL/TLS. It can be used with standard PDF signatures, XML DigSig and optional long term signatures to ETSI PAdES, CAdES, XAdES.

  • Clustering

    For high performance needs, ADSS timestamp server can easily be installed as part of a load-balanced clustered environment.

  • Proven Technology

    ADSS TSA uses the well proven ADSS Server to deliver the underlying platform features such as optional dual controls, secure webbased management screens, event logging, trust anchor management, key and certificate management, secure logging and reporting as well as support for HSMs.

Integration & Testing

  • Interoperability

    ADSS TSA has been designed to work with a variety of timestamp clients, including Ascertia PDF Sign&Seal, ADSS Enterprise Server (PDF Signer Server, XML Signer Server, File Signer Server) and third party products including Adobe® Acrobat®.

  • Test Tools

    TSA Crusher is licensed separately to monitor any RFC 3161 server availability as well as absolute performance.

Timestamp Server Administation

  • Timestamp Software Management

    Ascertia's timestamp software has been designed to provide management services for back-end timestamp servers. In this capacity it authenticates end-user requests and records all transactions for report generation and billing purposes. The interaction with back-end timestamp servers is invisible to end-users. screenshot

  • Timestamp Server Proxy

    Ascertia can optionally provide a local timestamping server proxy to enable end user or server systems to use a centralised requestor on behalf of the organisation. A client SSL certificate is used to allow the requests to be authenticated by the ADSS TSA Server. screenshot

Copyright © 2002-2011 Ascertia. All rights reserved.

Company | Privacy Statement | Contact Us

Ascertia is a global provider of Digital Signature products and solutions that enable trust within electronic workflows. Organisations can now safely cross the final hurdle in migrating old paper-intensive approval processes to the new secure digital world. Ascertia’s Digital Signing products are designed to be easy to integrate and use in a range of business scenarios.