Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update timing accuracy statements in the policy document #179

Merged
Merged
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
18 changes: 8 additions & 10 deletions docs/tsa-policy.md
Original file line number Diff line number Diff line change
Expand Up @@ -574,24 +574,22 @@ The TSA shall ensure that time-stamp tokens are issued securely and include the

In particular:

1. The time-stamp token shall include an identifier for the time-stamp policy;
1. The time-stamp token shall include an identifier for the time-stamp policy.

1. Each time-stamp token shall have a unique identifier;
1. Each time-stamp token shall have a unique identifier.

1. The time values the TSU uses in the time-stamp token shall be traceable to
at least one of the real time values distributed by a UTC(k) laboratory.

1. The time included in the time-stamp token shall be synchronized with UTC
within the accuracy defined in this policy and, if present, within the
accuracy defined in the time-stamp token itself;
1. The time-stamp provider should periodically monitor its correctness of time
with a set of trusted UTC sources. The recorded accuracy should be included
in the returned time-stamp token.

1. If the time-stamp provider's clock is detected
(see section [7.3.2c](#732-clock-synchronization-with-utc)) as being out of
the stated accuracy (see section [7.1.2e](#712-tsa-disclosure-statement)))
then time-stamp tokens shall not be issued.
1. The time-stamp provider SHOULD monitor for accuracy and alert if it's found
to be out of sync.

1. The time-stamp token shall include a representation (e.g., hash value) of
the datum being time-stamped as provided by the requestor;
the datum being time-stamped as provided by the requestor.

1. The time-stamp token shall be signed using a key generated exclusively
for this purpose.
Expand Down