X-Git-Url: http://pere.pagekite.me/gitweb/homepage.git/blobdiff_plain/25e0cd197e5457c1b4546c1f750be8a61b638606..2303a53e3000b721cc73c3bfe81b6d2911b51a35:/blog/data/2014-03-25-trusted-timestamping.txt

diff --git a/blog/data/2014-03-25-trusted-timestamping.txt b/blog/data/2014-03-25-trusted-timestamping.txt
index 344846d579..c9ad9d3fe3 100644
--- a/blog/data/2014-03-25-trusted-timestamping.txt
+++ b/blog/data/2014-03-25-trusted-timestamping.txt
@@ -25,11 +25,13 @@ few years ago as <a href="http://tools.ietf.org/html/rfc3161">RFC
 3161</a>.  The mechanism is simple.  Create a hash of the file in
 question, send it to a trusted third party which add a time stamp to
 the hash and sign the result with its private key, and send back the
-signed hash + timestamp.  Anyone with the document and the signature
-can then verify that the document matches the signature by creating
-their own hash and checking the signature using the trusted third
-party public key.  There are several commercial services around
-providing such timestamping.  A quick search for
+signed hash + timestamp.  Both email, FTP and HTTP can be used to
+request such signature, depending on what is provided by the service
+used. Anyone with the document and the signature can then verify that
+the document matches the signature by creating their own hash and
+checking the signature using the trusted third party public key.
+There are several commercial services around providing such
+timestamping.  A quick search for
 "<a href="https://duckduckgo.com/?q=rfc+3161+service">rfc 3161
 service</a>" pointed me to at least
 <a href="https://www.digistamp.com/technical/how-a-digital-time-stamp-works/">DigiStamp</a>,
@@ -44,16 +46,18 @@ trusted third party is not compromised.</p>
 timestamp services available for everyone.  I've been looking for one
 for a while now. But yesterday I found one over at
 <a href="https://www.pki.dfn.de/zeitstempeldienst/">Deutches
-Forschungsnetz</a>mentioned in
+Forschungsnetz</a> mentioned in
 <a href="http://www.d-mueller.de/blog/dealing-with-trusted-timestamps-in-php-rfc-3161/">a
-blog by David Müller</a>.  I then found a good recipe on how to use
-over at the
-<a href="http://www.rz.uni-greifswald.de/support/dfn-pki-zertifikate/zeitstempeldienst.html">University
-of Greifswald</a>.  The OpenSSL library contain both server and tools
-to use and set up your own signing service.  See the ts(1SSL),
-tsget(1SSL) manual pages for more details.  The following shell script
-demonstrate how to extract a signed timestamp for any file on the disk
-in a Debian environment:
+blog by David Müller</a>.  I then found
+<a href="http://www.rz.uni-greifswald.de/support/dfn-pki-zertifikate/zeitstempeldienst.html">a
+good recipe on how to use the service</a> over at the University of
+Greifswald.</p>
+
+<p><a href="http://www.openssl.org/">The OpenSSL library</a> contain
+both server and tools to use and set up your own signing service.  See
+the ts(1SSL), tsget(1SSL) manual pages for more details.  The
+following shell script demonstrate how to extract a signed timestamp
+for any file on the disk in a Debian environment:</p>
 
 <p><blockquote><pre>
 #!/bin/sh