TEST CASE SPECIFICATION

ChallengePKI Timestamp Interoperability Test Suite (Rev.3)

Powered by

10001 | 10002 | 10003 | 10004 | 10005 | 10006 | 10007 | 10008 | 10009 | 10010 | 10011 | 10012 | 10013 | 10014 | 10015 | 10016 | 10017 | 10018 | 10019 | 10020 | 10021 | 10022 | 10023 | 10024 | 10025 | 10026 | 10027 | 10028 | 10029 | 10030 | 10031 | 10032 | 10033 | 10034 | 10035 | 10036 | 10037 | 10038 | 10039 | 10040 | 10041 | 10042 | 10043 | 10044 | 10045 | 10046 | 10047 | 10048 | 10049 | 10050 | 10051 | 10052 | 10053 | 10054 |
TEST CASE
ID10001
CODEOK
EXP_VALUEACCEPT
NOTEnorm-reply (granted)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10002
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10002
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber1
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTIONabbr.
DETAILabbr.
top

TEST CASE
ID10002
CODEMIME
EXP_VALUEREJECT
NOTEinvalid mime-type
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10003
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-response
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber2
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION3.4. Time-Stamp Protocol via HTTP
DETAILvalid response with content type application/timestamp-response or #typo of RFC 3161
top

TEST CASE
ID10003
CODESTATUS
EXP_VALUEACCEPT
NOTEnorm-reply (grantedWithMods)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10004
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status1(grantedWithMods)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber3
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"when the PKIStatus contains the value one a TimeStampToken,with modifications, is present."
top

TEST CASE
ID10004
CODESTATUS
EXP_VALUEREJECT
NOTEnorm-reply (rejection)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10005
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicy1.2.9999.9999
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenNONE
PKIStatusInfo.status2(rejection)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfo15 (unacceptedPolicy)
TSTInfo.version-
TSTInfo.policy-
MessageImprint.hashAlgorithm-
MessageImprint.hashedMessage-
TSTInfo.serialNumber-
TSTInfo.genTime-
TSTInfo.accuracy-
TSTInfo.ordering-
TSTInfo.nonce-
TSTInfo.tsa-
TSTInfo.extensions-
CMS::signedData.version-
CMS::contentInfo-
CMS::econtentInfo-
CMS::signingCertificate-
CMS::signerInfo-
CMS::ESSCertID.certHash-
CMS::signature-
CMS::SigningCertificate.signer_keypair-
CMS::SigningCertificate.certs-
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILthe requesting entity SHALL verify the status error returned in the response
top

TEST CASE
ID10005
CODESTATUS
EXP_VALUEREJECT
NOTETimeStampResp.status is out of a range
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10006
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenNONE
PKIStatusInfo.status9
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version-
TSTInfo.policy-
MessageImprint.hashAlgorithm-
MessageImprint.hashedMessage-
TSTInfo.serialNumber-
TSTInfo.genTime-
TSTInfo.accuracy-
TSTInfo.ordering-
TSTInfo.nonce-
TSTInfo.tsa-
TSTInfo.extensions-
CMS::signedData.version-
CMS::contentInfo-
CMS::econtentInfo-
CMS::signingCertificate-
CMS::signerInfo-
CMS::ESSCertID.certHash-
CMS::signature-
CMS::SigningCertificate.signer_keypair-
CMS::SigningCertificate.certs-
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILCompliant clients MUST generate an error if values it does not understand are present.
top

TEST CASE
ID10006
CODESTATUS
EXP_VALUEREJECT
NOTEPKIStatusInfo.failInfo is out of a range
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10007
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenNONE
PKIStatusInfo.status2(rejection)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfo26
TSTInfo.version-
TSTInfo.policy-
MessageImprint.hashAlgorithm-
MessageImprint.hashedMessage-
TSTInfo.serialNumber-
TSTInfo.genTime-
TSTInfo.accuracy-
TSTInfo.ordering-
TSTInfo.nonce-
TSTInfo.tsa-
TSTInfo.extensions-
CMS::signedData.version-
CMS::contentInfo-
CMS::econtentInfo-
CMS::signingCertificate-
CMS::signerInfo-
CMS::ESSCertID.certHash-
CMS::signature-
CMS::SigningCertificate.signer_keypair-
CMS::SigningCertificate.certs-
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILCompliant clients MUST generate an error if values it does not understand are present.
top

TEST CASE
ID10007
CODETST
EXP_VALUEREJECT
NOTEno TST in spite of granted reply
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10008
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenNONE
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version-
TSTInfo.policy-
MessageImprint.hashAlgorithm-
MessageImprint.hashedMessage-
TSTInfo.serialNumber-
TSTInfo.genTime-
TSTInfo.accuracy-
TSTInfo.ordering-
TSTInfo.nonce-
TSTInfo.tsa-
TSTInfo.extensions-
CMS::signedData.version-
CMS::contentInfo-
CMS::econtentInfo-
CMS::signingCertificate-
CMS::signerInfo-
CMS::ESSCertID.certHash-
CMS::signature-
CMS::SigningCertificate.signer_keypair-
CMS::SigningCertificate.certs-
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"When the status contains the value zero or one, a TimeStampToken MUST be present."
top

TEST CASE
ID10008
CODETST
EXP_VALUEREJECT
NOTETST exists though TimeStampResp.status is 2(rejection)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10009
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicy1.2.9999.9999
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status2(rejection)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfo15 (unacceptedPolicy)
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber8
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"When status contains a value other than zero or one, a TimeStampToken MUST NOT be present."
top

TEST CASE
ID10009
CODECMS
EXP_VALUEREJECT
NOTECMS::contentType is invalid
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10010
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10010
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber9
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-Data
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILIt is defined as a ContentInfo ([CMS]) and SHALL encapsulate a signed data content type.
top

TEST CASE
ID10010
CODECMS
EXP_VALUEREJECT
NOTECMS::eContentType is invalid
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10011
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10011
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber10
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-Data
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILFor a time-stamp token it is defined as: id-ct-TSTInfo OBJECT IDENTIFIER ::= { iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs-9(9) smime(16) ct(1) 4}
top

TEST CASE
ID10011
CODECMS
EXP_VALUEACCEPT
NOTECMS::signedData.version is invalid
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10012
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10012
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber11
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version1
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3369
SECTION5.1 SignedData Type
DETAIL"if attribute certificates are present, the encapsulated content type is other than id-data, or any of the elements of SignerInfos are version 3, then the value of version shall be 3."
top

TEST CASE
ID10012
CODETSTInfo
EXP_VALUEREJECT
NOTEinvalid TST encoding
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10013
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10013
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT(but unable to decode)
PKIStatusInfo.status-
PKIStatusInfo.statusString-
PKIStatusInfo.failInfo-
TSTInfo.version-
TSTInfo.policy-
MessageImprint.hashAlgorithm-
MessageImprint.hashedMessage-
TSTInfo.serialNumber-
TSTInfo.genTime-
TSTInfo.accuracy-
TSTInfo.ordering-
TSTInfo.nonce-
TSTInfo.tsa-
TSTInfo.extensions-
CMS::signedData.version-
CMS::contentInfo-
CMS::econtentInfo-
CMS::signingCertificate-
CMS::signerInfo-
CMS::ESSCertID.certHash-
CMS::signature-
CMS::SigningCertificate.signer_keypair-
CMS::SigningCertificate.certs-
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILit SHALL verify the various fields contained in the TimeStampToken
top

TEST CASE
ID10013
CODETSTInfo-Version
EXP_VALUEREJECT
NOTEinvalid TSTInfo.version
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10014
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10014
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version0
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber13
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILThe version field (currently v1) describes the version of the time-stamp token.
top

TEST CASE
ID10014
CODETSTInfo-Version
EXP_VALUEREJECT
NOTEinvalid TSTInfo.version
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10015
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10015
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version2
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber14
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILThe version field (currently v1) describes the version of the time-stamp token.
top

TEST CASE
ID10015
CODEreqPolicy
EXP_VALUEACCEPT
NOTEmatched TSTInfo.policy (1.2.3)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10016
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicy1.2.3
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber15
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"If a similar field was present in the TimeStampReq, then it MUST have the same value"
top

TEST CASE
ID10016
CODEreqPolicy
EXP_VALUEREJECT
NOTEmismatched TSTInfo.policy (1.2.3.1.2.3)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10017
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicy1.2.9999.9999
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3.1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber16
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"If a similar field was present in the TimeStampReq, then it MUST have the same value"
top

TEST CASE
ID10017
CODEmessageImprint
EXP_VALUEREJECT
NOTETSTInfo.massageImprint.hash is mismatched (120bit)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10018
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithm1.2.840.113549.2.5(md5)
MessageImprint.hashedMessage0xd8e8fca2dc0f896fd7cb4cb0031ba249(120bit)
TSTInfo.serialNumber17
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAIL"In particular, it SHALL verify that what was time-stamped corresponds to what was requested to be time-stamped."
top

TEST CASE
ID10018
CODEmessageImprint
EXP_VALUEREJECT
NOTETSTInfo.massageImprint.hash is mismatched (160bit)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10019
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithm1.3.14.3.2.26(sha-1)
MessageImprint.hashedMessage0x4e1243bd22c66e76c2ba9eddc1f91394e57f9f83(160bit)
TSTInfo.serialNumber18
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAIL"In particular, it SHALL verify that what was time-stamped corresponds to what was requested to be time-stamped."
top

TEST CASE
ID10019
CODEserialNumber
EXP_VALUEACCEPT
NOTEbig serialNumber
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10020
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10020
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber0x4e1243bd22c66e76c2ba9eddc1f91394 e57f9f834e1243bd22c66e76c2ba9edd c1f91394e57f9f834e1243bd22c66e76 c2ba9eddc1f91394e57f9f834e1243bd(64byte)
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILTime-Stamping users MUST be ready to accommodate integers up to 160 bits.
top

TEST CASE
ID10020
CODEgenTime
EXP_VALUEREJECT
NOTEinvalid TSTInfo.genTime (no seconds)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10021
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10021
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber20
TSTInfo.genTimeYYYYMMDDhhmmZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILGeneralizedTime values MUST include seconds.
top

TEST CASE
ID10021
CODEgenTime
EXP_VALUEREJECT
NOTEinvalid TSTInfo.genTime (no 'Z')
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10022
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10022
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber21
TSTInfo.genTimeYYYYMMDDhhmmss
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"The encoding MUST terminate with a ""Z"" (which means ""Zulu"" time)."
top

TEST CASE
ID10022
CODEgenTime
EXP_VALUEREJECT
NOTEinvalid TSTInfo.genTime (YYYYMMDDhhmmss:999Z)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10023
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10023
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber22
TSTInfo.genTimeYYYYMMDDhhmmss:999Z
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"The decimal point element, if present, MUST be the point option "".""."
top

TEST CASE
ID10023
CODEgenTime
EXP_VALUEREJECT
NOTEinvalid TSTInfo.genTime (YYYYMMDDhhmmss.900Z)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10024
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10024
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber23
TSTInfo.genTimeYYYYMMDDhhmmss.900Z
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"The fractional-seconds elements, if present, MUST omit all trailing 0's;"
top

TEST CASE
ID10024
CODEgenTime
EXP_VALUEREJECT
NOTEinvalid TSTInfo.genTime (YYYYMMDDhhmmss.000Z)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10025
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10025
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber24
TSTInfo.genTimeYYYYMMDDhhmmss.000Z
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"if the elements correspond to 0, they MUST be wholly omitted"
top

TEST CASE
ID10025
CODEgenTime
EXP_VALUEREJECT
NOTEinvalid TSTInfo.genTime (YYYYMMDDhhmmss.Z)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10026
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10026
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber25
TSTInfo.genTimeYYYYMMDDhhmmss.Z
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILand the decimal point element also MUST be omitted.
top

TEST CASE
ID10026
CODEgenTime
EXP_VALUEREJECT
NOTEtoo old genTime (with nonce)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10027
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber26
TSTInfo.genTimeYYYYMMDDhhmmssZ -864000
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILIt SHALL then verify the timeliness of the response by verifying either the time included in the response against a local trusted time reference
top

TEST CASE
ID10027
CODEgenTime
EXP_VALUEREJECT
NOTEtoo old genTime (without nonce)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10028
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber27
TSTInfo.genTimeYYYYMMDDhhmmssZ -864000
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceNONE
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILIt SHALL then verify the timeliness of the response by verifying either the time included in the response against a local trusted time reference
top

TEST CASE
ID10028
CODEgenTime
EXP_VALUEREJECT
NOTEtoo new genTime (with nonce)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10029
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10029
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber28
TSTInfo.genTimeYYYYMMDDhhmmssZ +864000
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILIt SHALL then verify the timeliness of the response by verifying either the time included in the response against a local trusted time reference
top

TEST CASE
ID10029
CODEgenTime
EXP_VALUEREJECT
NOTEtoo new genTime (without nonce)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10030
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10030
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber29
TSTInfo.genTimeYYYYMMDDhhmmssZ +864000
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceNONE
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILIt SHALL then verify the timeliness of the response by verifying either the time included in the response against a local trusted time reference
top

TEST CASE
ID10030
CODEaccuracy
EXP_VALUEACCEPT
NOTEaccuracy>1sec
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10031
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10031
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber30
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracy10.0.0
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"accuracy can be decomposed in seconds, milliseconds (between 1-999) and microseconds (1-999), all expressed as integer."
top

TEST CASE
ID10031
CODEaccuracy
EXP_VALUEACCEPT
NOTEaccuracy<1sec
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10032
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10032
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber31
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracy0.5.0
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"accuracy can be decomposed in seconds, milliseconds (between 1-999) and microseconds (1-999), all expressed as integer."
top

TEST CASE
ID10032
CODEnonce
EXP_VALUEACCEPT
NOTEmatched nonce
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10033
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber32
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.1. Request Format
DETAILthe same nonce value MUST be included in the response
top

TEST CASE
ID10033
CODEnonce
EXP_VALUEREJECT
NOTEunmatched nonce (0xFFFFFFFF)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10034
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber33
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonce0xFFFFFFFF
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.1. Request Format
DETAILthe same nonce value MUST be included in the response
top

TEST CASE
ID10034
CODEnonce
EXP_VALUEREJECT
NOTEno nonce in spite of the request
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10035
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber34
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonce0xFFFFFFFF
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILThe nonce field MUST be present if it was present in the TimeStampReq.
top

TEST CASE
ID10035
CODEnonce
EXP_VALUEREJECT
NOTEunintended nonce
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10036
Get TST (for OFFLINE test)NOT SUPPORTED
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber35
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonce0xFFFFFFFF
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.1. Request Format
DETAILthe same nonce value MUST be included in the response
top

TEST CASE
ID10036
CODEtsa
EXP_VALUEACCEPT
NOTETSTInfo.tsa exists
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10037
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10037
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber36
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsa"c=jp,s=tokyo,o=jnsa,cn=challengePKI2003 TSA"
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL tsa [0] GeneralName OPTIONAL
top

TEST CASE
ID10037
CODEtsa
EXP_VALUEREJECT
NOTEmismatched TSTInfo.tsa with signing certificate
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10038
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10038
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber37
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsa"c=jp,s=tokyo,o=jnsa,cn=tryPKI2003 TSP"
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"If present, it MUST correspond to one of the subject names included in the certificate that is to be used to verify the token."
top

TEST CASE
ID10038
CODEextension
EXP_VALUEACCEPT
NOTETST with non-critical extension
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10039
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10039
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber38
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensions1.1.1(non-critical)
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILextensions [1] IMPLICIT Extensions OPTIONAL
top

TEST CASE
ID10039
CODEextension
EXP_VALUEREJECT
NOTETST with undefined critical extension
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10040
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10040
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber39
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensions1.1.1(critical)
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAIL"Conforming time-stamping requesters MUST be able to recognize version 1 time-stamp tokens with all the optional fields present, but are not mandated to understand the semantics of any extension"
top

TEST CASE
ID10040
CODEcertReq
EXP_VALUEREJECT
NOTEno TSA certificate in spite of the request
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10041
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10041
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber40
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificateNONE
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.1. Request Format
DETAIL"If the certReq field is present and set to true, the TSA's public key certificate that is referenced by the ESSCertID identifier inside a SigningCertificate attribute in the response MUST be provided by the TSA in the certificates field from the SignedData structure in that response. "
top

TEST CASE
ID10041
CODEcertReq
EXP_VALUEREJECT
NOTEunintended TSA certificate
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10042
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10042
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqFALSE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber41
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILIf the certReq field is missing or if the certReq field is present and set to false then the certificates field from the SignedData structure MUST not be present in the response.
top

TEST CASE
ID10042
CODEsign
EXP_VALUEREJECT
NOTEno digital signature
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10043
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10043
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber42
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo0
CMS::ESSCertID.certHash-
CMS::signature-
CMS::SigningCertificate.signer_keypair-
CMS::SigningCertificate.certs-
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILit SHALL verify (...snip...) the validity of the digital signature of the TimeStampToken.
top

TEST CASE
ID10043
CODEsign
EXP_VALUEREJECT
NOTEmultiple digital signatures
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10044
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10044
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber43
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo2
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair"1,2"
CMS::SigningCertificate.certs"1,2"
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILThe time-stamp token MUST NOT contain any signatures other than the signature of the TSA.
top

TEST CASE
ID10044
CODEsign
EXP_VALUEREJECT
NOTEno ESSCertID
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10045
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10045
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber44
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashNONE
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILThe certificate identifier (ESSCertID) of the TSA certificate MUST be included as a signerInfo attribute inside a SigningCertificate attribute.
top

TEST CASE
ID10045
CODEsign
EXP_VALUEREJECT
NOTEinvalid ESSCertID
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10046
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10046
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber45
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHash0x4e1243bd22c66e76c2ba9eddc1f91394e57f9f83(mismatched)
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.4.2. Response Format
DETAILThe certificate identifier (ESSCertID) of the TSA certificate MUST be included as a signerInfo attribute inside a SigningCertificate attribute.
top

TEST CASE
ID10046
CODEsign
EXP_VALUEREJECT
NOTEsignature is tampered
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10047
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10047
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber46
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureTAMPERED
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILit SHALL verify (...snip...) the validity of the digital signature of the TimeStampToken.
top

TEST CASE
ID10047
CODEsign
EXP_VALUEREJECT
NOTEmismatched digital signature
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10048
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10048
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber47
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair2
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILit SHALL verify (...snip...) the validity of the digital signature of the TimeStampToken.
top

TEST CASE
ID10048
CODEsignerCert
EXP_VALUEREJECT
NOTEmultiple ExtendKeyUsage in TSA certificate
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10049
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10049
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber48
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair2
CMS::SigningCertificate.certs2
REFERENCE
REF.RFC 3161
SECTION2.3. Identification of the TSA
DETAILThe corresponding certificate MUST contain only one instance of the extended key usage field extension as defined in [RFC2459] Section 4.2.1.13 with KeyPurposeID having value
top

TEST CASE
ID10049
CODEsignerCert
EXP_VALUEREJECT
NOTEno keyUsage in TSA certificate
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10050
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10050
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber49
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair3
CMS::SigningCertificate.certs3
REFERENCE
REF.RFC 3280
SECTION4.2.1.13
DETAILabbr.
top

TEST CASE
ID10050
CODEsignerCert
EXP_VALUEREJECT
NOTEexpired TSA certificate
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10051
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10051
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber50
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair4
CMS::SigningCertificate.certs4
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILit SHALL verify (...snip...) the validity of the digital signature of the TimeStampToken.
top

TEST CASE
ID10051
CODEsignerCert
EXP_VALUEREJECT
NOTErevoked TSA certificate
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10052
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10052
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber51
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair5
CMS::SigningCertificate.certs5
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILit SHALL verify (...snip...) the validity of the digital signature of the TimeStampToken.
top

TEST CASE
ID10052
CODEsignerCert
EXP_VALUEACCEPT
NOTETSA certificate exists (2048bits)
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10053
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10053
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber52
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair6
CMS::SigningCertificate.certs6
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILit SHALL verify (...snip...) the validity of the digital signature of the TimeStampToken.
top

TEST CASE
ID10053
CODEmessageImprint
EXP_VALUEREJECT
NOTEmismatched TSTInfo.massageImprint.hash
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10054
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10054
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonceNONE
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithm1.2.840.113549.2.5(md5)
MessageImprint.hashedMessage0x12345678901234500000(80bit)
TSTInfo.serialNumber53
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair1
CMS::SigningCertificate.certs1
REFERENCE
REF.RFC 3161
SECTION2.2. TSA Transactions
DETAILIts length MUST match the length of the hash value for that algorithm
top

TEST CASE
ID10054
CODEsignerCert
EXP_VALUEREJECT
NOTEnon-critical ExtendKeyUsage in TSA certificate
TSA URL (for ONLINE test)http://share.roboc.net/cgi-bin/cpki_tsa.cgi?id=10055
Get TST (for OFFLINE test)http://share.roboc.net/cgi-bin/cpki_tsr_getfile.cgi?type=tst&id=10055
TSQ PROFILE
TimeStampReq.version1
MessageImprint.hashAlgorithmSHA-1
MessageImprint.hashedMessage0x (160bit)
TimeStampReq.reqPolicyNONE
TimeStampReq.nonce0x (160bit)
TimeStampReq.certReqTRUE
TimeStampReq.extensionsNONE
TSR AND TST PROFILE
MIME-TYPE(application/)timestamp-reply
TimeStampTokenPRESENT
PKIStatusInfo.status0(granted)
PKIStatusInfo.statusStringNONE
PKIStatusInfo.failInfoNONE
TSTInfo.version1
TSTInfo.policy1.2.3
MessageImprint.hashAlgorithmAUTO
MessageImprint.hashedMessageAUTO
TSTInfo.serialNumber54
TSTInfo.genTimeYYYYMMDDhhmmssZ
TSTInfo.accuracyNONE
TSTInfo.orderingFALSE
TSTInfo.nonceAUTO
TSTInfo.tsaNONE
TSTInfo.extensionsNONE
CMS::signedData.version3
CMS::contentInfoid-signedData
CMS::econtentInfoid-ct-TSTInfo
CMS::signingCertificatePRESENT
CMS::signerInfo1
CMS::ESSCertID.certHashAUTO
CMS::signatureAUTO
CMS::SigningCertificate.signer_keypair7
CMS::SigningCertificate.certs7
REFERENCE
REF.RFC 3161
SECTION2.3. Identification of the TSA
DETAILThis extension MUST be critical.
top