Trusted timestamping

• 1. Anagrams of Priority

  ›

  In 1660, Robert Hooke discovered a physical law about springs and force. He did not want to publish his findings immediately. Instead he wrote an anagram: ceiiinosssttuv. Years later he revealed the translation as ut tensio sic vis. This Latin phrase means as is the extension so is the force. The method allowed him to claim priority for his discovery before formal publication.

  Sir Isaac Newton used similar tactics in 1677. Leibniz asked questions about calculus in a letter. Newton concealed details of his fluxional technique with another anagram: 6accdae13eff7i3l9n4o4qrr4s8t12ux. He stated that the foundations were evident enough but he could not explain them yet. Galileo also published his discovery of Venus phases using an anagram form. These historical examples show how scientists protected their ideas before ready for public release.

• 2. Digital Foundations Laid

  ›

  Stuart Haber and W. Scott Stornetta first discussed trusted digital timestamping in computer science literature. Their work established the academic basis for securing creation times electronically. The concept moved beyond paper records into cryptographic systems. They proposed methods to prove data existed at specific moments without revealing its content. This research formed the groundwork for modern time-stamping authorities.

  The process involves creating a hash from original data. A hash acts like a digital fingerprint that is nearly impossible to duplicate. If any part of the document changes, the resulting hash becomes completely different. This property ensures integrity over time. The hash gets sent to a Trusted Third Party known as a Time Stamping Authority or TSA. The authority then adds a timestamp to the hash and signs it digitally.

• 3. Schemes Classified By Method

  ›

  Various timestamping schemes exist with distinct security goals. PKI-based tokens use public key infrastructure digital signatures for protection. Linking-based schemes generate timestamps related to other existing timestamps. Distributed schemes require cooperation among multiple parties to create a single timestamp. Transient key schemes function as variants of PKI using short-living signing keys.

  MAC represents a simple secret key-based scheme found in ANSI ASC X9.95 Standard. Database approaches store document hashes in trusted archives with online lookup services for verification. Hybrid schemes combine linked and signed methods as seen in X9.95. Masashi Une conducted systematic classification and evaluation work on these timestamping schemes. RFC 3161 covers many of these categories while ISO/IEC 18014 provides additional framework details.

• 4. Hashes And Signatures Work

  ›

  The technique relies on digital signatures combined with hash functions. A hash calculates from data before transmission occurs. This string of bits serves as a unique identifier for the original content. If the source material changes, the hash value shifts entirely. The TSA receives only this hash without seeing the actual document. This allows confidential data to remain private during the process.

  The authority concatenates a timestamp to the received hash. They then calculate a new hash from that combination. This second hash gets digitally signed using the TSA's private key. The signed result plus the timestamp returns to the requester. The requester stores both items alongside their original data. Anyone trusting the timestamper can verify the document existed before the stated date. No one can claim later possession if the signature checks out correctly.

• 5. Blockchain Decentralization Arrives

  ›

  Cryptocurrencies like Bitcoin enabled secure decentralized timestamping through proof-of-work consensus mechanisms. Digital data hashes get incorporated into transactions stored within the blockchain ledger. This serves as evidence of when specific data existed. Security derives from computational effort performed after submission to the network. Tampering would require more resources than the rest of the network combined. Such manipulation cannot go unnoticed in actively defended blockchains.

  Bitcoin design allows some degree of timestamp manipulation up to two hours into the future. It accepts blocks with timestamps earlier than previous ones. Despite these vulnerabilities, applications emerged for dashboard cameras securing video integrity at recording time. VirtualPatent enables traceability of ideas shared on social media platforms. Gipp Meuschke and Gernandt published research on this approach in March 2015 during iConference 2015 in Newport Beach California.

• 6. Standards Govern Compliance

  ›

  RFC 3161 defines trusted timestamps issued by Time Stamping Authorities acting as Trusted Third Parties. Multiple TSAs increase reliability while reducing vulnerability across systems. The newer ANSI ASC X9.95 Standard augments RFC 3161 requirements. It adds data-level security measures ensuring integrity against reliable time sources provable to third parties. Regulatory compliance drives adoption in financial transactions and legal evidence contexts.

  ETSI TS 101 861 V1.4.1 outlines electronic signatures infrastructure profiles for time stamping. ETSI TS 102 023 V1.2.2 details policy requirements for authorities managing timestamps. SANS Institute analyzed secure time stamp devices in a 2001 report. Youyong Zou completed implementation work on TSP Protocol during CMSC 681 Project Report studies. These documents establish global frameworks for authentication methods used today.