Collaborate Disseminate
As you know, we use TLS for multiple purposes, including integrity, confidentiality and authentication and we use TSAs (Trusted Timestamp Authorities) to have signed timestamps for our data. (Read about it here)
The question… Continue reading How to have both TLS and Time Stamp Signing for data?
I have some data that needs to be handed to a friend. I don’t want to give the original drive (drive-1), so I plan to purchase a drive (drive-copy) and copy data to it. The data copied will still show last modified date for f… Continue reading Is it possible that a usb drive manufactured 3 months ago can have data copied to it that shows the file last modified date before manufacturing date? [on hold]
If someone copied files from a drive-1 to usb-drive-2, then it seems the directories and files get the original modified time from drive-1 in some cases and in some cases not.
Can it be checked if the file/directory was act… Continue reading If a file on USB drive shows a certain "date modified" time in the windows explorer, can the correct added date/time be checked for the file?
I was wondering if one can find if files were copied from the USB drive to a PC or something, and also if any and which files were recently deleted from the USB.
I am wondering if there is a way to timestamp a video. (e.g. Security camera footage)
I know that there is a way to timestamp a document with a trusted time authority, and it will certainly be possible to cut the video, send… Continue reading Is it possible to verifiably timestamp a video?
I am wondering if there is a way to timestamp a video. (e.g. Security camera footage)
I know that there is a way to timestamp a document with a trusted time authority, and it will certainly be possible to cut the video, send… Continue reading Is it possible to verifiably timestamp a video?
Context
I’m investigating a compromised Linux box where I found files with malicious code. The file system is too big to just make a copy of the whole block device and so far I’m only interested in the files of a not so big sub-directory…. Continue reading How to capture not only the mtime but also the ctime when making forensic copies of files?
Good morning. I’m having a weird issue while verifying a response from a TSA (TimeStamping Authority). I’m using the TimeStamping Service from the ERMIS Gateway (Hellenic Public Administration). I use openssl to generate a TS… Continue reading Error while Verifying OpenSSL Timestamp Response
It’s more of an overall question how fast code can execute and can versioning, snapshots, object storage or something like this can help to detect source file so i can respond to the attack the right way.
Example:
When ranso… Continue reading Detect source logic bomb file with help of time?
I’m curious about how Windows check the Authenticode signature.
For example, I would sign test.exe
I know that if test.exe doesn’t have a TS (timestamp) signature from a TSA (Timestamp Authority), the signature would ex… Continue reading When would a Authenticode signature expire?