Mod_tsa (from the OpenTSA project) is Apache HTTP server module providing Time Stamping Authority (TSA) server functionality, according to RFC3161.
We provide a modified version of mod_tsa, which extends the crypto device engine usage functionality. It is able to use a key stored in a HSM defined by its name, instead of a filename.
Accepted keyformat values:
PEM (default) |
keyname is key filename for
DER formats, or key name (alias) for the
Download mod_tsa, unpack it; download the patch and apply:
cd mod_tsa zcat ../mod_tsa-20060923-enginekey-20131812.patch.gz | patch -p1
Then follow the original mod_tsa installation manual.