4 certificate transportation & trust – Quadrox Video Authentication User Manual

Video Authentication Manual

9

Version 4.4 Series

3.4

Certificate Transportation & Trust

The certificate should be trusted by the court. By trusting the validity of a certificate (by
manually checking that it is indeed what it claims to be), the court acknowledges explicitly
that the certificate belongs to the machine on which the export was created.

The court expresses this trust by explicitly adding it to the list of trusted root certificates.
When doing this, the system will ask to manually verify the certificate, e.g. by comparing the
thumbprint of the certificate to the thumbprint of the certificate that is present on the recorder.
The latter should be retrieved by physically going to the recorder, it should be done by the
authorities and a proven track record should be available. Trusting the certificate has to be
done only once per recorder (not for every movie) and doesn’t have to necessarily happen at
the moment of movie verification.

When using CA certificates, the trust in the certificate might come from trusting the
CA that delivered the certificate. In that case, this procedure might not be necessary.

A copy of the certificate can be extracted from the signature by using the Digital Signature
Verifier (available from the Quadrox website). The certificate can also get to the courtroom in
a different way (by exporting it from the recorder) or can already be present because it was
extracted from previous movies.

3.4.1

Extract & Install certificate from signature

using Digital Signature Verifier

Follow the steps below:

Open the Digital Signature Verifier tool.

Digital Signature Verifier main screen

Enter the locations of the movie and signature files and click the Verify button. If the
certificate is not yet trusted, you will see the following screen.