Technique for establishing provable chain of evidence
First Claim
1. A system for providing a provable chain of evidence for an evidence collection, comprising:
- a security core which provides security functions;
one or more components;
means for operating the security core;
means for securely operably connecting the components to the security core, such that the security core can vouch for authenticity of each securely operably connected component;
means for recording one or more data streams which comprise the evidence collection, each of the data streams being created by selected ones of the securely operably connected components; and
means for securely providing, for the evidence collection by the security core, an identification of each of the selected ones which create the recorded data streams.
1 Assignment
0 Petitions
Accused Products
Abstract
A method, system, computer program product, and method of doing business by providing a provable chain of evidence for data stream(s) created by one or more components (such as input/output devices and application processing components). Components that create the evidence collection are authenticated. A unique identifier of each such component is included within cryptographically-protected information that is added to the evidence collection. A digital signature is preferably used for the cryptographic protection, thereby digitally notarizing the evidence collection. The authenticity and integrity of the evidence collection can be verified. In preferred embodiments, the authenticated identities of components providing the evidence can also be determined from the cryptographically-protected information. One or more data streams may be included within the evidence collection to establish information such as the date and time the evidence collection was captured, the geographic location where the capture was performed, an identification of a person performing the evidence capture, and so forth. When present in a provable chain of evidence, these types of additional evidence are provided by authenticated components which are identified within the cryptographically-protected information.
-
Citations
110 Claims
-
1. A system for providing a provable chain of evidence for an evidence collection, comprising:
-
a security core which provides security functions;
one or more components;
means for operating the security core;
means for securely operably connecting the components to the security core, such that the security core can vouch for authenticity of each securely operably connected component;
means for recording one or more data streams which comprise the evidence collection, each of the data streams being created by selected ones of the securely operably connected components; and
means for securely providing, for the evidence collection by the security core, an identification of each of the selected ones which create the recorded data streams. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72)
-
-
37. A method of creating a provable chain of evidence for an evidence collection, comprising steps of:
-
providing a security core which provides security functions;
securely operably connecting one or more components to the security core, such that the security core can vouch for authenticity of each securely operably connected component;
recording one or more data streams which comprise the evidence collection, each of the data streams being created by selected ones of the securely operably connected components; and
securely providing, for the evidence collection by the security core, an identification of each of the selected ones which create the recorded data streams.
-
-
73. A computer program product for providing a provable chain of evidence for an evidence collection, the computer program product embodied on one or more computer-readable media and comprising:
-
computer-readable program code means for operating a security core which provides security functions;
computer-readable program code means for securely operably connecting one or more components to the security core, such that the security core can vouch for authenticity of each securely operably connected component;
computer-readable program code means for recording one or more data streams which comprise the evidence collection, each of the data streams being created by selected ones of the securely operably connected components; and
computer-readable program code means for securely providing, for the evidence collection by the security core, an identification of each of the selected ones which create the recorded data streams. - View Dependent Claims (74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91, 92, 93, 94, 95, 96, 97, 98, 99, 100, 101, 102, 103, 104, 105, 106, 107, 108)
-
-
109. A method of doing business by creating a provable chain of evidence for an evidence collection, comprising steps of:
-
operating a security core which provides security functions;
securely operably connecting one or more components to the security core, such that the security core can vouch for authenticity of each securely operably connected component;
authenticating selected ones of the components to the security core, thereby securely operably connecting the selected ones, using a unique identifier of each selected one along with a digital signature of the unique identifier that is created using a private key of the selected one and using, by the security core, a public key that is cryptographically associated with the private key to determine authenticity of the operably connected component;
recording one or more data streams which comprise the evidence collection, the data streams being created by at least one of the selected ones; and
digitally notarizing, by the security core, the recorded data streams which comprise the evidence collection. - View Dependent Claims (110)
-
Specification