System and method for authenticating data transmissions from a digital scanner

US 20030145200A1
Filed: 01/31/2002
Published: 07/31/2003
Est. Priority Date: 01/31/2002
Status: Abandoned Application

First Claim

Patent Images

1. A method for authenticating data transmission between a network-connected digital scanner and a terminal, the method comprising:

scanning a document at a digital scanner;

signing the scanned document with a private key of a first asymmetric key-pair to create a first signature;

transmitting the scanned document and first signature to a first network-connected terminal; and

, at the first terminal, using a public key of the first key-pair to authenticate the transmitted document.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method are provided for authenticating data transmission between a network-connected digital scanner and a terminal. The method comprises: scanning a document at a digital scanner; signing the scanned document with a private key of a first asymmetric key-pair to create a first signature; transmitting the scanned document and first signature to a network-connected terminal; and, at the terminal, using a public key of the first key-pair to authenticate the transmitted document.

Typically, signing the scanned document with a private key of a first asymmetric key-pair to create a first signature includes: creating a one-way hash function of the scanned document; and, encrypting the one-way hash function with the private key. Then, using a public key of the first key-pair to authenticate the transmitted scanned document includes: creating a one-way hash function of the transmitted document; decrypting the transmitted first signature with the public key; and, comparing the one-way hash function of the transmitted document to the decrypted signature. Some aspects of the method include the further steps of: at the digital scanner, establishing a user identity test, for example a PIN number, associated with the terminal; and submitting proof of user identity when a document is to be transmitted. Then, the scanned document and signature are transmitted in response to passing the user identity test, for example inputting the PIN number.

32 Citations

View as Search Results

25 Claims

1. A method for authenticating data transmission between a network-connected digital scanner and a terminal, the method comprising:
- scanning a document at a digital scanner;
  
  signing the scanned document with a private key of a first asymmetric key-pair to create a first signature;
  
  transmitting the scanned document and first signature to a first network-connected terminal; and
  
  , at the first terminal, using a public key of the first key-pair to authenticate the transmitted document.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method of claim 1 wherein signing the scanned document with a private key of a first asymmetric key-pair to create a first signature includes:
    - creating a one-way hash function of the scanned document; and
      
      , encrypting the one-way hash function with the private key; and
      
      , wherein using a public key of the first key-pair to authenticate the transmitted scanned document includes;
      
      creating a one-way hash function of the transmitted document;
      
      decrypting the transmitted first signature with the public key; and
      
      , comparing the one-way hash function of the transmitted document to the decrypted signature.
  - 3. The method of claim 2 wherein using a public key of the first key-pair to authenticate the transmitted document includes:
    - determining the origin of the transmitted document;
      
      verifying the integrity of the transmitted document;
      
      reading a time stamp; and
      
      , establishing a defense against repudiation of the transmission.
  - 4. The method of claim 3 wherein determining the origin of the transmitted document includes determining that the transmission originated from a digital scanner with an installed first key-pair private key.
  - 5. The method of claim 3 wherein verifying the integrity of the transmitted document includes verifying that the scanned document has not been modified during transmission.
  - 6. The method of claim 3 wherein establishing a defense against repudiation of the transmission includes saving a copy of the transmitted document and the transmitted first signature as proof that the transmitted document was received.
  - 7. The method of claim 1 wherein signing the scanned document with a private key of a first asymmetric key-pair includes an action selected from the group including:
    - creating a one-way hash function of the scanned document and encrypting the one-way hash function with the private key; and
      
      , encrypting the scanned document with the private key.
  - 8. The method of claim 2 further comprising:
    - at the digital scanner, establishing a first user identity test associated with the first terminal;
      
      at the digital scanner, submitting proof of the first user identity when the scanned document is to be transmitted; and
      
      , wherein transmitting the scanned document and first signature to a first network-connected terminal includes transmitting to the first terminal in response to passing the first user identity test.
  - 9. The method of claim 8 further comprising:
    - generating the first key-pair with the private key and the public key;
      
      non-accessibly installing the private key in the digital scanner;
      
      publishing the public key; and
      
      , installing the public key in the first terminal.
  - 10. The method of claim 9 wherein publishing the public key includes an action selected from the group including loading the public key in a system repository accessible to the first terminal and sending the public key to the first terminal in response to establishing the first user identity test at the digital scanner.
  - 11. The method of claim 2 wherein transmitting the document to a first network-connected terminal includes transmitting the document to a plurality of network-connected terminals;
    - and, wherein using a public key of the first key-pair to authenticate the transmitted document includes using the public key to authenticate the transmitted document at each terminal.
  - 12. The method of claim 2 further comprising:
    - following the use of the public key of the first key-pair to authenticate the transmitted document, processing the transmitted document at the first terminal to create a processed document;
      
      signing the processed document with a private key of a second asymmetric key-pair to create a second signature;
      
      transmitting the processed document and second signature to a second network-connected terminal;
      
      publishing a public key of the second key-pair; and
      
      , at the second terminal, using the public key of the second key-pair to authenticate the transmitted document.

13. A system for authenticating data transmission, the system comprising:
- a digital scanner having a repository for a private key of a first asymmetric key-pair and an interface for receiving documents, the digital scanner scanning a submitted document, signing the scanned document with the private key to create a first signature, and transmitting the scanned document and first signature at an output; and
  
  , a first terminal having a repository for a public key of the first key-pair and an input to accept the transmitted document and the transmitted first signature from the digital scanner, the first terminal using the public key to authenticate the transmitted document.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
- - 14. The system of claim 13 wherein the digital scanner creates the first signature by generating a one-way hash function of the scanned document and encrypts the one-way hash function with the private key;
    - and, wherein the first terminal authenticates the transmitted scanned document by creating a one-way hash function of the transmitted document, decrypting the transmitted first signature with the public key, and comparing the one-way hash function of the transmitted document to the decrypted signature.
  - 15. The system of claim 14 wherein the first terminal uses the public key of the first key-pair to determine the origin of the transmitted document, to verify the integrity of the transmitted document, to read a time stamp, and to establish a defense against repudiation of the transmission.
  - 16. The system of claim 15 wherein the first terminal determines that the transmitted document originated from a digital scanner with an installed first key-pair private key.
  - 17. The system of claim 15 wherein the first terminal verifies that the transmitted document has not been modified during transmission.
  - 18. The system of claim 15 wherein the first terminal includes a memory for saving a copy of the transmitted document and the transmitted first signature as proof that the transmitted document was received.
  - 19. The system of claim 13 wherein the digital scanner signs the scanned document with an action selected from the group including:
    - creating a one-way hash function of the scanned document and encrypting the one-way hash function with the private key; and
      
      , encrypting the scanned document with the private key.
  - 20. The system of claim 14 wherein the digital scanner includes a sentry with an installed first user identity test associated with the first terminal and an interface to accept a proof of user identity, and wherein the digital scanner transmits the scanned document and first signature to a first network-connected terminal in response to the sentry accepting the first user identity proof.
  - 21. The system of claim 20 wherein the digital scanner sentry prevents non-authorized access to the repository storing the private key of the first key-pair.
  - 22. The system of claim 21 wherein the digital scanner sends the public key of the first key-pair to the first terminal in response to establishing the first user identity test in the sentry.
  - 23. The system of claim 21 further comprising:
    - a system store with a copy of the public key of the first key-pair and a port for access to the public key copies; and
      
      , wherein the first terminal accesses the system store and downloads the public key into the first terminal repository.
  - 24. The system of claim 14 wherein the digital scanner broadcasts the scanned document and the first signature;
    - and, the system further comprising;
      
      a plurality of terminals, each terminal having repository for the public key of the first key-pair and an input to accept the transmitted document and the transmitted first signature from the digital scanner, each terminal using the public key to authenticate the transmitted document.
  - 25. The system of claim 14 wherein the first terminal, following the authentication of the transmitted document, processes the transmitted document to create a processed document, signs the processed document with a private key of a second asymmetric key-pair to create a second signature, and transmits the processed document and second signature;
    - and, the system further comprising;
      
      a second terminal having a repository for a public key of the second key-pair and an input to accept the transmitted document and the transmitted second signature from the first terminal, the second terminal using the public key to authenticate the transmitted document.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sharp Laboratories of America Incorporated (Hon Hai Precision Industry Co., Ltd.)
Original Assignee
Sharp Laboratories of America Incorporated (Hon Hai Precision Industry Co., Ltd.)
Inventors
Eden, Guy

Application Number

US10/062,636
Publication Number

US 20030145200A1
Time in Patent Office

Days
Field of Search
US Class Current

713/161
CPC Class Codes

H04L 9/3236   using cryptographic hash fu...

H04L 9/3247   involving digital signatures

H04N 1/32101   Display, printing, storage ...

H04N 2201/0091   Digital copier; digital 'ph...

H04N 2201/3236   Details of authentication i...

H04N 2201/3281   Encryption; Ciphering

System and method for authenticating data transmissions from a digital scanner

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

32 Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for authenticating data transmissions from a digital scanner

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

32 Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links