Extensible mechanism for attaching digital signatures to different file types

US 20030221105A1
Filed: 05/20/2002
Published: 11/27/2003
Est. Priority Date: 05/20/2002
Status: Abandoned Application

First Claim

Patent Images

1. An apparatus for securing electronic documents comprising:

(a) a computer system; and

(b) a digital signature extension, executed by the computer system, for providing a secure environment where digital signatures associated with the electronic documents can be verified, wherein the digital signature extension comprises;

(1) cryptographic services for performing cryptographic operations on the digital signatures associated with the electronic documents;

(2) one or more file-specific components for authenticating the digital signatures associated with the electronic documents, wherein the electronic documents are stored in a particular file format, and for interfacing to the cryptographic services, so that the cryptographic operations can be performed on the digital signatures; and

(3) one or more applications for implementing logic for accessing the documents and for interfacing to the file-specific components, so that the file-specific components can authenticate the digital signatures.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A Digital Signature Extension provides a secure environment where digital signatures associated with the electronic documents can be verified. The Digital Signature Extension comprises: (1) cryptographic services for performing cryptographic operations on the digital signatures associated with the electronic documents, (2) one or more file-specific components for authenticating the digital signatures associated with the electronic documents, wherein the electronic documents are stored in a particular file format, and for interfacing to the cryptographic services, so that the cryptographic operations can be performed on the digital signatures, and (3) one or more applications for implementing logic for accessing the documents and for interfacing to the file-specific components, so that the file-specific components can authenticate the digital signatures.

Citations

24 Claims

1. An apparatus for securing electronic documents comprising:
- (a) a computer system; and
  
  (b) a digital signature extension, executed by the computer system, for providing a secure environment where digital signatures associated with the electronic documents can be verified, wherein the digital signature extension comprises;
  
  (1) cryptographic services for performing cryptographic operations on the digital signatures associated with the electronic documents;
  
  (2) one or more file-specific components for authenticating the digital signatures associated with the electronic documents, wherein the electronic documents are stored in a particular file format, and for interfacing to the cryptographic services, so that the cryptographic operations can be performed on the digital signatures; and
  
  (3) one or more applications for implementing logic for accessing the documents and for interfacing to the file-specific components, so that the file-specific components can authenticate the digital signatures.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The apparatus of claim 1, wherein the file-specific component is a “
    - plug-in”
      
      registered with the digital signature extension as providing support for the electronic documents stored in the particular file format.
  - 3. The apparatus of claim 2, wherein the digital signature extension includes runtime discovery by the application of which file-specific component provides support for the electronic documents stored in the particular file format.
  - 4. The apparatus of claim 1, wherein the file-specific components include means for determining which portions of the particular file format are used to compute the digital signature.
  - 5. The apparatus of claim 1, wherein the file-specific components include means for determining a location within the particular file format where the digital signature is stored.
  - 6. The apparatus of claim 1, wherein the file-specific components include an application programming interface that includes one or more methods selected from a group of methods comprising:
    - a method that determines if the electronic document is signed with the digital signature;
      
      a method that signs the electronic document with the digital signature;
      
      a method that validates the digital signature on the electronic document; and
      
      a method that extracts the digital signature from the electronic document.
  - 7. The apparatus of claim 1, wherein the cryptographic services include an application programming interface that includes one or more methods selected from a group of methods comprising:
    - a method that enumerates one or more digital certificates;
      
      a method that verifies the digital certificate;
      
      a method that computes the digital signature using the digital certificate;
      
      a method that verifies the digital signature; and
      
      a method that extracts data from the digital signature.
  - 8. The apparatus of claim 1, wherein the digital signature extension includes a data structure to transport digital certificate-related and digital signature-related information between the file-specific components and the cryptographic services.

9. A computer-implemented method for securing electronic documents, comprising:
- (a) executing a digital signature extension in a computer system, in order to provide a secure environment where digital signatures associated with the electronic documents can be verified, wherein the executing step comprises;
  
  (1) executing cryptographic services in order to perform cryptographic operations on the digital signatures associated with the electronic documents;
  
  (2) executing one or more file-specific components in order to authenticate the digital signatures associated with the electronic documents, wherein the electronic documents are stored in a particular file format, and in order to interface to the cryptographic services, so that the cryptographic operations can be performed on the digital signatures; and
  
  (3) executing one or more applications in order to implement logic for accessing the documents and for interfacing to the file-specific components, so that the file-specific components can authenticate the digital signatures.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The method of claim 9, wherein the file-specific component is a “
    - plug-in”
      
      registered with the digital signature extension as providing support for the electronic documents stored in the particular file format.
  - 11. The method of claim 10, wherein the step of executing the digital signature extension includes performing runtime discovery by the application of which file-specific component provides support for the electronic documents stored in the particular file format.
  - 12. The method of claim 9, wherein the step of executing the file-specific components include determining which portions of the particular file format are used to compute the digital signature.
  - 13. The method of claim 9, wherein the step of executing the file-specific components include determining a location within the particular file format where the digital signature is stored.
  - 14. The method of claim 9, wherein the step of executing the file-specific components include an application programming interface that includes one or more methods selected from a group of methods comprising:
    - a method that determines if the electronic document is signed with the digital signature;
      
      a method that signs the electronic document with the digital signature;
      
      a method that validates the digital signature on the electronic document; and
      
      a method that extracts the digital signature from the electronic document.
  - 15. The method of claim 9, wherein the step of executing the cryptographic services include an application programming interface that includes one or more methods selected from a group of methods comprising:
    - a method that enumerates one or more digital certificates;
      
      a method that verifies the digital certificate;
      
      a method that computes the digital signature using the digital certificate;
      
      a method that verifies the digital signature; and
      
      a method that extracts data from the digital signature.
  - 16. The method of claim 9, wherein the digital signature extension includes a data structure to transport digital certificate-related and digital signature-related information between the file-specific components and the cryptographic services.

17. A computer-implemented method for securing electronic documents, comprising:
- (a) executing a digital signature extension in a computer system, in order to provide a secure environment where digital signatures associated with the electronic documents can be verified, wherein the executing step comprises;
  
  (1) executing cryptographic services in order to perform cryptographic operations on the digital signatures associated with the electronic documents;
  
  (2) executing one or more file-specific components in order to authenticate the digital signatures associated with the electronic documents, wherein the electronic documents are stored in a particular file format, and in order to interface to the cryptographic services, so that the cryptographic operations can be performed on the digital signatures; and
  
  (3) executing one or more applications in order to implement logic for accessing the documents and for interfacing to the file-specific components, so that the file-specific components can authenticate the digital signatures.
- View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
- - 18. The article of manufacture of claim 17, wherein the file-specific component is a “
    - plug-in”
      
      registered with the digital signature extension as providing support for the electronic documents stored in the particular file format.
  - 19. The article of manufacture of claim 18, wherein the step of executing the digital signature extension includes performing runtime discovery by the application of which file-specific component provides support for the electronic documents stored in the particular file format.
  - 20. The article of manufacture of claim 17, wherein the step of executing the file-specific components include determining which portions of the particular file format are used to compute the digital signature.
  - 21. The article of manufacture of claim 17, wherein the step of executing the file-specific components include determining a location within the particular file format where the digital signature is stored.
  - 22. The article of manufacture of claim 17, wherein the step of executing the file-specific components include an application programming interface that includes one or more methods selected from a group of methods comprising:
    - a method that determines if the electronic document is signed with the digital signature;
      
      a method that signs the electronic document with the digital signature;
      
      a method that validates the digital signature on the electronic document; and
      
      a method that extracts the digital signature from the electronic document.
  - 23. The article of manufacture of claim 17, wherein the step of executing the cryptographic services include an application programming interface that includes one or more methods selected from a group of methods comprising:
    - a method that enumerates one or more digital certificates;
      
      a method that verifies the digital certificate;
      
      a method that computes the digital signature using the digital certificate;
      
      a method that verifies the digital signature; and
      
      a method that extracts data from the digital signature.
  - 24. The article of manufacture of claim 17, wherein the digital signature extension includes a data structure to transport digital certificate-related and digital signature-related information between the file-specific components and the cryptographic services.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Autodesk, Inc.
Original Assignee
Autodesk, Inc.
Inventors
Bajaj, Samir

Application Number

US10/151,621
Publication Number

US 20030221105A1
Time in Patent Office

Days
Field of Search
US Class Current

713/176
CPC Class Codes

G06F 21/64 Protecting data integrity, ...

Extensible mechanism for attaching digital signatures to different file types

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Extensible mechanism for attaching digital signatures to different file types

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links