Method and system for assuring an original
First Claim
1. An original assurance method for assuring validity of an original using a plurality of first signature servers and a second signature server supervising said plurality of first signature servers, wherein:
- in generating signatures for assuring validity of the original;
(1) said plurality of first signature servers each perform;
a first log list registration step, in which, when the first signature server in question receives n-th (n≧
2) digital data as an original as an object of assurance, said first signature server generates a digital signature to the n-th digital data and an (n−
1)-th first chain signature registered in a first log list, and adds said digital signature as an n-th first chain signature to said first log list, associating said n-th first chain signature with said n-th digital data;
a first certificate of custody transmission step, in which the first signature server in question sends a first certificate of custody including said n-th first chain signature to a sender of the n-th digital data; and
a second certificate of custody reception step, in which the first signature server in question sends an m-th (m≧
2) first chain signature in said first log list to said second signature server, receives a second certificate of custody to the m-th first chain signature from said second signature server, and stores said second certificate of custody; and
(2) said second signature server performs;
a second log list registration step, in which, when the second signature server receives a j-th (j≧
2) first chain signature from one of said plurality of first signature servers, the second signature server generates a digital signature to the j-th first chain signature and a (j−
1)-th second chain signature registered in a second log list, and adds said digital signature as a j-th second chain signature to said second log list, associating said j-th second chain signature with the j-th first chain signature;
a first-type second certificate of custody transmission step, in which the second signature server sends a second certificate of custody including said j-th second chain signature to said one of said plurality of first signature servers; and
a transmission management step, in which the second signature server sends a k-th (k≧
2) second chain signature in said second log list to an external server.
1 Assignment
0 Petitions
Accused Products
Abstract
In using log lists of chain signatures to assure validity of an original, work of opening log lists to the public is reduced. A first signature server 2 generates a first chain signature to an original as an object of assurance, adds the generated first chain signature to a first log list, associating the first chain signature with the original, and sends a first certificate of custody including the first chain signature, to the sender of the original. Further, the first signature server 2 sends an arbitrary first chain signature in the log list to a second signature server 3, to receive a second certificate of custody. On the other hand, the second signature server 3 generates a second chain signature to the first chain signature received from the first signature server 2, adds the second chain signature to a second log list, associating the second chain signature with the first chain signature, and sends a second certificate of custody including the second chain signature, to the sender of the first chain signature. Further, the second signature server 3 sends an arbitrary second chain signature in the second log list to a public server 4.
31 Citations
17 Claims
-
1. An original assurance method for assuring validity of an original using a plurality of first signature servers and a second signature server supervising said plurality of first signature servers, wherein:
in generating signatures for assuring validity of the original;
(1) said plurality of first signature servers each perform;
a first log list registration step, in which, when the first signature server in question receives n-th (n≧
2) digital data as an original as an object of assurance, said first signature server generates a digital signature to the n-th digital data and an (n−
1)-th first chain signature registered in a first log list, and adds said digital signature as an n-th first chain signature to said first log list, associating said n-th first chain signature with said n-th digital data;
a first certificate of custody transmission step, in which the first signature server in question sends a first certificate of custody including said n-th first chain signature to a sender of the n-th digital data; and
a second certificate of custody reception step, in which the first signature server in question sends an m-th (m≧
2) first chain signature in said first log list to said second signature server, receives a second certificate of custody to the m-th first chain signature from said second signature server, and stores said second certificate of custody; and
(2) said second signature server performs;
a second log list registration step, in which, when the second signature server receives a j-th (j≧
2) first chain signature from one of said plurality of first signature servers, the second signature server generates a digital signature to the j-th first chain signature and a (j−
1)-th second chain signature registered in a second log list, and adds said digital signature as a j-th second chain signature to said second log list, associating said j-th second chain signature with the j-th first chain signature;
a first-type second certificate of custody transmission step, in which the second signature server sends a second certificate of custody including said j-th second chain signature to said one of said plurality of first signature servers; and
a transmission management step, in which the second signature server sends a k-th (k≧
2) second chain signature in said second log list to an external server.- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
13. An original assurance system that assures validity of an original, wherein:
-
said system comprises a plurality of first signature servers and a second signature server supervising said plurality of first signature servers;
said plurality of first signature servers each perform;
processing, in which, when the first signature server in question receives n-th (n≧
2) digital data as an original as an object of assurance, said first signature server generates a digital signature to the n-th digital data and an (n−
1)-th first chain signature registered in a first log list, and adds said digital signature as an n-th first chain signature to said first log list, which is stored in a storage unit, associating said n-th first chain signature with said n-th digital data;
processing, in which the first signature server in question sends a first certificate of custody including said n-th first chain signature to a sender of the n-th digital data; and
processing, in which the first signature server in question sends an m-th (m≧
2) first chain signature in said first log list to said second signature server, receives a second certificate of custody to the m-th first chain signature from said second signature server, and stores said second certificate of custody in the storage unit; and
said second signature server performs;
processing, in which, when the second signature server receives a j-th (j≧
2) first chain signature from one of said plurality of first signature servers, the second signature server generates a digital signature to the j-th first chain signature and a (j−
1)-th second chain signature registered in a second log list, and adds said digital signature as a j-th second chain signature to said second log list, which is stored in a storage unit, associating said j-th second chain signature with the j-th first chain signature;
processing, in which the second signature server sends a second certificate of custody including said j-th second chain signature to said one of said plurality of first signature servers; and
processing, in which the second signature server sends a k-th (k≧
2) second chain signature in said second log list to an external server. - View Dependent Claims (14, 15, 16, 17)
-
Specification