Data certification method and apparatus
First Claim
1. A method of certifying electronic data supplied by a user, the method comprising:
- receiving the data to be certified at a certifying apparatus from a source device;
certifying the data at the certifying apparatus with one or more elements of information secure to the certifying apparatus, said elements being unique to the user; and
outputting the data so certified from the certifying apparatus, for passing to a recipient device;
wherein the elements of secure information certify that the supplier of the data is the user.
4 Assignments
0 Petitions
Accused Products
Abstract
An apparatus and method for signing electronic data with a digital signature in which a central server comprises a signature server (110) and a authentication server (120). The signature server (110) securely stores the private cryptographic keys of a number of users (102). The user (102) contacts the central server using a workstation (101) through a secure tunnel which is setup for the purpose. The user (102) supplies a password or other token (190), based on information previously supplied to the user by the authentication server (120) through a separate authentication channel. The authentication server provides the signature server with a derived version of the same information through a permanent see tunnel between the servers, which is compared with the one supplied by the user (102). If they match, data received from the user (102) is signed with the user'"'"'s private key.
148 Citations
74 Claims
-
1. A method of certifying electronic data supplied by a user, the method comprising:
-
receiving the data to be certified at a certifying apparatus from a source device;
certifying the data at the certifying apparatus with one or more elements of information secure to the certifying apparatus, said elements being unique to the user; and
outputting the data so certified from the certifying apparatus, for passing to a recipient device;
wherein the elements of secure information certify that the supplier of the data is the user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 42, 43, 44)
-
-
8. A method of certifying electronic data supplied by a user, the method comprising:
-
establishing a secure connection between a source device and a certifying apparatus;
sending the data from the source device to be received by the certifying apparatus; and
receiving a version of the data from the certifying apparatus certified as originating from the user, using information unique to the user. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
39. A method for use in data certification, comprising:
-
receiving a request from a remote device to supply a user with identification data;
supplying said identification data to a user; and
supplying a derived version of the identification data to the remote device. - View Dependent Claims (40, 41, 45, 46)
-
-
47. A data certifying apparatus, comprising:
a signing device adapted to certify electronic data received from a remote source device as originating from a user, wherein the certifying apparatus is arranged to receive data from the souse device, certify the data as belonging to the user, using information stored in the certifying apparatus and cryptographic techniques, said information being unique to the user, and send the certified data to a recipient device. - View Dependent Claims (48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 74)
-
71. An apparatus for use in data certification, comprising:
-
receiving means for receiving a request from a remote device to supply a user with identification data;
supplying means for supplying said identification data to a user; and
further supplying means for supplying a derived version of the identification data to the remote device. - View Dependent Claims (72, 73)
-
Specification