Method and system for the supply of data, transactions and electronic voting
First Claim
1. A method for supply of data relating to a described entity to a relying entity, the method comprising:
- generating a first digital certificate signed with an electronic signature by a first signing entity and including;
one or more attributes of the described entity;
one or more attributes of the first digital certificate which include one or more attributes identifying the first signing entity;
an indication of data relating to the described entity which is to be supplied;
an indication of one or more sources for the data to be supplied; and
one or more attributes identifying one or more relying entities to which the data is to be supplied;
the relying entity forwarding the first digital certificate for processing; and
a source supplying the data indicated in the first digital certificate.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and system for supply of data relating to a described entity (302) to a relying entity (304). The method includes generating a first digital certificate referred to as an empowerment certificate signed with an electronic signature by a first signing entity. The empowerment certificate includes one or more attributes of the described entity (302) and one or more attributes of the empowerment certificate including one or more attributes identifying the first signing entity. The empowerment certificate also includes an indication of data relating to the described entity (302) which is to be supplied and an indication of one or more sources (306) for the data to be supplied. The empowerment certificate also includes one or more attributes identifying one or more relying entities (304) to which the data is authorised to be supplied. The method also includes the relying entity (304) forwarding the empowerment certificate for processing and a source (306) supplying the data indicated in the empowerment certificate. Some or all of the data relating to the described entity (302) may be supplied to the relying entity (304) by means of a second digital certificate referred to as a custom certificate. The custom certificate is signed with an electronic signature by a second signing entity. The custom certificate includes one or more attributes of the described entity (302) including the data which is to be supplied, one or more attributes of the custom certificate which include one or more attributes identifying the second signing entity, and one or more attributes identifying one or more relying entities to which the data is to be supplied. Custom certificates may appear in custom certificate revocation lists. A system and method for transfer of ownership of electronic property (801) from a first entity to a second entity are also provided. A method and system for electronic voting are also provided.
104 Citations
115 Claims
-
1. A method for supply of data relating to a described entity to a relying entity, the method comprising:
-
generating a first digital certificate signed with an electronic signature by a first signing entity and including;
one or more attributes of the described entity;
one or more attributes of the first digital certificate which include one or more attributes identifying the first signing entity;
an indication of data relating to the described entity which is to be supplied;
an indication of one or more sources for the data to be supplied; and
one or more attributes identifying one or more relying entities to which the data is to be supplied;
the relying entity forwarding the first digital certificate for processing; and
a source supplying the data indicated in the first digital certificate. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
-
-
24. A system for supply of data relating to a described entity to a relying entity, the system comprising:
-
a first signing entity application, a relying entity application and a data store wherein the data store holds data relating to the described entity;
the first signing entity application has means for generating a first digital certificate signed with an electronic signature by the first signing entity application and including;
one or more attributes of the described entity;
one or more attributes of the first digital certificate which include one or more attributes identifying the first signing entity;
an indication of data relating to the described entity which is to be supplied;
an indication of one or more sources for the data to be supplied; and
one or more attributes identifying one or more relying entities to which the data is to be supplied;
the relying entity application has means for forwarding the first digital certificate for processing; and
means for supplying the data indicated in the first digital certificate from the data store. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
-
-
35. A computer program product stored on a computer readable storage medium, comprising computer readable program code means for performing the steps of:
generating a digital certificate signed with an electronic signature by a signing entity and including;
one or more attributes of a described entity;
one or more attributes of the digital certificate which include one or more attributes identifying the signing entity;
either an indication of data relating to the described entity which is to be supplied and an indication of one or more sources or the data itself; and
one or more attributes identifying one or more relying entities to which the data is to be supplied.
-
36. A digital certificate signed with an electronic signature by a signing entity and comprising:
-
one or more attributes of a described entity;
one or more attributes of the digital certificate which include one or more attributes identifying the signing entity;
either an indication of data relating to the described entity which is to be supplied and an indication of one or more sources or the data itself; and
one or more attributes identifying one or more relying entities, wherein the relying entities are entities to which the data relating to the described entity is to be supplied.
-
-
37. A method of providing a digital signature based on a digital certificate comprising:
-
generating a digital signature using a private key corresponding to a public key, the signed data including;
one or more attributes identifying a digital certificate to be generated;
generating a digital certificate signed with an electronic signature by a signing entity and including;
one or more attributes of a described entity which are sufficient to obtain the public key;
one or more attributes of the digital certificate which include one or more attributes identifying the signing entity; and
an indicated period of validity of the digital certificate which begins earlier than the time of generation of the digital certificate;
wherein the digital certificate is generated after the generation of the digital signature. - View Dependent Claims (38, 39, 40, 41)
-
-
42. A system for providing a digital signature based on a digital certificate, the system comprising:
-
a described entity application with means for generating a digital signature using a private key corresponding to a public key, the signed data including;
one or more attributes identifying a digital certificate to be generated;
a signing entity application having means for generating a digital certificate with an electronic signature and including;
one or more attributes of a described entity which are sufficient to obtain the public key;
one or more attributes of the digital certificate which include one or more attributes identifying the signing entity; and
an indicated period of validity of the digital certificate which begins earlier than the time of generation of the digital certificate;
wherein the digital certificate is generated after the generation of the digital signature.
-
-
43. A computer program product stored on a computer readable storage medium, comprising computer readable program code means for performing the steps of:
-
generating a digital signature using a private key corresponding to a public key, the signed data including;
one or more attributes identifying a digital certificate to be generated;
generating a digital certificate signed with an electronic signature by a signing entity and including;
one or more attributes of a described entity which are sufficient to obtain the public key;
one or more attributes of the digital certificate which include one or more attributes identifying the signing entity; and
an indicated period of validity of the digital certificate which begins earlier than the time of generation of the digital certificate;
wherein the digital certificate is generated after the generation of the digital signature.
-
-
44. A digital certificate signed with an electronic signature by a signing entity and comprising:
-
one or more attributes of a described entity;
one or more attributes of the digital certificate which include one or more attributes identifying the signing entity;
an indicated period of validity of the digital certificate which begins earlier than the time of generation of the digital certificate. - View Dependent Claims (45, 46, 47, 48)
-
-
49. A system for transfer of ownership of electronic property, comprising:
-
an electronic property signed with an electronic signature by a first entity;
a digital certificate generated and signed with an electronic signature by the first entity, the digital certificate including an indication of a second entity to which the electronic property is transferred, and an indication of data which is to be supplied to the second entity from a source or the data itself, wherein the electronic property and the digital certificate include a link means connecting the electronic property with the digital certificate. - View Dependent Claims (50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60)
-
-
61. A method for transfer of ownership of electronic property from a first entity to a second entity, comprising:
-
the first entity signing an electronic property with an electronic signature; and
generating a digital certificate signed with an electronic signature by the first entity and including an indication of the second entity and an indication of data which is to be supplied to the second entity from a source or the data itself, wherein the electronic property and the digital certificate include a link means connecting the electronic property with the digital certificate. - View Dependent Claims (62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73)
-
-
74. A computer program product stored on a computer readable storage medium comprising computer readable program code means for performing the steps of:
-
the first entity signing an electronic property with an electronic signature; and
generating a digital certificate signed with an electronic signature by the first entity and including an indication of the second entity and an indication of data which is to be supplied to the second entity from a source or the data itself, wherein the electronic property and the digital certificate include a link means connecting the electronic property with the digital certificate.
-
-
75. A method for electronic voting in which there are an authentication body, a counting body, and a plurality of voters, the method comprising:
-
a voter generates a digital certificate, the digital certificate includes an indication of identification data which is to be supplied to the authentication body to identify the voter uniquely and references to one or more sources for the identification data and/or the digital certificate includes the identification data itself, the digital certificate also includes an indication of a voting key;
the voter signs the digital certificate with an electronic signature;
the digital certificate is encrypted for reading by the authentication body only;
the voter generates a voting message including a vote;
the voting message is encrypted for reading by the counting body only; and
a signature block is generated combining the digital certificate and the voting message;
wherein the encrypted digital certificate, the encrypted voting message and the signature block are sent to the authentication body. - View Dependent Claims (76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91, 92, 93, 94)
-
-
95. A system for electronic voting in which there are an authentication body, a counting body, and a plurality of voters, the system comprising:
-
a digital certificate generated by a voter, the digital certificate includes an indication of identification data which is to be supplied to the authentication body to identify the voter uniquely and references to one or more sources for the identification data and/or the digital certificate includes the identification data itself, the digital certificate also includes an indication of a voting key;
the digital certificate being signed with an electronic signature by the voter;
the digital certificate being encrypted for reading by the authentication body only;
a voting message including a vote generated by the voter;
the voting message being encrypted for reading by the counting body only; and
a signature block combining the digital certificate and the voting message;
wherein the encrypted digital certificate, the encrypted voting message and the signature block are sent to the authentication body. - View Dependent Claims (96, 97, 98, 99, 100, 101, 102, 103, 104, 105, 106, 107, 108, 109, 110, 111, 112, 113, 114)
-
-
115. A computer program product stored on a computer readable storage medium comprising computer readable program code means for performing the steps of:
-
generating a digital certificate, the digital certificate includes an indication of identification data which is to be supplied to the authentication body to identify a voter uniquely and references to one or more sources for the identification data and/or the digital certificate includes the identification data itself, the digital certificate also includes an indication of a voting key;
signing the digital certificate with an electronic signature by the voter;
encrypting the digital certificate for reading by the authentication body only;
generating a voting message including a vote;
encrypting the voting message for reading by the counting body only;
generating a signature block combining the digital certificate and the voting message;
sending the encrypted digital certificate, the encrypted voting message and the signature block to the authentication body.
-
Specification