Method and system for the supply of data, transactions and electronic voting

US 20050065799A1
Filed: 10/21/2002
Published: 03/24/2005
Est. Priority Date: 11/06/2001
Status: Active Grant

First Claim

Patent Images

1. A method for supply of data relating to a described entity to a relying entity, the method comprising:

generating a first digital certificate signed with an electronic signature by a first signing entity and including;

one or more attributes of the described entity;

one or more attributes of the first digital certificate which include one or more attributes identifying the first signing entity;

an indication of data relating to the described entity which is to be supplied;

an indication of one or more sources for the data to be supplied; and

one or more attributes identifying one or more relying entities to which the data is to be supplied;

the relying entity forwarding the first digital certificate for processing; and

a source supplying the data indicated in the first digital certificate.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for supply of data relating to a described entity (302) to a relying entity (304). The method includes generating a first digital certificate referred to as an empowerment certificate signed with an electronic signature by a first signing entity. The empowerment certificate includes one or more attributes of the described entity (302) and one or more attributes of the empowerment certificate including one or more attributes identifying the first signing entity. The empowerment certificate also includes an indication of data relating to the described entity (302) which is to be supplied and an indication of one or more sources (306) for the data to be supplied. The empowerment certificate also includes one or more attributes identifying one or more relying entities (304) to which the data is authorised to be supplied. The method also includes the relying entity (304) forwarding the empowerment certificate for processing and a source (306) supplying the data indicated in the empowerment certificate. Some or all of the data relating to the described entity (302) may be supplied to the relying entity (304) by means of a second digital certificate referred to as a custom certificate. The custom certificate is signed with an electronic signature by a second signing entity. The custom certificate includes one or more attributes of the described entity (302) including the data which is to be supplied, one or more attributes of the custom certificate which include one or more attributes identifying the second signing entity, and one or more attributes identifying one or more relying entities to which the data is to be supplied. Custom certificates may appear in custom certificate revocation lists. A system and method for transfer of ownership of electronic property (801) from a first entity to a second entity are also provided. A method and system for electronic voting are also provided.

104 Citations

View as Search Results

115 Claims

1. A method for supply of data relating to a described entity to a relying entity, the method comprising:
- generating a first digital certificate signed with an electronic signature by a first signing entity and including;
  
  one or more attributes of the described entity;
  
  one or more attributes of the first digital certificate which include one or more attributes identifying the first signing entity;
  
  an indication of data relating to the described entity which is to be supplied;
  
  an indication of one or more sources for the data to be supplied; and
  
  one or more attributes identifying one or more relying entities to which the data is to be supplied;
  
  the relying entity forwarding the first digital certificate for processing; and
  
  a source supplying the data indicated in the first digital certificate.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 2. The method of claim 1, wherein the source can hold data or can refer to one or more further sources.
  - 3. The method of claim 1, wherein the first signing entity is the described entity.
  - 4. The method of claim 1, wherein the first digital certificate includes a reference, nonce or other data which the relying entity has previously requested to be included.
  - 5. The method of claim 1, wherein some or all of the data relating to the described entity is supplied by a second digital certificate to the relying entity, the second digital certificate signed with an electronic signature by a second signing entity and including:
    - one or more attributes of the described entity including the data which is to be supplied;
      
      one or more attributes of the second digital certificate which include one or more attributes identifying the second signing entity; and
      
      one or more attributes identifying one or more relying entities to which the data is to be supplied.
  - 6. The method of claim 5, wherein the first digital certificate authorises the relying entity to use the first digital certificate to obtain a second digital certificate.
  - 7. The method of claim 6, wherein the relying entity is authorised to obtain a second digital certificate which is marked as qualified.
  - 8. The method of claim 5, wherein the second digital certificate includes one or more attributes of the first digital certificate.
  - 9. The method of claim 5, wherein at least some of the contents of the first digital certificate is copied to the second digital certificate.
  - 10. The method of claim 1, further comprising the relying entity forwarding the first digital certificate to an intermediate entity to obtain data from a source.
  - 11. The method of claim 10, wherein the intermediate entity generates the second digital certificate.
  - 12. The method of claim 11, wherein the second digital certificate includes one or more attributes identifying the relying entity which are different from the one or more attributes identifying the relying entity included in the first digital certificate.
  - 13. The method of claim 12, wherein the second digital certificate includes one or more attributes identifying the described entity which are different from one or more attributes identifying the described entity included in the first digital certificate.
  - 14. The method of claim 1, wherein the described entity generates a digital signature using a private key with a corresponding public key and the first signing entity includes the digital signature or a cryptographic digest thereof in the first digital certificate, and the data to be supplied to the relying entity includes the public key.
  - 15. The method of claim 1, wherein the first digital certificate includes a period of validity.
  - 16. The method of claim 15, wherein the second digital certificate includes a period of validity.
  - 17. The method of claim 16, wherein the period of validity of the first digital certificate or the second digital certificate is that short period of time during which a digital signature was generated.
  - 18. The method of claim 1, wherein the data indicated in the first digital certificate includes confirmation of a payment or debt due from the described entity identified in the first digital certificate to the relying entity identified in the first digital certificate.
  - 19. The method of claim 18, wherein a second signing entity indicates in a second digital certificate a guarantee of a debt indicated as due in a first digital certificate.
  - 20. The method of claim 19, wherein a change in previously supplied data is indicated by the supply of a list identifying a second digital certificate relating to the previously supplied data.
  - 21. The method of claim 1, wherein a list identifies a first or second digital certificate specifying data which is no longer authorised to be supplied to the relying entity.
  - 22. The method of claim 21, wherein the generation of the list includes one or more attributes identifying the relying entities to which the list relates.
  - 23. The method of claim 22, further comprising generating and storing a list for the second digital certificates, which is indexed by one or more attributes identifying relying entities such that all second digital certificates in the list relevant to a relying entity can be identified.

24. A system for supply of data relating to a described entity to a relying entity, the system comprising:
- a first signing entity application, a relying entity application and a data store wherein the data store holds data relating to the described entity;
  
  the first signing entity application has means for generating a first digital certificate signed with an electronic signature by the first signing entity application and including;
  
  one or more attributes of the described entity;
  
  one or more attributes of the first digital certificate which include one or more attributes identifying the first signing entity;
  
  an indication of data relating to the described entity which is to be supplied;
  
  an indication of one or more sources for the data to be supplied; and
  
  one or more attributes identifying one or more relying entities to which the data is to be supplied;
  
  the relying entity application has means for forwarding the first digital certificate for processing; and
  
  means for supplying the data indicated in the first digital certificate from the data store.
- View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
- - 25. The system of claim 24, wherein a source holds the data store or can refer to one or more further sources.
  - 26. The system of claim 24, wherein the first signing entity is the described entity.
  - 27. The system of claim 24, wherein the first digital certificate includes a reference, nonce or other data which the relying entity has previously requested to be included.
  - 28. The system of claim 24, wherein a second digital certificate is provided for supplying the data relating to the described entity to the relying entity application, the second digital certificate signed with an electronic signature by a second signing entity application and including:
    - one or more attributes of the described entity including the data which is to be supplied;
      
      one or more attributes of the second digital certificate which include one or more attributes identifying the second signing entity; and
      
      one or more attributes identifying one or more relying entities to which the data is to be supplied.
  - 29. The system of claim 24, wherein the system includes an intermediate entity application to which the relying entity application forwards the first digital certificate to obtain data from the data store.
  - 30. The system of claim 24, wherein the system includes more than one data store holding data relating to the described entity.
  - 31. The system of claim 24, wherein a data store has means for determining for an item of data included in the data store information concerning or contained in a first digital certificate which has referenced that item.
  - 32. The system of claim 28, wherein a data store has means for determining for an item of data included in the data store information concerning or contained in a second digital certificate which provides the value of that item.
  - 33. The system of claim 29, wherein the intermediate entity application has storage means for storing second digital certificates referenced by the relying entities identified in the second digital certificates.
  - 34. The system of claim 24, further comprising a proxy entity application to which the relying entity application or the intermediate entity application forwards the first digital certificate to obtain information specifying to which data store or other proxy entity application the first certificate should next be forwarded.

35. A computer program product stored on a computer readable storage medium, comprising computer readable program code means for performing the steps of:
- generating a digital certificate signed with an electronic signature by a signing entity and including;
  
  one or more attributes of a described entity;
  
  one or more attributes of the digital certificate which include one or more attributes identifying the signing entity;
  
  either an indication of data relating to the described entity which is to be supplied and an indication of one or more sources or the data itself; and
  
  one or more attributes identifying one or more relying entities to which the data is to be supplied.

36. A digital certificate signed with an electronic signature by a signing entity and comprising:
- one or more attributes of a described entity;
  
  one or more attributes of the digital certificate which include one or more attributes identifying the signing entity;
  
  either an indication of data relating to the described entity which is to be supplied and an indication of one or more sources or the data itself; and
  
  one or more attributes identifying one or more relying entities, wherein the relying entities are entities to which the data relating to the described entity is to be supplied.

37. A method of providing a digital signature based on a digital certificate comprising:
- generating a digital signature using a private key corresponding to a public key, the signed data including;
  
  one or more attributes identifying a digital certificate to be generated;
  
  generating a digital certificate signed with an electronic signature by a signing entity and including;
  
  one or more attributes of a described entity which are sufficient to obtain the public key;
  
  one or more attributes of the digital certificate which include one or more attributes identifying the signing entity; and
  
  an indicated period of validity of the digital certificate which begins earlier than the time of generation of the digital certificate;
  
  wherein the digital certificate is generated after the generation of the digital signature.
- View Dependent Claims (38, 39, 40, 41)
- - 38. The method of claim 37, wherein more than one digital signature can be generated which identifies the same digital certificate.
  - 39. The method of claim 37, wherein the period of validity of the digital certificate is that short period in which the digital signature was generated.
  - 40. The method of claim 37, wherein the one or more attributes identifying the digital certificate to be generated given in the digital signature include a serial number.
  - 41. The method of claim 40, wherein the lowest available serial number which can be used for the next digital certificate to be generated or the last used serial number using each private key is recorded.

42. A system for providing a digital signature based on a digital certificate, the system comprising:
- a described entity application with means for generating a digital signature using a private key corresponding to a public key, the signed data including;
  
  one or more attributes identifying a digital certificate to be generated;
  
  a signing entity application having means for generating a digital certificate with an electronic signature and including;
  
  one or more attributes of a described entity which are sufficient to obtain the public key;
  
  one or more attributes of the digital certificate which include one or more attributes identifying the signing entity; and
  
  an indicated period of validity of the digital certificate which begins earlier than the time of generation of the digital certificate;
  
  wherein the digital certificate is generated after the generation of the digital signature.

43. A computer program product stored on a computer readable storage medium, comprising computer readable program code means for performing the steps of:
- generating a digital signature using a private key corresponding to a public key, the signed data including;
  
  one or more attributes identifying a digital certificate to be generated;
  
  generating a digital certificate signed with an electronic signature by a signing entity and including;
  
  one or more attributes of a described entity which are sufficient to obtain the public key;
  
  one or more attributes of the digital certificate which include one or more attributes identifying the signing entity; and
  
  an indicated period of validity of the digital certificate which begins earlier than the time of generation of the digital certificate;
  
  wherein the digital certificate is generated after the generation of the digital signature.

44. A digital certificate signed with an electronic signature by a signing entity and comprising:
- one or more attributes of a described entity;
  
  one or more attributes of the digital certificate which include one or more attributes identifying the signing entity;
  
  an indicated period of validity of the digital certificate which begins earlier than the time of generation of the digital certificate.
- View Dependent Claims (45, 46, 47, 48)
- - 45. The digital certificate of claim 44, wherein the indicated period of validity of the digital certificate ends no later than the time of generation of the digital certificate.
  - 46. The digital certificate of claim 44, wherein the described entity is the signing entity.
  - 47. The digital certificate of claim 44, wherein the digital certificate includes a time stamp indicating the time of generation.
  - 48. A digital signature using a private key corresponding to the public key derivable from the digital certificate claimed in claim 44, wherein the digital certificate is generated after the generation of the digital signature, the signed data including:
    - one or more attributes identifying the digital certificate to be generated.

49. A system for transfer of ownership of electronic property, comprising:
- an electronic property signed with an electronic signature by a first entity;
  
  a digital certificate generated and signed with an electronic signature by the first entity, the digital certificate including an indication of a second entity to which the electronic property is transferred, and an indication of data which is to be supplied to the second entity from a source or the data itself, wherein the electronic property and the digital certificate include a link means connecting the electronic property with the digital certificate.
- View Dependent Claims (50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60)
- - 50. The system as claimed in claim 49, wherein the link means is a bit-stream generated from a serial number of the digital certificate and an identifier referencing the transfer, the bit-stream being included in the electronic property and the bit-stream or an indication of it being included in the digital certificate.
  - 51. The system as claimed in claim 49, wherein the link means is a digital watermark with a watermark key, wherein the watermark is included in the electronic property and the watermark key or an indication of it is included in the digital certificate.
  - 52. The system as claimed in claim 49, wherein the electronic property is signed by the first entity using a private key of a public/private key pair and the corresponding public key or an indication of it is provided in the digital certificate.
  - 53. The system as claimed in claim 49, wherein the electronic property is encrypted by the first entity using the public key of a public/private key pair of the second entity.
  - 54. The system as claimed in claim 53, wherein the electronic property is encrypted by the first entity using a symmetrical cipher with a session key and the session key is encrypted using the public key of a private/public key pair of the second entity.
  - 55. The system as claimed in claim 49, wherein the digital certificate has a validity period which begins earlier than the time of generation of the digital certificate.
  - 56. The system as claimed in claim 49, wherein the digital certificate has a second validity period relating to the period for the duration of which the rights in the electronic property are transferred.
  - 57. The system as claimed in claim 49, wherein a second digital certificate is provided, signed with an electronic signature by a third entity and including:
    - an indication of the first entity;
      
      an indication of the second entity;
      
      an indication of the third entity; and
      
      data to be supplied.
  - 58. The system as claimed in claim 49, wherein the data to be supplied includes the public key of a private/public key pair of the first entity.
  - 59. The system as claimed in claim 49, wherein the transfer of electronic property is tracked by each entity having an account identified by the electronic property, an account being incremented or decreased by a unit upon transfer of the electronic property.
  - 60. The system as claimed in claim 59, wherein the account is identified by a hash of the electronic property.

61. A method for transfer of ownership of electronic property from a first entity to a second entity, comprising:
- the first entity signing an electronic property with an electronic signature; and
  
  generating a digital certificate signed with an electronic signature by the first entity and including an indication of the second entity and an indication of data which is to be supplied to the second entity from a source or the data itself, wherein the electronic property and the digital certificate include a link means connecting the electronic property with the digital certificate.
- View Dependent Claims (62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73)
- - 62. The method as claimed in claim 61, wherein the method includes the first entity sending the electronic property and the digital certificate to the second entity.
  - 63. The method as claimed in claim 61, wherein the link means is a bit-stream generated from a serial number of the digital certificate and an identifier referencing the transfer, the bit-stream being included in the electronic property and the bit-stream or an indication of it being included in the digital certificate.
  - 64. The method as claimed in claim 61, wherein the link means is a digital watermark with a watermark key, wherein the watermark is included in the electronic property and the watermark key or an indication of it is included in the digital certificate.
  - 65. The method as claimed in claim 61, wherein the method includes the first entity signing the electronic property using a private key of a public/private key pair and the corresponding public key or an indication of it is provided in the digital certificate.
  - 66. The method as claimed in claim 61, wherein the method includes the first entity encrypting the electronic property using the public key of a public/private key pair of the second entity.
  - 67. The method as claimed in claim 66, wherein the method includes the first entity encrypting the electronic property using a symmetrical cipher with a session key and encrypting the session key with the public key of a private/public key pair of the second entity.
  - 68. The method as claimed in claim 61, wherein the digital certificate has a validity period which begins earlier than the time of generation of the digital certificate.
  - 69. The method as claimed in claim 61, wherein the digital certificate has a second validity period relating to the period for the duration of which the rights in the electronic property are transferred.
  - 70. The method as claimed in claim 61, wherein the method includes the second entity obtaining a second digital certificate, signed with an electronic signature by a third entity and including:
    - an indication of the first entity;
      
      an indication of the second entity;
      
      an indication of the third entity; and
      
      data to be supplied.
  - 71. The method as claimed in claim 61, wherein the data to be supplied includes the public key of a private/public key pair of the first entity.
  - 72. The method as claimed in claim 61, wherein the transfer of electronic property is tracked by each entity having an account identified by the electronic property, an account being incremented or decreased by a unit upon transfer of the electronic property.
  - 73. The method as claimed in claim 72, wherein the account is identified by a hash of the electronic property.

74. A computer program product stored on a computer readable storage medium comprising computer readable program code means for performing the steps of:
- the first entity signing an electronic property with an electronic signature; and
  
  generating a digital certificate signed with an electronic signature by the first entity and including an indication of the second entity and an indication of data which is to be supplied to the second entity from a source or the data itself, wherein the electronic property and the digital certificate include a link means connecting the electronic property with the digital certificate.

75. A method for electronic voting in which there are an authentication body, a counting body, and a plurality of voters, the method comprising:
- a voter generates a digital certificate, the digital certificate includes an indication of identification data which is to be supplied to the authentication body to identify the voter uniquely and references to one or more sources for the identification data and/or the digital certificate includes the identification data itself, the digital certificate also includes an indication of a voting key;
  
  the voter signs the digital certificate with an electronic signature;
  
  the digital certificate is encrypted for reading by the authentication body only;
  
  the voter generates a voting message including a vote;
  
  the voting message is encrypted for reading by the counting body only; and
  
  a signature block is generated combining the digital certificate and the voting message;
  
  wherein the encrypted digital certificate, the encrypted voting message and the signature block are sent to the authentication body.
- View Dependent Claims (76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91, 92, 93, 94)
- - 76. The method as claimed in claim 75, wherein confirmation is required from an external source of the identification data and the digital certificate includes an indication of the identification data and confirmation of the voter'"'"'s right to vote and references to one or more sources that can provide the identification data and the confirmation.
  - 77. The method as claimed in claim 75, wherein the digital certificate includes the identification data itself and the assertion of the identification data by the voter is sufficient.
  - 78. The method as claimed in claim 75, wherein both the identification data and the indication of the identification data and references are included in the digital certificate.
  - 79. The method as claimed in claim 75, wherein the identification data includes one or more of:
    - name, address, date of birth, nationality, length of residence, non-membership of prohibited classes of the voter.
  - 80. The method as claimed in claim 75, wherein the voter includes a nonce in the voting message in the form of an identifier applied by the voter to identify his vote.
  - 81. The method as claimed in claim 75, wherein the voter includes a random spoiler in the voting message.
  - 82. The method as claimed in claim 75, wherein the digital certificate is encrypted using the public key of a public/private confidentiality key pair of the authentication body.
  - 83. The method as claimed in claim 75, wherein the voting message is encrypted using the public key of a public/private confidentiality key pair of the counting body.
  - 84. The method as claimed in claim 75, wherein an integrity block is formed by obtaining a digest of the encrypted digital certificate, obtaining a digest of the encrypted voting message and combining the digests.
  - 85. The method as claimed in claim 84, wherein the digests are combined, a further digest obtained from the combination and the resultant digest is encrypted.
  - 86. The method as claimed in claim 85, wherein the digest is encrypted using a private key of a public/private signature key pair that the voter is using for voting to provide the signature block.
  - 87. The method as claimed in claim 75, wherein the voting key is the public key of the public/private signature key pair that the voter is using for voting.
  - 88. The method as claimed in claim 75, wherein the authentication body confirms that the digital certificate and the encrypted voting message are as the voter sent them and are linked by the signature block.
  - 89. The method as claimed in claim 88, wherein the authentication body decrypts the digital certificate and obtains the voting key and uses it to decrypt the signature block, the authentication body also combines the encrypted digital certificate and the encrypted voting message using the same method as the voter and compares the result with the decrypted signature block.
  - 90. The method as claimed in claim 75, wherein a serial number for the voter is issued by the authentication body.
  - 91. The method as claimed in claim 90, wherein the authentication body constructs a message including:
    - the voter'"'"'s serial number, a digest of the digital certificate, the voting key, the message being encrypted by the authentication body.
  - 92. The method as claimed in claim 91, wherein the authentication body sends the message, the encrypted voting message and the signature block to the counting body.
  - 93. The method as claimed in claim 92, wherein the counting body decrypts the message and uses the digest of the encrypted digital certificate and voting key from the message to confirm that the voting message is an unchanged original vote which has been assigned a serial number by the authentication body.
  - 94. The method as claimed in claim 93, wherein the counting body decrypts and records the voter'"'"'s vote.

95. A system for electronic voting in which there are an authentication body, a counting body, and a plurality of voters, the system comprising:
- a digital certificate generated by a voter, the digital certificate includes an indication of identification data which is to be supplied to the authentication body to identify the voter uniquely and references to one or more sources for the identification data and/or the digital certificate includes the identification data itself, the digital certificate also includes an indication of a voting key;
  
  the digital certificate being signed with an electronic signature by the voter;
  
  the digital certificate being encrypted for reading by the authentication body only;
  
  a voting message including a vote generated by the voter;
  
  the voting message being encrypted for reading by the counting body only; and
  
  a signature block combining the digital certificate and the voting message;
  
  wherein the encrypted digital certificate, the encrypted voting message and the signature block are sent to the authentication body.
- View Dependent Claims (96, 97, 98, 99, 100, 101, 102, 103, 104, 105, 106, 107, 108, 109, 110, 111, 112, 113, 114)
- - 96. The system as claimed in claim 95, wherein confirmation is required from an external source of the identification data and the digital certificate includes an indication of the identification data and confirmation of the voter'"'"'s right to vote and references to one or more sources that can provide the identification data and the confirmation.
  - 97. The system as claimed in claim 95, wherein the digital certificate includes the identification data itself and the assertion of the identification data by the voter is sufficient.
  - 98. The system as claimed in claim 95, wherein both the identification data and the indication of the identification data and references are included in the digital certificate.
  - 99. The system as claimed in claim 95, wherein the identification data includes one or more of:
    - name, address, date of birth, nationality;
      
      length of residence, non-membership of prohibited classes of the voter.
  - 100. The system as claimed in claim 95, wherein the voting message includes a nonce in the form of an identifier applied by the voter to identify his vote.
  - 101. The system as claimed in claim 95, wherein the voting message includes a random spoiler.
  - 102. The system as claimed in claim 95, wherein the digital certificate is encrypted using the public key of a public/private confidentiality key pair of the authentication body.
  - 103. The system as claimed in claim 95, wherein the voting message is encrypted using the public key of a public/private confidentiality key pair of the counting body.
  - 104. The system as claimed in claim 95, wherein an integrity block is formed by obtaining a digest of the encrypted digital certificate, obtaining a digest of the encrypted voting message and combining the digests.
  - 105. The system as claimed in claim 104, wherein the digests are combined, a further digest obtained from the combination and the resultant digest is encrypted.
  - 106. The system as claimed in claim 105, wherein the digest is encrypted using a private key of a public/private key pair that the voter is using for voting to provide the signature block.
  - 107. The system as claimed in claim 95, wherein the voting key is the public key of the public/private signature key pair that the voter is using for voting.
  - 108. The system as claimed in claim 95, wherein the digital certificate and the encrypted voting message are confirmed as the voter sent them and are linked by the signature block.
  - 109. The system as claimed in claim 108, wherein the digital certificate is decrypted and the voting key is obtained and used to decrypt the signature block, the encrypted digital certificate and the encrypted voting message are also combined using the same method as the voter and the result compared with the decrypted signature block.
  - 110. The system as claimed in claim 95, wherein a serial number for the voter is issued by the authentication body.
  - 111. The system as claimed in claim 110, wherein a message is constructed by the authentication body including:
    - the voter'"'"'s serial number, a digest of the digital certificate, the voting key, the message being encrypted by the authentication body.
  - 112. The system as claimed in claim 111, wherein the message, the encrypted voting message and the signature block are sent by the authentication body to the counting body.
  - 113. The system as claimed in claim 112, wherein the message is decrypted by the counting body and the digest of the encrypted digital certificate and the voting key from the message are used to confirm that the voting message is an unchanged original vote which has been assigned a serial number by the authentication body.
  - 114. The system as claimed in claim 113, wherein the voter'"'"'s vote is decrypted and recorded by the counting body.

115. A computer program product stored on a computer readable storage medium comprising computer readable program code means for performing the steps of:
- generating a digital certificate, the digital certificate includes an indication of identification data which is to be supplied to the authentication body to identify a voter uniquely and references to one or more sources for the identification data and/or the digital certificate includes the identification data itself, the digital certificate also includes an indication of a voting key;
  
  signing the digital certificate with an electronic signature by the voter;
  
  encrypting the digital certificate for reading by the authentication body only;
  
  generating a voting message including a vote;
  
  encrypting the voting message for reading by the counting body only;
  
  generating a signature block combining the digital certificate and the voting message;
  
  sending the encrypted digital certificate, the encrypted voting message and the signature block to the authentication body.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Kyndryl Incorporated
Original Assignee
International Business Machines Corporation
Inventors
Dare, Peter Roy, Owlett, John, Tyabji, Imran Faiz

Granted Patent

US 7,769,690 B2
Time in Patent Office

Days
Field of Search
US Class Current

705/50
CPC Class Codes

G06F 21/6245   Protecting personal data, e...

G06Q 20/3829   involving key management

G06Q 50/265   Personal security, identity...

H04L 2209/463   Electronic voting

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/608   Watermarking

H04L 63/0428   wherein the data content is...

H04L 63/045   wherein the sending and rec...

H04L 63/0823   using certificates cryptogr...

H04L 9/3247   involving digital signatures

H04L 9/3268   using certificate validatio...

Method and system for the supply of data, transactions and electronic voting

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

104 Citations

115 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for the supply of data, transactions and electronic voting

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

104 Citations

115 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links