Server-side digital signature system

US 20050114670A1
Filed: 12/31/2004
Published: 05/26/2005
Est. Priority Date: 04/23/2001
Status: Abandoned Application

First Claim

Patent Images

1-33. -33. (canceled)

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A digital signature system is provided on a server for use by remote clients, such as by using a browser. The server generates and maintains all of the users'"'"' keys used for producing a digital signature. A user sends a data object to the server, and the server generates a digital signature for the data object using the private key stored at the server. The server then sends the digital signature to the client. A client can, at a later time, send the signature back to the server for verification.

46 Citations

91 Claims

1-33. -33. (canceled)

34. A method of transmitting transaction objects between a client and a server capable of communicating with the client via a communications channel, the method comprising the steps of:
- receiving at the client, from the server, an HTML object having a header record and an HTML form tag distinct from the header record, the HTML form tag having an out format field representative of an outgoing transmission cryptographic protocol, receiving, at the client, input form data corresponding to the HTML form tag, generating secure form data by applying the specified outgoing transmission security cryptographic protocol of the HTML form tag to the input form data, and transmitting to the server a return message including the secure form data.

35. A computer implemented method of providing a digital signature system on a server for use by a remote client, the method comprising:
- generating on the server a private key for a user on the client;
  
  storing on the server the private key for the user;
  
  generating a digital signature using the stored private key for a data object provided by the user; and
  
  sending the digital signature to the client.
- View Dependent Claims (36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55)
- - 36. The method of claim 35 wherein the digital signature is contained within a signed object.
  - 37. The method of claim 36 wherein generating the digital signature step further comprises:
    - performing a pre-defined hash function on the data object to create a hash value; and
      
      performing a pre-defined encryption function using the private key on the hash value.
  - 38. The method of claim 37 wherein the signed object comprises the digital signature and an address of the data object.
  - 39. The method of claim 37 wherein the signed object comprises the digital signature and the data object.
  - 40. The method of claim 37 wherein the signed object comprises the digital signature contained within the data object.
  - 41. The method of claim 36 wherein the signed object comprises a hash of the data object contained within the digital signature.
  - 42. The method of claim 37, further including, on the server:
    - verifying the digital signature upon request by the client.
  - 43. The method of claim 42 wherein verifying the digital signature further comprises:
    - receiving the signed object from the client;
      
      obtaining the data object using information contained within the signed object;
      
      obtaining the digital signature using information contained within the signed object;
      
      obtaining the private key stored on the server using information contained within the signed object;
      
      generating a comparison value using the data object;
      
      verifying the digital signature if the comparison value and at least a portion of the digital signature meet a predetermined criteria.
  - 44. The method of claim 43 wherein the signed object comprises the digital signature and an address of the data object.
  - 45. The method of claim 43 wherein the signed object comprises the digital signature and the data object.
  - 46. The method of claim 43 wherein the signed object comprises the digital signature contained within the data object.
  - 47. The method of claim 43 wherein the signed object comprises a hash of the data object contained within the digital signature.
  - 48. The method of claim 35 further comprising, authenticating a user, by the server, before providing access to the system.
  - 49. The method of claim 48 wherein authenticating a user further comprises receiving a user ID and a password from the client.
  - 50. The method of claim 49 further comprising assigning, by the server, a private key to the client based upon the user ID.
  - 51. The method of claim 35 further comprising assigning, by the server, a private key to the client based upon a system policy and data obtained from the client.
  - 52. The method of claim 50 wherein the digital signature further comprises:
    - a encrypted field; and
      
      a timestamp, wherein the server generates the encrypted field by hashing the data object according to a predefined hash function to create a hash, and encrypting the hash using the private key assigned to the user.
  - 53. The method of claim 52 wherein the digital signature further comprises a server key.
  - 54. The method of claim 43 further including generating a verification response at the server and transmitting the verification response to the client.
  - 55. The method of claim 54 further including generating a verification signature for the verification response at the server and transmitting the verification signature to the client.

56-82. -82. (canceled)

83. A digital signature system for use by a remote client, the system comprising:
- a server computer;
  
  processing means on the server for generating a private key for a user on the client;
  
  storing means on the server for storing the private key for the user;
  
  processing means for generating a digital signature using the stored private key for a data object provided by the user; and
  
  transmitting means for sending the digital signature from the server to the client.
- View Dependent Claims (84, 85, 86, 87, 88, 89, 90)
- - 84. The digital signature system of claim 83 wherein the digital signature is contained within a signed object.
  - 85. The digital signature system of claim 84 wherein the processing means for generating the digital signature further comprise:
    - means for performing a pre-defined hash function on the data object to create a hash value; and
      
      means for performing a pre-defined encryption function using the private key on the hash value.
  - 86. The digital signature system of claim 85 wherein the signed object comprises the digital signature and an address of the data object.
  - 87. The digital signature system of claim 85 wherein the signed object comprises the digital signature and the data object.
  - 88. The digital signature system of claim 85 wherein the signed object comprises the digital signature contained within the data object.
  - 89. The digital signature system of claim 85 wherein the signed object comprises a hash of the data object contained within the digital signature.
  - 90. The digital signature system of claim 85, further comprising:
    - verifying the digital signature upon request by the client.

91-103. -103. (canceled)

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Daniel Lanz, Frederick J. Hirsch, John J. Bowe, Peter Lieberwirth, Richard Salz
Original Assignee
Daniel Lanz, Frederick J. Hirsch, John J. Bowe, Peter Lieberwirth, Richard Salz
Inventors
Lanz, Daniel, Salz, Richard, Hirsch, Frederick J., Bowe, John J., Lieberwirth, Peter

Application Number

US11/026,666
Publication Number

US 20050114670A1
Time in Patent Office

Days
Field of Search
US Class Current

713/180
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/68   Special signature format, e...

H04L 9/3236   using cryptographic hash fu...

H04L 9/3247   involving digital signatures

Server-side digital signature system

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

46 Citations

91 Claims

Specification

Solutions

Use Cases

Quick Links

Server-side digital signature system

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

46 Citations

91 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links