Method for a repository to provide access to a document, and a repository arranged in accordance with the same method

US 20060010323A1
Filed: 07/07/2004
Published: 01/12/2006
Est. Priority Date: 07/07/2004
Status: Abandoned Application

First Claim

Patent Images

1. In a system comprising a repository, an owner and a reader, the owner having an owner public key and a corresponding owner secret key, the reader having a reader public key and a corresponding reader secret key, the repository having a document encoded with the owner public key, the repository, owner and reader being coupled by a communication means, a method for the repository to provide access to the document to a requester, the requester being the owner or the reader, the method comprising:

(a) by the requester, sending a request for the document to the repository, the request including the requester'"'"'s public key; and

(b) by the repository, determining when the requester is the owner and when the requester is the reader.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method is provided by which private data are stored in a repository so that the information is inaccessible even to the owner of the repository. The repository facilitates providing access to the information to arbitrary users. The data are protected by being stored in encrypted form, the encryption taking place on the user'"'"'s system using public key encryption. The data is shared in one of two ways: 1) on each request, by the owner'"'"'s system decrypting the document and re-encrypting it using the requester'"'"'s public key; or 2) over a period of time, by sharing a group private key with the requester by encrypting the group private key using the requester'"'"'s public key. The repository facilitates both methods so that no direct communication between the owner'"'"'s system and the users'"'"' systems is required.

67 Citations

View as Search Results

42 Claims

1. In a system comprising a repository, an owner and a reader, the owner having an owner public key and a corresponding owner secret key, the reader having a reader public key and a corresponding reader secret key, the repository having a document encoded with the owner public key, the repository, owner and reader being coupled by a communication means, a method for the repository to provide access to the document to a requester, the requester being the owner or the reader, the method comprising:
- (a) by the requester, sending a request for the document to the repository, the request including the requester'"'"'s public key; and
  
  (b) by the repository, determining when the requester is the owner and when the requester is the reader.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, the repository determining that the requester is the owner when the request includes the owner public key.
  - 3. The method of claim 2 including, by the repository, when it is determined that the requester is the owner, sending the document encoded with the owner public key to the owner, thus providing the owner with access to the document.
  - 4. The method of claim 1, the repository determining that the requester is the reader when the request includes the reader public key.
  - 5. The method of claim 4 including, by the repository, when it is determined that the requester is the reader, sending the reader public key and the document encoded with the owner public key to the owner.
  - 6. The method of claim 5 including, by the owner, determining when to allow the reader to access the document.
  - 7. The method of claim 6 including, by the owner, when it is determined to allow the reader to access the document, forming the document encoded with the reader public key and sending the document encoded with the reader public key to the repository.
  - 8. The method of claim 7 including, by the repository, sending the document encoded with the reader public key to the reader, thus providing the reader with access to the document.
  - 9. The method of claim 6 including, by the owner, when it is determined to not allow the reader to access the document, forming an access denial message and sending the access denial message to the repository.
  - 10. The method of claim 9 including, by the repository, sending the access denial message to the reader, thus denying the reader access to the document.

11. In a system comprising a repository, an owner and a reader, the owner having an owner public key and a corresponding owner secret key, the reader having a reader public key and a corresponding reader secret key, the repository comprising a document encoded with the owner public key, the repository comprising a list, the list including one or more reader public keys corresponding to readers who are allowed access to the document, the repository further comprising a copy of the document encoded with each reader public key comprised in the list, the repository, owner and reader being coupled by a communication means, a method for the repository to provide access to the document to a requester, the requester being the owner or the reader, the method comprising:
- (a) by the requester, sending a request for the document to the repository, the request including the requester'"'"'s public key; and
  
  (b) by the repository, determining when the requester is the owner and when the requester is the reader.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 12. The method of claim 11, the repository determining that the requester is the owner when the request includes the owner public key.
  - 13. The method of claim 12 including, by the repository, when it is determined that the requester is the owner, sending the document encoded with the owner public key to the owner, thus providing the owner with access to the document.
  - 14. The method of claim 11, the repository determining that the requester is the reader when the request includes the reader public key.
  - 15. The method of claim 14 including, by the repository, determining when the reader public key is comprised in the list.
  - 16. The method of claim 15 including, by the repository, when it is determined that the reader public key is comprised in the list and, accordingly, that the repository includes a copy of the document encoded with the reader public key, sending the copy of the document encoded with the reader public key to the reader, thus providing the reader with access to the document.
  - 17. The method of claim 15 including, by the repository, when it is determined that the reader public key is not comprised in the list, sending the reader public key and the document encoded with the owner public key to the owner.
  - 18. The method of claim 17 including, by the owner, determining when to allow the reader to access the document.
  - 19. The method of claim 18 including, by the owner, when it is determined to allow the reader to access the document, forming the document encoded with the reader public key and sending the document encoded with the reader public key to the repository.
  - 20. The method of claim 19 including, by the repository, adding the reader public key to the list and storing the document encoded with the reader public key.
  - 21. The method of claim 20 including, by the repository, sending the document encoded with the reader public key to the reader, thus providing the reader with access to the document.
  - 22. The method of claim 18 including, by the owner, when it is determined to not allow the reader to access the document, forming an access denial message and sending the access denial message to the repository.
  - 23. The method of claim 22 including, by the repository, sending the access denial message to the reader, thus denying the reader access to the document.

24. In a system comprising a repository, an owner and a reader, the owner having an owner public key and a corresponding owner secret key, the reader having a reader public key and a corresponding reader secret key, the repository comprising a document encoded with the owner public key, the repository comprising a list, the list including one or more reader public keys corresponding to readers who are allowed access to the document, the list further including a copy of the owner secret key encoded with each reader public key comprised in the list, the repository, owner and reader being coupled by a communication means, a method for the repository to provide access to the document to a requester, the requester being the owner or the reader, the method comprising:
- (a) by the requester, sending a request for the document to the repository, the request including the requester'"'"'s public key; and
  
  (b) by the repository, determining when the requester is the owner and when the requester is the reader.
- View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
- - 25. The method of claim 24, the repository determining that the requester is the owner when the request includes the owner public key.
  - 26. The method of claim 25 including, by the repository, when it is determined that the requester is the owner, sending the document encoded with the owner public key to the owner, thus providing the owner with access to the document.
  - 27. The method of claim 24, the repository determining that the requester is the reader when the request includes the reader public key.
  - 28. The method of claim 27 including, by the repository, determining when the reader public key is comprised in the list.
  - 29. The method of claim 28 including, by the repository, when it is determined that the reader public key is comprised in the list and, accordingly, that the list includes a copy of the owner secret key encoded with the reader public key, sending the owner secret key encoded with the reader public key and the document encoded with the owner public key to the reader, thus providing the reader with access to the document.
  - 30. The method of claim 28 including, by the repository, when it is determined that the reader public key is not comprised in the list, sending the reader public key and the document encoded with the owner public key to the owner.
  - 31. The method of claim 30 including, by the owner, determining when to allow the reader to access the document.
  - 32. The method of claim 31 including, by the owner, when it is determined to allow the reader to access the document, forming the owner secret key encoded with the reader public key and sending the owner secret key encoded with the reader public key to the repository.
  - 33. The method of claim 32 including, by the repository, adding the reader public key and the owner secret key encoded with the reader public key to the list.
  - 34. The method of claim 33 including, by the repository, sending the owner secret key encoded with the reader public key and the document encoded with the owner public key to the reader, thus providing the reader with access to the document.
  - 35. The method of claim 31 including, by the owner, when it is determined to not allow the reader to access the document, forming an access denial message and sending the access denial message to the repository.
  - 36. The method of claim 35 including, by the repository, sending the access denial message to the reader, thus denying the reader access to the document.

37. A repository arranged to couple to an owner and a reader by means of a communication means, the owner having an owner public key and a corresponding owner secret key, the reader having a reader public key and a corresponding reader secret key, the repository having a document encoded with the owner public key, the repository arranged to provide access to the document to a requester in accordance with a method, the requester being the owner or the reader, the method comprising:
- (a) receiving, from the requester, a request for the document, the request including the requester'"'"'s public key;
  
  (b) when the request includes the owner public key, determining that the requester is the owner and sending the document encoded with the owner public key to the owner, thus providing the owner with access to the document;
  
  (c) when the request includes the reader public key, determining that the requester is the reader and sending the reader public key and the document encoded with the owner public key to the owner; and
  
  (d) in response to the owner determining to allow the reader to access the document, receiving, from the owner, the document encoded with the reader public key and sending the document encoded with the reader public key to the reader, thus providing the reader with access to the document.
- View Dependent Claims (38)
- - 38. The repository of claim 37, the method including, in response to the owner determining to not allow the reader to access the document, receiving, from the owner, an access denial message and sending the access denial message to the reader, thus denying the reader access to the document.

39. A repository arranged to couple to an owner and a reader by means of a communication means, the owner having an owner public key and a corresponding owner secret key, the reader having a reader public key and a corresponding reader secret key, the repository comprising a document encoded with the owner public key, the repository comprising a list, the list including one or more reader public keys corresponding to readers who are allowed access to the document, the repository further comprising a copy of the document encoded with each reader public key comprised in the list, the repository arranged to provide access to the document to a requester in accordance with a method, the requester being the owner or the reader, the method comprising:
- (a) receiving, from the requester, a request for the document, the request including the requester'"'"'s public key;
  
  (b) when the request includes the owner public key, determining that the requester is the owner and sending the document encoded with the owner public key to the owner, thus providing the owner with access to the document;
  
  (c) when the request includes the reader public key, determining that the requester is the reader and determining when the reader public key is comprised in the list;
  
  (d) when the reader public key is comprised in the list and, accordingly, the repository includes a copy of the document encoded with the reader public key, sending the copy of the document encoded with the reader public key to the reader, thus providing the reader with access to the document;
  
  (e) when the reader public key is not comprised in the list, sending the reader public key and the document encoded with the owner public key to the owner; and
  
  (f) in response to the owner determining to allow the reader to access the document, receiving, from the owner, the document encoded with the reader public key;
  
  adding the reader public key to the list and storing the document encoded with the reader public key; and
  
  sending the document encoded with the reader public key to the reader, thus providing the reader with access to the document.
- View Dependent Claims (40)
- - 40. The repository of claim 39, the method including, in response to the owner determining to not allow the reader to access the document, receiving, from the owner, an access denial message and sending the access denial message to the reader, thus denying the reader access to the document.

41. A repository arranged to couple to an owner and a reader by means of a communication means, the owner having an owner public key and a corresponding owner secret key, the reader having a reader public key and a corresponding reader secret key, the repository comprising a document encoded with the owner public key, the repository comprising a list, the list including one or more reader public keys corresponding to readers who are allowed access to the document, the list further including a copy of the owner secret key encoded with each reader public key comprised in the list, the repository, the repository arranged to provide access to the document to a requester in accordance with a method, the requester being the owner or the reader, the method comprising:
- (a) receiving, from the requester, a request-for the document, the request including the requester'"'"'s public key;
  
  (b) when the request includes the owner public key, determining that the requester is the owner and sending the document encoded with the owner public key to the owner, thus providing the owner with access to the document;
  
  (c) when the request includes the reader public key, determining that the requester is the reader and determining when the reader public key is comprised in the list;
  
  (d) when the reader public key is comprised in the list and, accordingly, the list includes a copy of the owner secret key encoded with the reader public key, sending the owner secret key encoded with the reader public key and the document encoded with the owner public key to the reader, thus providing the reader with access to the document;
  
  (e) when the reader public key is not comprised in the list, sending the reader public key and the document encoded with the owner public key to the owner; and
  
  (f) in response to the owner determining to allow the reader to access the document, receiving, from the owner, the owner secret key encoded with the reader public key;
  
  adding the reader public key and the owner secret key encoded with the reader public key to the list; and
  
  sending the owner secret key encoded with the reader public key and the document encoded with the owner public key to the reader, thus providing the reader with access to the document.
- View Dependent Claims (42)
- - 42. The repository of claim 41, the method including, in response to the owner determining to not allow the reader to access the document, receiving, from the owner, an access denial message and sending the access denial message to the reader, thus denying the reader access to the document.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Xerox Corporation (Xerox Holdings Corp.)
Original Assignee
Xerox Corporation (Xerox Holdings Corp.)
Inventors
Martin, Nathaniel G., Koomen, Johannes A.

Application Number

US10/887,270
Publication Number

US 20060010323A1
Time in Patent Office

Days
Field of Search
US Class Current

713/171
CPC Class Codes

H04L 63/04   for providing a confidentia...

H04L 63/101   Access control lists [ACL]

H04L 9/30   Public key, i.e. encryption...

Method for a repository to provide access to a document, and a repository arranged in accordance with the same method

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

67 Citations

42 Claims

Specification

Solutions

Use Cases

Quick Links

Method for a repository to provide access to a document, and a repository arranged in accordance with the same method

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

67 Citations

42 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links