SYSTEM FOR MESSAGE ENCRYPTION AND SIGNING IN A TRANSACTION PROCESSING SYSTEM
First Claim
Patent Images
1. A system for the transfer of messages in a transaction processing system, comprising:
- a transaction server which encrypts messages and also attaches to each message a message-based digital signature that includes a tamper-resistant time stamp; and
a security policy that is used by the transaction server to automatically reject a message if the message'"'"'s public key properties do not conform to the security policy, the security policy further identifying;
that at least one valid public key digital signature is attached to the message,that the message is encrypted for confidentiality, andlimits on the acceptable range of timestamps associated with a digital signature.
0 Assignments
0 Petitions
Accused Products
Abstract
The invention herein provides a system for message encryption and signing within a transaction processing system. As disclosed herein the invention applies the operation of public key technology to transactional server security. Embodiments of the invention utilize a combination of message-based encryption and message-based digital signing, to ensure the security and authenticity of a message or message buffer sent from one party or process to another. Intermediate recipients may also inspect the message. The system described ensures the reliable authentication, confidentiality, integrity, and non-repudiation, of communicated messages.
129 Citations
21 Claims
-
1. A system for the transfer of messages in a transaction processing system, comprising:
-
a transaction server which encrypts messages and also attaches to each message a message-based digital signature that includes a tamper-resistant time stamp; and a security policy that is used by the transaction server to automatically reject a message if the message'"'"'s public key properties do not conform to the security policy, the security policy further identifying; that at least one valid public key digital signature is attached to the message, that the message is encrypted for confidentiality, and limits on the acceptable range of timestamps associated with a digital signature. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
Specification