SYSTEM AND METHOD TO VALIDATE AND AUTHENTICATE DIGITAL DATA

US 20110231645A1
Filed: 11/06/2007
Published: 09/22/2011
Est. Priority Date: 11/07/2006
Status: Abandoned Application

First Claim

Patent Images

1. A method for generating an authentication record for digital content and authenticating digital content, the method comprising:

a user selecting a digital content item;

creating a seal record associated with the digital content item;

providing a first hash value for the digital content item;

incorporating the first hash value into the seal record;

acquiring secondary information related to at least one of the digital content item and the user; and

importing secondary information into the seal record.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method combining registration with a trusted third party, certificate generation, hashing, encryption, customizable file identification fields, and time-stamping technology with recognized “best practice” procedures to achieve the legal admissibility and evidential weight of any form of digital file or collection of digital files. Generally, the originator of the file (the first party) and the originator'"'"'s employing organization are registered with a Trusted Third Party. The originator reduces the file, by means of a hashing algorithm, to a fixed bit length binary pattern. This provides a unique digital fingerprint of the file. The resultant hash value, the originator'"'"'s identity details, the employing organization details associated and securely linked to the digital certificate, the title of the file, customizable file identification fields, and other relevant data are forwarded to a Trusted Third Party where the date and time from a known and trusted time source are added. The customizable file identification fields can provide the originator with a mechanism for configuring the seal to incorporate as much additional information as deemed necessary to prove the authenticity of the digital content and/or provide data for the purposes of adding value in functions such as source identification, sorting, analysis, investigation, and compliance. Such information could include, but would not be limited to, location/GPS coordinates, machine id, biometric information, smart-card data, reason for sealing. The original file does not leave the control of the originating party. When combined, the forwarded details and date and time create a Seal Record. The Seal Record is encrypted and hashed. The Seal Record along with all other relevant information are retained on a central secure server. The recipient of the file (the second party) can confirm the file has been received in an unaltered state with integrity retained and it is the authentic version by validating the file.

95 Citations

View as Search Results

22 Claims

1. A method for generating an authentication record for digital content and authenticating digital content, the method comprising:
- a user selecting a digital content item;
  
  creating a seal record associated with the digital content item;
  
  providing a first hash value for the digital content item;
  
  incorporating the first hash value into the seal record;
  
  acquiring secondary information related to at least one of the digital content item and the user; and
  
  importing secondary information into the seal record.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 22)
- - 2. The method of claim 1, further comprising:
    - transmitting the seal record to a third party;
      
      time-stamping the seal record and including the time-stamp in the seal record;
      
      encrypting the seal record to create an encrypted seal record; and
      
      determining a second hash value for the encrypted seal record.
  - 3. The method of claim 1, the secondary information comprising at least one of local machine time, machine parameters and properties, information relating to the user requesting the digital content item be sealed, information relating to the user'"'"'s organization, title of the digital content item, metadata of the digital content item, information relating to the reason for sealing the digital content item, geographic location information, smart-card data, internet protocol address data, and biometric information.
  - 4. The method of claim 1, further comprising the user selecting the secondary information that is acquired and imported into the seal record.
  - 5. The method of claim 2, further comprising storing the seal record and the first hash value on a third party database.
  - 6. The method of claim 1, further comprising incorporating at least one of a digital signature, filename of the digital content, and a unique certificate associated with the user into the seal record.
  - 7. The method of claim 2, further comprising receiving from the third party the encrypted seal record, the second hash value and server address of the third party.
  - 8. The method of claim 2, further comprising:
    - receiving from the third party the encrypted seal record, the second hash value, and a server address of the third party;
      
      encrypting the server address;
      
      associating the digital content item, encrypted seal record, second hash value, and encrypted server address in a transmission file; and
      
      transmitting the transmission file to a recipient.
  - 9. The method of claim 8, further comprising:
    - the recipient determining a third hash value for the encrypted seal record; and
      
      comparing the second hash value to the third hash value.
  - 10. The method of claim 9, further comprising calculating a fourth hash value for the digital content item if the second and third hash values are determined to be the same.
  - 11. The method of claim 10, further comprising:
    - decrypting the encrypted server address; and
      
      transmitting to the encrypted seal record and the fourth hash value to the third party.
  - 12. The method of claim 11, further comprising:
    - the third party decrypting the encrypted seal record received from the recipient;
      
      recovering the seal record stored on the third party database;
      
      comparing the fourth hash value to the first hash value; and
      
      analyzing the content of the encrypted seal record received from the recipient and the seal record stored on the third party database.
  - 13. The method of claim 11, further comprising transmitting the information contained in the seal record to the recipient dependent upon the comparison of the first and fourth hash values and analysis of the encrypted seal record received from the recipient and the encrypted seal record stored on the third party database.
  - 14. The method of claim 8, further comprising the recipient creating a second seal record containing the seal record received from the user and secondary information related to the recipient.
  - 15. The method of claim 1, further comprising:
    - selecting multiple digital content items;
      
      providing a separate seal record for each selected digital content item, andproviding an additional seal record containing information related to a directory associated with the digital content items.
  - 22. A computer readable medium having computer readable instructions stored thereon for execution by a processor to perform the method of claim 1.

16. A system for generating an authentication record for digital content and authenticating digital content, the system comprising:
- a user interface; and
  
  a sealing module, further comprising;
  
  a seal record generator for creating a seal record associated with a digital content item selected by a user;
  
  a data collection module for acquiring secondary information related to at least one of the digital content item and the user;
  
  a hash engine for providing a first hash value for a digital content item.
- View Dependent Claims (17, 18, 19, 20, 21)
- - 17. The system of claim 16, further comprising:
    - time-stamp engine for time-stamping the seal record and including the time-stamp in the seal record;
      
      an encryption engine for encrypting the seal record to create an encrypted seal record; and
      
      a hash engine for determining a second hash value for the encrypted seal record.
  - 18. The system of claim 16, further comprising an authentication module comprising a hash engine for determining a third hash value for the encrypted seal record a fourth hash value for the digital content item and an encryption engine for decrypting an encrypted server address.
  - 19. The system of claim 17, further comprising a validation engine for comparing a first hash value and a fourth hash value of the digital content item and a second hash value and a third hash value of the encrypted seal record.
  - 20. The system of claim 16, the secondary information comprising at least one of local machine time, machine parameters and properties, information relating to the user requesting the digital content item be sealed, information relating to the user'"'"'s organization, title of the digital content item, metadata of the digital content item, information relating to the reason for sealing the digital content item, geographic location information, smart-card data, internet protocol address data, and biometric information.
  - 21. The system of claim 16, further comprising a device for collecting secondary information related to attributes of the user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cybercube Limited
Original Assignee
Cybercube Limited
Inventors
Nightingale, Ray, Thomas, Alun, Geppert, Bradley, Pilfold, David

Application Number

US12/514,013
Publication Number

US 20110231645A1
Time in Patent Office

Days
Field of Search
US Class Current

713/150
CPC Class Codes

H04L 2209/60   Digital content management,...

H04L 9/321   involving a third party or ...

H04L 9/3231   Biological data, e.g. finge...

H04L 9/3236   using cryptographic hash fu...

H04L 9/3297   involving time stamps, e.g....

SYSTEM AND METHOD TO VALIDATE AND AUTHENTICATE DIGITAL DATA

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

95 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEM AND METHOD TO VALIDATE AND AUTHENTICATE DIGITAL DATA

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

95 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links