SECURE, AUDITABLE FILE EXCHANGE SYSTEM AND METHOD

US 20120047365A1
Filed: 08/15/2011
Published: 02/23/2012
Est. Priority Date: 08/18/2010
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for providing a secure file-exchange service, the method comprising:

obtaining, by a file-exchange server from a remote client device associated with a new member, new-member information including identity information and a professional credential associated with said new member;

verifying, by said file-exchange server according to said identity information, that said new member has a personal identity as indicated by said identity information, and that said new member has a professional designation as indicated by said professional credential;

when said new member'"'"'s personal identity and professional designation have been verified, designating said new member as a verified-professional member and obtaining, by said file-exchange server, a member public key of a public/private key pair for said verified-professional member;

generating, by said file-exchange server, a member widget indicating said verified-professional member'"'"'s status as a verified professional and being configured to accept files submitted for secure transfer to said verified-professional member;

providing, by said file-exchange server, said member widget for publication by said new member;

receiving an indication, by said file-exchange server via said published member widget, to provide a file from a remote sender device to said verified-professional member;

obtaining, by said file-exchange server from said remote sender device via said published member widget, metadata associated with said file;

obtaining, by said file-exchange server, a reference cryptographic integrity code derived from said file;

obtaining, by said file-exchange server from said remote sender device via said published member widget, an encrypted copy of said file, said encrypted copy being encrypted with said member public key; and

storing said metadata, said reference cryptographic integrity code, and said encrypted copy in a non-transient data store for subsequent secure, auditable transfer to said verified-professional member.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Secure and auditable file exchange between a professional and a client, patient, colleague, or other associate of the professional may be achieved via a file exchange service that automatically verifies the professional'"'"'s professional status and identity and provides applications and/or tools to accept files for transfer to the verified professional. The files are stored in encrypted form, along with cryptographic integrity codes. After the files have been transferred to the professional, the cryptographic integrity codes may be used to verify that the professional received a correct copy of the file that was originally provided.

Citations

19 Claims

1. A computer-implemented method for providing a secure file-exchange service, the method comprising:
- obtaining, by a file-exchange server from a remote client device associated with a new member, new-member information including identity information and a professional credential associated with said new member;
  
  verifying, by said file-exchange server according to said identity information, that said new member has a personal identity as indicated by said identity information, and that said new member has a professional designation as indicated by said professional credential;
  
  when said new member'"'"'s personal identity and professional designation have been verified, designating said new member as a verified-professional member and obtaining, by said file-exchange server, a member public key of a public/private key pair for said verified-professional member;
  
  generating, by said file-exchange server, a member widget indicating said verified-professional member'"'"'s status as a verified professional and being configured to accept files submitted for secure transfer to said verified-professional member;
  
  providing, by said file-exchange server, said member widget for publication by said new member;
  
  receiving an indication, by said file-exchange server via said published member widget, to provide a file from a remote sender device to said verified-professional member;
  
  obtaining, by said file-exchange server from said remote sender device via said published member widget, metadata associated with said file;
  
  obtaining, by said file-exchange server, a reference cryptographic integrity code derived from said file;
  
  obtaining, by said file-exchange server from said remote sender device via said published member widget, an encrypted copy of said file, said encrypted copy being encrypted with said member public key; and
  
  storing said metadata, said reference cryptographic integrity code, and said encrypted copy in a non-transient data store for subsequent secure, auditable transfer to said verified-professional member.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
- - 2. The method of claim 1, further comprising, prior to generating said member widget, providing a client-side secure file-transfer application to a remote client device associated with said new member.
  - 3. The method of claim 2, wherein said new-member information is obtained via said client-side secure file-transfer application.
  - 4. The method of claim 1, wherein generating said member widget comprises customizing a widget template according to said new-member information.
  - 5. The method of claim 1, further comprising, prior to generating said member widget, providing a client-side secure file-transfer application to a remote client device associated with said new member, said client-side secure file-transfer application being provided in a restricted non-member mode.
  - 6. The method of claim 5, wherein designating said new member as said verified-professional member comprises updating said client-side secure file-transfer application to a member mode.
  - 7. The method of claim 1, further comprising:
    - providing a client-side secure file-transfer application to said remote sender device, said client-side secure file-transfer application being provided in a restricted mode; and
      
      receiving, from said remote sender device via said client-side secure file-transfer application, non-member credentials associated with a non-member with whom said remote sender device is associated.
  - 8. The method of claim 7, further comprising:
    - receiving, from said remote client device associated with said verified-professional member, a request to sponsor said non-member as having a professional relationship with said verified-professional member; and
      
      in response to receiving said request;
      
      providing said non-member credentials to said remote client device; and
      
      updating said client-side secure file-transfer application to a sponsored mode.
  - 9. The method of claim 8, wherein updating said client-side secure file-transfer application to said sponsored mode enables said verified-professional member to securely and auditably transfer files to said non-member via said updated client-side secure file-transfer application.
  - 10. The method of claim 1, wherein providing said member widget comprises sending program code corresponding to said member widget to said verified-professional member.
  - 11. The method of claim 1, wherein providing said member widget comprises sending a resource identifier corresponding to said member widget to said verified-professional member.
  - 12. The method of claim 1, further comprising:
    - receiving, from a remote client device associated with said verified-professional member, a pending-files query; and
      
      in response to receiving said query, retrieving said metadata associated with said file from said data store and providing said metadata for retrieval by said remote client device.
  - 13. The method of claim 12, further comprising, in response to providing said metadata:
    - receiving, from said remote client device associated with said verified-professional member, a request for said file; and
      
      in response to said request;
      
      retrieving said encrypted copy from said data store, andsending said encrypted copy to said remote client device for decryption, according to said private key, into an unconfirmed unencrypted file.
  - 14. The method of claim 13, further comprising:
    - receiving, from said remote client device, an unconfirmed cryptographic integrity code derived from said unconfirmed unencrypted file;
      
      determining whether said unconfirmed cryptographic integrity code matches said reference cryptographic integrity code; and
      
      when said unconfirmed cryptographic integrity code is determined to match said reference cryptographic integrity code;
      
      confirming to said remote client device that said unconfirmed unencrypted file is a correct copy of said file; and
      
      storing in said data store an indication that said remote client device received said correct copy of said file.
  - 15. The method of claim 14, further comprising permanently deleting said encrypted copy from said data store when said unconfirmed cryptographic integrity code is determined to match said reference cryptographic integrity code.
  - 16. The method of claim 14, wherein said indication includes file transfer details comprising:
    - said unconfirmed cryptographic integrity code received from said remote client device; and
      
      a timestamp denoting a delivery date and/or delivery time at which said unconfirmed cryptographic integrity code was determined to match said reference cryptographic integrity code.
  - 17. The method of claim 16, further comprising:
    - receiving, from said remote sender device, a confirmation request to confirm correct receipt of said file by said remote client device; and
      
      in response to receiving said confirmation request;
      
      retrieving from said data store said indication that said remote client device received said correct copy of said file; and
      
      providing said file transfer details to said remote sender device to confirm that said remote client device received said correct copy of said file as of said delivery date and/or delivery time.
  - 18. A non-transient computer-readable medium having stored thereon instructions that, when executed by a processor, configure the processor to perform the method of claim 1.
  - 19. A computing apparatus comprising a processor and a storage medium storing instructions that, when executed by the processor, configure the apparatus to perform the method of claim 1.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Lcc File Drop Vault
Original Assignee
FILE Drop Vault LLC
Inventors
Mercer, Thomas

Granted Patent

US 8,543,816 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/168
CPC Class Codes

G06F 21/606   by securing the transmissio...

H04L 63/0428   wherein the data content is...

H04L 63/062   for key distribution, e.g. ...

H04L 63/123   received data contents, e.g...

SECURE, AUDITABLE FILE EXCHANGE SYSTEM AND METHOD

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

SECURE, AUDITABLE FILE EXCHANGE SYSTEM AND METHOD

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links