DOCUMENT VERIFICATION WITH DISTRIBUTED CALENDAR INFRASTRUCTURE
First Claim
1. A method for enabling authentication of digital records, comprising:
- receiving, at a core system on a core processing level, from each of at least one highest non-core processing system at a respective highest non-core processing level, a current highest-level combined output value that is formed as digital combinations of successively lower-level combined output values computed in lower non-core processing levels as node values of a tree data structure having lowest level inputs formed as digital transformations, computed in user-level systems, of digital input records;
computing a current calendar value as a digital combination of the current highest-level combined output values; and
returning to at least the highest non-core processing level from the core system the current calendar value, whereupon recomputation parameters are distributed downward to the user-level systems for association with respective ones of the digital input records such that an arbitrary subsequent test digital record is considered authenticated relative to the corresponding digital input record if, applying the corresponding digital transformation to the test digital record and, using the recomputation parameters to recomputed the node values upward through the tree data structure and core, the same current calendar value is attained as when it was originally computed with the corresponding digital input record forming the lowest level input.
3 Assignments
0 Petitions
Accused Products
Abstract
Transformations of digital records are used as lowest level inputs to a tree data structure having a root in a core system and having nodes computed as digital combinations of child node values. A combination of root values is published in a permanent medium. Signature vectors are associated with the digital records and have parameters that enable recomputation upward through the tree data structure to either a current root value or to the published value. Recomputation yields the same value only if a candidate digital record is an exact version of the original digital record included in the original computation of the value.
-
Citations
21 Claims
-
1. A method for enabling authentication of digital records, comprising:
-
receiving, at a core system on a core processing level, from each of at least one highest non-core processing system at a respective highest non-core processing level, a current highest-level combined output value that is formed as digital combinations of successively lower-level combined output values computed in lower non-core processing levels as node values of a tree data structure having lowest level inputs formed as digital transformations, computed in user-level systems, of digital input records; computing a current calendar value as a digital combination of the current highest-level combined output values; and returning to at least the highest non-core processing level from the core system the current calendar value, whereupon recomputation parameters are distributed downward to the user-level systems for association with respective ones of the digital input records such that an arbitrary subsequent test digital record is considered authenticated relative to the corresponding digital input record if, applying the corresponding digital transformation to the test digital record and, using the recomputation parameters to recomputed the node values upward through the tree data structure and core, the same current calendar value is attained as when it was originally computed with the corresponding digital input record forming the lowest level input. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for enabling authentication of digital records, comprising:
-
receiving, at a core system on a core processing level, from each of at least one highest non-core processing system at a respective highest non-core processing level, a current highest-level combined output value that is formed as digital combinations of successively lower-level combined output values computed in lower non-core processing levels as node values of a tree data structure having lowest level inputs formed as digital transformations, computed in user-level systems, of at least one digital input record; computing within the core system a current root calendar value as a digital combination of the current highest-level combined output values and a function of at least one previous root value; periodically computing and causing to be published in a substantially permanent form a published output value computed as a function of at least a subset of the highest-level combined output values; periodically computing and causing to be published in a substantially permanent form a composite calendar value computed as a function of at least the current calendar value; distributing downward to at least one non-core processing level recomputation parameters of the composite calendar value in addition to recomputation parameters of the current calendar value, whereupon an arbitrary subsequent test digital record is considered permanently authenticated relative to the corresponding digital input record if, applying the corresponding digital transformation to the test digital record and, using the recomputation parameters of the current calendar value and the composite calendar value to recomputed the node values upward through the tree data structure and core, the same composite calendar value is attained as when it was originally computed; computing the composite calendar value as a function of a plurality of current calendar values that have been computed over a publication period, including not only the current calendar value but also of at least one previous current calendar value; in which; the digital combinations are cryptographic hashes; the tree data structure is a hash tree data structure; the recomputation parameters include, for each digital input record, the sibling node values in a directed path in the tree data structure from the digital transformations of the digital input record up to the composite calendar value; and the recomputation parameters are keyless, such that, at latest upon publication of the composite calendar value, the recomputation parameters are independent of any trust authority parameters such as digital certificates or cryptographic keys.
-
-
13. A system for enabling authentication of digital records, comprising:
-
a core system at a core processing level configured to receive, from each of at least one highest non-core processing system at a respective highest non-core processing level, a current highest-level combined output value that is formed as digital combinations of successively lower-level combined output values computed in lower non-core processing levels as node values of a tree data structure having lowest level inputs formed as digital transformations, computed in user-level systems, of digital input records; said core system computing a current calendar value as a digital combination of the current highest-level combined output values and returning to at least the highest non-core processing level the current calendar value, such that recomputation parameters are distributed downward to the user-level systems for association with respective ones of the digital input records such that an arbitrary subsequent test digital record is considered authenticated relative to the corresponding digital input record if, applying the corresponding digital transformation to the test digital record and, using the recomputation parameters to recomputed the node values upward through the tree data structure and core, the same current calendar value is attained as when it was originally computed with the corresponding digital input record forming the lowest level input. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
-
Specification