Method for Enforcing Document Privacy Through Third Party Systems

US 20140022586A1
Filed: 07/22/2012
Published: 01/23/2014
Est. Priority Date: 07/22/2012
Status: Active Grant

First Claim

Patent Images

1. An apparatus for generating a secured electronic document, wherein said apparatus comprises a non-volatile computer readable medium storing a plurality of programmatic instructions, wherein said programmatic instructions, when executed by a processor, generate the secured electronic document by:

receiving an unprotected document comprising content;

receiving a public key specific to a document service;

generating a first portion of said secured electronic document, wherein said first portion comprises said public key;

generating a second document portion of said secured electronic document, wherein said second document portion comprises a password and wherein the second document portion is encrypted using said public key;

generating a third document portion of said secured electronic document, wherein said third document portion comprises the content of the unprotected document wherein said third document portion is protected using said password; and

forming said secured document using said first document portion, second document portion, and third document portion.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The application discloses systems and methods for securing a document while routing through native or third party infrastructure. A process resident on the user'"'"'s platform generates a three-part secure document from the user'"'"'s original document. The first part is public and contains document metadata such as a public key. The public key is used to encrypt the second part of the document'"'"'s metadata which includes a user supplied password. The third part contains the original document that has been symmetrically encrypted using the user supplied password. The result is that only the first part of the new document is visible to unsecured transmission channels or third party infrastructure.

Citations

22 Claims

1. An apparatus for generating a secured electronic document, wherein said apparatus comprises a non-volatile computer readable medium storing a plurality of programmatic instructions, wherein said programmatic instructions, when executed by a processor, generate the secured electronic document by:
- receiving an unprotected document comprising content;
  
  receiving a public key specific to a document service;
  
  generating a first portion of said secured electronic document, wherein said first portion comprises said public key;
  
  generating a second document portion of said secured electronic document, wherein said second document portion comprises a password and wherein the second document portion is encrypted using said public key;
  
  generating a third document portion of said secured electronic document, wherein said third document portion comprises the content of the unprotected document wherein said third document portion is protected using said password; and
  
  forming said secured document using said first document portion, second document portion, and third document portion.
- View Dependent Claims (2, 4, 5, 6, 7, 8, 9)
- - 2. The apparatus of claim 1 wherein said first portion further comprises routing information, wherein said routing information details a network location of said document service.
  - 4. The apparatus of claim 1 further comprising prompting a user for a password and receiving an input indicative of said password.
  - 5. The apparatus of claim 1 wherein said public key corresponds to a private key specific to said document service.
  - 6. The apparatus of claim 1 wherein neither the first document portion nor the third document portion is encrypted using a public or private key.
  - 7. The apparatus of claim 1 wherein said second document portion comprises at least one of a job ticket, document name, document ownership details, account information, financial information, financial transaction data, credit card data, access control lists, storage repository information, client data, confidentiality designations, time of creation, place of creation, or version number.
  - 8. The apparatus of claim 1 wherein said public key is received directly from said document service.
  - 9. The apparatus of claim 1 further comprising transmitting the secured document to the document service through an unsecured transmission channel.

3. The apparatus of wherein said network location is designated by a network address, a universally unique identifier (UUID), or a service name.

10. A system for generating and processing a secured electronic document, wherein said system comprises:
- a first non-volatile computer readable medium storing a plurality of programmatic instructions, wherein said programmatic instructions, when executed by a processor, generate the secured electronic document by;
  
  receiving a public key specific to a document service;
  
  generating a first portion of said secured electronic document, wherein said first portion comprises said public key;
  
  generating a second document portion of said secured electronic document, wherein said second document portion comprises a password and wherein the second document portion is encrypted using said public key;
  
  generating a third document portion of said secured electronic document, wherein said third document portion comprises content of the unprotected document wherein said third document portion is protected using said password;
  
  forming said secured electronic document using said first document portion, second document portion, and third document portion;
  
  transmitting said secured electronic document;
  
  a second non-volatile computer readable medium storing a plurality of programmatic instructions, wherein said programmatic instructions, when executed by a processor, process said secured electronic document by;
  
  generating and transmitting the public key to the first non-volatile computer readable medium;
  
  receiving the secured document from the first non-volatile computer readable medium;
  
  acquiring the public key from the first portion of said secured electronic document;
  
  decrypting the second portion of the secured electronic document using a private key corresponding to said public key;
  
  acquiring the password from the second portion of said secured electronic document; and
  
  unlocking the third portion of said secured electronic document using said password.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19)
- - 11. The system of claim 10 wherein said first portion further comprises routing information, wherein said routing information details a network location of said document service.
  - 12. The system of claim 10 wherein neither the first document portion nor the third document portion is encrypted using a public or private key.
  - 13. The system of claim 10 wherein said second document portion comprises at least one of a job ticket, document name, document ownership details, account information, financial information, financial transaction data, credit card data, access control lists, storage repository information, client data, confidentiality designations, time of creation, place of creation, or version number.
  - 14. The system of claim 10 wherein second non-volatile computer readable medium is associated with the document service and wherein said document service processes the secured electronic document using at least one of a job ticket, document name, document ownership details, account information, financial information, financial transaction data, credit card data, access control lists, storage repository information, client data, confidentiality designations, time of creation, place of creation, or version number.
  - 15. The system of claim 14 wherein the document service is at least one of a document repository service or printing service.
  - 16. The system of claim 10 wherein said public key is transmitted directly from second non-volatile computer readable medium to said first non-volatile computer readable medium.
  - 17. The system of claim 10 wherein said secured electronic document is transmitted through, and received from, an unsecured transmission channel.
  - 18. The system of claim 10 wherein the first non-volatile computer readable medium is part of a first computing device and wherein said first computing device is adapted to access a document service across a network connection.
  - 19. The system of claim 18 wherein the second non-volatile computer readable medium is part of a second computing device and wherein said second computing device is adapted to provide a document service across a network connection, and wherein said document service is at least one of a document repository, printing, scanning, facsimile, bookmaking, document management, or optical character recognition.

20. A method for generating and processing a secured electronic document, wherein said method is implemented using non-volatile computer readable mediums that store a plurality of programmatic instructions, wherein said programmatic instructions, when executed by processors, generate the secured electronic document and wherein said method comprises:
- receiving a public key specific to a document service;
  
  generating a first portion of said secured electronic document, wherein said first portion comprises said public key;
  
  generating a second document portion of said secured electronic document, wherein said second document portion comprises a password and wherein the second document portion is encrypted using said public key;
  
  generating a third document portion of said secured electronic document, wherein said third document portion comprises content of the unprotected document wherein said third document portion is protected using said password;
  
  forming said secured document using said first document portion, second document portion, and third document portion; and
  
  transmitting said secured electronic document to the document service.
- View Dependent Claims (21, 22)
- - 21. The method of claim 20 further comprisinggenerating and transmitting the public key;
    - receiving the secured electronic document;
      
      acquiring the public key from the first portion of said secured electronic document;
      
      decrypting the second portion of the secured electronic document using a private key corresponding to said public key;
      
      acquiring the password from the second portion of said secured electronic document; and
      
      unlocking the third portion of said secured electronic document using said password.
  - 22. The method of claim 20 wherein neither the first document portion nor the third document portion is encrypted using a public or private key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Xerox Corporation (Xerox Holdings Corp.)
Original Assignee
Xerox Corporation (Xerox Holdings Corp.)
Inventors
Zehler, Peter

Granted Patent

US 8,896,858 B2
Time in Patent Office

Days
Field of Search
US Class Current

358/1.14
CPC Class Codes

G06F 21/608   Secure printing

G06F 21/6209   to a single file or object,...

G06K 15/00   Arrangements for producing ...

H04N 1/4413   involving the use of passwo...

Method for Enforcing Document Privacy Through Third Party Systems

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Method for Enforcing Document Privacy Through Third Party Systems

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links