Method for secure time-stamping of digital documents

A system for time-stamping a digital document, including for example text, video, audio, or pictorial data, protects the secrecy of the document text and provides a tamper-proof time seal establishing an author'"'"'s claim to the temporal existence of the document. Initially, the author reduces the document to a number by means of a one-way hash function, thereby fixing a unique representation of the document text. In one embodiment of the invention the number is then transmitted to an outside agency where the current time is added to form a receipt which is certified by the agency using a public key signature procedure before being returned to the author as evidence of the document'"'"'s existence. In later proof of such existence, the certificate is authenticated by means of the agency'"'"'s public key to reveal the receipt which comprises the hash of the alleged document along with the time seal that only the agency could have signed into the certificate. The alleged document is then hashed with the same one-way function and the original and newly-generated hash numbers are compared. A match establishes the identify of the alleged document as the time-stamped original. In order to prevent collusion in the assignment of a time stamp by the agency and thus fortify the credibility of the system, the receipt is linked to other contemporary receipts before certification by the agency, thereby fixing a document'"'"'s position in the continuum of time. In another embodiment, a plurality of agencies are designated by means of random selection based upon a unique seed that is a function of the hash number of the document to be time-stamped. Thus being denied the ability to choose at will the identity of an agent, the author cannot feasibly arrange for falsification of a time stamp.