Method for the secure distribution of electronic files in a distributed environment

US 5,638,446 A
Filed: 08/28/1995
Issued: 06/10/1997
Est. Priority Date: 08/28/1995
Status: Expired due to Term

First Claim

Patent Images

1. A method for securely distributing electronic information over a network having an author, a trusted agent, and a user, said method comprising the steps of:

registering said author with said trusted agent to provide said trusted agent with said author'"'"'s public key;

said agent verifying said author'"'"'s public key over a communications channel outside of said network;

said author generating a hash value of said electronic information using a cryptographically strong one-way deterministic function;

said author digitally signing said hash value;

said author sending said signed hash value to said trusted agent;

said trusted agent decrypting said signed hash value to verify that said signed hash value was sent by said author; and

said trusted agent creating a signed certificate containing said hash value.

View all claims

10 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A process for using a trusted third party to create an electronic certificate for an electronic file that can be used to establish the file and verify the identity of the creator of the file. The process is composed of two phases, a registration phase and an electronic file distribution phase. In the registration phase, a trusted third party receives information about an author, including the author'"'"'s public key and affirmatively verifies the accuracy of this information. In the file distribution phase, an author sends to the trusted third party a signed message containing the hash of the file the author wants to distribute. The trusted third party creates an electronic certificate, signed by the trusted third party, containing the hash of the file sent by the author. A user desiring to receive the file, retrieves the file with the certificate an uses the certificate to verifies, first, that the certificate was created by the trusted third party, and, second, that the hash of the file in the certificate is the same as the hash that is computed from the retrieved file. If these two hash'"'"'s match, then the user is assured that the file did originate with the author and is uncorrupted.

454 Citations

13 Claims

1. A method for securely distributing electronic information over a network having an author, a trusted agent, and a user, said method comprising the steps of:
- registering said author with said trusted agent to provide said trusted agent with said author'"'"'s public key;
  
  said agent verifying said author'"'"'s public key over a communications channel outside of said network;
  
  said author generating a hash value of said electronic information using a cryptographically strong one-way deterministic function;
  
  said author digitally signing said hash value;
  
  said author sending said signed hash value to said trusted agent;
  
  said trusted agent decrypting said signed hash value to verify that said signed hash value was sent by said author; and
  
  said trusted agent creating a signed certificate containing said hash value.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method in accordance with claim 1 further including the step of sending said signed certificate to said author.
  - 3. The method as recited in claim 1 further including the steps of:
    - said user retrieving said electronic information and said signed certificate;
      
      said user decrypting said certificate using said trusted agent'"'"'s public key;
      
      said user computing a hash value of said retrieved electronic information; and
      
      said user comparing said computed hash value to said hash value contained in said certificate.
  - 4. The method as recited in claim 1 wherein said certificate is also stored in memory at said trusted agent.
  - 5. The method as recited in claim 1 wherein said hash value is the MD-5 one way hash function.
  - 6. The method as recited in claim 1 wherein said step of signing said hash function further comprises the sub-steps of;
    - creating a message containing said author'"'"'s name and said hash value; and
      
      signing said message.

7. A method for providing the secure distribution of electronic files over a network, said method comprising:
- registering with a trusted third party an author'"'"'s identity and public key;
  
  said trusted third party verifying, via another communications channel, said author'"'"'s identity and public key;
  
  generating a hash value for an electronic file;
  
  digitally signing said hash value using said author'"'"'s private key;
  
  sending said signed hash value to said trusted third party;
  
  verifying said signature of said hash value; and
  
  said trusted third party creating a certificate by digitally signing said hash value with said trusted third party'"'"'s private key.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The method as recited in claim 7 wherein said certificate further includes the identity of the trusted third party, the name of said author, the name of said electronic file, the name of the hash function.
  - 9. The method as recited in claim 8 including the step of sending said certificate to said author.
  - 10. The method as recited in claim 9 further including the step of verifying said signature of said certificate using said trusted third party'"'"'s public key.
  - 11. The method as recited in claim 10 further including the steps:
    - accessing said electronic file and said certificate;
      
      verifying said signature of said certificate using said trusted third party'"'"'s public key;
      
      computing a new hash value of said electronic file using the hash function identified in said certificate; and
      
      comparing said new hash value to said hash value included in said certificate.

12. A method for certifying the content and author of an electronic file using a trusted third party, said method characterized by the steps of:
- creating a hash of said electronic file using a cryptographically strong one-way algorithm;
  
  sending said hash in an electronic message to said trusted third party using public key cryptography so that said trusted third party can be sure that said message originated from a sender as identified; and
  
  said trusted third party creating a digitally signed certificate containing the name of the trusted third party, the name of said author, the name of said electronic file, the hash function used to create said hash, the date the certificate was created, and the hash of said electronic file.
- View Dependent Claims (13)
- - 13. The method as recited in claim 12 further characterized by a user:
    - accessing said electronic file;
      
      computing a hash of said electronic file;
      
      accessing said certificate;
      
      verifying the signature of said certificate; and
      
      comparing said hash file computed to said hash file contained in said certificate.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nytell Software LLC (Intellectual Ventures LLC)
Original Assignee
Bell Communications Research, Inc. (Telefonaktiebolaget LM Ericsson)
Inventors
Rubin, Aviel D.
Primary Examiner(s)
Tarcza, Thomas H.
Assistant Examiner(s)
White, Carmen D.

Application Number

US08/520,351
Time in Patent Office

652 Days
Field of Search

380/23, 380/24, 380/25, 380/30
US Class Current

705/51
CPC Class Codes

H04L 2209/60   Digital content management,...

H04L 9/321   involving a third party or ...

H04L 9/3215   using a plurality of channe...

H04L 9/3263   involving certificates, e.g...

Method for the secure distribution of electronic files in a distributed environment

First Claim

10 Assignments

0 Petitions

Accused Products

Abstract

454 Citations

13 Claims

Specification

Solutions

Use Cases

Quick Links

Method for the secure distribution of electronic files in a distributed environment

First Claim

10 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

454 Citations

13 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links