Method of token verification in a key management system
First Claim
1. A method of token verification in a Key Management System, comprising the steps of:
- providing to a transaction evidencing device a master key created in a logical security domain and a logical device identifier;
creating a master key record in a key verification box;
storing the master key record in a Key Management System archive;
performing a predetermined operation on information relating to each transaction in the transaction evidencing device to produce evidence of transaction information integrity in the logical security domain;
inputting the evidence of the transaction information integrity to a token verification box;
inputting in the token verification box the master key record from the Key Management System archive;
determining in the token verification box that the master key is valid in the logical security domain;
using in the token verification box the master key to verify the evidence of transaction information integrity; and
outputting from the token verification box an indication of the result of the verification of the evidence of transaction information integrity.
1 Assignment
0 Petitions
Accused Products
Abstract
A method of token verification in a Key Management System provides a logical device identifier and a master key created in a logical security domain to a transaction evidencing device, such as a digital postage meter. The method creates a master key record in a key verification box, securely stores the master key record in a Key Management System archive, and produces in the transaction evidencing device evidence in the logical security domain of transaction information integrity. The method inputs the evidence of the transaction information integrity to a token verification box, and inputs in the token verification box the master key record from the Key Management System archive. The method determines in the token verification box that the master key is valid in logical security domain, uses in the token verification box the master key to verify the evidence of transaction information integrity, and outputs from the token verification box an indication of the result of the verification of the evidence of transaction information integrity. The master key record includes the logical device identifier, the master key and a digital signature associating the logical device identifier and the master key. The method checks the digital signature to verify the association of the logical device identifier and the master key within the logical security domain.
-
Citations
14 Claims
-
1. A method of token verification in a Key Management System, comprising the steps of:
-
providing to a transaction evidencing device a master key created in a logical security domain and a logical device identifier; creating a master key record in a key verification box; storing the master key record in a Key Management System archive; performing a predetermined operation on information relating to each transaction in the transaction evidencing device to produce evidence of transaction information integrity in the logical security domain; inputting the evidence of the transaction information integrity to a token verification box; inputting in the token verification box the master key record from the Key Management System archive; determining in the token verification box that the master key is valid in the logical security domain; using in the token verification box the master key to verify the evidence of transaction information integrity; and outputting from the token verification box an indication of the result of the verification of the evidence of transaction information integrity. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method of token verification in a Key Management System, comprising the steps of:
-
providing to a transaction evidencing device a master key created in a logical security domain and a logical device identifier; creating a master key record in a key verification box; storing the master key record in a Key Management System archive; creating a temporal token key record using the master key in a token key distribution box; storing the token key record in a Key Management System archive; producing in the transaction evidencing device the token key; producing in the transaction evidencing device a token in the logical security domain using the token key; inputting the token to a distributed token verification box; inputting in the distributed token verification box the token key record from the Key Management System archive; determining in the distributed token verification box that the token key is valid in the logical security domain; using in the distributed token verification box the token key to verify the token; and outputting from the distributed token verification box an indication of the result of the verification of the token. - View Dependent Claims (7, 8, 9)
-
-
10. A method of token verification in a Key Management System, comprising the steps of:
-
providing to a transaction evidencing device a master key created in a logical security domain and a logical device identifier; creating a master key record in a key verification process; storing the master key record in a Key Management System archive; performing a predetermined operation on information relating to each transaction in the transaction evidencing device to produce evidence of transaction information integrity in the logical security domain; inputting the evidence of the transaction information integrity to a token verification process; inputting to the token verification process the master key record from the Key Management System archive; determining in the token verification process that the master key is valid in the logical security domain; using in the token verification process the master key to verify the evidence of transaction information integrity; and outputting from the token verification process an indication of the result of the verification of the evidence of transaction information integrity. - View Dependent Claims (11, 12, 13, 14)
-
Specification