System and method for electronic transmission, storage and retrieval of authenticated documents

US 5,748,738 A
Filed: 09/15/1995
Issued: 05/05/1998
Est. Priority Date: 01/17/1995
Status: Expired due to Term

First Claim

Patent Images

1. A method of authenticating an electronic document, comprising the steps of:

signing the electronic document with a digital signature of a transfer agent;

appending a certificate to the electronic document by the transfer agent, wherein the certificate relates a cryptographic key to an identity of the transfer agent;

applying a date stamp and a time stamp to the electronic document;

validating the digital signature and certificate of the transfer agent;

signing the electronic document with a second digital signature and appending a second certificate to the electronic document signed with the second digital signature after the digital signature has been validated, wherein the second certificate relates a cryptographic key to the second digital signature; and

storing in a facility identified by the second digital signature, the document signed with the second digital signature and having the second certificate appended such that the facility assumes control of the document.

View all claims

12 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and apparatus are provided that implement digital signing and/or encryption for the electronic transmission, storage, and retrieval of authenticated documents and that enable the establishment of the identity of the originator of an electronic document and of the integrity of the information contained in such a document. Together these provide irrevocable proof of authenticity of the document. The methods and apparatus make it possible to provide "paper-less" commercial transactions, such as real-estate transactions and the financial transactions secured by real estate. A Certification Authority provides tools for initializing and managing the cryptographic material required to sign and seal electronic documents. An Authentication Center provides "third party" verification that a document is executed and transmitted by the document'"'"'s originator. The methods and apparatus eliminate the need for "hard copies" of original documents as well as hard-copy storage. Retrieval of an authenticated document from the Authentication Center may be done by any number of authorized parties at any time by on-line capability.

409 Citations

16 Claims

1. A method of authenticating an electronic document, comprising the steps of:
- signing the electronic document with a digital signature of a transfer agent;
  
  appending a certificate to the electronic document by the transfer agent, wherein the certificate relates a cryptographic key to an identity of the transfer agent;
  
  applying a date stamp and a time stamp to the electronic document;
  
  validating the digital signature and certificate of the transfer agent;
  
  signing the electronic document with a second digital signature and appending a second certificate to the electronic document signed with the second digital signature after the digital signature has been validated, wherein the second certificate relates a cryptographic key to the second digital signature; and
  
  storing in a facility identified by the second digital signature, the document signed with the second digital signature and having the second certificate appended such that the facility assumes control of the document.

2. An apparatus for authenticating an electronic document, comprising:
- means for signing the electronic document with a digital signature of a transfer agent;
  
  means for appending a certificate to the electronic document, wherein the certificate relates a cryptographic key to an identity of the transfer agent;
  
  means for applying a date stamp and a time stamp to the electronic document;
  
  means for validating the digital signature and certificate;
  
  means for signing the electronic document with a second digital signature and for appending a second certificate to the electronic document signed with the second digital signature after the digital signature has been validated by the validating means, wherein the second certificate relates a cryptographic key to the second digital signature; and
  
  means, identified by the second digital signature, for storing the document signed with the second digital signature and having the second certificate appended such that the storing means assumes control of the document.

3. A method of executing a transaction by transferring an authenticated information object having a verifiable evidence trail, comprising the steps of:
- signing, by a first entity, the information object with a first digital signature;
  
  appending, by the first entity, a first certificate to the information object, wherein the first certificate relates at least an identity and a cryptographic key to the first entity;
  
  authenticating the information object signed with the first digital signature and having appended the first certificate by a second entity, thereby forming an authenticated object, wherein the step of authenticating comprises;
  
  validating the first digital signature and first certificate;
  
  applying a date stamp and a time stamp to the information object signed with the first digital signature and having appended the first certificate; and
  
  after the validating and applying steps, taking control of the validated stamped information object by signing the information object with a second digital signature of the second entity, appending a second certificate to the information object, and storing the validated stamped information object signed with the second digital signature and having the second certificate appended as the authenticated object, wherein the second certificate relates at least an identity and a cryptographic key to the second entity; and
  
  transferring the authenticated object to an entity in response to an instruction.
- View Dependent Claims (4, 5, 6, 7, 8, 9)
- - 4. The method of claim 3, wherein the transferring step comprises retrieving the stored authenticated object and providing the retrieved authenticated object to the entity in accordance with the instruction.
  - 5. The method of claim 4, wherein the retrieved authenticated object is provided to each of a plurality of entities in accordance with the instruction.
  - 6. The method of claim 3, wherein each signing step comprises the steps of applying a hash function to the information object to determine a message digest and using the message digest with a secret cryptographic key of the respective one of the first and second entities to determine the respective digital signature.
  - 7. The method of claim 6, wherein the validating step comprises the step of using the digital signature with a public cryptographic key of the first entity, and with another message digest determined by applying the hash function to the information object.
  - 8. The method of claim 3, further comprising the step of maintaining a log relating to the authenticated object so as to identify at least one subsequent information object related to the transaction.
  - 9. The method of claim 8, wherein a subsequent information object is signed by a third digital signature of a third entity.

10. An apparatus for executing a transaction by transferring an authenticated information object having a verifiable evidence trail, comprising:
- first means for signing, by a first entity, the information object with a first digital signature and for appending, by the first entity, a first certificate to the information object, wherein the first certificate relates at least an identity and a cryptographic key to the first entity; and
  
  means for authenticating an information object signed with the first digital signature and having appended the first certificate by a second entity, thereby forming an authenticated object, wherein the authenticating means comprises;
  
  means for validating the first digital signature and first certificate;
  
  a date stamp and a time stamp for application to an information object signed with the first digital signature and having appended the first certificate; and
  
  means for controlling a validated stamped information object, wherein the controlling means comprises second means for signing an information object with a second digital signature of the second entity and for appending a second certificate to the information object, and a memory;
  
  wherein the memory includes storage locations for validated stamped information objects signed with the second digital signature and having the second certificate appended as authenticated objects, an authenticated object stored in the memory is transferrable in response to an instruction, and the second certificate relates at least an identity and a cryptographic key to the second entity.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The apparatus of claim 10, wherein each signing means comprises a processor for applying a hash function to the information object to determine a message digest and for using the message digest with a secret cryptographic key of the respective one of the first and second entities to determine the respective digital signature.
  - 12. The apparatus of claim 11, wherein the signing means is an electronic circuit card.
  - 13. The apparatus of claim 11, wherein the validating means comprises a processor for using the digital signature with a public cryptographic key of the first entity, and with another message digest determined by applying the hash function to the information object.
  - 14. The apparatus of claim 10, wherein an authenticated object is transferred in response to the instruction by retrieving the authenticated object from the memory a plurality of times and providing the retrieved authenticated objects to a plurality of entities.
  - 15. The apparatus of claim 10, wherein the authenticating means further comprises a log relating to authenticated objects and identifying at least one subsequent information object related to the transaction and stored in the memory.
  - 16. The apparatus of claim 15, wherein a subsequent information object is signed by a third digital signature of a third entity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
eOriginal, Inc.
Original Assignee
Document Authentication Systems Incorporated
Inventors
Bisbee, Stephen F., Sheehan, Edward R., Moskowitz, Jack J., Trotter, Douglas H., White, Michael W.
Primary Examiner(s)
Cangialosi, Salvatore

Application Number

US08/528,841
Time in Patent Office

963 Days
Field of Search

380/25, 380/30
US Class Current

713/176
CPC Class Codes

G06Q 20/00   Payment architectures, sche...

G06Q 20/02   involving a neutral party, ...

G06Q 20/389   Keeping log of transactions...

G07F 7/08   by coded identity card or c...

G07F 7/122   Online card verification

H04L 2209/56   Financial cryptography, e.g...

H04L 9/3236   using cryptographic hash fu...

H04L 9/3247   involving digital signatures

H04L 9/3263   involving certificates, e.g...

Y04S 40/20   Information technology spec...

System and method for electronic transmission, storage and retrieval of authenticated documents

First Claim

12 Assignments

0 Petitions

Accused Products

Abstract

409 Citations

16 Claims

Specification

Use Cases

Quick Links

Others

System and method for electronic transmission, storage and retrieval of authenticated documents

First Claim

12 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

409 Citations

16 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others