Temporary digital signature method and system
First Claim
1. A digital signature system, employing public key cryptography, that provides a temporary signature without requiring the use of a private key for a user, comprising:
- (a) a temporary signature key producer for producing a temporary signature key by using a private key;
(b) a temporary certificate producer for producing a temporary certificate for said temporary signature key signed by using said private key; and
(c) means for, when a signature for a document is requested, transmitting to a signature requester said temporary certificate, a document signed using said temporary signature key, and a user'"'"'s certificate.
1 Assignment
0 Petitions
Accused Products
Abstract
A digital signature system that employs a temporary digital ID signed by using a private key, so that the digital ID can be used as a proxy for a specific period of time and for a specific purpose. When a signature is requested by a server application, a user does not use his or her private key, but employs a temporary key generated using the private key. A temporary certificate for the temporary key is signed using the user'"'"'s private key. The temporary certificate includes information concerning the period of time during which the temporary certificate is valid and information concerning the purpose for which used. Upon receipt of a request from an application that a document be signed, a client transmits to the server a document signed using the temporary key, the temporary certificate and a user'"'"'s certificate. First, the server examines the signature; second, it determines whether the temporary certificate is still effective, i.e., whether the period of time during which valid has expired and whether the certificate is for another application; and third, confirms that the temporary certificate has been signed by an authenticated user. Finally, the server validates of the user'"'"'s certificate.
67 Citations
30 Claims
-
1. A digital signature system, employing public key cryptography, that provides a temporary signature without requiring the use of a private key for a user, comprising:
-
(a) a temporary signature key producer for producing a temporary signature key by using a private key;
(b) a temporary certificate producer for producing a temporary certificate for said temporary signature key signed by using said private key; and
(c) means for, when a signature for a document is requested, transmitting to a signature requester said temporary certificate, a document signed using said temporary signature key, and a user'"'"'s certificate. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A digital authentication system, employing public key-cryptography, that authenticates a temporary signed document dispatched by a user, comprising:
-
(a) means for receiving a temporary certificate, a document signed by using a temporary signature key, and a user'"'"'s certificate;
(b) means for validating a signature on said document;
(c) means for validating said temporary certificate;
(d) means for confirming that said temporary certificate has been signed by an authenticated user; and
(e) means for validating said user'"'"'s certificate. - View Dependent Claims (7, 8)
-
-
9. A digital signature authentication client/server system, employing public key cryptography, that performs a temporary document signing without directly using a private key, and for authenticating a signature, said system comprising:
-
(a) a temporary signature key producer at a client for producing a temporary signature key by using a private key;
(b) a temporary certificate producer for producing a temporary certificate, for said temporary signature key, signed using said private key;
(c) means for, when signing of a document is requested by a server, transmitting from said client to said server said temporary certificate, a document signed using said temporary signature key, and a user'"'"'s certificate;
(d) means at said server for receiving said temporary certificate, said document signed using said temporary signature key, and said user'"'"'s certificate;
(e) means at said server for validating said signature on said document;
(f) means at said server for validating said temporary certificate;
(g) means at said server for confirming that said temporary certificate has been signed by an authenticated user; and
(h) means at said server for validating said user'"'"'s certificate. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A digital signature method, employing public key cryptography, whereby a temporary signature is provided without requiring the use of a private key for a user, comprising:
-
(a) a temporary signature key production step of producing a temporary signature key by using a private key;
(b) a temporary certificate production step of producing a temporary certificate for said temporary signature key signed by using said private key; and
(c) a step of, when a signature for a document is requested, transmitting to a signature requester said temporary certificate, a document signed using said temporary signature key, and a user'"'"'s certificate. - View Dependent Claims (15, 16, 17, 18)
-
-
19. A digital authentication method, employing public key cryptography, whereby a temporary signed document dispatched by a user is authenticated, comprising the steps of:
-
(a) receiving a temporary certificate, a document signed by using a temporary signature key, and a user'"'"'s certificate;
(b) validating a signature on said document;
(c) validating said temporary certificate;
(d) confirming that said temporary certificate has been signed by an authenticated user; and
(e) validating said user'"'"'s certificate. - View Dependent Claims (20, 21)
-
-
22. A digital signature authentication method, employing public key cryptography, whereby a temporary document signing is performed without directly using a private key for a user, and whereby a signature is authenticated, said method comprising:
-
(a) a temporary signature key production step by a client for producing a temporary signature key by using a private key;
(b) a temporary certificate production step of producing a temporary certificate, for said temporary signature key, signed using said private key;
(c) a step of, when signing of a document is requested by a server, transmitting from said client to said server said temporary certificate, a document signed using said temporary signature key, and a user'"'"'s certificate;
(d) a step by said server of receiving said temporary certificate, said document signed using said temporary signature key, and said user'"'"'s certificate;
(e) a step by said server of validating said signature on said document;
(f) a step by said server of validating said temporary certificate;
(g) a step by said server of confirming that said temporary certificate has been signed by an authenticated user; and
(h) a step by said server of validating said user'"'"'s certificate. - View Dependent Claims (23, 24, 25, 26)
-
-
27. A storage medium for storing a digital signature program, employing public key cryptography, that provides a temporary signature without requiring the use of a private key, said program comprising:
-
(a) a temporary signature key production function for producing a temporary signature key by using a private key;
(b) a temporary certificate production function for producing a temporary certificate for said temporary signature key signed by using said private key; and
(c) a function for, when a signature for a document is requested, transmitting to a signature requester said temporary certificate, a document signed using said temporary signature key, and a user'"'"'s certificate.
-
-
28. A storage medium for storing a digital authentication program, employing public key cryptography, that authenticates a temporary signed document dispatched by a user, said program comprising:
-
(a) a function for receiving a temporary certificate, a document signed by using a temporary signature key, and a user'"'"'s certificate;
(b) a function for validating a signature on said document;
(c) a function for validating said temporary certificate;
(d) a function for confirming that said temporary certificate has been signed by an authenticated user; and
(e) a function for validating said user'"'"'s certificate. - View Dependent Claims (29)
-
-
30. A storage medium for storing a digital signature authentication program, employing public key cryptography, that performs a temporary document signing without directly using a private key, and for authenticating a signature, said program comprising:
-
(a) a temporary signature key production function at a client for producing a temporary signature key by using a private key;
(b) a temporary certificate production function for producing a temporary certificate, for said temporary signature key, signed using said private key;
(c) a function for, when signing of a document is requested by a server, transmitting from said client to said server said temporary certificate, a document signed using said temporary signature key, and a user'"'"'s certificate;
(d) a function at said server for receiving said temporary certificate, said document signed using said temporary signature key, and said user'"'"'s certificate;
(e) a function at said server for validating said signature on said document;
(f) a function at said server for validating said temporary certificate;
(g) a function at said server for confirming that said temporary certificate has been signed by an authenticated user; and
(h) a function at said server for validating said user'"'"'s certificate.
-
Specification