Platform and method for creating and using a digital container
First Claim
1. A method comprising:
- producing a container archive by compressing a first combined result of (i) digital information including a plurality of data files and (ii) a signed archive manifest associated with the digital information, the signed archive manifest including (i) a message digest and an assigned handle associated with each data file of the plurality of data files, and (ii) a first digital signature; and
producing a digital container by compressing a second combined result of the container archive and a signed container manifest associated with the container archive.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for producing and verifying the integrity and authenticity of a digital container. The digital container includes digital information in the form of data files or other digital containers along with security attributes associated with the digital information. In one embodiment, the production of the digital container comprises (i) producing a container archive by compressing a combined result of digital information and a signed archive manifest associated with the digital information and (ii) compressing a combined result of container archive and a signed container manifest associated with the container archive. This produces the digital container for use in preventing unauthorized observation or manipulation of the contents of the data files for example.
-
Citations
16 Claims
-
1. A method comprising:
-
producing a container archive by compressing a first combined result of (i) digital information including a plurality of data files and (ii) a signed archive manifest associated with the digital information, the signed archive manifest including (i) a message digest and an assigned handle associated with each data file of the plurality of data files, and (ii) a first digital signature; and
producing a digital container by compressing a second combined result of the container archive and a signed container manifest associated with the container archive. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
producing the signed container manifest using the container archive; combining the signed container manifest and the container archive to produce the second combined result; and
compressing the second combined result.
-
-
8. The method of claim 7, wherein the signed container manifest includes (i) a message digest and assigned handle associated with container archive file, and (ii) a second digital signature.
-
9. The method of claim 7, wherein the second digital signature includes a resultant message digest being a result produced by performing a selected one-way hash function on container archive and digitally signing the result with a signatory key.
-
10. A computer program loaded in a memory device for execution by a processor of a platform, the computer program comprising:
-
a first program to produce security attributes of digital information including a plurality of data files, the security attributes including at least one message digest and a handle associated with each data file of the plurality of data files, a first digital certificate, and a first digital signature;
a second program to combine and compress a result of the digital information and the security attributes of the digital information to produce a container archive;
a third program to produce security attributes of the container archive including a message digest and a handle produced from the container archive, a second digital certificate and a second digital signature;
a fourth program to combine and compress a result of the container archive and the security attributes of the container archive to produce a digital container. - View Dependent Claims (11, 12, 13)
-
-
14. A platform comprising:
-
a processor; and
a memory device including code executable by the processor, the code (i) to produce a container archive by compressing a combined result of digital information including (a) a plurality of data files including at least two of an executable file, a text file including a uniform resource locator, and a digital container file and (b) a signed archive manifest associated with the digital information having a message digest associated with each of the at least two of the executable file, the text file and the digital container file and a handle associated with each message digest, and (ii) to compress a combination of a signed container manifest and the container archive forming a digital container. - View Dependent Claims (15, 16)
-
Specification