Integrating a digital signature service into a database
First Claim
1. A method for integrating a digital signature service into a database, said method comprising the steps of:
- storing a database comprising a plurality of records;
receiving a store procedure with data from a client of said database;
in response to said store procedure;
receiving a digital certificate for said client;
receiving a private key for said client;
generating a signature from said data, digital certificate and private key of said claim;
generating a signature object for said data, said digital signature object comprising said data, certificate and signature; and
storing said signature object as at least a portion of one of said records in said database.
9 Assignments
0 Petitions
Accused Products
Abstract
A digital signature service integrates digital signature functions on data, for storage in a database. The digital signature service is integrated within a remote database management system (“RDBMS”). A database client generates a command to the RDBMS to execute a stored procedure or stored function that digitally signs the data and that saves the data in a persistent datastore. In response to the command, the RDBMS, using a digital certificate for the user, generates a signature from the data. In addition, the RDBMS generates a digital signature object for the data that includes the data, certificate and signature. The digital signature object is stored in the database. The digital signature service verifies digital signatures through execution of a query command. The digital signature service also implements business logic to retrieve data based on digital signature criteria, and implements filter functions to filter the storage and retrieval of data based on verification and authentication of digital signatures. The generation of multiple signatories on a single data item is also disclosed.
65 Citations
21 Claims
-
1. A method for integrating a digital signature service into a database, said method comprising the steps of:
-
storing a database comprising a plurality of records;
receiving a store procedure with data from a client of said database;
in response to said store procedure;
receiving a digital certificate for said client;
receiving a private key for said client;
generating a signature from said data, digital certificate and private key of said claim;
generating a signature object for said data, said digital signature object comprising said data, certificate and signature; and
storing said signature object as at least a portion of one of said records in said database. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer readable medium comprising a plurality of instructions which, when executed by a computer, cause the computer to perform the steps of:
-
storing a database comprising a plurality of records;
receiving a store procedure with data from a client of said database;
in response to said store procedure;
receiving a digital certificate for said client;
receiving a private key for said client;
generating a signature from said data, digital certificate and private key of said client;
generating a signature object for said data, said digital signature object comprising said data, certificate and signature; and
storing said signature object as at least a portion of one of said records in said database. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A computer comprising:
-
an input device for receiving a digital certificate and a private key for a user of said computer;
database client for generating a store procedure with data;
database management system, coupled to said database client, for generating, in response to said store procedure, a signature from said data, said database management system further for generating a signature object for said data, digital certificate and private key of said database client, said digital signature object comprising said data, certificate and signature; and
database, coupled to said database management system, comprising a plurality of records for storing said signature object as at least a portion of a record.
-
Specification