Secure and reliable document delivery

US 6,988,199 B2
Filed: 06/21/2001
Issued: 01/17/2006
Est. Priority Date: 07/07/2000
Status: Expired due to Fees

First Claim

Patent Images

1. A computer-implemented method for securely delivering a document from a sender to a recipient, the method comprising an operations center (OC) performing the steps of:

registering the sender in a sender registration record and associating a sender public-private key pair for the sender with the sender;

receiving a communication encrypted by the sender using a sender private key selected from said sender public-private key pair;

recalling a sender public key selected from said sender public-private key pair from said sender registration record;

authenticating the sender by using the recalled sender public key to decrypt the communication sent from the sender;

establishing a first secure connection between the sender and the OC in response to authenticating the sender;

associating the recipient with a recipient public key from a recipient public-private key pair, wherein said recipient public-private key pair is distinct and separate from said sender public-private key;

storing an escrow encryption key separate from said recipient public key and from said sender public key for selectively encrypting communications to the recipient in place of the recipient escrow encryption key; and

encrypting a delivery to the recipient using the recipient public key if said recipient public key is stored in the OC and encrypting the delivery to the recipient using the escrow encryption key when said recipient public key is not stored in the OC, and subsequently sending the encrypted delivery to the recipient after encryption of the delivery by one from a group comprising a recipient public key and an escrow encryption key, the delivery comprising at least the document.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An Operations Center (OC) (200) acts as a central key manager and intermediary in securely, reliably and non-repudiably delivering a document (3) from a sender (100) to a recipient (300). The OC (200) acts as a key manager to facilitate the process of strong authentication of the sender (100) and the recipient (300), encryption of the delivery (510), and setup of reliable connections (2A, 2B, 2C). In a preferred embodiment, the reliable connections (2A, 2B, 2C) are virtual private network connections.

272 Citations

67 Claims

1. A computer-implemented method for securely delivering a document from a sender to a recipient, the method comprising an operations center (OC) performing the steps of:
- registering the sender in a sender registration record and associating a sender public-private key pair for the sender with the sender;
  
  receiving a communication encrypted by the sender using a sender private key selected from said sender public-private key pair;
  
  recalling a sender public key selected from said sender public-private key pair from said sender registration record;
  
  authenticating the sender by using the recalled sender public key to decrypt the communication sent from the sender;
  
  establishing a first secure connection between the sender and the OC in response to authenticating the sender;
  
  associating the recipient with a recipient public key from a recipient public-private key pair, wherein said recipient public-private key pair is distinct and separate from said sender public-private key;
  
  storing an escrow encryption key separate from said recipient public key and from said sender public key for selectively encrypting communications to the recipient in place of the recipient escrow encryption key; and
  
  encrypting a delivery to the recipient using the recipient public key if said recipient public key is stored in the OC and encrypting the delivery to the recipient using the escrow encryption key when said recipient public key is not stored in the OC, and subsequently sending the encrypted delivery to the recipient after encryption of the delivery by one from a group comprising a recipient public key and an escrow encryption key, the delivery comprising at least the document.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 2. The method of claim 1 further comprising the OC performing the steps of:
    - receiving at least a portion of the delivery from the sender via the first secure connection;
      
      storing the at least a portion of the delivery;
      
      using the recipient public key, in conjunction with the recipient using the recipient private key, to authenticate the recipient;
      
      establishing a second secure connection between the recipient and the OC; and
      
      transmitting the at least a portion of the delivery to the recipient via the second secure connection.
  - 3. The method of claim 2 further comprising, in response to the recipient receiving the at least a portion of the delivery, the OC performing one from a group of steps comprising:
    - notifying the sender to form a second secure connection to the recipient to transmit the remainder of the delivery; and
      
      notifying the recipient to form a second secure connection to the sender to transmit the remainder of the delivery.
  - 4. The method of claim 3 further comprising the OC performing one from a group of steps comprising:
    - receiving a first acknowledgement from the sender that the remainder of the delivery wastransmitted to the recipient; and
      
      receiving a second acknowledgement from the recipient that the remainder of the delivery was received by the recipient.
  - 5. The method of claim 2 wherein each of the first and second secure connections comprises one from a group comprising a direct line, a virtual private network connection, and a Secure Socket Layer connection.
  - 6. The method of claim 2 wherein at least one of the first and second secure connections comprises a virtual private network connection formed by using a VPN encryption key at a layer selected from a group comprising an application layer, a presentation layer, and a session layer of the Open Systems Interconnect reference model.
  - 7. The method of claim 2 wherein at least one of the first and second secure connections comprises a virtual private network connection formed by using at least one key from a group comprising the sender public key, the recipient public key, an OC public key, and a session key.
  - 8. The method of claim 3 wherein the second secure connection between the sender and the recipient comprises one from a group comprising a direct line, a virtual private network connection, and a Secure Socket Layer connection.
  - 9. The method of claim 3 wherein the second secure connection between the sender and the recipient comprises a virtual private network connection formed by using a VPN encryption key at a layer selected from a group comprising an application layer, a presentation layer, and a session layer of the Open Systems Interconnect reference model.
  - 10. The method of claim 3 wherein the second secure connection comprises a virtual private network connection formed by using at least one key from a group comprising the sender public key, the recipient public key, and a session key.
  - 11. The method of claim 2 wherein the delivery further comprises at least one from the group comprising:
    - a message digest comprising one of a group of a hash of the document, a hash of the document encrypted with a document encryption key, a hash of the document encrypted with the encryption key, and a hash of the document encrypted with the sender private key from the sender public-private key pair; and
      
      a digital signature signed by the sender private key from the sender publicprivate key pair.
  - 12. The method of claim 11 further comprising the OC performing the steps of:
    - storing at least one of the message digest and the digital signature; and
      
      time-stamping and recording an acknowledgement from the recipient that the at least a portion of the delivery was received.
  - 13. The method of claim 2 further comprising the OC performing the step of:
    - providing a delivery notification to the recipient that the OC is storing the at least a portion of the delivery for the recipient.
  - 14. The method of claim 2 further comprising the OC performing the step of providing a notification to the sender of an event selected from a group comprising:
    - a failure of the OC to transmit the at least a portion of the delivery to the recipient within a specified time period;
      
      a failure of the OC to locate a valid public key for the recipient;
      
      transmission of the at least a portion of the delivery to the recipient;
      
      receipt of an acknowledgment from the recipient that the at least a portion of the delivery was received;
      
      receipt of an acknowledgment from the recipient that the delivery was received;
      
      receipt of an acknowledgement from the recipient that the document was successfully decrypted; and
      
      a failure of the OC to transmit the at least a portion of the delivery to the recipient because the recipient is unable to access the recipient private key.
  - 15. The method of claim 1 further comprising the OC performing the steps of:
    - storing the sender public key and the recipient public key in a database; and
      
      providing the sender and the recipient access to the database.
  - 16. The method of claim 15 further comprising the OC performing at least one of the steps of:
    - revoking the sender public key;
      
      revoking the recipient public key; and
      
      authorizing the generation of a new public-private key pair for at least one of a group comprising the sender, the recipient, and a new user.
  - 17. The method of claim 1 further comprising the OC facilitating a direct and secure connection between the sender and the recipient by the OC performing the steps of:
    - using the recipient public key, in conjunction with the recipient using the recipient private key, to authenticate the recipient;
      
      receiving a request from the sender to transmit the delivery directly to the recipient; and
      
      providing one from a group comprising;
      
      a notice to the sender that the recipient is available to directly accept the delivery; and
      
      a notice to the recipient that the sender is available to transmit the delivery directly to the recipient.
  - 18. The method of claim 17 further comprising, in response to the sender and the recipient establishing a direct and secure connection and the sender transmitting the delivery to the recipient via the direct and secure connection, the OC performing the steps of:
    - receiving a sender acknowledgement from the sender that the delivery was transmitted to the recipient; and
      
      receiving a recipient acknowledgement from the recipient that the delivery was received by the recipient.
  - 19. The method of claim 17 wherein the direct and secure connection is a virtual private network connection formed by using a VPN encryption key at a layer selected from a group comprising an application layer, a presentation layer, and a session layer of the Open Systems Interconnect reference model.
  - 20. The method of claim 17 wherein the direct and secure connection comprises one from a group comprising a direct line, a virtual private network connection, and a Secure Socket Layer connection.
  - 21. The method of claim 17 wherein the direct and secure connection is a virtual private network connection formed by using at least one key from a group comprising the sender public key, the recipient public key, and a session key.
  - 22. The method of claim 17 wherein the delivery further comprises at least one from the group comprising:
    - a message digest comprising one of a group of a hash of the document, a hash of the document encrypted with a document encryption key, a hash of the document encrypted with the encryption key, and a hash of the document encrypted with a private key of the sender; and
      
      a digital signature signed by the sender private key from the sender publicprivate key pair.
  - 23. The method of claim 18 further comprising the OC performing the step of:
    - time-stamping and recording the sender acknowledgement and the recipient acknowledgement.

24. A system for securely delivering a document from a sender to a recipient, the system comprising an operations center (OC) comprising:
- a key manager module for associating the sender with a first sender public key from a sender public-private key pair and for associating the recipient with a second recipient public key from a recipient public-private key pair, where said sender public key and said receiver public key are not the same key;
  
  a directory interface, coupled to the key manager module and to a public key database and an escrow key manager, for searching the public key database upon request from the sender for an encryptionkey and for returning one key, where said one key is said recipient public key when a recipient public key is stored in the public key database, and said one key is an escrow encryption key only when said recipient public key is not returned from the public key database;
  
  an authentication module, coupled to the key manager module, for using the sender public key, in conjunction with the sender using the sender private key, to authenticate the sender;
  
  a secure connection module, coupled to the authentication module, for establishing a first secure connection between the sender and the OC; and
  
  a messaging module, coupled to the secure connection module, for receiving a request from the sender for an encryption key to secure a delivery, the delivery comprising at least the document, and for transmitting to the sender one from a group comprising the recipient public key and the escrow encryptionkey, where said escrow encryption key is used only to encrypt documents to be sent to the recipient.
- View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44)
- - 25. The system of claim 24 further comprising:
    - the authentication module further adapted for using the recipient public key, in conjunction with the recipient using the recipient private key, to authenticate the recipient;
      
      the secure connection module further adapted for establishing a second secure connection between the recipient and the OC;
      
      the messaging module further adapted for receiving at least a portion of the delivery from the sender via the first secure connection and for transmitting the at least a portion of the delivery to the recipient via the second reliable connection; and
      
      a storage area, including a computer-readable medium, coupled to the messaging module, for storing the at least a portion of the delivery.
  - 26. The system of claim 25 further comprising:
    - the messaging module further adapted for performing, in response to the recipient receiving the at least a portion of the delivery, one from a group of steps comprising;
      
      notifying the sender to form a secure connection to the recipient to transmit the remainder of the delivery; and
      
      notifying the recipient to form a secure connection to the sender to transmit the remainder of the delivery.
  - 27. The system of claim 26 further comprising:
    - a tracking module, coupled to the messaging module, for receiving a first acknowledgement from the sender that the remainder of the delivery was transmitted to the recipient, and for receiving a second acknowledgement from the recipient that the remainder of the delivery was received by the recipient.
  - 28. The system of claim 25 wherein each of the first and second secure connections comprises one from a group comprising a direct line, a virtual private network connection, and a Secure Socket Layer connection.
  - 29. The system of claim 25 wherein at least one of the first and second secure connections comprises a virtual private network connection formed by using a VPN encryption key at a layer selected from a group comprising an application layer, a presentation layer, and a session layer of the Open Systems Interconnect reference model.
  - 30. The system of claim 25 wherein at least one of the first and second secure connections comprises a virtual private network connection formed by using at least one key from a group comprising the sender public key, the recipient public key, an OC public key, and a session key.
  - 31. The system of claim 26 wherein the secure connection comprises a virtual private network connection formed by using at least one key from a group comprising the sender public key, the recipient public key, and a session key.
  - 32. The system of claim 25 wherein the delivery further comprises at least one from the group comprising:
    - a message digest comprising one of a group of a hash of the document, a hash of the document encrypted with a document encryption key, a hash of the document encrypted with the encryption key, and a hash of the document encrypted with the sender private key from the sender public-private key pair; and
      
      a digital signature signed by the sender private key from the sender public-private key pair.
  - 33. The system of claim 32 further comprising:
    - a tracking module for recording at least one from the group comprising the message digest and the digital signature, and for time-stamping and recording an acknowledgement from the recipient that the at least a portion of the delivery was received.
  - 34. The system of claim 25 further comprising:
    - the messaging module further adapted for providing a delivery notification to the recipient that the OC is storing the at least a portion of the delivery for the recipient.
  - 35. The system of claim 25 further comprising:
    - the messaging module further adapted for providing a notification to the sender of an event selected from a group comprising;
      
      a failure of the OC to transmit the at least a portion of the delivery to the recipient within a specified time period;
      
      a failure of the OC to locate a valid public key for the recipient;
      
      transmission of the at least a portion of the delivery to the recipient;
      
      receipt of an acknowledgment from the recipient that the at least a portion of the delivery was received;
      
      receipt of an acknowledgment from the recipient that the delivery was received;
      
      receipt of an acknowledgement from the recipient that the document was successfully decrypted; and
      
      a failure of the OC to transmit the at least a portion of the delivery to the recipient because the recipient is unable to access the recipient private key.
  - 36. The system of claim 24 further comprising:
    - the key manager module further adapted for providing the sender and the recipient access to the public key database.
  - 37. The system of claim 24 further comprising:
    - the key manager module further adapted for performing at least one of the steps of;
      
      revoking the sender public key;
      
      revoking the recipient public key; and
      
      authorizing the generation of a new public-private key pair for at least one of a group comprising the sender, the recipient, and a new user.
  - 38. The system of claim 24 further adapted to facilitate a direct and secure connection between the sender and the recipient, the system further comprising:
    - the authentication module further adapted for using the recipient public key, in conjunction with the recipient using the recipient private key, to authenticate the recipient;
      
      the messaging module further adapted for receiving a request from the sender to transmit the delivery directly to the recipient, and for providing one from a group comprising;
      
      a notice to the sender that the recipient is available to directly accept the delivery; and
      
      a notice to the recipient that the sender is available to transmit the delivery directly to the recipient.
  - 39. The system of claim 38 further comprising:
    - the messaging module further adapted for receiving, in response to the sender and the recipient establishing a direct and secure connection and the sender transmitting the delivery to the recipient via the direct and secure connection;
      
      a sender acknowledgement from the sender that the delivery was transmitted to the recipient; and
      
      a recipient acknowledgement from the recipient that the delivery was received by the recipient.
  - 40. The system of claim 38 wherein the direct and secure connection comprises a virtual private network connection formed by using a VPN encryption key at a layer from a group comprising an application layer, a presentation layer, and a session layer of the Open Systems Interconnect reference model.
  - 41. The system of claim 38 wherein the direct and secure connection comprises one from a group comprising a direct line, a virtual private network connection, and a Secure Socket Layer connection.
  - 42. The system of claim 38 wherein the direct and secure connection comprises a virtual private network connection formed by using at least one key from a group comprising the sender public key, the recipient public key, and a session key.
  - 43. The system of claim 38 wherein the delivery further comprises at least one from the group comprising:
    - a message digest comprising one of a group of a hash of the document, a hash of the document encrypted with a document encryption key, a hash of the document encrypted with the encryption key, and a hash of the document encrypted with a private key of the sender; and
      
      a digital signature signed by the sender private key from the sender public-private key pair.
  - 44. The system of claim 39 further comprising:
    - a tracking module for time-stamping and recording the sender acknowledgement and the recipient acknowledgement.

45. In a computer-readable medium, a computer program product for an operations center (OC) facilitating secure delivery of a document from a sender to a recipient, the computer readable medium comprising program code adapted to perform the steps of:
- associating the sender with a sender public key from a sender public-private key pair;
  
  using the sender public key, in conjunction with the sender using the sender private key, to authenticate the sender;
  
  establishing a first secure connection between the sender and the OC;
  
  associating the recipient with a recipient public key from a recipient publicprivate key pair; and
  
  providing one from a group comprising a recipient public key and an escrow encryption key to the sender to secure a delivery, the delivery comprising at least the document.
- View Dependent Claims (46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67)
- - 46. The computer readable medium of claim 45 further comprising program code adapted to perform the steps of:
    - receiving at least a portion of the delivery from the sender via the first secure connection;
      
      storing the at least a portion of the delivery;
      
      using the recipient public key, in conjunction with the recipient using the recipient private key, to authenticate the recipient;
      
      establishing a second secure connection between the recipient and the OC; and
      
      transmitting the at least a portion of the delivery to the recipient via the second reliable connection.
  - 47. The computer readable medium of claim 46 further comprising program code adapted to perform, in response to the recipient receiving the at least a portion of the delivery, one froma group of steps comprising:
    - notifying the sender to form a secure connection to the recipient to transmit the remainder of the delivery; and
      
      notifying the recipient to form a secure connection to the sender to transmit the remainder of the delivery.
  - 48. The computer readable medium of claim 47 further comprising program code adapted to perform one from a group of steps comprising:
    - receiving a first acknowledgement from the sender that the remainder of the delivery was transmitted to the recipient; and
      
      receiving a second acknowledgement from the recipient that the remainder of the delivery was received by the recipient.
  - 49. The computer readable medium of claim 46 wherein each of the first and second secure connections comprises one from a group comprising a direct line, a virtual private network connection, and a Secure Socket Layer connection.
  - 50. The computer readable medium of claim 46 wherein at least one of the first and second secure connections comprises a virtual private network connection formed by using a VPN encryption key at a layer selected from a group comprising an application layer, a presentation layer, and a session layer of the Open Systems Interconnect reference model.
  - 51. The computer readable medium of claim 46 wherein at least one of the first and second connections comprises a virtual private network connection formed by using at least one key from a group comprising the sender public key, the recipient public key, an OC public key, and a session key.
  - 52. The computer readable medium of claim 47 wherein the secure connection between the sender and the recipient comprises one from a group comprising a direct line, a virtual private network connection, and a Secure Socket Layer connection.
  - 53. The computer readable medium of claim 47 wherein the secure connection between the sender and the recipient comprises a virtual private network connection formed by using a VPN encryption key at a layer selected from a group comprising an application layer, a presentation layer, and a session layer of the Open Systems Interconnect reference model.
  - 54. The computer readable medium of claim 47 wherein the secure connection comprises a virtual private network connection formed by using at least one key from a group comprising the sender public key, the recipient public key, and a session key.
  - 55. The computer readable medium of claim 46 wherein the delivery further comprises at least one from the group comprising:
    - a message digest comprising one of a group of a hash of the document, a hash of the document encrypted with a document encryption key, a hash of the document encrypted with the encryption key, and a hash of the document encrypted with the sender private key from the sender public-private key pair; and
      
      a digital signature signed by the sender private key from the sender publicprivate key pair.
  - 56. The computer readable medium of claim 55 further comprising program code adapted to perform the steps of:
    - storing at least one of the message digest and the digital signature; and
      
      time-stamping and recording an acknowledgement from the recipient that the at least a portion of the delivery was received.
  - 57. The computer readable medium of claim 46 further comprising program code adapted to perform the step of:
    - providing a delivery notification to the recipient that the OC is storing the at least a portion of the delivery for the recipient.
  - 58. The computer readable medium of claim 46 further comprising program code adapted to perform the step of providing a notification to the sender of an event selected from a group comprising:
    - a failure of the OC to transmit the at least a portion of the delivery to the recipient within a specified time period;
      
      a failure of the OC to locate a valid public key for the recipient;
      
      transmission of the at least a portion of the delivery to the recipient;
      
      receipt of an acknowledgment from the recipient that the at least a portion of the delivery was received;
      
      receipt of an acknowledgment from the recipient that the delivery was received;
      
      receipt of an acknowledgement from the recipient that the document was successfully decrypted; and
      
      a failure of the OC to transmit the at least a portion of the delivery to the recipient because the recipient is unable to access the recipient private key.
  - 59. The computer readable medium of claim 45 further comprising program code adapted to perform the steps of:
    - storing the sender public key and the recipient public key in a database; and
      
      providing the sender and the recipient access to the database.
  - 60. The computer readable medium of claim 59 further comprising program code adapted to perform at least one of the steps of:
    - revoking the sender public key;
      
      revoking the recipient public key; and
      
      authorizing the generation of a new public-private key pair for at least one of a group comprising the sender, the recipient, and a new user.
  - 61. The computer readable medium of claim 45 further comprising program code adapted to facilitate a direct and secure connection between the sender and the recipient by performing the steps of:
    - using the recipient public key, in conjunction with the recipient using the recipient private key, to authenticate the recipient;
      
      receiving a request from the sender to transmit the deliver directly to the recipient; and
      
      providing one from a group comprising;
      
      a notice to the sender that the recipient is available to directly accept the delivery; and
      
      a notice to the recipient that the sender is available to transmit the delivery directly to the recipient.
  - 62. The computer readable medium of claim 61 further comprising program code adapted to perform the steps of:
    - in response to the sender and the recipient establishing a direct and secure connection and the sender transmitting the delivery to the recipient via the direct and secure connection;
      
      receiving a sender acknowledgement from the sender that the delivery was transmitted to the recipient; and
      
      receiving a recipient acknowledgement from the recipient that the delivery was received by the recipient.
  - 63. The computer readable medium of claim 61 wherein the direct and secure connectioncomprises a virtual private network connection formed by using a VPN encryption key at a layer selected from a group comprising an application layer, a presentation layer, and a session layer of the Open Systems Interconnect reference model.
  - 64. The computer readable medium of claim 61 wherein the direct and secure connection comprises one from a group comprising a direct line, a virtual private network connection, and a Secure Socket Layer connection.
  - 65. The computer readable medium of claim 64 wherein the direct and secure connectioncomprises a virtual private network connection formed by using at least one key from a group comprising the sender public key, the recipient public key, and a session key.
  - 66. The computer readable medium of claim 61 wherein the delivery further comprises at least one from the group comprising:
    - a message digest comprising one of a group or a hash of the document, a hash of the document encrypted with a document encryption key, a hash of the document encrypted with the encryption key, and a hash of the document encrypted with a private key of the sender; and
      
      a digital signature signed by the sender private key from the sender public-private key pair.
  - 67. The computer readable medium of claim 62 further comprising program code adapted to perform the step of:
    - time-stamping and recording the sender acknowledgement and the recipient acknowledgement.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
BAE Systems Applied Intelligence US Corp. (BAE Systems Plc)
Original Assignee
Message Secure
Inventors
Toh, Eng-Whatt, Teo, Kok-Hoon, Yip, See-Wai, Wong, Chee-Hong
Primary Examiner(s)
Morse, Gregory
Assistant Examiner(s)
Ho, Thomas

Application Number

US09/887,157
Publication Number

US 20020004902A1
Time in Patent Office

1,671 Days
Field of Search

713/165, 713/176, 713/170, 705/60
US Class Current

713/170
CPC Class Codes

H04L 63/0442   wherein the sending and rec...

H04L 63/061   for key exchange, e.g. in p...

H04L 63/062   for key distribution, e.g. ...

H04L 63/0823   using certificates cryptogr...

H04L 63/12   Applying verification of th...

Secure and reliable document delivery

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

272 Citations

67 Claims

Specification

Solutions

Use Cases

Quick Links

Secure and reliable document delivery

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

272 Citations

67 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links