File checking using remote signing authority via a network
First Claim
Patent Images
1. An apparatus comprising:
- a file analyzer to perform a scan operation on an incoming file to produce a scanning result, and to output the scanning result and the scanned file to accompany a digital signature chain;
a signature generator coupled to the file analyzer to receive both the scanning result and the scanned file and to produce a digital signature of the digital signature chain based on the scanning result and the scanned file, the digital signature chain is verified prior to accessing the incoming file and access to the incoming file is precluded by the file analyzer unless the digital signature accompanies the incoming file; and
a time stamp indicator coupled to the signature generator, the time stamp indicator to provide information of the scan operation for insertion into the digital signature chain.
1 Assignment
0 Petitions
Accused Products
Abstract
A file is sent to a remote signing authority via a network. The signing authority checks the file and provides a signature indicating file integrity of the file. The signature returned from the signing authority via the network is verified.
216 Citations
26 Claims
-
1. An apparatus comprising:
-
a file analyzer to perform a scan operation on an incoming file to produce a scanning result, and to output the scanning result and the scanned file to accompany a digital signature chain; a signature generator coupled to the file analyzer to receive both the scanning result and the scanned file and to produce a digital signature of the digital signature chain based on the scanning result and the scanned file, the digital signature chain is verified prior to accessing the incoming file and access to the incoming file is precluded by the file analyzer unless the digital signature accompanies the incoming file; and a time stamp indicator coupled to the signature generator, the time stamp indicator to provide information of the scan operation for insertion into the digital signature chain. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method comprising:
-
sending a file to a signatory via a network, the signatory checking the file and providing a digital signature chain indicating file integrity of the file and timing information of the file checking operation as conducted by the signatory, the digital signature chain includes a digital signature produced by the signatory based on the file and a scanning result of the file, the scanning result indicating if the file has an acceptable file integrity; verifying the digital signature chain returned from the signatory via the network prior to accessing the file, the verifying of the digital signature chain includes determining whether contents of a digital signature associated with the digital signature chain include a message regarding the integrity of the file; and accessing the file if the verified digital signature chain accompanies the file and indicates an acceptable file integrity. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. An apparatus comprising:
-
a file analyzer to perform a scan operation on a file that produces a scanning result; and a signature generator coupled to the file analyzer, the signature generator to produce a digital signature that is based on both the scanning result and the scanned file and is part of a digital signature chain, the digital signature chain being verified prior to accessing the file and access to the file is precluded by the file analyzer unless the digital signature chain accompanies the file. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26)
-
Specification