Systems and methods for obtaining digital signatures on a single authoritative copy of an original electronic record

US 7,139,910 B1
Filed: 02/28/2002
Issued: 11/21/2006
Est. Priority Date: 11/14/2001
Status: Active Grant

First Claim

Patent Images

1. A method in a computer system for maintaining and digitally signing a unique, authoritative electronic record, the method comprising the steps of:

receiving an original electronic record in a repository;

generating at least some first receipt information, wherein the first receipt information includes information relating to the original electronic record, and wherein the first receipt information is prevented from being transmitted outside the repository;

prepending the first receipt information at a beginning portion of the original electronic record;

generating at least some first identifying information, wherein the first identifying information includes a provable representation of the first receipt information;

appending the first identifying information at an end portion of the original electronic record;

storing the original electronic record with the prepended first receipt information and the appended first identifying information in the repository as a unique, authoritative electronic record;

receiving a request to review and optionally sign the authoritative electronic record at a remote location;

computing a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to a proper subset of the authoritative electronic record;

computing a complement of the proper subset of the authoritative electronic record;

transmitting to the remote location the partially completed message digest of the authoritative electronic record;

transmitting to the remote location the complement of the proper subset of the authoritative electronic record;

completing the computation of the message digest of the authoritative electronic record, at the remote location, using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record;

displaying the complement of the proper subset of the authoritative electronic record at the remote location;

allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record;

returning the digital signature information to the repository;

receiving the digital signature information in the repository;

determining whether the digital signature information represents a valid digital signature;

amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information;

generating at least some additional receipt information, wherein the additional receipt information includes information relating to the signed authoritative electronic record;

prepending the additional receipt information at a beginning portion of the signed authoritative electronic record;

generating at least some additional identifying information, wherein the additional identifying information includes a provable representation of the additional receipt information;

appending the additional identifying information at an end portion of the signed authoritative electronic record; and

storing the signed authoritative electronic record, the additional receipt information, and the additional identifying information, in the repository as the authoritative electronic record, wherein the signed authoritative electronic record includes the digital signature information.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention includes systems and methods for maintaining control of an electronic record, which may have transferable value, wherein a user may add digital signature information to a single unique authoritative copy of the electronic record held in a repository without compromising the uniqueness of the authoritative electronic record. Provided the digital signature information is valid, an authoritative electronic record may be amended to include multiple digital signatures, while continuing to be a single unique authoritative electronic record.

87 Citations

View as Search Results

35 Claims

1. A method in a computer system for maintaining and digitally signing a unique, authoritative electronic record, the method comprising the steps of:
- receiving an original electronic record in a repository;
  
  generating at least some first receipt information, wherein the first receipt information includes information relating to the original electronic record, and wherein the first receipt information is prevented from being transmitted outside the repository;
  
  prepending the first receipt information at a beginning portion of the original electronic record;
  
  generating at least some first identifying information, wherein the first identifying information includes a provable representation of the first receipt information;
  
  appending the first identifying information at an end portion of the original electronic record;
  
  storing the original electronic record with the prepended first receipt information and the appended first identifying information in the repository as a unique, authoritative electronic record;
  
  receiving a request to review and optionally sign the authoritative electronic record at a remote location;
  
  computing a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to a proper subset of the authoritative electronic record;
  
  computing a complement of the proper subset of the authoritative electronic record;
  
  transmitting to the remote location the partially completed message digest of the authoritative electronic record;
  
  transmitting to the remote location the complement of the proper subset of the authoritative electronic record;
  
  completing the computation of the message digest of the authoritative electronic record, at the remote location, using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record;
  
  displaying the complement of the proper subset of the authoritative electronic record at the remote location;
  
  allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record;
  
  returning the digital signature information to the repository;
  
  receiving the digital signature information in the repository;
  
  determining whether the digital signature information represents a valid digital signature;
  
  amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information;
  
  generating at least some additional receipt information, wherein the additional receipt information includes information relating to the signed authoritative electronic record;
  
  prepending the additional receipt information at a beginning portion of the signed authoritative electronic record;
  
  generating at least some additional identifying information, wherein the additional identifying information includes a provable representation of the additional receipt information;
  
  appending the additional identifying information at an end portion of the signed authoritative electronic record; and
  
  storing the signed authoritative electronic record, the additional receipt information, and the additional identifying information, in the repository as the authoritative electronic record, wherein the signed authoritative electronic record includes the digital signature information.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein the step of generating at least some first identifying information further comprises the step of adding time-stamp information to the first identifying information, wherein the time-stamp information comprises the time and/or date when the original electronic record is received in the repository.
  - 3. The method of claim 1, wherein the first receipt information includes at least some digital signature information that is generated using a private key of the repository.
  - 4. The method of claim 1, wherein the proper subset of the authoritative electronic record comprises information which has been prepended at the beginning of the authoritative electronic record.
  - 5. The method of claim 1, wherein the complement of the proper subset of the authoritative electronic record comprises the original electronic record and information which has been appended to the end of the original electronic record.
  - 6. The method of claim 1, wherein the steps of transmitting to the remote location the partially completed message digest of the authoritative electronic record and transmitting to the remote location the complement of the proper subset of the authoritative electronic record include transmitting the partially completed message digest of the authoritative electronic record and transmitting the complement of the proper subset of the authoritative electronic record to the remote location in a single transmission.
  - 7. The method of claim 1, wherein at least one software program associated with the repository is utilized at the remote location.
  - 8. The method of claim 1, wherein the additional receipt information includes at least some digital signature information that is generated using a private key of the repository.
  - 9. The method of claim 1, wherein the additional identifying information is generated using at least some repository information.
  - 10. The method of claim 1, wherein the additional identifying information is generated using at least some user information.
  - 11. The method of claim 1, wherein the additional identifying information is generated using at least some remote location information.

12. A method in a computer system for maintaining and digitally signing a unique, authoritative electronic record, the method comprising the steps of:
- providing for the receipt of an original electronic record in a repository;
  
  providing for the generation of at least some first receipt information, wherein the first receipt information includes information relating to the original electronic record, and wherein the first receipt information is prevented from being transmitted outside the repository;
  
  providing for the prepending of the first receipt information at a beginning portion of the original electronic record;
  
  providing for the generation of at least some first identifying information, wherein the first identifying information includes a provable representation of the first receipt information;
  
  providing for the appending of the first identifying information at an end portion of the original electronic record;
  
  providing for the storage of the original electronic record with the prepended first receipt information and the appended first identifying information in the repository as a unique, authoritative electronic record;
  
  providing for the receipt of a request to review and optionally sign the authoritative electronic record at a remote location;
  
  providing for the computation of a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to a proper subset of the authoritative electronic record;
  
  providing for the computation of a complement of the proper subset of the authoritative electronic record;
  
  providing for the transmission of the partially completed message digest of the authoritative electronic record to the remote location;
  
  providing for the transmission of the complement of the proper subset of the authoritative electronic record to the remote location;
  
  providing for the completion of the computation of the message digest of the authoritative electronic record, at the remote location, using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record;
  
  providing for the display of the complement of the proper subset of the authoritative electronic record at the remote location;
  
  providing for the allowance of the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record;
  
  providing for the receipt of the digital signature information in the repository;
  
  providing for the determination of whether the digital signature information represents a valid digital signature;
  
  providing for the amendment, if the digital signature information is determined to represent a valid digital signature, of the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information;
  
  providing for the generation of at least some additional receipt information, wherein the additional receipt information includes information relating to the signed authoritative electronic record;
  
  providing for the prepending of the additional receipt information at a beginning portion of the signed authoritative electronic record;
  
  providing for the generation of at least some additional identifying information, wherein the additional identifying information includes a provable representation of the additional receipt information;
  
  providing for the appending of the additional identifying information at an end portion of the signed authoritative electronic record;
  
  providing for the storing of the signed authoritative electronic record additional receipt information, and the additional identifying information, in the repository as the authoritative electronic record, wherein the signed authoritative electronic record includes the digital signature information.

13. A method for displaying, at a remote location, a provable representation of a unique, authoritative electronic record stored in a repository, without compromising the uniqueness of the authoritative electronic record, the method comprising the steps of:
- receiving a request to review and optionally sign at a remote location a unique, authoritative electronic record stored in a repository, wherein the authoritative electronic record includes at least some first receipt information, which has been prepended at a beginning portion of the authoritative electronic record, and at least some first identifying information, which has been appended at an end portion of the authoritative electronic record, wherein the first receipt information is prevented from being transmitted outside the repository, and wherein the first identifying information includes a provable representation of the first receipt information;
  
  computingat the repository a complement of a proper subset of the authoritative electronic record, wherein the complement of the proper subset of the authoritative electronic record is a provable representation of the authoritative electronic record;
  
  transmitting the complement of the proper subset of the authoritative electronic record to the remote location; and
  
  allowing the complement of the proper subset of the authoritative electronic record to be displayed at the remote location.
- View Dependent Claims (14, 15, 16)
- - 14. The method of claim 13, wherein the proper subset of the authoritative electronic record comprises information, which has been prepended at the beginning of the authoritative electronic record.
  - 15. The method of claim 13, wherein the complement of the proper subset of the authoritative electronic record comprises the original electronic record and information, which has been appended to the end of the original electronic record.
  - 16. The method of claim 13, wherein at least one software program associated with the repository is utilized at the remote location.

17. A method for generating a digital signature at a remote location for a unique, authoritative electronic record which resides in a repository, without compromising the uniqueness of the authoritative electronic record, the method comprising the steps of:
- computing at the repository a complement of a proper subset of the authoritative electronic record;
  
  transmitting to the remote location the complement of the proper subset of the authoritative electronic record;
  
  computing at the repository a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to the proper subset of the authoritative electronic record;
  
  transmitting to the remote location the partially completed message digest of the authoritative electronic record;
  
  allowing the computation of the message digest of the authoritative electronic record to be completed at the remote location using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record; and
  
  allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record.
- View Dependent Claims (18, 19, 20, 21, 22)
- - 18. The method of claim 17, further comprising the step of allowing the digital signature information to be returned to the repository.
  - 19. The method of claim 17, wherein the proper subset of the authoritative electronic record comprises information which has been prepended at the beginning of the authoritative electronic record.
  - 20. The method of claim 17, wherein the complement of the proper subset of the authoritative electronic record comprises the original electronic record and information which has been appended to the end of the original electronic record.
  - 21. The method of claim 17, wherein the steps of transmitting to the remote location the complement of the proper subset of the authoritative electronic record and transmitting to the remote location the partially completed message digest of the authoritative electronic record include transmitting the complement of the proper subset of the authoritative electronic record and transmitting the partially completed message digest of the authoritative electronic record to the remote location in a single transmission.
  - 22. The method of claim 17, wherein at least one software program associated with the repository is utilized at the remote location.

23. A method for including a valid digital signature, computed at a remote location, in a unique, authoritative electronic record stored in a repository, without compromising the uniqueness of the authoritative electronic record, wherein the authoritative electronic record includes at least some first receipt information which has been prepended at a beginning portion of the authoritative electronic record, and at least some first identifying information which has been appended at an end portion of the authoritative electronic record, wherein the first receipt information is prevented from being transmitted outside the repository, and wherein the first identifying information includes a provable representation of the first receipt information, the method comprising the steps of:
- receiving in the repository at least some digital signature information, wherein the digital signature information was generated at a remote location using a private key and a message digest, wherein the message digest was computed using a partially completed message digest of the authoritative electronic record and a complement of a proper subset of the authoritative electronic record, wherein the partially completed message digest is related to the proper subset of the authoritative electronic record;
  
  determining whether the digital signature information represents a valid digital signature;
  
  amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information; and
  
  storing the signed authoritative electronic record in the repository as the authoritative electronic record.
- View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31)
- - 24. The method of claim 23, wherein the step of amending, if the digital signature information is determined to represent a valid digital signature, an authoritative electronic record to create a signed authoritative electronic record includes the steps of:
    - prepending digital signature information comprising a digital signature to the beginning portion of the authoritative electronic record; and
      
      appending digital signature information comprising a provable representation of the prepended digital signature information to the end portion of the authoritative electronic record.
  - 25. The method of claim 23, wherein the step of amending, if the digital signature information is determined to represent a valid digital signature, an authoritative electronic record to create a signed authoritative electronic record includes the steps of:
    - prepending at least some signature receipt information to the beginning portion of the signed authoritative electronic record, wherein the signed authoritative electronic record already includes the digital signature information, and wherein the signature receipt information comprises information relating to the signed authoritative electronic record; and
      
      appending at least some identifying information to the end portion of the signed authoritative electronic record, wherein the signed authoritative electronic record already includes the digital signature information, and wherein the identifying information comprises a provable representation of the signature receipt information.
  - 26. The method of claim 25, wherein the signature receipt information includes at least some digital signature information that is generated using a private key of the repository.
  - 27. The method of claim 25, wherein the identifying information that is appended to the end portion of the signed authoritative electronic record is generated using at least some repository information.
  - 28. The method of claim 25, wherein the identifying information that is appended to the end portion of the signed authoritative electronic record is generated using at least some user information.
  - 29. The method of claim 25, wherein the identifying information that is appended to the end portion of the signed authoritative electronic record is generated using at least some remote location information.
  - 30. The method of claim 25, wherein the identifying information that is appended to the end portion of the signed authoritative electronic record includes at least time and/or date information.
  - 31. The method of claim 23, further including the steps of:
    - receiving a request, from a remote location, to review and optionally sign the signed authoritative electronic record stored in the repository, wherein the signed authoritative electronic record includes previously validated digital signature information;
      
      computing at the repository a partially completed message digest of the signed authoritative electronic record, wherein the partially completed message digest is related to a proper subset of the signed authoritative electronic record;
      
      computing at the repository a complement of the proper subset of the signed authoritative electronic record;
      
      transmitting to the remote location the partially completed message digest of the signed authoritative electronic record;
      
      transmitting to the remote location the complement of the proper subset of the signed authoritative electronic record;
      
      allowing the computation of the message digest of the signed authoritative electronic record to be completed at the remote location using the partially completed message digest of the signed authoritative electronic record and the complement of the proper subset of the signed authoritative electronic record;
      
      allowing the complement of the proper subset of the signed authoritative electronic record to be to be displayed at the remote location;
      
      receiving in the repository at least some new digital signature information, wherein the new digital signature information was generated at the remote location using a private key and the message digest of the signed authoritative electronic record;
      
      determining whether the new digital signature information represents a valid digital signature; and
      
      amending, if the new digital signature information is determined to represent a valid digital signature, the signed authoritative electronic record to include the new digital signature information.

32. A computer system for maintaining and updating a unique, authoritative electronic record, the system comprising:
- means for receiving an original electronic record in a repository;
  
  means for generating at least some first receipt information, wherein the first receipt information includes information relating to the original electronic record, and wherein the first receipt information is prevented from being transmitted outside the repository;
  
  means for prepending the first receipt information at a beginning portion of the original electronic record;
  
  means for generating at least some first identifying information, wherein the first identifying information includes a provable representation of the first receipt information;
  
  means for appending the first identifying information at an end portion of the original electronic record;
  
  means for storing the original electronic record with the prepended first receipt information and the appended first identifying information in the repository as a unique, authoritative electronic record;
  
  means for receiving a request to review and optionally sign the authoritative electronic record at a remote location;
  
  means for computing a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to a proper subset of the authoritative electronic record;
  
  means for computing a complement of the proper subset of the authoritative electronic record;
  
  means for transmitting to the remote location the partially completed message digest of the authoritative electronic record;
  
  means for transmitting to the remote location the complement of the proper subset of the authoritative electronic record;
  
  means for completing the computation of the message digest of the authoritative electronic record, at the remote location, using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record;
  
  means for displaying the complement of the proper subset of the authoritative electronic record at the remote location;
  
  means for allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record;
  
  means for receiving the digital signature information in the repository;
  
  means for determining whether the digital signature information represents a valid digital signature;
  
  means for amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information;
  
  means for generating at least some additional receipt information, wherein the additional receipt information includes information relating to the signed authoritative electronic record;
  
  means for prepending the additional receipt information at a beginning portion of the signed authoritative electronic record;
  
  means for generating at least some additional identifying information, wherein the additional identifying information includes a provable representation of the additional receipt information;
  
  means for appending the additional identifying information at an end portion of the signed authoritative electronic record; and
  
  means for storing the signed authoritative electronic record, the additional receipt information, and the additional identifying information, in the repository as the authoritative electronic record, wherein the signed authoritative electronic record includes the digital signature information.

33. A system for obtaining a digital signature from a remote location for a unique, authoritative electronic record, which resides in a repository, without compromising the uniqueness of the authoritative electronic record, the system comprising:
- a software program that is capable of receiving a request to review, and optionally sign, at a remote location a unique, authoritative electronic record stored in a repository, wherein the authoritative electronic record includes at least some first receipt information which has been prepended at a beginning portion of the authoritative electronic record, and at least some first identifying information which has been appended at an end portion of the authoritative electronic record, wherein the first receipt information is prevented from being transmitted outside the repository, and wherein the first identifying information includes a provable representation of the first receipt information;
  
  a software program that is capable of computing at the repository a complement of a proper subset of the authoritative electronic record;
  
  a software program that is capable of computing at the repository a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to the proper subset of the authoritative electronic record;
  
  a software program that is capable of controlling the transmission of the complement of the proper subset of the authoritative electronic record and the partially completed message digest of the authoritative electronic record to the remote location;
  
  a software program that is capable of allowing the computation of the message digest of the authoritative electronic record to be completed at the remote location using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record;
  
  a software program that is capable of allowing the complement of the proper subset of the authoritative electronic record to be displayed at the remote location; and
  
  a software program that is capable of allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record.

34. A system for including a valid digital signature, computed at a remote location, in a unique, authoritative electronic record stored in a repository, without compromising the uniqueness of the authoritative electronic record, wherein the authoritative electronic record includes at least some first receipt information which has been prepended at a beginning portion of the authoritative electronic record, and at least some first identifying information which has been appended at an end portion of the authoritative electronic record, wherein the first receipt information is prevented from being transmitted outside the repository, and wherein the first identifying information includes a provable representation of the first receipt information, the system comprising:
- a software program that is capable of receiving in the repository at least some digital signature information, wherein the digital signature information was generated at a remote location using a private key and a message digest, wherein the message digest was computed using a partially completed message digest of the authoritative electronic record and a complement of a proper subset of the authoritative electronic record, wherein the partially completed message digest is related to the proper subset of the authoritative electronic record;
  
  a software program that is capable of determining whether the digital signature information represents a valid digital signature;
  
  a software program that is capable of amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information; and
  
  a software program that is capable of storing the signed authoritative electronic record in the repository as the authoritative electronic record.

35. A computer program product for obtaining a digital signature on a single authoritative copy of an original electronic record comprising:
- a computer usable medium and computer readable code embodied on the computer usable medium for obtaining a digital signature on a single authoritative copy of an original electronic record, the computer readable code comprising;
  
  computer readable program code devices configured to cause the computer to effect the storing of an original electronic record as an authoritative electronic record in a repository;
  
  computer readable program code devices configured to cause the computer to effect the transmission of a complement of a proper subset of the authoritative electronic record and a partially completed message digest of the authoritative electronic record, wherein the complement of the proper subset of the authoritative electronic record is a provable representation of the authoritative electronic record, and wherein the partially completed message digest of the authoritative electronic record is related to proper subset of the authoritative electronic record;
  
  computer readable program code devices configured to cause the computer to effect the allowance of the generation of at least some digital signature information, wherein the digital signature information is produced using a computed message digest and a private key, wherein the computed message digest is generated using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record;
  
  computer readable program code devices configured to cause the computer to effect the transmission of the digital signature information from the remote location to the repository and the receipt of the digital signature information in the repository;
  
  computer readable program code devices configured to cause the computer to effect the amending, if the received digital signature information is determined to be valid, of the authoritative electronic record in the repository to include at least some of the received digital signature information.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Compass Technology Management, Inc.
Original Assignee
Compass Technology Management, Inc.
Inventors
Hawkins, Charles F., Ainsworth, Scott G., Plaster, Donald J.
Primary Examiner(s)
Moise, Emmanuel L.
Assistant Examiner(s)
ABYANEH, ALI S

Application Number

US10/086,203
Time in Patent Office

1,727 Days
Field of Search

713/155, 713/181, 726/27
US Class Current

713/155
CPC Class Codes

G06Q 20/401   Transaction verification

H04L 2209/56   Financial cryptography, e.g...

H04L 9/3247   involving digital signatures

H04L 9/3297   involving time stamps, e.g....

H04L 9/50   using hash chains, e.g. blo...

Systems and methods for obtaining digital signatures on a single authoritative copy of an original electronic record

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

87 Citations

35 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for obtaining digital signatures on a single authoritative copy of an original electronic record

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

87 Citations

35 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links