Systems and methods for obtaining digital signatures on a single authoritative copy of an original electronic record
First Claim
Patent Images
1. A method in a computer system for maintaining and digitally signing a unique, authoritative electronic record, the method comprising the steps of:
- receiving an original electronic record in a repository;
generating at least some first receipt information, wherein the first receipt information includes information relating to the original electronic record, and wherein the first receipt information is prevented from being transmitted outside the repository;
prepending the first receipt information at a beginning portion of the original electronic record;
generating at least some first identifying information, wherein the first identifying information includes a provable representation of the first receipt information;
appending the first identifying information at an end portion of the original electronic record;
storing the original electronic record with the prepended first receipt information and the appended first identifying information in the repository as a unique, authoritative electronic record;
receiving a request to review and optionally sign the authoritative electronic record at a remote location;
computing a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to a proper subset of the authoritative electronic record;
computing a complement of the proper subset of the authoritative electronic record;
transmitting to the remote location the partially completed message digest of the authoritative electronic record;
transmitting to the remote location the complement of the proper subset of the authoritative electronic record;
completing the computation of the message digest of the authoritative electronic record, at the remote location, using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record;
displaying the complement of the proper subset of the authoritative electronic record at the remote location;
allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record;
returning the digital signature information to the repository;
receiving the digital signature information in the repository;
determining whether the digital signature information represents a valid digital signature;
amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information;
generating at least some additional receipt information, wherein the additional receipt information includes information relating to the signed authoritative electronic record;
prepending the additional receipt information at a beginning portion of the signed authoritative electronic record;
generating at least some additional identifying information, wherein the additional identifying information includes a provable representation of the additional receipt information;
appending the additional identifying information at an end portion of the signed authoritative electronic record; and
storing the signed authoritative electronic record, the additional receipt information, and the additional identifying information, in the repository as the authoritative electronic record, wherein the signed authoritative electronic record includes the digital signature information.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention includes systems and methods for maintaining control of an electronic record, which may have transferable value, wherein a user may add digital signature information to a single unique authoritative copy of the electronic record held in a repository without compromising the uniqueness of the authoritative electronic record. Provided the digital signature information is valid, an authoritative electronic record may be amended to include multiple digital signatures, while continuing to be a single unique authoritative electronic record.
87 Citations
35 Claims
-
1. A method in a computer system for maintaining and digitally signing a unique, authoritative electronic record, the method comprising the steps of:
-
receiving an original electronic record in a repository; generating at least some first receipt information, wherein the first receipt information includes information relating to the original electronic record, and wherein the first receipt information is prevented from being transmitted outside the repository; prepending the first receipt information at a beginning portion of the original electronic record; generating at least some first identifying information, wherein the first identifying information includes a provable representation of the first receipt information; appending the first identifying information at an end portion of the original electronic record; storing the original electronic record with the prepended first receipt information and the appended first identifying information in the repository as a unique, authoritative electronic record; receiving a request to review and optionally sign the authoritative electronic record at a remote location; computing a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to a proper subset of the authoritative electronic record; computing a complement of the proper subset of the authoritative electronic record; transmitting to the remote location the partially completed message digest of the authoritative electronic record; transmitting to the remote location the complement of the proper subset of the authoritative electronic record; completing the computation of the message digest of the authoritative electronic record, at the remote location, using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record; displaying the complement of the proper subset of the authoritative electronic record at the remote location; allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record; returning the digital signature information to the repository; receiving the digital signature information in the repository; determining whether the digital signature information represents a valid digital signature; amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information; generating at least some additional receipt information, wherein the additional receipt information includes information relating to the signed authoritative electronic record; prepending the additional receipt information at a beginning portion of the signed authoritative electronic record; generating at least some additional identifying information, wherein the additional identifying information includes a provable representation of the additional receipt information; appending the additional identifying information at an end portion of the signed authoritative electronic record; and storing the signed authoritative electronic record, the additional receipt information, and the additional identifying information, in the repository as the authoritative electronic record, wherein the signed authoritative electronic record includes the digital signature information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method in a computer system for maintaining and digitally signing a unique, authoritative electronic record, the method comprising the steps of:
-
providing for the receipt of an original electronic record in a repository; providing for the generation of at least some first receipt information, wherein the first receipt information includes information relating to the original electronic record, and wherein the first receipt information is prevented from being transmitted outside the repository; providing for the prepending of the first receipt information at a beginning portion of the original electronic record; providing for the generation of at least some first identifying information, wherein the first identifying information includes a provable representation of the first receipt information; providing for the appending of the first identifying information at an end portion of the original electronic record; providing for the storage of the original electronic record with the prepended first receipt information and the appended first identifying information in the repository as a unique, authoritative electronic record; providing for the receipt of a request to review and optionally sign the authoritative electronic record at a remote location; providing for the computation of a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to a proper subset of the authoritative electronic record; providing for the computation of a complement of the proper subset of the authoritative electronic record; providing for the transmission of the partially completed message digest of the authoritative electronic record to the remote location; providing for the transmission of the complement of the proper subset of the authoritative electronic record to the remote location; providing for the completion of the computation of the message digest of the authoritative electronic record, at the remote location, using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record; providing for the display of the complement of the proper subset of the authoritative electronic record at the remote location; providing for the allowance of the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record; providing for the receipt of the digital signature information in the repository; providing for the determination of whether the digital signature information represents a valid digital signature; providing for the amendment, if the digital signature information is determined to represent a valid digital signature, of the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information; providing for the generation of at least some additional receipt information, wherein the additional receipt information includes information relating to the signed authoritative electronic record; providing for the prepending of the additional receipt information at a beginning portion of the signed authoritative electronic record; providing for the generation of at least some additional identifying information, wherein the additional identifying information includes a provable representation of the additional receipt information; providing for the appending of the additional identifying information at an end portion of the signed authoritative electronic record; providing for the storing of the signed authoritative electronic record additional receipt information, and the additional identifying information, in the repository as the authoritative electronic record, wherein the signed authoritative electronic record includes the digital signature information.
-
-
13. A method for displaying, at a remote location, a provable representation of a unique, authoritative electronic record stored in a repository, without compromising the uniqueness of the authoritative electronic record, the method comprising the steps of:
-
receiving a request to review and optionally sign at a remote location a unique, authoritative electronic record stored in a repository, wherein the authoritative electronic record includes at least some first receipt information, which has been prepended at a beginning portion of the authoritative electronic record, and at least some first identifying information, which has been appended at an end portion of the authoritative electronic record, wherein the first receipt information is prevented from being transmitted outside the repository, and wherein the first identifying information includes a provable representation of the first receipt information; computing at the repository a complement of a proper subset of the authoritative electronic record, wherein the complement of the proper subset of the authoritative electronic record is a provable representation of the authoritative electronic record; transmitting the complement of the proper subset of the authoritative electronic record to the remote location; and allowing the complement of the proper subset of the authoritative electronic record to be displayed at the remote location. - View Dependent Claims (14, 15, 16)
-
-
17. A method for generating a digital signature at a remote location for a unique, authoritative electronic record which resides in a repository, without compromising the uniqueness of the authoritative electronic record, the method comprising the steps of:
-
computing at the repository a complement of a proper subset of the authoritative electronic record; transmitting to the remote location the complement of the proper subset of the authoritative electronic record; computing at the repository a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to the proper subset of the authoritative electronic record; transmitting to the remote location the partially completed message digest of the authoritative electronic record; allowing the computation of the message digest of the authoritative electronic record to be completed at the remote location using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record; and allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record. - View Dependent Claims (18, 19, 20, 21, 22)
-
-
23. A method for including a valid digital signature, computed at a remote location, in a unique, authoritative electronic record stored in a repository, without compromising the uniqueness of the authoritative electronic record, wherein the authoritative electronic record includes at least some first receipt information which has been prepended at a beginning portion of the authoritative electronic record, and at least some first identifying information which has been appended at an end portion of the authoritative electronic record, wherein the first receipt information is prevented from being transmitted outside the repository, and wherein the first identifying information includes a provable representation of the first receipt information, the method comprising the steps of:
-
receiving in the repository at least some digital signature information, wherein the digital signature information was generated at a remote location using a private key and a message digest, wherein the message digest was computed using a partially completed message digest of the authoritative electronic record and a complement of a proper subset of the authoritative electronic record, wherein the partially completed message digest is related to the proper subset of the authoritative electronic record; determining whether the digital signature information represents a valid digital signature; amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information; and storing the signed authoritative electronic record in the repository as the authoritative electronic record. - View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31)
-
-
32. A computer system for maintaining and updating a unique, authoritative electronic record, the system comprising:
-
means for receiving an original electronic record in a repository; means for generating at least some first receipt information, wherein the first receipt information includes information relating to the original electronic record, and wherein the first receipt information is prevented from being transmitted outside the repository; means for prepending the first receipt information at a beginning portion of the original electronic record; means for generating at least some first identifying information, wherein the first identifying information includes a provable representation of the first receipt information; means for appending the first identifying information at an end portion of the original electronic record; means for storing the original electronic record with the prepended first receipt information and the appended first identifying information in the repository as a unique, authoritative electronic record; means for receiving a request to review and optionally sign the authoritative electronic record at a remote location; means for computing a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to a proper subset of the authoritative electronic record; means for computing a complement of the proper subset of the authoritative electronic record; means for transmitting to the remote location the partially completed message digest of the authoritative electronic record; means for transmitting to the remote location the complement of the proper subset of the authoritative electronic record; means for completing the computation of the message digest of the authoritative electronic record, at the remote location, using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record; means for displaying the complement of the proper subset of the authoritative electronic record at the remote location; means for allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record; means for receiving the digital signature information in the repository; means for determining whether the digital signature information represents a valid digital signature; means for amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information; means for generating at least some additional receipt information, wherein the additional receipt information includes information relating to the signed authoritative electronic record; means for prepending the additional receipt information at a beginning portion of the signed authoritative electronic record; means for generating at least some additional identifying information, wherein the additional identifying information includes a provable representation of the additional receipt information; means for appending the additional identifying information at an end portion of the signed authoritative electronic record; and means for storing the signed authoritative electronic record, the additional receipt information, and the additional identifying information, in the repository as the authoritative electronic record, wherein the signed authoritative electronic record includes the digital signature information.
-
-
33. A system for obtaining a digital signature from a remote location for a unique, authoritative electronic record, which resides in a repository, without compromising the uniqueness of the authoritative electronic record, the system comprising:
-
a software program that is capable of receiving a request to review, and optionally sign, at a remote location a unique, authoritative electronic record stored in a repository, wherein the authoritative electronic record includes at least some first receipt information which has been prepended at a beginning portion of the authoritative electronic record, and at least some first identifying information which has been appended at an end portion of the authoritative electronic record, wherein the first receipt information is prevented from being transmitted outside the repository, and wherein the first identifying information includes a provable representation of the first receipt information; a software program that is capable of computing at the repository a complement of a proper subset of the authoritative electronic record; a software program that is capable of computing at the repository a partially completed message digest of the authoritative electronic record, wherein the partially completed message digest is related to the proper subset of the authoritative electronic record; a software program that is capable of controlling the transmission of the complement of the proper subset of the authoritative electronic record and the partially completed message digest of the authoritative electronic record to the remote location; a software program that is capable of allowing the computation of the message digest of the authoritative electronic record to be completed at the remote location using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record; a software program that is capable of allowing the complement of the proper subset of the authoritative electronic record to be displayed at the remote location; and a software program that is capable of allowing the generation of at least some digital signature information at the remote location, wherein the digital signature information is generated using a private key and the message digest of the authoritative electronic record.
-
-
34. A system for including a valid digital signature, computed at a remote location, in a unique, authoritative electronic record stored in a repository, without compromising the uniqueness of the authoritative electronic record, wherein the authoritative electronic record includes at least some first receipt information which has been prepended at a beginning portion of the authoritative electronic record, and at least some first identifying information which has been appended at an end portion of the authoritative electronic record, wherein the first receipt information is prevented from being transmitted outside the repository, and wherein the first identifying information includes a provable representation of the first receipt information, the system comprising:
-
a software program that is capable of receiving in the repository at least some digital signature information, wherein the digital signature information was generated at a remote location using a private key and a message digest, wherein the message digest was computed using a partially completed message digest of the authoritative electronic record and a complement of a proper subset of the authoritative electronic record, wherein the partially completed message digest is related to the proper subset of the authoritative electronic record; a software program that is capable of determining whether the digital signature information represents a valid digital signature; a software program that is capable of amending, if the digital signature information is determined to represent a valid digital signature, the authoritative electronic record to create a signed authoritative electronic record, wherein the signed authoritative electronic record comprises the authoritative electronic record and the digital signature information; and a software program that is capable of storing the signed authoritative electronic record in the repository as the authoritative electronic record.
-
-
35. A computer program product for obtaining a digital signature on a single authoritative copy of an original electronic record comprising:
-
a computer usable medium and computer readable code embodied on the computer usable medium for obtaining a digital signature on a single authoritative copy of an original electronic record, the computer readable code comprising; computer readable program code devices configured to cause the computer to effect the storing of an original electronic record as an authoritative electronic record in a repository; computer readable program code devices configured to cause the computer to effect the transmission of a complement of a proper subset of the authoritative electronic record and a partially completed message digest of the authoritative electronic record, wherein the complement of the proper subset of the authoritative electronic record is a provable representation of the authoritative electronic record, and wherein the partially completed message digest of the authoritative electronic record is related to proper subset of the authoritative electronic record; computer readable program code devices configured to cause the computer to effect the allowance of the generation of at least some digital signature information, wherein the digital signature information is produced using a computed message digest and a private key, wherein the computed message digest is generated using the partially completed message digest of the authoritative electronic record and the complement of the proper subset of the authoritative electronic record; computer readable program code devices configured to cause the computer to effect the transmission of the digital signature information from the remote location to the repository and the receipt of the digital signature information in the repository; computer readable program code devices configured to cause the computer to effect the amending, if the received digital signature information is determined to be valid, of the authoritative electronic record in the repository to include at least some of the received digital signature information.
-
Specification