Secure network-based system for the distributed printing of documents
First Claim
Patent Images
1. A method of using a printer to print a document stored on a server, the server being connected to a network, the method comprising:
- placing an order for the document to be distributed to the printer;
establishing a connection between the server and the printer to which the document will be distributed, after the order is placed;
using a smart card to give an identity to the printer within a predetermined amount of time of the establishing of the connection, the printer not having the identity until the identity is given, wherein the identity includes at least one cryptographic key contained on the smart card; and
wherein the server times out, the server closes the connection established with the printer, and the server cancels the placed order if the smart card fails to give the identity to the printer within the predetermined amount of time and if the smart card gives the identity to the printer within the predetermined amount of time, the order for the document is further processed by;
using the printer and the at least one cryptographic key to establish the printer identity with the server in response to the smart card giving the identity to the printer within the predetermined amount of time, wherein the server encrypts the document and transmits the encrypted document to the printer via the network;
using the printer to receive the encrypted document from the network;
using the printer to decrypt the encrypted document; and
using the printer to print the decrypted document.
2 Assignments
0 Petitions
Accused Products
Abstract
An Internet-based printing system allows for the distribution and printing of documents and images in a secure, controlled manner. The system includes a secure printer that receives, decrypts and prints documents supplied by a document server. Security of the system is realized by an aggregate of a secure communication protocol, smart card technology and the computational infeasibility of breaking a public key cryptographic system. The system may be used for electronic commerce, in which copies are made on a “pay-per-print” basis.
51 Citations
29 Claims
-
1. A method of using a printer to print a document stored on a server, the server being connected to a network, the method comprising:
-
placing an order for the document to be distributed to the printer; establishing a connection between the server and the printer to which the document will be distributed, after the order is placed; using a smart card to give an identity to the printer within a predetermined amount of time of the establishing of the connection, the printer not having the identity until the identity is given, wherein the identity includes at least one cryptographic key contained on the smart card; and wherein the server times out, the server closes the connection established with the printer, and the server cancels the placed order if the smart card fails to give the identity to the printer within the predetermined amount of time and if the smart card gives the identity to the printer within the predetermined amount of time, the order for the document is further processed by; using the printer and the at least one cryptographic key to establish the printer identity with the server in response to the smart card giving the identity to the printer within the predetermined amount of time, wherein the server encrypts the document and transmits the encrypted document to the printer via the network; using the printer to receive the encrypted document from the network; using the printer to decrypt the encrypted document; and using the printer to print the decrypted document. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 26)
-
-
11. A method of using a printer to distribute a document stored on a server, the method comprising:
-
placing an order for the document to be distributed to the printer; establishing a connection between the server and the printer to which the document will be distributed, after the order is placed; using the printer and at least one cryptographic key to establish a printer identity with the server within a predetermined time of the establishing of the connection, wherein the server times out, the server closes the connection established with the printer, and the server cancels the placed order if the printer fails to give the printer identity to the server within the predetermined amount of time and if the printer gives the printer identity to the server within the predetermined amount of time the server encrypts the document and transmits the encrypted document to the printer via a network and the order for the document is further processed by; using the printer to receive the encrypted document from the server; using the printer to decrypt the encrypted document; using the printer to print the decrypted document; and using the printer to indicate status of the printing so that the server can charge for copies that were actually printed, wherein the printer sends back a status acknowledgement to the server. - View Dependent Claims (27)
-
-
12. A system for the distributed printing of documents over a computer network, the system comprising:
-
a server connected to the network, the documents being stored on the server, wherein the server is operable to establish a connection with a printer; a client machine connected to the network for placing a document order and identifying the printer to which the documents will be distributed to allow the server to establish a connection with the printer after the document order is placed; the printer connected to the network, the printer being programmed to receive at least one cryptographic key after the document order has been placed and use said at least one key to establish a printer identity, and then to establish the printer identity with the server via the network, within a predetermined amount of time of the server establishing the connection with the printer; the server being programmed to encrypt at least one of the documents and to send the at least one encrypted document to the printer via a network after the document order has been placed and the printer identity has been established, wherein the server times out, the server closes the connection established with the printer, and the server cancels the document order if the printer fails to give the printer identity to the server within the predetermined amount of time and if the printer gives the printer identity to the server within the predetermined amount of time, the server does not time out, does not close the connection established with the printer, and does not cancel the document order; the printer being further programmed to retrieve the at least one encrypted document, decrypt the retrieved at least one encrypted document, and print the decrypted document according to the document order. - View Dependent Claims (13, 14, 15, 16, 17, 28)
-
-
18. A network printer comprising:
-
means for establishing a connection with a remote site over a network, wherein the remote site includes a server storing a document, and wherein the connection is established after an order for the document is placed; means for reading at least one decryption key from a smart card; means for using the at least one decryption key to establish a printer identity, wherein the printer identity includes at least one cryptographic key contained on the smart card; means for communicating the printer identity to the server within a predetermined amount of time of establishing the connection with the remote site, wherein the server times out, the server cancels the order for the document, and the server closes the connection established with the network printer if the network printer fails to give the printer identity to the server within the predetermined amount of time, and if the printer gives the printer identity to the server within the predetermined amount of time the server does not time out, does not cancel the order for the document, and does not close the connection established with the network printer to allow the server to encrypt the document and transmit the encrypted document to the network printer; means for receiving an encrypted token from the remote site; means for using a decryption key to decrypt the token; and means for sending the decrypted token to the remote site. - View Dependent Claims (24)
-
-
19. A network printer that can communicate with a document server, the printer comprising:
-
a smart card reader; a network interface for receiving a print order for a document and for establishing a network connection with the document server after the print order is received, wherein the document server stores encrypted documents; a processor; and memory for storing a program that, when executed, causes the processor to use the smart card reader to read a cryptographic key from a smart card, use the cryptographic key to create an identity for the printer; use the network interface to establish the identity with the document server within a predetermined amount of time of establishing the network connection with the document server, wherein the document server times out, the document server closes the connection established with the network printer, and the document server cancels the print order for the document if the identity is not established within the predetermined amount of time and if the identity is established within the predetermined amount of time, the processor is further configured to, use the network interface to receive the document, which has been encrypted by the document server and transmitted to the network printer via a network, decrypt the encrypted document, and print the decrypted document. - View Dependent Claims (20, 21, 22, 23, 29)
-
-
25. A server storing a document comprising:
-
means for receiving a print order for the document; means for establishing a connection with a remote network printer after receiving the print order; means for receiving a message identifying the remote network printer; means for receiving a cryptographic key from the remote network printer within a predetermined amount of time of establishing the connection with the remote network printer; means for encrypting the document using the cryptographic key received from the network printer; means for closing the connection established with the remote network printer and canceling the print order for the document if the server fails to receive the cryptographic key from the remote network printer within the predetermined amount of time, and if the server receives the cryptographic key from the remote network printer within the predetermined amount of time, not closing the connection established with the remote network printer and not canceling the print order for the document; means for encrypting a token with the key; means for sending the encrypted token to the remote network printer; means for determining whether the remote network printer was able to decrypt the token; and means for sending encrypted information directly to the remote network printer via a network if the remote network printer was able to decrypt the token.
-
Specification