Cryptographic module for secure processing of value-bearing items

US 7,490,065 B1
Filed: 10/16/2000
Issued: 02/10/2009
Est. Priority Date: 10/18/1999
Status: Expired due to Term

First Claim

Patent Images

1. A cryptographic system for securing data on a computer network comprising:

a plurality of users coupled to the computer network; and

a plurality of cryptographic devices, each of the plurality of cryptographic devices remote from the plurality of users, and each of the plurality of cryptographic devices comprising;

a processor programmed to authenticate the plurality of remote users on the computer network for secure processing of a value bearing item (VBI);

a memory for storing security device transaction data for ensuring authenticity of a user, wherein the security device transaction data is related to the one of the plurality of users;

a cryptographic engine for cryptographically protecting data;

an interface for communicating with the computer network, anda module for processing value for the value bearing item,wherein each of the plurality of cryptographic devices is capable of authenticating any of the plurality of remote users,wherein each of the plurality of cryptographic devices is capable of processing a VBI printing request from any of the plurality of remote users, andwherein each of the plurality of cryptographic devices is capable of generating indicia data for transmitting to any of the plurality of remote users.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An on-line value bearing item (VBI) printing system that includes one or more cryptographic modules and a central database is disclosed. The cryptographic modules are capable of implementing the USPS Information Based Indicia Program Postal Security Device Performance Criteria and other required VBI standards. The modules encipher the information stored in the central database for all of the on-line VBI system customers and are capable of preventing access to the database by unauthorized users. Additionally, the cryptographic module is capable of preventing unauthorized and undetected modification, including the unauthorized modification, substitution, insertion, and deletion of VBI related data and cryptographically critical security parameters.

Citations

71 Claims

1. A cryptographic system for securing data on a computer network comprising:
- a plurality of users coupled to the computer network; and
  
  a plurality of cryptographic devices, each of the plurality of cryptographic devices remote from the plurality of users, and each of the plurality of cryptographic devices comprising;
  
  a processor programmed to authenticate the plurality of remote users on the computer network for secure processing of a value bearing item (VBI);
  
  a memory for storing security device transaction data for ensuring authenticity of a user, wherein the security device transaction data is related to the one of the plurality of users;
  
  a cryptographic engine for cryptographically protecting data;
  
  an interface for communicating with the computer network, anda module for processing value for the value bearing item,wherein each of the plurality of cryptographic devices is capable of authenticating any of the plurality of remote users,wherein each of the plurality of cryptographic devices is capable of processing a VBI printing request from any of the plurality of remote users, andwherein each of the plurality of cryptographic devices is capable of generating indicia data for transmitting to any of the plurality of remote users.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40)
- - 2. The cryptographic system of claim 1, wherein the processor is programmed to verify that the identified user is authorized to assume a role and perform a corresponding operation.
  - 3. The cryptographic system of claim 2, wherein the assumed role is a key custodian role to take possession of shares of keys.
  - 4. The cryptographic system of claim 2, wherein the assumed role is an administrator role to manages a user access control database.
  - 5. The cryptographic system of claim 2, wherein the assumed role is a provider role to authorize increasing credit for a user account.
  - 6. The cryptographic system of claim 2, wherein the assumed role is a user role to perform expected IBIP postal meter operations.
  - 7. The cryptographic system of claim 2, wherein the processor is programmed to include a state machine for determining a state corresponding to availability of commands in conjunction with the roles.
  - 8. The cryptographic system of claim 7, wherein the state machine comprises of an uninitialized state, an initialized state, an operational state, an administrative state, an exporting shares state, an importing shares state, and an error state.
  - 9. The cryptographic system of claim 8, wherein the operational state comprises means for access control, means for session management, and means for key management, and means for audit support.
  - 10. The cryptographic system of claim 2, wherein the processor is programmed for supporting multiple concurrent users and maintaining a separation of roles and operations performed by each user.
  - 11. The cryptographic system of claim 1 further comprising a stored secret for cryptographically protecting data.
  - 12. The cryptographic system of claim 1, wherein the secret is a password.
  - 13. The cryptographic system of claim 1, wherein the secret is a public/private key pair.
  - 14. The cryptographic system of claim 1, wherein the processor is stateless.
  - 15. The cryptographic system of claim 1, wherein the processor is programmed to prevent unauthorized and undetected modification of data.
  - 16. The cryptographic system of claim 1, wherein the processor is programmed for preventing unauthorized disclosure of data.
  - 17. The cryptographic system of claim 1, wherein the processor is programmed to ensure proper operation of cryptographic security and VBI related meter functions.
  - 18. The cryptographic system of claim 1, wherein the processor is programmed for providing indications of an operational state of a VBI meter.
  - 19. The cryptographic system of claim 1, wherein the processor stores information about a number of last transactions in an internal register and compares the information saved in the register with the information saved in a memory before loading a new transaction data.
  - 20. The cryptographic system of claim 19, wherein the memory includes data for creating indicium, account maintenance, and revenue protection.
  - 21. The cryptographic system of claim 1, wherein the value bearing item is a postage value including a postal indicium.
  - 22. The cryptographic system of claim 21, wherein the postal indicium comprises a digital signature.
  - 23. The cryptographic system of claim 21, wherein the postal indicium comprises a postage amount.
  - 24. The cryptographic system of claim 21, wherein the postal indicium comprises an ascending register of used postage and descending register of available postage.
  - 25. The cryptographic system of claim 1, wherein the value bearing item is a ticket.
  - 26. The cryptographic system of claim 1, wherein the value bearing item includes a bar code.
  - 27. The cryptographic system of claim 1, wherein the value bearing item is a coupon.
  - 28. The cryptographic system of claim 1, wherein the value bearing item is currency.
  - 29. The cryptographic system of claim 1, wherein the value bearing item is a voucher.
  - 30. The cryptographic system of claim 1, wherein the value bearing item is a traveler'"'"'s check.
  - 31. The cryptographic system of claim 1, wherein each security device transaction data includes an ascending register value, a descending register value, a respective cryptographic device ID, an indicium key certificate serial number, a licensing ZIP code, a key token for an indicium signing key, user secrets, a key for encrypting user secrets, data and time of last transaction, last challenge received from a respective client subsystem, an operational state of the respective device, expiration dates for keys, and a passphrase repetition list.
  - 32. The cryptographic system of claim 1, wherein the processor is capable of sharing a secret with a plurality of other cryptographic devices.
  - 33. The cryptographic system of claim 1, wherein the processor and the cryptographic engine generate a master key set (MKS).
  - 34. The cryptographic system of claim 33, wherein the MKS includes a Master Encryption Key (MEK) used to encrypt keys when stored outside the device.
  - 35. The cryptographic system of claim 34, wherein the MKS further includes a Master Authentication Key (MAK) used to compute a DES MAC for signing keys when stored outside of the device.
  - 36. The cryptographic system of claim 33, wherein the MKS is exported to other cryptographic devices.
  - 37. The cryptographic system of claim 1, further comprising a memory including a user profile for a subset of the plurality of users.
  - 38. The cryptographic system of claim 37, wherein the user profile includes username, user role, password, logon failure count, logon failure limit, logon time-out limit, account expiration, password expiration, and password period.
  - 39. The cryptographic system of claim 1, wherein the cryptographic engine is programmed to perform one or more of Rivest, Shamir and Adleman (RSA) public key encryption, DES, Triple-DES, DSA signature, SHA-1, and Pseudo-random number generation algorithms.
  - 40. The cryptographic system of claim 1, wherein at least one of the plurality of users is an enterprise account.

41. A method for securing data on a computer network including a plurality of users and a plurality of cryptographic devices remote from the plurality of users, the method comprising the steps of:
- authenticating any one of the plurality of remote users by any one of the plurality of cryptographic devices;
  
  authorizing any one of the plurality of remote users for secure processing of a value bearing item by any one of the plurality of cryptographic devices;
  
  processing value for the value bearing item by any one of the plurality of cryptographic devices; and
  
  storing a security device transaction data in a memory for ensuring authenticity and authority of one of the plurality of users, wherein the security device transaction data is processed by any one of the plurality of cryptographic devices.
- View Dependent Claims (42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71)
- - 42. The method of claim 41 further comprising the step of printing the value bearing item.
  - 43. The method of claim 41 further comprising the step of storing a plurality of security device transaction data in a database wherein, each transaction data is related to one of the plurality of users.
  - 44. The method of claim 43 further comprising the step of loading a security device transaction data related to the cryptographic device when the user requests to operate on a value bearing item.
  - 45. The method of claim 41 further comprising the steps of authenticating the identity of each user and verifying that the identified user is authorized to assume a role and to perform a corresponding operation.
  - 46. The method of claim 45, wherein the assumed role is an administrator role to manage a user access control.
  - 47. The method of claim 45, wherein the assumed role is a provider role to authorize increasing credit for a user account.
  - 48. The method of claim 45, wherein the assumed role is a user role to perform expected IBIP postal meter operations.
  - 49. The method of claim 45, wherein the assumed role is a security officer role for initiating key management function.
  - 50. The method of claim 45, wherein the assumed role is a key custodian role to take possession of shares of keys.
  - 51. The method of claim 45, wherein the assumed role is an auditor role to manage audit logs.
  - 52. The method of claim 41, further comprising the step of printing a postage value including a postal indicium.
  - 53. The method of claim 52, wherein the postal indicium comprises a digital signature.
  - 54. The method of claim 52, wherein the postal indicium comprises a postage amount.
  - 55. The method of claim 52, wherein the postal indicium comprises an ascending register of used postage and descending register of available postage.
  - 56. The method of claim 41, further comprising the step of printing a ticket.
  - 57. The method of claim 41, further comprising the step of printing a bar code.
  - 58. The method of claim 41, further comprising the step of printing a coupon.
  - 59. The method of claim 41, further comprising the step of printing a currency.
  - 60. The method of claim 41, further comprising the step of printing a traveler'"'"'s check.
  - 61. The method of claim 41, further comprising the step of printing a voucher.
  - 62. The method of claim 41, further comprising the step of storing a user profile for a subset of the plurality of users.
  - 63. The method of claim 62, wherein the user profile includes username, user role, password, logon failure count, Logon failure limit, logon time-out limit, account expiration, password expiration, and password period.
  - 64. The method of claim 41, further comprising the step of performing one or more of Rivest, Shamir and Adleman (RSA) public key encryption, DES, Triple-DES, DSA signature, SHA-1, and Pseudo-random number generation algorithms by each of the cryptographic devices.
  - 65. The method of claim 41, further comprising the steps of supporting multiple concurrent operators and maintaining a separation of roles and operations performed by each operator.
  - 66. The method of claim 41, further comprising the steps of:
    - storing information about a number of last transactions in a respective internal register of each of the one or more cryptographic devices;
      
      storing a table including the information about a last transaction in the database; and
      
      comparing the information saved in the respective device with the respective information saved in the database.
  - 67. The method of claim 66, further comprising the step of loading a new transaction data if the respective information stored in the device compares with the respective information stored in the database.
  - 68. The method of claim 41, wherein the secret is a password.
  - 69. The method of claim 41, wherein the secret is a public/private key pair.
  - 70. The method of claim 41, wherein at least one of the plurality of users is an enterprise account.
  - 71. The method of claim 41, wherein the security device transaction data is related to user authorization operations, user account operations, and VBI creation operations, and wherein each of the user authorization operations, user account operations, and VBI creation operations can be performed by any one of the plurality of cryptographic devices.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Auctane LLC (Stamps.com, Inc.)
Original Assignee
Stamps.com, Inc.
Inventors
Ogg, Craig L., Chow, William W.
Primary Examiner(s)
Elisca; Pierre E

Application Number

US09/688,456
Time in Patent Office

3,039 Days
Field of Search

705/50, 705/60, 705/61, 705/62, 705/67, 705/51, 713/200, 713/201, 382/32, 382/28
US Class Current

705/50
CPC Class Codes

G06Q 20/382   insuring higher security of...

G06Q 20/3829   involving key management

G06Q 20/401   Transaction verification

G07B 17/0008   Communication details outsi...

G07B 17/00733   Cryptography or similar spe...

G07B 2017/00056   Client-server

G07B 2017/00064   Virtual meter, online stamp...

G07B 2017/00145   via the Internet

G07B 2017/00201   Open franking system, i.e. ...

G07B 2017/00887   using look-up tables, also ...

G07B 2017/00967   PSD [Postal Security Device...

Cryptographic module for secure processing of value-bearing items

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

Citations

71 Claims

Specification

Solutions

Use Cases

Quick Links

Cryptographic module for secure processing of value-bearing items

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

71 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links