System and method for generating a digital certificate
First Claim
1. A method for generating a digital certificate, comprising the steps of:
- providing for receiving a new digital record at a service provider computer from a second computer;
providing for assigning a sequence value to the new digital record at the service provider computer, and storing data including digital records and hash values in a repository;
providing for generating a first composite digital value by applying a first function to a first plurality of the data stored in the repository, wherein the first function computes a set of root values for a non-connected binary hash forest;
providing for generating a first digital certificate, wherein the first digital certificate comprises at least the sequence value and the first composite digital value;
providing for adding the new digital record to the repository;
providing for generating a sequence of hash values and storing the sequence of hash values in the repository, by applying a second function to a second plurality of the data stored in the repository, wherein the second plurality of the data includes the new digital record, and wherein the second function computes the non-connected binary hash forest;
providing for generating a composite sequence value;
providing for generating a second composite digital value by applying a third function to a third plurality of the data stored in the repository;
providing for generating an interval digital value by applying a fourth function to a fourth plurality of the data stored in the repository, wherein the interval digital value is based upon the sequence value and the composite sequence value; and
,providing for generating a second digital certificate, wherein the second digital certificate comprises at least the sequence value and the interval digital value.
4 Assignments
0 Petitions
Accused Products
Abstract
A system and method for generating a digital certificate is provided wherein a new digital record is received and is assigned a sequence value. A first composite digital value is generated by applying a first deterministic function to the digital records stored in a repository. The sequence value and first composite digital value are included in a first certificate. After the digital record is added to the repository, a second composite digital value is generated by applying a second deterministic function to the digital records in the repository. This second composite digital value, and a composite sequence value, are published. An interval digital value which is based upon the first and second composite digital values, and the sequence value, are included in a second certificate which thus verifies the authenticity and sequence value of the digital record.
-
Citations
15 Claims
-
1. A method for generating a digital certificate, comprising the steps of:
-
providing for receiving a new digital record at a service provider computer from a second computer; providing for assigning a sequence value to the new digital record at the service provider computer, and storing data including digital records and hash values in a repository; providing for generating a first composite digital value by applying a first function to a first plurality of the data stored in the repository, wherein the first function computes a set of root values for a non-connected binary hash forest; providing for generating a first digital certificate, wherein the first digital certificate comprises at least the sequence value and the first composite digital value; providing for adding the new digital record to the repository; providing for generating a sequence of hash values and storing the sequence of hash values in the repository, by applying a second function to a second plurality of the data stored in the repository, wherein the second plurality of the data includes the new digital record, and wherein the second function computes the non-connected binary hash forest; providing for generating a composite sequence value; providing for generating a second composite digital value by applying a third function to a third plurality of the data stored in the repository; providing for generating an interval digital value by applying a fourth function to a fourth plurality of the data stored in the repository, wherein the interval digital value is based upon the sequence value and the composite sequence value; and
,providing for generating a second digital certificate, wherein the second digital certificate comprises at least the sequence value and the interval digital value. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method for generating a plurality of digital certificates, comprising the steps of:
-
providing for receiving a new digital record at a service provider computer from a second computer; providing for assigning a sequence value to the new digital record at the service provider computer, wherein the sequence value represents the order in which the new digital record was received; providing for generating a first composite digital value by applying a first deterministic function having a hash function component to all digital records stored in a repository, wherein the new digital record is not stored in the service provider computer repository when the first deterministic function is applied, and wherein the first deterministic function computes at least one root hash value for a non-connected binary hash forest; providing for generating a first digital certificate, wherein the first digital certificate comprises the sequence value, the first composite digital value, and the new digital record; providing for applying a digital signature to the first digital certificate, wherein the digital signature is applied using an asymmetric cryptographic algorithm; providing for adding the new digital record to the repository, and applying a second deterministic function having a hash function component to all of the digital records stored in the repository; providing for generating a second composite digital value by applying a third deterministic function having a hash function component to all of the digital records stored in the repository; providing for generating a composite sequence value, wherein the composite sequence value is equal to the number of digital records stored in the service provider computer repository when the second composite digital value is generated; providing for generating an interval digital value, wherein the interval digital value is generated by the application of a fourth deterministic function having a hash function component to a plurality of the data stored in the repository; and
,providing for generating a second digital certificate, wherein the second digital certificate comprises at least the sequence value, the new digital record, the composite sequence value, and the interval digital value.
-
Specification