Systems and methods for authenticating an electronic message

US 7,797,543 B1
Filed: 09/29/2000
Issued: 09/14/2010
Est. Priority Date: 09/30/1999
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for authenticating an electronic message, comprising the steps performed by a computer of:

receiving, at an authentication server, at a predetermined time, the electronic message from a sender computer that automatically generated the electronic message, the electronic message comprising message data and an electronic mail address of a recipient;

creating a digest of the message data;

appending a temporal stamp and a unique value to the digest;

signing the digest, the temporal stamp, and the unique value with a digital signature;

sending, from the authentication server, to the recipient, the electronic message and an electronic postmark data structure comprising the digest, the temporal stamp, the unique value, and the digital signature to the electronic mail address, the electronic message being sent from the authentication server as data that is separate from the electronic postmark data structure;

authenticating the digest, the temporal stamp, the unique value, and the digital signature;

storing, at the authentication server, a copy of the digest, the temporal stamp, the unique value, and the digital signature in a log file; and

creating a digest of the log file.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods are disclosed for authenticating electronic messages. A data structure is generated by a computer server which allows for the authentication of the contents and computer server identity of a received electronic message and provides a trusted stamp to authenticate when the message was sent. Data which can authenticate the message, the computer server identity, and the time the message was sent is included into a data structure which is called an Electronic PostMark (EPM).

179 Citations

20 Claims

1. A computer-implemented method for authenticating an electronic message, comprising the steps performed by a computer of:
- receiving, at an authentication server, at a predetermined time, the electronic message from a sender computer that automatically generated the electronic message, the electronic message comprising message data and an electronic mail address of a recipient;
  
  creating a digest of the message data;
  
  appending a temporal stamp and a unique value to the digest;
  
  signing the digest, the temporal stamp, and the unique value with a digital signature;
  
  sending, from the authentication server, to the recipient, the electronic message and an electronic postmark data structure comprising the digest, the temporal stamp, the unique value, and the digital signature to the electronic mail address, the electronic message being sent from the authentication server as data that is separate from the electronic postmark data structure;
  
  authenticating the digest, the temporal stamp, the unique value, and the digital signature;
  
  storing, at the authentication server, a copy of the digest, the temporal stamp, the unique value, and the digital signature in a log file; and
  
  creating a digest of the log file.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, where the step of creating a digest comprises generating a one-way hash value from the electronic message.
  - 3. The method of claim 1, wherein the step of creating a temporal stamp comprises using the time and the date which indicate when the electronic message was received.
  - 4. The method of claim 1, wherein the step of sending the digest, the temporal stamp, the unique value, and the digital signature comprises sending the electronic message.
  - 5. The method of claim 4 wherein the step of sending the electronic message comprises attaching at least one legal protection of an official entity.
  - 6. The method of claim 1, further comprising the step of:
    - appending a temporal stamp to the digest of the log file; and
      
      signing the digest of the log file and temporal stamp with a digital signature.
  - 7. The method of claim 1 wherein the step of authenticating further comprises the steps of:
    - verifying that the digital signature was signed by the official entity;
      
      verifying the specific identity of the entity which signed the digital signature; and
      
      authenticating the message data using the digest.

8. A computer-implemented method for authenticating an electronic message, comprising the steps performed by a computer of:
- generating automatically, by a sender client, at a predetermined time, the electronic message, the electronic message comprising message data and an electronic mail address of a recipient;
  
  creating, by the sender client, a hash value from the message data;
  
  sending the hash value and the recipient electronic address from the sender client to an authentication server;
  
  generating an electronic postmark data structure by the authentication server, the electronic postmark data structure including the hash value, item and date information, and a value that uniquely identifies the electronic postmark data structure;
  
  sending, from the authentication server, the electronic message and the electronic postmark data structure to a recipient client, the electronic message being sent from the authentication server as data that is separate from the electronic postmark data structure;
  
  sending the electronic message and the electronic postmark data structure from the recipient client to a recipient at the recipient electronic mail address;
  
  authenticating the electronic postmark data structure at the recipient client;
  
  storing, at the sender client, a copy of the electronic postmark data structure in a log file; and
  
  creating a digest of the log file.
- View Dependent Claims (9, 10, 11, 12, 13)
- - 9. The method of claim 8, wherein the step of generating an electronic postmark data structure includes generating a digital signature for inclusion in the electronic postmark data structure.
  - 10. The method of claim 9, wherein the step of generating a digital signature includes generating a digital key.
  - 11. The method of claim 10, wherein the step of authenticating the electronic postmark data structure includes using the digital key.
  - 12. The method of claim 9, wherein the step of generating a digital key involves including the digital key with the digital signature.
  - 13. The method of claim 8, wherein the step of sending the hash value includes using an authentication server, which is an electronic postmark server.

14. A computer-implemented method for receiving authentication of an electronic message, the authentication being performed by a receiver client, comprising the steps performed by a computer of:
- receiving, at an authentication server, at a predetermined time, a recipient electronic mail address and an electronic postmark data structure for the electronic message sent by a sender computer that automatically generated the electronic message, the electronic postmark data structure including time and date information and a value that uniquely identifies the electronic postmark data structure;
  
  sending, from the authentication server, the electronic message and the electronic postmark data structure to a recipient at the recipient electronic mail address, the electronic message being sent cent from the authentication server as data that is separate from the electronic postmark data structure;
  
  storing, at the authentication server, a copy of the electronic postmark data structure including time and date in a log file; and
  
  creating a digest of the log file.
- View Dependent Claims (15, 16, 17, 18, 19, 20)
- - 15. The method of claim 14, wherein the step of receiving the electronic message involves communicating between the receiver client and the authentication server using TCP/IP.
  - 16. The method of claim 14, wherein the step of receiving the electronic message from an authentication server involves using the authentication server which is an electronic postmark server.
  - 17. The method of claim 14, further comprising the step of:
    - verifying the electronic postmark data structure using a digital key.
  - 18. The method of claim 17, wherein the step of verifying the electronic postmark data structure involves including the digital key with the electronic postmark data structure.
  - 19. The method of claim 14, wherein the step of receiving a recipient electronic address and an electronic postmark data structure further includes the step of receiving the electronic message.
  - 20. The method of claim 14, wherein the step of sending the electronic postmark data structure to a recipient further includes the step of sending the electronic message.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
United States Postal Service (Government of the United States of America)
Original Assignee
United States Postal Service (Government of the United States of America)
Inventors
McGrath, Michael J., Schoen, Isadore, Campbell, Leo J., Cook, Jon L., Chamberlain, Charles R.
Primary Examiner(s)
Brown; Christopher J

Application Number

US09/675,677
Time in Patent Office

3,637 Days
Field of Search

713/170, 713/176, 713/178
US Class Current

713/178
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/60   Digital content management,...

H04L 2463/121   Timestamp cryptographic mec...

H04L 63/08   for authentication of entit...

H04L 63/123   received data contents, e.g...

H04L 9/3247   involving digital signatures

H04L 9/3297   involving time stamps, e.g....

Systems and methods for authenticating an electronic message

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

179 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for authenticating an electronic message

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

179 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links