System and method for secure electronic data delivery

US 8,033,459 B2
Filed: 08/03/2006
Issued: 10/11/2011
Est. Priority Date: 08/08/2005
Status: Active Grant

First Claim

Patent Images

1. A method for secure delivery of electronic data from an issuer to a recipient, the method comprising:

selecting data belonging to the issuer to be delivered;

encrypting the data;

packaging the encrypted data into an object comprising a self contained computer application such that the object includes the encrypted data packaged therein;

registering the object with a transaction archive on a remote secure server so as to be arranged for tracking the object;

transmitting the object including the encrypted data packaged therein to the recipient;

registering receipt by the recipient of the object including the encrypted data packaged therein with the transaction archive;

using the transaction archive to generate an access code in response to registration of the receipt of the object including the encrypted data packaged therein by the recipient;

transmitting the access code from the transaction archive to the object received by the recipient such that the self contained computer application of the object is arranged to decrypt the encrypted data packaged therein upon receipt of the access code from the transaction archive; and

displaying the data previously delivered to the recipient in encrypted form packaged with the object only upon decryption of the encrypted data by the self contained computer application of the object using the access code from the transaction archive.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Electronic data is securely delivered from an issuer to a recipient, in the form of an encrypted object. Data belonging to the issuer to be delivered is first selected and then encrypted into the object. The object is registered with a transaction archive for tracking the object prior to transmitting the object to the recipient. Upon receipt, the recipient is prompted for an access code. Attempts to enter the access code by the recipient are registered with the transaction archive. The data is displayed to the recipient only after a correct access code has been entered and only after an attempt to enter the access code by the recipient is registered with the transaction archive.

11 Citations

View as Search Results

18 Claims

1. A method for secure delivery of electronic data from an issuer to a recipient, the method comprising:
- selecting data belonging to the issuer to be delivered;
  
  encrypting the data;
  
  packaging the encrypted data into an object comprising a self contained computer application such that the object includes the encrypted data packaged therein;
  
  registering the object with a transaction archive on a remote secure server so as to be arranged for tracking the object;
  
  transmitting the object including the encrypted data packaged therein to the recipient;
  
  registering receipt by the recipient of the object including the encrypted data packaged therein with the transaction archive;
  
  using the transaction archive to generate an access code in response to registration of the receipt of the object including the encrypted data packaged therein by the recipient;
  
  transmitting the access code from the transaction archive to the object received by the recipient such that the self contained computer application of the object is arranged to decrypt the encrypted data packaged therein upon receipt of the access code from the transaction archive; and
  
  displaying the data previously delivered to the recipient in encrypted form packaged with the object only upon decryption of the encrypted data by the self contained computer application of the object using the access code from the transaction archive.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 2. The method according to claim 1 including verifying the issuer to the recipient using a certificate authority.
  - 3. The method according to claim 1 including attaching a non-encrypted digital certificate to the data encrypted into the object.
  - 4. The method according to claim 1 including restricting access to the transaction archive to only the issuer.
  - 5. The method according to claim 1 including selecting a data packager to be encrypted into the object which permits the recipient to encrypt information into an object to be returned back to the issuer.
  - 6. The method according to claim 1 including encrypting the data into the object using a private and public key pair.
  - 7. The method according to claim 1 including prompting the user for authenticating information and generating the access code for transmission from the transaction archive to the object only upon successful receipt of the authenticating information by the transaction archive from the recipient.
  - 8. The method according to claim 1 including registering the access code with the secure server of the transaction archive and authenticating the recipient with the secure server to provide the object with the access code.
  - 9. The method according to claim 8 including transmitting a plurality of objects to the recipient, each object having a respective access code associated therewith and authenticating the recipient with the secure server in the same manner to provide each object received by the recipient with the respective access code.
  - 10. The method according to claim 9 including transmitting the plurality of objects to the recipient from different issuers.
  - 11. The method according to claim 8 including providing the recipient with authenticating information responsive to a successful response by the recipient to a query transmitted to the recipient by the issuer in the form of an enrolment object, and authenticating the recipient with the secure server by requesting the authenticating information from the recipient.
  - 12. The method according to claim 1 including transmitting an object to the recipient which comprises an enrolment object which enrols the recipient with a secure server and provides the recipient with authenticating information responsive to a successful response by the recipient to a query by the enrolment object, and providing the recipient with an access code associated with a subsequently transmitted object upon the secure server subsequently receiving the authentication information from the recipient.
  - 13. The method according to claim 12 including disabling the enrolment object upon providing the recipient with authenticating information.
  - 14. The method according to claim 12 including determining a successful response by the recipient to the query by comparing a response by the recipient to a solution stored both within the enrolment object and on the secure server.
  - 15. The method according to claim 12 including transmitting a plurality of enrolment objects to a plurality of recipients in which each of the recipients receives respective authenticating information from the secure server upon successfully responding to a query, and subsequently providing each of the recipients with an access code to a subsequently transmitted object upon receipt by the secure server of the respective authenticating information.
  - 16. The method according to claim 15 wherein the plurality of recipients commonly receive a subsequently transmitted common object having an access code associated therewith and each of the recipients receives from the secure server the access code to the common object upon receipt of the respective authenticating information.
  - 17. The method according to claim 1 wherein the recipient comprises an organization having a plurality of users and wherein the method includes selecting authorized ones of the users within the organization which are permitted to view the data when the data is encrypted into the object and permitting only the authorized ones of the users to view the data by providing each of the authorized ones of the users with a respective password including identification of a respective portion of the data to be viewed in association therewith.
  - 18. The method according to claim 7 including disabling the object responsive to repeated attempts to enter an invalid password.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Raymond C. Senez Jr
Original Assignee
Raymond C. Senez Jr
Inventors
Senez, Raymond C. Jr.
Primary Examiner(s)
Kim; Ahshik

Application Number

US11/498,248
Publication Number

US 20070033400A1
Time in Patent Office

1,895 Days
Field of Search

235/380, 235/382, 235/379, 705/51
US Class Current

235/382
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 63/0428   wherein the data content is...

H04L 63/083   using passwords cryptograph...

H04L 63/168   above the transport layer

H04L 9/3226   using a predetermined code,...

H04L 9/3263   involving certificates, e.g...

System and method for secure electronic data delivery

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

11 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for secure electronic data delivery

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

11 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links