Method and system for obtaining digital signatures

US 8,103,867 B2
Filed: 04/28/2006
Issued: 01/24/2012
Est. Priority Date: 01/23/2001
Status: Active Grant

First Claim

Patent Images

1. A method of digitally signing a document with a digital signature using at least one computer programmed to perform at least the following steps:

receiving a signature request from a requestor, the signature request requesting that a document be signed;

determining a type and at least one attribute associated with the document, wherein the type and at least one attribute are determined by;

breaking the document into a plurality of smaller portions based on a document class associated with the document;

applying lexical analysis to the plurality of smaller portions; and

recognizing patterns of the smaller portions to determine the type and at least one attribute associated with the document;

accessing one or more signing policies of an organization, the one or more signing policies identifying a plurality of authorized users of the organization, the one or more signing policies identifying one or more document types that an authorized user is authorized to sign;

determining whether the requestor is an authorized user authorized to sign the document according to the one or more signing policies and the determined type and at least one attribute of the document; and

signing the document with an organization digital signature generated using an organization private key associated with the organization, if the requestor is an authorized user authorized to sign the document.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A digital signature system includes a database holding access control rules that identify documents authorized users are allowed to have electronically signed and a signing system capable of receiving signature requests from a plurality of authorized users, each signature request including a document to be signed, wherein the signing system parses the document to be signed and compares information obtained thereby to the access control rules stored in the database to determine whether the authorized user is authorized to have the document signed, and wherein if it is determined that the authorized user is authorized to have the document signed, the signing system signs the document using authentication information unique to the signing system.

Citations

26 Claims

1. A method of digitally signing a document with a digital signature using at least one computer programmed to perform at least the following steps:
- receiving a signature request from a requestor, the signature request requesting that a document be signed;
  
  determining a type and at least one attribute associated with the document, wherein the type and at least one attribute are determined by;
  
  breaking the document into a plurality of smaller portions based on a document class associated with the document;
  
  applying lexical analysis to the plurality of smaller portions; and
  
  recognizing patterns of the smaller portions to determine the type and at least one attribute associated with the document;
  
  accessing one or more signing policies of an organization, the one or more signing policies identifying a plurality of authorized users of the organization, the one or more signing policies identifying one or more document types that an authorized user is authorized to sign;
  
  determining whether the requestor is an authorized user authorized to sign the document according to the one or more signing policies and the determined type and at least one attribute of the document; and
  
  signing the document with an organization digital signature generated using an organization private key associated with the organization, if the requestor is an authorized user authorized to sign the document.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 26)
- - 2. The method of claim 1, wherein:
    - accessing the one or more signing policies of the organization further comprises;
      
      accessing the one or more signing policies, the one or more signing policies identifying the one or more document types that an authorized user is authorized to sign by specifying one or more attributes of the one or more document types that the authorized user is authorized to sign; and
      
      determining whether the requestor is an authorized user authorized to sign the document according to the one or more signing policies further comprises;
      
      establishing one or more attributes of the document; and
      
      determining whether the one or more attributes of the document match the one or more attributes of the one or more document types that the authorized user is authorized to sign.
  - 3. The method of claim 1, wherein receiving the signature request from the requestor further comprises:
    - receiving the signature request, the signature request signed with a requestor digital signature generated using a requestor private key; and
      
      verifying the signature request using a requestor public key corresponding to the requestor private key.
  - 4. The method of claim 1, further comprising:
    - signing the signed document with a sender digital signature generated using a sender private key, the signed document configured to be verified with a sender public key corresponding to the sender private key.
  - 5. The method of claim 1, wherein the signed document is configured to be verified using an organization public key corresponding to the organization private key.
  - 6. The method of claim 1, wherein the organization private key is configured to be authenticated by a certificate authority.
  - 7. The method of claim 1, further comprising:
    - sending the signed document to a recipient, the recipient distinct from the plurality of authorized users.
  - 8. The method of claim 1, wherein:
    - the organization comprises a company; and
      
      the plurality of authorized users comprise a plurality of employees of the company.
  - 26. The method of claim 1, wherein:
    - the document class associated with the document is selected from the group consisting of a text document, an HTML document, an XML document, and a CSV document; and
      
      the type associated with the document is selected from the group consisting of a contract, a purchase order, a quote, an invoice, and a bid.

9. A system for digitally signing a document with a digital signature, comprising:
- a database configured to;
  
  store one or more signing policies of an organization, the one or more signing policies identifying a plurality of authorized users of the organization, the one or more signing policies identifying one or more document types that an authorized user is authorized to sign; and
  
  a signing system in communication with the database and configured to;
  
  receive a signature request from a requestor, the signature request requesting that a document be signed;
  
  determine a type and at least one attribute associated with the document, wherein the type and at least one attribute are determined by;
  
  breaking the document into a plurality of smaller portions based on a document class associated with the document;
  
  applying lexical analysis to the plurality of smaller portions; and
  
  recognizing patterns of the smaller portions to determine the type and at least one attribute associated with the document;
  
  determine whether the requestor is an authorized user authorized to sign the document according to the one or more signing policies and the determined type and at least one attribute of the document; and
  
  sign the document with an organization digital signature generated using an organization private key associated with the organization, if the requestor is an authorized user authorized to sign the document.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The system of claim 9, the signing system further configured to:
    - access the one or more signing policies of the organization by;
      
      accessing the one or more signing policies, the one or more signing policies identifying the one or more document types that an authorized user is authorized to sign by specifying one or more attributes of the one or more document types that the authorized user is authorized to sign; and
      
      determine whether the requestor is an authorized user authorized to sign the document according to the one or more signing policies by;
      
      establishing one or more attributes of the document; and
      
      determining whether the one or more attributes of the document match the one or more attributes of the one or more document types that the authorized user is authorized to sign.
  - 11. The system of claim 9, the signing system further configured to receive the signature request from the requestor by:
    - receiving the signature request, the signature request signed with a requestor digital signature generated using a requestor private key; and
      
      verifying the signature request using a requestor public key corresponding to the requestor private key.
  - 12. The system of claim 9, the signing system further configured to:
    - sign the signed document with a sender digital signature generated using a sender private key, the signed document configured to be verified with a sender public key corresponding to the sender private key.
  - 13. The system of claim 9, wherein the signed document is configured to be verified using an organization public key corresponding to the organization private key.
  - 14. The system of claim 9, wherein the organization private key is configured to be authenticated by a certificate authority.
  - 15. The system of claim 9, the signing system further configured to:
    - send the signed document to a recipient, the recipient distinct from the plurality of authorized users.
  - 16. The system of claim 9, wherein:
    - the organization comprises a company; and
      
      the plurality of authorized users comprise a plurality of employees of the company.

17. Software for digitally signing a document with a digital signature, the software stored in a non-transitory computer-readable medium and, when executed by a processor configured to:
- receive a signature request from a requestor, the signature request requesting that a document be signed;
  
  determine a type and at least one attribute associated with the document, wherein the type and at least one attribute are determined by;
  
  breaking the document into a plurality of smaller portions based on a document class associated with the document;
  
  applying lexical analysis to the plurality of smaller portions; and
  
  recognizing patterns of the smaller portions to determine the type and at least one attribute associated with the document;
  
  access one or more signing policies of an organization, the one or more signing policies identifying a plurality of authorized users of the organization, the one or more signing policies identifying one or more document types that an authorized user is authorized to sign;
  
  determine whether the requestor is an authorized user authorized to sign the document according to the one or more signing policies and the determined type and at least one attribute of the document; and
  
  sign the document with an organization digital signature generated using an organization private key associated with the organization, if the requestor is an authorized user authorized to sign the document.
- View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
- - 18. The software of claim 17, further configured to:
    - access the one or more signing policies of the organization by;
      
      accessing the one or more signing policies, the one or more signing policies identifying the one or more document types that an authorized user is authorized to sign by specifying one or more attributes of the one or more document types that the authorized user is authorized to sign; and
      
      determine whether the requestor is an authorized user authorized to sign the document according to the one or more signing policies by;
      
      establishing one or more attributes of the document; and
      
      determining whether the one or more attributes of the document match the one or more attributes of the one or more document types that the authorized user is authorized to sign.
  - 19. The software of claim 17, further configured to receive the signature request from the requestor by:
    - receiving the signature request, the signature request signed with a requestor digital signature generated using a requestor private key; and
      
      verifying the signature request using a requestor public key corresponding to the requestor private key.
  - 20. The software of claim 17, further configured to:
    - sign the signed document with a sender digital signature generated using a sender private key, the signed document configured to be verified with a sender public key corresponding to the sender private key.
  - 21. The software of claim 17, wherein the signed document is configured to be verified using an organization public key corresponding to the organization private key.
  - 22. The software of claim 17, wherein the organization private key is configured to be authenticated by a certificate authority.
  - 23. The software of claim 17, further configured to:
    - send the signed document to a recipient, the recipient distinct from the plurality of authorized users.
  - 24. The software of claim 17, wherein:
    - the organization comprises a company; and
      
      the plurality of authorized users comprise a plurality of employees of the company.

25. A method of digitally singing a document with a digital signature using at least one computer programmed to perform at least the following steps:
- receiving a signature request from a requestor, the signature request requesting that a document be signed, receiving the signature request from the requestor further comprising;
  
  receiving the signature request, the signature request signed with a requestor digital signature generated using a requestor private key; and
  
  verifying the signature request using a requestor public key corresponding to the requestor private key;
  
  determining a type and at least one attribute associated with the document, wherein the type and at least one attribute are determined by;
  
  breaking the document into a plurality of smaller portions based on a document class associated with the document;
  
  applying lexical analysis to the plurality of smaller portions; and
  
  recognizing patterns of the smaller portions to determine the type and at least one attribute associated with the document;
  
  accessing one or more signing policies of an organization, the organization comprising a company, the one or more signing policies identifying a plurality of authorized users of the organization, the plurality of authorized users comprising a plurality of employees of the company, the one or more signing policies identifying one or more document types that an authorized user is authorized to sign, the one or more signing policies identifying the one or more document types that an authorized user is authorized to sign by specifying one or more attributes of the one or more document types that the authorized user is authorized to sign;
  
  determining whether the requestor is an authorized user authorized to sign the document according to the one or more signing policies and the determined type and at least one attribute of the document by;
  
  establishing one or more attributes of the document; and
  
  determining whether the one or more attributes of the document match the one or more attributes of the one or more document types that the authorized user is authorized to sign;
  
  signing the document with an organization digital signature generated using an organization private key associated with the organization, if the requestor is an authorized user authorized to sign the document, the signed document configured to be verified using an organization public key corresponding to the organization private key, the organization private key configured to be authenticated by a certificate authority;
  
  signing the signed document with a sender digital signature generated using a sender private key, the signed document configured to be verified with a sender public key corresponding to the sender private key; and
  
  sending the signed document to a recipient, the recipient distinct from the plurality of authorized users.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Google LLC (Alphabet Inc.)
Original Assignee
Computer Associates Think Inc. (Broadcom, Inc.)
Inventors
Spitz, Charles F.
Primary Examiner(s)
Zee, Edward
Assistant Examiner(s)
NGUY, CHI D

Application Number

US11/380,720
Publication Number

US 20060190734A1
Time in Patent Office

2,097 Days
Field of Search

380277-286, 713168-181, 704/251
US Class Current

713/150
CPC Class Codes

H04L 2209/68 Special signature format, e...

H04L 9/3247 involving digital signatures

Method and system for obtaining digital signatures

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for obtaining digital signatures

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links