Document verification with distributed calendar infrastructure
First Claim
Patent Images
1. A method for enabling authentication of digital records, comprising:
- receiving, at a core system on a core processing level, from each of at least one highest non-core processing system at a respective highest non-core processing level, a current highest-level combined output value that is formed as digital combinations of successively lower-level combined output values computed in lower non-core processing levels as node values of a tree data structure having lowest level inputs formed as digital transformations, computed in user-level systems, of digital input records;
computing, for a current calendar period, a current calendar value as a digital combination of the current highest-level combined output values;
returning to at least the highest non-core processing level from the core system the current calendar value, whereupon recomputation parameters are distributed downward to the user-level systems for association with respective ones of the digital input records such that an arbitrary subsequent test digital record is considered authenticated relative to the corresponding digital input record if, applying the corresponding digital transformation to the test digital record and, using the recomputation parameters to recomputed the node values upward through the tree data structure and core, the same current calendar value is attained as when it was originally computed with the corresponding digital input record forming the lowest level input;
compiling and maintaining a calendar, said calendar comprising a set of the current calendar value and of previous calendar values computed in previous calendar periods from the beginning of an initial calendar time, such that there is a correspondence between calendar values in the calendar and physical time;
periodically computing a composite calendar value as a function of at least a subset of the set of the calendar values in the calendar including the current calendar value; and
distributing downward to at least one non-core processing level recomputation parameters of the composite calendar value in addition to the recomputation parameters of the current calendar value, whereupon the arbitrary subsequent test digital record is considered trust-independently authenticated relative to the corresponding digital input record if, applying the corresponding digital transformation to the test digital record and, using the recomputation parameters of the current calendar value and the composite calendar value to recomputed the node values upward through the tree data structure and core, the same composite calendar value is attained as when it was originally computedin which;
the recomputation parameters are keyless and therefore independent of any trust authority parameters, including cryptographic keys.
1 Assignment
0 Petitions
Accused Products
Abstract
Transformations of digital records are used as lowest level inputs to a tree data structure having a root in a core system and having nodes computed as digital combinations of child node values. Signature vectors are associated with the digital records and have parameters that enable recomputation upward through the tree data structure to either a current calendar value or onward to a composite calendar value that is a function of calendar values in a calendar, which comprises a set of computed calendar values, such that the calendar values have a time correspondence. Recomputation yields the same value only if a candidate digital record is an exact version of the original digital record included in the original computation of the value, indicating authentication of the candidate digital record. The authentication process as such is independent of any trust authority that issues cryptographic keys.
-
Citations
6 Claims
-
1. A method for enabling authentication of digital records, comprising:
-
receiving, at a core system on a core processing level, from each of at least one highest non-core processing system at a respective highest non-core processing level, a current highest-level combined output value that is formed as digital combinations of successively lower-level combined output values computed in lower non-core processing levels as node values of a tree data structure having lowest level inputs formed as digital transformations, computed in user-level systems, of digital input records; computing, for a current calendar period, a current calendar value as a digital combination of the current highest-level combined output values; returning to at least the highest non-core processing level from the core system the current calendar value, whereupon recomputation parameters are distributed downward to the user-level systems for association with respective ones of the digital input records such that an arbitrary subsequent test digital record is considered authenticated relative to the corresponding digital input record if, applying the corresponding digital transformation to the test digital record and, using the recomputation parameters to recomputed the node values upward through the tree data structure and core, the same current calendar value is attained as when it was originally computed with the corresponding digital input record forming the lowest level input; compiling and maintaining a calendar, said calendar comprising a set of the current calendar value and of previous calendar values computed in previous calendar periods from the beginning of an initial calendar time, such that there is a correspondence between calendar values in the calendar and physical time; periodically computing a composite calendar value as a function of at least a subset of the set of the calendar values in the calendar including the current calendar value; and distributing downward to at least one non-core processing level recomputation parameters of the composite calendar value in addition to the recomputation parameters of the current calendar value, whereupon the arbitrary subsequent test digital record is considered trust-independently authenticated relative to the corresponding digital input record if, applying the corresponding digital transformation to the test digital record and, using the recomputation parameters of the current calendar value and the composite calendar value to recomputed the node values upward through the tree data structure and core, the same composite calendar value is attained as when it was originally computed in which; the recomputation parameters are keyless and therefore independent of any trust authority parameters, including cryptographic keys. - View Dependent Claims (2, 3, 4, 5, 6)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeGuardtime SA
-
Original AssigneeGuardtime IP Holdings Limited
-
InventorsBuldas, Ahto, Saarepera, Mrt
-
Primary Examiner(s)Paliwal, Yogesh
-
Application NumberUS14/265,478Publication NumberTime in Patent Office489 DaysField of SearchUS Class Current1/1CPC Class CodesG06F 21/30 Authentication, i.e. establ...G06F 21/64 Protecting data integrity, ...G06F 21/645 using a third partyH04L 63/0823 using certificates cryptogr...H04L 63/0876 based on the identity of th...H04L 9/3247 involving digital signaturesH04L 9/3265 using certificate chains, t...H04L 9/50 using hash chains, e.g. blo...
