Web-based method and system for applying a legally enforceable signature on an electronic document

US 9,665,737 B2
Filed: 12/14/2001
Issued: 05/30/2017
Est. Priority Date: 12/14/2000
Status: Active Grant

First Claim

Patent Images

1. A secure, tamper evident and non-refutable web-based method for applying a legally enforceable signature of a user on an electronic document located on a server, signing of said document occurring in a web environment, said method being entirely server based, not requiring installation of any interface program for signing documents on the user'"'"'s computer and comprising the steps:

a) having the user access, through a web browser, the web environment of a web-based service provider'"'"'s secure electronic system, said secure electronic system of the web provider or an ancillary service used by the web provider having verified an identity of the user, wherein upon the user being ready to electronically sign the electronic document, the web-based service provider'"'"'s system performs a hand-off to the signing process;

b) having the user sign the electronic document in said web environment through presentation of web pages to said user through the user'"'"'s web browser, said signing including the server controlling the signing process, said signing further comprising utilization of modules on the server performing the substeps of;

i) presenting the user with legal information related to said signing, and with a web-based representation of the electronic document in said web browser through at least one of said web pages;

ii) getting agreement to said legal information in said web browser and instructions to apply a signature to the document from said user through one or more browser-implemented features provided on at least one of said web pages;

iii) applying said signature of the user on said document on the server; and

iv) notifying the user of the signing of the document, through at least one of said web pages;

c) on the server, generating a process log which is securely associated with the electronic document being signed, wherein the process log is a true rendition of the signing of the electronic document, and in the signing of step b), said process log comprising a record of the signing process of substeps b) i) to b) iv) as executed, said record storing every one of said web pages as presented to the user for reproduction at a later date, and securely associating said process log with the document as signed, wherein the process log evidences the signing of step b) without directly interacting with a user'"'"'s computer due to the method being server-based;

d) making the document as signed available to the user; and

wherein the securely associating of step c) comprises the substeps of;

i) generating a secure process authentication code uniquely representing said process log;

ii) embedding said secure process authentication code in said document as signed, thereby securely associating said process log and said signed document; and

wherein said process authentication code is a hash of said process log;

wherein all interactions with the user during the signing process occur in the web browser through the web pages such that legal intent to sign and agreement to the contents displayed on the Web pages is established and consented to through the viewing of said web pages, the storing of every one of said web pages in the process log allowing reconstruction of every step that occurred during the signing process.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A web-based method and system for applying a legally enforceable signature of a user on an electronic document. The user accesses a web environment from a secure electronic system having verified his identity. Once in this web environment, the user is presented with a web-based representation of the document, and with legal disclosure and consent information related to the signing process. The user must agree with all of the information presented to him before his signature is applied to the document. A process log of the signing is kept for future reference.

19 Citations

View as Search Results

33 Claims

1. A secure, tamper evident and non-refutable web-based method for applying a legally enforceable signature of a user on an electronic document located on a server, signing of said document occurring in a web environment, said method being entirely server based, not requiring installation of any interface program for signing documents on the user'"'"'s computer and comprising the steps:
- a) having the user access, through a web browser, the web environment of a web-based service provider'"'"'s secure electronic system, said secure electronic system of the web provider or an ancillary service used by the web provider having verified an identity of the user, wherein upon the user being ready to electronically sign the electronic document, the web-based service provider'"'"'s system performs a hand-off to the signing process;
  
  b) having the user sign the electronic document in said web environment through presentation of web pages to said user through the user'"'"'s web browser, said signing including the server controlling the signing process, said signing further comprising utilization of modules on the server performing the substeps of;
  
  i) presenting the user with legal information related to said signing, and with a web-based representation of the electronic document in said web browser through at least one of said web pages;
  
  ii) getting agreement to said legal information in said web browser and instructions to apply a signature to the document from said user through one or more browser-implemented features provided on at least one of said web pages;
  
  iii) applying said signature of the user on said document on the server; and
  
  iv) notifying the user of the signing of the document, through at least one of said web pages;
  
  c) on the server, generating a process log which is securely associated with the electronic document being signed, wherein the process log is a true rendition of the signing of the electronic document, and in the signing of step b), said process log comprising a record of the signing process of substeps b) i) to b) iv) as executed, said record storing every one of said web pages as presented to the user for reproduction at a later date, and securely associating said process log with the document as signed, wherein the process log evidences the signing of step b) without directly interacting with a user'"'"'s computer due to the method being server-based;
  
  d) making the document as signed available to the user; and
  
  wherein the securely associating of step c) comprises the substeps of;
  
  i) generating a secure process authentication code uniquely representing said process log;
  
  ii) embedding said secure process authentication code in said document as signed, thereby securely associating said process log and said signed document; and
  
  wherein said process authentication code is a hash of said process log;
  
  wherein all interactions with the user during the signing process occur in the web browser through the web pages such that legal intent to sign and agreement to the contents displayed on the Web pages is established and consented to through the viewing of said web pages, the storing of every one of said web pages in the process log allowing reconstruction of every step that occurred during the signing process.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
- - 2. The method according to claim 1, wherein the presenting a web-based representation of the document of substep b) i) comprises retrieving said document from a document storing location.
  - 3. The method according to claim 1, wherein the presenting a web-based representation of the document of substep b) i) comprises generating said document from a template.
  - 4. The method according to claim 1, wherein the presenting a web-based representation of the document of substep b) i) comprises transforming said document from a non-web format to a web-format.
  - 5. The method according to claim 1, wherein, in step b) i), said legal information presented to the user comprises information about legal implications of the signing of the document.
  - 6. The method according to claim 1, wherein, in step b) i), said legal information presented to the user comprises legal disclosures related to said document.
  - 7. The method according to claim 1, wherein the applying said signature of substep b) iii) comprises associating user-specific information to said document.
  - 8. The method according to claim 7, wherein, in substep b) iii), said user-specific information is included in a special signature file defining the signature of the user.
  - 9. The method according to claim 7, wherein the applying said signature of substep b) iii) further comprises associating a digital certificate and private key to the document.
  - 10. The method according to claim 7, wherein the applying said signature of substep b) iii) further comprises obtaining said user-specific information from the secure electronic system.
  - 11. The method according to claim 7, wherein step c) comprises storing the process log in a log database.
  - 12. The method according to claim 1, comprising an additional step before step d) of providing an audit trail of the signing of step b) in the document as signed.
  - 13. The method according to claim 12, wherein said additional step comprises including a secure document authentication code uniquely representing said document as signed in said audit trail.
  - 14. The method according to claim 13, wherein said additional step further comprises storing said secure document authentication code in a database.
  - 15. The method according to claim 13, wherein said additional step further comprises generating a hash of said document as signed defining the document authentication code.
  - 16. The method according to claim 1, comprising an additional step before step d) of embedding a secure document authentication code uniquely representing the document as signed inside said document.
  - 17. The method according to claim 1, wherein step d) comprises transmitting a copy of the document as signed to the user.
  - 18. The method according to claim 1, wherein step d) comprises enabling the user to download the document as signed.
  - 19. The method according to claim 1, wherein step d) further comprises making the document as signed available to at least one additional party concerned by said electronic document.

20. A secure, tamper evident and non-refutable entirely server-based system for applying a legally enforceable signature of a user on an electronic document located on a server, signing of said document occurring in a web environment through presentation of web pages to said user and not requiring installation of any interface program for signing documents on a user'"'"'s computer, said system comprising:
- accessing means for the user accessing said web environment of a web-based service provider'"'"'s secure electronic system through a web browser, said secure electronic system of the web provider or an ancillary service used by the web provider having verified an identity of the user;
  
  wherein upon the user being ready to electronically sign the electronic document, the web-based service provider'"'"'s system performs a hand-off to a signing process;
  
  a document-rendering module on the server for presenting the user with a web-based representation of said electronic document in said web browser;
  
  a legal disclosure module for presenting the user, in said web environment, with legal information related to electronically signing said electronic document, and for obtaining agreement from the user of said legal information related to the electronic signing, wherein the electronic document is provided to the user through presentation of web pages to the user through the user'"'"'s web browser, including interacting with the user solely through the web browser;
  
  a document approval module for providing the electronic signature of the user to the electronic document upon agreement from the user of the legal information, thereby signing said electronic document;
  
  a process log module for generating at the server of the web-based service provider, a process log of the signing of the electronic document and securely associating said process log with the document as signed, wherein the process log is a true rendition of the signing of the electronic document, said process log comprising a record storing, for reproduction at a later date, every one of the web pages presented to the user during the signing of the electronic document, demonstrating execution of at least the steps of;
  
  i) presenting the user with the legal information related to said signing and with the web-based representation of the electronic document, through at least one of said web pages;
  
  ii) getting agreement from the user to said legal information and instructions to apply a signature to the document from said user through one or more browser-implemented features provided on at least one of said web pages;
  
  iii) notifying the user of the signing of the electronic document, through at least one of said web pages; and
  
  a document distribution module for making the document as signed available to the user;
  
  wherein the process log evidences the signing of the document without directly interacting with a user'"'"'s computer; and
  
  said process log module comprisingmeans for generating a secure process authentication code uniquely representing said process log, the secure process authentication code comprising a hash of the process log, and said process authentication code being embedded in said document as signed in order to securely associate said process log and said electronic document;
  
  wherein all interactions with the user during the signing process occur in the web browser through the web pages such that legal intent to sign and agreement to the contents displayed on the Web pages is established and consented to through the viewing of said web pages, the storing of every one of said web pages in the process log allowing reconstruction of every step that occurred during the signing process.
- View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
- - 21. The system according to claim 20, wherein said document-rendering module comprises retrieving means for retrieving said document from a document storing location.
  - 22. The system according to claim 20, further comprising a document customization module cooperating with the document-rendering module for generating said document from a template.
  - 23. The system according to claim 20, wherein said document-rendering module comprises transforming means for transforming said document from a non-web format to a web-format.
  - 24. The system according to claim 20, wherein said legal information comprises information about legal implications of the signing of the document.
  - 25. The system according to claim 20, wherein said legal information comprises legal disclosures related to said document.
  - 26. The system according to claim 20, further comprising a user binding module cooperating with the secure electronic system to obtain therefrom user-specific information, generating a special signature file using said user-specific information and providing said special signature file to the document approval module, said special signature file defining the signature of the user.
  - 27. The system according to claim 20, wherein said user-specific information comprises a digital certificate and private key.
  - 28. The system according to claim 20, further comprising an audit trail module for providing an audit trail of the signing of the document in said document as signed.
  - 29. The system according to claim 28, wherein said audit trail includes a secure document authentication code uniquely representing said document as signed.
  - 30. The system according to claim 29, wherein the document authentication code is a hash of said document as signed.
  - 31. The system according to claim 20, wherein the document approval module comprises means for embedding a document authentication code uniquely representing the document as signed inside said document.
  - 32. The system according to claim 20, wherein said document distribution module comprises means for transmitting a copy of the document as signed to the user.
  - 33. The system according to claim 20, wherein said document distribution module provides a copy of the document as signed to at least one additional party concerned by said electronic document.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Silanis Technology Inc. (OneSpan, Inc.)
Original Assignee
Silanis Technology Inc. (OneSpan, Inc.)
Inventors
Laurie, Michael, Petrogiannis, Tommy, Leblanc, Franois, Goudreault-Emond, Benoit
Primary Examiner(s)
POWERS, WILLIAM S

Application Number

US10/022,559
Publication Number

US 20020091651A1
Time in Patent Office

5,646 Days
Field of Search

380 23- 30, 382115, 382232, 709272, 713176, 713167
US Class Current
CPC Class Codes

G06F 21/30   Authentication, i.e. establ...

G06F 21/64   Protecting data integrity, ...

G06F 21/645   using a third party

G06Q 20/3821   Electronic credentials

Web-based method and system for applying a legally enforceable signature on an electronic document

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

19 Citations

33 Claims

Specification

Solutions

Use Cases

Quick Links

Web-based method and system for applying a legally enforceable signature on an electronic document

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

19 Citations

33 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links