Privacy preserving electronic document signature service

US 9,842,201 B2
Filed: 10/14/2016
Issued: 12/12/2017
Est. Priority Date: 04/28/2014
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for providing a secure electronic document signature service, the method comprising:

receiving, by at least one server device and from a first client device corresponding to an originating user, a protected electronic document that is protected by the first client device prior to the at least one server device receiving the protected electronic document, wherein the first client device sends the protected electronic document to the at least one server device without a key to unprotect the protected electronic document so content of the protected electronic document is inaccessible to the at least one server device based on the at least one server device not receiving the key to unprotect the protected electronic document;

providing, by the at least one server device and to a second client device corresponding to a participant user, the protected electronic document, wherein the second client device receives the key to unprotect the protected electronic document via an electronic communication that is out-of-band with the at least one server device, wherein the key is uniquely associated with the protected electronic document to allow the participant user to unprotect and electronically sign the protected electronic document; and

receiving, by the at least one server device and from the second client device, a signed version of the protected electronic document comprising an electronic signature of the participant user, wherein the at least one server device accesses and authenticates the electronic signature of the participant user while content of the signed version of the protected electronic document is inaccessible to the at least one server based on the second client device protecting the signed version of the protected electronic document.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An electronic document signature system preserves the security of an electronic document while tracking a signature process corresponding to the electronic document. In particular, using a client application on a client device, an originating user can protect an electronic document and send the protected electronic document to a tracking server. The tracking server receives only a protected document such that the security the electronic document is preserved. Using a client applications on client devices, one or more participating users can subsequently receive the protected document from the tracking server, access the contents of the electronic document, and sign the electronic document. The tracking server can record events that occur with respect to the protected document to create an event log.

Citations

20 Claims

1. A computer-implemented method for providing a secure electronic document signature service, the method comprising:
- receiving, by at least one server device and from a first client device corresponding to an originating user, a protected electronic document that is protected by the first client device prior to the at least one server device receiving the protected electronic document, wherein the first client device sends the protected electronic document to the at least one server device without a key to unprotect the protected electronic document so content of the protected electronic document is inaccessible to the at least one server device based on the at least one server device not receiving the key to unprotect the protected electronic document;
  
  providing, by the at least one server device and to a second client device corresponding to a participant user, the protected electronic document, wherein the second client device receives the key to unprotect the protected electronic document via an electronic communication that is out-of-band with the at least one server device, wherein the key is uniquely associated with the protected electronic document to allow the participant user to unprotect and electronically sign the protected electronic document; and
  
  receiving, by the at least one server device and from the second client device, a signed version of the protected electronic document comprising an electronic signature of the participant user, wherein the at least one server device accesses and authenticates the electronic signature of the participant user while content of the signed version of the protected electronic document is inaccessible to the at least one server based on the second client device protecting the signed version of the protected electronic document.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method of claim 1, further comprising providing, by the at least one server device and to the first client device, a notification indicating that the participant user electronically signed the protected electronic document.
  - 3. The method of claim 1, further comprising generating an event log associated with the protected electronic document, the event log comprising information associated with the electronic signature of the participant user.
  - 4. The method of claim 3, further comprising:
    - receiving, from the first client device, a request for signature information for the participant user; and
      
      providing, to the first client device and in response to the request, the information associated with the electronic signature of the participant user from the event log.
  - 5. The method of claim 1, further comprising identifying a leading edge portion of the signed version of the protected electronic document that comprises the content of the protected electronic document.
  - 6. The method of claim 5, further comprising identifying an appended portion of the signed version of the protected electronic document that comprises the electronic signature of the participant user.
  - 7. The method of claim 6, further comprising:
    - performing a hash function on the leading edge portion of the signed version of the protected electronic document to generate a server-generated ID element; and
      
      providing the server-generated ID element to the second client device for verification that the server-generated ID element matches a client-generated ID element generated at the second client device.
  - 8. The method of claim 6, wherein:
    - the content within the leading edge portion of the signed version of the protected electronic document is inaccessible to the at least one server device; and
      
      the electronic signature within the appended portion of the signed version of the protected electronic document is accessible to the at least one server device.
  - 9. The method of claim 8, further comprising accessing the electronic signature within the appended portion to authenticate the participant user'"'"'s identity.
  - 10. The method of claim 1, wherein the key to unprotect the protected electronic document is generated at the first client device.
  - 11. The method of claim 1, wherein the key to unprotect the protected electronic document is sent from the first client device to the second client device via an electronic message.
  - 12. The method of claim 11, wherein the electronic message is one of an email, a text message, or an instant message.

13. A system of providing a secure electronic document signature service comprising:
- at least one processor; and
  
  at least one non-transitory computer readable storage medium storing instructions thereon that, when executed by the at least one processor, cause the system to;
  
  receive, by at least one server device and from a first client device corresponding to an originating user, a protected electronic document that is protected by the first client device prior to the at least one server device receiving the protected electronic document, wherein the first client device sends the protected electronic document to the at least one server device without a key to unprotect the protected electronic document so content of the protected electronic document is inaccessible to the at least one server device based on the at least one server device not receiving the key to unprotect the protected electronic document;
  
  provide, to a second client device corresponding to a participant user, the protected electronic document, wherein the second client device receives the key to unprotect the protected electronic document via an electronic communication that is out-of-band with the at least one server device, wherein the key is uniquely associated with the protected electronic document to allow participant user to unprotect and electronically sign the protected electronic document; and
  
  receive, from the second client device, a signed version of the protected electronic document comprising an electronic signature of the participant user, wherein the at least one server device accesses and authenticates the electronic signature of the participant user while content of the signed version of the protected electronic document is inaccessible to the at least one server based on the second client device protecting the signed version of the protected electronic document.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The system of claim 13, wherein the key to unprotect the protected electronic document is a user-generated password.
  - 15. The system of claim 13, wherein the second client device receiving the key via the electronic communication that is out-of-band with the at least one server device comprises the second client device receiving the key within an electronic message sent from the first client device.
  - 16. The system of claim 13, wherein the protected electronic document is encrypted using the key at the first client device.
  - 17. The system of claim 16, wherein the signed version of the protected electronic document is encrypted using a second key at the second client device, where the second key is different than the key.

18. A non-transitory computer readable medium storing instructions thereon that, when executed by at least one processor, cause a computer system to:
- receive, by at least one server device and from a first client device corresponding to an originating user, a protected electronic document that is protected by the first client device prior to the at least one server device receiving the protected electronic document, wherein the first client device sends the protected electronic document to the at least one server device without a key to unprotect the protected electronic document so content of the protected electronic document is inaccessible to the at least one server device based on the at least one server device not receiving the key to unprotect the protected electronic document;
  
  provide, by the at least one server device and to a second client device corresponding to a participant user, the protected electronic document, wherein the second client device receives the key to unprotect the protected electronic document via an electronic communication that is out-of-band with the at least one server device, wherein the key is uniquely associated with the protected electronic document to allow the participant user to unprotect and electronically sign the protected electronic document; and
  
  receive, by the at least one server device and from the second client device, a signed version of the protected electronic document comprising an electronic signature of the participant user, wherein the at least one server device accesses and authenticates the electronic document is inaccessible to the at least one server device based on the second client device protecting the signed version of the protected electronic document.
- View Dependent Claims (19, 20)
- - 19. The non-transitory computer readable medium of claim 18, further comprises instructions that, when executed by the at least on processor, cause the computer system to:
    - generate an event log associated with the protected electronic document, the event log comprising information associated with the electronic signature of the participant user; and
      
      provide the event log to the first client device corresponding to the originating user.
  - 20. The non-transitory computer readable medium of claim 18, further comprising instructions that, when executed by the at least one processor, cause the computer system to provide analyze the electronic signature of the participant user to verify the participant user'"'"'s identity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Adobe Inc.
Original Assignee
Adobe Systems Incorporated (Adobe Inc.)
Inventors
Follis, Benjamin David, Kaufman, Marc Thomas
Primary Examiner(s)
DOLLY, KENDALL LYNN

Application Number

US15/294,175
Publication Number

US 20170032112A1
Time in Patent Office

424 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/602   Providing cryptographic fac...

H04L 63/0428   wherein the data content is...

H04L 63/126   the source of the received ...

H04L 9/0825   using asymmetric-key encryp...

H04L 9/3247   involving digital signatures

Privacy preserving electronic document signature service

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Privacy preserving electronic document signature service

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links