Data stream header object protection
First Claim
1. A method for use in combination with a digital object comprising at least one sub-object, said method providing a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, and where said sub-objects may be rearranged within the object without invalidating the digital signature, the method comprising:
- creating an array comprising, for each of said at least one region, a region specifier identifying the region;
producing a digital signature based on data comprising each region and said array; and
adding a signature sub-object comprising said array and said digital signature to the digital object.
4 Assignments
0 Petitions
Accused Products
Abstract
A header object for a data file is comprised of sub-objects which specify properties of the data stream and contains information needed to properly verify and interpret the information within the data object. In order to allow the protection of any set of sub-objects without requiring that the sub-objects follow any specific ordering, a new sub-object is introduced which includes region specifiers identifying regions within sub-objects and verification information for those regions. This new sub-object in the header object allows the modification of non-protected regions and reorganization of sub-objects in a header without invalidating verification information.
111 Citations
56 Claims
-
1. A method for use in combination with a digital object comprising at least one sub-object, said method providing a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, and where said sub-objects may be rearranged within the object without invalidating the digital signature, the method comprising:
-
creating an array comprising, for each of said at least one region, a region specifier identifying the region;
producing a digital signature based on data comprising each region and said array; and
adding a signature sub-object comprising said array and said digital signature to the digital object. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method for use in combination with a digital object comprising at least one sub-object, said method validating a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, where an array comprises region specifiers for each of said at least one region, comprising:
-
identifying a region corresponding to each of said region specifiers;
creating a data object comprising, said array and, for each of said region specifiers, said region corresponding to said region specifier; and
validating said digital signature using on said data object. - View Dependent Claims (16)
-
-
17. A method for use in combination with a digital object comprising at least one sub-object, said method validating a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, where an array comprises region specifiers for each of said at least one region, comprising:
-
determining the number of digital signatures present in said digital object;
validating each of said digital signatures. - View Dependent Claims (18)
-
-
19. A system for use in combination with a digital object comprising at least one sub-object, said system providing a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, and where said sub-objects may be rearranged within the object without invalidating the digital signature, the system comprising:
-
array-creation means for creating an array comprising, for each of said at least one region, a region specifier identifying the region;
signing means for producing a digital signature based on data comprising each region and said array; and
signature sub-object adding means for adding a signature sub-object comprising said array and said digital signature to the digital object. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
-
33. A system for use in combination with a digital object comprising at least one sub-object, said system validating a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, where an array comprises region specifiers for each of said at least one region, comprising:
-
region-identifying means identifying a region corresponding to each of said region specifiers;
data object creation means for creating a data object comprising, said array and, for each of said region specifiers, said region corresponding to said region specifier; and
validation means for validating said digital signature using on said data object. - View Dependent Claims (34)
-
-
35. A system for use in combination with a digital object comprising at least one sub-object, said system validating a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, where an array comprises region specifiers for each of said at least one region, comprising:
-
counting means for determining the number of digital signatures present in said digital object;
validating means for validating each of said digital signatures. - View Dependent Claims (36)
-
-
37. A computer-readable medium for use in combination with a digital object comprising at least one sub-object, said computer-readable medium providing a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, and where said sub-objects may be rearranged within the object without invalidating the digital signature, computer-readable medium with instructions to perform acts comprising:
-
creating an array comprising, for each of said at least one region, a region specifier identifying the region;
producing a digital signature based on data comprising each region and said array; and
adding a signature sub-object comprising said array and said digital signature to the digital object. - View Dependent Claims (38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50)
-
-
51. A computer-readable medium for use in combination with a digital object comprising at least one sub-object, said computer-readable medium validating a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, where an array comprises region specifiers for each of said at least one region, the computer-readable medium with instructions to perform acts comprising:
-
identifying a region corresponding to each of said region specifiers;
creating a data object comprising, said array and, for each of said region specifiers, said region corresponding to said region specifier; and
validating said digital signature using on said data object. - View Dependent Claims (52)
-
-
53. A computer-readable medium for use in combination with a digital object comprising at least one sub-object, said computer-readable medium validating a digital signature for at least one region, where each of said at least one region is comprised of all or part of one of said at least one sub-object, where an array comprises region specifiers for each of said at least one region, the computer-readable medium with instructions to perform acts comprising:
-
determining the number of digital signatures present in said digital object;
validating each of said digital signatures. - View Dependent Claims (54)
-
-
55. A memory for storing data for access by an application program comprising a data structure stored in said memory, said data structure adapted for storing verification information for an object comprised of at least one sub-object while allowing changes in the order of said sub-objects, comprising:
-
a region specifier array comprising at least one region specifier, each such region specifier specifying a region comprising all or part of one of said sub-objects; and
a digital signature for data comprising each of said regions and said regions specifier array. - View Dependent Claims (56)
-
Specification