A system for time-stamping a digital document, including for example text, video, audio, or pictorial data, protects the secrecy of the document text and provides a tamper-proof time seal establishing an author's claim to the temporal existence of the document. Initially, the author reduces the document to a number by means of a one-way hash function, thereby fitting a unique representation of the document text. In one embodiment of the invention the number is then transmitted to an outside agency where the current time is added to form a receipt which is certified by the agency using a public key signature procedure before being returned to the author as evidence of the document's existence. In later proof of such existence, the certificate is authenticated by means of the agency's public key to reveal the receipt which comprises the hash of the alleged document along with the time seal that only the agency could have signed into the certificate. The alleged document is then hashed with the same one-way function and the original and newly-generated hash numbers are compared. A match establishes the identify of the alleged document as the time-stamped original. In order to prevent collusion in the assignment of a time stamp by the agency and thus fortify the credibility of the system, the receipt is linked to other contemporary receipts before certification by the agency, thereby fixing a document's position in the continuum of time. In another embodiment, a plurality of agencies are designated by means of random selection based upon a unique seed that is a function of the hash number of the document to be time-stamped. Thus being denied the ability to choose at will the identity of an agent, the author cannot feasibly arrange for falsification of a time stamp.
|
1. A method of time-stamping a digital document which comprises:
a) transmitting a digital representation of said document from an originator to an outside agency; b) creating at said outside agency a receipt comprising a digital representation of then current time and at least a portion of a digital representation of said digital document; and c) certifying said receipt at said outside agency by means of a verifiable digital cryptographic signature.
13. A method for the secure time-stamping of a digital document
characterized in that a) a digital representation of said document is transmitted from an originator to an outside agency; b) said outside agency creates a receipt comprising a digital representation of then current time and at least a portion of a digital representation of said digital document; and c) said receipt is certified al said outside agency by means of a verifiable digital cryptographic signature scheme.
2. A method of time-stumping a digital document according to
3. A method of time-stamping a digital document according to
4. A method of time-stamping a digital document according to
5. A method of time-stamping a digital document according to
6. A method of time-stamping a digital document according to
7. A method of time-stamping a digital document according to
8. A method of time-stamping a digital document according to
9. A method of time-stamping a digital document according to
10. A method of time-stamping a digital document according to
11. A method of time-stamping a digital document according to
12. A method of time-stamping a digital document according to
14. A method for the secure time-stamping of a digital document according to
characterized in that said receipt further comprises the time representation and digital document representation specific to at least one other digital document receipted by said outside agency.
15. A method for the secure time-stamping of a digital document according to
characterized in that the receipt of said at least one other digital document was created by said outside agency later than that of the currently receipted digital document.
16. A method for the secure time-stamping of a digital document according to
characterized in that said outside agency is selected at random from a predetermined universe by means of a pseudorandom generator seeded with at least a portion of the digital representation of the number derived from the application of a deterministic function algorithm to said digital document.
17. A method for the secure time-stamping of a digital document according to
characterized in that said seed is derived from the application of a one-way hashing algorithm to said digital document.
18. A method for the secure time-stamping of a digital document according to
characterized in that a time-stamp certificate for said digital document is likewise prepared by at least one additional outside agency selected by means of said pseudorandom generation.
19. A method for time stamping a particular digital document comprising
(a) forming a collection of hash values by hashing each group comprised of one or more digital documents in an accumulation of digital documents, including said particular digital document, generated over a period of time, (b) forming a single hash value representative of said collection of hash values, and (c) creating a time stamp receipt for said particular digital document by associating an indication of then current time with said single hash value. 20. A method for time stamping a particular digital document comprising (a) forming a collection of digital values by applying a deterministic function to each digital document or group of digital documents in an accumulation of digital documents, including said particular document, generated over a period of time, (b) forming a single digital value from said digital values in said collection, and (c) creating a time stamp receipt for said particular digital document by associating an indication of then current time with said single digital value. 21. A method for time stamping a particular digital document in a series of digital documents comprising the steps of (a) forming a receipt comprising at least a portion of a digital representation of said particular digital document and a digital representation of time then current as of the forming of said receipt, (b) forming at least one different receipt comprising at least a portion of a digital representation of at least one different digital document in said series of digital documents and a digital representation of time then current as of the forming of said at least one different receipt, and (c) utilizing said receipts to form a composite receipt which is thereby
fixed in the continuum of time. 22. A method for time stamping a particular digital document in a relatively continuous flow of digital documents comprising the steps of (a) forming a receipt comprising at least a portion of a digital representation of said particular digital document, (b) forming at least one different receipt comprising at least a portion of a digital representation of at least one different digital document in said relatively continuous flow of digital documents, and (c) utilizing said receipts to form a composite receipt which is thereby fixed in the continuum of time. 23. A method for time stamping a particular digital document comprising the steps of (a) at an originator, forming a particular digital value representative of said particular digital document by applying a deterministic function to said particular digital document, (b) transmitting said particular digital value to a time stamping agency, (c) at said time stamping agency, forming a collection of digital values, including said particular digital value, and forming a single digital value from the digital values in said collection, and (d) creating a time stamp receipt for said particular digital document by associating with said single digital value a representation of then current time. 24. The method of (a) at an originator, forming a particular digital representation of said particular digital document, (b) transmitting said particular digital representation to a time stamping agency, (c) at said time stamping agency, forming a receipt comprising at least a portion of said particular digital representation of said particular digital document, (d) at said time stamping agency, forming at least one different receipt comprising at least a portion of a digital representation of at least one different digital document, and (e) forming from said receipts a composite receipt which is thereby fixed in time. |
|||||||||||||||||||||||||
In many situations there is a need to establish the date on which a document was created and to prove that the text of a document in question is in fact the same as that of the original dated document. For example, in intellectual property matters it is often crucial to verify the date on which a person first put into writing the substance of an invention. A common procedure for thus "time-stamping" an inventive concept comprises daily notations of one's work in a laboratory notebook. Indelibly dated and signed entries are made one after another on each page of the notebook where the sequentially numbered, sewing pages make it difficult to revise the record without leaving telltale signs. The validity of the record is further enhanced by the regular review and signed witnessing by a generally disinterested third party. Should the time of the concept become a matter for later proof, both the physical substance of the notebook and the established recording procedure serve as effective evidence in substantiating the fact that the concept existed at least as early as the notebook witness date.
The increasingly widespread use of electronic documents, which include not only digital representations of readable text but also of video, audio, and pictorial data, now poses a serious threat to the viability of the "notebook" concept of establishing the date of any such document. Because electronic digital documents are so easily revised, and since such revisions may be made without telltale sign, there is available limited credible evidence that a given document truly states the date on which it was created or the message it originally carried. For the same reasons there even arises serious doubt as to the authenticity of a verifying signature. Without an effective procedure for ensuring against the surreptitious revision of digital documents, a basic lack of system credibility prevents the efficiencies of electronic documentation from being more widely implemented.
Some procedures are presently available for verifying electronic document transmissions; however, such procedures are limited in application to bilateral communications. That is, in such communications the sender essentially desires to verify to the receiver the source and original content of the transmitted document. For example, "private key" cryptographic schemes have long been employed for message transmission between or among a limited universe of individuals who are known to one another and who alone know the decrypting key. Encryption of the message ensures against tampering, and the fact that application of the private key reveals the "plaintext" of the transmitted message serves as proof that the message was transmitted by one of the defined universe. The time of creation of the message is only collaterally established, however, as being not later than its receipt by the addressee. This practice thus fails to provide time-stamp evidence that would be useful in an unlimited universe at a later date.
A more broadly applicable verifying communication procedure, that of "public key" cryptography, has been described by Diffie and Hellman ("New Directions in Cryptography", IEEE Transactions On Information Theory, Vol. IT-22, November 1976, pp. 644-654) and more recently implemented by Rivest et al. in U.S. Pat. No. 4,405,829, issued Sept. 20, 1983. While this scheme expands the utilizing universe to a substantially unlimited number of system subscribers who are unknown to one another, but for a public directory, verifiable communications remain bilateral. These limitations persist, since although a public key "signature", such as that which entails public key decryption of a message encrypted with the private key of the transmitter, provides any member of the unlimited universe with significant evidence of the identity of the transmitter of the message, only a given message recipient can be satisfied that the message existed at least as early as the time of its receipt. Such receipt does not, however, provide the whole universe with direct evidence of time of the message's existence. Testimony of such a recipient in conjunction with the received message could advance the proof of message content and time of its existence, but such evidence falls victim to the basic problem of ready manipulation of electronic digital document content, whether by originator or witness.
Thus, the prospect of a world in which all documents are in easily modifiable digital form threatens the very substance of existing procedures for establishing the credibility of such documents. There is clearly a significant present need for a system of verification by which a digital document my be so fixed in time and content that it can present, at least to the extent currently recognized in tangible documents, direct evidence on those issues.
The present invention yields such a reliable system in a method of time-stamping digital documents that provides the equivalent of two essential characteristics of accepted document verification. First, the content of a document and a time stamp of its existence are "indelibly" incorporated into the digital data of the document so that it is not possible to change any bit of the resulting time-stamped data without such a change being apparent. In this manner, the state of the document text is fixed at the instant of time-stamping. Second, the time at which the digital document is stamped is verified by a "witnessing" digital signature procedure that deters the incorporation of a false time statement. In essence, the method transfers control of the time-stamping step from the author to an independent agent and removes from the author the ability to influence the agent in the application of other than a truthful time stamp.
The method of the present invention presumes a number of document authors distributed throughout a communication network. Such authors may be individuals, companies, company departments, etc. each representing a distinct and identifiable, e.g. by ID number or the like, member of the author universe. In one embodiment of the invention, this universe may constitute the clientele of the time-stamping agency (TSA), while in another embodiment the distributed authors may serve as agents individually performing the time-stamping service for other members of the universe.
In its general application as depicted in FIG. 1 of the drawing, the present method entails an author's preparation of a digital document, which may broadly comprise any alphanumeric, audio, or pictorial presentation, and the transmission of the document, preferably in a condensed representative form, to the TSA. The TSA time-stamps the document by adding digital data signifying the current time, applying the agency's cryptographic signature scheme to the document, and transmitting the resulting document, now a certificate of the temporal existence of the original document, back to the author where it is held for later use in required proof of such existence.
To ensure against interception of confidential document information during transmission, and to reduce the digital bandwidth required for transmission of the entire document, the author may optimally convert the digital document string to a unique number having vastly reduced digital size by means of a deterministic function which may, for example, be any one of a number of algorithms known in the art as "oneway hash functions". Such an application of hash functions has been described, among others, by Damgard in his discussions on the improvement of security in document signing techniques ("Collision-Free Hash Functions and Public Key Signature Schemes", Advances in Cryptology--Eurocrypt '87, Springer-Verlag, LNCS, 1988, Vol. 304, pp. 203-217). In practice of the present invention, however, the "one-way" characteristic typical of a hashing algorithm serves an additional purpose;, that is, to provide assurance that the document cannot be revised subsequent to the time the TSA applies its time stamp.
A hashing function provides just such assurance, since at the time a document is hashed there is created a representative "fingerprint" of its original content from which it is virtually impossible to recover that document. Therefore, the time-stamped document is not susceptible to revision by any adversary of the author. Nor is the author able to apply an issued time-stamp certificate to a revised form of the document, since any change in the original content, even to the extent of a single word or a single bit of digital data, results in a different document that would hash to a completely different fingerprint number. Although the original document can thus not be recovered from the hashed document, a purported original document can nonetheless be proven by the fact that a true copy of the original document will always hash, assuming use of the same hashing algorithm, to the original number continued in the certificate.
Any available deterministic function. e.g. a one-way hash function such as that described by Rivest ("The MD4 Message Digest Algorithm", Advances in Cryptology--Crypto, '90, Springer-Verlag, LNCS, to appear), may be used in the present procedure. In the practice of the invention, such a hashing operation would normally be employed by the author to obtain the noted benefit of transmission security, although it might be effected by the TSA if the document were received in plaintext form. In whatever such manner the document content and incorporated time data are fixed against revision, there is, mains the further step, in order to promote the crucibility of the system, of certifying to the members of an as yet unidentified universe that the receipt was in fact prepared by the TSA, rather than by the author, and that the time indication is correct, i.e. that it has not, For instance, been fraudulently stated by the TSA in collusion with the author.
To satisfy the former concern, the TSA uses a verifiable signature scheme, of a type such as the public key method earlier noted, to certify the time-stamp prior to its transmittal to the author. Confirmation of the signature at a later time, such as by decryption with the TSA's public key, proves to the author and to the universe at large that the certificate originated with the TSA. Proof of the veracity of the time-stamp itself, however, relies upon a following additional aspect of the invention.
One embodiment of this segment of the process, as generally depicted in FIG. 2, draws upon the relatively continuous flow of documents from the universe of authors through the facilities of the TSA. For each given processed document Dk, the TSA generates a time-stamp receipt which includes, for example, a sequential receipt number, rk, the identity of the author. Ak, by ID number IDk, or the like, the hash, Hk, of the document, and the current time, tk. In addition, the TSA includes the receipt dam of the immediately preceding processed document, Dk-1, of author, Ak-1, thereby bounding the timestamp of document, Dk, m the "past" direction by the malependently established earlier receipt time, tk-1. Likewise, the receipt data of the next received document, Dk+1, are included to bound the time-stamp of document. Dk, in the "future" direction. The composite receipt, now containing the time data of the three, or more if desired, sequential time-stamp receipts, or identifying segments thereof, is then certified with the cryptographic TSA signature and transmitted to the author, Ak. In like manner, a certificate containing identifiable representations of Dk and Dk+2 would be transmitted to author, Ak+1. Thus, each of the time-stamp certificates issued by the TSA is fixed in the continuum of time and none can be falsely prepared by the TSA, since a comparison of a number of relevant distributed certificates would reveal the discrepancy in their sequence. So effective is such a sequential fixing of a document in the me stream that the TSA signature could be superfluous in actual practice.
A second embodiment of the invention, shown generally in FIG. 3, distributes the time-stamping task randomly among a broad universe, for example the multiplicity of authors utilizing the time-stamping process. A TSA could still be employed for administrative purposes or the requesting author could communicate directly with the selected time-stamping author/agents. In either event, the above-mentioned need for assurance that a time-stamp has not been applied to a document through collusion between the author and the stamping agency is met in the combination of the reasonable premise that at least some portion of the agency universe is incorruptible or would otherwise pose a threat of exposure to an author attempting falsification, and the fact that the time-stamping agencies for a given document are selected from the universe entirely at random. The resulting lack of a capability on the part of the author to select a prospective collusive agent of the author's own choosing substantially removes the feasibility of intentional time falsification.
The selection of the individual universe members who will act as the predetermined number of agents is accomplished by means of a pseudorandom generator of the type discussed by Impagliazzo, Levin, and Luby ("Pseudorandom Generation From One-Way Functions", Proc. 21st STOC, pp. 12-24, ACM, 1989) for which the initial seed is a deterministic function, such as a hash, of the document being time-stamped. Given as a seed input the document hash or other such function, the implemented pseudorandom generator will output a series of agency IDs. This agency selection is for all practical purposes unpredictable and random.
Once the agents are selected, the time-stamping proceeds as previously indicated with the exception that each agent individually adds the current time data to the representative document it receives, certifies the resulting separate time-stamped receipt with its own verifiable cryptographic signature, and transmits the certificate back to the author. This transmittal may be directly to the requesting author or by way of the administrative TSA where the receipts are combined with or without further certification by the TSA. The combination of signature scheme and a published directory of author IDs provides verification of the utilization of the agents that were in fact selected by the pseudorandom generator. This distributed agent embodiment of the invention presents some advantages over the receiptlinking procedure in that a certified time-stamp is provided more quickly and a given author's later proof of a document is less reliant upon the availability of the certificates of other authors.
Additional variations in the process of the invention might include the accumulation of documents, preferably in hashed or other representative form, generated within an author organization over a period of time. e.g. a day or more depending upon the extent of activity, with the collection being hashed to present a single convenient document for time-stamping and certification. Also, the initial seed for the pseudorandom generator may be based upon a function of time or previously receipted documents, as well as of the document. The implementation of the process my be automated in simple computer programs which would directly carry out the described steps of hashing and transmitting original documents, selecting time-stamping agents, applying current time stamps, and returning certified receipts.
The present invention will be described with reference to the accompanying drawing of which:
FIG. 1 is a flow diagram of the general process of time-stamping a document according to the invention;
FIG. 2 is a flow diagram of a specific embodiment of the process; and
FIG. 3 is a flow diagram of another specific embodiment of the process.
The following examples of the application of embodiments of the present invention will serve to further describe the involved process. For convenience in the presentation of these examples, the deterministic function selected is the md4 hashing algorithm described by Rivest, as mentioned above, and the verifiable signature scheme is the public key method suggested by Diffie and Hellman as implemented by Rivest et al. in U.S. Pat. No. 4,405,829. Further, in order to simplify explanation of the process and for the additional reasons noted below, only representative segments of the entire numbers will be employed.
The receipt-linking embodiment of the invention shown in FIG. 2 is initially considered. Although the present process may be used with documents of any length, the following apt excerpt is amply representative of a document, Dk, which an author prepares at step 21 and for which time-stamping is desired:
Time's glory is to calm contending kings, To unmask falsehood, and bring truth to light, To stamp the seal of time in aged things, To wake the morn, and sentinel the night, To wrong the wronger till he render right;
The Rape of Lucrece
By means of the md4 algorithm, the document is hashed, at optional dashed step 22, to a number, Hk, of a standard 128 bit format which expressed in base 16 appears as:
ef6dfdcd833f3a43d4515a9fb5ce3915
The author, Ak, whose system identification number IDk, is 172 in a 1000 member author universe, transmits the thus-identified document to the system TSA, at step 22, as the message, (IDk,Hk), which appears:
172, ef6dfdcd833f3a43d4515a9fb5ce3915
as a request that the document be time-stamped.
The TSA then prepares the receipt for document, Dk, by adding, at step 25, a sequential receipt number, rk, of 132, for example, and a statement of the current rinse, tk. This time statement might include a standard 32 bit representation of computer clock time plus a literal statement, i.e. 16:37:41 Greenwich Mean Tune on Mar. 10, 1990, in order to allow the final time-stamp certificate to be easily readable by the author, Ak. The receipt would then comprise the string, (rk,tk,IDk,Hk).
At this point it would be appropriate to further consider the earlier-mentioned reduction of number size to representative segments. As is described by Rivest et al. in U.S. Pat. No. 4,405,829, the cryptographic public key scheme to be employed in this example (generally known in the field as the "RSA" signature scheme) requires the division of an extended message into blocks that may etch be represented by a number not exceeding the encoding key number element, n. Each such block is then signed with the RSA algorithm, to be reassembled after transmission. Therefore, in order to be able to use a number, n, of reasonable size in this example while maintaining a single block for the final receipt string to be certified with the RSA scheme, each element of the receipt string will be reduced to a representative eight bits, typically the last eight bits of any overlong string, and those bits will be sated in base 16 to present a two hexadecimal character string. Thus, for instance, the 128 bit document hash, Hk, will be represented by its last eight bits, i.e. 0001 0101, stated as 15 (base 16). Likewise, IDk, 172, is 1010 1100 and is represented by ac (base 16). Without actually undertaking the calculation, it will suffice to assume that the time statement, tk, is represented as 51. The receipt number, 132, would be represented as 84. The receipt string to this point, i.e. (rk,tk,IDk,Hk) now appears as 8451ac15.
Assume now that the immediately preceding document, Dk-1, was processed by the TSA as the request:
201, d2d67232a61d616f7b87dc146c575174
at 16:32:30 on Mar. 10, 1990 (tk-1 being represented as 64). The TSA adds these data at step 27, to the receipt string for Dk to yield the hexadecimal representation, 8451ac1564c974. This receipt Rk, now contains data fixing the time for Dk and a time, tk-1, before which author, Ak, cannot claim that Dk existed. This limitation on Ak is established by the fact that the previous author, Ak-1, holds a time certificate, Ck-1, that fixes tk-1 as subsequent to the linked time data, tk-2, in the certificate of author, Ak-2, and so on for as long as a proof requires.
To establish that TSA in fact originated the receipt for document, Dk, that receipt is transmitted, at step 29 to author. Ak, after TSA signing, at step 28, with the public key cryptographic signature scheme and becomes the certified receipt, or certificate, Ck. With the data derived above, and assuming that TSA has the RSA signature key set, in decimal:
<n,e>=<43200677821428109, 191>(Public)
<n/d>=<43200677821428109, 29403602422449791>(Private)
the signed certificate for Rk, 8451ac1564c974, would compute as:
Rd mod n=39894704664774392
When author, Ak, receives this certificate, Ck, along with the literal statement of Rk, it may be readily confirmed as being correct by application of the TSA public key to verify that:
Cke mod n=Rk
and that Rk in fact contains the data representing the document hash, Hk.
The procedure shown in this simple one-link example results in a certificate which, being bounded in time by the data from document, Dk, provides author, Ak-1 with reliable evidence that document, Dk-1, was not backdated to a time significantly prior to the existence of document, Dk. When the certificate of Ak is expanded with additional data from the subsequently processed document, Dk+1, it will likewise be effectively bounded to substantiate the time stamp claimed by Ak. In an alternative of the same effect, Ak could simply be advised of the identity of Ak+1 and could confirm from that author that the one-link certificate, Ck+1, contained the element, Hk. The procedure could also be varied to provide certified receipts which include data from any number of authors, with each addition providing a further degree of assurance against falsification.
Another embodiment of the invention, as shown in FIG. 3, which utilizes randomly selected members of the author universe as time-stamping agents, or witnesses, i.e. a "distributed trust" procedure, would proceed in the following manner. Although these numbers are not so limited in actual practice, for purposes of the example it will be assumed that the universe consists of 1000 authors, having IDs 0-999, and that three witnesses will be sufficient to establish the veracity of the time stamp. Also, in this example the earlier-noted variation including the services of a TSA is being implemented. The hashing function, md4, utilized in the above example is employed here also, in optional step 32, as an example of a deterministic document function which will seed the pseudorandom selection of the three witnesses from the author universe.
As in the previous example, the author transmits the document to the TSA, normally in hashed form, as the identified request:
172, ef6dfdcd833f3a43d4515a9fb5ce3915
The TSA now uses this document bash string, in step 33, as the seed to generate the ID number of the first witness, at step 35, according to the selection algorithm:
ID={md4(seed)}mod(universe size)
The resulting seed hash:
26f54eae92511dbb5e06e7c2de6e0fcf
represents the 128 bit number which mod 1000 is 487, the ID of the tint selected witness. The next witness is likewise chosen using this seed hash representation as the seed in the second selection computation to yield:
882653ee04d16blf0d604883aa27300b
which rood 1000, is 571, the second witness ID. A repeat of the computation, again seeding with the prior seed hash, selects the final witness as 598, which is:
2fe8768ef3532f15c40acf1341902cle mod 1000
The TSA now sends, at step 37, a copy of the original request to each of these three witnesses who individually, at step 38, add a current time statement and ID, and certify the resulting receipts by signing with the RSA cryptographic signature scheme and transmitting them, at step 39, directly to the author or through the TSA who may assemble the certificates into a file to be delivered to the author. By virtue of the fact that the pseudorandom generation prevents the exercise of a personal choice in the selection of witnesses, the author is deterred by the risk of encountering a non-cooperative witness from attempting any communication prior to time stamp certification for the purpose of arranging for a false time entry. In a process variant where the author is allowed to transmit the request directly to witnesses, the random selection of such witnesses which is keyed essentially to the involved document itself frustrates any attempt by the author to direct the document to a known cooperative witness. The group of resulting certificates my thus be employed with confidence in later proofs employing signature verification in the manner earlier described.
The procedures described and variants suggested herein for the practice of this time-stamping process and the various other embodiments which will become apparent to the skilled artisan in the light of the foregoing description are all nonetheless to be included within the scope of the present invention as defined by the appended claims.
Haber, Stuart A., Stornetta, Jr., Wakefield S.
| Patent | Priority | Assignee | Title |
| 10361869, | Aug 23 2016 | International Business Machines Corporation | Event ledger |
| 10445697, | Nov 26 2012 | HARTFORD FIRE INSURANCE COMPANY | System for selection of data records containing structured and unstructured data |
| 10587557, | Mar 17 2000 | United States Postal Service | Methods and systems for providing a secure electronic mailbox |
| 10659413, | Mar 17 2000 | United States Postal Service | Methods and systems for providing and electronic account to a customer |
| 10671761, | May 05 2006 | Hybir Inc. | Group based complete and incremental computer file backup system, process and apparatus |
| 11138561, | Nov 26 2012 | HARTFORD FIRE INSURANCE COMPANY | System and method for data record selection by application of predictive models and velocity analysis |
| 11861560, | Nov 26 2012 | HARTFORD FIRE INSURANCE COMPANY | System and method for data record selection by application of predictive models and velocity analysis |
| 5664017, | Apr 13 1995 | Sandisk IL Ltd | Internationally regulated system for one to one cryptographic communications with national sovereignty without key escrow |
| 5668878, | Feb 28 1994 | Microsoft Technology Licensing, LLC | Secure cryptographic methods for electronic transfer of information |
| 5684951, | Mar 20 1996 | Synopsys, Inc | Method and system for user authorization over a multi-user computer system |
| 5694569, | Nov 19 1993 | Method for protecting a volatile file using a single hash | |
| 5696827, | Aug 31 1995 | Microsoft Technology Licensing, LLC | Secure cryptographic methods for electronic transfer of information |
| 5717758, | Nov 02 1995 | ASSA ABLOY AB | Witness-based certificate revocation system |
| 5748738, | Jan 17 1995 | EORIGINAL, INC | System and method for electronic transmission, storage and retrieval of authenticated documents |
| 5781629, | Oct 28 1994 | WORLDGATE MANAGEMENT, LLC; Surety, LLC | Digital document authentication system |
| 5793868, | Aug 29 1996 | ASSA ABLOY AB | Certificate revocation system |
| 5828751, | Apr 08 1996 | CERTIFIED MEASUREMENTS, LLC; CERTIFIED MEASUREMENT, LLC | Method and apparatus for secure measurement certification |
| 5852665, | Apr 13 1995 | Sandisk IL Ltd | Internationally regulated system for one to one cryptographic communications with national sovereignty without key escrow |
| 5903651, | May 14 1996 | AXWAY INC | Apparatus and method for demonstrating and confirming the status of a digital certificates and other data |
| 5923763, | Mar 21 1996 | Inventor Holdings, LLC | Method and apparatus for secure document timestamping |
| 5949879, | Sep 06 1996 | Pitney Bowes Inc.; Pitney Bowes Inc | Auditable security system for the generation of cryptographically protected digital data |
| 5960083, | Oct 24 1995 | ASSA ABLOY AB | Certificate revocation system |
| 5978475, | Jul 18 1997 | BT AMERICAS INC | Event auditing system |
| 6097811, | Nov 02 1995 | ASSA ABLOY AB | Tree-based certificate revocation system |
| 6105134, | Apr 03 1995 | Scientific-Atlanta, LLC | Verification of the source of program information in a conditional access system |
| 6115735, | Oct 27 1993 | Hitachi, Ltd. | Message guaranty system |
| 6237096, | Jan 17 1995 | EORIGINAL, INC | System and method for electronic transmission storage and retrieval of authenticated documents |
| 6263438, | Mar 21 1996 | Inventor Holdings, LLC | Method and apparatus for secure document timestamping |
| 6266772, | Jul 22 1997 | Fujitsu Limited | Authentication system for electronic data objects to be opened to public, and storage medium |
| 6289374, | Oct 27 1993 | Hitachi, Ltd. | Message guaranty system |
| 6289453, | Apr 08 1996 | CERTIFIED MEASUREMENTS, LLC; CERTIFIED MEASUREMENT, LLC | Method and apparatus for secure measurement certification |
| 6301659, | Nov 02 1995 | ASSA ABLOY AB | Tree-based certificate revocation system |
| 6327656, | Jul 02 1997 | TIMESTAMP COM, INC | Apparatus and method for electronic document certification and verification |
| 6370250, | Oct 29 1998 | International Business Machines Corporation | Method of authentication and storage of private keys in a public key cryptography system (PKCS) |
| 6381696, | Sep 22 1998 | DOYLE, MICHAEL D | Method and system for transient key digital time stamps |
| 6442689, | May 14 1996 | AXWAY INC | Apparatus and method for demonstrating and confirming the status of a digital certificates and other data |
| 6532540, | May 14 1996 | AXWAY INC | Apparatus and method for demonstrating and confirming the status of a digital certificates and other data |
| 6618747, | Nov 25 1998 | MEC MANAGEMENT, LLC | Electronic communication delivery confirmation and verification system |
| 6678821, | Mar 23 2000 | Echoworx Corporation | Method and system for restricting access to the private key of a user in a public key infrastructure |
| 6684215, | Jun 20 2000 | International Business Machines Corporation | Technique for enforcing temporal uniqueness in an object/relational database management system environment |
| 6742119, | Dec 10 1999 | GOOGLE LLC | Time stamping method using time delta in key certificate |
| 6792536, | Oct 20 1999 | TimeCertain LLC | Smart card system and methods for proving dates in digital files |
| 6874089, | Feb 25 2002 | CHEMTRON RESEARCH LLC | System, method and computer program product for guaranteeing electronic transactions |
| 6883706, | May 05 2003 | Toshiba Global Commerce Solutions Holdings Corporation | Point-of-sale bill authentication |
| 6895507, | Jul 02 1999 | Time Certain, LLC | Method and system for determining and maintaining trust in digital data files with certifiable time |
| 6901509, | May 14 1996 | AXWAY INC | Apparatus and method for demonstrating and confirming the status of a digital certificates and other data |
| 6948069, | Jul 02 1999 | Time Certain, LLC | Method and system for determining and maintaining trust in digital image files with certifiable time |
| 6959387, | Mar 21 1996 | Inventor Holdings, LLC | Method and apparatus for verifying secure document timestamping |
| 6965998, | Dec 10 1999 | International Business Machines Corporation | Time stamping method using time-based signature key |
| 6978929, | Jun 19 2000 | United States Postal Service | Systems and methods for providing mail item retrieval |
| 6993656, | Dec 10 1999 | International Business Machines Corporation | Time stamping method using aged time stamp receipts |
| 7017046, | Sep 22 1997 | DFS LINKAGES, INC | System and method for graphical indicia for the certification of records |
| 7039805, | May 20 1998 | RAKUTEN, INC | Electronic signature method |
| 7047415, | Sep 22 1997 | DFS LINKAGES, INC | System and method for widely witnessed proof of time |
| 7073056, | May 14 1996 | AXWAY INC | Apparatus and method for demonstrating and confirming the status of digital certificates and other data |
| 7124305, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7134020, | Jan 31 2002 | EVIDENCE EXCHANGE, LLC | System and method for securely duplicating digital documents |
| 7162635, | Jan 17 1995 | EORIGINAL, INC | System and method for electronic transmission, storage, and retrieval of authenticated electronic original documents |
| 7197143, | Jan 18 2002 | Johns Hopkins University, The | Digital video authenticator |
| 7205882, | Nov 10 2004 | ASSA ABLOY AB | Actuating a security system using a wireless device |
| 7210035, | Sep 22 1997 | DFS Linkages, Inc. | System and method for graphical indicia for the certification of records |
| 7216232, | Apr 20 1999 | NEC Corporation Of America | Method and device for inserting and authenticating a digital signature in digital data |
| 7287030, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7293027, | Feb 26 2003 | Red Hat, Inc | Method for protecting history in a file system |
| 7295997, | Jun 19 2000 | POSTAL SERVICE, UNITED STATES | Method for shipping a package privately to a customer |
| 7315948, | Dec 10 1999 | International Business Machines Corporation | Time stamping method employing a separate ticket and stub |
| 7318072, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 7337315, | Oct 02 1995 | ASSA ABLOY AB | Efficient certificate revocation |
| 7337944, | Feb 20 2001 | United States Postal Service | Universal delivery and collection box unit (UDCBU) |
| 7340610, | Aug 31 2004 | Hitachi, LTD | Trusted time stamping storage system |
| 7343308, | May 26 2000 | HARTFORD FIRE INSURANCE COMPANY | Method and system for identifying subrogation potential and valuing a subrogation file |
| 7353396, | Oct 02 1995 | ASSA ABLOY AB | Physical access control |
| 7356701, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7363326, | Feb 26 2003 | Red Hat, Inc | Archive with timestamps and deletion management |
| 7376598, | Jun 19 2000 | United States Postal Service | Method, system, and computer readable medium for shipping a package to a customer while preserving customer privacy |
| 7398283, | Feb 18 2000 | Red Hat, Inc | Method for providing access control for data items in a data repository in which storage space used by identical content is shared |
| 7409557, | May 16 2005 | Time Certain, LLC | System and method for distributing trusted time |
| 7412462, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7457959, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7467144, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 7478096, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 7484088, | Mar 17 2000 | United States Postal Service | Methods and systems for proofing identities using a certificate authority |
| 7490241, | Dec 10 1999 | International Business Machines Corporation | Time stamping method employing user specified time |
| 7496555, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 7506173, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7519824, | Dec 10 1999 | International Business Machines Corporation | Time stamping method employing multiple receipts linked by a nonce |
| 7526644, | May 14 1996 | Axway Inc. | Apparatus and method for demonstrating and confirming the status of digital certificates and other data |
| 7529928, | Oct 24 1995 | ASSA ABLOY AB | Certificate revocation system |
| 7553234, | Nov 22 1995 | JORASCH, JAMES A | Method and apparatus for outputting a result of a game via a container |
| 7553235, | Nov 22 1995 | JORASCH, JAMES A | Method and apparatus for outputting a result of a game via a container |
| 7574744, | Jan 31 2002 | EVIDENCE EXCHANGE, LLC | System and method for securely duplicating digital documents |
| 7587617, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7600129, | Oct 02 1995 | ASSA ABLOY AB | Controlling access using additional data |
| 7635084, | Dec 04 1996 | SERVSTOR TECHNOLOGIES, LLC | Electronic transaction systems and methods therefor |
| 7650508, | Sep 28 2001 | NCIPHER SECURITY LIMITED | Time stamping system |
| 7657751, | May 13 2003 | ASSA ABLOY AB | Efficient and secure data currentness systems |
| 7657931, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7660994, | Oct 24 1995 | ASSA ABLOY AB | Access control |
| 7685096, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7693814, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 7698557, | Dec 22 2003 | Guardtime SA | System and method for generating a digital certificate |
| 7711950, | Mar 17 2000 | United States Postal Service | Methods and systems for establishing an electronic account for a customer |
| 7716486, | Oct 02 1995 | ASSA ABLOY AB | Controlling group access to doors |
| 7716488, | Aug 31 2004 | Hitachi, Ltd. | Trusted time stamping storage system |
| 7729957, | Jul 25 2000 | United States Postal Service | Item attribute preverification |
| 7729988, | Mar 21 1997 | PayPal, Inc | Method and apparatus for processing credit card transactions |
| 7734595, | Feb 26 2003 | Red Hat, Inc | Communicating information between clients of a data repository that have deposited identical data items |
| 7743248, | Jan 17 1995 | EORIGINAL, INC | System and method for a remote access service enabling trust and interoperability when retrieving certificate status from multiple certification authority reporting components |
| 7747583, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 7769997, | Feb 25 2002 | CHEMTRON RESEARCH LLC | System, method and computer program product for guaranteeing electronic transactions |
| 7779481, | Apr 12 2001 | United States Postal Service | Systems and methods for electronic postmarking of data including location data |
| 7797192, | May 06 2003 | Toshiba Global Commerce Solutions Holdings Corporation | Point-of-sale electronic receipt generation |
| 7797543, | Sep 30 1999 | United States Postal Service | Systems and methods for authenticating an electronic message |
| 7801745, | Mar 10 2000 | Inventor Holdings, LLC | Methods and apparatus for increasing and/or monitoring a party's compliance with a schedule for taking medicines |
| 7802093, | Mar 17 2000 | United States Postal Service | Methods and systems for proofing identities using a certificate authority |
| 7818284, | Sep 04 1996 | PayPal, Inc | Method and apparatus for providing cross-benefits via a central authority |
| 7821404, | Oct 01 1998 | JORASCH, JAMES A | Systems and methods for improved health care compliance |
| 7822989, | Oct 02 1995 | ASSA ABLOY AB | Controlling access to an area |
| 7827056, | Sep 05 1996 | PayPal, Inc | Method and apparatus for facilitating electronic commerce through providing cross-benefits during a transaction |
| 7827057, | Oct 05 1998 | PayPal, Inc | Method and apparatus for providing cross-benefits based on a customer activity |
| 7831470, | Sep 04 1996 | PayPal, Inc | Method and apparatus for facilitating electronic commerce through providing cross-benefits during a transaction |
| 7848961, | Jun 19 2000 | The United States Postal Service | System, method and article of manufacture for shipping a package privately to a customer |
| 7853795, | Feb 25 2002 | CHEMTRON RESEARCH LLC | System, method and computer program product for guaranteeing electronic transactions |
| 7861088, | Dec 10 2002 | Verizon Patent and Licensing Inc | Method and system for verifiably recording voice communications |
| 7912855, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 7930315, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 7936693, | May 18 2001 | CHEMTRON RESEARCH LLC | System, method and computer program product for providing an IP datalink multiplexer |
| 7966487, | Jan 09 2004 | ASSA ABLOY AB | Communication-efficient real time credentials for OCSP and distributed OCSP |
| 7979343, | May 18 2001 | CHEMTRON RESEARCH LLC | System, method and computer program product for providing an efficient trading market |
| 7979397, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 7979533, | May 18 2001 | CHEMTRON RESEARCH LLC | System, method and computer program product for auditing XML messages in a network-based message stream |
| 7979539, | May 18 2001 | CHEMTRON RESEARCH LLC | System, method and computer program product for analyzing data from network-based structured message stream |
| 7984289, | Mar 17 2000 | United States Postal Service | Methods and systems for establishing an electronic account for a customer |
| 7987197, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 7996673, | May 12 2004 | Echoworx Corporation | System, method and computer product for sending encrypted messages to recipients where the sender does not possess the credentials of the recipient |
| 8010686, | Mar 17 2000 | United States Postal Service | Methods and systems for proofing identities using a certificate authority |
| 8015059, | May 05 1997 | PayPal, Inc | Method and apparatus for facilitating the sale of subscriptions to periodicals |
| 8015597, | Oct 02 1995 | ASSA ABLOY AB | Disseminating additional data used for controlling access |
| 8016189, | Dec 04 1996 | SERVSTOR TECHNOLOGIES, LLC | Electronic transaction systems and methods therefor |
| 8055509, | Mar 10 2000 | Inventor Holdings, LLC | Methods and apparatus for increasing and/or for monitoring a party's compliance with a schedule for taking medicines |
| 8055628, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 8069056, | Mar 10 2000 | Inventor Holdings, LLC | Methods and apparatus for increasing and/or for monitoring a party's compliance with a schedule for taking medicines |
| 8092224, | Nov 22 1995 | JORASCH, JAMES A | Systems and methods for improved health care compliance |
| 8095516, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 8095797, | Sep 30 1999 | United States Postal Service | Systems and methods for authenticating an electronic message |
| 8161279, | Mar 17 2000 | United States Postal Service | Methods and systems for proofing identities using a certificate authority |
| 8166115, | Jun 20 2000 | United States Postal Service | Systems and methods for electronic message content identification |
| 8209191, | Mar 17 2000 | United States Postal Service | Methods and systems for linking an electronic address to a physical address of a customer |
| 8225089, | Dec 04 1996 | SERVSTOR TECHNOLOGIES, LLC | Electronic transaction systems utilizing a PEAD and a private key |
| 8234164, | Sep 04 1996 | PayPal, Inc | Method and apparatus for facilitating electronic commerce through providing cross-benefits during a transaction |
| 8244809, | Jun 20 2000 | POSTAL SERVICE, UNITED STATES | System and methods for electronic message content identification |
| 8255235, | Sep 07 2001 | United States Postal Service | Item tracking and anticipated delivery confirmation system method |
| 8261319, | Jul 18 2003 | ASSA ABLOY AB | Logging access attempts to an area |
| 8262394, | Nov 22 1995 | JORASCH, JAMES A | Systems and methods for improved health care compliance |
| 8312528, | Dec 22 2003 | Guardtime SA | System and method for generating a digital certificate |
| 8347372, | Dec 22 2003 | Guardtime SA | System and method for generating a digital certificate |
| 8353752, | Nov 22 1995 | JORASCH, JAMES A | Method and apparatus for outputting a result of a game via a container |
| 8356187, | Mar 17 2000 | United States Postal Service | Methods and systems for providing a secure electronic mailbox |
| 8429234, | Mar 17 2000 | United States Postal Service | Methods and systems for providing an electronic account to a customer |
| 8484479, | Sep 30 1999 | The United States Postal Service | Systems and methods for authenticating an electronic message |
| 8489877, | May 12 2004 | Echoworx Corporation | System, method and computer product for sending encrypted messages to recipients where the sender does not possess the credentials of the recipient |
| 8543451, | Sep 04 1996 | PayPal, Inc | Method and apparatus for facilitating electronic commerce through providing cross-benefits during a transaction |
| 8556728, | Nov 22 1995 | JORASCH, JAMES A | Method and apparatus for outputting a result of a game via a container |
| 8635078, | Sep 07 2001 | United States Postal Service | Item tracking and anticipated delivery confirmation system and method |
| 8700456, | Oct 05 1998 | PayPal, Inc | Method and apparatus for providing cross-benefits based on a customer activity |
| 8706586, | May 26 2000 | HARTFORD FIRE INSURANCE COMPANY | Method and system for identifying subrogation potential and valuing a subrogation file |
| 8706632, | Mar 21 1997 | PayPal, Inc | Method and apparatus for processing credit card transactions |
| 8707030, | Nov 19 2003 | ASSA ABLOY AB | Distributed delegated path discovery and validation |
| 8731953, | Mar 17 2000 | United States Postal Service | Methods and systems for linking an electronic address to a physical address of a customer using a delivery point identification key |
| 8732457, | Oct 02 1995 | ASSA ABLOY AB | Scalable certificate validation and simplified PKI management |
| 8769632, | Mar 17 2000 | United States Postal Service | Methods and systems for providing a secure electronic mailbox |
| 8782422, | Apr 11 2003 | Nextenders (India) Private, Ltd. | System and method for authenticating documents |
| 8868914, | Jul 02 1999 | System and methods for distributing trusted time | |
| 9037545, | May 05 2006 | Hybir Inc. | Group based complete and incremental computer file backup system, process and apparatus |
| 9104716, | Feb 26 2003 | Red Hat, Inc | History preservation in a computer storage system |
| 9177175, | Feb 18 2000 | Red Hat, Inc | Data repository and method for promoting network storage of data |
| 9363219, | Mar 17 2000 | The United States Postal Service | Methods and systems for providing an electronic account to a customer |
| 9444625, | Sep 30 1999 | United States Postal Service | Systems and methods for authenticating an electronic message |
| 9679146, | May 05 2006 | Hybir Inc. | Group based complete and incremental computer file backup system, process and apparatus |
| 9697553, | Oct 05 1998 | PayPal, Inc | Method and apparatus for providing cross-benefits based on a customer activity |
| ER7394, | |||
| RE41960, | Mar 21 1996 | Inventor Holdings, LLC | Method and apparatus for verifying secure document timestamping |
| RE42018, | Mar 21 1996 | Inventor Holdings, LLC | Method and apparatus for verifying secure document timestamping |
| RE42893, | Jul 17 2001 | Inventor Holdings, LLC | Method and apparatus for verifying secure document timestamping |
| Patent | Priority | Assignee | Title |
| 4145568, | Oct 18 1963 | OMNISEC AG, TROCKENLOOSTRASSE 91, CH-8105 REGENSDORF, SWITZERLAND, A CO OF SWITZERLAND | Method and apparatus for ciphering and deciphering messages |
| 4405829, | Dec 14 1977 | Massachusetts Institute of Technology | Cryptographic communications system and method |
| 4625076, | Mar 19 1984 | Nippon Telegraph & Telephone Corporation | Signed document transmission system |
| 4868877, | Feb 12 1988 | Public key/signature cryptosystem with enhanced digital signature certification | |
| 4881264, | Jul 30 1987 | Digital signature system and method based on a conventional encryption function | |
| 4972474, | May 01 1989 | SAFENET, INC | Integer encryptor |
| 5001752, | Oct 13 1989 | Public/key date-time notary facility |
| Date | Maintenance Fee Events |
| Dec 08 1995 | ASPN: Payor Number Assigned. |
| Dec 01 1999 | M184: Payment of Maintenance Fee, 8th Year, Large Entity. |
| Jan 20 2004 | M1553: Payment of Maintenance Fee, 12th Year, Large Entity. |
| Date | Maintenance Schedule |
| May 30 1998 | 4 years fee payment window open |
| Nov 30 1998 | 6 months grace period start (w surcharge) |
| May 30 1999 | patent expiry (for year 4) |
| May 30 2001 | 2 years to revive unintentionally abandoned end. (for year 4) |
| May 30 2002 | 8 years fee payment window open |
| Nov 30 2002 | 6 months grace period start (w surcharge) |
| May 30 2003 | patent expiry (for year 8) |
| May 30 2005 | 2 years to revive unintentionally abandoned end. (for year 8) |
| May 30 2006 | 12 years fee payment window open |
| Nov 30 2006 | 6 months grace period start (w surcharge) |
| May 30 2007 | patent expiry (for year 12) |
| May 30 2009 | 2 years to revive unintentionally abandoned end. (for year 12) |