Jack J Moskowitz

US Patent:

6367013, Apr 2, 2002

Filed:

Dec 1, 1999

Appl. No.:

09/452928

Inventors:

Stephen F. Bisbee - Baltimore MD
Jack J. Moskowitz - Ellicott City MD
Michael W. White - Baltimore MD

Assignee:

eOriginal Inc. - Baltimore MD

International Classification:

H04L 900

US Classification:

713178, 713176, 713158

Abstract:

Digital signatures are not valid indefinitely but only during the validity periods of their authentication certificates, which themselves are not indefinite but typically expire in order to limit the chances for compromise of the digital signatures. This poses a problem for electronic information objects that are intended to have legal weight for periods longer than the remaining validity period of a signature. There are thus provided methods of handling stored electronic original objects that have been created by signing information objects by respective transfer agents, submitting signed information objects to a trusted custodial utility, validating the submitted signed information objects by at least testing the integrity of the contents of each signed information object and the validity of the signature of the respective transfer agent, and applying to each validated information object a date-time stamp and a digital signature and authentication certificate of the trusted custodial utility. One method includes re-validating an electronic original object by verifying the digital signature of the trusted custodial utility applied to the object and applying to the re-validated object a current date-time stamp and a digital signature and current authentication certificate of the trusted custodial utility. Another method includes the step of creating an object-inventory from at least one stored electronic original object, where the object-inventory includes an object identifier and a signature block for each object from which the object-inventory is created.

US Patent:

7020645, Mar 28, 2006

Filed:

Apr 19, 2001

Appl. No.:

09/839551

Inventors:

Stephen F. Bisbee - Baltimore MD, US
Jack J. Moskowitz - Ellicott City MD, US
Keith F. Becker - Baltimore MD, US
Ellis K. Peterson - Arnold MD, US
Gordon W. Twaddell - Millersville MD, US

Assignee:

Eoriginal, Inc. - Baltimore MD

International Classification:

G06F 17/30

US Classification:

707 1, 707 6, 707 10, 707200, 709229, 715743

Abstract:

Systems and methods for providing user logon and state-less authentication are described in a distributed processing environment. Upon an attempted access by a user to an online resource, transaction, or record, a logon component asks the user to supply a logon ID and a password. The logon component verifies the provided information, and upon successful identification, a security context is constructed from information relevant to the user. The security context is sent to the user and is presented to the system each time the user attempts to invoke a new resource, such as a program object, transaction, record, or certified printer avoiding the need for repeated logon processing.

US Patent:

7162635, Jan 9, 2007

Filed:

Dec 14, 2000

Appl. No.:

09/737325

Inventors:

Stephen F. Bisbee - Baltimore MD, US
Jack J. Moskowitz - Ellicott City MD, US
Keith F. Becker - Baltimore MD, US
Ellis K. Peterson - Arnold MD, US

Assignee:

eOriginal, Inc. - Baltimore MD

International Classification:

H04L 9/32
G06F 12/14

US Classification:

713176, 713189

Abstract:

Exemplary embodiments include methods of handling stored electronic original objects that have been created by signing information objects by respective transfer agents, submitting signed information objects to a trusted custodial utility, validating the submitted signed information objects by at least testing the integrity of the contents of each signed information object and the validity of the signature of the respective transfer agent, and applying to each validated information object a date-time stamp and a digital signature and authentication certificate of the trusted custodial utility. One method includes re-validating an electronic original object by verifying the digital signature of the trusted custodial utility applied to the object and applying to the re-validated object a current date-time stamp and a digital signature and current authentication certificate of the trusted custodial utility. Other methods include handling information objects that are transferable records according to specified business rules.

US Patent:

7657531, Feb 2, 2010

Filed:

Jan 5, 2006

Appl. No.:

11/325463

Inventors:

Stephen F. Bisbee - Baltimore MD, US
Jack J. Moskowitz - Ellicott City MD, US
Keith F. Becker - Baltimore MD, US
Ellis K. Peterson - Arnold MD, US
Gordon W. Twaddell - Millersville MD, US

International Classification:

G06F 7/00
G06F 17/30

US Classification:

707 9, 709224, 726 4

Abstract:

Systems and methods for providing user logon and state-less authentication are described in a distributed processing environment. Upon an attempted access by a user to an online resource, transaction, or record, a logon component asks the user to supply a logon ID and a password. The logon component verifies the provided information, and upon successful identification, a security context is constructed from information relevant to the user. The security context is sent to the user and is presented to the system each time the user attempts to invoke a new resource, such as a program object, transaction, record, or certified printer avoiding the need for repeated logon processing.

US Patent:

7743248, Jun 22, 2010

Filed:

Jul 16, 2003

Appl. No.:

10/620817

Inventors:

Stephen F. Bisbee - Baltimore MD, US
Jack J. Moskowitz - Ellicott City MD, US
Keith F. Becker - Baltimore MD, US
Walter J. Hilton - Severna Park MD, US
Joshua Szebenyi - Baltimore MD, US

Assignee:

eOriginal, Inc. - Baltimore MD

International Classification:

H04L 9/32

US Classification:

713158, 713175, 713156, 726 10

Abstract:

A Certificate Status Service that is configurable, directed, and able to retrieve status from any approved Certification Authority (CA) is disclosed. The CSS may be used by a Trusted Custodial Utility (TCU) and comparable systems or applications whose roles are validating the right of an individual to perform a requisite action, the authenticity of submitted electronic information objects, and the status of authentication certificates used in digital signature verification and user authentication processes. The validity check on authentication certificates is performed by querying an issuing CA. Traditionally, to create a trusted Public Key Infrastructure (PKI) needed to validate certificates, complex relationships are formed by cross-certification among CAs or by use of PKI bridges. The PKI and CA interoperability problem is addressed from a different point of view, with a focus on establishing a trust environment suitable for the creation, execution, maintenance, transfer, retrieval and destruction of electronic original information objects that may also be transferable records (ownership may change hands). A TCU is concerned only with a known set of “approved CAs” although they may support a multitude of business environments, and within that set of CAs, only with those certificates that are associated with TCU user accounts.

US Patent:

8051098, Nov 1, 2011

Filed:

Jan 21, 2010

Appl. No.:

12/691547

Inventors:

Stephen F. Bisbee - Baltimore MD, US
Jack J. Moskowitz - Ellicott City MD, US
Keith F. Becker - Baltimore MD, US
Ellis K. Peterson - Arnold MD, US
Gordon W. Twaddell - Millersville MD, US

Assignee:

Teigel Processing AB, L.L.C. - Dover DE

International Classification:

G06F 7/00
G06F 17/30

US Classification:

707781, 707783, 709224, 726 4

Abstract:

Systems and methods for providing user logon and state-less authentication are described in a distributed processing environment. Upon an attempted access by a user to an online resource, transaction, or record, a logon component asks the user to supply a logon ID and a password. The logon component verifies the provided information, and upon successful identification, a security context is constructed from information relevant to the user. The security context is sent to the user and is presented to the system each time the user attempts to invoke a new resource, such as a program object, transaction, record, or certified printer avoiding the need for repeated logon processing.

US Patent:

20120086971, Apr 12, 2012

Filed:

Dec 13, 2010

Appl. No.:

12/966529

Inventors:

Stephen F. Bisbee - Baltimore MD, US
Bryan K. Caporlette - Severna Park MD, US
Jack J. Moskowitz - Glenwood MD, US

Assignee:

eOriginal, Inc. - Baltimore MD

International Classification:

G06K 15/00
H04L 9/00

US Classification:

358 114, 713179

Abstract:

Exemplary embodiments include methods of handling stored electronic original information objects that have been created by electronically signing information objects by respective authorized users and transfer agents, submitting signed information objects to a trusted repository system, validating the submitted signed information objects by at least testing the integrity of the contents of each signed information object and the validity of the signature of the respective transfer agent, and applying to each validated information object a date-time stamp and a digital signature and authentication certificate of the trusted repository system that is an electronic vault. One method includes the remote signing of electronic documents without the trusted repository ever releasing the electronic original documents and other information objects that are controlled and protected by the trusted repository system. Other methods include handling information objects that are transferable records according to specified business and government rules.

US Patent:

62370960, May 22, 2001

Filed:

May 4, 1998

Appl. No.:

9/072079

Inventors:

Stephen F. Bisbee - Glyndon MD
Jack J. Moskowitz - Ellicott City MD
Douglas H. Trotter - Baltimore MD
Michael W. White - Baltimore MD

Assignee:

eOriginal Inc. - Baltimore MD

International Classification:

H04L 900

US Classification:

713178

Abstract:

Methods and apparatus are provided that implement digital signing and/or encryption for the electronic transmission, storage, and retrieval of authenticated documents and that enable the establishment of the identity of the originator of an electronic document and of the integrity of the information contained in such a document. Together these provide irrevocable proof of authenticity of the document. The methods and apparatus make it possible to provide "paper-less" commercial transactions, such as real-estate transactions and the financial transactions secured by real estate. A Certification Authority provides tools for initializing and managing the cryptographic material required to sign and seal electronic documents. An Authentication Center provides "third party" verification that a document is executed and transmitted by the document's originator. The methods and apparatus eliminate the need for "hard copies" of original documents as well as hard-copy storage.