Stephen F. Bisbee - Baltimore MD Jack J. Moskowitz - Ellicott City MD Michael W. White - Baltimore MD
Assignee:
eOriginal Inc. - Baltimore MD
International Classification:
H04L 900
US Classification:
713178, 713176, 713158
Abstract:
Digital signatures are not valid indefinitely but only during the validity periods of their authentication certificates, which themselves are not indefinite but typically expire in order to limit the chances for compromise of the digital signatures. This poses a problem for electronic information objects that are intended to have legal weight for periods longer than the remaining validity period of a signature. There are thus provided methods of handling stored electronic original objects that have been created by signing information objects by respective transfer agents, submitting signed information objects to a trusted custodial utility, validating the submitted signed information objects by at least testing the integrity of the contents of each signed information object and the validity of the signature of the respective transfer agent, and applying to each validated information object a date-time stamp and a digital signature and authentication certificate of the trusted custodial utility. One method includes re-validating an electronic original object by verifying the digital signature of the trusted custodial utility applied to the object and applying to the re-validated object a current date-time stamp and a digital signature and current authentication certificate of the trusted custodial utility. Another method includes the step of creating an object-inventory from at least one stored electronic original object, where the object-inventory includes an object identifier and a signature block for each object from which the object-inventory is created.
Stephen F. Bisbee - Baltimore MD, US Jack J. Moskowitz - Ellicott City MD, US Keith F. Becker - Baltimore MD, US Ellis K. Peterson - Arnold MD, US Gordon W. Twaddell - Millersville MD, US
Assignee:
Eoriginal, Inc. - Baltimore MD
International Classification:
G06F 17/30
US Classification:
707 1, 707 6, 707 10, 707200, 709229, 715743
Abstract:
Systems and methods for providing user logon and state-less authentication are described in a distributed processing environment. Upon an attempted access by a user to an online resource, transaction, or record, a logon component asks the user to supply a logon ID and a password. The logon component verifies the provided information, and upon successful identification, a security context is constructed from information relevant to the user. The security context is sent to the user and is presented to the system each time the user attempts to invoke a new resource, such as a program object, transaction, record, or certified printer avoiding the need for repeated logon processing.
System And Method For Electronic Transmission, Storage, And Retrieval Of Authenticated Electronic Original Documents
Stephen F. Bisbee - Baltimore MD, US Jack J. Moskowitz - Ellicott City MD, US Keith F. Becker - Baltimore MD, US Ellis K. Peterson - Arnold MD, US
Assignee:
eOriginal, Inc. - Baltimore MD
International Classification:
H04L 9/32 G06F 12/14
US Classification:
713176, 713189
Abstract:
Exemplary embodiments include methods of handling stored electronic original objects that have been created by signing information objects by respective transfer agents, submitting signed information objects to a trusted custodial utility, validating the submitted signed information objects by at least testing the integrity of the contents of each signed information object and the validity of the signature of the respective transfer agent, and applying to each validated information object a date-time stamp and a digital signature and authentication certificate of the trusted custodial utility. One method includes re-validating an electronic original object by verifying the digital signature of the trusted custodial utility applied to the object and applying to the re-validated object a current date-time stamp and a digital signature and current authentication certificate of the trusted custodial utility. Other methods include handling information objects that are transferable records according to specified business rules.
Stephen F. Bisbee - Baltimore MD, US Jack J. Moskowitz - Ellicott City MD, US Keith F. Becker - Baltimore MD, US Ellis K. Peterson - Arnold MD, US Gordon W. Twaddell - Millersville MD, US
International Classification:
G06F 7/00 G06F 17/30
US Classification:
707 9, 709224, 726 4
Abstract:
Systems and methods for providing user logon and state-less authentication are described in a distributed processing environment. Upon an attempted access by a user to an online resource, transaction, or record, a logon component asks the user to supply a logon ID and a password. The logon component verifies the provided information, and upon successful identification, a security context is constructed from information relevant to the user. The security context is sent to the user and is presented to the system each time the user attempts to invoke a new resource, such as a program object, transaction, record, or certified printer avoiding the need for repeated logon processing.
System And Method For A Remote Access Service Enabling Trust And Interoperability When Retrieving Certificate Status From Multiple Certification Authority Reporting Components
Stephen F. Bisbee - Baltimore MD, US Jack J. Moskowitz - Ellicott City MD, US Keith F. Becker - Baltimore MD, US Walter J. Hilton - Severna Park MD, US Joshua Szebenyi - Baltimore MD, US
Assignee:
eOriginal, Inc. - Baltimore MD
International Classification:
H04L 9/32
US Classification:
713158, 713175, 713156, 726 10
Abstract:
A Certificate Status Service that is configurable, directed, and able to retrieve status from any approved Certification Authority (CA) is disclosed. The CSS may be used by a Trusted Custodial Utility (TCU) and comparable systems or applications whose roles are validating the right of an individual to perform a requisite action, the authenticity of submitted electronic information objects, and the status of authentication certificates used in digital signature verification and user authentication processes. The validity check on authentication certificates is performed by querying an issuing CA. Traditionally, to create a trusted Public Key Infrastructure (PKI) needed to validate certificates, complex relationships are formed by cross-certification among CAs or by use of PKI bridges. The PKI and CA interoperability problem is addressed from a different point of view, with a focus on establishing a trust environment suitable for the creation, execution, maintenance, transfer, retrieval and destruction of electronic original information objects that may also be transferable records (ownership may change hands). A TCU is concerned only with a known set of “approved CAs” although they may support a multitude of business environments, and within that set of CAs, only with those certificates that are associated with TCU user accounts.
Stephen F. Bisbee - Baltimore MD, US Jack J. Moskowitz - Ellicott City MD, US Keith F. Becker - Baltimore MD, US Ellis K. Peterson - Arnold MD, US Gordon W. Twaddell - Millersville MD, US
Assignee:
Teigel Processing AB, L.L.C. - Dover DE
International Classification:
G06F 7/00 G06F 17/30
US Classification:
707781, 707783, 709224, 726 4
Abstract:
Systems and methods for providing user logon and state-less authentication are described in a distributed processing environment. Upon an attempted access by a user to an online resource, transaction, or record, a logon component asks the user to supply a logon ID and a password. The logon component verifies the provided information, and upon successful identification, a security context is constructed from information relevant to the user. The security context is sent to the user and is presented to the system each time the user attempts to invoke a new resource, such as a program object, transaction, record, or certified printer avoiding the need for repeated logon processing.
System And Method For Electronic Transmission, Storage, Retrieval And Remote Signing Of Authenticated Electronic Original Documents
Stephen F. Bisbee - Baltimore MD, US Bryan K. Caporlette - Severna Park MD, US Jack J. Moskowitz - Glenwood MD, US
Assignee:
eOriginal, Inc. - Baltimore MD
International Classification:
G06K 15/00 H04L 9/00
US Classification:
358 114, 713179
Abstract:
Exemplary embodiments include methods of handling stored electronic original information objects that have been created by electronically signing information objects by respective authorized users and transfer agents, submitting signed information objects to a trusted repository system, validating the submitted signed information objects by at least testing the integrity of the contents of each signed information object and the validity of the signature of the respective transfer agent, and applying to each validated information object a date-time stamp and a digital signature and authentication certificate of the trusted repository system that is an electronic vault. One method includes the remote signing of electronic documents without the trusted repository ever releasing the electronic original documents and other information objects that are controlled and protected by the trusted repository system. Other methods include handling information objects that are transferable records according to specified business and government rules.
System And Method For Electronic Transmission Storage And Retrieval Of Authenticated Documents
Stephen F. Bisbee - Glyndon MD Jack J. Moskowitz - Ellicott City MD Douglas H. Trotter - Baltimore MD Michael W. White - Baltimore MD
Assignee:
eOriginal Inc. - Baltimore MD
International Classification:
H04L 900
US Classification:
713178
Abstract:
Methods and apparatus are provided that implement digital signing and/or encryption for the electronic transmission, storage, and retrieval of authenticated documents and that enable the establishment of the identity of the originator of an electronic document and of the integrity of the information contained in such a document. Together these provide irrevocable proof of authenticity of the document. The methods and apparatus make it possible to provide "paper-less" commercial transactions, such as real-estate transactions and the financial transactions secured by real estate. A Certification Authority provides tools for initializing and managing the cryptographic material required to sign and seal electronic documents. An Authentication Center provides "third party" verification that a document is executed and transmitted by the document's originator. The methods and apparatus eliminate the need for "hard copies" of original documents as well as hard-copy storage.