CA2426828A1 - Method and apparatus for delegating digital signatures to a signature server - Google Patents
Method and apparatus for delegating digital signatures to a signature server Download PDFInfo
- Publication number
- CA2426828A1 CA2426828A1 CA002426828A CA2426828A CA2426828A1 CA 2426828 A1 CA2426828 A1 CA 2426828A1 CA 002426828 A CA002426828 A CA 002426828A CA 2426828 A CA2426828 A CA 2426828A CA 2426828 A1 CA2426828 A1 CA 2426828A1
- Authority
- CA
- Canada
- Prior art keywords
- user
- signature server
- item
- request
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims 29
- 238000013475 authorization Methods 0.000 claims 6
- 238000012217 deletion Methods 0.000 claims 1
- 230000037430 deletion Effects 0.000 claims 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
- G06F21/645—Protecting data integrity, e.g. using checksums, certificates or signatures using a third party
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
Abstract
One embodiment of the present invention provides a system that facilitates delegating operations involved in providing digital signatures to a signature server. The system operates by receiving a request for a digital signature from a user at the signature server, wherein the request includes an item to be signed on behalf of the user by the signature server. In response to the request, the system looks up a private key for the user at the signature server, and signs the item with the private key. Next, the system returns the signed item to the user, so that the user can send the signed item to the recipient. In one embodiment of the present invention, the system authenticates the user prior to signing the item. In one embodiment of the present invention, the system determines whether the user is authorized to sign the item prior to signing the item.
Claims (33)
1. A method for facilitating the delegation of operations involved in providing digital signatures to a signature server, the method comprising:
receiving a request for a digital signature from a user at the signature server, the request including an item to be signed on behalf of the user by the signature server;
looking up a private key for the user at the signature server;
signing the item with the private key for the user; and returning the signed item to the user so that the user can send the signed item to a recipient.
receiving a request for a digital signature from a user at the signature server, the request including an item to be signed on behalf of the user by the signature server;
looking up a private key for the user at the signature server;
signing the item with the private key for the user; and returning the signed item to the user so that the user can send the signed item to a recipient.
2. The method of claim 1, wherein prior to signing the item, the method further comprises authenticating the user.
3. The method of claim 2, wherein prior to signing the item, the method further comprises determining whether the user is authorized to sign the item.
4. The method of claim 3, wherein determining whether the user is authorized to sign the item involves looking up an authorization for the user based upon an identifier for the user as well as an identifier for an application to which the user will send the signed item.
5. The method of claim 3, wherein determining whether the user is authorized to sign the item involves communicating with an authority server that is separate from the signature server.
6. The method of claim 1, further comprising allowing the user to authenticate the signature server prior to sending the request to the signature server.
7. The method of claim 1, further comprising facilitating encryption of communications between the user and the signature server.
8. The method of claim 1, wherein the method further comprises configuring the signature server to accommodate a new user by:
receiving a request from an authorized entity to add the new user;
generating a key pair for the new user, including a new user private key and a new user public key;
communicating with a certification authority to obtain a certificate for the new user based on the key pair; and storing the certificate and the key pair for the new user in a location that is accessible by the signature server to enable the signature server to sign items on behalf of the new user.
receiving a request from an authorized entity to add the new user;
generating a key pair for the new user, including a new user private key and a new user public key;
communicating with a certification authority to obtain a certificate for the new user based on the key pair; and storing the certificate and the key pair for the new user in a location that is accessible by the signature server to enable the signature server to sign items on behalf of the new user.
9. The method of claim 1, wherein the method further comprises configuring the signature server to delete an old user by:
receiving a request from an authorized entity to delete the old user;
notifying a certification authority to revoke a certificate for the old user;
and removing the private key for the old user from the signature server, so that the signature server can no longer sign items on behalf of the old user.
receiving a request from an authorized entity to delete the old user;
notifying a certification authority to revoke a certificate for the old user;
and removing the private key for the old user from the signature server, so that the signature server can no longer sign items on behalf of the old user.
10. The method of claim 1, wherein the method further comprises archiving the request and the signed item at the signature server.
11. The method of claim 1, wherein the method further comprises forwarding the signed item to an archive server in order to be archived.
12. A computer-readable storage medium storing instructions that when executed by a computer cause the computer to perform a method for facilitating the delegation of operations involved in providing digital signatures to a signature server, the method comprising:
receiving a request for a digital signature from a user at the signature server, the request including an item to be signed on behalf of the user by the signature server;
looking up a private key for the user at the signature server;
signing the item with the private key for the user; and returning the signed item to the user so that the user can send the signed item to a recipient.
receiving a request for a digital signature from a user at the signature server, the request including an item to be signed on behalf of the user by the signature server;
looking up a private key for the user at the signature server;
signing the item with the private key for the user; and returning the signed item to the user so that the user can send the signed item to a recipient.
13. The computer-readable storage medium of claim 12, wherein prior to signing the item, the method further comprises authenticating the user.
14. The computer-readable storage medium of claim 13, wherein prior to signing the item, the method further comprises determining whether the user is authorized to sign the item.
15. The computer-readable storage medium of claim 14, wherein determining whether the user is authorized to sign the item involves looking up an authorization for the user based upon an identifier for the user as well as an identifier for an application to which the user will send the signed item.
16. The computer-readable storage medium of claim 14, wherein determining whether the user is authorized to sign the item involves communicating with an authority server that is separate from the signature server.
17. The computer-readable storage medium of claim 12, wherein the method further comprises allowing the user to authenticate the signature server prior to sending the request to the signature server.
18. The computer-readable storage medium of claim 12, wherein the method further comprises facilitating encryption of communications between the user and the signature server.
19. The computer-readable storage medium of claim 12, wherein the method further comprises configuring the signature server to accommodate a new user by:
receiving a request from an authorized entity to add the new user;
generating a key pair for the new user, including a new user private key and a new user public key;
communicating with a certification authority to obtain a certificate for the new user based on the key pair; and storing the certificate and the key pair for the new user in a location that is accessible by the signature server to enable the signature server to sign items on behalf of the new user.
receiving a request from an authorized entity to add the new user;
generating a key pair for the new user, including a new user private key and a new user public key;
communicating with a certification authority to obtain a certificate for the new user based on the key pair; and storing the certificate and the key pair for the new user in a location that is accessible by the signature server to enable the signature server to sign items on behalf of the new user.
20. The computer-readable storage medium of claim 12, wherein the method further comprises configuring the signature server to delete an old user by:
receiving a request from an authorized entity to delete the old user;
notifying a certification authority to revoke a certificate for the old user;
and removing the private key for the old user from the signature server, so that the signature server can no longer sign items on behalf of the old user.
receiving a request from an authorized entity to delete the old user;
notifying a certification authority to revoke a certificate for the old user;
and removing the private key for the old user from the signature server, so that the signature server can no longer sign items on behalf of the old user.
21. The computer-readable storage medium of claim 12, wherein the method further comprises archiving the request and the signed item at the signature server.
22. The computer-readable storage medium of claim 12, wherein the method further comprises forwarding the signed item to an archive server in order to be archived.
23. An apparatus that facilitates delegating operations involved in providing digital signatures, comprising:
a signature server;
a receiving mechanism within the signature server that is configured to receive a request for a digital signature from a user, the request including an item to be signed on behalf of the user by the signature server;
a lookup mechanism within the signature server that is configured to look up a private key for the user;
a signing mechanism within the signature server that is configured to sign the item with the private key for the user; and a sending mechanism within the signature server that is configured to return the signed item to the user so that the user can send the signed item to a recipient.
a signature server;
a receiving mechanism within the signature server that is configured to receive a request for a digital signature from a user, the request including an item to be signed on behalf of the user by the signature server;
a lookup mechanism within the signature server that is configured to look up a private key for the user;
a signing mechanism within the signature server that is configured to sign the item with the private key for the user; and a sending mechanism within the signature server that is configured to return the signed item to the user so that the user can send the signed item to a recipient.
24. The apparatus of claim 23, further comprising an authentication mechanism that is configured to authenticate the user prior to signing the item.
25. The apparatus of claim 24, further comprising an authorization mechanism that is configured to determine whether the user is authorized to sign the item prior to signing the item.
26. The apparatus of claim 25, wherein the authorization mechanism is configured to determine whether the user is authorized to sign the item by looking up an authorization for the user based upon an identifier for the user as well as an identifier for an application to which the user will send the signed item.
27. The apparatus of claim 25, wherein the authorization mechanism is configured to determine whether the user is authorized to sign the item by communicating with an authority server that is separate from the signature server.
28. The apparatus of claim 23, further comprising an authentication mechanism that is configured to allow the user to authenticate the signature server prior to sending the request to the signature server.
29. The apparatus of claim 23, further comprising an encryption mechanism that is configured to facilitate encryption of communications between the user and the signature server.
30. The apparatus of claim 23, further comprising an initialization mechanism that is configured to:
receive a request from an authorized entity to add a new user;
generate a key pair for the new user, including a new user private key and a new user public key;
communicate with a certification authority to obtain a certificate for the new user based on the key pair; and to store the certificate and the key pair for the new user in a location that is accessible by the signature server to enable the signature server to sign items on behalf of the new user.
receive a request from an authorized entity to add a new user;
generate a key pair for the new user, including a new user private key and a new user public key;
communicate with a certification authority to obtain a certificate for the new user based on the key pair; and to store the certificate and the key pair for the new user in a location that is accessible by the signature server to enable the signature server to sign items on behalf of the new user.
31. The apparatus of claim 23, further comprising a deletion mechanism that is configured to:
receive a request from an authorized entity to delete an old user;
notify a certification authority to revolve a certificate for the old user;
and to remove the private key for the old user from the signature server, so that the signature server can no longer sign items on behalf of the old user.
receive a request from an authorized entity to delete an old user;
notify a certification authority to revolve a certificate for the old user;
and to remove the private key for the old user from the signature server, so that the signature server can no longer sign items on behalf of the old user.
32. The apparatus of claim 23, further comprising an archiving mechanism that is configured to archive the request and the signed item at the signature server.
33. The apparatus of claim 23, further comprising an archiving mechanism that is configured to forward the signed item to an archive server in order to be archived.
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US09/741,691 | 2000-12-15 | ||
US09/741,691 US7210037B2 (en) | 2000-12-15 | 2000-12-15 | Method and apparatus for delegating digital signatures to a signature server |
PCT/US2001/048266 WO2002048848A2 (en) | 2000-12-15 | 2001-12-11 | Method and appartus for delegating digital signatures to a signature server |
Publications (2)
Publication Number | Publication Date |
---|---|
CA2426828A1 true CA2426828A1 (en) | 2002-06-20 |
CA2426828C CA2426828C (en) | 2011-01-25 |
Family
ID=24981762
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CA2426828A Expired - Lifetime CA2426828C (en) | 2000-12-15 | 2001-12-11 | Method and apparatus for delegating digital signatures to a signature server |
Country Status (6)
Country | Link |
---|---|
US (1) | US7210037B2 (en) |
EP (1) | EP1402330B1 (en) |
JP (1) | JP4283536B2 (en) |
AU (2) | AU3662202A (en) |
CA (1) | CA2426828C (en) |
WO (1) | WO2002048848A2 (en) |
Families Citing this family (89)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7039807B2 (en) * | 2001-01-23 | 2006-05-02 | Computer Associates Think, Inc. | Method and system for obtaining digital signatures |
GB0119629D0 (en) * | 2001-08-10 | 2001-10-03 | Cryptomathic As | Data certification method and apparatus |
US7152048B1 (en) * | 2002-02-07 | 2006-12-19 | Oracle International Corporation | Memphis: multiple electronic money payment highlevel integrated security |
GB0217610D0 (en) * | 2002-07-30 | 2002-09-11 | Security & Standards Ltd | An electronic sealing and registration method for electronic transaction |
WO2004012415A1 (en) * | 2002-07-30 | 2004-02-05 | Security And Standards Limited | Electronic sealing for electronic transactions |
US20040030887A1 (en) * | 2002-08-07 | 2004-02-12 | Harrisville-Wolff Carol L. | System and method for providing secure communications between clients and service providers |
US7660989B2 (en) * | 2002-11-26 | 2010-02-09 | Rpost International Limited | System for, and method of, authenticating an electronic message to a recipient |
US20070118732A1 (en) * | 2003-05-15 | 2007-05-24 | Whitmore Dean J | Method and system for digitally signing electronic documents |
JP4585189B2 (en) * | 2003-09-19 | 2010-11-24 | 富士通株式会社 | Electronic signature assigning apparatus, electronic signature assigning method, and electronic signature assigning program |
US7930412B2 (en) * | 2003-09-30 | 2011-04-19 | Bce Inc. | System and method for secure access |
US7966493B2 (en) * | 2003-11-18 | 2011-06-21 | Oracle International Corporation | Method of and system for determining if an electronic signature is necessary in order to commit a transaction to a database |
US8782020B2 (en) * | 2003-11-18 | 2014-07-15 | Oracle International Corporation | Method of and system for committing a transaction to database |
US7600124B2 (en) * | 2003-11-18 | 2009-10-06 | Oracle International Corporation | Method of and system for associating an electronic signature with an electronic record |
US7694143B2 (en) * | 2003-11-18 | 2010-04-06 | Oracle International Corporation | Method of and system for collecting an electronic signature for an electronic record stored in a database |
US20050108211A1 (en) * | 2003-11-18 | 2005-05-19 | Oracle International Corporation, A California Corporation | Method of and system for creating queries that operate on unstructured data stored in a database |
US7698558B2 (en) * | 2003-11-21 | 2010-04-13 | Rpost International Limited | System for, and method of, providing the transmission, receipt and content of an e-mail message |
US20050131876A1 (en) * | 2003-12-10 | 2005-06-16 | Ahuja Ratinder Paul S. | Graphical user interface for capture system |
US8548170B2 (en) | 2003-12-10 | 2013-10-01 | Mcafee, Inc. | Document de-registration |
US7984175B2 (en) | 2003-12-10 | 2011-07-19 | Mcafee, Inc. | Method and apparatus for data capture and analysis system |
US7899828B2 (en) | 2003-12-10 | 2011-03-01 | Mcafee, Inc. | Tag data structure for maintaining relational data over captured objects |
US7814327B2 (en) * | 2003-12-10 | 2010-10-12 | Mcafee, Inc. | Document registration |
US7774604B2 (en) | 2003-12-10 | 2010-08-10 | Mcafee, Inc. | Verifying captured objects before presentation |
US8656039B2 (en) | 2003-12-10 | 2014-02-18 | Mcafee, Inc. | Rule parser |
WO2005062919A2 (en) * | 2003-12-22 | 2005-07-14 | Wachovia Corporation | Public key encryption for groups |
US8139770B2 (en) | 2003-12-23 | 2012-03-20 | Wells Fargo Bank, N.A. | Cryptographic key backup and escrow system |
US7930540B2 (en) | 2004-01-22 | 2011-04-19 | Mcafee, Inc. | Cryptographic policy enforcement |
US20050240765A1 (en) * | 2004-04-22 | 2005-10-27 | International Business Machines Corporation | Method and apparatus for authorizing access to grid resources |
US8312262B2 (en) | 2004-04-30 | 2012-11-13 | Qualcomm Incorporated | Management of signing privileges for a cryptographic signing service |
CA2471055A1 (en) * | 2004-06-16 | 2005-12-16 | Qualtech Technical Sales Inc. | A network security enforcement system |
US7962591B2 (en) * | 2004-06-23 | 2011-06-14 | Mcafee, Inc. | Object classification in a capture system |
JP2006050504A (en) * | 2004-08-09 | 2006-02-16 | Canon Inc | Image processing device and method thereof |
US20060041507A1 (en) * | 2004-08-13 | 2006-02-23 | Sbc Knowledge Ventures L.P. | Pluggable authentication for transaction tool management services |
US8560534B2 (en) | 2004-08-23 | 2013-10-15 | Mcafee, Inc. | Database for a capture system |
US7949849B2 (en) * | 2004-08-24 | 2011-05-24 | Mcafee, Inc. | File system for a capture system |
GB0419479D0 (en) * | 2004-09-02 | 2004-10-06 | Cryptomathic Ltd | Data certification methods and apparatus |
US8694788B1 (en) * | 2005-04-29 | 2014-04-08 | Progressive Casualty Insurance Company | Security system |
US8295492B2 (en) * | 2005-06-27 | 2012-10-23 | Wells Fargo Bank, N.A. | Automated key management system |
US8108787B2 (en) | 2005-07-01 | 2012-01-31 | Microsoft Corporation | Distributing input events to multiple applications in an interactive media environment |
US8799757B2 (en) * | 2005-07-01 | 2014-08-05 | Microsoft Corporation | Synchronization aspects of interactive multimedia presentation management |
US8305398B2 (en) * | 2005-07-01 | 2012-11-06 | Microsoft Corporation | Rendering and compositing multiple applications in an interactive media environment |
US8020084B2 (en) * | 2005-07-01 | 2011-09-13 | Microsoft Corporation | Synchronization aspects of interactive multimedia presentation management |
US8656268B2 (en) | 2005-07-01 | 2014-02-18 | Microsoft Corporation | Queueing events in an interactive media environment |
US7941522B2 (en) * | 2005-07-01 | 2011-05-10 | Microsoft Corporation | Application security in an interactive media environment |
US7600127B2 (en) * | 2005-07-13 | 2009-10-06 | Lenovo Singapore Pte. Ltd | System and method for ISO image update and ISO image deconstruction into modular components |
US7907608B2 (en) | 2005-08-12 | 2011-03-15 | Mcafee, Inc. | High speed packet capture |
US7818326B2 (en) * | 2005-08-31 | 2010-10-19 | Mcafee, Inc. | System and method for word indexing in a capture system and querying thereof |
US7730011B1 (en) * | 2005-10-19 | 2010-06-01 | Mcafee, Inc. | Attributes of captured objects in a capture system |
US7657104B2 (en) * | 2005-11-21 | 2010-02-02 | Mcafee, Inc. | Identifying image type in a capture system |
US8234494B1 (en) * | 2005-12-21 | 2012-07-31 | At&T Intellectual Property Ii, L.P. | Speaker-verification digital signatures |
GB2434947B (en) * | 2006-02-02 | 2011-01-26 | Identum Ltd | Electronic data communication system |
US8504537B2 (en) | 2006-03-24 | 2013-08-06 | Mcafee, Inc. | Signature distribution in a document registration system |
US20070226504A1 (en) * | 2006-03-24 | 2007-09-27 | Reconnex Corporation | Signature match processing in a document registration system |
US7958227B2 (en) | 2006-05-22 | 2011-06-07 | Mcafee, Inc. | Attributes of captured objects in a capture system |
US7689614B2 (en) * | 2006-05-22 | 2010-03-30 | Mcafee, Inc. | Query generation for a capture system |
US8010689B2 (en) * | 2006-05-22 | 2011-08-30 | Mcafee, Inc. | Locational tagging in a capture system |
US20080016357A1 (en) * | 2006-07-14 | 2008-01-17 | Wachovia Corporation | Method of securing a digital signature |
KR101043306B1 (en) * | 2006-09-20 | 2011-06-22 | 후지쯔 가부시끼가이샤 | Information processor, information management method, and computer readable medium storing information management program |
US20090006842A1 (en) * | 2007-06-26 | 2009-01-01 | John Gordon Ross | Sealing Electronic Data Associated With Multiple Electronic Documents |
US20090006258A1 (en) * | 2007-06-26 | 2009-01-01 | John Gordon Ross | Registration Process |
US20090006860A1 (en) * | 2007-06-26 | 2009-01-01 | John Gordon Ross | Generating multiple seals for electronic data |
US20090003588A1 (en) * | 2007-06-26 | 2009-01-01 | John Gordon Ross | Counter Sealing Archives of Electronic Seals |
US20090076962A1 (en) * | 2007-07-30 | 2009-03-19 | Hitchen Stephen M | Digital certification method and apparatus |
US8205242B2 (en) | 2008-07-10 | 2012-06-19 | Mcafee, Inc. | System and method for data mining and security policy management |
US9253154B2 (en) | 2008-08-12 | 2016-02-02 | Mcafee, Inc. | Configuration management for a capture/registration system |
US8850591B2 (en) | 2009-01-13 | 2014-09-30 | Mcafee, Inc. | System and method for concept building |
US8706709B2 (en) | 2009-01-15 | 2014-04-22 | Mcafee, Inc. | System and method for intelligent term grouping |
US8473442B1 (en) | 2009-02-25 | 2013-06-25 | Mcafee, Inc. | System and method for intelligent state management |
US8667121B2 (en) | 2009-03-25 | 2014-03-04 | Mcafee, Inc. | System and method for managing data and policies |
US8447722B1 (en) | 2009-03-25 | 2013-05-21 | Mcafee, Inc. | System and method for data mining and security policy management |
IT1394016B1 (en) * | 2009-04-01 | 2012-05-17 | Aliaslab S P A | METHOD AND SYSTEM TO CARRY OUT THE QUALIFIED ELECTRONIC SIGNATURE IN REMOTE MODE |
US8621208B1 (en) * | 2009-07-06 | 2013-12-31 | Guoan Hu | Secure key server based file and multimedia management system |
US8806615B2 (en) | 2010-11-04 | 2014-08-12 | Mcafee, Inc. | System and method for protecting specified data combinations |
US8646062B2 (en) | 2010-11-09 | 2014-02-04 | International Business Machines Corporation | Remote authentication based on challenge-response using digital certificates |
US8971539B2 (en) * | 2010-12-30 | 2015-03-03 | Verisign, Inc. | Management of SSL certificate escrow |
FR2980011B1 (en) * | 2011-09-09 | 2015-12-11 | Dictao | METHOD FOR IMPLEMENTING, FROM A TERMINAL, CRYPTOGRAPHIC DATA OF A USER STORED IN A REMOTE DATABASE |
US20130246334A1 (en) | 2011-12-27 | 2013-09-19 | Mcafee, Inc. | System and method for providing data protection workflows in a network environment |
US9021255B1 (en) * | 2012-06-29 | 2015-04-28 | Emc Corporation | Techniques for multiple independent verifications for digital certificates |
US9424432B2 (en) * | 2012-09-20 | 2016-08-23 | Nasdaq, Inc. | Systems and methods for secure and persistent retention of sensitive information |
GB2515057B (en) * | 2013-06-12 | 2016-02-24 | Cryptomathic Ltd | System and Method for Obtaining a Digital Signature |
WO2015009231A1 (en) * | 2013-07-17 | 2015-01-22 | Emerging Sense, Affärsutveckling Ab | Selective revocation of certificates |
CZ2013883A3 (en) * | 2013-11-14 | 2015-05-27 | Software602 A.S. | Data authentication method |
JP6659220B2 (en) | 2015-01-27 | 2020-03-04 | ルネサスエレクトロニクス株式会社 | Communication device, semiconductor device, program and communication system |
JP2016163198A (en) * | 2015-03-03 | 2016-09-05 | 日本電気株式会社 | File management device, file management system, file management method, and file management program |
US10284376B2 (en) | 2015-06-10 | 2019-05-07 | Arris Enterprises Llc | Code signing system with machine to machine interaction |
JP2017085368A (en) * | 2015-10-28 | 2017-05-18 | 株式会社オートネットワーク技術研究所 | Communication system and communication method |
FR3046271B1 (en) * | 2015-12-28 | 2018-10-19 | Bull Sas | SECOND DYNAMIC AUTHENTICATION OF AN ELECTRONIC SIGNATURE USING SECURE HARDWARE MODULE |
JP6465426B1 (en) * | 2018-07-20 | 2019-02-06 | Gmoグローバルサイン株式会社 | Electronic signature system, certificate issuing system, key management system, and electronic certificate issuing method |
JP6571890B1 (en) * | 2019-01-21 | 2019-09-04 | Gmoグローバルサイン株式会社 | Electronic signature system, certificate issuing system, certificate issuing method and program |
US10535062B1 (en) * | 2019-03-20 | 2020-01-14 | Capital One Services, Llc | Using a contactless card to securely share personal data stored in a blockchain |
Family Cites Families (25)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2874916B2 (en) * | 1989-11-21 | 1999-03-24 | 株式会社東芝 | Portable encryption key storage device |
US6237096B1 (en) * | 1995-01-17 | 2001-05-22 | Eoriginal Inc. | System and method for electronic transmission storage and retrieval of authenticated documents |
US6219423B1 (en) | 1995-12-29 | 2001-04-17 | Intel Corporation | System and method for digitally signing a digital agreement between remotely located nodes |
GB9608696D0 (en) | 1996-04-26 | 1996-07-03 | Europ Computer Ind Res | Electronic copy protection mechanism |
JPH1032570A (en) * | 1996-07-15 | 1998-02-03 | N T T Data Tsushin Kk | Electronic signature system |
US6023509A (en) | 1996-09-30 | 2000-02-08 | Intel Corporation | Digital signature purpose encoding |
US6253323B1 (en) * | 1996-11-01 | 2001-06-26 | Intel Corporation | Object-based digital signatures |
US6035402A (en) * | 1996-12-20 | 2000-03-07 | Gte Cybertrust Solutions Incorporated | Virtual certificate authority |
US6513116B1 (en) * | 1997-05-16 | 2003-01-28 | Liberate Technologies | Security information acquisition |
JPH10336172A (en) * | 1997-06-04 | 1998-12-18 | Kyushu Syst Joho Gijutsu Kenkyusho | Managing method of public key for electronic authentication |
US6609196B1 (en) | 1997-07-24 | 2003-08-19 | Tumbleweed Communications Corp. | E-mail firewall with stored key encryption/decryption |
US6370249B1 (en) * | 1997-07-25 | 2002-04-09 | Entrust Technologies, Ltd. | Method and apparatus for public key management |
JPH1188321A (en) * | 1997-09-02 | 1999-03-30 | Kiyadeitsukusu:Kk | Digital signature generation server |
JPH1188322A (en) * | 1997-09-02 | 1999-03-30 | Kiyadeitsukusu:Kk | Digital signature generation method |
KR20010023602A (en) | 1997-09-02 | 2001-03-26 | 케이코 우다 | Digital signature generating server and digital signature generating method |
US6233577B1 (en) * | 1998-02-17 | 2001-05-15 | Phone.Com, Inc. | Centralized certificate management system for two-way interactive communication devices in data networks |
US6073242A (en) * | 1998-03-19 | 2000-06-06 | Agorics, Inc. | Electronic authority server |
US6363479B1 (en) * | 1998-07-22 | 2002-03-26 | Entrust Technologies Limited | System and method for signing markup language data |
US6829712B1 (en) * | 1998-10-27 | 2004-12-07 | Sprint Communications Company L.P. | Object-based security system |
US6643774B1 (en) * | 1999-04-08 | 2003-11-04 | International Business Machines Corporation | Authentication method to enable servers using public key authentication to obtain user-delegated tickets |
AU7596300A (en) * | 1999-09-20 | 2001-04-24 | Ethentica, Inc. | Cryptographic server with provisions for interoperability between cryptographic systems |
US7391865B2 (en) * | 1999-09-20 | 2008-06-24 | Security First Corporation | Secure data parser method and system |
US6853988B1 (en) * | 1999-09-20 | 2005-02-08 | Security First Corporation | Cryptographic server with provisions for interoperability between cryptographic systems |
US7689832B2 (en) * | 2000-09-11 | 2010-03-30 | Sentrycom Ltd. | Biometric-based system and method for enabling authentication of electronic messages sent over a network |
JP2002169466A (en) * | 2000-12-01 | 2002-06-14 | Mitsubishi Electric Corp | Server system, application terminal and computer readable recording medium recorded with program |
-
2000
- 2000-12-15 US US09/741,691 patent/US7210037B2/en not_active Expired - Lifetime
-
2001
- 2001-12-11 EP EP01986160.8A patent/EP1402330B1/en not_active Expired - Lifetime
- 2001-12-11 WO PCT/US2001/048266 patent/WO2002048848A2/en active IP Right Grant
- 2001-12-11 JP JP2002550495A patent/JP4283536B2/en not_active Expired - Lifetime
- 2001-12-11 CA CA2426828A patent/CA2426828C/en not_active Expired - Lifetime
- 2001-12-11 AU AU3662202A patent/AU3662202A/en active Pending
- 2001-12-11 AU AU2002236622A patent/AU2002236622B2/en not_active Expired
Also Published As
Publication number | Publication date |
---|---|
US7210037B2 (en) | 2007-04-24 |
CA2426828C (en) | 2011-01-25 |
AU3662202A (en) | 2002-06-24 |
EP1402330B1 (en) | 2017-07-26 |
WO2002048848A3 (en) | 2003-12-24 |
WO2002048848A2 (en) | 2002-06-20 |
US20020078355A1 (en) | 2002-06-20 |
JP2005502217A (en) | 2005-01-20 |
EP1402330A2 (en) | 2004-03-31 |
AU2002236622B2 (en) | 2007-08-09 |
JP4283536B2 (en) | 2009-06-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CA2426828A1 (en) | Method and apparatus for delegating digital signatures to a signature server | |
CN108768988B (en) | Block chain access control method, block chain access control equipment and computer readable storage medium | |
Yang et al. | Password authentication schemes with smart cards | |
US7395549B1 (en) | Method and apparatus for providing a key distribution center without storing long-term server secrets | |
US7051204B2 (en) | Methods and system for providing a public key fingerprint list in a PK system | |
US9544297B2 (en) | Method for secured data processing | |
US6192130B1 (en) | Information security subscriber trust authority transfer system with private key history transfer | |
US6711677B1 (en) | Secure printing method | |
KR100807926B1 (en) | Efficient management of cryptographic key generations | |
US6912656B1 (en) | Method and apparatus for sending encrypted electronic mail through a distribution list exploder | |
EP3197121B1 (en) | Information security realizing method and system based on digital certificate | |
US8369521B2 (en) | Smart card based encryption key and password generation and management | |
AU2002236622A1 (en) | Method and appartus for delegating digital signatures to a signature server | |
CA2548356A1 (en) | Avoiding server storage of client state | |
CN101572707B (en) | Method, apparatus and system for validating certificate state | |
WO2003013161A2 (en) | Wireless bridge for roaming in network environment | |
EP2692107B1 (en) | Managed authentication on a distributed network | |
CN105409186A (en) | System and method for user authentication | |
CN105324976A (en) | Method to enroll a certificate to a device using scep and respective management application | |
CN108632251B (en) | Credible authentication method based on cloud computing data service and encryption algorithm thereof | |
CN116032613A (en) | Block chain digital certificate exchange method, file storage access method and system | |
US20160080336A1 (en) | Key Usage Detection | |
EP4203377A1 (en) | Service registration method and device | |
CN108768650B (en) | Short message verification system based on biological characteristics | |
CN110490561B (en) | Distributed encryption management method, device and system for encryption currency wallet |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
EEER | Examination request | ||
MKEX | Expiry |
Effective date: 20211213 |
|
MKEX | Expiry |
Effective date: 20211213 |