CA2303450A1 - Method for publishing certification information representative of selectable subsets of rights and apparatus and portable data storage media used to practice said method - Google Patents

Method for publishing certification information representative of selectable subsets of rights and apparatus and portable data storage media used to practice said method Download PDF

Info

Publication number
CA2303450A1
CA2303450A1 CA002303450A CA2303450A CA2303450A1 CA 2303450 A1 CA2303450 A1 CA 2303450A1 CA 002303450 A CA002303450 A CA 002303450A CA 2303450 A CA2303450 A CA 2303450A CA 2303450 A1 CA2303450 A1 CA 2303450A1
Authority
CA
Canada
Prior art keywords
rights
user
certifying
publishing
practice
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CA002303450A
Other languages
French (fr)
Other versions
CA2303450C (en
Inventor
Robert A. Cordery
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Pitney Bowes Inc
Original Assignee
Pitney Bowes Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Pitney Bowes Inc filed Critical Pitney Bowes Inc
Publication of CA2303450A1 publication Critical patent/CA2303450A1/en
Application granted granted Critical
Publication of CA2303450C publication Critical patent/CA2303450C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00733Cryptography or similar special procedures in a franking system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
    • G06Q20/102Bill distribution or payments
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
    • H04L9/3066Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy involving algebraic varieties, e.g. elliptic or hyper-elliptic curves
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00733Cryptography or similar special procedures in a franking system
    • G07B2017/00741Cryptography or similar special procedures in a franking system using specific cryptographic algorithms or functions
    • G07B2017/00758Asymmetric, public-key algorithms, e.g. RSA, Elgamal
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00733Cryptography or similar special procedures in a franking system
    • G07B2017/00846Key management
    • G07B2017/00895Key verification, e.g. by using trusted party
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00733Cryptography or similar special procedures in a franking system
    • G07B2017/00911Trusted party

Abstract

A method for certification by a plurality of certifying authorities of the public key of a user wishing to communicate using a public key encryption system while asserting only a subset of rights. A plurality of certifying stations and a user station exchange information and the user station derives a plurality of private keys from the exchanged information. The certifying stations also publish related information and their public keys. The user communicates using a private key formed by summing selected ones of said plurality of private keys corresponding to asserted rights. A
third party can derive the public key corresponding to the user's summed private key by operating on the published information with a summation of the certifying station public keys.
CA002303450A 1999-03-30 2000-03-30 Method for publishing certification information representative of selectable subsets of rights and apparatus and portable data storage media used to practice said method Expired - Fee Related CA2303450C (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US09/280,529 1999-03-30
US09/280,529 US6704867B1 (en) 1999-03-30 1999-03-30 Method for publishing certification information representative of selectable subsets of rights and apparatus and portable data storage media used to practice said method

Publications (2)

Publication Number Publication Date
CA2303450A1 true CA2303450A1 (en) 2000-09-30
CA2303450C CA2303450C (en) 2005-12-13

Family

ID=23073477

Family Applications (1)

Application Number Title Priority Date Filing Date
CA002303450A Expired - Fee Related CA2303450C (en) 1999-03-30 2000-03-30 Method for publishing certification information representative of selectable subsets of rights and apparatus and portable data storage media used to practice said method

Country Status (3)

Country Link
US (1) US6704867B1 (en)
EP (1) EP1043696B1 (en)
CA (1) CA2303450C (en)

Families Citing this family (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6847951B1 (en) 1999-03-30 2005-01-25 Pitney Bowes Inc. Method for certifying public keys used to sign postal indicia and indicia so signed
JP2002215585A (en) * 2000-11-16 2002-08-02 Fuji Xerox Co Ltd Device and method for processing subject name of individual certificate
US7149310B2 (en) * 2000-12-19 2006-12-12 Tricipher, Inc. Method and system for authorizing generation of asymmetric crypto-keys
US7509683B2 (en) * 2002-08-26 2009-03-24 Hewlett-Packard Development Company, L.P. System and method for authenticating digital content
US7136489B1 (en) * 2002-09-12 2006-11-14 Novell, Inc. Method and system for enhancing network security using a multilateral authorization mechanism
CA2827112C (en) 2011-02-11 2016-05-31 Certicom Corp. Using a single certificate request to generate credentials with multiple ecqv certificates
WO2020140267A1 (en) 2019-01-04 2020-07-09 Baidu.Com Times Technology (Beijing) Co., Ltd. A data processing accelerator having a local time unit to generate timestamps
US11609766B2 (en) 2019-01-04 2023-03-21 Baidu Usa Llc Method and system for protecting data processed by data processing accelerators
CN112236772B (en) 2019-01-04 2023-12-22 百度时代网络技术(北京)有限公司 Method and system for managing memory of data processing accelerator
WO2020140259A1 (en) * 2019-01-04 2020-07-09 Baidu.Com Times Technology (Beijing) Co., Ltd. Method and system for key distribution and exchange for data processing accelerators
US11799651B2 (en) 2019-01-04 2023-10-24 Baidu Usa Llc Data processing accelerator having a security unit to provide root trust services
US11616651B2 (en) 2019-01-04 2023-03-28 Baidu Usa Llc Method for establishing a secure information exchange channel between a host system and a data processing accelerator
CN112262545B (en) 2019-01-04 2023-09-15 百度时代网络技术(北京)有限公司 Attestation protocol between a host system and a data processing accelerator
US11233652B2 (en) 2019-01-04 2022-01-25 Baidu Usa Llc Method and system to derive a session key to secure an information exchange channel between a host system and a data processing accelerator
EP3695587B1 (en) 2019-01-04 2022-05-04 Baidu.com Times Technology (Beijing) Co., Ltd. Providing secure communications between a host system and a data processing accelerator

Family Cites Families (27)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4796193A (en) * 1986-07-07 1989-01-03 Pitney Bowes Inc. Postage payment system where accounting for postage payment occurs at a time subsequent to the printing of the postage and employing a visual marking imprinted on the mailpiece to show that accounting has occurred
US4853961A (en) 1987-12-18 1989-08-01 Pitney Bowes Inc. Reliable document authentication system
US5214702A (en) * 1988-02-12 1993-05-25 Fischer Addison M Public key/signature cryptosystem with enhanced digital signature certification
US5878136A (en) 1993-10-08 1999-03-02 Pitney Bowes Inc. Encryption key control system for mail processing system having data center verification
US5420927B1 (en) * 1994-02-01 1997-02-04 Silvio Micali Method for certifying public keys in a digital signature scheme
US5588061A (en) * 1994-07-20 1996-12-24 Bell Atlantic Network Services, Inc. System and method for identity verification, forming joint signatures and session key agreement in an RSA public cryptosystem
US5737419A (en) 1994-11-09 1998-04-07 Bell Atlantic Network Services, Inc. Computer system for securing communications using split private key asymmetric cryptography
US5661803A (en) 1995-03-31 1997-08-26 Pitney Bowes Inc. Method of token verification in a key management system
US5680456A (en) 1995-03-31 1997-10-21 Pitney Bowes Inc. Method of manufacturing generic meters in a key management system
US5742682A (en) 1995-03-31 1998-04-21 Pitney Bowes Inc. Method of manufacturing secure boxes in a key management system
NZ500372A (en) 1995-06-05 2001-04-27 Certco Inc Delegated use of electronic signature
US5796841A (en) 1995-08-21 1998-08-18 Pitney Bowes Inc. Secure user certification for electronic commerce employing value metering system
US5604804A (en) * 1996-04-23 1997-02-18 Micali; Silvio Method for certifying public keys in a digital signature scheme
US5610982A (en) * 1996-05-15 1997-03-11 Micali; Silvio Compact certification with threshold signatures
GB9621274D0 (en) * 1996-10-11 1996-11-27 Certicom Corp Signature protocol for mail delivery
JPH10133576A (en) * 1996-10-31 1998-05-22 Hitachi Ltd Open key ciphering method and device therefor
US5805701A (en) 1996-11-01 1998-09-08 Pitney Bowes Inc. Enhanced encryption control system for a mail processing system having data center verification
US5982896A (en) 1996-12-23 1999-11-09 Pitney Bowes Inc. System and method of verifying cryptographic postage evidencing using a fixed key set
US6263081B1 (en) * 1997-07-17 2001-07-17 Matsushita Electric Industrial Co., Ltd. Elliptic curve calculation apparatus capable of calculating multiples at high speed
US6424712B2 (en) * 1997-10-17 2002-07-23 Certicom Corp. Accelerated signature verification on an elliptic curve
DE19748954A1 (en) 1997-10-29 1999-05-06 Francotyp Postalia Gmbh Producing security markings in franking machine
DE19757652B4 (en) * 1997-12-15 2005-03-17 Francotyp-Postalia Ag & Co. Kg Postage meter with a chip card read / write unit
US6175827B1 (en) 1998-03-31 2001-01-16 Pitney Bowes Inc. Robus digital token generation and verification system accommodating token verification where addressee information cannot be recreated automated mail processing
US6336188B2 (en) * 1998-05-01 2002-01-01 Certicom Corp. Authenticated key agreement protocol
US6295359B1 (en) 1998-05-21 2001-09-25 Pitney Bowes Inc. Method and apparatus for distributing keys to secure devices such as a postage meter
IL125222A0 (en) * 1998-07-06 1999-03-12 L P K Information Integrity Lt A key-agreement system and method
DE69942386D1 (en) * 1998-10-30 2010-07-01 Hitachi Ltd Digital signature method and method and apparatus for managing secret information

Also Published As

Publication number Publication date
EP1043696A2 (en) 2000-10-11
EP1043696A3 (en) 2004-07-21
EP1043696B1 (en) 2013-11-13
CA2303450C (en) 2005-12-13
US6704867B1 (en) 2004-03-09

Similar Documents

Publication Publication Date Title
CA2303450A1 (en) Method for publishing certification information representative of selectable subsets of rights and apparatus and portable data storage media used to practice said method
EP1128250B1 (en) System, method and apparatus for playback of digital content
WO2002073378A3 (en) Receiving device for securely storing a content item, and playback device
US6999948B1 (en) Memory card
TW496066B (en) Data distribution system and data recording media for use in said data distribution system
CA2887761C (en) Systems and methods of ambiguity envelope encryption scheme and applications
EP0695997A3 (en) Methods for providing secure access to shared information
US7203312B1 (en) Data reproduction apparatus and data reproduction module
CA2341784A1 (en) Method to deploy a pki transaction in a web browser
US20020051540A1 (en) Cryptographic system and method for geolocking and securing digital information
CA2212813A1 (en) Method and apparatus for cryptographically protecting data
EP0840476A3 (en) Encrypted communication system that limits the damage caused when a secret key has been leaked
WO2000072500A3 (en) Information encryption system and method
WO2000008909A3 (en) System for tracking end-user electronic content usage
CA2175063A1 (en) System and Method for Authenticating Software Carriers
WO2001076127A1 (en) Information recording/reproducing apparatus and method
TW376498B (en) Information devices which select and use one out of a plurality of encryption utilization protocols for protecting copyrights of digital productions
WO2003021541A3 (en) System and method of authenticating an article
JP2005509384A5 (en)
WO2004027622A3 (en) Method and system for secure distribution
CA2303475A1 (en) Method for publishing certification information certified by a plurality of authorities and apparatus and portable data storage media used to practice said method
CA2312967A1 (en) System and method of sending and receiving secure data with a shared key
GB2379756A (en) Renewal of data in long-term storage
SG81303A1 (en) Storage medium, read/write apparatus, card system, encryption key utilization method, station service system, and card issuing apparatus
MY123961A (en) Method and apparatus for registration of information with plural institutions and recording medium with registration program stored thereon

Legal Events

Date Code Title Description
EEER Examination request
MKLA Lapsed

Effective date: 20180403