Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Reexamination Certificate
1996-11-21
2001-07-10
Swann, Tod R. (Department: 2767)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
C705S061000, C705S060000, C705S064000, C705S066000, C380S051000
Reexamination Certificate
active
06260144
ABSTRACT:
FIELD OF THE INVENTION
The present invention relates generally to a system and method for postage metering security and, more particularly, to systems and methods for verifying authorized postal security devices.
BACKGROUND OF THE INVENTION
The Information-Based Indicia Program (IBIP) is a distributed trusted system proposed by the United States Postal Service (USPS). The IBIP is expected to support new methods of applying postage in addition to, and eventually in lieu of, the current approach, which typically relies on a postage meter to mechanically print indicia on mailpieces. The IBIP requires printing large, high density, two dimensional (2-D) bar codes on mailpieces. The Postal Service expects the IBIP to provide cost-effective assurance of postage payment for each mailpiece processed.
The USPS has published draft specifications for the IBIP. The INFORMATION BASED INDICIA PROGRAM (IBIP) INDICIUM SPECIFICATION, dated Jun. 13, 1996, defines the proposed requirements for a new indicium that will be applied to mail being processed using the IBIP. The INFORMATION BASED INDICIA PROGRAM POSTAL SECURITY DEVICE SPECIFICATION, dated Jun. 13, 1996, defines the proposed requirements for a Postal Security Device (PSD) that will provide security services to support the creation of a new “information based” postage postmark or indicium that will be applied to mail being processed using the IBIP. The INFORMATION BASED INDICIA PROGRAM HOST SYSTEM SPECIFICATION, dated Oct. 9, 1996, defines the proposed requirements for a host system element of the IBIP. The specifications are collectively referred to herein as the “IBIP Specifications”. The IBIP includes interfacing user (customer), postal and vendor infrastructures which are the system elements of the program.
The user infrastructure, which resides at the user's site, comprises a postal security device (PSD) coupled to a host system. The PSD is a secure processor-based accounting device that dispenses and accounts for postal value stored therein. The host system may be a personal computer (PC) or a meter-based host processor. Among the various requirements set forth in the Host System Specification is that the host system verifies that the coupled PSD is “the expected PSD”. Conventional postage metering devices and recent digital metering devices, such as PostPerfect and Personal Post Office, both manufactured by the assignee of the present invention, do not include such verification. Thus, a method for achieving such verification is desired.
U.S. Pat. No. 5,510,992 discloses a method whereby the host PC verifies that a storage means that is coupled to the host PC and has postal value stored therein, is authorized for use with the host PC. The method comprises the steps of storing a unique identifier, such as a serial number, in the storage means when the storage means is filled with postal value, and sending the unique identifier to the host PC when postage value is requested for dispensing. The host PC then verifies that the storage means is authorized for use with the host PC by confirming that the unique identifier retrieved from the storage device is the same as one stored in the host PC. Although such method verifies that the storage means is the expected storage device, the storage means is not a PSD because it is not a processor-based accounting device that dispenses and accounts for postal value stored therein. Furthermore, the verification of the serial number in the host PC is subject to fraud.
SUMMARY OF THE INVENTION
It has been found that the present invention provides a more secure and reliable system and method for verifying the expected PSD is coupled to the host PC. It has further been found that the present invention provides a secure and reliable system and method for verifying the expected host PC is coupled to the PSD.
The present invention provides a secure and reliable method for verifying in the host system that the expected PSD is coupled to the host system. In accordance with the present invention, the PSD has a private key which is associated with a specific public key that is stored in the host PC. The host PC sends the PSD public key to the PSD. If the PSD determines that the received PSD public key corresponds to its private key, the system has determined that the expected PSD is connected to the Host system and the PSD is activated to accept postal value requests from the host PC. Additionally, a PSD state identification, such as a checksum of a PSD transaction log file stored in the host may be verified by the PSD, which also has stored therein a PSD transaction log file. In this manner the PSD verifies that the PSD has performed all transactions with the host PC sending the checksum. A method for verifying that the expected host is coupled to the PSD mirrors the method for verifying the expected PSD.
REFERENCES:
patent: 4845632 (1989-07-01), Kroll et al.
patent: 4958291 (1990-09-01), Mamone et al.
patent: 5299263 (1994-03-01), Beller et al.
patent: 5319562 (1994-06-01), Whitehouse
patent: 5491750 (1996-02-01), Bellare et al.
patent: 5510992 (1996-04-01), Kara
patent: 5606613 (1997-02-01), Lee et al.
patent: 5612889 (1997-03-01), Pintsov et al.
patent: 5625694 (1997-04-01), Lee et al.
patent: 5655024 (1997-08-01), Bell et al.
patent: 5666284 (1997-09-01), Kara
patent: 5708712 (1998-01-01), Brinkmeyer et al.
patent: 5742683 (1998-04-01), Lee et al.
patent: 5745576 (1998-04-01), Abraham et al.
patent: 5774550 (1998-06-01), Brinkmeyer et al.
patent: 5805711 (1998-09-01), Windel et al.
patent: 5850444 (1998-12-01), Rune
patent: WO (1988-03-01), None
patent: 0148960 (1983-12-01), None
patent: 0661844 A2 (1994-12-01), None
Schneier, Applied Cryptography, 2ndedition, p. 37, basic protocol under the section “Signing Documents with Public-key Cryptography.”
Alfred J. Menezes, Paul C. Van Oorschot and Scott A. VanstoneHandbook of Applied Cryptography,CRC Press, pp. 560-561, 1996.*
Fumy & Landrock, “Principles of Key Management ”, IEEE Journal on Selected Areas in Communications, vol. 11, No. 5, Jun. 1993, pp. 785-793, NY, US, p. 789, column 2, line 50-line 52.
United States Postal Service, XP002137734, “Information Based Indicia Program PSD Specification (Draft) ”, Jun. 13, 1996, p. 2-1, line 1-15.
United States Postal Service, XP002137990, “Information Based Indicia Program Host System Specification (Draft)”, Oct. 9, 1996, p. 7, Paragraph 3.1.2.
Cordery Robert A.
Pitchenik David E.
Ryan Jr. Frederick W.
Callahan Paul E.
Malandra, Jr. Charles R.
Melton Michael E.
Pitney Bowes Inc.
Swann Tod R.
LandOfFree
Method for verifying the expected postal security device in... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method for verifying the expected postal security device in..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method for verifying the expected postal security device in... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2451890