公开(公告)号：JP2003218859A

公开(公告)日：2003-07-31

申请号：JP2002367156

申请日：2002-12-18

Applicant: SUN MICROSYSTEMS INC

Inventor： RENAUD BENJAMIN J ,  PAMPUCH JOHN C ,  HODGES WILSHER AVRIL E

IPC: H04L9/32 ,  G06F1/00 ,  G06F21/00 ,  G09C1/00

Abstract: PROBLEM TO BE SOLVED: To provide a method, an apparatus, and a product that can more efficiently guarantee and verify authenticity in a data file to be transferred over a network. SOLUTION: In a method for verifying authenticity in data, at least one data file having an identifier, and a signature file with an electronic signature and the identifier of the data file is provided. The electronic signature is verified by a computer system, and the identifier in the data file is compared with that of the signature file by using a computer system. The identifier of the data file has at least one of certification authentication, site certification, the identifier of a software distributor, and a site name, and there is the setting of a security level regarding at least one of the certification authentication, site certification, identifier of software distributed, and site name in the verification of the authenticity in the data. COPYRIGHT: (C)2003,JPO

公开(公告)号：JPH10326078A

公开(公告)日：1998-12-08

申请号：JP36380497

申请日：1997-11-27

Applicant: SUN MICROSYSTEMS INC

Inventor： RENAUD BENJAMIN J ,  PAMPUCH JOHN C ,  HODGES WILSHER AVRIL E

IPC: H04L9/32 ,  G06F1/00 ,  G06F21/00 ,  G09C1/00

Abstract: PROBLEM TO BE SOLVED: To guarantee and verify the genuineness of a data file by processing a sign file by using a computer system to judge the genuineness of the sign file. SOLUTION: Identifiers are generated for respective data files (ST404). Then a sign file for listing or compiling the identifiers is generated (ST406). This sign file is electronically signed by using sign algorithm (ST408). The signed sign file is sent to a receiving user and shown or made usable (ST410). The receiving user verifies the genuineness of the signed sign file which is sent or made usable at the time of reception or access (ST412). Then the validity of the electronic sign is determined (ST414). Then the identifier from the sign file is stored (ST416).

公开(公告)号：DE69727198T2

公开(公告)日：2004-07-01

申请号：DE69727198

申请日：1997-11-24

Applicant: SUN MICROSYSTEMS INC

Inventor： RENAUD BENJAMIN J ,  HODGES WILSHER AVRIL E ,  PAMPUCH JOHN C

IPC: H04L9/32 ,  G06F1/00 ,  G06F21/00 ,  G09C1/00

Abstract: Methods, apparatuses and products are provided for establishing and verifying the authenticity of data within one or more data files. In accordance with one aspect of the present invention, a method for verifying the authenticity of data involves providing at least one data file which includes an identifier and a signature file which includes the identifier for the data file as well as a digital signature. The digital signature is then verified using a computer system, and the identifier in the data file is compared with the identifier in the signature file using the computer system. In one embodiment, the identifier for the data file includes at least one certificate authority, site certificate, software publisher identifier, or a site name, and verifying the authenticity of data involves setting a security level for at least one of the certificate authority, said site certificate, said software publisher identifier, and said site name.

公开(公告)号：DE69727198D1

公开(公告)日：2004-02-19

申请号：DE69727198

申请日：1997-11-24

Applicant: SUN MICROSYSTEMS INC

Inventor： RENAUD BENJAMIN J ,  HODGES WILSHER AVRIL E ,  PAMPUCH JOHN C

IPC: H04L9/32 ,  G06F1/00 ,  G06F21/00 ,  G09C1/00

Abstract: Methods, apparatuses and products are provided for establishing and verifying the authenticity of data within one or more data files. In accordance with one aspect of the present invention, a method for verifying the authenticity of data involves providing at least one data file which includes an identifier and a signature file which includes the identifier for the data file as well as a digital signature. The digital signature is then verified using a computer system, and the identifier in the data file is compared with the identifier in the signature file using the computer system. In one embodiment, the identifier for the data file includes at least one certificate authority, site certificate, software publisher identifier, or a site name, and verifying the authenticity of data involves setting a security level for at least one of the certificate authority, said site certificate, said software publisher identifier, and said site name.