METHOD FOR CONVERSION OF AN ORIGINAL PAPER DOCUMENT INTO AN AUTHENTICATED ORIGINAL ELECTRONIC INFORMATION OBJECT

摘要

Method for converting an original paper document into an original information object, and for subsequent electronic transmission, storage, and retrieval of verifiable copies of the stored original information object without the Trusted Repository relinquishing control of the original information object. The user first converts the blue-ink-signed paper document into an electronic information object. On deposit of this information object into the Trusted Repository, the user is required to destroy or permanently designate the blue-ink-signed paper document and locally-retained files as copies. The Trusted Repository then requires the user to establish the authenticity of the electronic information object by verifying that it is now the only authoritative and original copy. The Trusted Repository then creates the original authenticated information object by appending a date-time stamp and its digital signature and certificate (signature block). This Trusted Repository action demonstrates the Trusted Repository's assumption of control of the original authenticated information object.

主权项

1. A method for securely converting an original paper document into an authenticated original electronic information object and storing said authenticated original electronic information object in an account on a digital data vault of a trusted repository, and for subsequent electronic transmission, storage, and retrieval of verifiable copies of the stored authenticated original electronic information object without the trusted repository relinquishing control of the authenticated original electronic information object, comprising the steps of:
the trusted repository assigning a first unique identifier to said account; an authorized agent of the trusted repository converting an original hand-signed paper document into an electronic information object; said authorized agent logging onto the trusted repository and providing credentials of said authorized agent; said trusted repository validating the authorized agent's credentials to act on behalf of a designated account; said authorized agent creating an object profile in the account on the trusted repository for receipt of a copy of the electronic information object; said trusted repository assigning a unique second identifier to the object profile for receipt of such electronic information object, and associating the unique second identifier of the object profile with the unique first identifier of the account; said trusted repository establishing an event log and recording in said event log a time, date and identity of said authorized agent, the associated unique first identifier associated with the transmitted information object and the second unique identifier of the vault account; said authorized agent electronically transmitting a copy of the electronic information object file to said account on the trusted repository; said trusted verifying the integrity of the electronic information object, associating the object profile with the transmitted electronic information object, and affixing the trusted repository's digital signature to the transmitted electronic information object file using the trusted repository's digital certificate, which digital certificate includes at least the trusted repository's identity, an associated public key, a certificate serial number, an identity of the certification authority, a digital signature of the vault repository, and an algorithm used to sign the digital signature; said trusted repository attaching a tag designating the transmitted electronic information object as received and placing a secure lock on the electronic information object that prevents all file operations other than the submission process; said trusted repository recording the affixation of the trusted repository's digital signature to the transmitted electronic information object and placing the secure lock on the electronic information object in said event log evidencing assumption of control and custody of the transmitted electronic information object by the trusted repository; said authorized agent destroying or permanently designating both the original hand-signed paper document and the local copy of the submitted electronic information object as a copy; said authorized agent notifying the trusted repository that said hand-signed paper document and the local copy thereof are destroyed or marked as copies and the electronic information object now stored in the trusted repository vault account is the authoritative original electronic information object; said trusted repository affixing a digital signature of the authorized agent to the deposited authoritative original electronic information object, said digital signature including a visible representation bearing the authorized agent's certification that the electronic information object now stored in the trusted repository account is the authoritative original electronic information object; said trusted repository recording the affixation of the authorized agent's digital signature and its time and date in said event log evidencing the agent's notification of such destruction; said trusted repository affixing its digital signature to the deposited authenticated original electronic information object using its digital certificate, wherein the trusted repository digital certificate includes at least the trusted repository's identity, an associated public key, a certificate serial number, an identity of the certification authority, a digital signature of the vault repository, and an algorithm used to sign the digital signature; said trusted repository recording the affixation of the trusted repository's digital signature and its time and date in said event log; and said trusted repository releasing the secure lock from the authenticated original electronic information object stored in the trusted repository to allow other actions to be taken with respect to such authenticated original electronic information object.