| 摘要 |
<p>A system and method are provided that permit electronic documents to be securely transferred, stored, and shared. When an electronic document (60) is to be managed by the system, a document key pair (62), comprising a document public key (62a) and a document private key (62b) are generated. The document key pair (62) is used to encrypt the document, and a public key associated with a recipient is used to encrypt the document key pair (62). To share the document with an entire team, a team public key (70a) is used to encrypt the document key pair (62). Each member of the team is provided a copy of a team key pair (70) comprising a team public key (70a) and a team private key (70b), encrypted using his public key. The team private key (70b) may be used to decrypt the document. The document and all keys are generated, encrypted, and decrypted on a user's computer, so that the document management system has no access to decrypted versions of the document or the keys. The system is illustratively described in the context of an Internet-accessible document management system.</p> |
