Cryptographic key management and validation system

Assignee

• Pitney Bowes Inc. · US

Inventors

• Walter J. Baker · Stratford, US
• Feliks Bator · Easton, US
• Robert A. Cordery · Danbury, US
• Kevin D. Hunter · Stratford, US
• Kathryn V. Lawton · Branford, US
• Louis J. Loglisci · Stamford, US
• Steven J. Pauly · New Milford, US
• Leon A. Pintsov · Town of West Hartford, US
• Frederick W. Ryan, Jr. · New Haven, US
• Monroe A. Weiant, Jr. · Trumbull, US
• Gary M. Heiden · Shelton, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG07B2017/00967
• WIPO fieldControl
• WIPO sectorInstruments

Abstract

A Key Management System for generating, distributing and managing cryptographic keys used by an information transaction system that employs cryptographic means to produce evidence of information integrity. The system comprises a plurality of functionally distinct secure boxes operatively coupled to each other. Each of the secure boxes performs functions for key generation, key installation, key verification or validation of tokens. Computers, operatively coupled to the secure boxes, provide system control and facilitate communication among the secure boxes. A plurality of separate logical security domains provide domain processes for key generation, key installation, key verification and validation of tokens produced by the transaction evidencing device within the domain using the key management functions. A plurality of domain archives, corresponding respectively to each of the security domains, securely and reliably record key status records and master keys for each domain. The Key Management System installs the master keys in the transaction evidencing device and validates the tokens. The secure boxes include a key generation box for generating, encrypting and signing a master k…