Abstract: A communication system (410) wherewith sources (414) and targets (416) employ a key server (420) to exchange transactions (424). A first request to the key server includes a source assertion (422) from an authentication authority (418), and optionally a key (430). The key server provides a transaction ID (428), and the key if not already provided, in reply to this request. The key server stores the transaction ID and source assertion. The source encrypts the transaction and sends it with the transaction ID to the targets. A second request to the key server includes a target assertion and the transaction ID. The key server provides the key in reply to this request. The key server also stores the target assertion in association with the transaction ID. The respective assertions then establish the source and targets of the transaction in a manner that cannot plausibly be repudiated.

Abstract: A security server system and method permitting participants acting as the source or destinations for a message or a conversation with multiple messages to securely communicate the messages. The messages have a message header and a message content. A message router connects the participants via a network and delivers the message between the participants based on the message header. A key server creates, stores, and releases conversation keys that the participants use to protect the message content of the message.

Abstract: A key server (320) based communication system (310) wherewith communicating parties, originators (312) and recipients (314), exchange encrypted communications (324). An originator requests or provides a key (330) to the key server, optionally with an assertion (322) from an authentication authority (318). Based on attributes (326) from the originator or elsewhere, the key server sets controlling events (340) for the communication. The originator encrypts and sends the communication to one or more recipients. A recipient may or may not request the key to decrypt the message. Positive events (342) are determined based on the controlling events and when and how many such requests occur. Negative events (344) are determined based on the absence of any requests or all requests being untimely.

Abstract: A federated authentication service technology (10) for authenticating a subject (20) residing in a subject domain (12) on a network to a server application (38) residing in a server domain (18), wherein an authentication mechanism (32) residing in an authentication domain (16) affects the service provided by the server application (38). A client (22), which may be integrated non-human instances of the subject (20), authenticates the subject (20) and a protocol proxy (34) mediates with the authentication mechanism (32) to obtain a name assertion which the client can use to access the server application (38). When multiple authentication mechanisms (32) are available, an optional agent (24), mechanism resolution process (26) and mechanism repository (28), all residing in an agent domain (14), may be used to resolve to one suitable authentication mechanism (32).

Abstract: A system for communicating a message securely between a sender and a receiver. The sender provides a key server with a string specifying the receiver. The key server obtains a message key and a particular envelope encryption key corresponding with a particular envelope decryption key, encrypts the message key with the envelope encryption key (creating the envelope), and provides the envelope to the sender-client. The sender-client encrypts the message with the message key and provides it and the envelope to the receiver. The receiver-client receives these and asks an authentication server for the envelope decryption key. The authentication server obtains the envelope decryption key and provides it to the receiver. The receiver then decrypts the envelope with the envelope decryption key, to get the message key, and decrypts the message.

Abstract: A federated authentication service technology (10) for authenticating a subject (20) residing in a subject domain (12) on a network to a server application (38) residing in a server domain (18), wherein an authentication mechanism (32) residing in an authentication domain (16) affects the service provided by the server application (38). A client (22), which may be integrated non-human instances of the subject (20), authenticates the subject (20) and a protocol proxy (34) mediates with the authentication mechanism (32) to obtain a name assertion which the client can use to access the server application (38). When multiple authentication mechanisms (32) are available, an optional agent (24), mechanism resolution process (26) and mechanism repository (28), all residing in an agent domain (14), may be used to resolve to one suitable authentication mechanism (32).

Abstract: A federated authentication service technology (10) for authenticating a subject (20) residing in a subject domain (12) on a network to a server application (38) residing in a server domain (18), wherein an authentication mechanism (32) residing in an authentication domain (16) affects the service provided by the server application (38). A client (22), which may be integrated non-human instances of the subject (20), authenticates the subject (20) and a protocol proxy (34) mediates with the authentication mechanism (32) to obtain a name assertion which the client can use to access the server application (38). When multiple authentication mechanisms (32) are available, an optional agent (24), mechanism resolution process (26) and mechanism repository (28), all residing in an agent domain (14), may be used to resolve to one suitable authentication mechanism (32).

Abstract: A system (50, 150) for assisting a user (14) to determine whether an email (18) comes from a purported originator (16). A computerized system having a display unit is provided. Logic (54) in the computerized system determines whether the email (18) includes an authenticity mark (52) including an originator identifier (102) and encrypted data (104). Logic (54) in the computerized system then decrypts the encrypted data (104) into decrypted data (108-14), based on the originator identifier (102). Logic (54) in the computerized system then presents to the user (14), on the display, whether the email (18) includes the authenticity mark (52), whether the encrypted data (104) decrypts successfully, and information based on the authenticity mark (52) and the decrypted data (108-14).

Abstract: A system (50, 150) for assisting a user (14) to determine whether a hyperlink (152) to a target uniform resource locator (URL) is spoofed. A computerized system having a display unit is provided and logic (158) therein listens for activation of the hyperlink (152) in a message (154). The logic (158) extracts an originator identifier (102) and encrypted data from the hyperlink (152), and decrypts the encrypted data into decrypted data based on the originator identifier (102). The logic (158) determines whether the hyperlink (152) includes the originator identifier (102) and the encrypted data decrypts successfully. Responsive to this it then presents a confirmation of authentication conveying the name of the owner and the domain name of the target URL on the display unit, and it redirects the user (14) to the target URL. Otherwise, it presents a warning dialog to the user (14) on the display unit.

Abstract: A method for interactively communicating with regard to a statement in e-mail form including a tag and a link. The statement is communicated from a first computer to a second via a network. The first computer is operated by the statement provider and the second is operated by a clerk associated with the statement receiver. A client software is provided to the second computer automatically based on said tag being present in the statement. An instant messaging session between the second computer and a third computer is employed based on selective link activation by the clerk. The third computer (potentially the same as the first) is operated by a service representative associated with the provider.

Abstract: A digital signature verification system wherein a signature system may sign a conversational message, as might be used in a chat, instant messaging or enterprise instant messaging dialog, and a verification system may then verify the signature. The signature system may include a signing entity and a vault, wherein the signing entity provides the message and credentials and the vault creates the signature based on a first hash of the message that is further encrypted with a signature key. The verification system may include a validating entity and a verifier, wherein the validating entity provides the message, the signature, and assertions to the verifier and the verifier then forms a second hash of the message, uses a verification key corresponding with the signature key to decrypt the signature and obtain the first hash, and compares the two hashes to determine a proper validation response.

Abstract: A secure communication system wherein message decryption may be performed while off-line, or optionally while on-line. A sender encrypts a message based on the message key and sends it to the recipient. An envelope containing a message key is created by encrypting the message key based on a verifier, where the verifier is based on a secret of the recipient. The recipient is provided the envelope, along with the message or separately, from the sender or from another party, contemporaneous with receipt of the message or otherwise. The recipient can then open the envelope while off-line, based on their secret, and retrieve the message key from the envelope to decrypt the message. In the event the recipient cannot open the envelope, optional on-line access permits obtaining assistance that may include obtaining an alternate envelope that the recipient can open.

Abstract: A communication system (410) wherewith sources (414) and targets (416) employ a key server (420) to exchange transactions (424). A first request to the key server includes a source assertion (422) from an authentication authority (418), and optionally a key (430). The key server provides a transaction ID (428), and the key if not already provided, in reply to this request. The key server stores the transaction ID and source assertion. The source encrypts the transaction and sends it with the transaction ID to the targets. A second request to the key server includes a target assertion and the transaction ID. The key server provides the key in reply to this request. The key server also stores the target assertion in association with the transaction ID. The respective assertions then establish the source and targets of the transaction in a manner that cannot plausibly be repudiated.

Abstract: A key server (320) based communication system (310) wherewith communicating parties, originators (312) and recipients (314), exchange encrypted communications (324). An originator requests or provides a key (330) to the key server, optionally with an assertion (322) from an authentication authority (318). Based on attributes (326) from the originator or elsewhere, the key server sets controlling events (340) for the communication. The originator encrypts and sends the communication to one or more recipients. A recipient may or may not request the key to decrypt the message. Positive events (342) are determined based on the controlling events and when and how many such requests occur. Negative events (344) are determined based on the absence of any requests or all requests being untimely.

Abstract: A method for interactively communicating with regard to a statement in e-mail form including a tag and a link. The statement is communicated from a first computer to a second via a network. The first computer is operated by the statement provider and the second is operated by a clerk associated with the statement receiver. A client software is provided to the second computer automatically based on said tag being present in the statement. An instant messaging session between the second computer and a third computer is employed based on selective link activation by the clerk. The third computer (potentially the same as the first) is operated by a service representative associated with the provider.

Abstract: A sheet feed tractor of the type used in printers for automatically advancing paper and the like has a recess in one surface of the chassis about the passage for the support shaft and axially extending, resiliently deflectable fingers in the recess and through which the support shaft will pass. The fingers are disposed in substantially alignment with the drive belt and are deflected inwardly by a rotatable clamping member disposed thereabout to effect clamping action on the support shaft substantially in alignment with the drive belt. This orientation of the clamping action precludes inadvertent movement of the tractor on the support shaft during clamping of the tractor thereon and also eliminates undesirable torque on the tractor when the tractor is operating by essentially eliminating any moment arm between the clamped area and the center line of the drive belt.

Abstract: A tractor for driving web material has an endless belt which travels about spaced apart drive and idler sprockets, one of which is an entrance sprocket and the other an exit sprocket. The idler sprocket is journalled in a support member which is movable on the tractor chassis by an adjusting member to vary the spacing between the sprockets and thereby adjust the tension in the belt. The belt carries the paper over a rectilinear path between the sprockets and the chassis has upper surfaces along that path which rise prior to the exit sprocket to lift the paper on the drive pins on the belt and provide a ramp surface clearance to effect clearance of the drive pins in the perforations of the paper so that they rotate downwardly without excessive wear and friction between the web around the perforations and the surface of the pins.

Abstract: A tractor for a web feeding assembly having spaced support and drive shafts has a chassis providing a pair of apertures extending therethrough and a belt extending thereabout. A drive pulley mounted in one of the chassis apertures is engaged with the driven surface of the belt and has an aperture therethrough receiving the drive shaft, and a cantable insert within a pulley body defines at least a portion of the drive shaft receiving aperture. As a result, irregularities in the drive shaft, and variations in axial spacing of the shafts occurring during operation, may be accommodated by canting movement of the cantable insert within the pulley body. A convexly arcuate belt support surface cooperates with the drive pulley to define the web drive path for the belt therebetween. A resilient spring clamp is mounted adjacent the other aperture in the chassis and releasably clamps the tractor on the support shaft.

Abstract: A tractor for a web feeding assembly has a chassis providing a pair of apertures extending therethrough and a belt extending thereabout. A drive pulley mounted in one of the chassis apertures is engaged with the driven surface of the belt and has an aperture therethrough receiving the drive shaft. Resiliently deflectable means on the pulley defines at least a portion of the shaft receiving aperture and resiliently bears upon the drive shaft over a portion of its length. The deflectable means provides a passage portion of reduced cross section to engage the surface of the shaft. As a result, irregularities in the drive shaft, and variations in axial spacing of the shafts occuring during operation, may be accommodated by deflection of the deflectable means.

Abstract: A tractor for a web feeding assembly has a chassis providing a pair of apertures extending therethrough and a belt extending thereabout. A drive pulley mounted in one of the chassis apertures is engaged with the driven surface of the belt and has an aperture therethrough receiving the drive shaft. The pulley has a pair of elements, one of which has axially extending resiliently deflectable posts thereon and the other of which has means thereon engaging the posts. Resiliently deflectable means on the second pulley element defines at least a portion of the shaft receiving aperture and resiliently bears upon the drive shaft over a portion of its length. The deflectable means provides a passage portion of reduced cross section to engage the surface of the shaft. As a result, irregularities in the drive shaft, and variations in axial spacing of the shafts occuring during operation, may be accommodated by deflection of the deflectable means and of the posts.