Abstract: An operations center (OC) (200) acts as an intermediary for securely and reliably transmitting a document (3) from a sender (100) to a next recipient (300) on a routing list. The OC (200) identifies (464) a recipient (300) from the next stage of the routing list and provides either the recipient's public key (404) or an escrow encryption key (406). The OC (200) optionally can authenticate the sender (100) and/or the recipient (300), thus increasing security.

Abstract: An operations center (OC) (200) acts as an intermediary for securely and reliably transmitting a document (3) from a sender (100) to a next recipient (300) on a routing list. The OC (200) identifies (464) a recipient (300) from the next stage of the routing list and provides either the recipient's public key (404) or an escrow encryption key (406). The OC (200) optionally can authenticate the sender (100) and/or the recipient (300), thus increasing security.

Abstract: A system for securely transmitting an information package (10) to an addressee via a network (108) includes a directory interface (110) adapted to check a directory (112) to determine whether the addressee has a public key; an escrow key manager (116), coupled to the directory interface (110), adapted to provide an escrow encryption key for encrypting the package (10); a encryption module (114), coupled to the escrow key manager (116), adapted to encrypt the package (10) with the escrow encryption key; a computer-readable medium (118), coupled to the encryption module (114), adapted to store the package (10) in escrow for the addressee; a notification module (120), coupled to the computer-readable medium (118), adapted to send a notification to the addressee via the network (108); a key registration module (124), coupled to the notification module (120), adapted to issue, in response to the addressee acknowledging the notification, new public and private keys to the addressee; and a transmission module (122),

Abstract: An Operations Center (OC) (200) acts as a central key manager and intermediary in securely, reliably and non-repudiably delivering a document (3) from a sender (100) to a recipient (300). The OC (200) acts as a key manager to facilitate the process of strong authentication of the sender (100) and the recipient (300), encryption of the delivery (510), and setup of reliable connections (2A, 2B, 2C). In a preferred embodiment, the reliable connections (2A, 2B, 2C) are virtual private network connections.

Abstract: An operations center (OC) (200) acts as an intermediary for securely and reliably transmitting a document (3) from a sender (100) to a next recipient (300) on a routing list. The OC (200) identifies (464) a recipient (300) from the next stage of the routing list and provides either the recipient's public key (404) or an escrow encryption key (406). The OC (200) optionally can authenticate the sender (100) and/or the recipient (300), thus increasing security.

Abstract: A system, method and computer readable medium for securely transmitting an information package (10) to an addressee (190) via a network (108), wherein an addressee (190) is not required to have a private-public key pair before the package (10) is sent. A sending system (102) encrypts the package (10) with a package encryption key (600) and then encrypts a package decryption key (601) with an escrow encryption key (380) obtained from an escrow key manager (116). The encrypted package (10) and encrypted package decryption key (601) are held in escrow by a server system (104), until the addressee (190) is issued a new public and private key pair (390, 391). The server system (104) decrypts the package decryption key (601), re-encrypts it with the addressee's new public key (390), and forwards the encrypted package (10) and re-encrypted package decryption key (601) to the addressee's receiving system (106). The receiving system (106) receives the delivery and decrypts the information package (10).

Abstract: Systems, methods and computer-readable media for generating and utilizing a universal signature object (100). A universal signature object (100) binds a digital signature (112) to digital data (200), regardless of the file format of the version of the digital data (200). A signing program (400) generates a universal signature object (100) or appends a digital signature (122) to a previously generated universal signature object (100). A universal-signature-object viewer (600) utilizes a universal signature object (100) to display information contained in the universal signature object (100) or generated from the universal signature object (100).

Abstract: Systems, methods, and computer-readable medium for securely transmitting data (400) between at least two access systems (300, 320) via a switch system (310). Through the use encryption keys and the switch system (310) acting a central switch, any two access systems are able to securely transmit data (400) between them. The present invention can be implemented by means of an application proxy (1000), a secure connection enabled application, or application program interfaces.

Abstract: An Operations Center (OC) (200) acts as a central key manager and intermediary in securely, reliably and non-repudiably delivering a document (3) from a sender (100) to a recipient (300). The OC (200) acts as a key manager to facilitate the process of strong authentication of the sender (100) and the recipient (300), encryption of the delivery (510), and setup of reliable connections (2A, 2B, 2C). In a preferred embodiment, the reliable connections (2A, 2B, 2C) are virtual private network connections.

Abstract: Applications are integrated with application-specific certification authorities (CAs) for issuing application-specific certificates. For each certificate issued to a subscriber by a master CA, the application-specific CAs issue corresponding application-specific certificates to the subscriber. For each certificate revoked master CA, the application-specific CAs revoke the corresponding application-specific certificates of the subscriber.

Abstract: Applications are created having remote data sources linked to data objects on storage media such as CD-ROMs. These data objects are linked transparently to remote sources and updated automatically. An agent--based LiveServer accepts connections from at least one LivePlayer which may be linked to the invention remotely by a direct network link or a modem dial out to the terminal server to which the LiveServer is connected. When the LivePlayer fetches a resource from the network it shall first post its universal resource locator (URL) to the LiveServer. The LiveServer scans a translation table of alternative addresses for the URL. The LiveServer returns either an original or translated URL to the LivePlayer which then uses this URL to check its local hard disk cache to determine if the resource has been fetched earlier. If no such resource exists on the local cache the LivePlayer fetches the media from the remote site via the appropriate network protocol.