United States Patent [19J
`O'Neil et al.
`
`[54] PERSONAL INFORMATION SECURITY AND
`EXCHANGE TOOL
`
`[75]
`
`Inventors: Kevin O'Neil, San Diego; Glenn R.
`Seidman, Woodside, both of Calif.
`
`[73] Assignee: Cyva Research Corporation, Solana
`Beach, Calif.
`
`[21] Appl. No.: 08/898,160
`
`[22] Filed:
`
`Jul. 22, 1997
`
`[60]
`
`[51]
`[52]
`[58]
`
`[56]
`
`Related U.S. Application Data
`Provisional application No. 60/022,035, Jul. 22, 1996.
`
`Int. Cl.6
`...................................................... G06F 17/60
`U.S. Cl. .................................. 705/44; 705/39; 380/23
`Field of Search .......................... 705/44, 39; 361!91;
`380/23
`
`References Cited
`
`U.S. PATENT DOCUMENTS
`
`4,137,556
`4,799,156
`5,280,529
`5,502,766
`5,757,917
`
`1!1979 Sessa .. ... ... ... ... .... ... ... ... ... ... .... ... . 361!91
`1!1989 Shavit et a!. ... ... ... ... ... .... ... ... ... .. 705/26
`1!1994 Nost .......................................... 380/49
`3/1996 Boebert et a!. ........................... 380/25
`5/1998 Rose et a!. . .... ... ... ... ... .... ... ... ... .. 380/25
`
`FOREIGN PATENT DOCUMENTS
`
`0649121 10/1994 European Pat. Off ..
`
`01HER PUBLICATIONS
`
`Blazic et al., "A tool for support of key distribution and
`validity certificate check in global Directory service"
`Elsevier Science B. V. (1996) Abstract XP000555878.
`
`111111
`
`1111111111111111111111111111111111111111111111111111111111111
`US005987440A
`[11] Patent Number:
`[45] Date of Patent:
`
`5,987,440
`Nov. 16, 1999
`
`Chess et al., "Itinerant Agents for Mobile Computing" IEEE
`Personal Communications pp. 34-49 (1995).
`Roscheisen et al., "Beyond browsing: shared comments,
`SOAPs, trails and on-line communities" Elsevier Science
`B. V. (1995) Abstract XP000565174.
`Jaeger, T., Implementation of a discretionary acess control
`model for script-based systems, Jun. 1995.
`Martin Roscheisen, Christian Mogensen, Terry Winograd,
`Beyond Browsing: shared comments, SOAPs, trails, and
`on-line communities, Apr. 1995.
`
`Primary Examiner-Emanuel Todd Voeltz
`Assistant Examiner---Raquel Alvarez
`Attorney, Agent, or Firm-Lyon & Lyon LLP
`
`[57]
`
`ABSTRACT
`
`Utilization of the E-Metro Community and Personal Infor(cid:173)
`mation Agents assure an effective and comprehensive agent(cid:173)
`rule based command and control of informational assets in
`a networked computer environment. The concerns of infor(cid:173)
`mational privacy and informational self-determination are
`addressed squarely by the invention affording persons and
`entities a trusted means to author, secure, search, process,
`and exchange personal and/or confidential information in a
`networked computer environment. The formation of trusted
`electronic communities wherein members command and
`control their digital persona, exchanging or brokering for
`value the trusted utility of their informational assets is made
`possible by the invention. The present invention provides for
`the trusted utilization of personal data in electronic markets,
`providing both communities and individuals aggregate and
`individual rule-based control of the processing of their
`personal data.
`
`41 Claims, 34 Drawing Sheets
`
`135
`
`130
`
`134
`
`131
`
`132
`
`AN
`E-METRO
`COMMUNITY
`
`136
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 1
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 1 of 34
`
`5,987,440
`
`0
`0
`0
`0
`0
`
`[]
`[]]
`
`0
`0
`0
`0
`0
`
`co
`::::>
`:::c
`
`.
`(!)
`u.
`
`rwO::
`w 0 w
`Z-0
`a::>-wa::>
`rwO
`ZU)O:: a..
`
`~
`
`0:: w
`>
`0:: w
`
`U)
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 2
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 2 of 34
`
`5,987,440
`
`•
`
`17
`
`16
`
`E-PIA
`
`E-METRO SECURE CARD
`(HARDWARE TOKEN)
`
`E-METRO
`CLIENT SUBSYSTEM
`
`11
`
`E-METRO
`COMMUNITY
`
`FIG. 2
`
`13
`
`11
`
`E-METRO
`COMMUNITY
`
`13
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 3
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 3 of 34
`
`5,987,440
`
`r MARJORIE'S DIGITAL ID
`
`""'\
`
`MARJORIE'S
`IDENTIFYING
`INFORMATION: NAME,
`ORGANIZATION,
`ADDRESS
`
`MARJORIE'S PUBLIC
`KEY
`
`14
`
`18
`
`r
`I
`r 15 v
`r 16
`DIGITAL ID VALIDITY II
`r 17
`DIGITAL ID SERIAL I/
`r
`AUTHORITY'S DIGITAL I
`
`DATES
`
`NUMBER
`
`CERTIFICATION
`
`SIGNATURE AND ID
`INFORMATION
`
`"
`
`""
`
`FIG. 3
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 4
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 4 of 34
`
`5,987,440
`
`(!) z
`>
`w
`()
`w
`0:::
`
`(!) z
`0 z w
`en
`
`(!) z
`z
`(!)
`Ci5
`
`""'" .
`C)
`u.
`
`(J)
`N
`
`(t)
`N
`
`w
`0:::
`::J
`~ <(
`z
`(!)
`en
`
`w
`~>->W
`-:::,.::
`0:::
`a..
`
`w
`(!)~
`<(en
`enw
`en(!)
`w-
`::::!!:0
`
`1"-
`N
`
`......
`
`(t)
`
`(t)
`(t)
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 5
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 5 of 34
`
`5,987,440
`
`E-METRO
`COMMUNITY
`
`E-PIA
`
`E-PIA
`
`c__ _ __ ___,
`
`E-PIA
`
`I• --~ E-BROKER
`I ,
`
`I
`
`I
`I
`I
`I
`I
`I
`
`TRAVELING
`E-AUTOPIA
`
`41
`
`FIG. 5
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 6
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 6 of 34
`
`5,987,440
`
`E-METRO
`COMMUNITY
`
`39
`
`/
`
`/
`
`/
`
`/
`
`/
`
`/
`
`/
`
`/
`
`/
`
`/
`
`/
`
`/
`
`/
`
`/
`
`TRAVELING
`E-AUTOPIA
`
`E-METRO
`COMMUNITY
`
`..... ..... .....
`
`............... , TRAVELING
`E-AUTOPIA
`
`I
`I
`I
`
`I
`
`I
`
`I
`I
`\ I E-BROKER I
`I
`I
`I
`I
`I
`I
`I
`I
`I
`
`I
`
`I
`
`I
`
`41
`
`35
`
`E-PIA
`Version
`
`E-PIA
`Version
`
`E-PIA
`Version
`
`E-PIA
`Version
`
`IE-BROKER I
`
`TRAVELING
`E-AUTOPIA
`
`E-PIA
`
`E-METRO
`COMMUNITY
`
`40
`
`FIG. 6
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 7
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 7 of 34
`
`5,987,440
`
`42
`
`13
`
`E-METRO
`COMMUNICATOR
`
`45
`
`E-BEING REPOSITORY
`(FTP SERVER)
`
`11
`
`E-METRO WIWV SERVER
`W/2 E-METRO COMMUNITIES
`11
`
`WIRELESS INTERNET
`SERVICE PROVIDER
`
`11
`
`E-METRO WIWV SERVER
`WI 3 E-METRO COMMUNITIES
`
`1
`
`13
`
`E-BEING REPOSITORY
`(MAIL SERVER)
`
`FIG. 7
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 8
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 8 of 34
`
`5,987,440
`
`53
`
`E-METRO
`TRUSTED
`SERVER
`
`E-METRO
`r----, TRUSTED
`SERVER
`
`47
`
`47
`
`49
`
`55
`
`NETSCAPE
`NAVIGATOR
`AND
`E-METRO
`CLIENT
`SUBSYSTEM
`
`47
`
`E-METRO
`TRUSTED
`SERVER
`
`FTP
`SERVER
`
`MAIL
`SERVER
`
`FIG. 8
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 9
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 9 of 34
`
`5,987,440
`
`67
`
`57
`
`-METRO TRUSTED SERVER
`
`47
`
`ETSCAPE ENTERPRISE SERVE
`(COMPARABLE SECURE \IWINV SERVERS
`SUPPORTED)
`
`61
`
`ETSCAPE LIVEPAYMENT
`SERVER
`(SET BASED PROTOCOL
`TRANSACTION SERVER FOR
`PROCESSING PAYMENT CARDS AND
`ELECTRONIC CASH TRANSACTION
`PROCESSING SERVERS INCLUDED)
`
`TP CLIENT
`TP SERVER
`MAIL SERVER MAIL CLIENT
`
`65
`
`63
`
`FIG. 9
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 10
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 10 of 34
`
`5,987,440
`
`59
`
`57
`
`TONETSCAPE
`/
`ENTERPRISE SERVER
`
`DORMS SERVER
`
`ESSAGING SUBSYSTEM
`
`71
`
`ULES
`PROCESSOR
`
`79
`
`81
`
`85
`
`~ E-COMMUNITY
`~OBJECTS
`
`FUNDAMENTAL
`
`(jfJ CLASSES & OBJECT
`
`~E-BROKER
`~OBJECTS
`
`OBJECT
`REPOSITORY
`
`ETA E-BROKERS
`(DIRECTORY
`SERVICE~
`HOM~ "--77
`.""'-- 87
`
`-BROKER
`SERVICE API
`
`72
`
`FIG. 10
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 11
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 11 of 34
`
`5,987,440
`
`9S
`
`OlD COLLECTIONOID KEY1 KEY2 KEY3 KEY4 KEYS KEYS
`
`BLOB
`
`OlD PARENTOID NAME
`
`FIG. 11A
`
`95
`
`FIG. 11B
`
`95
`
`97
`
`97
`
`E-COMMUNITY
`BLOB
`
`97
`
`OlD ECOMMUNITYOID NAME KEY1 KEY2 KEY3 KEY4 KEYS E-BROKER
`BLOB
`
`FIG. 11C
`
`95
`
`OlD ECOMMUNITYOID KEY1 KEY2 KEY3 KEY4 KEYS KEYS
`
`97
`
`E-PIA
`BLOB
`
`FIG. 11D
`
`FIG. 11
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 12
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 12 of 34
`
`5,987,440
`
`105
`
`ESSAGING SUBSYSTEM
`
`107
`
`-A UTOPIA
`SENDER
`DISPATCHER
`
`-A UTOPIA
`RECEIVER
`DISPATCHER
`
`71
`
`65
`
`63
`
`FIG. 12
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 13
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 13 of 34
`
`5,987,440
`
`131
`
`132
`
`AN
`E-METRO
`COMMUNITY
`
`\137
`
`136
`
`130
`
`FIG. 13
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 14
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 14 of 34
`
`5,987,440
`
`135
`
`136
`
`protocol Directory
`
`N
`
`143
`
`141
`
`FIG. 14
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 15
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 15 of 34
`
`5,987,440
`
`150
`
`153
`
`A
`CERTIFICATE
`
`AN
`ORDERED
`COLLECTION
`
`N
`
`A
`RECORDED
`EVENT
`
`\_ 154
`
`141
`
`interactProtocols
`
`143
`
`AN
`INTERACT
`PROTOCOL
`
`FIG. 15A
`
`159
`
`N
`
`A
`CERTIFICATE
`
`E-PIA
`
`FIG. 158
`
`FIG. 15
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 16
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 16 of 34
`
`5,987,440
`
`135
`
`151
`
`N
`
`161
`
`163
`
`FIG. 16
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 17
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 17 of 34
`
`5,987,440
`
`174
`
`ITINERARY
`
`170
`
`privilegeRules
`
`176
`
`163
`
`instructions
`
`AN
`ORDERED
`COLLECTION
`
`171
`
`AN
`INTERACT
`INSTRUCTION
`
`AN
`EXECUTABLE
`STRING
`
`FIG.17
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 18
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 18 of 34
`
`5,987,440
`
`privileqeRules
`
`communitvName
`
`176
`
`transitivePrivilegeRules
`
`187
`
`131
`
`181
`
`parameter
`Assignments
`
`AN
`INTEGER
`
`KEYS=
`A PARAMETER NAME
`
`182
`
`N
`
`184
`
`AN
`EXECUTABLE
`STRING
`
`VALUES=
`EXECUTABLESTRING THAT
`RESULTS IN A VALUE
`
`FIG.18
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 19
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 19 of 34
`
`5,987,440
`
`privilegeRule
`
`176
`transitivePrivilegeRules
`
`195
`
`KEYS=
`A PARAMETER NAME
`
`191
`
`192
`
`193
`
`198
`
`VALUES=
`A HIERARCHICAL NAME
`
`N
`
`194
`
`A
`PARAMETER
`
`FIG. 19
`
`195
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 20
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 20 of 34
`
`5,987,440
`
`201
`
`187
`
`EXECUTABLE
`STRING
`
`compiler
`
`FIG. 20
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 21
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 21 of 34
`
`5,987,440
`
`PARAMETER
`
`211
`
`validation Rule
`
`FIG. 21
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 22
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 22 of 34
`
`5,987,440
`
`CLASS
`
`EXECUTABLE
`STRING
`
`ORDERED
`COLLECTION
`
`DICTIONARY
`
`SQL
`STATEMENT
`
`FIG. 22
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 23
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 23 of 34
`
`5,987,440
`
`CLASS
`
`1A
`
`A CLASS
`
`instanceVariableName
`
`1C
`
`1B
`
`AN OBJECT
`
`r
`
`10
`
`AN INSTANCE VARIABLE
`
`USES FOR IMPLEMENTATION
`
`1E
`
`INHERITS
`
`FIG. 23
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 24
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 24 of 34
`
`5,987,440
`
`NETSCAPE NAVIGATOR
`AND E-METRO CLIENT
`SUBSYSTEM
`
`ENCRYPTED HOME
`E-PIA INFORMATION
`
`---------. . ..-:
`
`E-METRO
`TRUSTED ~·-··----~
`SERVER
`
`ENCRYPTED AUTHORING
`INFORMATION FROME-BROKER
`
`47
`
`E-METRO
`TRUSTED
`SERVER
`
`ENCRYPTED E-AUTOPIAS
`
`E-METRO
`1---------1 TRUSTED
`SERVER
`
`\
`
`ENCRYPTED E-AUTOP/AS
`
`47
`
`47
`
`FIG. 24
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 25
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 25 of 34
`
`5,987,440
`
`50"1
`
`...
`
`Secure Your Freedot~ Your Future Within Information Society
`
`. .. 5"1"1
`
`5(15
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 26
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 26 of 34
`
`5,987,440
`
`Sect.ifl'e Yout· Freedon~ Your Future Within Information Society
`523
`9ec<.>r<l Y~ur \lf:tu$l idimtil'/ V'irlhit1 Cyl:<~r,;;p~t& • J>~i'""'>" ;md lr:fmmali<mili Se~~O&termin~B~m
`
`5'i5
`
`FIG. 26
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 27
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 27 of 34
`
`5,987,440
`
`,/
`
`CoJJ!.l•6ilS & !Jnim~si;~;; 1 Mm;t!h r:I•Jbs & Stlils ! Reliuous G''<Wf!S.
`Hr.<t~ls & R~sor!s I tililffii Cl:;be, ,'!- t'h".Gi I Ptofug;ifm~Lii!!llW.~.),
`~M!JVerse I ·~ ~~:kil"" I New Vote I New G!!IMe~
`'\
`\ ..... 523
`
`FIG. 27
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 28
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 28 of 34
`
`5,987,440
`
`527
`
`-Diet.:r -
`
`8~.1e~ 8 K•'Nn
`;:.;.: S'f!H:>:
`
`~th~1ic;:.>1
`..,. ::;~le~
`..,. :-i.s~
`>loi;;~t
`H:!ll':!o$~>.<1&?.-$~!;­
`:-h..:;f!~(: T .;:k-J.'lf~G~1t:O
`L,~.:,: :·.-1-c;~J~:.::~~·:rl' o~:e­
`Pfa~ ~~ 8~~h
`r:,~6f.:_;:
`VS·e>::
`..;r \·le;yht
`
`FIG. 28
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 29
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 29 of 34
`
`5,987,440
`
`31
`
`25
`
`27
`
`37
`35
`
`'33 ..
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 30
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 30 of 34
`
`5,987,440
`
`FIG. 30
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 31
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 31 of 34
`
`5,987,440
`
`~:j M:sc~ HTML Dc~tt
`
`Li F.~v8~ile Lini.os Pas
`L~'?Hobb1es
`
`FIG. 31
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 32
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 32 of 34
`
`5,987,440
`
`540
`
`545
`
`P~=~~tCJn~'~
`· fo.ccD•X•t Start Date
`
`®R
`
`Clty
`D <!te oJ B i;tf·,
`Enrai!
`E ihni<:itcc
`Eye~ '
`Heir
`Heiqhl
`H;:;me Addre''
`Home T <llephone
`
`550
`
`FIG. 32
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 33
`
`

`
`U.S. Patent
`
`Nov. 16, 1999
`
`Sheet 33 of 34
`
`5,987,440
`
`555-
`
`---565
`
`t thin;c"'i~~~·
`ty<lt
`J
`>I' Hai'
`Heigl1
`H o~nq: .t> .. d,~ws ~~
`Hom·~ T ·:·lep}x<n•:<
`Li:!st fi •3d~ficra!fon Date
`
`f.!lue,8rt'''-"~rl
`i\ll~:o;h
`
`5t)0 ..
`
`Male ·:<r F ern.ore
`B ~~\•-.1een 1 ·30 ,~fld 21 0
`
`F!G. 33
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 34
`
`

`
`""-=
`
`""(cid:173)
`....
`......::.
`00
`\C
`....
`Ul
`
`~
`~
`0 ......,
`~
`~
`
`~ .....
`'JJ. =(cid:173)~
`
`'0
`'0
`"""'
`'0
`"""' ~~
`~
`0
`z
`
`~ = ......
`~ ......
`~
`•
`\Jl
`d •
`
`-
`
`321
`
`....... _______ _..
`~
`/
`: DATABASE
`:
`: ACTIVITIES
`:
`I
`I
`I -------I
`....1
`k..
`.... -
`31~_£
`
`313
`
`315
`
`317
`
`PRIVATE
`
`FIG. 34
`
`L... _______ _
`
`FORM
`ORDER
`
`INFO
`
`PRODUCT
`
`PROCESSOR
`
`ORDER
`:DIRECTORY
`I ADVERTISER
`r----------1
`
`309
`
`INFO (ENCRYPTED FILE)
`E-BAZAAR COMMUNITY
`
`307
`
`PROCESSOR
`
`TOKEN
`
`TRUSTED
`
`,..-
`~~--~·------------~
`INTERNET
`
`CLIENT
`
`·
`
`'E-BAZAAR" E-BROKER
`
`303
`
`305
`
`72
`
`301
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 35
`
`

`
`5,987,440
`
`1
`PERSONAL INFORMATION SECURITY AND
`EXCHANGE TOOL
`
`This application claims the benefit of U.S. Provisional
`Application No. 60/022,035, filed Jul. 22, 1996.
`
`FIELD OF INVENTION
`
`The present invention relates to the software management
`of information within a network computing environment.
`More specifically, the present invention relates to a software
`system operating on the Internet that creates a virtual private
`network where a user may author, secure, search, exchange
`and process personal information in a trusted and controlled
`manner. This software system encapsulates trusted commu(cid:173)
`nities and their members, where a trusted authority certifies
`the identity and the informational-self of community mem(cid:173)
`bers. Once a user is registered with a trusted community, the
`user can author and secure at will the hypermedia content,
`command and control the rule-based presentation and pro(cid:173)
`cessing of their personal information.
`
`BACKGROUND OF THE INVENTION
`
`5
`
`2
`SUMMARY OF THE INVENTION
`The present invention is a software system for operating
`on network servers, with supporting applications operating
`on an individual user's personal computer system, inclusive
`of wire-line and wireless tele-computing devices. This
`invention is directed to a system for allowing an individual
`or entity to protect, command, control, and process personal
`information on a computer network, including the Internet.
`Specifically, this invention facilitates the formation and use
`10 of networked Trusted Electronic Communities, hereafter
`referred to as E-Metro Communities, where each E-Metro
`Community comprises several members meeting common
`admission requirements. Preferably, it is theE-Metro Com(cid:173)
`munity that sets registration rules and verifies member
`15 identity itself or facilitates the use of other trusted Certificate
`Authorities. The informational identity of each member is
`encapsulated within the E-Metro Community as electronic
`personal information agents, hereafter referred to as E-PIAs,
`with each E-PIA representing a member's information and
`20 behavior, with some of the information supplied by each
`member and some of the information coming from trusted
`sources external to the member's E-Metro Community. By
`establishing and enforcing registration rules and performing
`accountable and audited verifications of member identity,
`25 and if so chosen, personal information certification, the
`E-Metro Community builds a community wherein each of
`its members can belong and participate in a electronic
`domain where the rights and responsibilities of privacy and
`informational self-determination are realized. Thus, it is
`30 through the association and certification by a trusted
`E-Metro Community that a member becomes trusted and
`reliable in other transactions, but more importantly gains
`control of their data.
`Once a user is a member of an E-Metro Community, the
`35 member can assign access rules to each piece of personal
`information. These access rules set the requirements that
`must be met before an individual piece of information can be
`processed. Additionally, the E-Metro Community may get
`minimum standards for all transactions which must be met.
`40 When a request for a particular piece of information is
`received, E-Metro Community standards and the rule
`attached to that piece of information is checked by a
`processes specific to the E-Metro Community, hereafter
`referred to as the E-Metro Community's E-Broker. The
`45 E-Broker is the actual process that checks to see if the
`requester and the situation meet the requirement of the rule.
`If so, the E-Broker allows the requested information to be
`processed; if not, the E-Broker does not allow the informa(cid:173)
`tion to be processed. Additionally, the information may be
`50 transport packaged with transitive privilege rules attached,
`that is rules that define the requirements for processing by
`anyon~ other than the original member. Using these transi(cid:173)
`tive privilege rules, a member can maintain command and
`control on third party dissemination and processing of their
`55 personal information.
`A member may also create an agent, hereafter referred to
`as an E-AutoPIA, to interact with other members in any
`E-Metro Community, or even with data external to any
`E-Metro Community. This agent contains a subset of the
`60 personal information on the member, plus contains an iti~­
`erary that directs the activity of the agent. Thus, the agent 1s
`able to interact with the personal information of other
`members as directed in its itinerary.
`
`The introduction and accelerating use of the Internet has
`resulted in an explosion of both the quantity and availability
`of personal information. Unfortunately, since the Internet ~s
`largely unregulated, there is no assurance that all th1s
`information is accurate or reliable, and often the source of
`the data is not even ascertainable. Additionally, unless
`particular precautions are taken, anything sent via the Inter(cid:173)
`net is subject to interception and misuse. These joint con(cid:173)
`cerns for data reliability and data protection can be com(cid:173)
`bined into a multifaceted concept of a trusted information
`utility. Data reliability or trustworthiness is present if the
`data is accurate and can be authenticated and/or corrobo(cid:173)
`rated. Trusted utilization is when data is available for access
`or processing only by those approved by the owner of the
`data and assurance of continued command and control
`acc;rding to rules established by the owner is present.
`Trusted utilization or trusted processing is especially critical
`when dealing with personal data. Personal information, such
`as an individual's credit worthiness, medical history,
`employment background, or lifestyle is now finding its way
`on to the Internet. It is likely that law enforcement agencies,
`credit bureaus, landlords, and others will be using this
`information to assist in making decisions. Since all these
`groups make decisions that dramatically impact an individu(cid:173)
`al's life, using incorrect data, or information that they
`shouldn't even have, can be devastating.
`Thus, people realize that something must be done to
`protect a person's personal information and as more indi(cid:173)
`viduals join the Internet, there will be more pressure to
`collect, use, and market the available personal information,
`and the individual will want to participate in, command, and
`control this activity. Collectively, these ideas cannot be
`properly implemented with the Internet tools presently
`available, and no tool can efficiently incorporate these ideas.
`Thus, there is a need to provide an Internet utility or tool for
`the security and exchange of personal information.
`It is therefore an object of the present invention to assist
`in the trusted utilization of personal information on the
`Internet by 1) providing a mechanism for individuals or
`entities securely author and encapsulate personal data and
`processing rules governing the presentation and processing
`of personal information, while 2) empowering the individual 65
`or entity, at will, command and control of their personal
`information within network computing environments.
`
`BRIEF DESCRIPTION OF THE DRAWINGS
`The foregoing and other objects, features, and advantages
`of the invention will become more readily apparent upon
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 36
`
`

`
`5,987,440
`
`4
`FIG. 30 is the user interface to the preferred embodiment
`showing the selected E-Being performing a trusted presen(cid:173)
`tation of their personal information, with certain compo(cid:173)
`nents and their attributes indicating secured or locked status
`5 because the requesting viewer does not meet the require(cid:173)
`ments set by the E-Metro Community and E-Metro Com(cid:173)
`munity member.
`FIG. 31 is the user interface to the preferred embodiment
`presenting additional personal information indicating
`10 attributes with disclosed and undisclosed access-processing
`rules.
`FIG. 32 is the user interface to the preferred embodiment
`presenting rule authoring and assignment of rules to both
`particular personal information attributes and particular
`15 groups or sub-communities of a community.
`FIG. 33 is the user interface to the preferred embodiment
`presenting rule authoring governing what criteria a proces(cid:173)
`sor of information must meet to access-process the user's
`information.
`FIG. 34 details theE-Bazaar E-Broker subsystem.
`
`20
`
`3
`reference to the following detailed description of a presently
`preferred embodiment, when taken in conjunction with the
`accompanying drawings in which:
`FIG. 1 shows users connected to network servers access(cid:173)
`ing the Internet.
`FIG. 2 shows how a user of the preferred embodiment
`views other E-Communities on the Internet.
`FIG. 3 shows the components of a digital certificate, e.g.,
`VeriSign's Digital ID.
`FIG. 4 shows how RSA Public-key cryptography works
`and how a digital signature is created and attached to a
`document to assure authorship.
`FIG. 5 shows an E-AutoPIA operating outside the
`E-Metro Community.
`FIG. 6 shows an E-AutoPIA that has collected several
`informational E-PIAs from several E-Metro Communities.
`FIG. 7 shows several network servers, a user's personal
`computer connected into the Internet plus a wireless com-
`municator.
`FIG. 8 shows several E-Metro Community systems along
`with other resources interconnected by the Internet.
`FIG. 9 shows the architecture of the E-Metro Trusted
`Server.
`FIG. 10 details the DORMS subsystem in the E-Metro
`Trusted Server, which is shown in FIG. 9.
`FIG. lla-d detail the storage mechanism for several
`objects used in the preferred embodiment.
`FIG. 12 details the messaging subsystem used in the
`DORMS subsystem, which is shown in FIG. 10.
`FIG. 13 is a Booch diagram of theE-Metro Community
`object.
`FIG. 14 is a Booch diagram of the E-Broker object.
`FIG. 15a is a Booch diagram of the E-PIA object.
`FIG. 15b is a Booch diagram of the informational E-PIA
`object.
`FIG. 16 is a Booch diagram of the E-AutoPIA object.
`FIG. 17 is a Booch diagram of the itinerary object.
`FIG. 18 is a Booch diagram of the Interact Instruction
`object.
`FIG. 19 is a Booch diagram of the Interact Protocol
`object.
`FIG. 20 is a Booch diagram of the rule object.
`FIG. 21 is a Booch diagram of the parameter object.
`FIG. 22 describes the relationship of the various classes of
`objects used within the preferred embodiment.
`FIG. 23 shows the basic Booch symbols employed in the
`object model descriptions within the preferred embodiment.
`FIG. 24 shows that the communication external to an
`E-Metro Community are all done with RSA-type security
`and encryption.
`FIG. 25 is the user interface to the preferred embodiment
`showing the initial screen.
`FIG. 26 is the user interface to the preferred embodiment
`showing the log-in screen.
`FIG. 27 is the user interface to the preferred embodiment 60
`showing the community listings screen.
`FIG. 28 is the user interface to the preferred embodiment
`showing how E-Metro Community members construct and
`execute searches displaying search results.
`FIG. 29 is the user interface to the preferred embodiment
`showing the initial page of an E-Metro Community regis(cid:173)
`tration object being authored.
`
`DETAILED DESCRIPTION OF THE
`INVENTION
`
`25
`
`The preferred embodiment of the invention primarily
`operates on a network server, with supporting applications
`operating on the individual's personal computer system. To
`a user, the preferred embodiment appears as a Web site, so
`it may be accessed simply by knowing its Web site address,
`30 but it is a Web site with comprehensive security safeguards:
`firewalls, proxy servers, SSL enabled Web servers and
`clients, digital certificates, hardware tokens, security poli(cid:173)
`cies and procedures. Not only will the Web site typically
`require certificate-based identification for access, but all
`35 communications between E-Metro Communities and mem(cid:173)
`bers and other E-Metro Communities will be encrypted. For
`additional assurance of user identification, an optional hard(cid:173)
`ware token or secure card security system may be imple(cid:173)
`mented. This security system will be discussed in a later
`40 section.
`As discussed earlier, trusted processing of information has
`two components: reliability of content and controlled
`processing, and each is addressed by the preferred embodi(cid:173)
`ment of the invention. It is easiest and most clear to discuss
`45 the preferred embodiment using a metropolis analogy. Just
`as in a city, the Internet provides an individual a place to
`meet others, share information, seek entertainment, do work,
`and shop. Likewise, every individual on the Internet has an
`address where correspondence may be sent. In the city,
`50 caution must be used when meeting someone for the first
`time as it may be unwise to give too much information to
`someone who is untrustworthy. Also, business transactions
`with a new person must be done carefully as the quality of
`goods, standard of support, or origin of the product is not
`55 known. These same concerns appear with new encounters
`and transactions on the Internet.
`In the city, people use an unfamiliar person's associations
`to lower the risk of these new encounters and transactions.
`For example, if someone is wearing a police uniform, we
`will typically be more likely to give them our drivers license
`number, home address, and other personal information. If
`someone is seated in an attorney's office and hands us a
`business card with the title of"Attorney," we are more likely
`to expose confidential information. Also, if someone lives in
`65 our same community, maybe even our neighbor, we too will
`be more likely to share information and feel safe conducting
`a transaction. On the Internet, if a person has an address that
`
`Petitioners Great West Casualty Co., BITCO Gen. Ins. Corp., and BITCO Nat'l Ins. Co.
`Ex. 1008, p. 37
`
`

`
`5,987,440
`
`5
`ends in .gov, we may feel safer doing business with them, as
`some government agency has allowed them access to the
`Internet from a government network server, thus giving that
`user an air of trustworthiness. If that user conducts a bad
`transaction, the agency that allowed their access to the 5
`Internet can be contacted, and the agency is likely to
`sanction that user. However, the vast majority of users on the
`Internet will be from network servers that provide no hint as
`to their trustworthiness. Therefore, the preferred embodi(cid:173)
`ment of the present invention provides a method to reduce 10
`the risk in new interactions, and increase the probability that
`the other user is who they say they are: the preferred
`embodiment creates agent-rule based trusted electronic
`communities.
`In the city, citizens belong to several communities. Some
`communities are defined by geography, ethnic background,
`religion, alma mater, employment, or hobbies. Commonly,
`people get a great deal of self-identification and satisfaction
`from choosing the communities to which they belong. It is
`quite common for someone to refer to themselves as an
`employee of a company, as a member of a religion, or as an
`expert at a hobby. Belonging to a community is not only
`personally satisfying to the member, but allows the reputa(cid:173)
`tion of theE-Metro Community to lower the risk of dealing
`with any one of its members.
`In the preferred embodiment, a user may join one or more
`E-Metro Communities. Each of these E-Metro Communities
`is independently operated by an administrator that sets
`admission requirements, authenticates membership, issues
`digital certificates, and sets the services available to mem(cid:173)
`bers. The E-Metro Communities are actually implemented
`as Web sites on the Internet, but are special Web sites as they
`have a great deal of intelligence and utility. FIG. 2 diagrams
`a user's view of the Internet using the preferred embodi(cid:173)
`ment. The user will be a member of one or more E-Metro
`Communities 11 and be aware there are several other
`E-Metro Communities 11 on the Internet. The user will use
`a Web Browser such as Netscape Navigator 15 running on
`their personal computer to access the Internet and attempt to
`become a member of one or more E-Metro Communities.
`When desiring to become a member of an E-Metro
`Community, it is possible to retrieve an unregistered or
`empty E-Being object from theE-Metro Community or from
`a public E-Being repository 13 that will need to be initialized
`with identity information and certified in order to become a
`member. An unregistered E-Being may be retrieved prior to
`visiting the E-Metro Community desired to be joined. Once
`a user is authorized to join an E-Metro Community, the user
`becomes a member of that E-Metro Community and can use
`the services the E-Metro Community administrator has
`provided. Services may include links to other E-Metro
`Communities, shopping, or access to information. Besides
`the standard Netscape Navigator 15, the member will also
`ne