公开(公告)号：US07272581B2

公开(公告)日：2007-09-18

申请号：US10246040

申请日：2002-09-17

申请人： G. Thomas Athens ,  Roger Ratzenberger, Jr. ,  Maria P. Parkos ,  Mark A. Scribe ,  Robert A. Cordery ,  John A. Hurd

发明人： G. Thomas Athens ,  Roger Ratzenberger, Jr. ,  Maria P. Parkos ,  Mark A. Scribe ,  Robert A. Cordery ,  John A. Hurd

IPC分类号： G06Q99/00 ,  H04K1/00 ,  H04L9/00 ,  G06F17/00 ,  G06K9/00

CPC分类号： G07B17/00733 ,  G07B17/00362 ,  G07B2017/00322 ,  G07B2017/00766 ,  G07B2017/00967

摘要： A mailing machine that optimizes throughput by reducing the amount of time necessary for the PSD to generate the digital signature and indicium for each mail piece is provided. The debit operation performed by the PSD, i.e., adjusting the PSD registers, is separated into three different sections, a pre-debit operation, a perform debit operation, and a complete debit operation. In addition, the calculation of the digital signature can optionally be pre-computed, or, alternatively, computed in stages, i.e., partial signature calculation. Utilizing this granularity, the cryptographic operations associated with generating the digital signature can be shifted between the three debit operations such that the execution time of the time critical portion of the debit operation (perform debit) can be optimized to meet the performance requirements of the mailing machine in which the PSD is deployed.

摘要翻译： 提供了通过减少PSD生成每个邮件的数字签名和标记所需的时间来优化吞吐量的邮寄机。 由PSD执行的借记操作，即调整PSD寄存器，被分为三个不同的部分：预借记操作，执行借记操作和完整借记操作。 此外，可以可选地预先计算数字签名的计算，或者可选地，分阶段地计算，即部分签名计算。 利用这种粒度，与生成数字签名相关联的加密操作可以在三个借记操作之间移动，使得借记操作的时间关键部分（执行借记）的执行时间可被优化以满足邮寄的性能要求 配备PSD的机器。

公开(公告)号：US07908217B2

公开(公告)日：2011-03-15

申请号：US11837750

申请日：2007-08-13

申请人： G. Thomas Athens ,  Roger Ratzenberger, Jr. ,  Maria P. Parkos ,  Mark A. Scribe ,  Robert A. Cordery ,  John A. Hurd

发明人： G. Thomas Athens ,  Roger Ratzenberger, Jr. ,  Maria P. Parkos ,  Mark A. Scribe ,  Robert A. Cordery ,  John A. Hurd

IPC分类号： G06Q99/00 ,  H04K1/00 ,  H04L9/00 ,  G06F17/00 ,  G06K9/00

CPC分类号： G07B17/00733 ,  G07B17/00362 ,  G07B2017/00322 ,  G07B2017/00766 ,  G07B2017/00967

摘要： A mailing machine that optimizes throughput by reducing the amount of time necessary for the PSD to generate the digital signature and indicium for each mail piece is provided. The debit operation performed by the PSD, i.e., adjusting the PSD registers, is separated into three different sections, a pre-debit operation, a perform debit operation, and a complete debit operation. In addition, the calculation of the digital signature can optionally be pre-computed, or, alternatively, computed in stages, i.e., partial signature calculation. Utilizing this granularity, the cryptographic operations associated with generating the digital signature can be shifted between the three debit operations such that the execution time of the time critical portion of the debit operation (perform debit) can be optimized to meet the performance requirements of the mailing machine in which the PSD is deployed.

摘要翻译： 提供了通过减少PSD生成每个邮件的数字签名和标记所需的时间来优化吞吐量的邮寄机。 由PSD执行的借记操作，即调整PSD寄存器，被分为三个不同的部分：预借记操作，执行借记操作和完整借记操作。 此外，可以可选地预先计算数字签名的计算，或者可选地，分阶段地计算，即部分签名计算。 利用这种粒度，与生成数字签名相关联的加密操作可以在三个借记操作之间移动，使得借记操作的时间关键部分（执行借记）的执行时间可被优化以满足邮寄的性能要求 配备PSD的机器。

公开(公告)号：US07319989B2

公开(公告)日：2008-01-15

申请号：US10378785

申请日：2003-03-04

申请人： G. Thomas Athens ,  Robert A. Cordery ,  John A. Hurd ,  Maria P. Parkos ,  Roger J. Ratzenberger, Jr.

发明人： G. Thomas Athens ,  Robert A. Cordery ,  John A. Hurd ,  Maria P. Parkos ,  Roger J. Ratzenberger, Jr.

IPC分类号： G06Q99/00

CPC分类号： G06F21/606 ,  G06F21/608 ,  G07B17/00362 ,  G07B2017/00258 ,  G07B2017/00427 ,  G07B2017/00443

摘要： A method and system that protects against a replay attack in a closed system postage meter is provided. “Freshness” data is included along with each indicium message sent from the meter to the printer, thereby enabling the printer to detect “stale” indicium data, i.e., indicium data that was previously generated and is being replayed, and prohibit the printing of duplicate indicia. The freshness data includes a random nonce generated by the printer during initialization along with sequence data that the printer can verify against sequence data from the previous printed indicium. If in the current indicium message the nonce is different or the current sequence data is not greater than or equal to the sequence data from the previous printed indicium, indicating the current indicium data may have been previously generated and is a replay, the printer will not print the current indicium data.

摘要翻译： 提供了一种在封闭的系统邮资计费器中防止重放攻击的方法和系统。 包括“新鲜度”数据以及从仪表发送到打印机的每个标记信息，从而使打印机能够检测“过时”标记数据，即先前产生和正在重播的标记数据，并禁止打印副本 标记。 新鲜度数据包括打印机在初始化期间产生的随机随机数以及打印机可以针对来自先前打印的标记的序列数据的序列数据。 如果在当前的标记消息中，随机数不同，或者当前序列数据不大于或等于来自先前打印的标记的序列数据，表明当前标记数据可能已经被生成并且是重播，则打印机将不会 打印当前的标记数据。

公开(公告)号：US6064989A

公开(公告)日：2000-05-16

申请号：US864929

申请日：1997-05-29

申请人： Robert A. Cordery ,  Brad L. Davies ,  Louis J. Loglisci ,  Edward J. Naclario ,  Maria P. Parkos ,  Frederick W. Ryan, Jr. ,  Mark A. Scribe ,  John H. Steinmetz ,  Joel L. Wald

发明人： Robert A. Cordery ,  Brad L. Davies ,  Louis J. Loglisci ,  Edward J. Naclario ,  Maria P. Parkos ,  Frederick W. Ryan, Jr. ,  Mark A. Scribe ,  John H. Steinmetz ,  Joel L. Wald

IPC分类号： G07B17/00 ,  H04L9/12 ,  H04L9/00

CPC分类号： H04L9/12 ,  G07B17/0008 ,  G07B17/00733 ,  H04L9/14 ,  G07B2017/00161 ,  G07B2017/00169 ,  G07B2017/00322 ,  G07B2017/0087

摘要： The apparatus comprises: a first module including a universal key; a second module including a unique identifier and a unique key wherein the unique key is derived from the unique identifier and the universal key and incorporated into the second module during manufacture of the second module. The second module is in communication with the first module. The apparatus further comprises a controller for performing the following subsequent to manufacture of the first module and the second module: initiating a communication session between the first module and the second module; transmitting the unique identifier from the second module to the first module; and deriving the unique key in the first module using the unique identifier and the universal key. A method for synchronization of cryptographic keys between modules of a distributed system and a method of manufacturing a postage evidencing system are also provided.

摘要翻译： 该装置包括：第一模块，包括通用密钥; 包括唯一标识符和唯一密钥的第二模块，其中所述唯一密钥是从所述唯一标识符和所述通用密钥导出的，并且在所述第二模块的制造期间被并入所述第二模块。 第二模块与第一模块通信。 该装置还包括一个控制器，用于执行后面的第一模块和第二模块的制造：发起第一模块和第二模块之间的通信会话; 将所述唯一标识符从所述第二模块发送到所述第一模块; 以及使用唯一标识符和通用密钥来导出第一模块中的唯一密钥。 还提供了一种用于在分布式系统的模块之间的加密密钥的同步的方法和制造邮资证明系统的方法。

公开(公告)号：US6029137A

公开(公告)日：2000-02-22

申请号：US864928

申请日：1997-05-29

申请人： Robert A. Cordery ,  Brad L. Davies ,  Louis J. Loglisci ,  Maria P. Parkos ,  Frederick W. Ryan, Jr. ,  Mark A. Scribe ,  John H. Steinmetz

发明人： Robert A. Cordery ,  Brad L. Davies ,  Louis J. Loglisci ,  Maria P. Parkos ,  Frederick W. Ryan, Jr. ,  Mark A. Scribe ,  John H. Steinmetz

IPC分类号： G07B17/00 ,  G06F17/60

CPC分类号： G07B17/00314 ,  G07B17/0008 ,  G07B2017/00032 ,  G07B2017/00169 ,  G07B2017/00322

摘要： A postage evidencing system including a plurality of domains for partitioning a population of postage meters according to an operating characteristic, a data center, a postage meter in operative communication with the data center and a printer in operative communication with the postage meter. The postage meter is initialized to operate in a particular domain while the printer is capable of operating in each of the plurality of domains. To update or enable a domain in the printer, the postage meter transmits an indication of the particular domain to the data center. Then, the data center encrypts the indication and transmits the indication to the postage meter which in turn forwards the encrypted indication to the printer. The printer decrypts the encrypted indication and using the indication enables a respective domain in the printer corresponding to the particular domain of the postage meter. A method for updating domains in a postage evidencing system is also provided.

摘要翻译： 一种邮资证明系统，包括根据操作特征划分邮资计数器的多个域，数据中心，与数据中心可操作地通信的邮资计费器和与邮资计费器操作通信的打印机。 当打印机能够在多个域中的每个域中操作时，邮资计费器被初始化以在特定域中操作。 要更新或启用打印机中的域，邮资计费表将特定域的指示发送到数据中心。 然后，数据中心对指示进行加密，并将该指示发送到邮资计费器，然后将该加密指示转发给打印机。 打印机解密加密的指示，并且使用该指示使能对应于邮资计费器的特定域的打印机中的相应域。 还提供了用于更新邮资证明系统中的域的方法。

公开(公告)号：US20080133345A1

公开(公告)日：2008-06-05

申请号：US11607210

申请日：2006-12-01

申请人： Robert A. Cordery ,  Theresa Biasi ,  Andrei Obrea ,  Pradeep K. Das ,  Leon A. Pintsov ,  Maria P. Parkos ,  Gary L. Freeman

发明人： Robert A. Cordery ,  Theresa Biasi ,  Andrei Obrea ,  Pradeep K. Das ,  Leon A. Pintsov ,  Maria P. Parkos ,  Gary L. Freeman

IPC分类号： G06Q30/00

CPC分类号： G06Q30/00 ,  G06Q30/0224

摘要： A system for generating direct offers includes a computer system adapted to generate a group of offers, a list of targeted recipients that may be potential customers, and a set of business rules for selecting appropriate ones of the offers based at least in part on certain personal recipient information. The system also includes a third party computer system and a database that stores in confidence personal information for each of the targeted recipients. The third party computer system is adapted to receive the offers, the list of targeted recipients, and the set of business rules, select an appropriate one of the offers, if any, for each targeted recipient according to the business rules based at least in part on the personal information of the targeted recipients, and construct and cause to be sent a final offer for each of the targeted recipients for which an offer has been selected.

摘要翻译： 用于产生直接提供的系统包括适于产生一组提议的计算机系统，可能是潜在客户的目标接收者的列表以及用于至少部分地基于某些个人来选择适当的提议的一组业务规则 收件人信息。 该系统还包括第三方计算机系统和数据库，用于存储每个目标接收者的个人信息。 第三方计算机系统适于接收优惠，目标收件人列表和一组业务规则，至少部分地根据业务规则为每个目标收件人选择适当的一个提供（如果有的话） 关于目标收件人的个人信息，并为每个已选择优惠的目标收件人构建并安排向其发送最终报价。

公开(公告)号：US5696829A

公开(公告)日：1997-12-09

申请号：US560253

申请日：1995-11-21

申请人： Robert A. Cordery ,  Thomas A. D'Andrea ,  Jerome E. Jackson ,  Wallace Kirschner ,  Richard A. Malin ,  David T. McPherson ,  Edward J. Naclerio ,  Maria P. Parkos ,  John H. Steinmetz ,  Joel I. Wald

发明人： Robert A. Cordery ,  Thomas A. D'Andrea ,  Jerome E. Jackson ,  Wallace Kirschner ,  Richard A. Malin ,  David T. McPherson ,  Edward J. Naclerio ,  Maria P. Parkos ,  John H. Steinmetz ,  Joel I. Wald

IPC分类号： G07B17/00 ,  H04L9/00 ,  G06F17/60 ,  G07B17/02 ,  G07B17/04

CPC分类号： G07B17/00314 ,  G07B17/00193 ,  G07B2017/00241 ,  G07B2017/00258 ,  G07B2017/00322

摘要： A mailing system is includes of a mailing machine operating under the control of a microcontroller having a communication port with a first channel and a second channel. The mailing system also includes a meter vault which operates under the control a microcontroller mounted in a secure housing and having a communication port with a first channel and a second channel. A printer is included which operates under the control of a microcontroller mounted in a secure housing and having a communication port having a first channel and a second channel. A printer interface is included for providing a number of independent communication paths. A first path provides communication between first channel of the mailing machine and the first channel of the meter vault. A second path provides communication between the second channel of the mailing machine and the second channel of the printer, and a third path for providing communications between the second channel of meter vault and the first channel of the printer.

摘要翻译： 邮件系统包括在微控制器的操作下操作的邮寄机，具有具有第一信道和第二信道的通信端口。 邮寄系统还包括一个仪表保险库，其在控制下操作安装在安全壳体中的微控制器，并具有带有第一通道和第二通道的通信端口。 包括一种打印机，其在安装在安全壳体中的微控制器的控制下操作，并具有具有第一通道和第二通道的通信端口。 包括打印机接口以提供多个独立的通信路径。 第一路径提供邮寄机的第一通道与电表库的第一通道之间的通信。 第二路径提供邮寄机的第二通道和打印机的第二通道之间的通信，以及用于在第二通道的电表库和打印机的第一通道之间提供通信的第三路径。

公开(公告)号：US08676715B2

公开(公告)日：2014-03-18

申请号：US11810488

申请日：2007-06-06

申请人： Robert A. Cordery ,  Matthew J. Campagna ,  Bertrand Haas ,  Bradley R. Hammell ,  Leon A. Pintsov ,  Frederick W. Ryan, Jr.

发明人： Robert A. Cordery ,  Matthew J. Campagna ,  Bertrand Haas ,  Bradley R. Hammell ,  Leon A. Pintsov ,  Frederick W. Ryan, Jr.

IPC分类号： G06Q20/00

CPC分类号： G07B17/00733 ,  G07B2017/00443 ,  G07B2017/00766 ,  G07B2017/00846 ,  G07B2017/00854 ,  G07B2017/0087 ,  G07B2017/00959

摘要： Methods and systems for verification of indicia that do not require key management systems, and in which revocation of key pairs is easily performed without adding costs to the verification process are provided. Indicia are generated and authenticated utilizing an identity-based encryption (IBE) scheme. A key generating authority generates a private key for a PSD, distributes the private key securely to the PSD, and provides public information for use by a verification service when verifying cryptographic digital signatures generated with the private key. The corresponding public key is a string consisting of PSD information that is provided as part of the indicium. The verification service can verify the signature of each indicium by obtaining the public key string from the indicium, and utilizing the key generating authority's public information.

摘要翻译： 提供了用于验证不需要密钥管理系统的标记的方法和系统，并且容易地执行密钥对的撤销而不增加验证过程的成本。 使用基于身份的加密（IBE）方案来生成和认证标识符。 密钥生成机构为PSD生成私钥，将私钥安全地分配给PSD，并且在验证使用私钥生成的加密数字签名时，提供公开信息供验证服务使用。 相应的公钥是由作为标记的一部分提供的PSD信息组成的字符串。 验证服务可以通过从标记获取公钥字符串，并利用密钥生成机构的公开信息来验证每个标记的签名。

公开(公告)号：US08208633B2

公开(公告)日：2012-06-26

申请号：US12276523

申请日：2008-11-24

申请人： Robert A. Cordery ,  Frederick W. Ryan, Jr. ,  Yassir Nawaz

发明人： Robert A. Cordery ,  Frederick W. Ryan, Jr. ,  Yassir Nawaz

IPC分类号： H04L9/00

CPC分类号： G06F21/608 ,  G06F21/606 ,  H04L9/0662 ,  H04L9/0869 ,  H04L9/3242

摘要： A method and system for securing the communication link between the accounting device and printer of a metering system by authenticating the data being sent via the link utilizing a Nonlinear Feedback Shift Register (NLFSR) based system is provided. A NLFSR is provided in each of the accounting unit and printing unit of a metering system. The NLFSR in the accounting unit is utilized to generate a message authentication code (MAC) for the image data being sent from the accounting unit to the printing unit. The printing unit generates a corresponding MAC for the received image data using the NLFSR in the printing unit. The MAC generated by the printing unit is compared with the MAC generated by the accounting unit. If the MACs are similar, the image data is accepted as authentic and the printing unit will print the image corresponding to the image data.

摘要翻译： 提供了一种用于通过基于非线性反馈移位寄存器（NLFSR）的系统认证通过链路发送的数据来确保计费系统的计费装置和打印机之间的通信链路的方法和系统。 在计量系统的每个计帐单元和打印单元中都提供一个NLFSR。 会计单元中的NLFSR用于生成从计费单元发送到打印单元的图像数据的消息认证码（MAC）。 打印单元使用打印单元中的NLFSR为接收的图像数据生成相应的MAC。 由打印单元生成的MAC与由计帐单元生成的MAC进行比较。 如果MAC相似，则图像数据被接受为真实的，并且打印单元将打印与图像数据相对应的图像。

公开(公告)号：US08078293B2

公开(公告)日：2011-12-13

申请号：US11844437

申请日：2007-08-24

申请人： Matthew J. Campagna ,  Bradley R. Hammell ,  Erik D. N. Monsen ,  Ronald Reichman ,  Frederick W. Ryan, Jr. ,  Michael P. Swenson ,  Robert A. Cordery

发明人： Matthew J. Campagna ,  Bradley R. Hammell ,  Erik D. N. Monsen ,  Ronald Reichman ,  Frederick W. Ryan, Jr. ,  Michael P. Swenson ,  Robert A. Cordery

IPC分类号： G05B13/02

CPC分类号： G07B17/00362 ,  G06Q10/08 ,  G06Q10/0838 ,  G07B17/00467 ,  G07B2017/00379

摘要： A system, method, and medium, the method including receiving parameter information associated with a mailer, associating the parameter information with a mailing, receiving statistical information, the statistical information including historical performance data of at least one carrier, determining a delivery sequence for the mailing based on the received mailer parameter information and the statistical information, and outputting the determined delivery sequence for the mailing.

摘要翻译： 一种系统，方法和介质，所述方法包括接收与邮寄者相关联的参数信息，将参数信息与邮寄关联，接收统计信息，包括至少一个载波的历史性能数据的统计信息，确定用于 基于接收到的邮件参数信息和统计信息进行邮寄，并且输出所确定的邮寄递送顺序。