| US 7,565,540 B2 | ||
| Fully electronic identity authentication | ||
| John J. Bogasky, Silver Spring, Md. (US); Carl Almond, Tampa, Fla. (US); and Andrew Schaefer, Hoboken, N.J. (US) | ||
| Assigned to Accenture Global Services GmbH, Schaffhausen (Switzerland) | ||
| Filed on Jul. 08, 2005, as Appl. No. 11/176,681. | ||
| Application 11/176681 is a continuation in part of application No. 10/743321, filed on Dec. 23, 2003, abandoned. | ||
| Claims priority of provisional application 60/444885, filed on Feb. 05, 2003. | ||
| Prior Publication US 2006/0031116 A1, Feb. 09, 2006 | ||
| This patent is subject to a terminal disclaimer. | ||
| Int. Cl. H04L 9/00 (2006.01) | ||
| U.S. Cl. 713—173 [705/12] | 24 Claims |
| 1. An automated identity authentication and voting system comprising:
a computer for allowing a user to access an authentication system and a central hosting facility through a network,
wherein the authentication system performs identity proofing and assigns a roaming digital certificate to the user in response
to the user submitting an approved credential and registers the user to vote with the central hosting facility by completing
an electronic application and digitally signing the application with the assigned roaming digital certificate, and
wherein the central hosting facility comprises:
a system web server for housing a home page and web pages,
a data storage device, and
an application processing segment including:
a ballot creation subsystem for creating a ballot definition file by an official of the local election office, transforming
the ballot definition file to a standard format, validating the ballot by the local election official, and providing the ballot
for use by the user,
a voting subsystem for providing secure voting by identifying and authenticating a user that logs in to vote and request a
ballot, retrieving the user's identification information and digital certificate, generating a ballot from the user's local
election office ballot definition file, digitally signing the ballot, sending the ballot to the user, receiving from the user
the completed ballot digitally signed with the user's roaming digital certificate, time stamping the ballot, encrypting the
ballot with a user's symmetric key, and storing the encrypted ballot, transmitting a ballot summary to the user for confirmation,
receiving confirmation, time stamping the ballot and encrypting the user's symmetric key with the local election office's
public key, and storing the encrypted symmetric key and associated encrypted ballot, and
a ballot tabulation and reconciliation subsystem and associated processes for reconciling encrypted ballots, wherein ballot
tabulation includes providing the local election official with a token and a tabulation computer and requiring the election
official to login to the tabulation computer and a second election official to login to the central hosting facility, separating
voter identification information from the encrypted ballots and transferring the encrypted ballots to the tabulation computer,
decrypting the ballots by decrypting the symmetric key associated with each ballot with the local election office's public
key and decrypting each ballot with its associated symmetric key, and tabulating the decrypted ballots.
|