The field of the present invention is computer-based value-bearing items, and particularly, image-customized computer-based value-bearing items such as, for example, image-customized, computer-based postage-indicia-bearing items.
The exemplary embodiment of the present invention will provide computer systems and methods for protecting the security of processing for customization of computer-based value-bearing items, such as, for example, securing processing of exemplary image-customized computer-based postage label 1 in an exemplary embodiment of the present invention, as depicted in
An exemplary computer system that would be provided by the exemplary embodiment of the present invention for securing computer-based value-bearing items, would be programmed to: encrypt each computer-based value-bearing item, wherein each computer-based value-bearing item comprises at least one image uploaded to the computer system according to a respective user-provided instruction; save each encrypted computer-based value-bearing item to a computer-readable medium; generate a symmetric key and a private key; encrypt the symmetric key; and save the encrypted symmetric key to the computer-readable medium.
The exemplary computer system for securing computer-based value-bearing items, would be further programmed to generate the symmetric key using a random generator, wherein the computer-based value-bearing item comprises a computer-based postage-indicia-bearing item.
Another aspect of the exemplary computer system for securing computer-based value-bearing items, would be that the exemplary computer system would be programmed to: encrypt an image file, wherein the image file comprises at least one image of a computer-based value-bearing item; save the encrypted image file on a computer-readable medium; generate a public key and a private key; using the public key, encrypt a file decryption key for decrypting the encrypted image file; save the encrypted file decryption key on the computer-readable medium; using the private key, decrypt the encrypted file decryption key; and decrypt the encrypted image file using the decrypted file decryption key.
Yet another aspect of the exemplary computer system for securing computer-based value-bearing items, would be that the exemplary computer system would be programmed to: encrypt an image file corresponding to a user order; save the encrypted image file to a computer-readable storage medium; encrypt a key, wherein said key is a decryption key for decrypting the encrypted image file; save the encrypted decryption key to the computer-readable storage medium; decrypt the encrypted decryption key; and decrypt the encrypted image file using the decrypted decryption key.
The exemplary embodiment of the present invention would further provide an exemplary computer system for generating a representation of a customized computer-based value-bearing item that would comprise: a first server computer that is programmed to generate client requests to a value-bearing item indicia server computer, wherein the value-bearing item indicia server computer is programmed to generate a first set of computer-based value-bearing item indicia data for each client request generated by the first server computer.
In the exemplary computer system for generating a representation of a customized computer-based value-bearing item, the value-bearing item indicia server computer would be further programmed to: generate a second set of computer-based value-bearing item indicia data for each client request; and save a record of a relationship between the first set of computer-based value-bearing item indicia data and the second set of computer-based value-bearing item indicia data. In the exemplary computer system for generating a representation of a customized computer-based value-bearing item, the value-bearing item is a postage-indicia-bearing item.
In an alternative embodiment of the computer system for generating a representation of a customized computer-based value-bearing item, the first server computer, as compared to the value-bearing item indicia server computer, would be further programmed to: generate a second set of computer-based value-bearing item indicia data for each client request; and save a record of a relationship between the first set of computer-based value-bearing item indicia data and the second set of computer-based value-bearing item indicia data.
A first exemplary method that would be provided by the exemplary embodiment of the present invention would be for producing computer-based value-bearing items, and would comprise: applying a fluorescent ink in a pre-determined pattern on a label, wherein said label is adapted for bearing a computer-based value-bearing item and wherein the fluorescent ink has a fluorescence frequency ranging from 600 nm to 620 nm. In the first exemplary method for producing computer-based value-bearing items, the label could comprise an item of label stock or a sheet of paper. In the first exemplary method for producing computer-based value-bearing items, the fluorescent ink can be applied on a label: 1.) that already bears a computer-based value-bearing item; or 2.) before a computer-based value-bearing item is applied to the label; or 3.) during a printing of a computer-based value-bearing item on the label.
A second exemplary method that would be provided by the exemplary embodiment of the present invention would be for producing computer-based value-bearing items, and would comprise: applying a fluorescent ink in a pre-determined pattern on a computer-based value-bearing item, wherein the computer-based value-bearing item comprises a perimeter, and wherein the application of the fluorescent ink in the pre-determined pattern is characterized by a pre-determined position relative to a particular location on the perimeter of the computer-based value-bearing item, wherein the pre-determined pattern is characterized by a pre-determined application density of the fluorescent ink, wherein the fluorescent ink is red fluorescent, wherein the fluorescent ink has a fluorescence frequency ranging from 600 nm to 620 nm, wherein the value-bearing item comprises a postage-indicia-bearing item, wherein the pre-determined pattern comprises a representation of an identifier, and wherein the pre-determined pattern comprises a representation of a unique serial number.
In the second exemplary method for producing computer-based value-bearing items, the computer-based value-bearing item would be located on a sheet of a plurality of computer-based value-bearing items, and the fluorescent ink would be applied in a pre-determined pattern on each computer-based value-bearing item on the sheet of computer-based value-bearing items.
A third exemplary method that would be provided by the exemplary embodiment of the present invention would use a programmable ink applicator for producing computer-based postage-indicia-bearing items, and would comprise programming the programmable ink applicator to apply a fluorescent ink in a pre-determined pattern on each computer-based postage-indicia-bearing item on a sheet of a plurality of computer-based postage-indicia-bearing item. In the third exemplary method, each computer-based postage-indicia-bearing item comprises a perimeter and wherein the applying of the fluorescent ink in the pre-determined pattern is characterized by a pre-determined position relative to a particular location on the perimeter of each computer-based postage-indicia-bearing item. In the third exemplary method, the pre-determined pattern is characterized by a pre-determined application density of fluorescent ink.
The exemplary embodiment of the present invention would further provide an exemplary computer system for generating a representation of an image-customized computer-based value-bearing item; that system would comprise: a first set of computer program instructions, that when executed by a first computer, cause the first computer to generate a client request for generic value-bearing item indicia data; a second set of computer program instructions, that when executed by a second computer, cause the computer to receive the client request for generic value-bearing item indicia data, and generate a set of generic computer-based value-bearing item indicia data, wherein said set of generic computer-based value-bearing item indicia data comprises a digital signature; a third set of computer program instructions, that when executed by the first computer, cause the first computer to receive the set of generic computer-based value-bearing item indicia data; a fourth set of computer program instructions, that when executed by the first computer, cause the first computer to generate a set of image-customized computer-based value-bearing item indicia data for an image-customized value-bearing item, wherein said set of image-customized computer-based value-bearing item indicia data is generated using a subset of the set of generic computer-based value-bearing item indicia data; and a fifth set of computer program instructions, that when executed by the first computer, cause the first computer to record a mapping of the set of image-customized computer-based value-bearing item indicia data for the customized value-bearing item, to the generic computer-based value-bearing item indicia.
In the exemplary computer system for generating a representation of an image-customized computer-based value-bearing item, the first computer and the second computer would comprise the same computer. However, in an alternative embodiment, the first computer and the second computer would be different computers.
In the exemplary computer system for generating a representation of an image-customized computer-based value-bearing item, the image-customized value-bearing item comprises an image-customized postage-indicia-bearing item.
A fourth exemplary method that would be provided by the exemplary embodiment of the present invention would be for customizing value-bearing items, and would comprise: generating a customized value-bearing item comprising a set of customized value-bearing item indicia, wherein said set of customized value-bearing item indicia corresponds to a set of set of customized value-bearing item indicia data, and wherein said set of customized value-bearing item indicia data is derived from a corresponding set of digitally-signed value-bearing indicia data.
In the fourth exemplary method, the set of customized value-bearing item indicia data does not include a digital signature.
In the fourth exemplary method, the method would further comprise: recording a relationship between the set of customized value-bearing item indicia data and the corresponding set of digitally-signed value-bearing indicia data.
A fifth exemplary method that would be provided by the exemplary embodiment of the present invention would be for authenticating computer-based value-bearing items, and would comprise: comparing information about fluorescent ink detectable on a test value-bearing item identified by an identifier, to information about fluorescent ink applied to an authentic value-bearing item corresponding to the identifier, wherein the fluorescent ink on the test value-bearing item is detected using a machine for detecting fluorescent ink; wherein the information about fluorescent ink applied to the authentic value-bearing item is retrieved from a computer-readable device according to the identifier on the test value-bearing item.
The fifth exemplary method would further comprise: reporting as a counterfeit, the test value-bearing item for which the information about fluorescent ink applied to the authentic value-bearing item corresponding to the identifier does not match the information about fluorescent ink detectable on the test value-bearing item; and/or reporting as authentic, the test value-bearing item for which the information about fluorescent ink applied to the authentic value-bearing item corresponding to the identifier matches the information about fluorescent ink detectable on the test value-bearing item.
These and other features, aspects, and advantages of the present invention will become better understood with regard to the following description, appended claims, and accompanying drawings in which:
The exemplary embodiment of the present invention is described herein with respect to an exemplary Internet application of the present invention. It will be understood by someone with ordinary skill in the art that the exemplary Internet embodiment of the present invention is illustrative and non-limiting, and that the present invention will be equivalently applicable to non-Internet embodiments, including but not limited to, PC-based systems.
The exemplary embodiment of the present invention will be implemented, in part, in an online Internet-based (also sometimes referred to herein as computer-based or PC-based) postage system. The United States Postal Service (USPS) provides the Information Based Indicia Program (IBIP.) The IBIP facilitates computer-based Postage, also sometimes referred to as PC-based (Personal Computer based; also sometimes referred to herein as PC Postage), or Internet-based, Postage. In a typical Internet-based postage system, a user can purchase postage credit, and print the postage in the form of PC Postage onto a label or directly onto a mail piece at a printer connected to the user's own computer.
An example of a computer-based postage system is a software-based, online postage system described in U.S. patent application Ser. No. 09/585,025 filed on Jun. 1, 2000, by Piers C. Lingle et al., “Online Postage Value Bearing Item Printing”; U.S. patent application Ser. No. 09/690,066 filed on Oct. 16, 2000, by Craig L. Ogg et al., “Networked Cryptographic Module for Secure Printing of Value-Bearing Items”; and U.S. patent application Ser. No. 09/690,243 filed on Oct. 17, 2000, by Ari Engelberg et al., “Method and Apparatus for On-Line Value Bearing Item System” the contents of all of which are hereby incorporated by reference as if set forth in full. Exemplary online postage system software comprises user code, also sometimes referred to as client software, that resides on a user's client system, and controller code, also sometimes referred to as server software, that resides on a server system. An exemplary on-line postage system may comprise a user system electronically connected to, or otherwise adapted for communication with, a server system, which in turn is connected to, or otherwise adapted for communication with, a USPS system. The server system is preferably capable of communicating with one or more client systems simultaneously.
It will be understood by someone with ordinary skill in the art that the present invention would be equivalently applicable in contexts other than an Internet-based postage provider, including, but not limited to, other PC- and computer-based systems.
There are different types of IBIP postage. One type of IBIP postage is recipient-address specific and is date sensitive/date specific. Another type of IBIP postage is “generic” in that it is neither recipient-address specific or date sensitive/date specific.
IBIP postage is one type of Value Bearing Item (“VBI”). Value Bearing Items (“VBI” or value-bearing items) include, among other things, postage, coupons, tickets, gift certificates, currency, money orders, vouchers and the like. U.S. patent application Ser. No. 09/975,532 entitled “SYSTEM AND METHOD FOR PROVIDING COMPUTER-BASED POSTAGE STAMPS” (hereinafter referred to as the “Generic VBI Invention”), the contents and disclosures of which are incorporated in full herein, discloses systems and methods for the creation of generic VBI postage, such that no intended recipient address need be specified, verified or indicated in any way on the created postage. The systems and methods disclosed in the Generic VBI Invention provided for the generation and printing of generic VBI, such as generic postage, that may be used at any time for any recipient, much like pre-printed postage printed and sold by the United States Postal Service (“USPS”). The terms “generic postage,” “generic Internet postage”, “computer-based generic IBIP postage” and “computer-based postage” are used synonymously herein to refer to postage that is non-recipient specific and/or non-date specific.
The exemplary embodiment of the present invention will provide a user-interface via which a user would order USPS-approved, customized computer-based IBIP generic postage labels. It will be understood by someone with ordinary skill in the art that although the exemplary embodiment of the present invention is described with respect to customized computer-based IBIP generic postage labels, the invention would apply equally to other types of Value-Bearing Items. It will also be understood by someone with ordinary skill in the art that reference herein to customized computer-based postage labels is synonymous with customized computer-based postage-indicia-bearing items. It will be further understood that the term label applies equally to plain paper and to self-adhesive label stock—that is, the use of self-adhesive label stock as described herein regarding the exemplary embodiment is not a limitation of the invention; the invention would apply equally to customized computer-based postage-indicia-bearing items printed on other materials, including but not limited to paper, that may or may not have a self-adhesive substance on the reverse side for affixing to a parcel.
With reference to
The exemplary image-customized computer-based postage label 1 will bear an exemplary border 3 that will be selected by the user. In the exemplary embodiment, exemplary image-customized computer-based postage label 1 will comprise a particular postage label footprint characterized by a set of particular dimensions, e.g., width 9 and height 10. In the exemplary embodiment, width 9 will measure approximately 1.75 inches; height 10 will measure approximately 1.25 inches. On a sheet of 20 postage labels, a space measuring 1.3 inches in height and 1.8 inches wide will be dedicated to each image-customized computer-based postage label. In a variation of the exemplary embodiment, the user will be able to select one of a plurality of postage label footprints; each selectable footprint will be characterized by a corresponding height and width.
In the exemplary embodiment, image 2 will measure approximately 1.1 inches wide by 1.1 inches in height; image 2 will cover approximately two-thirds of the face of the exemplary image-customized computer-based postage label 1.
In the exemplary embodiment, exemplary image-customized computer-based postage label 1 will be characterized by a perimeter 83.
The exemplary image-customized computer-based postage label 1 will bear a human-readable indication of the country 4 for which the postage is approved. The exemplary image-customized computer-based postage label 1 will also bear a human-readable indication of an amount of postage 5. The exemplary image-customized computer-based postage label 1 will also bear a human-readable identifier (such as a serial number) 6 that will uniquely identify the particular image-customized computer-based postage label. The exemplary image-customized computer-based postage label 1 will also bear a machine-readable set of information 7. In the exemplary embodiment, the exemplary machine-readable set of information (also referred to as machine-readable postage indicia) 7 will comprise a machine-readable representation of the serial number that uniquely identifies the particular image-customized computer-based postage label, a machine-readable representation of the amount of postage, and machine-readable representations of other information.
A single machine-readable barcode may represent a plurality of items of information, such as, e.g., a serial number, and a postage value. Even though a barcode may graphically appear to be a singular item, it therefore may represent a plurality of items of information. Therefore, unless otherwise expressly indicated, the terms indicia and indicium may be used interchangeably herein to refer to the singular and the plural.
More specifically, in the exemplary embodiment, the machine-readable postage indicia 7 will comprise 18 bytes of data and 2 bytes of encoder filler, structured according to the USPS Information Based Indicia Program IBI data dictionary format. IBI Data Dictionary and Indicia Types, Document version 5.2, USPS Information Based Indicia Program (IBIP), Sep. 29, 2003. In the exemplary embodiment, the machine-readable postage indicia 7 will be generated by a secure vault (the term “vault” is used herein to refer to a postage server located in a secure data center); the secure vault will maintain a one-to-one association of each serial number 6 uniquely identifying a particular image-customized computer-based postage label 1 with a corresponding, and similarly unique, machine-readable postage indicia 7; the secure vault will maintain a record of each serial number 6 uniquely identifying a particular image-customized computer-based postage label 1 and the corresponding, and similarly unique, machine-readable postage indicia 7.
Returning with reference to
With reference to
In the exemplary embodiment, communication network 12 will comprise the Internet. However, it will be understood by those skilled in the art that the communication network may take many different forms, such as a local area network (LAN), wide area network (WAN), wired telephone network, wireless network, or any other network that supports data communication between respective entities.
Clients 10a–10z may embody one of a variety of different forms. In one illustrative embodiment, one or more of Clients 10a–10z may comprise personal computers; other of Clients 10a–10z may comprise computers or any other device, whether now known or in the future discovered, that has processing capabilities and that may engage in communication over a communications network such as communication network 12.
Each respective client device 10a–10z will be in communication with a respective display device 11a–11z. Each respective display device, e.g., in the example using client 10a, display device 11a, will be integral to, or connected to, or otherwise in communications with, the respective client device, e.g., 10a.
Clients 10a–10z will be in communications with the communication network 12 through communication links 14a–14z. A communication link e.g., 14a, could comprise a wireless communication, a dedicated line connection, cable communication, satellite communication, telephone communication, or any other type of communication now known or in the future discovered. In addition, each client, e.g., client 10a, may have access to a printer, such as printer 16a. Optionally, a local network may serve as the connection between some of the clients and the Internet 12.
The postage label customization website 19 will also be in communication with the Internet via one or more communication links, e.g., 25. As with communication links 14a–14z between the client devices 10a–10z respectively, communication links, e.g., 25, between the postage label customization website 19 and the Internet could comprise a wireless communication, a dedicated line connection, cable communication, satellite communication, telephone communication, or any other type of communication now known or in the future discovered.
A web browser 1002, such as, for example, NETSCAPE NAVIGATOR®, or MICROSOFT INTERNET EXPLORER®, or some other web browser software, will be installed on each client device, e.g. 10a. Reference herein to web browser 1002 should not be read as referring to any particular web browser brand. Further, reference to a web browser 1002 should not be read as implying that every client computer, e.g., 10a through 10z, all use the same web browser. Rather, each client 10a will have one web browser, that could be selected from various web browsers, whether now known or in the future discovered, with which to control communications between the respective client device, e.g., 10a, and the Internet. Further, it will be understood by someone with ordinary skill in the art that the invention will apply to any computer program or set of computer instructions, whether a web browser or some other software now known or in the future discovered, that is adapted to allow a user to retrieve and render hyper-media content from one or more server computers available for communication via a communications network, such as the Internet.
It should be noted that the use of suffixes such as “a” through “z” in connection with numbered elements of the FIGURES herein are exemplary and are not a limitation of the invention to any particular number. Rather, the suffixes “a” through “z”, and similar notations, are used herein to an unknown number of similar elements; although the number is unknown, the “a” through “z” suffix notation is used to express a representation of 1 to many.
Communications between a client, e.g., 10a, and the postage label customization website 19 will be provided via secured eCommerce communications, such as through SSL; HTTPS, which stands for “Hypertext Transfer Protocol over Secure Socket Layer”, is an acronym that is often used to describe such a secured eCommerce communications. However, it will be understood by someone with ordinary skill in the art that reference to SSL or HTTPS herein is not a limitation of the invention. Rather, other communication protocols, whether now known or in the future discovered, could be used.
SSL stands for “Secure Sockets Layer,” a protocol developed by NETSCAPE® for transmitting private documents via the Internet. SSL works by using a private key to encrypt data that is then transferred over the SSL connection. Both NETSCAPE NAVIGATOR® and MICROSOFT INTERNET EXPLORER® web browsers, support SSL; many websites use SSL protocol to protect the exchange of confidential user information, such as credit card numbers.
With reference to
Continuing with reference to
The exemplary embodiment of the present invention will be further characterized by a customized postage label generation environment 1201 in which a customized postage label image generation server 1202 will generate a representation of a sheet of customized computer-based postage labels. The representation of a sheet of customized computer-based postage labels would comprise, in the case of the exemplary embodiment, 20 individual customized postage label representations, all of which would be characterized by the same image and the same set of customization features (e.g., size, position, vertical orientation, horizontal orientation). The customized postage label image generation server 1202 will order generation of unique postage indicia for each customized postage label and will inject the generated postage indicia into each respective customized postage label representation.
The exemplary embodiment of the present invention will be further characterized by a production environment 1301 in which sheets of customized computer-based postage labels will be printed. The sheets of customized computer-based postage labels will each be visually inspected for quality assurance according to a post-print quality assurance procedure.
The exemplary embodiment of the present invention will be further characterized by a shipping environment 1401 in which sheets of customized computer-based postage labels approved by the post-print quality assurance procedure will be assembled to fulfill an order, and will be shipped to the respective recipient as indicated by the ordering user.
With reference to
In
In the exemplary embodiment, software named MACROMEDIA FLASH® would be installed on each client computer to facilitate viewing of the exemplary user interface of the exemplary embodiment of the present invention. As will be understood by someone with ordinary skill in the art, MACROMEDIA FLASH® is a software program that integrates video, text, audio, and graphics.
As depicted in
Continuing with reference to
In the exemplary embodiment, a single customizable postage label template type is provided; the blank template will be characterized by a single set of parameters and by a single set of customizable elements; the display of the blank template will be formatted in a single way. However, it will be understood by someone with ordinary skill in the art that in alternative embodiments of the present invention, a plurality of template types could be provided to the user for selection without varying from the spirit of the present invention. In such an alternative embodiment, the user's selection of a particular template type would be communicated to the postage label customization website 19. Each template type would be characterized by a respective set of parameters and by a respective set of customizable elements; a display of a blank template corresponding to each template type would be formatted according to the respective template type and would be adapted to facilitate customization of the respective set of customizable elements. In such an alternative embodiment, the postage label customization website 19 would detect the user's indication of a selection of a particular template type, and would generate and cause the display of a blank template corresponding to the user-selected template type.
Returning to the exemplary embodiment, with reference to
The exemplary user interface blank label template screen 500 will provide an onscreen button 520 that, when clicked by the user, will facilitate the user selecting a new image with which to customize the blank customizable image field 534. In the exemplary embodiment, before a user would be able to use the postage label customization service, the user would need to first establish a password-protected account. An exemplary Sign-In/Create an Account screen 800 is depicted in
Returning with reference to
If the user has previously established an account, the user would be able to login by entering the user's email address in the email address login field 807, by entering the correct password in the login password field 808, and by clicking the Log In button 809. Because the establishment of an account with an eCommerce website is well understood by someone with ordinary skill in the art, details about the establishment of an account are not further elaborated herein.
In an alternative embodiment, a user would be able to upload images, customize computer-based postage labels and request to proceed to checkout before being asked to login. If the user had not previously established an account, the user would at that time “Create an account” before proceeding with checking out.
With reference to
With reference to the exemplary embodiment, once a user of the exemplary embodiment has established an account, the user will be able to access a personal image gallery. The exemplary user interface to the user's personal image gallery will facilitate the user uploading one or more images to the user's personal image gallery for use in customizing postage labels. In the exemplary embodiment, users will each be able to store up to ten (10) images in their personal image gallery. It will be understood by someone with ordinary skill in the art that the description of a 10-image storage limit in the exemplary embodiment is illustrative, and is not a limitation of the present invention.
As depicted in
Once a user had identified a particular file in the image source identification window 1901, an Upload button 1903 would be provided that, when clicked, would upload the file from the file designated in the image source identification window 1901. After the file is uploaded, the user could then click on a “my image gallery” display button 1904. Clicking on the “my image gallery” display button 1904 would cause the exemplary embodiment to display the exemplary image gallery summary screen 1800 such as is depicted in
As depicted in
In the exemplary embodiment, the user could exit the exemplary order status report screen 2100 and return to the previous screen by clicking on a close button 2105.
The exemplary embodiment will support various image formats, including GIF, BMP, JPG, and TIF. The image formats listed are illustrative and not a limitation of the invention; image formats now known and in the future discovered could be equally supported by an embodiment of the present invention. Users will be able, therefore, to upload and save images using any of the supported image formats. Size and resolution of each image will depend on the file format used.
Returning with reference to
If the user clicks the select-a-new-image button 520, and if a particular image that the user wants to use is not displayed in the user's gallery list, the user will need to upload the particular image and then select it from the user's gallery list.
If, on the other hand, the user clicks the select-a-new-image button 520, and the particular image that the user wants to use is listed in the user's gallery list, the user will be able to click on the “click & drag” field 504 on the exemplary user interface blank postage label template screen 500, click on the listing of the desired image, and drag the desired image to the blank customizable image field 534 (see element 534′ described below with reference to
Continuing with reference to
In the exemplary embodiment, the exemplary user interface blank postage label template screen 500 will also provide a border customization field 512 with forward 511a and backward 511b buttons to scroll through a plurality of border color and/or pattern options. In the exemplary embodiment, the default border color/pattern will be a particular solid color, e.g., black. If a user selects a customized border, the customizable border field 533 will be customized according to the user's selection (see element 533′ described below with reference to
In the exemplary embodiment, the exemplary user interface blank postage label template screen 500 will also provide a total price 535 per sheet of customized postage labels. Once a user has selected a postage amount 503, the total price field 535 will be updated (see element 535′ described below with reference to
The exemplary embodiment is described herein with reference to sheets of customized postage labels. In the exemplary embodiment, a user will be required to order a full sheet of customized postage labels; orders for partial sheets of customized postage labels will not be allowed. In the exemplary embodiment, each sheet of customized postage labels will contain 20 customized postage labels.
It will be understood by someone with ordinary skill in the art that in alternative embodiments, it would be possible in the spirit of the present invention to facilitate partial sheet orders, to facilitate shipping label orders, e.g., with one “postage label”, postage label, and/or shipping label per page, and/or to facilitate other variations on order quantities and requirements.
In the exemplary embodiment, the exemplary user interface blank postage label template screen 500 depicted in
Returning with reference to
The respective client, e.g., 10a, will, in function 115, receive, render or otherwise obtain the preview display of the customized postage label, e.g., via the web browser resident on the respective client device, and will present the preview display (see
It will be understood by someone with ordinary skill in the art that the user will be able to separately customize each customizable field (image 534, border 533, and amount 532) on the exemplary user interface blank postage label template screen 500 depicted in
Returning with reference to
If, on the other hand, the user determines, in function 120, that the customized postage label is satisfactory, then the user could proceed, in function 130, to submit the order (the user could indicate that, for example, the user is ready to “Check Out” by, e.g., clicking the “Check Out” button 536 depicted in
For any particular customized postage label 601 in the order 600, the user could click on the edit image field 602 to refine the customization of that particular postage label. The exemplary shopping cart summary screen 600 would also provide a sub-total 607 that would reflect the total of all customized postage labels in the order, a shipping fee 608, an amount of tax 609 (however, there is presently no tax for U.S. postage), and a Total Price 610 for the entire order. The exemplary shopping cart summary screen 600 would also provide an option to return to the user's image gallery 613, and an option to upload another image to the user's image gallery 614. The user would be able to modify the quantity field for any customized postage label listed by placing the cursor on the quantity field 605 and entering a different number; the user would be able to request recalculation of the total order by then clicking the Recalculate button 611. When the user is satisfied with the summary of the order as presented on the exemplary shopping cart summary screen 600, the user would be able to click on the Checkout button 612 which would take the user to further order finalization screen, such as are depicted in
Once the user has entered the appropriate billing information and confirmed the order by clicking on the appropriate confirmation button 652 or 670 as the case may be, the user would be presented with a final Confirm Your Order screen.
With reference to
In the exemplary embodiment, security measures for encrypting user credit card information will include the following. Card encryption will use Advanced Encryption Standard (“AES”—which would be implemented in the exemplary embodiment in the RijndaelManaged .NET Framework class). The key will be generated as follows: at server startup, a user from a Data Center Operation (“DCO”) and a user from the security officers group must both input a password; each password will be input into the PasswordDeriveBytes class (which uses Windows' CryptoAPI's CryptDeriveKey) to generate 256 bits; once both passwords have been entered, the AES key is generated by applying an exclusive “OR” function to (“XOR'ing”) the following three items:
1.) The DCO member's password-derived 256 bits.
2.) The Security Officer's password-derived 256 bits.
3.) 256 bits from a file stored on the server itself.
Including the 256 bits from the file stored on the web server in the exemplary embodiment process to generate the AES key will allow pass-phrase changes without having to re-encrypt the stored cards in the database. In an alternative embodiment, generating the key from just the two password-derived bit sequences would not permit password changes without re-encryption.
In the exemplary embodiment, the AES key will be verified by comparing a stored SHA1 (“SHA1” is an acronym for Secure Hash Algorithm-1—an algorithm that computes a 160-bit representation of a message that can be used in creating and verifying digital signatures) hash with the hashed value of the final XOR'ed AES key value.
In the exemplary embodiment, user credit card information will be stored in the database encrypted using AES in Cypher Block Chaining (“CBC”) mode. The padding method will be PKCS #7. A random Initialization Vector (“IV”) will be created by the RijndaelManaged class upon instantiation. The IV will be generated using the RNGCryptoServiceProvider class which will use CryptoAPI's CryptGenRandom.
In the exemplary embodiment, in addition to storing the encrypted card number on the database, the IV, a Message-Digest algorithm 5 (“MD5”) hash of the card number, and the first six plain-text digits (the BIN number) will be stored in the database. (MD5 is a message-digest algorithm developed by Ron Rivest. It is useful for digital signature applications where a large message has to be “compressed” in a secure manner before being signed with a private key.) The card will be given an ID number, which will be the way to identify a card for use in a later, subsequent transaction.
In the exemplary embodiment, security measures for encrypting the postage ordered will include the following. In the exemplary embodiment, postage orders will be saved in the form of Portable Data Format (“PDF”) files. The PDF files containing the postage to be printed will be encrypted prior to being saved on disk. The encryption will be done with an AES in CBC mode. The AES key will be 256 bits and will be randomly generated for each PDF file. A random IV will also be generated. The AES key will be encrypted with a 1024-bit RSA public key (RSA is an acronym for the last names of the inventors (Ron Rivest, Adi Shamir, and Leonard Adleman) of an encryption algorithm that they invented in. Optimal Asymmetric Encryption Padding (“OAEP”) padding will be used. The PDF file will be saved to disk as ordernumber.PDF.aes. The content of the file will be as follows:
1.) The length in bytes of the encrypted AES key (will occupy 8 bytes in the file).
2.) The RSA encrypted AES key.
3.) The length in bytes of the AES IV (will occupy 8 bytes in the file).
4.) The AES IV.
5.) The AES encrypted PDF data.
The RSA private key will be kept on a Universal Serial Bus (“USB”) flash drive for use by the administrative person downloading the encrypted PDF files.
Returning with reference to
With reference to
In the exemplary embodiment, an entry for an order on the order database (element 50,
In the exemplary embodiment, with reference to
With reference to
The exemplary embodiment will provide a Quality Assurance inspection interface, sometimes referred to herein as the Inspector Admin (administrative) Tool. The exemplary Inspector Admin Tool will allow for the processing of image review, and image approval or rejection. In order to use the Inspector Admin Tool, a Quality Assurance inspector/reviewer (also sometimes referred to as an Inspector, or alternatively, a QA User) 1 would log in to the Inspector Admin Tool.
With reference to
The first pre-print quality assurance inspector/reviewer to log in will receive the first image, in chronological Order Number order, available at that time, in the pre-print quality assurance queue (element 1103,
In the exemplary embodiment, non-supervisory inspectors/reviewers will not be able to choose from the pre-print quality assurance queue (element 1103,
With reference to
The pre-print quality assurance reasons, e.g., 901 through 906, are illustrative and non-limiting; additional quality assurance reasons could be listed; a pre-print quality assurance inspector/reviewer would scroll through additional reasons using a window up key 908, down key 910, or tab 909.
The pre-print quality assurance inspector/reviewer would be able to input comments in the comment field 907, and would be able to scroll through the comments using a comment window up key 911 or down key 912. Once the pre-print quality assurance inspector/reviewer was satisfied with their assessment of the image 534′, the pre-print quality assurance inspector/reviewer would click on the Submit button 921.
Clicking on the Submit button 921 would cause the next image in the pre-print quality assurance queue (element 1103,
In the exemplary embodiment, a QA Supervisor will, through a computer interface, assess the aesthetic and legal acceptance of an image escalated for supervisory review. A QA Supervisor may also review images previously reviewed but not escalated by non-supervisory QA users on a random or other basis. Access to the QA Supervisor interface will be determined by Windows user group roles. In the exemplary embodiment, the QA Supervisor interface will be identical to the QA User interface with differing underlying functionality. Images will be made available to the QA Supervisor interface through an escalation process. Images can be escalated due to a QA User being unsure as to its disposition or for other reasons including but not limited to review of rejected images. A QA Supervisor, through the supervisory role, will also be able to override the decision of a non-supervisor QA User. A QA Supervisor will be able to select an image for review and the QA Supervisor's selection will not being limited by an image queue. Accordingly, a decision on the disposition of a particular image can be deferred, if deferral is determined to be appropriate by a QA Supervisor.
In one alternative embodiment, each image will be separately and independently reviewed by two different non-supervisory pre-print quality assurance inspectors/reviewers (QA Users). Each independent non-supervisory pre-print quality assurance inspector/reviewer will indicate their assessment of an image. An image will not be considered to have passed quality assurance unless both non-supervisory pre-print quality assurance inspectors/reviewers approve the image, or unless a Supervisory QA User (also sometimes referred to herein as a QA supervisor, or as a QA supervisory user) approves the image.
In the exemplary embodiment, material considered to fall in a Critical category will be rejected from use with USPS postage; critical category material will include content that is considered harmful, illegal, or controversial. Exemplary critical category material quality assurance standards in the exemplary embodiment will include content with:
Material containing content that may be copyrighted material, that is not owned by the person who submits the image for print, will be considered to be in an “Intermediate” Material category. It can be very difficult to assess whether a person submitting an image owns the copyright. Therefore, in the exemplary embodiment, QA reviewers will only exclude images at the behest of a particular copyright owner.
With reference to
If, on the other hand, in test function 260, the image(s) pass quality assurance review, then, with reference to
With reference to
It will be understood by someone with ordinary skill in the art that file and database architecture can be subject to many variations without departing from the spirit of the present invention. Accordingly, it will be understood by someone with ordinary skill in the art that description herein of information being saved to a particular file or database is exemplary, illustrative and non-limiting. Reference herein to any particular file or database will be understood to apply equally to any and all computer-readable media, whether now known or in the future discovered, including but not limited to: computer-readable storage media such as disk, CD, RAM and/or ROM memory of the particular computer that is performing the save or retrieve/read operation, or; RAM and/or ROM memory of any computer; or to a communication medium, whether now known or in the future discovered, such as, for example, a communication via an Internet communication, whether wireless, or otherwise. Further, the description herein of the exemplary embodiment “saving” information will be understood to apply equally to committing the information to storage or communication, including, for example, saving information to a file, a database, or any other type of representation of information, and/or communicating the information via, e.g., an Internet communication, whether wireless or otherwise.
It will be understood by someone with ordinary skill in the art that saving orders in the exemplary embodiment for fulfillment to an order database (element 50,
Before describing processing of pre-print quality-assurance-passed orders, it is noted that, as will be understood by someone with ordinary skill in the art, alternative embodiments could provide alternative quality assurance processing. For example, in one alternative quality assurance processing embodiment, a database will be provided that contains images, or links to images, that are considered to fail quality assurance standards. Herein, this particular database will be referred to as the Bad Image Database.
As each user-ordered image is examined during pre-print quality assurance review, the Bad Image Database would be checked for the particular user-ordered image being reviewed. To determine whether or not a match exists between a particular user-ordered image and the images on the Bad Image Database, image search technology will be used. If a match is found between the user-ordered image being reviewed and an image on the Bad Image Database, the Quality Assurance user/reviewer would be alerted.
As will be understood by someone with ordinary skill in the art, any of various ways could be used to alert a Quality Assurance user/reviewer that a match has been identified between a user-ordered image being reviewed and an image on the Bad Image Database. For example, each user-ordered image (e.g., element 3100a,
The Customer ID 3006 displayed on the alternative exemplary pre-print image quality order status screen (
Following the information described above with respect to
For each line item in an order, a line item number, e.g., 3101a (
For each line item in an order, a description, e.g., 3104a (
For each line item in an order, a value (e.g., in cents), e.g., 3108a (
For each line item in an order, an Original image filename, e.g., 3118a (
For each line item in an order, any Image QA (QA1) votes 3150a (
QA1 is sometimes used herein to refer to pre-print quality assurance/review. QA2 is sometimes used herein to refer to post-print quality assurance review.
The description below of the content (e.g., 3120a–3132a (
Each exemplary display of an Image QA (QA1) vote would comprise, e.g., a vote reason description (e.g., 3120a (
For an order to pass QA review, each image in the order must pass QA review. For an image to pass QA review, it must be reviewed by a QA user, or as mentioned above, depending on the embodiment, possibly by multiple QA users, and receive a passing vote from each QA user. If an image received a failing vote from one or more QA users, the failing vote could be overridden by a QA supervisory user. For example, a QA supervisory user could choose the Delete Vote option (e.g., element 3132b,
As depicted in
As depicted in
The exemplary pre-print image quality assurance manager queue image reason screen depicted in
The exemplary pre-print image quality assurance manager queue image reason screen depicted in
The exemplary pre-print image quality assurance manager queue image reason screen depicted in
The exemplary pre-print image quality assurance manager queue image reason screen depicted in
It will be understood by someone with ordinary skill in the art that the above-identified statuses are exemplary and non-limiting. Further, it will be understood by someone with ordinary skill in the art that the alternative exemplary QA embodiment of the present invention described above with respect to, e.g.,
As previously mentioned above, a QA user could obtain detailed customer information about a particular customer, e.g., customer 3006, by clicking on the Customer ID 3006 field depicted in
With reference to
Continuing with reference to
Continuing with reference to
Returning with reference to
Returning with reference to the exemplary embodiment, and with reference to
With reference to
With reference to
In the exemplary embodiment, each image generation server 1202 will execute a “modified client” generic Internet postage software application. That is, each image generation server 1202 will act as a modified generic Internet postage client device.
U.S. patent application Ser. No. 09/975,532 entitled “SYSTEM AND METHOD FOR PROVIDING COMPUTER-BASED POSTAGE STAMPS” (sometimes referred to herein as the “Generic VBI Invention”), the contents and disclosures of which have been previously incorporated in full herein, describes client interaction with a generic Internet postage server, and describes in detail, the generation of generic Internet postage indicia. As described in Generic VBI Invention specification, each user client computer device would have client software installed to facilitate generic Internet postage; each user client would typically have associated with it an Ascending Register and a Descending Register to track the amount of funding provided and available for use in purchasing postage.
In the exemplary embodiment of the present invention, and as compared to client software installed on and being operable on each respective user client computer device, a “modified” version of the generic Internet postage client software application would be operable on each image generation server 1202—this “modified” version of the generic Internet postage client software is referred to herein as a “modified client”. As opposed to being operable on each user client device to facilitate requests via each respective user client device for generic Internet postage, in the exemplary embodiment of the present invention, the respective “modified client” is operable on each respective image generation server 1202; each respective “modified client” would issue requests for generic Internet postage.
Accordingly, it will be understood by someone with ordinary skill in the art that reference herein to a “modified client” generic Internet postage software application is distinguished from client software as previously described above that is operable on each respective user client device.
In the exemplary embodiment of the present invention, a respective “modified client” (element 1209,
In the exemplary embodiment, software executing on the exemplary image generation server would log in to a generic Internet Postage account once per session.
As depicted in
In the exemplary embodiment, in exemplary image server function 300, the software executing on the exemplary image generation server would assemble an image of a sheet of customized postage labels for each image (element 601,
In the exemplary embodiment, customized postage label features associated with an order are represented in PDF format. Therefore, in the exemplary embodiment, the assembly in exemplary image server function 300 by the image generation server (element 1202, depicted in
It will be understood by someone with ordinary skill in the art that reference herein to a server, such as a reference to the image generation server, or to a function [of a server], performing a particular action will be understood to mean that software executing on that server, such as software executing on the image generation server, performs the particular action.
Continuing with reference to function 280 in
The image generation server (element 1202, depicted in
As will be described further below, this Order ID number will be printed, both in human readable text and as a scannable barcode (a machine readable representation of the Order ID number), on the corresponding sheet of printed customized postage labels. The printing of the Order ID number on each sheet of printed customized postage labels will facilitate bundling of all printed sheets for an order for final shipment to the recipient designated by the user.
With reference to
It will be understood by someone with ordinary skill in the art that reference herein to a file or a database is non-limiting and is an exemplary description of a computer-readable storage medium.
With reference to
In the exemplary embodiment, each generic Internet postage label request transaction generated in image generation server function (element 310 in
Further, in contrast to the typical association as described in the Generic VBI Invention of an individual Ascending Register (AR) and a Descending Register (DR) with each user client, in the exemplary embodiment of the present invention, a respective general AR and a respective general DR will be associated with, and available to, each of the respective “modified clients” resident and executing on the respective image generation server(s) 1202.
With reference to
In generic Internet postage server function 400, each generic Internet postage label request transaction 51 will be examined, and for each generic Internet postage label request transaction 51, a generic Internet indicia transaction 402 will be generated. Each generic Internet indicia transaction 402 will comprise a representation of full, digitally-signed, generic Internet postage indicia. In one embodiment, the representation of the full, digitally-signed, generic Internet postage indicia generated could comprise a representation of machine-readable information, such as a representation of a 2D barcode; in the exemplary embodiment, however, the representation of the generated full, digitally-signed, generic Internet postage indicia will comprise data fields that will later be used to generate a machine-readable 2-D barcode.
It will be understood by someone with ordinary skill in the art that full, digitally signed, generic Internet postage indicia may comprise a number of elements, including, for example: an Indicia Version Number (a version number assigned by the USPS to the indicia data set), an Algorithm identifier (that identifies the digital signature algorithm used to create the digital signature in the indicium), a Certificate Serial Number (that represents the unique serial number of the PSD (“Postal Security Device”) certificate issued by the IBIP Certificate Authority), a Device identifier PSD Manufacturer identifier (a USPS-assigned identifier for each provider), a Device identifier Model identifier (a provider's model number for the PSD), Device Identifier PSD Serial Number (a provider-assigned serial number for the PSD), Ascending Register (total monetary value of all indicia ever produced during the life cycle of the PSD), Postage (amount of postage for the particular mail piece or postage label), Date of Creation, Registration Post Office City State and Zip code, unique postage label identifier (such as a serial number), Software identifier (host system software identification number), Descending register (the postage value remaining on the PSD after the amount of the postage for the particular postage label has been deducted), rate category (a postage class and rate), a digital signature, and other fields.
For each generated generic Internet indicia transaction, function 400 will save on database 401 information about the generated generic Internet indicia transaction 402, including the unique generic Internet postage label request transaction ID that was associated with the generic Internet postage label request transaction that triggered function 400 to generate the generic Internet indicia transaction 402. In the exemplary embodiment, generic Internet indicia transaction 402 will comprise a unique serial number comprising a master serial number corresponding to a sheet of postage labels, a minor serial number extension that will uniquely identify each postage label on the sheet, a meter number, and Ascending Register information, and other data fields mentioned above regarding full, digitally-signed generic Internet postage indicia; in the exemplary embodiment, the unique serial number will be saved as, and will serve as, a key in database 401 to the generated full, digitally-signed, generic Internet postage indicia.
It will be understood by someone with ordinary skill in the art that in an alternative embodiment, that rather than transaction 402 comprising full, digitally-signed, generic Internet postage indicia, a transaction 402 could be created that would comprise a derivative of the full, digitally-signed, generic postage indicia.
Returning with reference to the exemplary embodiment, in image generation server function 320, for each postage label requested in an order, a customized postage label transaction 52 will be generated. In the exemplary embodiment, the number of postage labels in an order would be equal to the total of twenty postage labels (because there are twenty postage labels per sheet in the exemplary embodiment) times the quantity (element 605,
In image generation server function 330, each generic Internet indicia transaction 402 will be matched with the corresponding customized postage label transaction 52.
It will be understood by someone with ordinary skill in the art that generic Internet indicia transactions 402 and customized postage label transactions 52 may be saved on separate files, or on the same file, or be otherwise communicated, for access by subsequent functions.
If a match is detected in image generation server test function 340 between a generic Internet indicia transaction 402 and a corresponding customized postage label transaction 52, then image server function 350 will then build a derivative of the full, digitally-signed generic Internet postage indicia contained in generic Internet indicia transaction 402. Exemplary derivative postage indicia for the corresponding customized postage label in the exemplary embodiment of the present invention will comprise the data fields depicted in
It will be understood by someone with ordinary skill in the art that one reason for deriving a set of postage indicia for use on a customized postage label, from full, digitally-signed, generic Internet postage indicia, would be to provide customized postage label indicia that does not require as much visual space on the face of a customized postage label as does full, digitally-signed, generic Internet postage indicia.
As compared to the large number of fields described above for full, digitally-signed generic Internet postage indicia, the exemplary indicia for a customized postage label would contain, as described above with respect to
Returning with reference to
In the exemplary embodiment, barcode module (element 1210,
Continuing with image generation server function 350 depicted in
It will be understood by someone with ordinary skill in the art that, in contrast to the above-described derivation from full, digitally-signed generic Internet postage indicia of postage indicia for use on a corresponding customized postage label, it would be possible to use the full, digitally-signed generic Internet postage indicia on the corresponding customized postage label. However, doing so would occupy, even with the employment of a 2-D barcode representation of the full, digitally-signed generic Internet postage indicia, more space on the face of the corresponding customized postage label.
With reference to
It will be understood by someone with ordinary skill in the art that one or more than one record on a database, or on multiple databases, could be used to store information about a particular transaction. Description herein regarding a singular database or record will be understood by someone with ordinary skill in the art to be illustrative and non-limiting and to apply equally to multiple databases or records; description herein regarding multiple databases and/or records will be understood by someone with ordinary skill in the art to be illustrative and non-limiting and to apply equally to singular databases and/or records.
Once the record(s) for the corresponding full, digitally-signed generic Internet postage indicia that was provided on generic Internet indicia transaction 402 and saved on database 401 is found, it would be updated to reflect use of the indicia before proceeding to the end/return function 420.
It will be understood by someone with ordinary skill in the art that the above-described approach for generating full, digitally signed, generic Internet postage indicia and then printing on a customized postage label another, derivative, set of indicia, is an exemplary configuration of elements, functions and logic. Other alternative approaches are possible without departing from the spirit of the present invention. For example, in
In one alternative exemplary embodiment, client interface 1209a would be installed on a server separate from the image generation server 1202 and would be used to execute many of the functions described above with respect to generic Internet postage server function 400 in the exemplary embodiment in producing generic Internet postage indicia. For example, optionally separate client interface 1209a would, for example, receive, or otherwise recognize, each respective request for a respective particular amount of postage; log into an account; deduct an amount for the requested amount of postage from the account; generate full, digitally signed, generic Internet postage indicia; and then pass the full, digitally signed, generic Internet postage indicia to the server that called it, e.g., the image generation server 1202.
In the exemplary alternative embodiment, the image generation server 1202 would then be responsible for protecting use of the full, digitally signed, generic Internet postage indicia to ensure that the money deducted for the requested postage amount is appropriately used. That is, the image generation server 1202 in the exemplary alternative embodiment could be used to save the full, digitally signed, generic Internet postage indicia to a database (e.g., element 401,
In an exemplary batch embodiment of the present invention, customized postage could be printed using a batch processing system. The batch processing system would be implemented by using a “further modified client” running in batch mode. The further modified client would assemble each order as described above and would make a request to generate a list of postage indicia data by sending serial numbers, starting label number, total number of labels, and postage amount information to the generic Internet postage server. After receiving such a request, the generic Internet postage server would create a block of data (total number of labels times the current size of the generic postage indicia data) with generic postage indicia data for each label; the generic Internet postage server would send the block of generic postage indicia data back to the batch processing system.
Upon receiving the block of generic postage indicia data, the batch processing system would derive customized postage indicia data for each customized label in a manner similar to that previously described above, would create machine-readable customized postage indicia for each label using the previously-described barcode module (element 1210,
The further alternative exemplary high-level logic functions depicted in
As with the exemplary embodiment, with reference to
As with the exemplary embodiment, in the further alternative exemplary embodiment, each image generation server 1202 will execute a “modified client” generic Internet postage software application.
As with the exemplary embodiment, in the further alternative exemplary embodiment, software executing on the exemplary image generation server would log in to a generic Internet Postage account once per session.
As further depicted in
As depicted in
As depicted in
In the further alternative exemplary embodiment, function 3400 would transform the original image according to the user-specified customization instructions (see, e.g., elements 110 and 220,
In the further alternative exemplary embodiment, for each customized postage label in the order being processed, function 3500 will perform logic functions to generate customized postage indicia (described in some detail below with respect to
In the further alternative exemplary embodiment, for each sheet in the order being processed, function 3600 will generate an Order ID Number (in a manner previously described above with respect to the exemplary embodiment); generate a machine-readable Order ID Number (also in a manner previously described above with respect to the exemplary embodiment); draw a logo (drawing a logo is an optional function; a logo would, e.g., be relevant to the Internet postage provider); and draw the Order ID Number and the machine-readable Order ID Number.
In such a way, the software executing on the further alternative exemplary image generation server would draw an image of a sheet of customized postage labels for each image (element 601,
As with the exemplary embodiment, in the further alternative exemplary embodiment, customized postage label features associated with an order are represented in PDF format. Therefore, in the further alternative exemplary embodiment, the drawing in further alternative exemplary image server function 3600 by the image generation server (element 1202, depicted in
As in the exemplary embodiment, in the further alternative exemplary embodiment, communications 1205 (
Further, as in the exemplary embodiment, in the further alternative exemplary embodiment, a respective general AR and a respective general DR will be associated with, and available to, each of the respective “modified clients” resident and executing on the respective image generation server(s) 1202.
As was previously mentioned above, the logic functions depicted in
If no voided indicia data is available and a request has been made (by the modified client, element 1209 in
Function 3552 will retrieve account information from a PSD (Postal Security Device) database 3570; account information will include the current Ascending Register and Descending Register amounts. Database 3570 will contain PSD (Postal Security Device) records. Account information is information contained within PSD records. Function 3554 will validate that the retrieved account record is signed. Function 3556 will generate full, digitally-signed, generic Internet postage indicia data in response to the request and will update the Ascending Register and Descending Register according to the amount of postage indicated in the request. Function 3558 will re-sign the account record information. Function 3560 will store the updated, re-signed account record in the PSD database 3570. Function 3562 will send, return, or otherwise make available, the generated full, digitally-signed, generic Internet postage indicia data, to the image generation server (element 1202,
Whether full, digitally-signed, generic Internet postage indicia data had to be newly generated by the generic Internet postage server (element 1203,
As with the exemplary embodiment, customized postage indicia data in the further alternative exemplary embodiment is derived from full, digitally-signed generic Internet postage indicia data and will comprise the data fields depicted in
In the further alternative exemplary embodiment, function 3584 will store in database 3586 a mapping of the generated customized postage indicia data to the full, digitally-signed generic Internet postage indicia data.
Continuing with reference to
Returning with reference to
In the exemplary embodiment, the download (depicted in
1.) A pass phrase will be chosen at key-generation time.
2.) This pass phrase will be input into the .NET PasswordDeriveBytes class along with eight bytes of salt generated by the RNGCryptoServiceProvider class. (A “salt” can be used in password-protected cryptography; a salt can be viewed as an index into a large set of keys derived from a password; a salt value may comprise random data that is sometimes included as part of a session key—when added to a session key, the plain text salt data is placed in front of the encrypted key data; salt values are added to increase the work required to mount a brute-force (dictionary) attack against data encrypted with a symmetric-key cipher). The result will be 256-bytes that will be used as the AES key in step 4.) below.
3.) A RSACryptoServiceProvider class instance will be created and a random key will be generated.
4.) The random RSA key will be encrypted using AES-CBC with a random IV and the derived AES key.
5.) An XML file (the “private key file”) will be created containing:
6.) Another XML file (the “public key file”) will be created using the RSACryptoServiceProvider.ToXmlString( ) method.
7.) The public key will be installed on the web server to use during PDF generation.
It will be understood by someone with ordinary skill in the art that an AES key is an example of a symmetric key.
In the exemplary embodiment, there will be no signature on the file. Source authentication will be handled by the SSL connection during the download.
The exemplary embodiment will provide a download utility with which to download the images of sheets of customized postage 60 (
Download personnel (the “download user”) will access the download utility user interface to request that the download utility load the RSA private key file (the exemplary creation of which was previously described above).
Once the RSA private key file is loaded, the download utility would decrypt the RSA private key using the salt and IV stored in the file. The download user would be prompted by the download utility user interface for the pass phrase. The download user would enter the pass phrase. The download utility would then provide the pass phrase, along with the salt, to a module named “PasswordDeriveBytes”. The PasswordDeriveBytes module would generate the number of bytes specified in the file. The download utility would then use the number of bytes as the AES key to decrypt the RSA key.
In the exemplary embodiment, the private key file would not be copied to the local hard drive during the download process.
In the exemplary embodiment, the download would occur over an SSL connection using either a client certificate or username/password pair to authenticate the download client. Depending on the network setup at the printer, the exemplary embodiment may also restrict the IP address of the download client.
In the exemplary embodiment, a server certificate issued by the Internet Postage provider would be used on the server. In the exemplary embodiment, the download application would only trust a certificate issued by the Internet Postage provider. Use of an Internet-Postage-provider-issued certificate would mitigate any DNS-spoofing/phony certificate issues while attached to the printer's network. Ensuring physical custody of the download client device being strictly maintained by a trusted party, such as an employee of the Internet Postage provider, would serve to enhance the chances of successfully mitigating DNS-spoofing/phony certificate issues using the Internet-Postage-provider-issued-certificate approach. Properly firewalling and patching the download client device would similarly serve to enhance the chances of successfully mitigating DNS-spoofing/phony certificate issues using the Internet-Postage-provider-issued-certificate approach. That is, ensuring that the download client machine is in trusted hands and is uncompromised enhances security for downloading, delivering and printing the customized postage labels.
In the exemplary embodiment, printing, post-print quality assurance inspection/review, invoicing, and fulfillment would be accomplished in a single facility by personnel of the Internet Postage provider and/or by third-party personnel supervised by personnel of the Internet Postage provider. As will be understood by someone with ordinary skill in the art, alternative embodiments of the present invention would provide for printing by third-party personnel; configurable indicators would be monitored after-the-fact by Internet Postage provider personnel.
With reference to
With reference to
In the exemplary embodiment, a log procedure will be provided for printing customized postage label orders. In the exemplary log procedure, the printing device will be operated by a printer, who will be third-party personnel (an employee/representative of a company other than the Internet Postage provider); a printing supervisor will be an employee of the Internet Postage provider.
The first step of the exemplary log procedure will be for the printing supervisor to input, at the beginning of every print session, a start print counter number into an exemplary postage print log book. The start print counter number would be a number, a type of “odometer” reading, from the printing device. In the exemplary log procedure, the printing supervisor, an employee of the Internet Postage provider, and the third-party printer, will both sign the start print counter number indicated for the particular print session in the exemplary postage print log book.
In the exemplary embodiment, the printing supervisor, or another employee of the Internet Postage provider, will serve as the download user.
Once the start print counter number for the print session has been signed in by both the printing supervisor and the third-party printer, the download user will start the secure download of files across the internet over SSL at this point using the download utility user interface to initiate the download utility. Once the files have been downloaded onto the download client device (e.g., a laptop), the download client device will be disconnected from the Internet.
Once the download client device has been disconnected from the Internet and local network, the download user will use the download utility user interface to instruct the download utility to decrypt the downloaded PDF file.
In the exemplary embodiment, download client device will then be directly connected to the printing device, which in the exemplary embodiment will be an HP Indigo printer and the printing device will be taken off line from the local network.
The downloaded customized postage PDF file will be loaded onto the printing device by the printing supervisor, or by the download user, or by some other employee of the Internet Postage provider. The third-party printer will place the downloaded PDF file into the printer queue 1305 for printing, as the printing supervisor monitors the printing. At the end of the print session, all PDF files will be removed from the printer. The printing supervisor will then record an end print counter number; both the printing supervisor and the third-party printer will then sign off on the end print counter number entered in the postage print log book.
At the end of the print and fulfillment session (after all prints and reprints are done) the final print counter value will be recorded in the exemplary postage print log book and signed off by the printing supervisor and the third-party printer. All PDF files from the laptop will be removed at the end of the print and fulfillment session (after post-print quality assurance inspection and review (described further below) and after all prints and reprints).
In the exemplary embodiment, reconciliation would then be undertaken. The number of prints (the difference between the start print counter value and the end print counter value) should be equal to the number of pages in the PDF file plus any misprinted pages. Any misprints or spoils will be voided. Misprinted sheets and rejected orders will be forwarded/returned to personnel within the Internet Postage provider organization for manual handling to resolve misprint problems. A copy of the daily exemplary postage print log book will be handed into to personnel within the Internet Postage provider organization for manual handling to resolve misprint problems, along with any misprints. In the exemplary embodiment, the exemplary postage print log book will remain in the possession of the printing supervisor.
With reference to
With reference to
The respective Order ID number will be printed in both human-readable text and will be barcoded on each sheet of labels.
Continuing with reference to
In the exemplary embodiment, fluorescent ink will be applied in a pre-determined pattern on each computer-based postage label on a sheet of a plurality of computer-based postage labels. Each computer-based postage label comprises a perimeter (element 83,
It will be understood by someone with ordinary skill in the art that many features of fluorescent ink application can be programmed, including, in addition to the general characteristics mentioned above, the luminescence (amount of reflectance). That is, in a particular pattern, the ink applicator could be programmed so that fluorescent ink applied in a first location in the particular pattern could be applied with a first magnitude of luminescence that would be visible in a first range of light frequency; fluorescent ink applied in a second location in the same particular pattern could be applied with a second magnitude of luminescence that would be visible in a second range of light frequency; the first range of light frequency would not overlap the second range of light frequency. By varying luminescence in the above-described manner, only the portion of the pattern applied with the first magnitude of luminescence would be visible when subjected to illumination of a frequency within the first range; only the portion of the pattern applied with the second magnitude of luminescence would be visible when subjected to illumination of a frequency within the second range.
In the exemplary embodiment, a programmable computer-based ink applicator, such as, for example, a HEWLETT-PACKAGE® Inkjet printer, would be used and would be programmed to apply fluorescent ink in a pre-determined pattern, in a pre-determined position relative to a particular location of the perimeter of each customized computer-based postage label, according to a pre-determined density and/or luminescence of ink application.
In the exemplary embodiment, the programmable computer-based fluorescent ink applicator would be programmed to apply fluorescent ink in a distinct manner for each postage label; the manner in which fluorescent ink would be applied to a particular postage label would be recorded in a database in association with a identifier, such as the serial number, of the particular postage label. The manner in which fluorescent ink was applied to a particular postage label would be available for authentication of a particular postage label. For example, the programmable computer-based fluorescent ink applicator would be programmed to apply fluorescent ink in a particular manner for a postage label with a particular serial number. The particular manner could comprise a particular pattern, a particular density, and/or a particular position relative to a particular location on the perimeter of the particular postage label, or other value-bearing item
A particular postage label, or other value-bearing item, to which fluorescent ink had been applied and for which the manner of application had been recorded, could later be tested for authentication.
As depicted in
As depicted in element 2205 of
Returning with reference to
With reference to
In the exemplary embodiment, Printed Content will be reviewed for two reasons: a) to ensure that only acceptable content shall be used for USPS-approved mail and b) to ensure that the product is a high-quality print-job. In addition to rejecting content that falls in either the Critical.or Intermediate categories of material content previously described above with respect to pre-print quality assurance, post-print quality assurance will also review printed customized postage labels to ensure that the print job is of high quality. An unacceptable print job in the exemplary embodiment will include:
1. Material that carries smearing, stains, blots, or smudges;
2. Material that has faulty adhesiveness;
3. Material that is off-centered, skewed, or slanted;
4. Material that carries no color or faulty coloring; and/or
5. Material that is badly cropped.
Material that is rejected because of unacceptable print quality will be reprinted at not cost to the user; the unacceptable print quality material will be destroyed.
The exemplary embodiment will provide a post-print quality assurance computer interface to facilitate post-print quality assurance inspection and review.
In the exemplary embodiment, a post-print quality assurance inspector/reviewer will visually inspect each sheet of labels. The post-print quality assurance inspector/reviewer will use a bar-code scanner connected to a computer to scan the barcode that has been printed onto each respective sheet of printed customized postage labels. Once the barcode is scanned, the post-print quality assurance computer interface would cause the Order identifier scanned from the barcode to be displayed in the Order ID field 913 in the exemplary post-print image quality assurance review screen 900′. If no scanner is available, a post-print quality assurance inspector/reviewer could manually enter each order identifier; the manually entered Order identifier would be displayed in the Order ID field 913 in the exemplary post-print image quality assurance review screen 900′.
The post-print quality assurance inspector/reviewer would then review the printed images corresponding to the scanned/entered Order identifier and would highlight one of the review reasons in the Reason window 920′. If the post-print quality assurance inspector/reviewer approved the image, the inspector/reviewer would highlight “OK” (element 901′,
The post-print quality assurance reasons, e.g., 901′ through 905′, and 915, are illustrative and non-limiting; additional quality assurance reasons could be listed; a post-print quality assurance inspector/reviewer would scroll through additional reasons using a window up key 908′, down key 910′, or tab 909′.
If the inspector/reviewer highlighted any reason (.e.g., any of elements 902′ through 905′, or 915, as depicted in
The post-print quality assurance inspector/reviewer would be able to input comments in the comment field 907′, and would be able to scroll through the comments using a comment window up key 911′ or down key 912′. The post-print quality assurance inspector/reviewer could check the Don't Clear field 916 to preserve the comments entered in the comment field 907′.
Once the post-print quality assurance inspector/reviewer was satisfied with their assessment of the printed images corresponding to the scanned/entered Order identifier displayed in Order ID field 913, the post-print quality assurance inspector/reviewer would click on the OK button 914.
In the exemplary embodiment, rescanning an Order identifier barcode for an image that has not yet been “committed” would allow a new reason code to be designated for the image.
In the exemplary embodiment, any order containing at least one rejected image (one image corresponds in the exemplary embodiment to one Order identifier) would be cancelled and the customer would not be charged; all printed sheets in the order would be returned to a central administrative entity within the Internet Postage provider organization (sometimes referred to herein as “Commerce”) to be reconciled; a physical count of the sheets must equal the corresponding count of sheets recorded in the database. Commerce would physically secure the printed sheets pending USPS inspection, after which the sheets would be shredded.
The exemplary embodiment would provide a Postage Database. This exemplary Postage Database would be a cache of the following: generic Internet Postage Master Serial Number; generic Internet Postage minor serial number extension; Indicium Bits. Any postage refunded or otherwise not used will be re-assigned into the Postage Database; the Postage Database would be updated to return the amount of postage charged.
In the exemplary embodiment, in both pre-print and post-print Quality Assurance inspection and review, a QA Supervisor shall arbitrarily review image assessments made by non-supervisory QA users (non-supervisory QA inspectors/reviewers). A QA Supervisor shall also monitor queue length and date of oldest files as will be recorded and reported by the exemplary embodiment. In the exemplary embodiment, the Quality Assurance inspection interface (the Inspector Admin Tool) will provide configurable indicators; the exemplary embodiment will report information related to the configurable indicators to show items or general status of quality assurance processing that falls out of acceptable service levels.
Returning with reference to
With reference to
With reference to
In the exemplary embodiment, in the event that a completed order is shipped and later discovered to have contained an image that violates QA standards, records in the system (depending on the embodiment, e.g., in database 351,
With reference to
Once respective orders have been fulfilled, the postage label customization process is complete, as depicted in the “end” function 298.
With reference to
Other features of the invention are implicit in the above-provided description and/or are depicted and/or implicit in the accompanying Figures.
Facsimile Reproduction of Copyright Material
A portion of the disclosure of this patent document contains material which is subject to copyright protection by the copyright owner, Stamps.com Inc., its successors and assigns. The copyright owner has no objection to the facsimile reproduction by anyone of the patent document or the patent disclosure, as it appears in the Patent and Trademark Office patent file or records, but otherwise reserves all copyright rights whatsoever.
Although this invention has been described in certain specific embodiments, many additional modifications and variations would be apparent to those skilled in the art. It is, therefore, to be understood that this invention may be practiced otherwise than as specifically described. Moreover, to those skilled in the various arts, the invention itself herein will suggest solutions to other tasks and adaptations for other applications. Thus, the embodiments of the invention described herein should be considered in all respects as illustrative and not restrictive, the scope of the invention to be determined by the appended claims and their equivalents rather than the foregoing description.
This application claims priority to U.S. Provisional Patent Application Ser. No. 60/591,433, titled “COMPUTER-BASED VALUE-BEARING ITEM CUSTOMIZATION SECURITY”, filed on Jul. 27, 2004, the entire disclosure of which is incorporated herein in full by reference as if stated in full herein.
Number | Name | Date | Kind |
---|---|---|---|
5449200 | Andric et al. | Sep 1995 | A |
5510992 | Kara | Apr 1996 | A |
5682318 | Kara | Oct 1997 | A |
5717597 | Kara | Feb 1998 | A |
5717980 | Oka et al. | Feb 1998 | A |
5801944 | Kara | Sep 1998 | A |
5812991 | Kara | Sep 1998 | A |
5819240 | Kara | Oct 1998 | A |
6175826 | Malandra et al. | Jan 2001 | B1 |
6208980 | Kara | Mar 2001 | B1 |
6249777 | Kara | Jun 2001 | B1 |
6523014 | Pauschinger | Feb 2003 | B1 |
6526391 | Cordery et al. | Feb 2003 | B1 |
6595412 | Manduley | Jul 2003 | B2 |
6671813 | Ananda | Dec 2003 | B2 |
20010042052 | Leon | Nov 2001 | A1 |
20020046195 | Martin et al. | Apr 2002 | A1 |
20020083020 | Leon | Jun 2002 | A1 |
20020190117 | Manduley | Dec 2002 | A1 |
20030144972 | Cordery et al. | Jul 2003 | A1 |
20040220935 | McGraw et al. | Nov 2004 | A1 |
20040236938 | Callaghan | Nov 2004 | A1 |
20060287096 | O'Kelley et al. | Dec 2006 | A1 |
Number | Date | Country | |
---|---|---|---|
60591433 | Jul 2004 | US |