CN101073049A - Methods and apparatuses for routing information to an application service - Google Patents
Methods and apparatuses for routing information to an application service Download PDFInfo
- Publication number
- CN101073049A CN101073049A CNA2005800417254A CN200580041725A CN101073049A CN 101073049 A CN101073049 A CN 101073049A CN A2005800417254 A CNA2005800417254 A CN A2005800417254A CN 200580041725 A CN200580041725 A CN 200580041725A CN 101073049 A CN101073049 A CN 101073049A
- Authority
- CN
- China
- Prior art keywords
- file
- pls
- information
- ash
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
In an information management system that associates a specific area of a position-coded surface with an application service by means of an area address, a router apparatus (232) directs information data read by a digital pen device (100) from the position-coded surface to the appropriate application service. The router apparatus (232) receives the information data as included in a file (210) , which is generated and output by the digital pen device (100) . For each area address in the received file, the router apparatus (232) transmits a paper look-up request, which includes the area address, to a paper look-up service (240) , PLS. Upon receipt of a response from the PLS (240) , the router apparatus (232) directs the information data included in the file (210) and associated with the area address, to an application service handler (250, 255), ASH, having a network address derived from the response. By allocating to the router apparatus (232) the functionality of communicating information data to system components, the system can be made largely independent of the implementation of the digital pen device (100).
Description
Cross reference to related application
The application requires all the rights and interests of No. the 60/633rd, 414, Swedish patent application 0402970-8 number submitted on Dec 7th, 2004 and U.S. Provisional Patent Application, and, by reference above-mentioned two applications are herein incorporated.
Technical field
The present invention relates to such method and apparatus, it makes it possible to the information route (route) that will read from position coded surface and is used in this application service the following system to intention, and described system is associated the specific region of position coded surface by regional address with application service.
Background technology
This application has has been developed such system infrastructure, wherein, has utilized the product that writes the surface with the position code of being provided with.The digital device that is preferably the digital pen form is used for writing writing on the surface, simultaneously, and the position that writes the surface that can the detection position coding.Digital device is the sense position sign indicating number by integrated optical sensor, and the corresponding position sequence of stroke that calculates and write.
Position code can contrast the coordinate of the much bigger a large amount of positions of the number of the necessary position on the surf zone of a single product and encode.Thus, position code can be considered as: form the virtual surface or the reference surface of all location definitions that can be encoded by position code, wherein, the diverse location on the virtual surface is exclusively used in different functions or service and/or manipulator (actor).
Except digital device and a plurality of position coded products, this system comprise also that operation is called as data-gathering (paper look-up) service PLS at least one search server and in this system, be used as manipulator or application service processor (handler) ASH and carry out a plurality of application servers of application service.
Search server and use database to manage by the virtual surface of position code definition and the relevant information of virtual surface therewith, that is, and the position on the virtual surface functional and the manipulator that is associated with such position.Utilize rule that different zone on the virtual surface or district are associated with relevant details and/or data by the data-gathering service.In response to reception (this information is corresponding at least one position on the virtual surface) from the information of digital device, which zone the coordinate that PLS is configured to identification (one or more) position belongs to, and determines how to manage this information based on being used for this regional rule.
Application server be represent digital device realize service (as storage or transmit numerical information, be initiated to the take over party information or transmission, or the like) server.
In the patented claim US 2002/0091711, the US 2003/0046256 that announce and US2003/0061188, further described virtual surface and total system, with and operation and its allow the various functions of digital device and the support of service, the applicant has submitted above all applications to, and, by reference above all applications are herein incorporated.Notice that within the scope of the invention, the position code of other type is possible equally, for example, at US6,570,104, disclosed position code among US 6,330,976 and the US 2004/0085287.
In the patented claim US 2003/0055865 (also by reference it being herein incorporated) that announces, the application has described the advantageous manner of carrying out two-way communication between digital device in the superincumbent system and the service.Typically, based on the instruction that receives from data-gathering service or application service, digital device is determined will transmit the message to what take over party and comprise what data in message.This communication is based on being called as Pen agreement proprietary protocol (PP), the applicant, and described communication is successively based on the predetermined instruction set that can be carried out by digital device.
The instruction definition that the Pen agreement can be comprised is for being attended by one or more parameters.Usually, the storing predetermined attribute data collection of digital device, the mode that it can message is passed to data-gathering service or application service.With the instruction definition that needs parameter arbitrarily is to be attended by the one or more special parameters that can represent the particular data that reads by the specific attribute data of digital device storage or from position coded products.For controlling this communication, some instructions are exclusively used in the data-gathering service.For example, special instruction can allow to search service control and what information can be delivered to application service from digital device.In addition, the mutual order to some instructions imposes restriction.
Above-mentioned PLS can be global service, that is, overall data-gathering service G-PLS, it serves some different manipulators, and it is by outside side operation, and typically, it is by determining to distribute the side operation in different zones for different functions and different manipulators.
Replacedly, and, carrying as described in the patented claim WO 2004/061732 of announcement that intersecting and merging are incorporated in this by reference as the applicant, PLS can be the data-gathering service E-PLS of enterprise.E-PLS management control and call the information of the limiting set of the enterprise application service that is associated with the included respective regions of virtual surface.The latter's configuration allows the PLS of enterprise and any overall PLS irrespectively to operate, and, therefore, only need the interior communication of internal network of enterprise, wherein, one or more PLS of enterprise and the server of carrying out application service are connected to this network.
By the E-PLS solution, enterprise will control fully can be by what service of digital device visit and the use of the digital device in the complete thus control system.Thus, the set of service that what of enterprise look Service Management enterprise can own definition will be limited by, and, operationally, the also definition specific service of further searching that services request can be routed to from the enterprise look service.Except the service that is used and can be used being given enterprise's control, the E-PLS solution also helps control system to use the cost that is produced.The E-PLS solution makes enterprise can have concentrated management, introduces the maintenance of new service and the existing service of execution, makes it will influence all digital devices that are associated with this enterprise.
In having the system of above-mentioned foundation structure, no matter PLS is overall PLS still is the PLS of enterprise, when enterprise or when arbitrarily the third party wants to dispose (deploy) application service new or that revise, all has some shortcomings.
The deployment of application service newly or that revise need be served in the mode of behavior (behavior), operation and the function of following digital device mutual with digital device, so that obtain the required information of the service of execution.This comprises such content, supports required order, the instruction exercisable possible parameter etc. of what instruction, instruction set as digital device.If exist different revision versions that digital device realizes or different digital device manufacturers that different realizations is provided, the then deployment of application service even can become more complicated.In addition, or replacedly, the deployment of application service new or that revise may must be delayed, till the newly revised edition that digital device is realized is originally supported its operation.
Thus, make the deployment of application service depend on the realization of digital device expectation lessly, and, more specifically, depend on the behavior of the digital device that during obtaining information, is used for exchange message lessly, wherein said information is read or is obtained by digital device, and needs described information so that carry out application service.
Summary of the invention
The objective of the invention is to, provide with regard to the different revision version that realizes with regard to digital device and different manufacturer, make the deployment of application service depend on lessly that such digital device is realized and the method, apparatus and system of simplifying the deployment of application service.
According to the present invention, by as in independent claims 1 and 39 definition method, in independent claims 20 definition router device, as in independent claims 40 definition digital device and as in claim 41 definition system realize this purpose.Embodiments of the invention have been defined in the dependent claims.
The present invention is based on by function is moved out to seeing clearly of advantage that router device realizes from digital device.Such solution makes the application service provider or other can enough design the router device of operating in the mode that is suitable for particular application services arbitrarily, thus, makes the deployment of application service quick and flexible.And the realization of digital device becomes and is independent of the other parts of total system more, and simultaneously, still the user to digital device provides transparent information flow in the system and that arrive available application services.
For function of the present invention is provided, router device need be visited the information data that digital device reads from position coded surface.Therefore, router device is designed to receive the file with this information data.Typically, generate such file, be stored in the attribute data the digital device to comprise the information data that reads from position coded surface by this device and longer time by digital device.
By router device being designed to can receive the file with all information datas, router device also can be designed so that and can carry out application service under the situation that does not need any further communication exchange between application service or router device and the digital device.Thus, advantageously, carry out the required information data of specific service for application service, the file that is received is independent self-sustaining (self-contained).
Thus, not digital device but router device is responsible for being provided for to application service the related data of its execution.The responsibility of router also is, by with the data-gathering communication for service, and determine one or more application services of being associated with the information data that reads from one or more zones of position coded surface.
The invention has the advantages that digital device manufacturer or about the rule of communicating by letter with digital device or allow to transmit what data that reads or store by digital device and the provider of the basic foundation structure of the rule that how to transmit these data does not need to handle particular demands from different application service providers.In addition, may conflict in itself from such demand of different providers.Thereupon, this has been avoided any further complicacy is added to the realization and/or the basic foundation structure of digital device, so that satisfy the demand that any application service new or that revise may have.On the contrary, by all related datas provide hereof are provided, transfer to the application service provider for the responsibility of how using and operate the details of these data from digital device manufacturer, the latter adjusts the use of these data according to its specific needs.
Further advantage is, the provider of new application service can realize serving and pushing it against market more quickly, and not need to wait for the function of digital device and any revision version of how to communicate by letter thereof.Thus, provider depends on the other parts of total system lessly, and will have greater flexibility aspect its new service of adjustment.
Router device can be designed to as digital device can do usually, to the data-gathering service registry, and, with identical mode and the data-gathering server communication of being done with digital device of mode.Like this, router device imitates digital device, and can be used in total system, and does not need any modification to the data-gathering service.
Replacedly, router device can be designed to use remote procedure call (the Remote ProcedureCall that is for example developed by World Wide WebConsortium (World Wide Web Consortium), RPC) agreement, Simple Object Access Protocol (Simple Object Access Protocol, SOAP) or common object request broker system (CORBA) come and the data-gathering communication for service.
Can carry out the route of the information from the router device to the application service by the router device of imitation digital device; thus, cause with digital device and application service between the identical mode of the mode that can occur usually carry out two-way communication between router device and the application service.This has such advantage, that is: router device can be used with application service, and wherein, application service is to operate at the identical mode of the mode of operation of digital device with it.
Replacedly, router device all information that can be designed to be routed to particular application services are repacked to sending to the file of application service.Send the route of the file of execution from the router device to the application service by " pushing (push) " transmission or " taking out (pull) ".That is to say that in case receive the network address of application service, router device just is pushed to this document this application service or only calls this service, wherein, under one situation of back, application service is taken out file from router device.Under these circumstances, application service need be designed so that it can receive the selected file form.Advantageously, subsequently, the form that is sent to the file that the file layout of the file of application service will be received with router device is identical.
When with the form routing iinformation of file, can use soap protocol or other applicable protocols.Yet basically, the provider of application service can design application service and router device, so that use any agreement when transmission has the file of information data, thus, provider has been increased further complicacy.
Preferably, the file that router device received is considered as comprise all association attributes data that all information datas that digital device reads and digital device are stored as it.That is to say that be routed to all information of the application service that is used to carry out specific service for needs, the file that is received is independently self-sustaining.Yet this does not get rid of the network connection unit that digital device before connected is got back to the result of performed service or conclusion transmission in application service when transmitting file any selection.Object information the user of digital device may expect to browse on the display (as the screen of laptop computer or the display of mobile phone or PDA) of network connection unit.Replacedly, can obtain such object information by WAP or the Web interface that router device provided.
According to embodiment, digital device uses symmetric cryptography, and it is used for utilizing session key that the data that comprise at the file that is generated are encrypted, and also is used to use with other symmetric key of data-gathering service sharing session key self is encrypted.Subsequently, but data-gathering service decrypted session key, and use subsequently this data intention whereabouts application service public encipherment key and encrypt them again.Then, thereupon, application service can utilize the encrypted data of session key and utilizes its public encipherment key and during encrypted session key, use its privately owned encryption key and the decrypted session key in reception, then, use the session key of deciphering and data decryption.This scheme provides such advantage, that is, encrypted safely from any data that digital device transmits, till it is decrypted in the application service of this data intention whereabouts.It also plays protective action to any attempt of attempting obtaining the data that digital device transmits on router device.
It should be noted that the term that uses has and the identical implication of using of corresponding term when definition and description are of the present invention, unless point out on the contrary in " background technology " part of the application.
In this document, replacedly use term " digital device " and " digital pen " or simple " pen " mutually.In addition, should be understood that to be used in combination with the present invention to have and this kind digital device of in this application neutralizes the patent file that is referred to herein, describing or any subscriber unit of digital pen identical function.
From following description to some example embodiments of the present invention, the features and advantages of the present invention will more fully be understood.As is understood, when the general instruction of studying elaboration here and appended detailed description, the various combination of within the spirit and scope of the present invention various modifications, change and feature is conspicuous for a person skilled in the art.
Description of drawings
Now, will be by describing example embodiment of the present invention with reference to accompanying drawing, in the accompanying drawing:
Fig. 1 schematically shows the example system foundation structure that applicant of the present invention develops;
Fig. 2 schematically shows the system that comprises example embodiment of the present invention; And
Fig. 3 schematically shows the system that comprises another example embodiment of the present invention.
Embodiment
Fig. 1 shows the system infrastructure that applicant of the present invention develops.In " background technology " part, this foundation structure has been described above, and, will be further described below it.
System among Fig. 1 comprises realization digital device or the digital pen 100 of subscriber unit and a plurality of products 110 with position code (not shown), and described product 110 covers and writes surface 120 and activate icon 125.In the figure, only show a digital pen and a product.This system comprises that also network connection unit 130, run book search the data-gathering server 140 of service PLS, the operation application server 150 of third-party application service and the application server 160 of another the third-party application service in the operational system.Another term of the application service of using in this application is application service processor ASH.
In Fig. 1, network connection unit 130 is illustrated as transfer table or laptop computer.Yet replacedly, this unit 130 also can be PDA(Personal Digital Assistant), the fixing electronic equipment that is suitable for of desktop computer or other.This unit 130 comprises the device application, and it allows digital pen to communicate by letter with the other parts of total system.
Typically, except a plurality of digital pens 100 and product 110, described system also comprises a plurality of network connection unit 130 and a plurality of application server 150,160.
As pointed in " background technology " part, product 110 is included in the one or more position encoded zone that is associated with one or more application services in this system, make and to use the data-gathering service, and the information data that pen 100 reads from the specific region is routed to the application server 150,160 that moves the application service that is associated.Each such zone has regional address, and it can be provided directly or indirectly by the position code in this zone.
By the symbol of the coding mode on the testing product 110, digital pen can be determined one or more absolute coordinatess of the whole virtual surface that can be encoded by position encoded pattern.Advantageously, all surfaces is divided into a plurality of sections (segment), each section is divided into a plurality of lattice (shelf), and each lattice is divided into a plurality of (book), and each piece is divided into the page or leaf (page) of a plurality of being also referred to as " mode page ".To determine the AD HOC page or leaf that absolute coordinates is positioned at by digital pen.But using form 1.2.3.4 (section. lattice. piece. page or leaf) come the markers page or leaf, pages 4 of the piece 3 on the lattice 2 in this form 1.2.3.4 section of expression 1.This notation definition " page address ".
Can define regional address above-mentioned by such page address.Yet regional address also can pass through block address (1.2.3.x for example, wherein, x represents all pages or leaves of specific), lattice address 1.2.x.x or sector address 1.x.x.x and define bigger zone.In aforementioned US 2003/0061188, further described this addressing scheme.It being understood that within the scope of the invention other addressing scheme is possible equally.
When user's mobile digital pen 100 passes product 110 surperficial, by sense position sign indicating number from the teeth outwards, and determine corresponding absolute coordinates, and recorded information.This realizes by utilize the sensor comprise and various storer and treatment circuit in pen 100.
Typically, digital pen storage resolution data (definition data), that is, and the segmentation of expression virtual surface and the layout of the active region on the virtual surface.Use resolution data, pen can obtain regional address from the absolute coordinates that is write down.Via transfer table 130, mobile communications network 170 and the Internet 180, and the regional address under these absolute coordinatess or the coordinate (typically, being page address) is delivered to data-gathering service 140.
The data-gathering of operation service is G-PLS or E-PLS on server 140, and for example, this data-gathering service is with all coordinates of relevant all surfaces, perhaps under the situation of E-PLS, the details of the coordinate of the qualifying part of all surfaces is stored in the database (not shown) that is connected.This also can comprise the details of the relevant page or leaf of storage, in described page or leaf, has divided all surfaces or defining surface.The data-gathering service is handled the information that is received according to the rule that has been associated with preferred coordinate or specific page address, and this information comprises coordinate content or page address content at least.
For the user of digital pen, this system is easy to use, this be because, how user oneself does not need to define the information/position of administrative institute's record.When the user initiates to be used for the communication session of transmission of information, control this management of information based on the coordinate that the user writes down by digital pen 100.
When the user of digital pen 100 wishes the transmission of the information of initiating, he can " point " activate icon 125.Subsequently, will be identified as the coordinate of sending zone by the record that digital pen 100 will activate at least one position of icon 125, this sending zone is associated with specific transmission instruction.
Data-gathering service and application service are designed to communicating by letter with other infrastructure component based on the Pen agreement, this describes in " background technology " part, and it has defined instruction set, wherein, with some instruction definitions in the instruction set for being attended by one or more predefined parameters.Such parameter can be illustrated in the attribute data of storing in the digital pen.Attribute data can be relevant with the sign and the peculiar information of user (as name, invoice address, e-mail address etc.) of the version of the unique identification of pen, this employed software, a manufacturer.
Realize the Pen agreement based on HTTP (HTTP), thereupon, can realize the Pen agreement based on the RFCOMM profile of TCP/IP (transmitting control protocol/Internet Protocol), PPP (point-to-point protocol) and bluetooth .Usually, data-gathering service or application service are designed to: the result as the HTTP request that had before received sends instruction in http response.Typically, such HTTP request is made of following four parts: the protocol version data part, and it describes the Pen agreement what version all the other requests follow; The request header data division, it keeps the metadata of relevant request; The page data part, it has the stroke data that is write down; And the attribute data part, it has one or more pen attributes.
For describe in more detail the Pen agreement with the communicating by letter of service, with reference to aforementioned US2003/0055865.
Fig. 2 schematically shows the system that comprises embodiments of the invention.The file that digital device or subscriber unit, digital pen generated 210, device application 230 and the router device 232 of digital pen 100 forms have been drawn in the drawings.Router device is equipped with processing element 235, first interface unit 236, second interface unit 237, the 3rd interface unit 238 and the 4th interface unit 239.Also comprise data-gathering service (E-PLS) 240 of enterprise and application service processor ASH or application service 250 and 255 among Fig. 2.E-PLS 240 is equipped with " plug and play " that will be further described below (PnP) interface 241.
Device is used 230 and is resided at network connection unit (130 among Fig. 1), as noted earlier, network connection unit can be fixedly desktop computer, portable laptop computer, mobile phone or PDA or has any certain other device of function that is similar in these listed devices.
As shown in Figure 2, router device 232 can be used 230 with device and put together, or is implemented as the part of device application 230.Replacedly, as one by the right in two empty frames indicated, router device 232 can be put together with E-PLS 240, or is implemented as the part of E-PLS 240.In the former case, between router device 232 and E-PLS240, will have one or more communication network (not shown), and described communication between the two will be carried out via second interface unit 237 of router device on these networks.Under one situation of back, between device application 230 and router device 232, will have one or more communication network (not shown), and router device will be accepted the communication from the device application via its first interface unit 236.
The common router device 232 of placing has such advantage with device application 230, that is: avoid a large amount of stroke counts are reportedly delivered to concentrated router device, thus, has realized better load distribution in system.And such as will be discussed further below, the feasible easier realization of this solution is from the user feedback of router.Common place router device 232 and E-PLS 240 has such advantage, that is: device is used 230 and can be kept very simple, this be because, it does not need router feature, and, therefore, when having comprised that in mobile phone or PDA device is used, this solution can be especially suitable.
Two realizations of Tao Luning can coexist in front.For example, residing at one of mobile phone device uses can be on one or more communication networks a data to be forwarded to E-PLS and is positioned at router device on the centralized servers jointly, simultaneously, for example, another device that resides at desktop type or laptop computer is used and can be held its oneself router device.In last realization, the router of concentrating will be handled a data that receives on one or more communication networks, produce the data-gathering request in E-PLS, and stroke count is reportedly delivered to one or more ASH.In realize back one, local router equipment will be handled a data that is received, and on one or more communication networks the data-gathering request will be sent to concentrated E-PLS, and receive the response to it, and, subsequently, stroke count is reportedly delivered to one or more ASH.
Typically, digital pen 100 is configured to generate the file 210 with all relevant information data.Such information data comprises that pen is from the one or more regional data that obtain of position coded surface and the relevant data of different attribute of storing with pen.Subsequently, file is sent to router device 232 via the device application 230 that resides at network connection unit (130 among Fig. 1), wherein, pen 100 is operably connected to described network connection unit.Can detect the position of activating in the icon by this, use 230, perhaps, be connected to the network connection unit that storing apparatus uses and initiate that automatically file 210 is sent to device and use 230 by this and initiate that optionally file 210 is sent to device.Replacedly, can or initiate the transmission of this document during by the button on starting writing in this registration dedicated voice order.
For example, digital pen 100 can be designed to: utilize OBEX to push (Object Exchange), and the file 210 that will have an information data is pushed to device and uses 230, wherein, OBEX pushes the standardization agreement that is known to those skilled in the art dawn.Replacedly, digital pen can allow device to use and take out (pull) file from pen.For example, this document can be stored in the file system in the storer, device is used can be via for example USB (USB (universal serial bus)), FTP (file transfer protocol (FTP)), HTTP (HTTP), bluetooth
Or other applicable protocols is visited this document system arbitrarily.
Be positioned at a place if router device 232 uses 230 with device, then this document be forwarded to the router device part simply.Utilize this realization, first interface unit 236 will be for for example, the internal interface between different program modules.If router device 232 is positioned at a place with E-PLS 240, then device application 230 can utilize HTTP to deliver (post) and transmit this document on one or more networks.Yet preferably, router device is designed to also support to utilize the file of FTP (file transfer protocol (FTP)), SMTP (simple message transfer protocol (SMTP)) or SOAP (Simple Object Access Protocol) to transmit.Also can use and to be supported in other agreement that transmits file on the packet switching network.Subsequently, router device will receive file on first interface unit 236, and in this configuration, first interface unit 236 is an external interface.
For example, receive by router device 232 and can have by the file 210 that digital pen 100 sends (expose) it is divided into tetrameric form.For example, these parts can be: protocol version data part, request header data division, page data part and attribute data part.Thus, the form portability of this document in the HTTP request that transmits by digital pen, comprise usually and four parts by describing in the above with reference to Fig. 1.Applicant of the present invention has defined the file with such form, and, the title of having given file allocation with such form: coordinate file or PGC file that pen generates, thereby, make it become applicant's proprietary format.
In applicant's that submit to and that be herein incorporated by reference on June 29th, 2005 common co-pending international patent application PCT/SE2005/001025 number, the Control Software and the circuit that have further described the PGC file layout and be used to generate and send the pen of such file.
For example, can be used as the result of three different situations and generate for example file 210 of PGC file.Particularly, when user's " point " is the activation graph timestamp of " pushing page or leaf (Push Page) " appointment, will comprise that the PGC file of all stroke datas that are recorded on the AD HOC page or leaf sends to the device application.When user's " point " is the activation graph timestamp of " pushing piece (Push Book) " appointment, will comprise that all stroke datas on the mode page that is recorded in specific send to the device application.At last, when user's " point " is the activation graph timestamp of " push all " appointment, the PGC file that will have all stroke datas that are stored in the storer sends to device and uses.Replacedly, when pen is operably connected to the storing apparatus applied unit, the PGC file with all stroke datas can be sent to automatically device and uses.Similarly, as previously mentioned, replacedly, can initiate this document and transmit by this registration dedicated voice order or by the button on starting writing.Thus, pen 100 generates PGC file 210, and it comprises the data that obtain from position coded surface, that is, and and the stroke data of one or more mode pages.In its attribute data part, PGC file 210 also can comprise the attribute by pen 100 storages.
Received after the PGC file 210, router device is by utilizing its processing element 235, and search or resolve the PGC file, with identification All Ranges address, that is, and the one or more regional addresss that in the PGC file, comprise.
In the embodiment of Fig. 2, in no any system of before function or the interface of E-PLS 240 and ASH 250,255 having been revised, dispose router device 232.That is to say that router device 232 is suitable for using the Pen agreement and communicates by letter with existing infrastructure component.Thus, router device transmit as unidirectional file from pen and the two-way communication of existing infrastructure component between gateway.Reason for this reason, the router device of this embodiment also is called as DAS adapter (DAS-device application system).According to this embodiment, router device 232 is configured to imitate digital pen, and is mutual with E-PLS 240 and ASH 250,255 so that use proprietary Pen agreement on the http protocol.Therefore, as common pen was done by existing " plug and play " interface 241 of E-PLS, router device 232 had used its processing element 235 and has registered to E-PLS 240.
" plug and play " interface 241 of E-PLS 240 or PnP interface can be registered pen to E-PLS.The pen of wanting to register generates the distinctive symmetric key of pen, and, this key is sent to E-PLS with its identity property.Advantageously, E-PLS is accepting before the pen sign is stored in the database (not shown) with the symmetric key that is associated and with it, can use suitable method for authenticating and differentiates this user.In case registration, this just can use symmetric key to come the search request that will be sent to E-PLS is encrypted.
As mentioned, router device 232 will use the PnP interface 241 of E-PLS 240 to the E-PLS registration, be pen as router device.The unique identifier that router device 232 will use specific pen (for example, its identity property), and, in the mode identical with pen, generate unique symmetric key, described unique symmetric key is sent to E-PLS 240 with specific pen sign via PnP interface 241.Router device 232 also will be stored the unique symmetric key that is generated explicitly with specific pen sign.After any authentication, E-PLS 240 is stored in pen sign that is received and the symmetric key that is associated in its database.
In case receive PGC file 210, router device 232 just will be from an attribute data extracting section identity property of PGC file.Subsequently, it determines whether before to have disposed described pen by router device 232,, whether has stored the pen sign explicitly by router device 232 and symmetric key that is.If before do not disposed this pen as yet, then router device 232 generates unique symmetric key, stores this key explicitly with the pen sign, and, as mentioned above, register this sign to E-PLS.If before arranged this pen, then retrieval and the relevant symmetric key of pen sign, and use this symmetric key to encrypt the data-gathering request that the Pen agreement of using on the http protocol is sent to E-PLS 240.In case receive such request, E-PLS 240 just extracts the pen sign from this request, the corresponding symmetric key of retrieval from its database, and, subsequently, the deciphering search request.Before transmitting response, E-PLS 240 will use identical symmetric key to encrypt this response.Thus, represented specific pen 100 and after E-PLS 240 registrations at router device 232, can use the unique symmetric key that has been associated with specific pen, come between router device 232 and E-PLS 240, to transmit safely the data-gathering request and the response of the information that reads about described pen.
Replacedly, router device 232 can once be registered all pens to E-PLS 240, comes once to register to E-PLS 240 instead of each pen of disposing.Yet, last solution may be favourable, this be because, it allows E-PLS 240 to have control to the registration of each specific pen, for example, the use of the specific pen of permission E-PLS 240 preventions and maintenance are to the tracking of the various transaction informations of relevant specific pen.
For providing security in the further communication between router device 232 and ASH 250,255, advantageously, E-PLS 240 comprises public encipherment key together with its response to router device 232, and its coupling will be to the privately owned encryption key of the specific ASH of its routing iinformation.Subsequently, router device 232 will use the public-key cryptography that is received to encrypt any information that is routed to ASH, and ASH will use its corresponding private cipher key to decipher any enciphered message that receives like this.
Thus, suppose from the previous pen of having disposed by router device 232 and receive PGC file 210, then following the operation.At first, processing element 235 is identified in the All Ranges address that comprises in the PGC file.Subsequently, processing element 235 realizes that via second interface unit 237 and at each regional address the data-gathering request that will comprise regional address is sent to E-PLS 240.This data-gathering request is sent to the routine interface of E-PLS 240.
In response to the data-gathering request, router device 232 will be via second interface unit 237 from the network address of E-PLS 240 receptions with the corresponding ASH 250,255 of regional address.Router device 232 also can receive control data from searching server 240.This control data definable, for processing element 235, any specific information data can or should be visited by particular application services.This control data can be indicated one or more attributes and/or regional address, that is, and and the localized area of virtual surface.
Subsequently, processing element 235 will be called the service among the ASH 250,255 via the 3rd interface unit 238, and information data is sent to ASH in exchange and ASH carries out the required related news of its service.As noted above, can carry out the restriction of forcing to the transmission of information data by control data.In this communication between router device 232 and ASH 250,255, use the routine interface of ASH.
For example it should be noted that if PGC file 210 comprises regional address that some are different and the information data that is associated, then a PGC file 210 can cause information data optionally to be routed to a plurality of application services.Router device 232 can be configured to: by exporting corresponding search request and application service request, and handle a plurality of regional addresss (multitask) simultaneously.Replacedly, router device 232 can be configured to: by before beginning to handle another regional address, finishing its processing to a regional address, and processing region address sequentially.As will be from seeing the following Example, this can reduce the number of the request that will be transmitted by router device 232.
Suppose that PGC file 210 comprises the information data that reads from following page address: 1.2.3.0,1.2.3.1,1.2.4.0,1.2.4.1,1.2.4.2.Router device 232 generates the tabulation of included page address, and, by will being sent to E-PLS 240, and begin its processing to the PGC file for the search request of page or leaf 1.2.3.0.In case receive comprise ASH1 the network address (for example,
Http:// myserver.mydomain/ash1/) and the E-PLS response of the control data of identification block 1.2.3.x, router device 232 just sends to ASH1 with all information datas that are associated with page or leaf 1.2.3.0 and 1.2.3.1 in the PGC file, calls corresponding application service thus.Router device 232 is also removed page or leaf 1.2.3.0 and the 1.2.3.1 that transmits from its tabulation, and, begin to handle the next regional address in the tabulation, that is, and 1.2.4.0.Thus, router device 232 will be sent to E-PLS 240 for the search request of page or leaf 1.2.4.0, and this network address that causes comprising ASH2 (for example,
Http:// myserver.mydomain/ash2/) and the E-PLS response of the control data of identifying page 1.2.4.0,1.2.4.1,1.2.4.2 and 1.2.4.3.In case receive this response, router device 232 just sends to ASH2 with all information datas that are associated with page or leaf 1.2.4.0,1.2.4.1 and 1.2.4.2 in the PGC file.Router device 232 is also removed page or leaf 1.2.4.0,1.2.4.1 and 1.2.4.2 from its tabulation, now, this is tabulated to empty, thereby makes router device 232 finish its processing to PGC file 210.
The identical mode of mode that can turn back to digital pen with any result after will carrying out ASH 250,255 or out of Memory turns back to router device 232 with it.By the 4th interface unit 239, router device 232 is designed to such result/information is forwarded to the user of digital pen.Be positioned at a place if router device 232 uses 230 with device, then the 4th interface unit 239 can be configured to: this result of output on the display that the network connection unit 130 with storing apparatus application 230 is associated.On the other hand, if router device 232 is positioned at a place with E-PLS 240, then the 4th interface unit 239 can be realized WAP or Web interface, wherein, can provide feedback to the user via this interface.Replacedly, the 4th interface unit can be used for showing URL (URL(uniform resource locator)) to the user, wherein, has received this URL from ASH.Use this URL, the user can set up and being connected of ASH, and receive with by ASH execution or will be by the service that ASH carries out relevant feedback.
And advantageously, above-mentioned the 4th interface unit 239 also is used for providing usually in router device 232 beginnings and the ability of browsing the request of the file transmission that is derived from router device 232 before E-PLS 240 and/or ASH 250,255 communicate by letter to the user.Replacedly, or additionally, the possibility of the stroke that preview is write down before the user is provided at the service of calling among the ASH.For example, the stroke of shining upon can be shown to the user on the display of network connection unit 130 on the image in the zone of the coded surface that produces stroke.And, when using the 4th interface unit 239 to transmit result after carrying out ASH/information, such information can comprise that the checking, user of certain part success of result's (for example, whether having run into problem), service of performed service is to the needs of importing some additional information or the simple message of successful execution service.
Use the microprocessor of any kind or integrated circuit and realize the processing element 235 that router device 232 is included, described microprocessor or integrated circuit are designed and dispose and carry out so that operate according to the present invention.The realization of such processing element is simple for a person skilled in the art.And, it will be apparent to one skilled in the art that the communication that interface unit of router device 232 is designed and/or is configured to allow their intention services.The realization of such interface unit is simple for a person skilled in the art.Equally, those skilled in the art uses its knowledge in the present technique field, can easily realize being described as be in any processing element or the interface unit that comprise in other entity in the system.
By reference Fig. 3, illustrate another example embodiment of the present invention.This embodiment need be to the slightly modified of E-PLS 340 and ASH 350,355.In this embodiment, router device 332 uses soap protocol or other agreement based on HTTP, and communicates by letter with E-PLS 340.In addition, such as will be described further below, by PGC file 352 or more definite, the SPGC file transmits and carry out from the information data of router device 332 to ASH 350,355.
In this embodiment, this document is represented as SPGC rather than PGC, this be because, this document is relevant with safe PGC file.Below, with the difference between the embodiment of this embodiment of description and Fig. 2.In others, the design of this embodiment and operation transmit such as the file to router device, and also having router device is with the device application or E-PLS is positioned at a place, and the use of the 4th interface unit 339, with corresponding by what describe with reference to Fig. 2.And, for router device 332 is operated according to following description, any required change that processing element 335, the first, second, third and the 4th interface unit 336,337,338 and 339 need respectively is simple for a person skilled in the art.
In the embodiments of figure 3, router device 332 receives the SPGC file 310 with all information datas, and the subclass of information data is repacked (repack), to send it to the specific ASH in the new SPGC file.The key distinction between the embodiment of this embodiment and Fig. 2 relates to expanding in order to protect information data to use encrypts.
Below, and, in Fig. 3, use following name:
E
K(M) encryption of the message M of symmetric key K is used in expression;
D
K(M) deciphering of the message M of symmetric key K is used in expression, that is, and and D
K(E
K(M))=M;
E
KU(M) encryption of unsymmetrical key to the message M of the public-key cryptography KU of KU-KR used in expression; And
D
KR(M) deciphering of the message M of private cipher key KR is used in expression, that is, and and D
KR(E
KU(M))=M.
Using symmetric key and the right encryption of unsymmetrical key is known for a person skilled in the art, and therefore it is not further explained.Yet now, the information data that will be described below in order to give the file that is generated by pen provides security and uses such encrypt/decrypt in the embodiments of figure 3.
When generating SPGC file 310, pen 300 will generate the symmetric session keys at random that is used for each regional address by first encryption unit 301.Suppose in SPGC file 310, to comprise two regional address AA1 and AA2, then will generate two symmetric session keys Krand1 and Krand2 at random.Will be by first encryption unit 301, utilize key separately and encrypt being represented as information data data1 and data2, each data address.Use is by being used for that related data is written to the circuit of file and/or the file read-in unit 303 that suitable software constitutes, with result (that is E,
Krand1(data1) and E
Krand2(data2)) be stored in the SPGC file 310.In addition, use the symmetric key of sharing with E-PLS, the symmetric session keys at random that each generated is encrypted together with corresponding regional address, carry out this encryption by second encryption unit 302.And file read-in unit 303 is with these results (that is E,
K(Krand1, AA1) and E
K(Krand2, AA2)) is written in the SPGC file 310 that is generated with an identity property (PenID).Identity property can be used as for the effective global parameter and being included in this document all of all data in this document, and perhaps, as shown in Figure 3, it can be associated with each set of ciphered data, regional address and session key.If one and identical pen can obtain different signs, then back one realizes it may being favourable.Described a kind of such digital pen in applicant's patent announcement US2003/0011578, described patent is announced and is herein incorporated by reference.
In case receive SPGC file 310 via first interface unit 336, router device 332 just sends each encrypted session key and an identity property to E-PLS 340, and this is that processing element 335 by router device 332 realizes via second interface unit 337.E-PLS 340 will use the symmetric key of sharing with the digital pen 300 that identifies by an identity property, to decipher the encryption that is received, thereby regional address and corresponding random session key thereof are transferred to expressly, and this is carried out by the deciphering parts 345 that comprise in E-PLS 340.
Thus, for the encrypted session key that at first receives, E-PLS will carry out D
K(E
K(Krand1, AA1))=Krand1, AA1.Subsequently, E-PLS 340 will use its processing element that comprises 346, carry out the data-gathering service based on regional address, and retrieval is used for the network address and the open unsymmetrical key of corresponding ASH, for example, at ASH is under the situation of ASH1, and the described network address and open unsymmetrical key are Address-ASH1 and KU-ASH1.Use the disclosure key, utilize included encryption unit 347 and the corresponding random session key of encryption, that is, and E
KU-ASH1(Krand1), by processing element 346 this result is turned back to router device 332 together with the address Address-ASH1 of ASH.Accordingly, for second encrypted session key that receives, E-PLS carries out: D
K(E
K(Krand2, AA2))=Krand2, AA2; Retrieval Address-ASH2 and KU-ASH2; And with E
KU-ASH2(Krand2) and Address-ASH2 turn back to router device.
It is two new SPGC files 352,357 that router device 332 will be repacked the information in (as receiving via its first interface unit 336) the SPGC file 310 that is received.Use is sent to ASH1 via the 3rd interface unit 338 with file 352 from the address Address-ASH1 that E-PLS receives.File 352 comprises the information that is used for ASH1 (that is E, that encrypts by session key
Krand1And as the public-key cryptography that passes through ASH1 that receives from E-PLS and encrypted session key (that is E, (data1)),
KU-ASH1(Krand1)).Accordingly, file 357 is sent to ASH2, and, comprise E
Krand2(data2) and E
KU-ASH2(Krand2).
In case receive SPGC file 352,357, each ASH 350,355 just will use its private cipher key, the decrypted session key by its deciphering parts 351,356, and, use resulting session key and the decryption information data, obtain the information data of clear-text way thus.That is to say that ASH1 will carry out D
KR-ASH1(E
KU-ASH1(Krand1))=Krand1, follow after be D
Krand1(E
Krand1(data1))=data1.Accordingly, ASH2 will carry out D
KR-ASH2(E
KU-ASH2(Krand2))=Krand2, follow after be D
Krand2(E
Krand2(data2))=data2.
Use the microprocessor or the integrated circuit of any kind, realize the various parts that are used to use symmetry or asymmetric-key encryption/deciphering as comprising in this embodiment of the present invention, described microprocessor or integrated circuit have been designed and have been arranged to be carried out so that carry out required encrypt/decrypt.The realization of the parts that are used for encrypt/decrypt like this is simple for a person skilled in the art.
Can revise the design of the embodiment of Fig. 3, make E-PLS that the session key of clear-text way is provided, that is, not encrypt by the public-key cryptography of ASH.This carries out in the time of can indicating described ASH to use " no security " in E-PLS.Subsequently, router device can use session key to decipher this information, and, subsequently, via its 4th interface unit 339, as by with reference to Fig. 2 and as described in, before this information data is sent to ASH, show the information data of the image that is mapped to described surf zone.
Should understand, can merge the foregoing description by this way, promptly, for example, router device uses soap protocol to communicate by letter with E-PLS, imitates digital pen simultaneously when it is communicated by letter with ASH, perhaps, router device imitates digital pen when it is communicated by letter with E-PLS, simultaneously information data is transmitted to ASH with the form of file.From needless to say, certainly, this may have influence to employed encipherment scheme.And, should understand, although the router device among this embodiment has been described to be implemented as and install application or E-PLS is positioned at a place, but replacedly, it can be realized in the webserver, wherein, the described webserver is separated with network connection unit and E-PLS with its device application.
Should also be understood that can determining and produce the file with the stroke data that is write down thus in the effectuated external position of digital pen.In such embodiment, the image of the coding mode on the digital pen record product or the data of extracting from these images also send it to above-mentioned network connection unit, and network connection unit is determined the position of digital pen thereupon, and generates this document.
It should be noted that the above detailed description that has only provided different embodiments of the invention, and therefore, these embodiment are not intended to limit as the scope of the present invention by the claims definition by the mode of explanation.In addition, will understand, for a person skilled in the art, when research claim and detailed description, the interior various substitutions and modifications of scope that fall into claims will be conspicuous.
Claims (42)
1, a kind of information that is used for reading from position coded surface is routed to the method for application service, to dispose described application service in the specific region of position coded surface and the application service system associated utilizing regional address, described method comprises the following steps of being carried out by router device:
Receive the file that digital device generated, described file comprises the information that reads from position coded surface; And
Each regional address in the file that receives for being included in:
The data-gathering request that will comprise described regional address is sent to data-gathering service PLS; And
To be included in the described file and the information that is associated with described regional address is routed to application service processor ASH, this application service processor ASH has by from the network address described PLS, that described data-gathering request responding is obtained.
2, the method for claim 1 comprises: identification is included in the one or more regional addresss in the described file.
3, method as claimed in claim 1 or 2 comprises: by the imitation digital device, and described data-gathering request is sent to described PLS.
4, method as claimed in claim 3 comprises: be registered as digital device to described PLS.
5, method as claimed in claim 4 wherein, is used the digital device sign extract and is carried out described registration from the file that is received.
6, method as claimed in claim 5 wherein, described digital device is carried out described registration, and described registration comprises:
Generate the distinctive symmetric key of digital device;
The key that is generated is associated with the digital device sign of being extracted; And
Described digital device sign is sent to described PLS with the key that is generated.
7, method as claimed in claim 6 comprises: use the distinctive symmetric key of digital device that is generated to come the described data-gathering request that is sent to described PLS is encrypted.
8, the file that generated of the method for claim 1, wherein described reception digital device comprises:
The enciphered message that identification is read from position coded surface wherein, is utilized session key separately and the information that reads from different regional addresss is encrypted, and
Each session key and corresponding regional address that identification utilizes common encryption key to encrypt; And
Wherein, described transmission data-gathering request comprises: for each encryption of regional address and associated session key thereof, all travelling belt has the request of described encryption.
9, method as claimed in claim 8 comprises the request that has encryption that transmits in response to each and the following additional step of carrying out:
The described session key that receives the network address of particular application services processor ASH and utilize the public encipherment key encryption of described specific ASH; And
Will be that be associated with described regional address and described information that utilize described session key and the described session key that utilizes described public encipherment key to encrypt be routed to described specific ASH.
10, method as claimed in claim 9 is included in described PLS and goes up the following additional step of carrying out:
Use the described public encipherment key of described specific ASH and described session key is encrypted; And
Utilize the described network address and described encrypted session key thus, and in response to described router device.
11, as claim 8,9 or 10 described methods, be included in the following additional step of carrying out on the described digital device:
For each regional address, utilize pair information that reads that is associated with described regional address of symmetric session keys at random that generates by described digital device to encrypt;
Utilize described common encryption key and the symmetric session keys at random that each generated is encrypted, wherein, described common encryption key is the symmetric key of sharing with described PLS; And
In described file, write the result of all encrypting steps.
12,, be included in described PLS and go up the following steps of carrying out as any the described method among the claim 8-11:
For the encryption that each received, use described common encryption key to carry out deciphering, obtain described session key and described regional address thus; And
Use described regional address and carry out the data-gathering request, thus, obtain the described network address.
13, as any the described method among the claim 1-12, wherein, the self-contained needs of this document are routed to ASH so that described ASH carries out all information of specific application service.
14, as any the described method among the claim 1-7, comprising:, and route information to described ASH by the imitation digital device.
15, as any the described method among the claim 1-13, comprising:
To repack with the described information that the described regional address that is sent to described PLS is associated and be another file; And
Described another file is routed to the described ASH that is positioned at the described network address that obtains by described response.
16, method as claimed in claim 15, wherein, described another file has identical form with the file that is received.
17, as any the described method among the claim 1-16, wherein, described file layout has the coordinate PGC file layout that pen generates, and it comprises at least: generate sign, at least one regional address of the described digital device of described file and the information that reads from the described zone with included regional address.
18, as any the described method among the claim 1-17, wherein, described PLS is the data-gathering service E-PLS of enterprise.
19, as any the described method among the claim 1-18, comprise: the single or multiple application service requests that output is browsed for the user by described digital device, wherein, each application service request is text or the position sequence that shines upon on the image in the described zone of described position coded surface with described information representation, wherein reads described information from the described zone of described position coded surface.
20, a kind of information that is used for reading from position coded surface is routed to the router device of application service, to dispose described application service in the specific region of position coded surface and the application service system associated utilizing regional address, described router device comprises:
First interface is used to receive the file that digital device generates, and described file comprises the information that reads from position coded surface; And
Processing unit, each regional address in the file that is suitable for receiving for being included in:
Via second interface, will comprise that the data-gathering request of described regional address is sent to data-gathering service PLS; And
Via the 3rd interface, to be included in the described file and the information that is associated with described regional address is routed to application service processor ASH, described application service processor ASH has by from the network address described PLS, that described data-gathering request responding is obtained.
21, router device as claimed in claim 20, described processing unit is suitable for: identification is included in the one or more regional addresss in the described file.
22, as claim 20 or 21 described router devices, described processing unit is suitable for: via described second interface, by the imitation digital device, and described data-gathering request is sent to described PLS.
23, router device as claimed in claim 22, described processing unit also is suitable for: via described second interface, register described router device as digital device to described PLS.
24, router device as claimed in claim 23, described processing unit also is suitable for, via described second interface:
Generate the distinctive symmetric key of digital device;
The key that is generated is associated with the digital device sign of being extracted; And
Described digital device sign is sent to described PLS with the key that is generated.
25, router device as claimed in claim 24, described processing unit also is suitable for: use the distinctive symmetric key encryption of digital device that is generated to be sent to the described data-gathering request of described PLS.
26, router device as claimed in claim 20, wherein, described first interface is suitable for receiving file, and described file comprises:
The enciphered message that reads from position coded surface, wherein, utilize separately session key the information that reads from different regional addresss is encrypted and
Each session key and the corresponding regional address that utilize common encryption key to encrypt; And
Wherein, described processing unit is suitable for, and each encryption for regional address and the session key that is associated thereof is sent to described PLS via described second interface with described encryption.
27, router device as claimed in claim 26, described processing unit also is suitable for, in response to the encryption that each transmitted:
Via described second interface, the described session key that receives the network address of particular application services processor ASH and utilize the public encipherment key encryption of described specific ASH; And
Via described the 3rd interface, will be that be associated with described regional address and information that utilize described session key and the described session key that utilizes described public encipherment key to encrypt be routed to described specific ASH.
28, as any the described router device among the claim 20-27, wherein, the self-contained needs of this document are routed to ASH so that described ASH carries out all information of particular application services.
29, as any the described router device among the claim 20-25, described processing unit is suitable for: via described the 3rd interface, by the imitation digital device, and route information to described ASH.
30, as any the described router device among the claim 20-28, described processing unit is suitable for:
To repack with the described information that the described regional address that is sent to described PLS is associated and be another file; And
Via described the 3rd interface, described another file is routed to the described ASH that is positioned at the described network address that obtains by described response.
31, router device as claimed in claim 30, wherein, described another file has identical form with the file that is received.
32, as any the described router device among the claim 20-31, wherein, described file layout has the coordinate PGC file layout that pen generates, and it comprises at least: generate sign, at least one regional address of the described digital device of described file and the information that reads from the described zone with included regional address.
33, as any the described router device among the claim 20-32, wherein, described PLS is the data-gathering service E-PLS of enterprise.
34, router device as claimed in claim 33, it is arranged on the central server of network.
35, router device as claimed in claim 34, it is positioned on the server identical with described E-PLS, or is the part of described E-PLS.
36, as any the described router device among the claim 20-33, it is implemented as a part of using with described digital device communicating devices.
37, router device as claimed in claim 36 is wherein realized described router device in desktop or laptop computer or among mobile phone or the PDA.
38, as claim 36 or 37 described router devices, comprise: the 4th interface, be used to export the single or multiple application service requests of browsing for user by described digital device, wherein, each application service request is text or the position sequence that shines upon on the image in the described zone of described position coded surface with described information representation, wherein reads described information from the described zone of described position coded surface.
39, the method in a kind of digital device, via the data-gathering service, utilize regional address and dispose described digital device in the specific region of position coded surface and application service system associated, described method comprises:
Read information from described position coded surface, described information is associated with at least one regional address,
For each regional address, utilize the session key pair information that reads that is associated with described regional address that generates by described digital device to encrypt;
Utilize with the common encryption key of described data-gathering service sharing each session key is encrypted; And
The result of all encrypting steps is written in the file.
40, a kind of digital device, it is deployed in via the data-gathering service, utilizes regional address and in the specific region and application service system associated with position coded surface, described device comprises:
Code reader is used for reading information from described position coded surface, and described information is associated with at least one regional address,
First encryption equipment is used for for each regional address, utilizes the session key pair information that reads that is associated with described regional address that is generated by described digital device to encrypt;
Second encryption equipment is used to utilize the common encryption key with described data-gathering service sharing that each session key is encrypted; And
The file write device is used for the result of all encrypting steps is written to file.
41, a kind of this system that utilizes regional address and the specific region of position coded surface is associated with application service, described system comprises:
As claim 26 or 27 described router devices;
At least one digital device as claimed in claim 40; And
The data-gathering service, it comprises:
The PLS decipher is used for using the symmetric key of sharing with described digital device to carry out and deciphering for each encryption from described router device reception, obtains described session key and described regional address thus; And
The PLS processing unit is used to use described regional address to carry out the data-gathering request, obtains the network address of ASH thus; And
The PLS encryption equipment is used to use the public-key cryptography of described ASH that described session key is encrypted;
Wherein, described PLS processing unit also is suitable for utilizing the session key of the described network address and described deciphering thus and responds described router device.
42, system as claimed in claim 41, comprise: ASH, described ASH comprises the ASH decipher, it is used to use the privately owned encryption key of described ASH that the encrypted session key that is received is decrypted, described ASH decipher also is suitable for using the session key of described deciphering, and the information that receives with described encrypted session key is decrypted.
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US60/633,414 | 2004-12-07 | ||
| SE04029708 | 2004-12-07 | ||
| SE0402970A SE0402970D0 (en) | 2004-12-07 | 2004-12-07 | Methods and apparatus for routing information to an application service |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101073049A true CN101073049A (en) | 2007-11-14 |
Family
ID=33550597
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2005800417254A Pending CN101073049A (en) | 2004-12-07 | 2005-12-06 | Methods and apparatuses for routing information to an application service |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN101073049A (en) |
| SE (1) | SE0402970D0 (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103178965A (en) * | 2008-01-07 | 2013-06-26 | 安全第一公司 | Systems and methods for securing data using multi-factor or keyed dispersal |
| CN108665019A (en) * | 2017-04-02 | 2018-10-16 | 田雪松 | A kind of information transferring method and system |
-
2004
- 2004-12-07 SE SE0402970A patent/SE0402970D0/en unknown
-
2005
- 2005-12-06 CN CNA2005800417254A patent/CN101073049A/en active Pending
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103178965A (en) * | 2008-01-07 | 2013-06-26 | 安全第一公司 | Systems and methods for securing data using multi-factor or keyed dispersal |
| US9098718B2 (en) | 2008-01-07 | 2015-08-04 | Security First Corp. | Systems and methods for securing data using multi-factor or keyed dispersal |
| CN103178965B (en) * | 2008-01-07 | 2016-08-31 | 安全第一公司 | Multifactor or key formula is used to disperse the system and method that data are protected |
| US9825927B2 (en) | 2008-01-07 | 2017-11-21 | Security First Corp. | Systems and methods for securing data using multi-factor or keyed dispersal |
| CN108665019A (en) * | 2017-04-02 | 2018-10-16 | 田雪松 | A kind of information transferring method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| SE0402970D0 (en) | 2004-12-07 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP6961818B2 (en) | Data sharing methods, clients, servers, computing devices, and storage media | |
| JP4823602B2 (en) | Method for providing access to encrypted content to one of a plurality of consumer systems, apparatus for providing access to encrypted content, and method for generating a secure content package | |
| JP5122291B2 (en) | Method and system for secure management of information from an electronic pen | |
| JP5266717B2 (en) | Non-contact reader / writer, information providing system, redirect server, address information providing method, etc. | |
| JPWO2006030521A1 (en) | Information provision system | |
| CN101952832B (en) | Personal license server and methods for use thereof | |
| JPWO2007099609A1 (en) | Device authentication system, mobile terminal, information device, device authentication server, and device authentication method | |
| CN101133418B (en) | Method and a system for secure management of information from an electronic pen | |
| KR20180068945A (en) | Method and apparatus for providing contents through network, and method and apparatus for receiving contents through network | |
| JP5381975B2 (en) | Mobile terminal equipped with IC chip, application area control method, and application area control program | |
| KR20110045960A (en) | Electronic book termimal and system for downloading electronic document | |
| US10521168B2 (en) | Encrypted document printing utilizing multiple networks | |
| JP4864703B2 (en) | Device for supplying service using related portable memory, and relay means for enabling activation of portable memory application of first device by second device | |
| JP2007286935A (en) | Electronic file management system and program | |
| CN101073049A (en) | Methods and apparatuses for routing information to an application service | |
| EP1626349A1 (en) | User interface for smart card applications | |
| JP2008523497A (en) | Method and apparatus for routing information to application services | |
| JP2006039794A (en) | File management system | |
| JPWO2006049276A1 (en) | Data transmission system | |
| JP2008211515A (en) | Automatic login system using mobile telephone | |
| JP2006512669A (en) | Method and system for responding to requests for access to application services | |
| JP4864566B2 (en) | Attribute authentication method, key management device, service providing destination device, service providing source device, and attribute authentication system | |
| US20230297704A1 (en) | Selective redaction and access control for document segments | |
| JP2007179271A (en) | Tag using access control system | |
| JP2008003744A (en) | Authentication system and authentication method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Open date: 20071114 |