EP1064621B1 - Systeme et procede de gestion de licences d'affranchisseuses - Google Patents
Systeme et procede de gestion de licences d'affranchisseuses Download PDFInfo
- Publication number
- EP1064621B1 EP1064621B1 EP99912649A EP99912649A EP1064621B1 EP 1064621 B1 EP1064621 B1 EP 1064621B1 EP 99912649 A EP99912649 A EP 99912649A EP 99912649 A EP99912649 A EP 99912649A EP 1064621 B1 EP1064621 B1 EP 1064621B1
- Authority
- EP
- European Patent Office
- Prior art keywords
- security device
- postal security
- register set
- register
- cryptographically
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
Images
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B17/00—Franking apparatus
- G07B17/00016—Relations between apparatus, e.g. franking machine at customer or apparatus at post office, in a franking system
- G07B17/0008—Communication details outside or between apparatus
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B17/00—Franking apparatus
- G07B17/00733—Cryptography or similar special procedures in a franking system
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B17/00—Franking apparatus
- G07B17/00016—Relations between apparatus, e.g. franking machine at customer or apparatus at post office, in a franking system
- G07B17/0008—Communication details outside or between apparatus
- G07B2017/00145—Communication details outside or between apparatus via the Internet
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B17/00—Franking apparatus
- G07B17/00016—Relations between apparatus, e.g. franking machine at customer or apparatus at post office, in a franking system
- G07B17/0008—Communication details outside or between apparatus
- G07B2017/00153—Communication details outside or between apparatus for sending information
- G07B2017/00161—Communication details outside or between apparatus for sending information from a central, non-user location, e.g. for updating rates or software, or for refilling funds
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B17/00—Franking apparatus
- G07B17/00185—Details internally of apparatus in a franking system, e.g. franking machine at customer or apparatus at post office
- G07B17/00193—Constructional details of apparatus in a franking system
- G07B2017/00201—Open franking system, i.e. the printer is not dedicated to franking only, e.g. PC (Personal Computer)
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B17/00—Franking apparatus
- G07B17/00185—Details internally of apparatus in a franking system, e.g. franking machine at customer or apparatus at post office
- G07B17/00362—Calculation or computing within apparatus, e.g. calculation of postage value
- G07B2017/00427—Special accounting procedures, e.g. storing special information
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B17/00—Franking apparatus
- G07B17/00733—Cryptography or similar special procedures in a franking system
- G07B2017/00741—Cryptography or similar special procedures in a franking system using specific cryptographic algorithms or functions
- G07B2017/00758—Asymmetric, public-key algorithms, e.g. RSA, Elgamal
- G07B2017/00766—Digital signature, e.g. DSA, DSS, ECDSA, ESIGN
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B17/00—Franking apparatus
- G07B17/00733—Cryptography or similar special procedures in a franking system
- G07B2017/00927—Certificates, e.g. X.509
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B17/00—Franking apparatus
- G07B17/00733—Cryptography or similar special procedures in a franking system
- G07B2017/00959—Cryptographic modules, e.g. a PC encryption board
- G07B2017/00967—PSD [Postal Security Device] as defined by the USPS [US Postal Service]
Definitions
- the invention relates generally to postage meters (franking machines), and relates particularly to systems in which postage meter licenses are managed in a way that is non-identical to the number of associated postal security devices.
- the application claims priority from US application no. 60/078,488, filed March 18, 1998, which application is incorporated herein by reference to the extent permitted by the designated and elected States hereto.
- the accounting means includes an ascending register indicative of postage that has been printed, and typically a piece counter indicative of the number of mail pieces that have been printed. In many countries including the United States, the accounting means also includes a descending register indicative of the amount of postage value available to be printed.
- the printing means is used to print postage indicia on mail pieces, typically by a relief printing die with characteristic fluorescent ink.
- Such postage meters have worked exceeding well for decades and have proven to be reliable. While it is technically possible to print postal indicia for which no money has been paid to the post office, such fraud is relatively infrequent because it would be readily detectable through physical inspection of the meter for tampering.
- the postage meter saves the postal authority from much of the work of printing, stocking and selling postage stamps.
- the postage meter user can simply print the new postal amount, while the stamp user must queue up at the post office to purchase stamps in the new denomination.
- nonsecure printers such as laser printers, ink-jet printers, and thermal transfer printers.
- nonsecure printers because the printer itself is not in a secure housing and because the communications channel linking the printer to other apparatus is nonsecure.
- the proposed anti-fraud measure is to store information within the indicia which would permit detecting fraud.
- the indicium would include not only human-readable text such as a date and a postage amount, but would also include machine-readable information, for example by means of a two-dimensional bar code.
- the machine-readable information would be cryptographically signed, and would include within it some information intended to make fraud more difficult.
- the information would typically include an identification of the postage meter license (granted by the meter manufacturer or by the postal authorities, depending on the country), an indication of the number of mail pieces franked, the postage amount, a postal security device identifier about which more will be said later, the date and time, and a zip code or post code of the mail piece addressee.
- Yet another drawback is that it is commonplace for a mail piece to get smudged on the way to the post office or within the post office, prior to the authentication scanning by the post office. If the post office is unable to read the bar code, the post office has to decide whether to return the mail piece to the sender, or risk delivering a mail piece bearing a counterfeit indicium.
- the typical apparatus for printing such "encrypted indicia" postage includes what is called a postal security device or PSD.
- PSD has a secure housing, and within the secure housing are the accounting registers as well as a cryptographic engine.
- the engine permits cryptographic authentication and signing for communication with an external device such as the computer of the meter manufacturer or of the post office.
- the engine also permits creation of postal indicia which contain specified information and which are cryptographically signed.
- the PSD may well be physically small as compared to traditional postage meters.
- the PSD may be the size of a PCMCIA card or the size of a smart card.
- the memory must be protected against unadvertent damage due to malfunction of the processor of the PSD, for example as set forth in US Pat. No. 5668973, Protection system for critical memory information owned by the same assignee as the assignee of the present application.
- the PSD must handle power failure in a graceful fashion, for example as set forth in US Pat. No. 5712542, Postage meter with improved handling of power failure, also owned by the same assignee as the assignee of the present application.
- the printer may preferably be that described in PCT publication no. 97-46389, Printing apparatus, also owned by the same assignee as the assignee of the present application. While it has been proposed that the PSD contain a real-time clock which is keeping time continuously, desirably this requirement may be avoided as described in PCT publication no. 98-08325, Printing postage with cryptographic clocking security, also owned by the same assignee as the assignee of the present application. PSDs can form part of a network with multiple printers as described in PCT publication no. 98-13790, Proof of postage digital franking, also owned by the same assignee as the assignee of the present application.
- the PSD in proposed systems contains the ascending and (optional depending on country) descending registers, the piece counter, and a "meter license number".
- the meter license number represents a legal license granted by the postal authority which permits operation of the PSD and the associated printing of postage indicia. It is assumed that the PSD also has a unique identifying number stored within the PSD, but this number is expected to be non-identical to the meter license number. For example, if a PSD were to require service, the PSD manufacturer may take one PSD out of service for a particular customer and place another PSD into service for that particular customer, and yet the meter license number (which pertains to the customer) may remain the same.
- European patent number EP-0825565 is an example of a postage metering system that generates indicia that contains information concerning the physical location of the metering system due to licensing requirements, wherein a particular meter is licensed for use.
- the metering system uses external smart cards from originating zip code locations other than that of the licensed location of the metering system, allowing any smart card to be used in any of the metering systems.
- the location information within the external smart card is overwritten or put in a separate memory location allowing the smart card from a different zip code location to be used with the meter into which the card is inserted.
- a single postal security device has a secure housing, and within the secure housing are two or more accounting register sets. Importantly, the two or more accounting register sets are associated with distinct meter licenses.
- the single postal security device can store a single accounting register set, but is able to transfer the register set to a nonsecure store such as the hard drive of a personal computer, the register set having been cryptographically signed. Later the register set may be retrieved from the nonsecure store and cryptographically authenticated, and restored to its location within the secure housing. In this way, the postal security device may provide service under more than one distinct meter license.
- a single meter license is associated with more than one postal security device, each with its own secure housing. Each register set is configured to permit being reset (refilled with postage) by means of a cryptographically secure exchange of data over a communications channel to external equipment such as a manufacturer's server or a server operated by the post office.
- FIG. 1 there is shown in functional block diagram form a prior art PSD system.
- a postal security device (PSD) 20 is connected with a user system 21, typically a person computer or workstation. Connected directly or through a local area network is a printer 22 on which postal indicia are printed.
- the user system 21 is communicatively coupled with a manufacturer's system 24, which in turn is communicatively coupled with the postal authority 26.
- the communicative links 23 and 25 are preferably TCP/IP links via the Internet, but may optionally be other links such as dialup modem access lines or dedicated data lines.
- the PSD 20 contains postage value, embodied in the contents of the descending register (item 33 in Fig. 2).
- the PSD 20 In response to a request from the user via the computer 21, the PSD 20 generates an "encrypted indicium", that is, a print image containing cryptographically signed information, to be printed by means of printer 22 onto an envelope or post card or postage label.
- the image includes human-readable information as well as computer-readable information in bar code form. If the user wishes to "refill” or “reset” the postage meter, this is done by means of a cryptographically secure exchange between the PSD 20 and the manufacturer's system 24. Depending on the requirements of the postal authority, the resetting may also include an exchange with the postal authority's system 26.
- the indicium typically includes, in cryptographically signed or encrypted form, the meter license number, a unique number identifying the PSD, the date and time, the contents of the accounting registers, and other information to make the indicium unique such as the post code or Zip code of the mail piece addressee. It will be appreciated that in some countries there is no descending register and the payment by the user is based instead on the changing value of the ascending register. The teachings of the invention may be applied equally well to systems in countries that use a descending register and in countries that do not use a descending register.
- Fig. 2 shows in functional block diagram form a portion of a prior art PSD system.
- the PSD 20 has a communications channel 30 which permits data exchanges with the user's computer (item 21 in Fig. 1) and with the manufacturer's system 24.
- the PSD 20 contains a register set 31, which include a meter license number 32, an ascending register 33, a descending register 34, and a piece counter 35.
- the PSD typically contains a cryptographic engine, a clock/calendar, a microprocessor, RAM, nonvolatile RAM, ROM, and a battery, all omitted for clarity in Fig. 2.
- the PSD has a secure housing to make undetected tampering nearly impossible.
- the PSD 20 communicates with a printer 22 for printing postage indicia.
- Fig. 3 shows in functional block diagram form a PSD system according to an embodiment of the invention.
- Contained within the PSD 40 are two or more register sets 51 a, b, c. Each contains a meter license number 52a, b, c, an ascending register 53a, b, c, a descending register 54a, b, c, and a piece counter 55a, b, c.
- the PSD 40 can print postage with respect to any one of the register sets, and can reset (refill) any one of the register sets.
- a franking system comprising a printer 22, a postal security device 40 communicatively coupled with the printer 22, and a communications channel 41 coupled with the postal security device 40 to apparatus external to the printer 22 and external to the postal security device 40, the postal security device 40 comprising a secure housing, the postal security device 40 containing within the secure housing a first register set 51a comprising information indicative of a first license number 52a, a first ascending register 53a, and a first piece counter 55a, the postal security device 40 further containing within the secure housing a second register set 51b comprising information indicative of a second license number 52b, a second ascending register 53b, and a second piece counter 55b, each of the ascending registers 53a, b indicative of postage printed in connection with the respective license number 52a, b, each of the piece counters 55a, b indicative of a number of mail pieces franked in connection with the respective license number 52a, b; the postal security device 40 further comprising a franking means
- a company may have several individuals who generate mail, in particular with PC-based word processing programs. These individuals may be located in different geographic locations. Often it is desired to enter mail at a particular post office as it may speed delivery of that mail to the recipient or recipients. Under the requirements and constraints of the traditional postage metering environment, a company might have to license multiple postage meters for multiple users and for multiple mail entry points. With the system according to the invention, however, a single PSD may be able to serve multiple users.
- each meter license number has associated with it a particular town in which its mail is to be deposited. (This is important to give revenue credit to each town's post office in keeping with the mail deposited therein.)
- a particular license is the digitally printed equivalent of the "town die" in a tradition postage meter which indicates the town in which mail is to be deposited.
- the PSD according to the invention accommodating more than one license, can enable the user to generate franked mail for deposit in more than one town.
- the postal service may require that the PSD generates a new public/private key pair for signing indicia for each new or additional meter license from the postal authority.
- the private key must of course be securely stored within the PSD.
- the public key is signed by a certificate authority and is stored in the host system along with the signed meter licenses.
- Fig. 4 shows in a data flow diagram the steps associated with obtaining an additional meter license with a PSD in accordance with an embodiment of the invention.
- the user requests the license on the user host system (21 in Fig. 1) in step 60.
- the user host system 21 forwards the request to the postal security device 40 (in Fig. 4) which prepares a license request message in step 61.
- the PSD 40 cryptographically signs the message in step 62 and sends the request back to the user host system 21 which forwards the request to the manufacturer system 24 (Fig. 1).
- the anufacturer system 24 verifies the origin of the request by verifying the signature (block 63) from the PSD 40.
- the request is then forwarded to the postal authority system 26 (Fig. 1) in step 64.
- the communications links 23, 25 may be secured, but preferably no security assumption is made about the links 23, 25 and instead cryptographic measures (such as signatures) are employed.
- the postal authority system 26 issues a meter license number and grants the requested license in step 65, typically adding its own digital signature to the license.
- the manufacturer's system 24 (Fig. 1) verifies the validity of the license and adds its own digital signature (step 66) and passes the license along to the postage meter (i.e. the PSD 40 in Fig. 3).
- the PSD 40 establishes accounting registers to correspond to the license, and is able to generate postal indicia in connection with the license.
- a franking system includes a PSD which contains within its secure housing a means responsive to a cryptographically authenticated authorization received on the communications channel for creating within the secure housing a second register set comprising information indicative of a second license number, a second ascending register, and a second piece counter, each of the ascending registers indicative of postage printed in connection with the respective license number, each of the piece counters indicative of a number of mail pieces franked in connection with the respective license number.
- the PSD further comprises a franking means responsive to a user request for the printing of a postage indicium in a particular value in connection with a particular license number by incrementing the ascending register in the particular value, by incrementing the piece counter, and by creating a cryptographically authenticated indicium based in part on the license number and the particular value for printing on the printer.
- Each register set is able to be reset by means of a cryptographically secure exchange over the communications channel, the cryptographically secure exchange including transmission of information indicative of the license number associated with the register set.
- the method of adding a register set responds to a user request for a second register set.
- a license request message is prepared and cryptographically signed (blocks 60, 61, 62), the signed license request message is communicated on the communications channel, a response is received on the communications channel and is cryptographically authenticated (block 67).
- a second register set comprising information indicative of a second license number, a second ascending register, and a second piece counter is created within the PSD 40.
- a particular register set 51a is cryptographically signed and/or encrypted, and is stored 72 on external nonsecure storage 71, such as the hard disk of the user computer 21 (Fig. 1), or other mass storage. If at a later time the user wishes to use that license, the user host system 21 can transmit the signed register set 51a from the storage 71 back to the PSD 44.
- the PSD 44 typically also confirms the authenticity of the signatures previously supplied by the manufacturer and the postal authority before accepting the register set 51 a for the printing of postage.
- Another embodiment of the invention directs itself to the problem of a single business entity which may need to be able to print postage at multiple locations despite having no need for more than one meter license.
- the same license number may be stored into the register set of each of the PSDs. This does not pose a risk of fraud, because according to the invention the PSD unique identifier is communicated in the postal indicia along with the license number. It is assumed, as mentioned earlier, that the post office scans and authenticates every indicium anyway.
- This embodiment of the invention is convenient in several ways. Users may wish to use this feature to employ more than one PSD to generate indicia for deposit at the same post office. Thus if one PSD is unavailable or low on funds, a second device can be selected to generate indicia.
Claims (7)
- Système d'affranchissement comportant une imprimante (22), un dispositif de sécurité postal (40) couplé pour communiquer avec l'imprimante (22), et une voie de communication (41) couplée, avec le dispositif de sécurité postal (40), à un appareil extérieur à l'imprimante (22) et extérieur au dispositif de sécurité postal (40), le dispositif de sécurité postal (40) comportant une disposition d'enceinte sécurisée ; le dispositif de sécurité postal (40) contenant à l'intérieur de la disposition d'enceinte sécurisée un premier jeu de registres (51a) comportant des informations indiquant un premier numéro de licence (52a), un premier registre ascendant (53a), et un premier compteur d'articles (55a) ; le dispositif de sécurité postal (40) contenant en outre à l'intérieur de la disposition d'enceinte sécurisée un deuxième jeu de registres (51b) comportant des informations indiquant un deuxième numéro de licence (52b), un deuxième registre ascendant (53b), et un deuxième compteur d'articles (55b), chacun des registres ascendants (53a, 53b) indiquant l'affranchissement imprimé correspondant au numéro de licence respectif, chacun des compteurs d'articles (55a, 55b) indiquant un nombre d'articles de courrier affranchis correspondant au numéro de licence respectif ; le dispositif de sécurité postal (40) comportant en outre un moyen d'affranchissement réagissant à une demande d'utilisateur d'imprimer une empreinte postale d'une valeur particulière correspondant à un numéro de licence particulier en augmentant le registre ascendant de la valeur particulière, en augmentant le compteur d'articles, et en créant une empreinte authentifiée cryptographiquement basée en partie sur le numéro de licence et la valeur particulière à imprimer sur l'imprimante (22) : chaque jeu de registres (51a, 51b) étant disposé de façon à être remis à zéro au moyen d'un échange à sécurité cryptographique utilisant la voie de communication (41), échange à sécurité cryptographique qui incorpore la transmission des informations indiquant le numéro de licence associé à chaque jeu de registres (51a, 51b).
- Système d'affranchissement selon la revendication 1, caractérisé en ce que le dispositif de sécurité postal (40) contient en outre à l'intérieur de la disposition d'enceinte sécurisée un moyen réagissant à une autorisation authentifiée cryptographiquement reçue par la voie de communication (41) pour créer, à l'intérieur de la disposition d'enceinte sécurisée, le deuxième jeu de registres (51b).
- Système d'affranchissement selon la revendication 1, caractérisé en ce que le dispositif de sécurité postal (40) contient en outre à l'intérieur de la disposition d'enceinte sécurisée un moyen réagissant à une première demande d'utilisateur de signer cryptographiquement le premier jeu de registres (51a) et de dupliquer le premier jeu de registres à signature cryptographique (51a) en l'envoyant par la voie de communication (41) à un appareil externe (71) ; le dispositif de sécurité postal (40) contenant en outre à l'intérieur de l'enceinte sécurisée un moyen réagissant à une deuxième demande de l'utilisateur d'extraire le premier jeu de registres de l'appareil externe et d'authentifier cryptographiquement le premier jeu de registres, et de mémoriser le premier jeu de registres à l'intérieur d'une zone de mémoire dudit dispositif de sécurité postal.
- Système d'affranchissement selon la revendication 1, comportant en outre une deuxième imprimante, un deuxième dispositif de sécurité postal muni d'un deuxième identificateur, ledit deuxième dispositif de sécurité postal étant couplé pour communiquer avec une deuxième imprimante, une deuxième voie de communication couplée, avec le deuxième dispositif de sécurité postal, à l'appareil extérieur à la deuxième imprimante et extérieur au deuxième dispositif de sécurité postal, ladite disposition d'enceinte sécurisée comportant une première enceinte sécurisée dudit premier dispositif de sécurité postal et une deuxième enceinte sécurisée dudit deuxième dispositif de sécurité postal, ledit deuxième dispositif de sécurité postal contenant à l'intérieur de la deuxième enceinte sécurisée ledit deuxième jeu de registres : le deuxième dispositif de sécurité postal comportant en outre un deuxième moyen d'affranchissement.
- Système d'affranchissement selon la revendication 4, caractérisé en ce que les première et deuxième imprimantes ne sont qu'une seule imprimante (22).
- Procédé destiné être utilisé avec un système d'affranchissement comportant une imprimante (22), un dispositif de sécurité postal (40) couplé pour communiquer avec l'imprimante (22), et une voie de communication (41) couplée, avec le dispositif de sécurité postal (40), à un appareil extérieur à l'imprimante (22) et extérieur au dispositif de sécurité postal (40), le dispositif de sécurité postal (40) comportant une enceinte sécurisée, le dispositif de sécurité postal (40) contenant à l'intérieur de l'enceinte sécurisée un premier jeu de registres (51a) comportant des informations indiquant un premier numéro de licence (52a), un premier registre ascendant (53a), et un premier compteur d'articles (55a), le registre ascendant (53a) indiquant un affranchissement imprimé correspondant au numéro de licence respectif, le compteur d'articles (55a) indiquant un nombre d'articles de courrier affranchis correspondant au numéro de licence respectif ; le dispositif de sécurité postal (40) comportant en outre un moyen d'affranchissement réagissant à une demande d'utilisateur d'imprimer une empreinte postale d'une valeur particulière correspondant à un numéro de licence particulier en augmentant le registre ascendant de la valeur particulière, en augmentant le compteur d'articles, et en créant une empreinte à authentification cryptographique basée en partie sur le numéro de licence et la valeur particulière à imprimer sur l'imprimante (22), procédé qui comporte les étapes suivantes :en réponse à une demande d'utilisateur pour un deuxième jeu de registres, préparer un message de demande de licence, signer cryptographiquement le message de demande de licence, communiquer le message de demande de licence signé par la voie de communication (41), recevoir une réponse par la voie de communication (41), authentifier cryptographiquement la réponse, et créer à l'intérieur de l'enceinte sécurisée un deuxième jeu de registres (51b) comportant des informations indiquant un deuxième numéro de licence (52b), un deuxième registre ascendant (53b), et un deuxième compteur d'articles (55b).
- Procédé selon la revendication 6, caractérisé en ce que le dispositif de sécurité postal (40) contient en outre à l'intérieur de l'enceinte sécurisée un moyen réagissant à une demande d'utilisateur de signer cryptographiquement le jeu de registres et de dupliquer cryptographiquement le jeu de registres signé en l'envoyant par la voie de communication (41) à un appareil externe (71) ; le dispositif de sécurité postal (40) contenant en outre à l'intérieur de l'enceinte sécurisée un moyen réagissant pour extraire le jeu de registres dans l'appareil externe (71) et authentifier cryptographiquement le jeu de registres, et pour mémoriser le registre envoyé à l'intérieur d'une zone de mémoire dudit dispositif de sécurité postal, procédé comportant en outre les étapes consistant à répondre à une première demande d'utilisateur de signer cryptographiquement le jeu de registres et de dupliquer cryptographiquement le jeu de registres d'empreintes en l'envoyant par la voie de communication (41) à l'appareil externe ; à répondre à une deuxième demande d'utilisateur en extrayant le jeu de registres de l'appareil externe et en authentifiant cryptographiquement le jeu de registres, et en mémorisant le registre envoyé à l'intérieur de la zone de mémoire.
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US7848898P | 1998-03-18 | 1998-03-18 | |
US78488P | 1998-03-18 | ||
PCT/US1999/005892 WO1999048053A1 (fr) | 1998-03-18 | 1999-03-18 | Systeme et procede de gestion de licences d'affranchisseuses |
Publications (3)
Publication Number | Publication Date |
---|---|
EP1064621A1 EP1064621A1 (fr) | 2001-01-03 |
EP1064621A4 EP1064621A4 (fr) | 2001-07-18 |
EP1064621B1 true EP1064621B1 (fr) | 2006-08-02 |
Family
ID=22144340
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EP99912649A Expired - Lifetime EP1064621B1 (fr) | 1998-03-18 | 1999-03-18 | Systeme et procede de gestion de licences d'affranchisseuses |
Country Status (6)
Country | Link |
---|---|
EP (1) | EP1064621B1 (fr) |
JP (1) | JP2002507800A (fr) |
AT (1) | ATE335258T1 (fr) |
CA (1) | CA2324099A1 (fr) |
DE (1) | DE69932605T2 (fr) |
WO (1) | WO1999048053A1 (fr) |
Families Citing this family (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6061670A (en) * | 1997-12-18 | 2000-05-09 | Pitney Bowes Inc. | Multiple registered postage meters |
US6381589B1 (en) * | 1999-02-16 | 2002-04-30 | Neopost Inc. | Method and apparatus for performing secure processing of postal data |
EP1277176A4 (fr) * | 2000-04-07 | 2004-08-04 | Ascom Hasler Mailing Sys Inc | Reaffectation dynamique |
DE10020566C2 (de) | 2000-04-27 | 2002-11-14 | Deutsche Post Ag | Verfahren zum Versehen von Postsendungen mit Freimachungsvermerken |
DE10020402C2 (de) * | 2000-04-27 | 2002-03-14 | Deutsche Post Ag | Verfahren zum Versehen von Postsendungen mit Freimachungsvermerken |
AU2001259478A1 (en) * | 2000-05-05 | 2001-11-20 | Pitney-Bowes Inc. | System and method for instant online postage metering |
US6839691B2 (en) * | 2000-05-05 | 2005-01-04 | Pitney Bowes Inc. | Method for acquiring a customer for online postage metering |
DE102004014427A1 (de) * | 2004-03-19 | 2005-10-27 | Francotyp-Postalia Ag & Co. Kg | Verfahren für ein servergesteuertes Sicherheitsmanagement von erbringbaren Dienstleistungen und Anordnung zur Bereitstellung von Daten nach einem Sicherheitsmanagement für ein Frankiersystem |
DE102004039547A1 (de) * | 2004-08-13 | 2006-02-23 | Deutsche Post Ag | Verfahren und Vorrichtung zur Frankierung von Postsendungen |
DE102007010114A1 (de) * | 2007-02-28 | 2008-09-04 | Francotyp-Postalia Gmbh | Verfahren und Anordnung zur Sicherung von nutzerdefinierbaren Daten einer Frankiermaschine |
US20090171848A1 (en) * | 2007-12-28 | 2009-07-02 | Pitney Bowes Inc. | Mailing machine having dynamically configurable postal security device to support multiple customers and carriers |
US20100145882A1 (en) * | 2008-12-10 | 2010-06-10 | Pitney Bowes Inc. | Method and system for securely transferring the personality of a postal meter at a non-secure location |
US20160171638A1 (en) * | 2014-12-16 | 2016-06-16 | Pitney Bowes Inc. | Method and system for supporting multiple postage printing devices using multiple customer accounts without having to maintain funds in each customer account |
Family Cites Families (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4812994A (en) * | 1985-08-06 | 1989-03-14 | Pitney Bowes Inc. | Postage meter locking system |
US4802218A (en) * | 1986-11-26 | 1989-01-31 | Wright Technologies, L.P. | Automated transaction system |
FR2613513B1 (fr) * | 1987-04-01 | 1989-06-23 | Smh Alcatel | Machine a affranchir electronique comportant un grand nombre de compteurs auxiliaires |
CA1301334C (fr) * | 1988-02-08 | 1992-05-19 | Pitney Bowes Inc. | Systeme de comptabilisation des droits postaux |
US5124926A (en) * | 1990-03-02 | 1992-06-23 | Pitney Bowes Inc. | Carrier management system having accounting registers |
US5668973A (en) | 1995-04-14 | 1997-09-16 | Ascom Hasler Mailing Systems Ag | Protection system for critical memory information |
US5712542A (en) | 1995-05-25 | 1998-01-27 | Ascom Hasler Mailing Systems Ag | Postage meter with improved handling of power failure |
US5684949A (en) * | 1995-10-13 | 1997-11-04 | Pitney Bowes Inc. | Method and system for securing operation of a printing module |
US5923762A (en) * | 1995-12-27 | 1999-07-13 | Pitney Bowes Inc. | Method and apparatus for ensuring debiting in a postage meter prior to its printing a postal indicia |
US6050486A (en) * | 1996-08-23 | 2000-04-18 | Pitney Bowes Inc. | Electronic postage meter system separable printer and accounting arrangement incorporating partition of indicia and accounting information |
DE69735672T2 (de) * | 1996-09-24 | 2007-03-29 | Ascom Hasler Mailing Systems, Inc., Shelton | Frankierung mit digitalem postgebührennachweis |
-
1999
- 1999-03-18 EP EP99912649A patent/EP1064621B1/fr not_active Expired - Lifetime
- 1999-03-18 DE DE69932605T patent/DE69932605T2/de not_active Expired - Lifetime
- 1999-03-18 WO PCT/US1999/005892 patent/WO1999048053A1/fr active IP Right Grant
- 1999-03-18 JP JP2000537177A patent/JP2002507800A/ja active Pending
- 1999-03-18 CA CA002324099A patent/CA2324099A1/fr not_active Abandoned
- 1999-03-18 AT AT99912649T patent/ATE335258T1/de not_active IP Right Cessation
Also Published As
Publication number | Publication date |
---|---|
EP1064621A1 (fr) | 2001-01-03 |
EP1064621A4 (fr) | 2001-07-18 |
CA2324099A1 (fr) | 1999-09-23 |
DE69932605D1 (de) | 2006-09-14 |
DE69932605T2 (de) | 2007-08-09 |
ATE335258T1 (de) | 2006-08-15 |
WO1999048053A1 (fr) | 1999-09-23 |
JP2002507800A (ja) | 2002-03-12 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CA2159754C (fr) | Systeme de traitement du courrier avec identificateur exclusif attribue par un service de transport avant la preparation du courrier | |
AU756905B2 (en) | Closed system virtual postage meter | |
US7664710B2 (en) | Remote authentication of two dimensional barcoded indicia | |
US10783719B2 (en) | Systems and methods for detecting postage fraud using an indexed lookup procedure | |
US20030101147A1 (en) | Auditable and secure systems and methods for issuing refunds for misprints of mail pieces | |
AU771315B2 (en) | System and method for linking an indicium with a mailpiece in a closed system postage meter | |
US6820065B1 (en) | System and method for management of postage meter licenses | |
EP1064621B1 (fr) | Systeme et procede de gestion de licences d'affranchisseuses | |
EP1062638B1 (fr) | Systeme et procede de gestion de correspondence | |
US6427139B1 (en) | Method for requesting and refunding postage utilizing an indicium printed on a mailpiece | |
EP1131793B1 (fr) | Procede et systeme de production et de controle d'une marque d'affranchissement | |
EP1131794B1 (fr) | Procede et dispositifs pour imprimer une marque d'affranchissement sur un document | |
AU2002220513B2 (en) | Method for providing postal deliveries with franking stamps | |
US6897973B1 (en) | System and method for management of correspondence | |
CA2384697A1 (fr) | Systeme et procede de paiement | |
CA2419735A1 (fr) | Systeme de traitement du courrier avec identificateur exclusif attribue par un service de transport avant la preparation du courrier |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PUAI | Public reference made under article 153(3) epc to a published international application that has entered the european phase |
Free format text: ORIGINAL CODE: 0009012 |
|
17P | Request for examination filed |
Effective date: 20001013 |
|
AK | Designated contracting states |
Kind code of ref document: A1 Designated state(s): AT BE CH DE DK ES FR GB IT LI |
|
A4 | Supplementary search report drawn up and despatched |
Effective date: 20010606 |
|
AK | Designated contracting states |
Kind code of ref document: A4 Designated state(s): AT BE CH DE DK ES FR GB IT LI |
|
17Q | First examination report despatched |
Effective date: 20041029 |
|
GRAP | Despatch of communication of intention to grant a patent |
Free format text: ORIGINAL CODE: EPIDOSNIGR1 |
|
GRAS | Grant fee paid |
Free format text: ORIGINAL CODE: EPIDOSNIGR3 |
|
GRAA | (expected) grant |
Free format text: ORIGINAL CODE: 0009210 |
|
AK | Designated contracting states |
Kind code of ref document: B1 Designated state(s): AT BE CH DE DK ES FR GB IT LI |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: LI Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20060802 Ref country code: IT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRE;WARNING: LAPSES OF ITALIAN PATENTS WITH EFFECTIVE DATE BEFORE 2007 MAY HAVE OCCURRED AT ANY TIME BEFORE 2007. THE CORRECT EFFECTIVE DATE MAY BE DIFFERENT FROM THE ONE RECORDED.SCRIBED TIME-LIMIT Effective date: 20060802 Ref country code: CH Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20060802 Ref country code: BE Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20060802 Ref country code: AT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20060802 |
|
REG | Reference to a national code |
Ref country code: GB Ref legal event code: FG4D |
|
REG | Reference to a national code |
Ref country code: CH Ref legal event code: EP |
|
REF | Corresponds to: |
Ref document number: 69932605 Country of ref document: DE Date of ref document: 20060914 Kind code of ref document: P |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: DK Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20061102 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: ES Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20061113 |
|
REG | Reference to a national code |
Ref country code: CH Ref legal event code: PL |
|
ET | Fr: translation filed | ||
PLBE | No opposition filed within time limit |
Free format text: ORIGINAL CODE: 0009261 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: NO OPPOSITION FILED WITHIN TIME LIMIT |
|
26N | No opposition filed |
Effective date: 20070503 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: DE Payment date: 20100419 Year of fee payment: 12 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: DE Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20111001 |
|
REG | Reference to a national code |
Ref country code: DE Ref legal event code: R119 Ref document number: 69932605 Country of ref document: DE Effective date: 20111001 |
|
REG | Reference to a national code |
Ref country code: FR Ref legal event code: PLFP Year of fee payment: 17 |
|
REG | Reference to a national code |
Ref country code: FR Ref legal event code: PLFP Year of fee payment: 18 |
|
REG | Reference to a national code |
Ref country code: FR Ref legal event code: PLFP Year of fee payment: 19 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: FR Payment date: 20170322 Year of fee payment: 19 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: GB Payment date: 20170322 Year of fee payment: 19 |
|
GBPC | Gb: european patent ceased through non-payment of renewal fee |
Effective date: 20180318 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: GB Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20180318 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: FR Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20180331 |