US007290288B2

(12) United States Patent (10) Patent N0.: US 7,290,288 B2 Gregg et a]. (45) Date of Patent: Oct. 30, 2007

(54) METHOD AND SYSTEM FOR 4,977,594 A 12/1990 Shear CONTROLLING ACCESS, BY AN 5,032,979 A 7/1991 Hecht et a1. SERVER, T() 5,060,263 A 10/1991 Bosen et a1. PROTECTED COMPUTER RESOURCES 5,081,676 A 1/1992 Chou et e1~ PROVIDED VIA AN INTERNET PROTOCOL (Continued) NETWORK FOREIGN PATENT DOCUMENTS (75) Inventors: Richard L. Gregg, Omaha, NE (US); sandeep Gm’ Omaha, NE (Us); EP 941115818 2/1995 Timothy C. Goeke, Elkhorn, NE (US) (Continued) (73) Assignee: Prism Technologies, L.L.C., Omaha, OTHER PUBLICATIONS NE (Us) RFC 912*Authenticati0n Service, Internet Engineering Task Force, Sep. 1984. ( * ) Notice: Subject to any disclaimer, the term of this _ patent is extended or adjusted under 35 (comlnued) U'S'C' 154(1)) by 44 days‘ Primary ExamineriKambiZ Zand Assistant ExamineriAndreW L. Nalven (21) Appl' NO" 10/230’638 (74) Attorney, Agent, or FirmiMartin & Ferraro, LLP (22) F1led: Aug. 29, 2002 (57) ABSTRACT

(65) Pnor Pubhcatlon Data A method and system for controlling access, by an authen US 2003/0046589 A1 Mar. 6, 2003 tication server, to protected computer resources provided via an lntemet Protocol network that includes storing (i) a (51) Int. Cl. digital identi?cation associated With at least one client H04L 21/00 (2006.01) computer device, and (ii) data associated With the protected (52) U.S. Cl...... 726/28; 705/51 computer resources in at least one database associated With (58) Field of Classi?cation Search ...... 713/201, the authentication server; authenticating, by the anthentiea 713/182, 165; 705/51; 726/28 tion server, the digital identi?cation forwarded by at least See application ?le for Complete Search history one access server; authorizing, by the authentication server, _ the at least one client computer device to receive at least a (56) References Clted portion of the protected computer resources requested by the U.S. PATENT DOCUMENTS at least one client computer device, based on the stored data associated With the requested protected computer resources; 4,691,355 A 9/1987 Wirstrom et a1. and permitting access, by the authentication server, to the at 4,694,492 A 9/1987 Wirstrom et a1. least the portion of the protected computer resources upon 4,864,494 A 9/1989 Kobus, Jr. successfully authenticating the digital identi?cation and 4,885,789 A 12/1989 Burger et a1. upon successfully authorizing the at least once client com 4,907,268 A 3/1990 Bosen et a1. 4,916,738 A 4/1990 Chandra et a1. puter device. 4,932,054 A 6/1990 Chou et a1. 4,962,449 A 10/1990 Schlesinger 187 Claims, 27 Drawing Sheets

- ACCOUNT HOLDER SOFTWARE - ACCOUNT HOLDER ACCESS DEVICE (OPTIONAL)

' SECURE TRANSACTION SERVER SOFTWARE - SECURE TRANSACTION SERVER SITE ADMINISTRATION SOFTWARE

' ACCOUNT HOLDER ADMINISTRATION SOFTWARE

' TRANSACTION CLEARINGHOUSE SERVER SOFTWARE ‘ TRANSACTION CLEARNGHOUSE DATABASE ' SOL SERVER

BACK END SYSTEM US 7,290,288 B2 Page 2

U.S. PATENT DOCUMENTS 5,809,144 A 9/1998 Sirbu et a1. 5,841,970 A * 11/1998 Tabuki ...... 713/201 5,199,066 A 3/1993 Logan ...... 380/4 5,878,142 A 3/1999 Caputo et 31‘ 5,204,961 A 4/1993 Barlow 5,889,958 A 3/1999 Willens 5,222,133 A 6/1993 Chou et al...... 380/4 5,922,074 A 7/1999 Richards et a1‘ 5,229,764 A 7/1993 Matchett et al...... 340/5.52 5,926,624 A 7/1999 KatZ et 31‘ 5,235,642 A 8/1993 Wobber et a1. 5,943,423 A g/1999 Muftic 5,247,575 A 9/1993 Spragne er 91 5,969,316 A 10/1999 Greer et al. 5,291,598 A 3/1994 Grundy ...... 395/650 5,982,898 A 11/1999 Hsu et 31‘ 5,315,657 A 5/ 1994 Abndi er nl- 5,987,232 A 11/1999 Tabuki 5,347,580 A 9/ 1994 Mnlvn er n1~ 5,999,711 A 12/1999 Misra et a1. 5349643 A 9/ 1994 COX er nl- 6,003,135 A 12/1999 Bialick et al...... 713/201 5,357,573 A 10/1994 Walters ...... 380/25 6,005,939 A 12/1999 Fortenben-y et a1‘ ______u 380/2l 5,371,794 A 12/1994 Dif?e er nl- 6,006,332 A 12/1999 Rabne etal. 5373561 A 12/1994 Hnberet nl- 6,021,202 A 2/2000 Anderson etal. 5,375,240 A 12/1994 Grundy ...... 395/700 6,035,402 A 3/2()()() Vaeth et 31‘ 5,379,343 A l/ 1995 6,041,411 A 3/2000 Wyatt ...... 713/200 5,414,844 A 5/1995 6,047,376 A 4/2000 Hosoe 5,416,842 A 5/1995 __ 6,075,860 A 6/2000 Ketcham 5,428,745 A 6/1995 de Bruljn et a1. 6,088,451 A 7/2000 He et 31‘ 5,442,708 A 8/ 1995 Adams, 1n er nl- 6,212,634 B1 4/2001 Geer, Jr. et al. 5,444,782 A 8/1995 Adams, Jr. et al. 6,219,790 B1 4/2001 Lloyd et 31‘ 5,455,953 A 10/ 1995 Russell 6,223,984 B1 5/2001 Renner et al. 5483596 A l/ 1996 RnnenOW er nl- 6,249,873 B1 6/2001 Richard et al. 5,485,409 A V1996 Gupta et 81 6,377,994 B1* 4/2002 Aultetal...... 709/229 5,491,804 A 2/1996 Heath ...... 395/275 6,553,492 B1 4/2003 Hosoe 5,497,421 A 3/1996 Kaufman et al. 5,499,297 A 3/19% Boeben FOREIGN PATENT DOCUMENTS 5,502,766 A 3/1996 Boebert et al. 5,502,831 A 3/1996 Grube ...... 395/427 EP 96306390.4 9/1996 5,511,122 A 4/1996 Atkinson JP 07231159 9/1995 5,535,276 A 7/1996 Ganesan JP 07231160 9/1995 5,539,828 A 7/1996 Davis JP 10285156 10/1998 5,546,463 A 8/ 1996 Caputo et a1. WO WO94/26044 11/ 1994 5,572,673 A 11/1996 Shurts WO WO96/07256 3/1996 5,588,059 A 12/1996 Chandos et al. WO PCT/US00/03489 2/2000 5,590,197 A 12/1996 Chen et al. 5,590,199 A 12/1996 Krajewski, Jr. et al. OTHER PUBLICATIONS 5,592,553 A 1/1997 Guski et al. 5,604,804 A 2/l997 Micah RFC 931*Authentication Server, Internet Engineering Task Force, 5,606,615 A 2/1997 Lapointe et al...... 380/25 Jnn 1985 5,623,637 A 4/1997 Jones et a1‘ RFC 1004*A Distributed-Protocol Authentication Scheme, 5,629,980 A 5/1997 Ste?k et 31‘ Internet Engineering Task Force, Apr. 1987. 5,634,012 A 57997 Ste?k et a1‘ RFC 1507*DASS Distributed Authentication Security Service, 5,657,390 A 8/1997 Elgamal et 31‘ Internet Engineering Task Force, Sep. 1993. 5,659,616 A 8/1997 Sudia RFC1510~The Network Authentication Service (V5), 5,666,411 A 9/1997 McCarthy ...... 380/4 Internet Engineering Task Force, Sen 1993 5,666,416 A 9/ 1997 Micah RFC 1 661*The Point-to-Point Protocol (PPP), Internet Engineer 5,677,953 A 10/1997 Dolphin lng Task Force, M 1994 5,677,955 A l0/l997 Doggett et a1‘ RFC 1636*Report of IAB Workshop on Security in the Internet 5,679,945 A 10/1997 Renner et a1‘ Architecture, Internet Engineering Task Force, Jun. 1994. 5,687,235 A 1 H1997 Perlman et a1‘ RFC 1704*On Internet Authentication, Internet Engineering Task 5,696,824 A 12/1997 Walsh Force, on 1994 5,699,431 A 12/1997 Van Ocschot et a1‘ RFC 1 731*IMAP4 Authentication Mechanisms, Internet Engineer 5,706,427 A 1/1998 Tabuki i118 Task Force, D99 1994 5,708,780 A 1/199g Levergood et a1, RFC 1826*IP Authentication Header, Internet Engineering Task 5,710,884 A 1/1998 Dedrick ...... 709/217 Force, A118 1995 5,715,} 14 A 2/1998 Payne et a1, RFC 1828*IP Authentication Using Keyed MD5, Internet Engi 5,717,756 A 2/1998 Coleman ...... 713/155 neering Task Force, Aug. 1995. 5,717,757 A 2/1998 Micali RFC 1994*PPP Challenge Handshake 5,717,758 A 2/1998 Micall (CHAP), Internet Engineering Task Force, Aug. 1996. 5,721,781 A 2/1998 Deo et a1. RFC 2002*IP Mobility Support, Internet Engineering Task Force, 5,724,424 A 3/1998 Gifford Oct. 1996. 5,740,361 A 4/1998 Brown RF C 2058*RemoteAuthentication Dial In User Service (RADIUS), 5,754,864 A 5/1998 Hill ...... 395/712 Internet Engineering Task Force, Jan. 1997. 5,757,907 A 5/1998 Cooper et a1~ ~~~~~~~~~~~~~~~ ~~ 380/4 RFC 2069*An Extension to HTTP.‘ Digest Access Authentication, 5,761,309 A 6/1998 Ohashi 6t {11...... 380/25 Internet Engineering Task Force, Jan, 1997, 5,761,649 A 6/1998 Hill ...... 705/27 RFC 2082*R1P-) MD 5 Authentication, Internet Engineering Task 5,765,152 A 6/1998 Erickson Force, Jan, 1997, 5,774,552 A 6/1998 Grimmer RFC 2085*HMAC-MD5 IP Authentication With Replay Preven 5,778,071 A 7/1998 Caputo et a1. tion, Internet Engineering Task Force, Feb. 1997. 5,781,723 A 7/ 1998 Yee et a1. RFC 21 39*RADIUS Accounting, Internet Engineering Task Force, 5,793,868 A 8/1998 Micali Apr. 1997. US 7,290,288 B2 Page 3

The SSL Protocol Version 3.0, Netscape Communications, Nov. SalZ, R.; RFC 100.0iDCE and ForteZZa; Jan. 1997. 1996. St. Johns, M.; RFC 912iAuthentication Service; Sep. 1984. FIPS PUB 190*Guideline For The Use of Advanced Authentica St. Johns, M.; RFC 931iAuthentication Server; Sep. 1984. tion Technology Alternatives, US Department of Commerce/Na Mills, D.L.; RFC 1004iA Distributed Protocol Authentication tional Institute of Standards and Technology, Sep. 28, 1994. Scheme; Apr. 1987. N. Nagaratnam, S Byrne, Resource Access Control for an Internet Lloyd, B.; RFC 1334iPPP Authentication Protocols; Oct. 1992. User Agent, Proceedings of the Third USENIX Conference on Finseth, C.; RFC 1492iAn Access Control Protocol, Sometimes Object-Oriented Technologies and Systems, Jun. 1997. Called TACACS; Jul. 1993. M. Curtin, Introduction to Network Security, Kent Information Kaufman, C.; RFC 1507iDASS, Distributed Authentication Secu Services, Inc., Mar. 1997. rity Service; Sep. 1993. Q. Zhong, Providing Secure Environments for Untrusted Network Linn, J .; RFC 1508iGenetic Security Service Application Program Applications, Hewlett Packard Laboratories, Bristol, 1997. Interface; Sep. 1993. R. Needham, M. Schroeder, Using Encyption for Authentication in Kohl et al.; RFC 1510iThe Kerberos Network Authentication Large Networks of Computers, Xerox Palo Alto Research Center, Service (V5); Sep. 1993. Dec. 1978. Braden et al.; RFC 1636iReport of IAB Workshop on Security in M. Abadi, M. Burrows, C. Kaufman, B.Lampson, Authentication the Internet Architecture Feb. 8-10, 1994. (Jun. 1994). and Delegation with Smart-Cards, Digital Equipment Corporation, Simpson, W.; RFC 1661iThe Point -to- Point Protocol (PPP); Jul. Jul. 30, 1992. 1994. M. Jones, Securing The World VVl'de Web.‘ Smart Tokens And Their Haller, N.; RFC 17044On Internet Authentication; Oct. 1994. Implementation, Fourth International World Wide Web Conference, Myers, J.; RFC 1731iIMAP4 Authentication Mechanisms; Dec. Boston, Massachusetts, USA, Dec. 1995. 1994. P. Janson, S. Kutten, R. Molva, M. Yung, Safe Single-Sign-On Haller, N.; RFC 1760iThe S/Key One-Time Password System; Protocol with Minimal Password Exposure No-Decryption, and Feb. 1995. Technology-Adaptivity, IBM Technical Disclosure Bulletin, Mar. Yeong et al.; RFC 1777iLightweight Directory Access Protocol; 1995. Mar. 1995. R. Lennon, S. Matyas, C. Meyer, Transaction Response Message Howes et al.; RFC 1823iThe LDAP Application Program Inter Authentication (Des/Kp), IBM Technical Disclosure Bulletin, Dec. face; Aug. 1995. 1983. Atkinson, R.; RFC 1826iIP Authentication Header; Aug. 1995. R. Davis, Network Authentication Tokens, Computer Security Atkinson, R.; RFC 1827iIP Encapsulating Security Payload Applications Conference, 1989 Fifth Annual, Dec. 4, 1989. (ESP); Aug. 1995. RF C151 0~The Kerberos Network Authentication Service (V5); MetZger et al.; RFC 1828iIP Authentication Using Keyed MDS; Internet Engineering Task Force; Sep. 1993. Aug. 1995. Gaskell, G. et al., Improved Security For Smart Card Use In DCE; Simpson, W.; RFC 1994iPPP Challenge Handshake Authentica Open Software Foundation Request For Comments 71.0; Feb. 1995. tion Protocol (CHAP); Aug. 1996. Israel, J. et al., Authentication In Oj?ce System Internetworks; ACM Perkins, C.; RFC 2002iIP Mobility Support; Oct. 1996. Transactions of Of?ce Information Systems; vol. 1, No. 3; Jul. 1983. Rigney et al.; RFC 2058iRemote Authentication Dial In User Kerberos and 3rd Party Authentication; Security Dynamics, Inc.; Service (RADIUS); Jan. 1997. Mar. 26, 1994. Franks et al.; RFC 2069iAn Extension to HTTP: Digest Access Kotanchik, J.; Kerberos And Two Factor Authentication; Open Authentication; Jan. 1997. Software Foundation Request For Comments 59.0; Mar. 1994. Baker et al.; RFC 2082iRIP-2 MD5 Authentication; Jan. 1997. Krajewski, M. et al., Applicability of Smart Cards to Network User Oehler et al.; RFC 2085iHMAC-MDS IP Authentication with Authentication; Computing Systems; vol. 7, No. 1; Winter 1994. Replay Prevention; Feb. 1997. Lai, C. et al., Endorsements, Licensing, and Insurance for Distrib Rigney et al.; RFC 2138iRemote Authentication Dial In User uted System Services; Information Services Institute University of Service (RADIUS); Apr. 1997. Southern California; Nov. 1994. Rigney; RFC 2139iRADIUS Accounting; Apr. 1997. Pato, J.; Using Pre-Authentication To Avoid Password Guessing Myers et al.; RFC 2560iX.509 Internet Public Key Infrastructure Attacks; Open Software Foundation Request For Comments 26.0; Online Certi?cate Status ProtocoliOCSP; Jun. 1999. Jun. 1993. RADIUS server source code; Apr. 1995. RF C I058iGeneric Security Service Application Program Inter Wallace, B.; RADIUS to secure remote access; Apr. 1995. face; Internet Engineering Task Force; Sep. 1993. Rigney et al.; RADIUS Accounting draft-ietf--accounting-O1. RF C I 760*The S/Key One-Time Password System; Internet Engi txt; Nov. 1995. neering Task Force; Feb. 1995. Rigney et al.; Remote Authentication Dial In User Service Hunwick, T.; RFC 8.2iSecurity Requirements for DCE; Aug. (RADIUS) draft-ietf-radius-01.txt; Nov. 1995. 1996. Rigney; Current Meeting Report; Minutes of the Remote Authen Pato, J .; RFC 26.0iUsing Pre-Authentication to Avoid Password tication Dial In User Service ROF (RADIUS); Dec. 1995. Guessing Attacks; Jun. 1993. Rigney; RADIUS Accounting; Jan. 1996. Kotanchik, J.; RFC 59.0iKerberos and Two-Factor Authentica Rigney et al.; RADIUS Accounting; Draft-ietf-radius-accounting tion; Mar. 1994. 02.txt; Feb. 1996. SalZ, R.; RFC 63.3iDCE 1.2 Contents Overview; Oct. 1996. Rigney et al.; Remote Authentication Dial In User Service Anderson et al.; RFE 68.1iDCE 1.2 Public-Key (RADIUS): draft-ietf-radius-radius-02.txt; Feb. 1996. LoginiFunctional Speci?cation; Feb. 1995. Rigney; RADIUS; BayLISA; Mountainview, California; Feb. 1996. Anderson et al.; RFC 68.2iDCE 1.2.2 Public Key Rigney et al.; RADIUS Accounting; draft-ietf-radius-accounting LoginiFunctional Speci?cation; Feb. 1996. 03.txt; May 1996. Siebenlist et al.; RFC 68.3iDCE 1.2.2 Public Key Rigney et al.; Remote Authentication Dial In User Service LoginiFunctional Speci?cation; Jan. 1997. (RADIUS); draft-ietf-radius-radius-02.txt; May 1996. Siebenlist et al.; RFC 68.4iDCE v.r.m. Public Key Certi?cate Rigney et al.; RADIUS Accounting; draft-ietf-radius-accounting LoginiFunctional Speci?cation; Apr. 1998. 04.txt; Jun. 1996. Gaskell et al.; RFC 71 .0iImproved Security for Smart Card Use in Rigney et al.; Remote Authentication Dial In User Service DCE; Feb. 1995. (RADIUS); Draft-ietf-radius-radius-04.txt; Jun. 1996. Warner, M.; RFC 85.0iImproved Public Key Login Protocols for King, C.; Web-Access Authentication Using RADIUS: An interme DCE; Oct. 1995. diate method of secure exchanges on the Web; Aug. 1996. Tuvell, W.; RFC 98.04Challenges Concerning Public-Key in DCE; Rigney et al.; RADIUS Extensions; Draft-ietf-radius-ex:-00.txt; Dec. 1996. Jan. 1997. US 7,290,288 B2 Page 4

Rigney et al.; Remote Authentication Dial In User Service Netscape; Netscape Certi?cate Server Administrator’s Guide for (RADIUS); Jan. 1997. Windows NT; 1997. Rigney et al.; Remote Authentication; Dial In User Service Netscape; Netscape Certi?cate Server Administrator’s Guide for (RADIUS); Apr. 1997. Unix; 1997. Livingston Enterprises, Inc.; RADIUS Administrator’s Guide; May Netscape; Netscape Certi?cate Server Installation for Windows NT; 1997. 1997. Rigney et al.; RADIUS Extensions; draft-ietf-radius-ext-0 l .txt; Sep. Netscape; Netscape Certi?cate Server Installation for Unix; 1997. 1997. Netscape; Certi?cate-Mapping Programmer’s Guide; 1997. Rigney et al.; RADIUS Extensions; draft-ietf-radius-ext-02.txt; Oct. Netscape; NSAPI Programmer’s GuideiNetscape Enterprise 1998. Server Version 3.0; 1997. Workshop on Network and Distributed Systems Security; Smart Netscape; Using Netscape with FORTEZZA; 1997. Card Augmentation of Kerberos; 1993. Netscape; Netscape Products With Fortezza Fact Sheet; Feb. 1997. Newman et al., Kerberos: An Authentication Service for Computer US. Government; Demonstration Plan for JW ID 97; Feb. 1997. Networks; 1994. Netscape; Netscape Communicator Supports Smart Cards and Security Dynamics, Inc.; Kerberos and 3rd Party Authentication; Tokens So Mobile Users Can Safely Access Corporate Networks Mar. 1994. Remotely; Aug. 1997. Schroeder, W.; Kerberos/DCE, the Secure Shell, and Practical Netscape; US. Department of Defense Signs Agreement for Internet Security; Oct. 1996. Netscape Client and Server Software; Oct. 1997. Itoi et al.; CITI Technical Report 98-7; Smartcard Integration and Netscape; Netscape Expands Mission Control to Provide Uni?ed Kerberos V5; Dec. 1998. Administration of Intranets and Extranets with Lower Cost of Gaskell; Integrating Smart Cards into Kerberos; Feb. 2000. Ownership; Dec. 1997. Tung; The Moron’s Guide to Kerberos, Version 122; Jul. 2005. Netscape; Hitachi and Netscape to Collaborate on Intranet and Netscape; SSL 2.0 Protocol Speci?cation; Nov. 1994. Extranet Solutions Based on LDAP Standard for Internet Directo Netscape; Netscape to Offer Fortezza Crytographic Capability for ries; Dec. 1997. its Software Products; Oct. 1995. Ryan, G.; Making Netscape Compatible with Netscape; Netscape Certi?cate Server 1.0 FAQ; 1996. FORTEZZA®iLessons Learned; Aug. 1999. Netscape; Netscape Certi?cate Server l.0iA Powerful Certi?cate The Open Group; DCE, Distributing Computing Environment Management Solution; 1996. Overview; 1996. Netscape; Netscape Directory Server 1.0 Data Sheet; 1996. IBM; Introduction to DCE; 1996. Netscape; Netscape Directory Server 1.0 FAQ; 1996. The Open Group; DCE, Distributing Computing Environment, Netscape; Netscape Directory Server l.0iServer Software For Glossary of Terms; 1996. Centralized Directory Management; 1996. The Open Group; DCE, Distributing Computing Environment, OSF Netscape; Netscape Enterprise Server 3.0 FAQ; 1996. DCE 12.2 New Features; 1996. Netscape; Netscape Enterprise Server 3 .OiThe Enterprise-Strength The Open Group; The Open Group Announces General Availability Web Server For The Intranet; 1996. of DCE 1.2.2 with Security and File System Enhancements; 1996. Netscape; Netscape SuiteSpot 3.0 FAQ; 1996. The Open Group; Technical Standard DCE liAuthentication and Netscape; Netscape SuiteSpotiThe Cost-Effective and Full-Ser Security Services; 1997. vice Intranet Solution; 1996. The Open Group; Presentation at The Open Group Member’s Netscape; What the Press is Saying About Netscape’s New Servers; Meeting re DCE RFC 68.4 Public Key Certi?cate-Based DCe 1996. Login; Apr. 1998. Netscape; An Internet Approach to Directories; 1996. The Open Group; Draft Technical Standard, DCE 123 Public Key Netscape; Securing Information Distribution Using Netscape Prod Certi?cate Login (Draft 0.8 for Company Review); Aug. 1998. ucts with FORTEZZA®; 1996. IBM; Presentation at the Securities Industry Middleware Council, re Freier et al.; The SSL Protocol Version 3.0, Internet Draft http:// DCE RFC 68.4 Update; Feb. 1999. wp.netscape.com/eng/ssl3/ssl-toc.html; Mar. 1996. Kohnfelder; Towards a Practical Public-Key Cryptosystem; May Fleier et al.; The SSL Protocol Version 3.0; Mar. 1996. 1978. Netscape; Netscape Announces Netscape Certi?cate Server To Needham et al.; Using Encryption for Authentication in Computer Enable Companies To Encrypt Enterprise Communications And Networks; Dec. 1978. Data; Apr. 1996. National Bureau of Standards, US. Department of Commerce; Netscape; More Than 40 Companies Join Netscape and U. Michi Federal Information Processing Standards Publication 83; Speci? gan To Support Lightweight Directory Access Protocol As Proposed cation for Guideline on User Authentication Techniques for Com Standard For Internet Directions; Apr. 1996. puter Network Access Control; 1980. PC Magazine Online; Netscape Shoots to Kill Microsoft and Lotus; Oppen et al.; The Clearinghouse A Decentralized Agent for Locat Apr. 1996. ing Named Objects in a Distributed Environment; 1983. Netscape; Securing Communications on the Intranet and Over the Israel et al.; Authentication in Of?ce System Internetworks; Dec. Internet; Jul. 1996. Netscape; Netscape Directory Server 1.0 Fact Sheet; Dec. 1996. 1983. Netscape; Netscape Announces Netscape Suitespot 3.0 for Open Lennon et al.; Transaction Response Message Authentication (Des/ Email And Groupware on Intranets; Oct. 1996. Kp); Dec. 1983. Netscape; FORTEZZA® CryptoSecurity Products; Oct. 1996. Davis, R.; Network Authentication Token; Dec. 1989. Netscape; The SSL Protocol Version 3.0; Nov. 1996. Linn, J .; Practical Authentication for Distributed Computing; 1990. Netscape; Introduction to Communicator; 1997. Goldberg, D.; The MITRE User Authentication System; Aug. 1990. Netscape; Single Sign-On Deployment Guide-Security; 1997. Woo et al., Authentication for Distributed Systems; Jan. 1992. Netscape; Web Publisher User’s GuideiNetscape Enterprise Abadi et al.; Authentication and Delegation with Smart-Cards; Jul. Server Version 3.0; 1997. 1992. Netscape; Netscape Enterprise Server 3.0iAdministrator’s Guide Workshop on Network and Distributed Systems; Issues Surrounding for Windows NT; 1997. the Use of Cryptographic Algorithms and Smart Card Applications; Netscape; Netscape Enterprise Server 3.0iAdministrator’s Guide 1993. for Unix; 1997. Workshop on Network and Distributed Systems; An Overview of Netscape; Managing Netscape ServersiNetscape Administration the Advances SmartCard Access Control System; 1993. Server 3.0; 1997. ISO/IEC; X.509 Information Technology4Open Systems Netscape; Managing Netscape ServersiNetscape Administration InterconnectioniThe Directory: Authentication Framework; Nov. Server 3.0 (online version); 1997. 1993. US 7,290,288 B2 Page 5

Lai et al.; Endorsements, Licensing, and Insurance for Distributed Richard, P; Re: LDAP for logon?; May 1996. System Services; 1994. McLaughlin; SunWorld News: New Products for the Week of May Krajewski, Jr. et al.; Applicability of Smart Cards to Network User 27; Jun. 1996. Authentication; 1994. McLaughlin; SunWorld News: Directory of the Month of Jun. 1996. Wu; Remote Access Technology: Evaluating the Options; Jul. 1994. Constance, P.; DISA Buys 180,000 Licenses for Navigator, Gov US. Department of Commerce/National Institute of Standards and ernment Computer News; Jul. 1996. Technology; FIPS PUB l904Guideline for the Use of Advanced Ylonen, T.; SSHiSecure Login Connections Over the Internet; Jul. Authentication Technology Alternatives; Sep. 1994. 1996. NameFLOWiParadise4Quarterly Service Report Oct-Dec. Richard, P.; Re: Certi?cate and CRL’siaccess and storage; Oct. 1995. 1996. Oracle; Secure Network Services Administrator’s Guide Version Freier et al.; The SSL Protocol Version 3.0 draft-freier-ssl-version3 2.0; 1995. 02.txt; Nov. 1996. Stallings, W.; Mecklermedia’s O?‘icial Internet WorldTM Internet Kemp, D.; The Public Key Login Protocol; ; Aug. 13, 1996. Janson et al; Safe Single-Sing-On Protocol with Minimal Password Kemp, D.; The Public Key Login Protocol; ; Nov. 26, 1996. Cisco; Single-User Network Access Security TACACS+; Mar. Andreesen, M.; Interoperable Security; Dec. 1996. 1995. Microsoft; The Microsoft Internet Security Framework: Technology Rubin, A.D.; Independent One-Time Passwords, Proceedings of the for Secure Communication, Access Control, and Commerce; Dec. Fifth USENIX UNIX Security Symposium: Jun. 1995. 1996. Gifford et al.; Payment Switches for Open Networks; Jul. 1995. Rubin, Greer, Ranum; A Complete Guide to Web Security Threats Coe et al. D.; Developing and Deploying Corporate Cryptographic and Solutions; 1997. Systems; Jul. 1995. Zhong, Q.; Providing Secure Environments for Untrusted Network Howes et al.; CITI Technical Report 95-7; A Scalable, Deployable Applications; 1997. Directory Service Framework for the Internet; Jul. 1995. US. Government; Demonstration Plan for JW ID 97; Feb. 1997. Howes, T.; CITI Technical Report 95-8; The Lightweight Directors Howes et al.; The LDAP URL Format (Internet Draft); Draft-ietf Access Protocol: X.500 Lite; Jul. 1995. asid-ldapv3-url-00.D

National Security Agency; ForteZZa Application Implementors Zisman, Alan; Local software products helping to blaze the way to Guide For The PCMCIA Based ForteZZa Cryptologic Card, Version secure business dealings on the Internet; Business in Vancouver; 1.00; Jan. 1995. Issue #342; May 14, 1996; (CA133828-CA133829). National Security Agency; ForteZZa Application Implementors E-Mail Responses by various: LDAP for logon?; May 1996; Guide For The PCMCIA Based ForteZZa Cryptologic Card, Revi (CA133836-CA133842). sion 1.01; Apr. 6, 1995. Richard, Patrick C.; E-Mail Responses Re: certi?cates and National Security Agency; FORTEZZA Application Implementors CRLsiaccess and storage; Oct. 15, 1996; (CA134027-CA134028). Guide for The ForteZZa Crypto Card ICD Revision P15 and The E-Mail Responses by various; strong authentication questions; May ForteZZa Cryptologic Interface Programmers Guide, Revision 1.52; 1996; (CA134275-CA134277). Mar. 5, 1996. XCERT; Xcert Software, Inc. Questions & Answers; (CA137960 National Security Agency; FORTEZZA Application Developer’s CA137968), 1996. Guide, Version R1.0; Jun. 11, 1996. XCERT; The Xcert Sentry Acc4ess Control List Module; Xcert; Sentry CA Cross-Checks Certi?cates, PC Week Online; Apr. (CA137969-CA137972), 1996. 1997. Gifford et al.; Payment Switches for Open Networks; USENIX Xcert; Sentry CA (Certi?cate Authority); 1996. Association; New York; Jul. 1995; (CA140714-CA140721). Xcert; XUDA: Xcert Universal Database API; 1996. XCERT; Keng Slau et al.; Xcert Software InciThe Next Step Xcert; Xcert Software Inc., Questions and Answers; 1996. Forward (B); 1997; (CA142771-CA142777). Xcert; The Xcert Sentry Access Control List Module; 1996. Global.HiRsaeuro types and constants; J.S.A. Kapp 1994-1996; CryptoSwift; CryptoSwift Secure Sever Accelerator Frequently Asked Questions; Apr. 1997. (VERI-0015459iVERI-0015460). CryptoSwift; CryptoSwift Developer Frequently Asked Questions; XCERT; Keng Slau; Xcert Software, Inc. Abstract; 1999; (VERI Mar. 1997. 0235357iVERI-0235382). Rainbow Technologies; SentineEve’TM Software Protection System NETEGRITY; Software & Security: Netegrity’s Siteminder soft Developer’s Guide; 1989-1995. ware lets net managers get centered on security; NeTegrity, Inc.; Rainbow Technologies; Sentinel SuperProTMiSecuring the Future Jan. 1997; (CA954730-CA954732). of Software Developer’s Guide; 1991-1995. NETEGRITY; NeTegrity Backgrounder: NeTegrity, Inc .; Looi, M. et al; Enhancing SESAMEV4 with Smart Cards; Sep. (CA954733-CA954770), 1997. 1998. NETEGRITY; NeTegrity, Inc. and Encotone Ltd. Form U.S. Joint Micali, S.; Enhanced Certi?cate Revocation System; 1995. Venture to Market Acoustic Smart Card Technology; NeTegrity, Howes, T.; An X.500 and LDAP Database: Design and Implemen Inc.; Nov. 4, 1996; (CA954771-CA954772). NETEGRITY: NeTegrity Unveils Industry’s First Enterprise-Wide, tation; Dec. 2003. Integrated Network Security Management System; NeTegrity, Inc.; Miller, M.; When remote access needs to be blocked; Nov. 14, 1994. Choudhury, A. et al.; Copyright Protection for Electronic Publishing Nov. 15, 1996; (CA954773-CA954-774). Over Computer Networks; IEEE Network; May/Jun. 1995. NETEGRITY; SiteMinderTM Security Mananger; NeTegrity, Inc.; 1996; (CA954775). Newsbytes News Network; GTE’s CyberTrust for Web Electronic NETEGRITY; NeTegrity Unveils Industry’s First Enterprise-Wide, Commerce; Feb. 6, 1996. Integrated Network Security Management System; NeTegrity, Inc.; Lowry, J .; Location-Independent Information Object Security; Oct. 15, 1996; (CA954776-CA954777). IEEE; 1995. NETEGRITY; SiteMinder Product/Technology Backgrounder; Communication News; NSA Provides Value-Added Crypto Secu rity; May 1995. NeTegrity, Inc.; 1996 (CA954778-CA954780). NETEGRITY; SiteMinder? Authentication Server For Windows Business Wire; Secure Computing Corp. Announces Agreement with Security Dynamics Technologies, Inc. to Provide Enhanced NT; NeTegrity, Inc.; 1996; (CA954781-CA954782). GauntletTM 3.1 for IRIXTM Administrator’s Guide for IRIX 5.3; Security for Computer Networks; Jan. 23, 1996. Document No. 007-2826-002; Silicon Graphics, Inc.; 1996; SiteMinder v. 1.0; Netegrity, Inc.; 1996-1997. (CA954783-CA955015). Plaintiff Prism Technologies LLC’s Opening Claim Construction GauntletTM 3.1.1 for IRIXTM 6.2 Administrator’s Guide; Document Brief and Appendix with Exhibits; Sep. 22, 2006; Prism Technolo No. 007-2826-003; Silicon Graphics, Inc.; 1996; (CA955016 gies LLC v. Verisign, Inc., et al.; Civil Action No. 05-214-JJF. Plaintiff Prism Technologies LLC’s Claim Construction Answering CA955263). TIS; TIS Firewall Toolkit: Con?guration and Administration; Brief; Oct. 13, 2006 with Exhibits; Prism Technologies LLC v. Trusted Information Systems, Inc.; Version dated Feb. 17, 1994; Verisign, Inc., et al.; Civil Action No. 05-214-JJF. Defendents’ Opening Claim Construction Brief with Exhibits; Sep. (CA955264-CA955277). TIS; Defense Department Chooses Trusted Information Systems to 22, 2006; Prism Technologies LLC v. Verisign, Inc., et al.; Civil Action No. 05-214-JJF. Provide Network Firewall Plus E-Mail Security; Trusted Informa Defendents’ Responsive Claim Construction Brief; Oct. 13, 2006 tion Systems, Inc.; Jul. 10, 1996; (CA955278-CA995279). (public version dated Oct. 17, 2006); Prism Technologies LLC v. TIS; Firewall Product Functional Summary; NCSA (National Com Verisign, Inc., et al.; Civil Action No. 05-214-JJF. puter Security Association); Trusted Information Systems, Inc.; Jul. Requests For Comments (RFC) submitted at the Markman hearing; 22, 1996; (CA955280-CA955299). Privacy Enhancement for Internet Electronic Mail: Part I: Message TIS; Installing the Trusted Information Systems Internet Firewall Encryption and Authentication Procedures and Part II: Certi?cate Toolkit; Marcus J. Ranum; 1997; (CA955300-CA955347). Based Key Management; Feb. 1993. TIS; TIS Firewall Toolkit; Trusted Information Systems, Inc.; Sep. Defendents’ Joint Invalidity Contentions and Joint Supplemental 1996; (CA955348-CA955397). Answers and Objections to Plaintiff’ s Interrogatory 4; Sep. 5, 2006; TIS; TIS Firewall Toolkit: Overview; Trusted Information Systems, Prism Technologies LLC v. Verisign, Inc., et al.; Civil Action No. Inc.; Version dated Jun. 30, 1994; (CA955398-CA955411). 05-214-JJF. TIS; Major Enhancements to Industry-Leading GauntletTM Internet NETEGRITY; NetegrityTM SiteMinderTM, Web Agent, Operations Firewall; Trusted Information Systems, Inc.; Jul. 22, 1996; Guide for NT Version 2.0; Netegrity, Inc.; 1996-1997; (CA004932 (CA955412-CA955414). CA004974). TIS; Trusted Information Systems Enhances Industry-Leading NETEGRITY; NetegrityTM SiteMinderTM, Web Agent, Operations GauntletTM Internet Firewall; Trusted Information Systems, Inc.; Guide for NT Version 1.0; Netegrity, Inc.; 1996-1997; (CA005007 Jan. 23, 1996; (CA955415-CA955417). CA005012). TIS; Trusted Information Systems extends security throughout the Richard, Patrick; E-Mail Response Re: LDAP for logon?; May 22, network with additions to GauntletTM Internet Firewall; Trusted 1996; (CA133800-CA133801). Information Systems, Inc.; Apr. 2, 1996; (CA955418-CA955420). US 7,290,288 B2 Page 7

TIS; Trusted Information Systems Internet Firewall Toolkit: An V-ONE; Karen Rodriquez; New Gateway Veri?es Secure Server Overview, Trusted Information Systems, Inc.; 1993; (CA95542l Link; (Reprinted from Communications Week, Dec. 11, I995); CA955477). V-ONE Corporation; (CA95568l-CA955682). TIS; Marcus J. Ranum et al.; A Toolkit and Methods for Internet V-ONE; Reva Basch; SmartWall Easing Internet Security Concerns; Firewalls; Trusted Information Systems, Inc.; (CA955478 (Reprinted from PCTODAY, Feb. 1996, p. 34); V-ONE Corpora CA955485), 1997. tion; (CA955683-CA955685). TIS; Firewall User’s Overview, Trusted Information Systems, Inc.; V-ONE; V-ONE Announces SmartWall DMS(TM); V-ONE Corpo Version dated Feb. 8, 1994; (CA955486-CA955490). ration; Oct. 25, 1996; (CA955686-CA955687). V-ONE; V-One Security for a Connected World; V-One Corpora V-ONE; V-ONE Announces Business Alliance With Lockheed tion; (CA95549l-CA955548), 1998. Martin Federal Systems In Gaithersburg; V-ONE Corporation; Oct. V-ONE; The Internet Just Got Reall; Marketing Strategy and 31, 1996; (CA955688-CA955690). Mission; V-ONE Corporation; (CA955549-CA955550), 1997. V-ONE; V-ONE Announces SmartGate, Enabling Open and Secure V-ONE; Marjanovic, Steven; Software Beefs Up Security of Business Transactions on the Internet: New Class of Security Internet Transactions; (Reprinted from American Banker(r), The Product Allows Businesses to Build a secure Transaction Environ Daily Financial Services Newspaper; Friday, Feb. 16, 1996, p. 13); ment with Existing Legacy or New Client/Server Applications; V-ONE Corporation; (CA95555l-CA955553). V-ONE Corporation; Dec. 11, 1995; (CA95569l-CA955693). V-ONE; Marjanovic, Steven; Software Beefs Up Security of V-ONE; “V-ONE Announces SmartWall DMS(TM)” Release DMS/ Internet Transactions; (Reprinted from American Banker(r), The Symposium & Demonstration/V-ONE Information; V-ONE Corpo Daily Financial Services Newspaper; Friday Feb. 16, 1996, p. 13); ration; Dec. 4, 1996; (CA955694-CA955696). V-ONE Corporation; (CA955554-CA955556). V-ONE; SmartWall(TM) to Augment Defense Messaging System: RISS; Network Fundamentals; Regional Information Sharing Sys Protecting Highest Military Network; V-ONE Corporation; 1996; tems; Jun. 26, 2000; (CA955557-CA955573). (CA955697-CA955698). V-ONE; General Electric Information Services Teams with V-ONE V-ONE; SmartWall(TM) to Augment Defense Messaging System: In New Secure Internet Offering; First Deployment of V-ONE’s Protecting Highest Military Network; V-ONE Corporation; 1996; SmartGATE enables the World’s Only Smart Card Solution on the (CA955699-CA955700). Internet; (Reprinted from Business Wire, Feb. 9, I996); V-ONE V-ONE; V-ONE Announces SmartGate, Enabling Open and Secure Corporation; (CA955574-CA955576). Business Transactions on the Internet: New Class of Security Community Connexion; Mailing list archives; Community Con Product Allows Businesses to Build a Secure Transaction Environ neXion Announces Stronghold Version 1.2; Community Con ment with Existing Legacy or New Client/Server Applications; neXion, Inc.; Jul. 16, 1996; (CA955577). V-ONE Corporation; 1996; (CA95570l-CA955703). V-ONE; New and Noteworthy: A rundown of recent electronic V-ONE; V-ONE, Security Dynamics Announce Technological commerce products and services; (Reprinted from Computerworld, Interoperability: Security Dynamics’ Leading SecurID Authentica Feb. 5, 1996, vol. 30, No. 6); V-ONE Corporation; (CA955578 tion Compatible with V-ONE’s Top-Ranked Firewall, SmartWall; 955579). V-ONE Corporation; 1996; (CA955704-CA955706). V-ONE; CSI Firewall Matrix Search Results; SmartWALL; V-ONE V-ONE; General Electric Information Services Teams with V-ONE Corportation; (CA955580-CA955581), 1996. In New Secure Internet Offering; First Deployment of V-ONE’s CTI; Letter to Roger Loyer with attachment (Electronic Distribution SmartGATE Enables the World’s Only Smart Card Solution on the Facility: Responses to BayBank SystemsiRequest for Proposal; Internet; (Reprinted from Business Wire, Feb. 9, 1996) V-ONE Corporate Technologies, Inc.; Feb. 12, 1996; (CA955582 Corporation; (CA955707-CA955709). CA955597). V-ONE; V-ONE Corporation De?nes a New Class of Security V-ONE; Marcus J. Ranum; Electronic Commerce and Security; Products: Security Middleware; Industry’s First Security V-ONE Corporation; (CA955598-CA955604), 1996. Middleware product, SmartGATE, will be demonstrated at RSA Federal Computer Week; Advertisement; FCW.COM; (CA955605 Conference in Sand Francisco; V-ONE Corporation; 1996; CA955606), 1997. (CA9557l0-CA955713). GE Information Services; New Generations of Secure Internet V-ONE; MCI and V-ONE Corporation Announce Sales Alliance Commerce Unveiled by GE Information Services; GE Information Agreement; V-ONE Corporation; Jan. 27, 1997; (CA9557l4 Services; Feb. 6, 1996; (CA955607-CA955609). CA955716). RISS; Getting Connected; Regional Information Sharing Systems; V-ONE; V-ONE launches smart card at FSU; (Reprinted from Jun. 27, 2000; (CA9556l0-CA955625). Online Banking newsletter, Market intelligence for banking execu V-ONE; NSA Chooses V-ONE to Protect DMS Networks; tives, vol. 1, Issue 8, Mar. 11, I996); V-ONE Corporation; (Reprinted from Government Computer News, The National News (CA955717). paper of Government Computing, vol. 15, No. 8, Apr. 15, I996); V-ONE; Trusted Information Systems (TIS) Supports V-ONE’s V-ONE Corporation; (CA955626). Security Middleware Product SmartGates(TM): TIS To Support V-ONE; Paul Merenbloom; SmartGate Internet Security gives good SmartGATE Technology in Gauntlet Product Family; V-ONE Cor name to middleware: Lan Talk; (Reprinted from Infoworld, Feb. 19, poration; 1996; (CA9557l8-CA95572l). 1996); V-ONE Corporation; (CA955627-CA955629). V-ONE; Former Spyglass Vice President Joins V-ONE; V-ONE V-ONE; Nick Wing?eld; V-ONE promises ‘net security: Corporation; 1996; (CA955722-CA955723). SmartGATE client/ server tool encrypts across TCP/IP; (Reprinted V-ONE; V-ONE to Secure Oracle’s Database Network Products; from Infoworld, Internet, Dec. 11, I995); V-ONE Corporation; V-ONE Corporation; 1966; (CA955724-CA955725). CA955630-CA955631). V-ONE; V-ONE SmartWall Is Best In Infosecurity News Security V-ONE; Internet Firewalls Frequently Asked Questions; V-ONE Supplement; V-ONE Corporation; 1996; (CA955726-CA955727). Corporation; Marcus J. Ranum; l995; (CA955632-CA955643). V-ONE; Marcus Ranum, Father of Firewall Joins V-ONE as Chief V-ONE; New Network Security Products Spur On-line Interest; Scientist; V-ONE Corporation; 1996; (CA955728-CA955729). (Reprinted from Electronic Commerce News (PBI), Mar. 11, I996); V-ONE; Archived News Articles; V-ONE Corporation; (CA955730 V-ONE Corporation; (CA955644-CA955647). CA955732), 1996. RISSTech; BJ S/ Search National Conference Justice, E-Government RSA; Ciphertext: The RSA Newsletter; Vol. 4, No. 1, Spring 1996; & the Internet Developing Security Policies and Procedures; RSA Data Security, Inc., (CA955733-CA955740). Regional Information Sharing Systems; Jun. 27, 2000; (CA955648 Zboray, Michael R.; Securing Legacy TCP/IP Applications; Gartner, CA955679). Inc.; ID No. SPA-AUZ-024; Dec. 28, 1995; (CA955741 V-ONE; V-ONE Chisels Commerce Drawbridge In Internet CA955745). Firewalls; (Reprinted from Network Computing, Jan. 15, I996); V-ONE; Security Middleware: Beyond Firewalls; V-ONE Corpo V-ONE Corporation; (CA955680). ration; Revised: May 23, 1996; (CA955746-CA955747). US 7,290,288 B2 Page 8

V-ONE; VPN Deployment Lessons Learned; V-ONE Corporation; XCERT; Xcert Software’s Certi?cation Authority and Access Con (CA955748-CA955764), 1997. trol Technology Provides Privacy on Public Networks; Xcert Inter V-ONE; VPN Authentication Encryption Access Control; V-ONE national, Inc.; Jan. 27, 1997; (CA956542-CA956544). Corporation; (CA955765-CA955809), 2000. XCERT; Xcert Software Announces Support for Litronic V-ONE; SmartGATE; Secure Connectivity over an Untrusted Net NetSignTM; Xcert International Inc.; Jun. 11, 1997; (CA956545 work; V-ONE Corporation; Jan. 15, 1996; (CA955810-CA955815). CA956546). V-ONE; Resellers and Distributors; V-ONE Corporation; XCERT; Xcert’s New Certi?cation Authority and Access Control (CA955816-CA955820), 1997. Technology Offers Unprecedented Safeguards for Electronic Com Galvin, Peter; Trials and tribulations of building an e-commerce merce and Communications; Xcert International Inc.; Jun. 24, 1996; server; Security: Pete’s Wicked World; Apr. 1997; (CA955821 (CA956547-CA956549). CA955828). XCERT; Xcert Software is First to Demonstrate Certi?cation RISSTech; Federal CIO Council; XML Community of Practice; Authority (CA) Interoperability; Xcert International Inc.; Mar. 21, RISS/RISSNET Trusted Credential Project; Regional Information 1997; (CA956550). Sharing Systems; Feb. 16, 2005; (CA955829-CA955842). XCERT; Network Computing Magazine Names Xcert’s Sentry CA V-ONE, Form S-1; V-ONE Corp/De-Vone, Filed Jun. 21, 1996, as a ‘Well-Connected’ Award Nominee; Xcert International Inc.; General form of registration statement: Initial statement; Mar. 7, 1997; (CA956551-CA956552). (CA955843-CA956272). XCERT; Xcert Announces Co-Marketing Agreement to Reach V-ONE; Brian Santo; V-ONE Raises SmartGATE ; (Reprinted from Largest Internal Server Market; Xcert International Inc.; May 14, Electronic Engineering TIMES, Dec. 11, 1995); V-ONE Corpora 1996; (CA956552-CA956554). tion; (CA956273-CA956275). XCERT; Fischer International Systems Corporation and Xcert Soft V-ONE SmartGATETM A product of Security Middleware; V-ONE ware Inc demonstrate the ?rst web-based Certi?cate Authority to Corporation; 1996; (CA956276-CA956277). interoperate with hardware tokens; Xcert International Inc.; Nov. Going Public the IPO Reporter; Securities Data Publishing; 1996; 12, 1996; (CA956555-CA956557). (CA956278-CA956328). STRONGHOLD; Community ConneXion announces Stronghold V-ONE; Success Stories: Regional Law Enforcement Network version 1.2; Released: Jul. 16, 1996; Red Hat, Inc.; (CA956558 Reduces Violent Crime While Saving time and Money; Customer CA956559). Case Study: Regional Law Enforcement Network; V-ONE Corpo STRONGHOLD; Xcert announces co-marketing agreement to ration; (CA956329-CA956331), 1998. reach largest Internet server market; Released: May 13, 1996; Red V-ONE; Form S-1/A; V-ONE Corp/De-Vone, Filed Sep. 6, 1996, Hat, Inc.; (CA956560-CA956561). Amended Registration statement for face-amount certi?cate com Csinger, Andrew; Technology B.C. Application Form; InterSpect panies; (CA956332-CA956449). Systems Consulting Corp; OpenMed: a secure authentication pro V-ONE; V-ONE’s Executive Team; V-ONE Corporation; 1996; tocol for health care information transaction; (CA956562 (CA956450-CA956451). CA956584), 1997. V-ONE; Marcus Ranum; V-ONE’s Security Middleware Product Community Connextion, Inc.; Stronghold Version 1.3 User’s Guide; Suite; V-ONE Corporation; (CA956452-CA956458), 1997. Community ConneXion, Inc.; 1996; (CA956585-CA956614). XCERT; XUDA Speci?cation; Xcert Software, Inc.; (CA956459 Davis, Beth; Security CheckiDigital certi?cates slow to gain CA956460), 1997. users, despite strides; TechwebNews; CMP Media Inc.; Feb. 10, UDELL, Jon; Server and client certi?cates aren’t yet widely used 1997; (CA956615). for authentication, but that’s changing fast. Here’s a progress Davis, Beth; Digital Certi?cate Options Offered; TechwebNews; report; Web Project; Digital IDs; Mar. 19, 1997; (CA956461 CMP Media Inc.; Jan. 27, 1997; (CA956616). CA956468). Csinger, Andrew; Letters to the Editor; Certi?cation: Up and Cyberstore Systems Inc. et al.; OpenMed: Open Systems for Secure Running; (Reprinted from Web Week, vol. 2, Issue 18, Nov. 18, Health Care Information Transaction; OpenMed Business Plan; Jul. 1996; (CA956617). 29, 1995; (CA956469-CA956496). Parekh, Sameer; Re: WWW servers; Community ConneXion, Inc.; Cyberstore Systems Inc. et al.; InterMed and OpenMed: Open Jun. 6, 1996 10:41:26; (CA956618-CA956619). Systems for Secure Health Care Information Transaction; Mar. 31, Parekh, Sameer; Re: WWW servers; Community ConneXion, Inc.; Jun. 6, 1996 14:21:02; (CA956620-CA9566210). 1995; (CA956497-CA956503). Ford, Warwick; Computer Communications Security: Principles, XCERT; Sales FAQ (Frequently Asked Questions): Download and Standard Protocols and Techniques; PTR Prentice Hall; 1994; Support; Xcert Software, Inc.; (CA956504-CA956506), 1997. (CA956622-CA957126). Xcert; Sales FAQ (Frequently Asked Questions): Corporate and V-ONE; Smartgate: Making networks safe for business, Adminis Product Overview; Xcert Software, Inc.; 1996-1997; (CA956507 trator’s Guide; V-ONE Corporation; 1998; (CA957127 CA056510). CA957460). Federal Computer Week; Elizabeth Silkorovsky; Xcert aims to Wagner, Mitch; Vanguard makes ‘net link with clients (Reprinted simplify public key infrastructure. (Xcert Software’s Snetry Certi from Computer World, vol. 30, No. 8, Feb. 19, 1996); (CA957461 ?cation Authority data security software) (Product Announcement); CA957462). vol. 10, Issue 17, Jul. 1, 1996; (CA956511). XCERT; Xcert Your Authority; Can You get through this door?; Network Computing; Certi?cate Authorities: How Valuable Are Xcert Software Inc.; 1996-1997; (CA957463-CA957464). They?; Apr. 1, 1997; (CA956512-CA956517). Harreld, Heather; V-ONE launches its new federal division; FCW. CYBERSTORE; Certi?cation Authority; (CA956518-CA956528), COM; Mar. 3, 1997; (CA957465-CA-957466). 1997. V-ONE; V-ONE launches smart card at FSU; (Reprinted from Hinnebusch, Mark; Z3950 Implementors Workshop; Aug. 8, 1996; Online Banking newsletter, Market intelligence for banking execu (CA956529-CA956531). tives, vol. 1, Issue 8, Mar. 11, 2006); V-ONE Corporation; Richard, Patrick; Re: LDAP for logon?; May 21, 1996; (CA957467). (CA956532). XCERT; Can You get through this door?; Xcert Your Authority; RapoZa, Jim; Sentry CA cross-checks certi?cates: Xcert uses LDAP Xcert Software Inc.; 1996; (CA957468-CA957469). directory secured via SSL for ?exible authentication between ITU-T; Data Networks and Open System Communications, Secu authorities; PC Week Online; Apr. 16, 1997; (CA956533 rity; Information Technology4Open Systems CA956535). InterconnectioniSecurity Frameworks for Open Systems: Over XCERT; Software Sentry News Media Backgrounder; Xcert Inter view; ITU-T Recommendation X.810; International Telecommuni national Inc.; Apr. 17, 1996; (CA956536-CA956538). cation Union; 1996 (CA957470-CA957495). XCERT; Software Sentry Technology Announcement; Xcert Inter ITU-T; Data Networks and Open System Communications, Secu national Inc.; Apr. 18, 1996; (CA956539-CA956541). rity; Information Technology4Open Systems US 7,290,288 B2 Page 9

InterconnectioniSecurity Frameworks for Open Systems: Authen Scalable Security Software Can be used Worldwide; Ottawa, tication Framework; ITU-T Recommendation X811; International Ontario; Jul. 31, 1995; Northern Telecom; (VERI-1604928iVERI Telecommunication Union; 1996; (CA957496-CA957546). 1604929). ITU-T; Data Networks and Open System Communications Secu ENTRUST; Press Release; Choreo Systems and Northern Telecom rity; Information Technology4Open Systems (Nortel) Secure Networks Group Sign VAR Agreement; Ottawa, InterconnectioniSecurity Frameworks for Open Systems: Access Canada; Aug. 28, 1995; Northern Telecom; (VERI Control Framework; ITU-T Recommendation X812; International 1694930iVERI-1604932). Telecommunication Union; 1996; (CA957547-CA957594). ENTRUST; Press Release; Nortel Security Services Added to V-ONE; V-ONE, Software.com, and VNI Partner To Offer First TradeWave Internet Solutions; Integrated Security and Public Key Of-Its-Kind Secure Messaging: Sender Authentication and Guaran Management Now Available from Single Internet Services Vendor; teed Delivery Now Possible Through Post.O?‘ice(TM) with Austin, Texas; Sep. 25, 1995; Northern Telecom; (VERI SmartGATE(TM); V-ONE Corporation; 1996; (CA957595 1604933iVERI-1604935). CA957598). ENTRUST; Press Release; Northern Telecom (Nortel) First in North V-ONE; H?bler; Erick; CyberWallet Offered as Secure Way to America to Receive Computer Security Validation: Entrust Certi?ed Conduct Share Trading On-Line; (Reprinted from Securities Indus by US. and Canadian Agencies; Baltimore, Md; Oct. 10, 1995; try Daily, Internet Technology, vol. VII, No. 190, Sep. 29, 1995); Northern Telecom; (VERI-1604936iVERI-1604938). V-ONE Corporation; (CA957599-CA957601). ENTRUST; Press Release; Northern Telecom (Nortel) and V-ONE; V-ONE Leader in Providing Internet Security, Expands Milkyway Networks Introduce Security Solution to Business Reach Through Agreements with 14 Resellers: VARs Cite Hot Internet Users; Ottawa; Nov. 7, 1995; Northern Telecom; (VERI Market and Corporate Need for Secure Transactions Via Internet; 1604939iVERI-1604941). V-ONE Corporation; Sep. 9; (CA957602-CA957604), 1997. ENTRUST; Press Release; Nortel and LJL Enterprises Team to Offer Scalable and Secure E-Mail; Ottawa, Dec. 12, 1995; Northern XCERT; Sentry CA (Certi?cate Authority); Internet Security Tech Telecom; (VERI-16049242iVERI-1604943). nologies; Xcert International Inc.; 1997; (CA957605-CA957610). ENTRUST; Press Release; Linmor Information Systems Manage Galvin, Peter; Practicing what I preach: How I set up a secure ment Integrates Nortel Security Services into Nebula Network e-commerce site; Security: Pete’s Wicked World; 1997; Management System (NMS); Dec. 20, 1995; Northern Telecom; (CA957611-CA957615). (VERI-1604944iVERI-1604946). XCERT; Xuda: Xcert Universal Database API; Internet Security ENTRUST; Press Release; Hewlett-Packard Turns To Nortel For Technologies; Xcert International Inc.; (CA957616-CA957617), E-Mail Security Solution; San Francisco; Jan. 16, 1996; Northern 1996. Telecom; (VERI-l604947iVERI-1604948). Westlaw; [Compilation of various articles]; (VERI ENTRUST; Press Release; Nortel Introduces Next Generation Soft 1603872iVERI-1603900), 1993, 1994, 1996. ware For Secure Data Communications: Entrust 2.0 Designed for ENTRUST; Press Release; Northern Telecom introduces network Greater E?iciency and Ease of Use; San Francisco; Jan. 16, 1996; security solution to safeguard data privacy and authenticity; Mar. Northern Telecom; (VERI-1604949iVERI-1604951). 22, 1994; Washington, DC; Northern Telecom; (VERI ENTRUST; Press Release; Devon Software Corp. Announces 1604906iVERI-1604907). Kyberpass The First User Authenticating Firewall To Incorporate ENTRUST; Press Release; Northern Telecom and Zoomit Corpo Northern Telecom’s (Nortel) Entrust Data Security Software; ration Announces Secure Encryption and Authentication for Win Ottawa, ON.; Feb. 14, 1996; Northern Telecom; (VERI dows-Based LAN E-Mail Applications; Mar. 22, 1994; Nashville, 1604952iVERI-1604954). Tenn.; Northern Telecom; (VERI-1604908iVERI-1604910). ENTRUST; Press Release; ICL and Nortel Announce Collaboration ENTRUST; Press Release; Microsoft selects Northern Telecom’s For Large-Scale Enterprise Network Security X.500 Directory Entrust network security technology to provide security for Supports Entrust Security; Anaheim, California; Apr. 29, 1996; Microsoft Exchange Server; Oct. 17, 1994; Nashville, TN; Northern Northern Telecom; (VERI-1604955iVERI-1604956). Telecom; (VERI-1604911iVERI-1604912). ENTRUST; Press Release; Symantec and Nortel Team to Provide ENTRUST; Press Release; Northern Telecom’s Entrust Network Secure Electronic Forms for Enterprise; Anaheim, California; Apr. Security Product to Support National Semiconductor’s iPower 29, 1996; Northern Telecom; (VERI-l604957iVERI-1604959). PersonaCard Hardware Token; Nov. 29, 1994; Boston, Mass.; ENTRUST; Press Release; Nortel Issues Demonstration Certi?cates Northern Telecom; (VERI-1604913iVERI-1604914). for Internet Products Free Certi?cates Enable SSL; San Jose; Apr. ENTRUST; Press Release; Northern Telecom licenses security 30, 1996; Northern Telecom; (VERI-l604960iVERI-1604961). token technology from Chrysalls ITS for hardware extensions to ENTRUST; Press Release; Nortel Endorses S/MIME Speci?cation Entrust network security; Redwood Stores, CA; Jan. 9, 1995; Company Developing Toolkit for Secure Messaging Applications; Anaheim, California; Apr. 30, 1996; Northern Telecom; (VERI Northern Telecom; (VERI-1604915iVERI-1604916). 1604962iVERI-1604963). ENTRUST; Press Releases; Department of National Defence ENTRUST; Press Release; Entrust wins SCOAP awards of excel awards contract to Northern Telecom and Zoomit for secure e-mail lence; Ottawa; May 7, 1996; Northern Telecom; (VERI system; Toronto, Ontario; Mar. 22, 1995; Northern Telecom; 1604964iVERI-16904967). (VERI-1604917iVERI-1604918). ENTRUST; Press Release; Nortel Issues Demonstration Certi?cates ENTRUST; Press Releases; Control Data adds Nortel (Northern Available for Netscape Navigator 3.0; Chicago, Illinois; May 15, Telecom) Secure Networks’ public-key security product to message 1996; Northern Telecom; (VERI-1604968iVERI-1604969). integration solution; Entrust to provide Mail*Hub with security ENTRUST; Press Release; Harbinger Chooses Nortel to Provide services for electronic commerce; New Orleans, LA; May 8, 1995; Security for Electronic Commerce Solutions Entrust-aware Product Northern Telecom; (VERI-1604919iVERI-1604921). List Continues to Grow; Chicago, Illinois; May 15, 1996; Northern ENTRUST; Press Releases; Shana and Nortel (Northern Telecom) Telecom; (VERI-l604970iVERI-1604971). Secure Networks announce Informed’s support for Entrust; Col ENTRUST; Press Release; Nortel Provides Data Security Technol laboration offers authentication for Macintosh and Windows forms; ogy to PayPro Network; Jun. 5, 1996; Northern Telecom (VERI New Orleans; LA; May 8, 1995; Northern Telecom; (VERI 1604972iVERI-1604973). 1604922iVERI-1604924). ENTRUST; Press Release; IBM Adds Nortel’s Entrust Security ENTRUST; Press Releases; New network security system provides software to Its Internet-Commerce Portfolio; Somers, NY; Aug. 1, private, secure data communications using Nortel’s Entrust product; 1996; Northern Telecom; (VERI-1604974iVERI-1604976). Ottawa, May 15, 1995; Northern Telecom; (VERI ENTRUST; Press Release; Nortel Unveils Next Level of Entrust 1604925iVERI-1694927). Software for Secure Data Communications New Certi?cate Man ENTRUST; Press Release; Nortel Secure Networks Ships Version agement Features Set Entrust 2.1 Apart; Ottawa, Aug. 19, 1996; of Entrust Running on Windows, Macintosh and UNIX Platforms; Northern Telecom; (VERI-1604977iVERI-1694978). US 7,290,288 B2 Page 10

ENTRUST; Press Release; Hewlett-Packard to use Nortel’s Data ENTRUST; Press Release; Entrust Technologies? 3.0 Offers Users Security Technology; Ottawa; Aug. 27, 1996; Northern Telecom; and Network Managers Unmatched Security and Greater Flexibil (VERI-1604979iVERI-1604980). ity; Ottawa; Jun. 2, 1997; Northern Telecom; (VERI ENTRUST; Press Release; Cowboys Call on Northern Telecom 1605036iVERI-1605038). (Nortel) to Quarterback “Dallas Cowboys Online”; Dallas; Sep. 6, Secure Computing Corp; 10-KiFor Dec. 31, 1996; Annual 1996; Northern Telecom; (VERI-1604981iVERI-1604983). ReportiForm 10-K; SEC Info; (VERI-1605039iVERI ENTRUST; Press Release; Nortel’s Entrust Data Security Software 1605089). Chosen by Canadian Government to Provide Public -Key Infrastruc XCERT; Xcert Software Inc.; ./html-docs; Xcert Software Inc.; ture; Ottawa; Sep. 16, 1996; Northern Telecom; (VERI 1996; (VERI-1605090). 1604984iVERI-1604985). CHRYSALIS; Chrysalis-ITS; Safeguard the Keys to Electronic ENTRUST; Press Release; Apple, IBM, JavaSoft, Motorola, Commerce; Chrysalis-ITS, Inc.; (VERI-1605091iVERI Netscape, Nortel, Novell, RSA, and Silicon Graphics Announce 1605092), 1997. PICA Crypto-Alliance; Redwood City, Calif.; Oct. 17, 1996; North CHRYSALIS; Seminerio, Maria; Chrysalis-ITS; Chrysalis to debut ern Telecom; (VERI-1604986iVERI-1604989). encryption token card; PC Week OnLine Oct. 30, 1996 (reprinted); ENTRUST; Press Release; NYCE Chooses Nortel’s Entrust as (VERI-1605093iVERI-1605094). Network Security Solution Software; Dallas; Oct. 29, 1996; North Westlaw; Wilder, Clinton; E-Commerce gets real; Informationweek; ern Telecom; (VERI-1604990iVERI-1604991). Dec. 9, 1996; ProQuest Info&Learning; (VERI-1605153iVERI ENTRUST; Press Release; Northern Telecom (Nortel) Introduces 1605155). Web-Based Security Software Product Entrust/WebCA Enables Westlaw; Wilder, Clinton et al.; Trusting the Net; Informationweek; Web Session Security; Dallas; Nov. 11, 1996; Northern Telecom; Oct. 14, 1996; ProQuest Info&Learning; (VERI-1605156iVERI (VERI-1604992iVERI-1604993). 1605159). ENTRUST; Press Release; Northern Telecom (Nortel) and Tandem Westlaw; Messmer, Ellen et al.; Holiday networking extravaganza Sign Agreement Adding Entrust Security Technology to Tandem’s on tap; Network World; Dec. 9, 1996; ProQuest Info&Learning; Internet Commerce Offering; Ottawa; Nov. 15, 1996; Northern (VERI-1605160iVERI-1605163). Telecom (VERI-1604994iVERI-1604995). Westlaw; Darrow, Barbara; Web produces product storm; Computer ENTRUST; Press Release; Nortel (Northern Telecom) forms Reseller News; Dec. 9, 1996; ProQuest Into&Learning; (VERI Entrust Technologies to Focus on Enterprise Security Market; 1605164iVERI-1605166). Dallas; Jan. 2, 1997; Northern Telecom; (VERI-1604996iVERI Westlaw; Jones, Chris; SGI will soon deliver virtual-store tools; 1694998). InfoWorld; Dec. 23/30, 1996; ProQuest Info&Learning; (VERI ENTRUST; Press Release; Entrust® Technologies’CAST Encryp 1605167iVERI-1605168). tion Algorithm Now Avaliable for Free Commercial and Non Westlaw; Newing, Rod; A new computing achritecture is coming; commercial Use; Ottawa; Jan. 24, 1997; Northern Telecom (VERI Management Accounting-London; Dec. 1996; ProQuest Info 1694999iVERI-1605000). &Learning; (VERI-1605169iVERI-1605173). ENTRUST; Press Release; Entrust Technologies Unveils Entrust/ Westlaw; Jones, Chris; OM-Transact connects to invoice and order ICE Desktop Encryption Product; Jan. 27, 1997; Northern Telecom; ing systems; Infoworld; Dec. 9, 1996; ProQuest Info&Learning; (VERI-1605002iVERI-1605003). (VERI-1605174iVERI-1605175). ENTRUST; Press Release; JetForm and Entrust Technologies Westlaw; Wagner, Mitch; Open Market upgrade will support big Announce Worldwide Alliance to Provide Adavanced Security business on ’net; Computerworld; Dec. 9, 1996; ProQuest Into Solutions for Forms-Based Work?ow and Intranet Applications; San Francisco; Jan. 27, 1997; Northern Telecom; (VERI &Learning; (VERI-1605176iVERI-1605177). 1605004iVERI-1605007). Westlaw; Masud, Sam; OpenMarket hopes to cash in on electronic ENTRUST; Press Release; Entrust Technologies Names John Ryan commerce; Computer Reseller News; Oct. 28, 1996; ProQuest CEO and Announces Headquarters; Jan. 27, 1997; Northern Info&Learning; (VERI-1605178iVERI-1605179). Telecom; (VERI-1605008iVERI-1605009). Westlaw; Wexler, Joanie; AT&T rounds out E-commerce line; ENTRUST; Press Release; Entrust Technologies Launches Partner Network World; Oct. 14, 1996; ProQuest Info&Learning; (VERI Program; Ottawa; Jan. 27, 1997; Northern Telecom; (VERI 1605180iVERI-1605181). 1605010iVERI-1605014). Westlaw; Prince, Cheryl J .; building an Internet payments franchise; ENTRUST; Press Release; Information Security Corporation and Bank Systems & Technology; Sep. 1996; ProQuest Info&Learning; Entrust Technologies Announce SecretAgent to Work with Entrust; (VERI-1605182iVERI-1605183). Jan. 27, 1997; Northern Telecom; (VERI-1605015iVERI Westlaw; Bowen, Ted Smalley; Powersoft hones Internet tool 1605017). strategy ; InfoWorld; Aug. 26, 1996; ProQuest Into&Learning; ENTRUST; Press Release; Entrust Technologies Demonstrates (VERI-1605184iVERI-1605185). Interoperability with Multiple Secure E-Mail Products; Philadel Westlaw; Dunlap, Charlotte; Open Market woos Web Integrators; phia; Apr. 7, 1997; Northern Telecom; (VERI-1605018iVERI Computer Reseller News; Aug. 5, 1996; ProQuest Info&Learning; 1605020). (VERI-1605186iVERI-1605187). ENTRUST; Press Release; Entrust Technologies Now Shipping Westlaw; Wilder, Clinton; E-commerce hosting services to expand; Entrust/WebCA and Entrust/ICE; Philadelphia; Apr. 7, 1997; North Informationweek; Jul. 22, 1996; ProQuest Info&Learning; (VERI ern Telecom; (VERI-1605021iVERI-1605022). 1605188). ENTRUST; Press Release; Entrust Strengthens Data Security for Westlaw; Davis, Jessica; Novell commerce server slides; Microsoft Exchange; Philadelphia; Apr. 7, 1997; Northern Telecom; InfoWorld; July 8, 1996; ProQuest Info&Learning; (VERI (VERI-1605023iVERI-1605024). 1605189iVERI-1605190). ENTRUST; Press Release; Entrust Technologies? New Toolkit Will Westlaw; Kruger, Peter; The net takes its toll; Communications Accelerate Deployment of Internet Applications; Ottawa; Apr. 28, International; May 1996; ProQuest Info&Learning; (VERI 1997; Northern Telecom; (VERI-1605025iVERI-;1605028). 1605191iVERI-1605193). ENTRUST; Press Release; Digital Equipment Corporation to Resell Westlaw; Damore, Kelley; Hardware makers hit the market with Entrust Technologies? Enterprise Security Products; Ottawa; Apr. server bundles; Computer Reseller News; May 13, 1996; ProQuest 29, 1997; Northern Telecom; (VERI-1605029iVERI-1605031). Info&Learning; (VERI-1605194iVERI-1605195). ENTRUST; Press Release; Entrust Technologies Sweeps Presti Westlaw; (Anonymous); Retail technology online; Chain Store Age; gious Awards at NetWorld+Interop; Las Vegas; May 7, 1997; May 1996; ProQuest Info&Learning; (VERI-1605196iVERI Northern Telecom; (VERI-1605032iVERI-1605034). 1605198). ENTRUST; Press Release; Salomon Brothers Chooses Entrust Westlaw; (Anonymous); Open Market unleashes new class of Web Product Suite as Data Security Solution; New York; May 27, 1997; software; Information Today; Apr. 1996; ProQuest Infro&Learning; Northern Telecom; (VERI-1605043iVERI-1605035). (VERI-1605199iVERI-1605202). US 7,290,288 B2 Page 11

Westlaw; Rodriguez, Karen; Open market targets business; Com Westlaw; Poole, Jackie; Commerce-enabled sites from ANS; municationsWeek; Mar. 11, 1996; ProQuest Info&Learning; InfoWorld; Jul. 21, 1997; ProQuest Info&Learning; (VERI (VERI-1605203). 1605288iVERI-1605289). Westlaw; Willet, Shawn; Novell to license java, build online tools; Westlaw; Pappalardo, Denise; ISPs dress up Web hosting services; Computer Reseller News; Mar. 18, 1996; ProQuest Info&Learning; Network World; Jul. 28, 1997; ProQuest Info&Learning; (VERI (VERI-1605204iVERI-1605205). 1605290iVERI-1605291). Westlaw; Messmer, Ellen; Open Market software seperates Web Westlaw; Carr, Jim; Users wade through electronic-commerce mar content, transaction management; Network World; Mar. 11, 1996; ket; InfoWorld; Jun. 23, 1997; ProQuest Info&Learning; (VERI ProQuest Info&Learning; (VERI-1605206iVERI-1605207). 1605292iVERI-1605296). Westlaw; Krill, Paul; Novell to adopt Java, ActiveX architectures; Westlaw; Messmer, Ellen; Start-up’s service dodges ’Net sales tax; InfoWorld; Mar. 25, 1996; ProQuest Info&Learning; (VERI Network World; Jun. 30, 1997; ProQuest Info&Learning; (VERI 1605208iVERI-1605210). 1605297iVERI-1605298). Westlaw; Nash, Kim S.; Open Market aids Web site upkeep; Westlaw; Wagner, Mitch; Start-up will outsource ’net transactions; Computerworld; Mar. 11, 1996; ProQuest Info&learning; (VERI Computerworld; Jun. 30, 1997; ProQuest Info&Learning; (VERI 1605211iVERI-1605212). 1605299iVERI-1605300). Westlaw; Maddox, Kate; New Net options for business; Westlaw; (Anonymous); Open Market to acquire Folio Corporation; Informationweek; Mar. 4, 1996; ProQuest Info&Learning; (VERI Information Today; Apr. 1997; ProQuest Info&Learning; (VERI 1605213). 1605301iVERI-1605302). Westlaw; Wilson, Donald C.; Highest and best use; Preservation use Westlaw; Orenstein, Alison F.; Banks help merchants tap Internet of envirnmentally signi?cant real estate; Appraisal Journal; Jan. ‘sales ?oor’; Bank Systems & Technology; Apr. 1997; ProQuest 1996; ProQuest Infro&Learning; (VERI-1605214iVERI-16 Info&Learning; (VERI-1605303iVERI-1605304). 05226). Westlaw; Harrison, Ann; Reach out and buy something; Software Westlaw; Walsh, Jeff; Open Market announces StieDirector 4.1; Magazine; Apr. 1997; ProQuest Info&Learning; (VERI InfoWorld; Dec. 15, 1997; ProQuest Info&Learning; (VERI 1605305iVERI-1605309). 1605227iVERI-1605228). Westlaw; CoX, John; Cadis brings organization to the Web; Network Westlaw; Engler, Natalie; The second coming of electronic com World; Feb. 10, 1997; ProQuest Info&Learning; (VERI merce; Computerworld; Dec. 15, 1997; ProQuest Info&Learning; 1605310iVERI-1605311). Westlaw; Jones, Chris; iCat and Cadis link online database to Web; (VERI-1605229iVERI-1605234). InfoWorld; Feb. 10, 1997; ProQuest Info&Learning; (VERI Westlaw; Millman, Howard; Pro?t ploys for increased income; 1605312iVERI-1605313). InfoWorld; Nov. 3, 1997; ProQuest Info&Learning; (VERI Westlaw; Jones, Chris; Vendors back SET protocol with product 1605235iVERI-1605237). announcements; InfoWorld; Feb. 3, 1997; ProQuest Info&Learning; Westlaw; Fulcher, Jim; Shopping made easy; Manufacturing Sys (VERI-1605314iVERI-1605315). tems; Oct. 1997; ProQuest Info&Learning; (VERI Westlaw; Masud, Sam; iCat signs 120 VARs, Ingram Micro; com 1605238iVERI-1605239). puter Reseller News; Jan. 13, 1997; ProQuest Info&Learning; Westlaw; Guenette, David R.; Enterprising information; EMedia (VERI-1605316iVERI-1605317). Professional; Nov. 1997; ProQuest Info&Learning; (VERI Westlaw; Wilson, Donald C.; The principle of rank substitution; 1605240iVERI-1605251). Appraisal Journal; Jan. 1997; ProQuest Info&Learning;(VERI Westlaw; Wilder, Clinton; Focus on e-commerce; Informationweek; 1605318iVERI-1605331). Oct. 6, 1997; ProQuest Info&Learning; (VERI-1605252iVERI XCERT; XUDA Speci?cation; Xcert Software, Inc.; (VERI 1605253). 1605335iVERI-1605337), 1996. Westlaw; Symoens, Jelf; Integration is key to Commerce; Chrysalisl Chrysalis-ITS; Canadian Department of National InfoWorld; Oct. 13, 1997; ProQuest Info&Learning; (VERI Defense Installs Integrated Information Security solutions from 1605254iVERI-1605255). Chrysalis; Mergent International, and Northern Telecom (Nortel) Westlaw; Bucholtz, Chris; E-entrepreneurs make their mark; Tele Top Information Security Vendors Combine Solutions to Provide a phony, Internet Edge Supplement; Oct. 6, 1997; ProQuest Info High Level of Security to DND in Ottawa; Rocky Hill, Conn. (Apr. &Learning; (VERI-1605256iVERI-1605259). 19, 1996); (VERI-1605384iVERI-1605385). Westlaw; Wilder, Clinton; Distributors get their own shot at Web ENTRUST; Entrust Technologies White paper; Implementing sales; Informationweek; Sep. 8, 1997; ProQuest Info&Learning; Cryptoki Libraries for Entrust®; Jun. 1997; Version 1.2; Entrust (VERI-1605260iVERI-1605261). Technologies; (VERI-1605386iVERI-1605400). Westlaw; Edwards, Morris; The electronic commerce juggernaut; Comp.Security.UniX; secure ID cards; which is best?; Google Communications News; Sep. 1997; ProQuest Info&Learning; Groups; 1994; (VERI-1605401iVERI-1605404). (VERI-1605262iVERI-1605265). Neumann, Peter G.; Architectures and Format Representations for Westlaw; Mohan, Suruchi; Effective Internet commerce to hinge on Secure Systems; Computer Science Laboratory; SRI International directors; InfoWorld; Sep. 8, 1997; ProQuest Info&Learning; EL-243; Oct. 2, 1995; Final Report; SRI Project 6401; (VERI 1605407iVERI-1605564). (VERI-1605266iVERI-1605270). Byte; Kay, Russell; Jun. 1994/ Special Report;/Distributed and Westlaw; Symoens, Jeff; Transact 3.0; Scalable solution; InfoWorld; Secure; When you distribute information and processing, you also Sep. 8, 1997; ProQuest Info&Learning; (VERI-1605271iVERI delegate security responsibility. Good access controls, eyes-open 1605273). administration, and communications encryption can make all the Westlaw; Jones, Chris; Selling online; InfoWorld; Mar. 17, 1997; difference; BYTE.com; CMP Medial LLC; (VERI ProQuest Info&Learning; (VERI-1605274iVERI-1605275). 1605576iVERI-1605587). Westlaw; (Anonymous); Web sheet; Manufacturing Systems; Aug. ENTRUST; Entrust Technologies: Team Pro?les; Entrust Technolo 1997; ProQuest Info&Learning; (VERI-1605276). gies; (VERI-1605595iVERI-1605599), 1997. Westlaw; Michel, Roberto; The ’Net bene?ts; Manufacturing Sys Secure Computing; LockoutTM Identi?cation and Authentication; tems; Feb. 1997; ProQuest Info&Learning; (VERI Nov. 8, 1996; Secure Computing Corporation; (VERI 1605277iVERI-1605282). 1605606iVERI-1605607). Westlaw; Dunlap, Charlotte; Open Market inks alliance with Port Secure Computing; internet security; Victimized company learns a land Software; Computer Reseller News; Aug. 18, 1997; ProQuest hard lesson; vol. 1, No. 3, Apr. 1997; Secure Computing Corpora Info&Learning; (VERI-1605283iVERI-1605284). tion; (VERI-1605623iVERI-1605626). Westlaw; Wilder, Clinton et al.; Publishing outside the enterprise; Secure Computing; internet security; Just How Critical is Data Informationweek; Aug. 4, 1997; ProQuest Info&Learning; (VERI Integrity?; vol. 1, No. 1; Feb. 1997; Secure Computing Corporation; 1605285iVERI-1605287). (VERI-1605627iVERI-1605630). US 7,290,288 B2 Page 12

Secure Computing; internet security; Payne, Data; Elvis spotted?; IRE; News Release; IRE’s Internet Security System Chosen as Best Viol. 1, No. 2, Mar. 1997; Secure Computing Corporation; (VERI of Show Finalist for Interop 1996; Baltimore, Maryland; Sep. 16, 1605631iVERI-1605634). 1996; Information Resource Engineering; (VERI-1605821iVERI Kent, Stephen Thomas; Encryption-Based Protection Protocols for 1605822). Interactive User-Computer Communication Over Physically Unse IRE; News Release; IRE to Expand Distribution Channels in the cured Channels; Massachusetts Institute of Technology; Jun. 1976; US; Names New Sales Executive to Lead the Development; (VERI-1605635iVERI-1605755). Baltimore, Maryland; May 20, 1997; Information Resource Engi ENTRUST; Curry, Ian; Entrust Technologies; Entrust® Key Man neering; (VERI-1605823iVERI-1605824). agement Overview; Apr. 1996, Version 1.4; Entrust Technologies; IRE; News Release; IRE Reports Improved Financial Results; (VERI-1605756iVERI-1605762). Baltimore, Maryland; Mar. 12, 1997; Information Resource Engi Secure Computing; LockoutTM DES; Client software; Nov. 8, 1996; neering; (VERI-1605825iVERI-1605826). Secure Computing Corporation; (VERI-1605766iVERI IRE; News Release; IRE Frame Relay Encryptor Makes Business 1605767). on High Speed Computer Networks a Reality; SafeNet/Frame Secure Computing; LockoutTM DES; LockoutTM login agent and Currently Showcasing at NetWorld+Interop; Baltimore, Maryland; authentication server; Nov. 8, 1996; Secure Computing Corpora May 8, 1997; Information Resource Engineering; (VERI tion; (VERI-l605768iVERI-1605769). 1605827iVERI-1605828). Secure Computing; LockoutTM FORTEZZA; Strong identi?cation IRE; News Release; US. Robotics and IRE Team to Announce and authentication; Nov. 8, 1996; Secure Computing Corporation; Industry’s First Complete Remote Access and Encryption System (VERI-1605770iVERI-1605771). for Individuals, Enterprises and the Internet; New Strategic Rela Secure Computing; LockoutTM DES; Identi?cation and authentica tionship, Including x2, Expected to accelerate Electronic Commerce tion; 1995; Secure Computing Corporation; (VERI and Remote Access Over Internet and Public Networks; May 7, 1605772iVERI-1605773). 1997; Information Resource Engineering; (VERI-1605829iVERI Westlaw; Premenos and Open Market Announce Strategic OEM 1605831). Alliance; PR Newswire; Mar. 4, 1996; The Gale Group; (VERI IRE; News Release; IRE to Showcase Low Cost Smartcard Security 1605774iVERI-1605775). Token; Baltimore, Maryland; May 1, 1997; Information Resource Westlaw; Frank, Diane; The new ROI in point of sale; Datamation; Engineering; (VERI-1605832iVERI-1605833). The Gale Group; (VERI-1605776), 1997. IRE; News Release; IRE Introduces Encryption Software for Win Misc.Activism.Progressive; HorvitZ; Robert; Nato support for key dows; Baltimore, Maryland; Apr. 24, 1997; Information Resource escrow crypto (long); Google Groups; 1995; (VERI Engineering; (VERI-1605834iVERI-1605835). 1605777iVERI-1605793). IRE; News Release; IRE to Penetrate Japanese Market Through IRE; New Release; IRE ships 3,000Lh SafeNet? Product for secure Distribution Agreement with Kanematsu; Baltimore, Maryland; Intranet use; Baltimore, Maryland; May 23, 1996; Information Mar. 31, 1997; Information Resource Engineering; (VERI Resource Engineering; (VERI-l605800iVERI-l60580l). 1605836iVERI-1605838). IRE; News Release; IRE SafeNetTM Products Achieve Interoper IRE; News Release; IRE Reports 1996 Financial Results; Balti ability in Industry Workshop; Baltimore, Maryland, Oct. 15, 1997; more, Maryland; Mar. 24, 1997; Information Resource Engineering; Information Resource Engineering; (VERI-1605802iVERI (VERI-1605839iVERI-1605840). 1605803). IRE; New Release; IRE’s Highly Secure Encryption Systems Now IRE; News Release; IRE Smartcard/Readers to be Used in US. Available for Sale Worldwide; Company Receives Export Approval Treasure Electronic Check Pilot Program; Baltimore, Maryland, from Commerce Department; Baltimore, Maryland; Mar. 14, 1997; Oct. 8, 1997; Information Resource Engineering; (VERI Information Resource Engineering; (VERI-1605841iVERI 1605804iVERI-1605805). 1605842). IRE; News Release; State of Maryland Services to Go On-Line IRE; News Release; IRE Subsidiary Introduces Highly Secure Using IRE SafeNetTM Products; Vehicle Registration Among Gov Frame Relay Encryptor for Computer Transmission; Both 128-bit ernment Services to be Available on the Internet; Baltimore, Mary and DES Algorithms Are Offered; Baltimore, Maryland; Mar. 12, land; Sep. 22, 1997; Information Resource Engineering; (VERI 1997; Information Resource Engineering; (VERI-1605843iVERI 1605806iVERI-1605807). 1605844). IRE; News Release; Industry Executive Joins IRE to Lead OEM Effort; Interest in Low-Cost SafeNet Technology Results in New IRE; News Release; Internet Security for the Millennium Available Sales Channel; Baltimore, Maryland; Sep. 17, 1997; Information Now; Year 2000 Compliance Makes SafeNetTM the Security Solu tion for Tomorrow’s Electronic Business; Baltimore; Maryland; Resource Engineering; (VERI-1605808iVERI-1605809). Dec. 4, 1997; Information Resource Engineering; (VERI IRE; News Release; IRE SafeNet Products Protect Consumer Credit Applications on the Internet; Baltimore, Maryland; Sep. 3, 1997; 1605845iVERI-1605846). Information Resource Engineering; (VERI-1605810iVERI IRE; News Release; Dan Mosley Joins IRE Advisory Board; 1605 81 1). Baltimore, Maryland; Mar. 10, 1997; Information Resource Engi IRE; News Release;-IRE Reports Strong Financial Growth; Balti neering; (VERI-1605847iVERI-1605848). more, Maryland; Aug. 11, 1997; Information Resource Engineering; IRE; News Release; Vint Cerf to Serve on IRE Advisory Board; (VERI-1605812iVERI-1605813). Baltimore, Maryland; Feb. 18, 1997; Information Resource Engi IRE; News Release; IRE Products to Secure Virtual Banking neering; (VERI-1605849iVERI-1605850). System in Argentina; Baltimore, Maryland; Aug. 6, 1997; Informa IRE; News Release; TRW Purchases IRE Encryption Systems to tion Resource Engineering; (VERI-1605814iVERI-1605815). Protect T reassure communications Nationwide; Baltimore, Mary IRE; News Release; IRE Announces New Chief Financial O?‘icer; land; Feb. 13, 1997; Information Resource Engineering; (VERI Baltimore, Maryland; Jul. 21, 1997; Information Resource Engi 1605851iVERI-1605852). neering; (VERI-1605816). IRE; News Release; IRE Demonstrates Standard Compliant/Public IRE; News Release; IRE and Lockheed Martin IS&T Form Strate Key Leadership for Internet Virtual Private Networks; Industry test gic Alliance to Offer Turn-Key Secure Electronic Commerce; Jul shows SafeNet/Enterprise capable of secure Internet interoper 16, 1997; Information Resource Engineering; (VERI ability; Baltimore, Maryland; Feb. 11, 1997; Information Resource 1605817iVERI-1605818). Engineering; (VERI-1605853iVERI-1605854). IRE; News Release; IRE Signi?cantly Expands Distribution in IRE; News Release; Former United States Treasury Secretary to Latin America Adds Eight Major Distribution Channels; Baltimore, Chair IRE Advisory Board; Baltimore, Maryland; Feb. 5, 1997; Maryland; Jun. 3, 1997; Information Resource Engineering; (VERI Information Resource Engineering; (VERI-1605855iVERI 1605819iVERI-1605820). 1605856). US 7,290,288 B2 Page 13

IRE; News Release; IRE and Analog Devices to Provide Low-Cost, IRE; News Release; IRE SafeNetTM Products to Protect GTE’s Secure Communications Chip for Electronic Commerce; Jan. 9, Internet-based Crime Fighting Service; Information Resource Engi 1997; Information Resource Engineering; (VERI-1605857iVERI neering; Baltimore, Maryland; Oct. 29, 1997; (VERI 1605859). 1605897iVERI-1605898). IRE; News Release; IRE to Product Revolutionary Low-Cost IRE; News Release; IRE Debuts SafeNetTM Partner Program, Secure Communications Chip; Baltimore, Maryland; Jan. 9, 1997; Increases Availiability of Industry-Leading Internet Security Solu Information Resource Engineering; (VERI-1605860iVERI tions; Information Resource Engineering; Baltimore, Maryland; 1605861). Oct. 21, 1997; (VERI-1605889iVERI-1605900). IRE; News Release; IRE Announces Montgomery Securities as Open Market, Inc.; Open Market and iCat Strengthen Partnership; Investment Banking Adivser and Market Maker; Baltimore, Mary PRNewswire; Cambridge, Mass.; Apr. 8; (VERI-1605901iVERI land; Jan. 6, 1997; Information Resource Engineering; (VERI 1605903), 1997. 1605862). Open Market, Inc.; Open Market, Interleaf Team on Web “Secure IRE; News Release; SafeNet Certi?ed as Providing Strongest Doc Mgt”; Washingtonpost Newsweek Interactive; Waltham, Mas Security For Internet; New Designation to Give IRE a Competitive sachusetts; Mar. 5, 1996; (VERI-1605905iVERI-1605906). Edge; Baltimore, Maryland; Nov. 24, 1997; Information Resource Open Market, Inc.; Open Market’s “3-Tier Architecture” For Web; Engineering; (VERI-1605863iVERI-1605864). Washingtonpost Newsweek Interactive; Waltham, Massachusetts; Mar. 14, 1996; (VERI-1605907iVERI-1605908). IRE; News Release; IRE Reports Third Quarter Results; Baltimore, Comp.Security.UniX; password encryption (security) over net Maryland; Nov. 14, 1996; Information Resource Engineering; works; Google Groups; 1994; (VERI-1605917iVERI-1605919). (VERI-1605865iVERI-1605866). RSA; Baldwin, Robert; Using S/PAYTM; Jan. 30, 1997; RSA Data IRE; News Release; IRE and MCI Announce Sales and Marketing Security, Inc; (VERI-1605920iVERI-1606010). Agreement for Secure Internet Products and Services; Nov. 14, IRE; IRE and CyberGuard Announce Virtual Private Network 1996; Information Resource Engineering; (VERI-1605867iVERI Security Solution for Enabling Low Cost Internet Business Com 1605868). munication; SafeNet/EnterpriseiEnables the Secure Use of Public IRE; News Release; IRE adds International Sales VP; Baltimore, Networks for Private Business Transactions; Atlanta, GA (Sep. 17, Maryland; Nov. 12, 1996; Information Resource Engineering; 1996); Information Resource Engineering, Inc.; (VERI (VERI-1605869). 1606027iVERI-1606029). IRE; News Release; IRE’s MMCI Relationship Likely to Become Payserv; TBSS (Telematic Base Security Services); Approved pro Marketing Alliance; Baltimore, Maryland; Oct. 18, 1996; Informa cedures and mechanisms for the protection of electronic data tion Resource Engineering; (VERI-1605870iVERI-1605871). communications; IBO’920 353 12.96; Version 1.2; Dec. 6, 1996; IRE; News Release; U.S. Treasure Renews Contract with IRE for (VERI-1606053iVERI-1606091). Secure Electronic Commerce System; IRE’s Network Security European Search Report dated Nov. 3, 2004 of European Applica Products in Use Since 1991; Baltimore, Maryland; Oct. 15, 1996; tion No. 011128592; (VERI-1606092iVERI-1606094). Information Resource Engineering; (VERI-1605872iVERI Secure Computing; SNS support and training services, World class; 1605873). Secure Computing Corporation offers a variety of LOCK® Secure IRE; News Release; US. Secret Service Using IRE’s Secure Network Server Installation, Training, and Maintenance programs; Modem During presidential Campaign; Baltimore, Maryland; Sep. 1996; (VERI-1606103iVERI-1606106). 26, 1996; Information Resource Engineering; (VERI Secure Computing; Secure Computing Demonstration Software; 1605874iVERI-1605875). Check out our demos for LOCKoutTM and SidewinderTM; Secure IRE; News Release; IRE Receives Patent for Secure Potable Computing Corporation; 1995; (VERI-1606130). Modem; Baltimore, Maryland; Sep. 9, 1996; Information Resource Smith, Sean; Secure Coprocessing Applications and Research Engineering; (VERI-1605878iVERI-1605879). Issues; Computer Research and Applications Group (CIC-3); Los IRE; News Release; IRE and Cyberguard Partner to Provide Com Alamos National Laboratory; Los Alamos Unclassi?ed Release plete Security Solution for Internet Business Communication; Aug. LA-UR-96-2805; Aug. 1, 1996; (VERI-1606131iVERI-1606147). 8, 1996; Information Resource Engineering; (VERI RSA; S/PAYTM; RSA’s Developer’s Suite for Secure Electronic 1605880iVERI-1605882). Transactions (SET); RSA Data Security, Inc.; 1996; (VERI IRE; News Release; France Telecom’s NeXus International Joins 1606148iVERI-1606151). IRE to Expand BraZil’s Network Security Market; Baltimore, Secure Computing; SidewinderTM Security Server; Apr. 1997; Maryland; Nov. 18, 1997; Information Resource Engineering; Secure Computing Corporation; (VERI-1606152iVERI (VERI-1605883iVERI-1605884). 1606153). IRE; News Release; IRE Takes Lead in Building Secure Foundation Secure Computing; Press Release; Secure Computing Announces Immediate Availability of Sidewinder 3.0; Security Server Employs for Electronic Commerce on the Internet; Partners with NIST to Develop Public Key Standards; Baltimore, Maryland; Jul. 24, 1996; Fully Integrated Perimeter Security, IPsec Interoperable Encryption, Strong User Authentication, and E-mail Content Filtering: St. Paul, Information Resource Engineering; (VERI-1605885iVERI Minn (Sep. 17, 1996); Secure Computing Corporation; (VERI 1605886). 1606154iVERI-1606155). IRE; News Release; IRE’s Internet Security Center Now On-Line Secure Computing; Whats New?; Secure Computing Corporation; Appoints Dr. Garry Meyer as Managing Director; Baltimore, Mary 1996; (VERI-1606156iVERI-1606157). land; Jul. 11, 1996; Information Resource Engineering; (VERI Fischer International; Smarty; SmartyTM Smart Card Reader; 1605887iVERI-1605888). Executive Summary; Fischer International Systems Corporation; IRE; News Release; Sun Mircosystems Internet Commerce Group 1997; (VERI-1606164iVERI-1606174). and IRE to Link and Distribute Products for Secure Commerce on Secure Computing; SNS Deployments; (Last Updated Mar. 17, the Internet; Apr. 2, 1996; Information Resource Engineering; 1997); Secure Computing Corporation; (VERI-1606175). (VERI-1605891iVERI-1605892). Secure Computing; SNS MLS Solution Set; (Last Updated Mar. 17, IRE; News Release; IRE Subsidiary Wins Contract; Will Secure 1997); Secure Computing Corporation; (VERI-1606176iVERI Swiss Electronic Payment System; Baltimore, Maryland; Nov. 12, 1606177). 1997; Information Resource Engineering; (VERI-1605893iVERI Secure Computing; SNS Product Evolution; (Last Updated Mar. 17, 1605894). 1997); Secure Computing Corporation; (VERI-1606178iVERI IRE; News Release; Strong SafeNetTM Sales Result in Third Quarter 1606179). Revenue Growth for IRE; Information Resource Engineering Bal Westlaw; Virtual Open Network Environment Corp.; Going Public; timore, Maryland; Nov. 6, 1997; (VERI-1605895iVERI Aug. 19, 1996; vol. 20; Issue 34; Securities Data Publishing; 1605896). (VERI-1606750iVERI-1606751). US 7,290,288 B2 Page 14

Westlaw; Card Briefs: On-Line Security Eyed for Florida St. ID Westlaw; Section: Business; ACME Sets Agreement to Market Tool; American Banker; Jun. 17, 1996; vol. 161; Issue 115; (VERI Power Unit; Buffalo News; Feb. 22, 1993; (VERI-1606806). 1606752). Westlaw; Humphrey, John H. et al.; Comparison tests streamline Westlaw; V-ONE Securing Payments with Enhanced Firewalls; complex dial-up modem measurements and spring some surprises, Retail Delivery News; Jun. 7, 1996; vol. 1; Issue 12; (VERI Electronic Design; May 1987; vol. 35; (VERI-1606807iVERI 1606753iVERI-1606754). 1606811). Westlaw; Internet Security & Privacy; V-ONE and Software.com Westlaw; Extruded tubing wall thickness; Modern Plastics; May Provide Secure Messaging; Internet Content Report; Jun. 1, 1996; 1986; (VERI-1606812). vol. 1, Issue 6; (VERI-1606755). Westlaw; Murphy, Brian; Telecommunications talk; magazines on Westlaw; Technology: Crackdown on Internet security; Financial line, new bulletin boards; and new products; Creative Computing; Times Mandate; May 30, 1996; (VERI-1606756). Jan. 1985; vol. 11; (VERI-1606813iVERI-1606816). Westlaw; VeriSign Announces New Partners; Report on Smart Westlaw; Making Net Management Easier; Sinocast; Dec. 22, 1997; Cards; May 6, 1996, vol. 10; Issue 9; (VERI-1606757). (VERI-1606827iVERI-1606828). Westlaw; Items of Interest; Report on Smart Cards; May 6, 1996; Westlaw; Chrysalis-ITS Introduces LunaCA; Cryptography System vol. 10; Issue 9; (VERI-1606758iVERI-1606759). Adds Trust and Assurance to PKI Certi?cation Authority; Sinocast; Westlaw; Gengler, Barbara; V-ONE, Rockville, Md. (SmartGATE Nov. 10, 1997; (VERI-1606829iVERI-1606830). secure transaction technology for client/ server applications (Product Westlaw; Hummingbird Gets Secure Java; ENT; Sep. 24, 1997; Information) (Brief Article); INTERNETWORK; vol. 7; Issue 4; (VERI-1606831). (VERI-1606760), 1996. Westlaw; New Products; Defense Daily; Sep. 15, 1997; vol. 2; Westlaw; Ostertag, Krista; Tightening the Web, ?xing the holes; (VERI-1606832). VARBUSINESS; Apr. 1, 1996; (VERI-1606761). Westlaw; Barnes, Angela; Section: Report on Business; Dow drops Westlaw; Block, Valerie; Florida State U. Smartening Up Its Student 44.83, but Nasdaq raises to record Wall Street puzzled by jobs IDs; American Banker; Mar. 12, 1996, vol. 161; Issue 48; (VERI report; Globe and Mail; Sep. 6, 1997; (VERI-1606833iVERI 1606834). 1606762iVERI-1606763). Westlaw; Hummingbird Does New Java Deal; Newsbytes PM; Sep. Westlaw; Geis Using V-ONE SmartGATE; Report on Electronic 5, 1997; (VERI-1;606835). Commerce; Feb. 20, 1996; vol. 3, Issue 4; (VERI-1606764). Westlaw; Java security technology licensed from Xcert Software; Westlaw; Kutler, Jeffrey; Vendors Readyiand Waitingifor Canada StockWatch; Sep. 4, 1997; (VERI-1606836). E-commerce; American Banker; Feb. 2, 1996; vol. 161; Issue 22; Westlaw; Hudgins-Bona?eld, Christy; Mapping The Rocky Road to (VERI-1606767iVERI-1606769). Authentication; Network Computing; Jul. 15, 1997; (VERI Westlaw; Reuters, Jennifer Genevieve; Section: Business; IPOS 1606837iVERI-1606839). Looked Golden in ’95; Memphis Commercial Appeal; Memphis, Westlaw; Hudgins-Bona?eld. Christy; Bridging The Business-to TN; Jan. 2, 1996; (VERI-1606771iVERI-1606772). Business Authentication Gap; Network Computing; Jul. 15, 1997; Westlaw; Reuters; Section: Business; Tech Talk; St. Louis Post (VERI-1606840iVERI-1606849). Dispatch; Dec. 13, 1995; (VERI-1606773). Westlaw; Who’s who in the CA market; Network Computing; Jul. Westlaw; Section: Financial; BioWhittaker Posts 62% Gain in 15, 1997; (VERI-1606850iVERI-1606851). pro?ts for 4th Quarter; Baltimore Sun; Dec. 12, 1995; (VERI Westlaw; Kohlhepp, Robert J.; Securing Intranet Data With SSL 1606774iVERI-1606776). Client Certi?cates; Network Computing; Jul. 1, 1997; (VERI Westlaw; Section: Finacial; MD. Software Product Offers Internet 1606852iVERI-1606852iVERI-1606855). Security; Baltimore Sun; Dec. 9, 1995; (VERI-1606779). Westlaw; Erlanger, Leon; Disarming the Net (security challenges Westlaw; Section: Financial; Phone Users Can Join in Testing a resulting from connection to the Internet) (Network Edition) Speedier Data-Send Service; Baltimore Sun; Oct. 31, 1995 (VERI (Internet/Web/Online Service Information); PC Magazine; Jun. 10, 1606780iVERI-1606782). 1997; vol. 16; Issue 11; (VERI-1606856iVERI-1606861). Westlaw; Personnel Roundup; Newsbytes PM; Oct. 13, 1995; Westlaw; French Payment Developer Puts Banks in the Hot Seat; (VERI-1606783iVERI-1606784). Bank Technology News; May 1, 1997; (VERI-1606862iVERI Westlaw; Schmidt, Karen; Section: Metro Hartford; Putting a High 1606864). Tech Spin on Computer-Aided Design in Newington; Hartford Westlaw; Key Management System: Entrust; Network Computing; Courant; Sep. 21, 1995; (VERI-1606785iVERI-1606786). May 1, 1997; (VERI-1606865). Westlaw; Section: Business; Financing Deal; Hartford Courant; Westlaw; Davis. Beth; Review Set for Secure Directory Access Aug. 26, 1995; (VERI-1606787). Spec; TechwebNews; Apr. 7, 1997; (VERI-1606866). Westlaw; Lawton, George; Surf’ s up! The Internet is here. (part 1) Westlaw; Online; Report on Electronic Commerce; Apr. 30, 1996; (includes related article); Telephony; Jul. 17, 1995; vol. 229; Issue vol. 3; Issue 9; (VERI-1606876iVERI-1606877). 3; (VERI-1606788iVERI-1606793). Livingston Enterprises; RADIUS software documents; Livingston Westlaw; Tenderdly (No Page); Jul. 14, 1995; (VERI-1606794). Enterprise, Inc.; Dec. 1994iApr. 1995; (VERI-1606882iVERI Westlaw; UK-London: computerized human resource information 1606980). system (With participation by GATT countries); Tenders Electronic Communications News; New Product Information; Dec. 1996; Daily; Jul 14, 1995; (VERI-1606795iVERI-1606797). (VERI-1606981iVERI-1606983). Westlaw; Kutler; Jeffrey; Card Groups Join Electronic Commerce Battelle: Battelle Press Releases; Battelle, Cybermark Complete Initiatives Gemplus a Founding Member of Electronic Business Successful Testing of Digital Cash Transfer from Smart Card; Feb. Co-op; American Banker; Jun. 12, 1995; vol. 160; Issue 111; 7, 2007; Battelle Memorial Institute; (VERI-1607108iVERI (VERI-1606798iVERI-1606799). 16071 10). Westlaw; Lewis, Peter H.; Internet Commerce: Hold the Anchovies; Batelle; Solutions Update; Technology Development, Product New York Times; Apr. 7, 1995; (VERI-1606800iVERI-1606801). Development, and Technology Commercialization; The chemical Westlaw; Spyglass offers software tailoring Mosaic for use by industry pools environmental technology dollars; Fall 1996; (VERI business on the Internet; Software Industry Report; Dec. 19, 1994; 1607111iVERI-1607122). vol. 26; Issue 24; (VERI-1606802iVERI-1606803). Cybermark; CyberMark appoints chairman, CEO; Columbus Busi Westlaw; Adams, Charlotte; Security applications drive government ness First; Dec. 27, 1996; American City Business Journals Inc.; sales (smart cards); Federal Computer Week; Sep. 19, 1994; vol. 8; (VERI-1607123). Issue 28; (VERI-1606804). Cybermark; Frees, John; CEO Graham sees Cybermark as a “smart” Westlaw; New Security Technology Products; Security Technology career move; Columbus Business First; Jan. 3, 1997; American City News; Aug. 26, 1994; vol. 2; Issue 17; (VERI-1606805). Business Journals Inc. (VERI-1607124iVERI-1607125). US 7,290,288 B2 Page 15

Livingston Enterprises; RADIUS Working Group Internet Draft; Lucent Technologies; Radius Code from Lucent radiusd.c; Remote Authentication Dial In User Service (RADIUS) draft-ietf RADIUS, Remove Authentication Dial In User Service; 1992-1999; radius-00.D

- ACCOUNT HOLDER SOFTWARE - ACCOUNT HOLDER ACCESS DEVICE (OPTIONAL)

36 ACCOUNT HOLDER

\ _H - SECURE TRANSACTION SERVER

G% I: - SECURE TRANSACTION SERVER l—] _ _\ SITE ADMINISTRATION a 34 SOFTWARE /'1“"“'1“" \ m FIREWALL WEB SERVER

40

' - ACCOUNT HOLDER LAN ADMINISTRATION SOFTWARE

- _D=

32 DESKTOP P.C.

3O - TRANSACTION CLEARINGHOUSE SERVER SOFTWARE \ D - TRANSACTION CLEARINGHOUSE _ DATABASE - SQL SERVER —"—

BACK END SYSTEM

FIG. 1 U.S. Patent Oct. 30, 2007 Sheet 2 0f 27 US 7,290,288 B2

36 /-— Request for Transaction ‘\ Services % Log-in \ Command Account |_Qg_in E‘ Holder Parameters

Transaction Services IE] Secure \ Transaction Server (Web Site with STS Software) E/»—: 34 Authentication Request

Authentication Response 30 x / Transaction Allll/ Data El Transaction Clearinghouse

FIG. 2

U.S. Patent 0a. 30, 2007 Sheet 5 0f 27 US 7,290,288 B2

/ 58 / 60 ( 64 TRANSACTION TRANSACTION CLEARINGHOUSE DAEMON DAEMON ADMINISTRATION SOFTWARE

56 v / TRANSACTION CLEARINGHOUSE DATABASE SERVER

FIG. 5