CN102497367A - Method and system for delivering electronic document in certifiable delivery process - Google Patents
Method and system for delivering electronic document in certifiable delivery process Download PDFInfo
- Publication number
- CN102497367A CN102497367A CN2011104086192A CN201110408619A CN102497367A CN 102497367 A CN102497367 A CN 102497367A CN 2011104086192 A CN2011104086192 A CN 2011104086192A CN 201110408619 A CN201110408619 A CN 201110408619A CN 102497367 A CN102497367 A CN 102497367A
- Authority
- CN
- China
- Prior art keywords
- user
- electronics document
- document
- electronics
- certificate
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a method and a system for delivering an electronic document in a certifiable delivery process. The delivery process comprises the steps of: establishing an electronic document delivery authorization relation between a sending user and a server side; delivering an electronic document; and certifying an electronic document delivery process: issuing a special delivery process certificate to the sending user by the server side according the requirement of the sending user, wherein the delivery process certificate comprises a delivered electronic document and a Hash value thereof, an electronic document registration certificate and a delivery certificate, and the delivery process certificate can demonstrate that the delivery of the electronic document is completed by the sending user. The method and the system not only can be used for delivering the specific electronic document reliably, but also can be used for providing proof of the authenticity, the completeness as well as the delivery process of the electronic document so as to demonstrate that an organization or an individual fulfills the legal obligation of delivering the specific electronic document, so that the requirement of an important electronic document delivery occasion on demonstrating an electronic document sending and receiving fact is met.
Description
Technical field
The present invention relates to the technology of sending to of electronics document, the process of sending to of originally sending to technology is safe and reliable and can access valid certificates, is particularly suitable for sending to of important electronics document, belongs to network information transmission, exchange and information security field.
Background technology
The electronics document transmitting system of sending the electronics document through networks such as the Internets occurs already, and the basic technology of these systems is nothing more than being: between the dispensing device of electronics document and receiving system, server is set; When this server is received from the electronic data of dispensing device, send the notice of receiving from the electronic data of dispensing device to receiving system, receiving system is downloaded the electronics document from server.Again, through worldwide popularized based on SMTP (Simple Mail Transfer Protocol) e-mail system, continuing can communicate between the information equipment on the internet.The MDN (Message Disposition Notification) that e-mail system is arranged as the technology of confirming on network, to have sent really the electronics document.
Above-mentioned technology can satisfy the requirement that the lower electronics document of significance level is sent to.But,, allowed now through sending contract, transaction details book and litigate letter important electron document on the Internet along with the mitigation of IT Progress in technique and regulation by Law.The electronics document of these kinds need guarantee that not only it sends safely and reliably and receives, and also need prove the detailed process that the electronics document sends and receives sometimes.Mostly technology in the past is to prove the fact that the electronics document sends and receives through the daily record that foundation is delivered letters and collected mail; But because daily record generally takes is form expressly; The short of reliable safety measure; Therefore might suffer wrongful distorting, so send and receive true evidence and unreliable to daily record as proof electronics document.Therefore, send to occasion to the demand of proof that the electronics document sends and reception is true, be necessary to develop a kind of evincible electronics document of process of sending to and send and receive new technology for satisfying important electronics document.
Summary of the invention
To the above-mentioned deficiency that prior art exists, the purpose of this invention is to provide and a kind ofly send to the electronics document that process is provable and the process of sending to is safe and reliable and send to method and the corresponding system that sends to.
Technical scheme of the present invention is achieved in that
A kind of evincible electronics document of process of sending to is sent to method; Originally the basis of sending to method is to set up by what service end and client constituted to send to service system, sends the user and receives the user and register transmission and the reception that can carry out the electronics document behind the logging on client also; This method is sent to process:
(1) transmission user and service end are set up the electronics document and are sent to clientage--and send the user and the electronics document is sent to service end through client; Service end is calculated this electronics document cryptographic hash and cryptographic hash is sent to third party's electronic data document proof server; Generate the electronics document certificate of registration and return to service end by the proof server, the electronics document and the corresponding certificate of registration are together taken care of by service end; Service end generates and sends to entrust certificate and notice transmission user then;
(2) the electronics document is sent to--and service end generates the electronics document and delivers the electronic notification book and send to the reception user; The electronics document that receiving the user proves and receive with network identity is delivered the electronic notification book and is collected the electronics document, and service end generates the certificate of delivery and notifies and send the user and receive the user after the reception user receives this electronics document;
(3) the electronics document is sent to process proves--according to the request of sending the user; Service end is provided the special process of sending to certificate to sending the user; The process certificate of sending to comprises electronics document that this is sent to and cryptographic hash thereof, the electronics document certificate of registration, the certificate of delivery, has accomplished sending to of this electronics document through sending to the provable transmission of process certificate user.
Said (1) goes on foot concrete steps does,
1.1) send the user and fill in the electronics document relevant information that need send to through client and submit to the electronics document to give service end;
1.2) service end stores said electronics document;
1.3) service end generates cryptographic hash with this electronics document relevant information and electronics document; By this cryptographic hash of third party's electronic data document proof server stores; Make up the forward secrecy daily record or use the service of electronic data document proof, it is registered state that the while service end is upgraded this electronics document state;
1.4) service end generates that charged son stabs and the sending to entrust certificate and return to sending the user of free label;
1.5) service end upgrades this electronics document state and be commission status.
Said (2) goes on foot concrete steps does,
2.1) service end sends the electronics document and deliver the electronic notification book to receiving the user, the electronics document is delivered to comprise in the electronic notification book and is sent the electronics document relevant information that the user fills in, and subsidiary electronics document secure ID;
2.2) receive the user and fill in the electronics document relevant information preparing to receive, submit to the electronics document to deliver electronics document secure ID subsidiary in the electronic notification book through client;
2.3) service end verifies the relevant information that receives the user and submit to; Through verifying that the back receives the user and just can read or download said electronics document; The reception user reads or download finishes or click receiving flag, shows that said electronics document Delivered receives the user;
2.4) to upgrade this electronics document state be the Delivered state to service end;
2.5) service end sends electronics document Delivered certificate through client and give and send the user and receive the user.
Said (3) step is sent to process proof concrete steps,
3.1) the transmission user fills in electronics document relevant information (like electronics document title, theme, classification, recipient), the secure ID that need send to the process proof through client, and the request of process proof is sent in submission;
3.2) service end receives that sending the process of the sending to proof request back that the user submits to verifies relevant information;
3.3) send the user through after verifying; As the request of sending user's submission does not have certificate (the electronics document is sent to entrust certificate, the electronics document certificate of delivery); Then obtain security log information, perhaps, change 3.5) based on the authenticity of document checking in the service of electronic data document proof;
3.4) ask to sending to the process proof and having certificate, the then content of authentication certificate like the user;
3.5) generate and to send to the process certificate and return to sending the user.
This electronics document is sent to method and is also comprised the status poll of electronics document; That the electronics document is divided into is registered, notify, three kinds of states of Delivered; The user proves with network identity and inquires about electronics document state with the authority of service end agreement in advance that the status poll of electronics document starts according to the request that receives user or transmission user; Concrete steps are:
S61: reception user or transmission user fill in electronics document relevant information, the secure ID of being inquired about and submit query requests to through client;
S62: service end is verified said information;
S63: after checking, service end shows the state information of this electronics document through client.
Said step 2.1) comprises the steps:
R11: service end sends electronics document delivery notice message for the reception user, and showing has the electronics document to need to receive; Notification message adds the secure ID when collecting, and tells the reception user valid expiration date that this notification message has;
R12: upgrade electronics document state and be notify status.
A kind of evincible electronics document of process of sending to is sent to system; Native system comprises service end, client and is connected both communication channels; Service end proves that with third party independently server is connected; According to the request of service end, prove that by the third party server provides the process proof service of sending to service end.Said communication channel is for the internet, applications of encrypting connects, the VPN passage or the special-purpose interface channel of special foundation.
Said client functionality module comprises:
User management module Uc realizes customer management information typing and user's ID authentication information typing;
The electronics document is sent to commit module Bc, is used to fill in electronics document basic format information, submits the electronics document that sends the user to, and the store electrons document is sent to entrust certificate;
The electronics document is sent to module Vc, submits to user's needs to visit the electronics document format information of obtaining, the secure ID of notification message, and the electronics document is browsed or downloaded, the store electrons document certificate of delivery;
Electronics document status poll module Qc, the electronics document part format information of submission user's needs inquiry, the electronics document is divided into to be entrusted, has notified and three kinds of states of Delivered;
The electronics document is sent to process proof module Pc, submits user rs authentication request, electronics document part format information or related credentials (the electronics document is sent to entrust certificate, the electronics document certificate of delivery) to;
Encryption and decryption and communication module Ec; Encrypt sending data from the level of application service; Carrying out data sends and receives; And after receiving data, decipher, realize the secret exchange of information between client and the service end, guarantee that the user uses the electronic data document to prove that the process of serving is not by illegal supervision.
Said service end functional module comprises:
User management module Ua is used to realize registration, the registration of user profile, agreement method for authenticating user identity and satellite information thereof, and other realize the management function of service;
The electronics document is sent to commit module Ba; Receive the electronics document that the user submits to, generate electronics document cryptographic hash, the joining day label; The safe storage related data; The electronics document that set up forward secrecy, can not distort is delivered security log, and the joining day label generates the electronics document trust certificate of delivery that charged son stabs;
The electronics document is sent to module Va, and system generates the electronics document automatically and delivers electronic notification book and notice reception user; Network identity proof and electronic notification book that the checking user submits to, system is the generation certificate of delivery and both advised after receiving the user to receive this electronics document;
Electronics document status poll module Qa: the electronics document be divided into entrust, notify, three kinds of states of Delivered; Receive the user inquiring request; Network identity proof and electronic notification book relevant information that the checking user submits to are according to authority inquiry of making an appointment and demonstration electronics document state;
The electronics document is sent to process proof module Pa, entrusts the certificate of registration, the electronics document certificate of delivery through the electronics document, perhaps security log, and perhaps third-party authentication conclusion confirms that electronics document content, electronics document deliver information such as time started, the time of sending to;
Encryption and decryption and communication module Ea; Encrypt sending data from the level of application service; Carrying out data sends and receives; And after receiving data, decipher, realize the secret exchange of information between client and the service end, guarantee that the user uses process that the electronics document sends to service not by illegal supervision;
Auxiliary administration module Ma: be used to realize rights management and data safety management function;
Certificate signature and authentication module Da, cert relevant information cryptographic hash realizes signature, promptly uses service provider's private key to encrypt, and deciphers and calls hash function with cryptographic hash value in service provider's PKI cert and relevant information is generated cryptographic hash compare.
The present invention not only can send to specific electronics document reliably; Can also witness to authenticity, the integrality of electronics document and the process of sending to thereof; Prove that certain focal pointe has fulfiled the legal obligation that the specific electron document is sent on time, send to occasion sent and received the fact to the electronics document demand of proof to satisfy important electronics document.And the present invention also provides the electronics document to send to process query, understands the state of sending to of electronics document at any time to help the user.
Description of drawings
Fig. 1 is the system architecture diagram of system according to the invention.
Fig. 2 is the functional block diagram of system according to the invention.
Fig. 3 is the system service flow chart of system according to the invention.
Fig. 4 entrusts service procedure figure for sending to of system according to the invention.
Fig. 5 sends to service procedure figure for system according to the invention.
Fig. 6 is the electronics document status poll flow chart of system according to the invention.
Fig. 7 is the process of the sending to proof flow chart of system according to the invention.
Embodiment
Below in conjunction with accompanying drawing the present invention is elaborated.
Electronics document of the present invention is sent to method and is transmitted the electronics document through the network means; Safe storage electronics document in special time period; The electronics document that uses electronic data authenticity of document identity means to prove that certain user submits to has at a time been entrusted and has been sent to; From the certain existence of a certain moment, content is not distorted afterwards, at a time sends to the recipient.This method realizes through following several kinds of services are provided: (1) electronics document is sent to the service (comprise registration, entrust) of entrusting.The user sends to the native system service end safely with the electronics document; The system service end calculates electronics document cryptographic hash; Cryptographic hash is sent to third party's electronic data document proof server; Receive the electronics document certificate of registration that the proof server returns, service end is together taken care of electronics document and its certificate of registration.System generates after accomplishing above-mentioned task and sends to entrust certificate and notify delegate user.Can confirm the electronics document moment of delivering, the moment that original paper exists through sending to the service of entrusting, give electronic data document original paper secure identity identification number; (2) the electronics document is sent to--service end generate the electronics document deliver the electronic notification book and through general, the extensive network channel is notified the recipient easily; The electronics document that receiving the user proves and receive with network identity is delivered the electronic notification book and is collected the electronics document, and service end generates the certificate of delivery and notifies and send the user and receive the user after the reception user receives this electronics document; (3) electronics document status poll service, that the electronics document is divided into is registered, notify, three kinds of states of Delivered, and the user inquires about electronics document state with the network identity proof and the authority of arranging with service side (system) in advance; The status poll of electronics document starts according to the request that receives user or transmission user; (4) the electronics document is sent to process proves--according to the request of sending the user; Service end is provided the special process of sending to certificate to sending the user; The process certificate of sending to comprises electronics document that this is sent to and cryptographic hash thereof, the electronics document certificate of registration, the certificate of delivery; Accomplish sending to of this electronics document through sending to the provable transmission of process certificate user, provided special certificate, had evidential function.
The present invention relates generally to the main body of sending user, service provider, three aspects of reception user, add-on third party service provider in case of necessity.Service provider provides the electronics document to send to entrust service, electronics document to send to service, electronics document inquiry service, electronics document to the user and sends to the process proof and serve.System architecture according to the invention is as shown in Figure 1; Be appreciated that according to this figure the present invention provides the integral body of service, system comprises client, the service end (proof server system, cloud platform, group system etc.) and the reliable communication channel that is connected both that client software or program library are installed.The transmission user of electronics document with accept the user and register, land and accept related service through client.Service end is moved and is managed by service provider, and service end also is connected with third-party server.Reliable communication channel N can be that the internet, applications of encrypting connects, the VPN passage or the special-purpose interface channel of special foundation according to the needs of business.
It is as shown in Figure 2 that the present invention sends to system service functions, can understand service system from view of function according to this figure.
User management module U; Be used to realize registration, the registration of user profile; Agreement method for authenticating user identity and necessary satellite information thereof; And the management function of other realization services, mainly comprise submodules such as the user registers, user's renewal, the management of user's service agreement, authenticating user identification, user authority management, according to different classes of user and specific demand the personalized user service is provided; The transmission transmit leg of a electronics document comprises service subscription (identity), online delivery, off-line notice (status poll) three phases, and the recipient comprises service subscription (identity), off-line notice, online reception three phases;
The electronics document is sent to commit module B, receives the electronics document that the user submits to, generates electronics document cryptographic hash; The joining day label; The safe storage related data, the electronics document that set up forward secrecy, can not distort is delivered security log, joining day label; Generate the electronics document trust certificate of delivery that charged son stabs, mainly comprise submodules such as safe storage, security log, certificate generation;
The electronics document is sent to module V, and system generates the electronics document and delivers the electronic notification book, through general, the extensive network channel is notified the recipient easily, like means such as Email, SMS, instant communication messages.The user is with collecting the electronics document with the network identity proof and the electronic notification book of service side's agreement, and system is sending to this electronics document (receiving the user receives) the back generation certificate of delivery and both advised.Comprise that mainly notice generation, message informing, electronics document browse or download, notify submodules such as receipt, certificate of delivery generation;
Electronics document status poll module Q: the electronics document be divided into entrust, notify, three kinds of states of Delivered, intermediateness also can be notified the sender according to user's service agreement, the user is with the network identity proof and the authority inquiry electronics document state of making an appointment; Mainly comprise the status poll of electronics document; Submodules such as electronics document status visualization.
The electronics document is sent to process proof module P; Entrust the certificate of registration, electronics document certificate of service through the electronics document; Perhaps security log, the validation of information electronics document content of aspects such as perhaps third-party authentication conclusion, electronics document are delivered information such as time started, the time of sending to.Mainly comprise submodules such as certification authentication, security log be visual.
Encryption and decryption and communication module E; Encrypt sending data from the level of application service; Carry out data and send and receive, and after receiving data, decipher, realize the secret exchange of information between client and the service end; Guarantee that the user uses the electronic data document to prove that the process of serving not by illegal supervision, mainly comprises data encryption module, data decryption module, data transmission blocks, data reception module;
Auxiliary administration module M: rights management, data safety management etc.
Other modules mainly contain hash function computing, certificate signature, certification authentication module; Cert relevant information cryptographic hash realizes signature; Promptly use service provider's private key to encrypt, decipher and call hash function with cryptographic hash value in service provider's PKI cert and relevant information is generated cryptographic hash compare.
It is as shown in Figure 3 that electronics document of the present invention is sent to flow process, and concrete steps are following:
S1: user's registration, submit relevant evidential material to, fill in associated user's data, consult both sides' service contract, realize by user management module; The user is the registration updating data where necessary; Also can directly get into S2 as the user is registered;
S2: according to service contract, the user downloads and installs FTP client FTP (hereinafter all is referred to as client with user's operation interactive system or instrument except that special explanation needs) from service end; As be ready to client, can directly get into S3;
S3: user login, service end is confirmed user identity, can change S4, S5, S6, S7 then respectively and use respective service;
S4: use the electronics document to send to and entrust service, need commentaries on classics S8 out of service, otherwise repeat S4 like the user;
S5: use the electronics document to send to service, need commentaries on classics S8 out of service, otherwise change S5 like the user;
S6: use electronics document status poll service, need commentaries on classics S8 out of service, otherwise change S6 like the user;
S7: use the electronics document to send to the service of process proof, need commentaries on classics S8 out of service like the user, otherwise change S7;
S8: withdraw from service.
The functional module of client deployment comprises among the step S2:
User management module Uc, the typing of implementation part customer management information, user's ID authentication information is obtained or typing;
The electronics document is sent to commit module Bc, fills in electronics document basic format information, submits user's electronics document to, and the store electrons document is sent to entrust certificate in case of necessity;
The electronics document is sent to module Vc, submits to user's needs to visit the electronics document format information of obtaining, the secure ID of notification message, and the electronics document is browsed or downloaded, in case of necessity the store electrons document certificate of delivery;
Electronics document status poll module Qc submits to the electronics document part format information of user's needs inquiry, electronics document to be divided into to entrust, notifies, three kinds of states of Delivered;
The electronics document is sent to process proof module Pc, submits user rs authentication request, electronics document part format information or related credentials to;
Encryption and decryption and communication module Ec; Encrypt sending data from the level of application service; Carry out data and send and receive, and after receiving data, decipher, realize the secret exchange of information between client and the service end; Guarantee that the user uses the electronic data document to prove that the process of serving not by illegal supervision, mainly comprises data encryption module, data decryption module, data transmission blocks, data reception module;
The functional module that service end A disposes among the step S2 has:
User management module Ua; Be used to realize registration, the registration of user profile; Agreement method for authenticating user identity and necessary satellite information thereof, and the management function of other realization services mainly comprise submodules such as the user registers, user's renewal, the management of user's service agreement, authenticating user identification;
The electronics document is sent to commit module Ba, receives the electronics document that the user submits to, generates electronics document cryptographic hash; The joining day label; The safe storage related data, the electronics document that set up forward secrecy, can not distort is delivered security log, joining day label; Generate the electronics document trust certificate of delivery that charged son stabs, mainly comprise submodules such as safe storage, security log, certificate generation;
The electronics document is sent to module Va, and system generates the electronics document automatically and delivers the electronic notification book, through general, the extensive network channel is notified the recipient easily, like means such as Email, SMS, instant communication messages.Network identity proof and electronic notification book that the checking user submits to, system generates the certificate of delivery and both advised after sending to this electronics document (receiving the user receives).Comprise that mainly notice generation, message informing, electronics document browse or download, notify submodules such as receipt, certificate of delivery generation;
Electronics document status poll module Qa: the electronics document be divided into entrust, notify, three kinds of states of Delivered, intermediateness also can be notified the sender according to user's service agreement; The request of reception user inquiring, network identity proof and electronic notification book relevant information that the checking user submits to are according to authority inquiry of making an appointment and demonstration electronics document state; Mainly comprise the status poll of electronics document; Submodules such as electronics document status visualization.The transmission transmit leg of a electronics document comprises service subscription (identity), online delivery, off-line notice (status poll) three phases, and the recipient comprises service subscription (identity), off-line notice, online reception three phases
The electronics document is sent to process proof module Pa; Entrust the certificate of registration, electronics document certificate of service through the electronics document; Perhaps security log, the validation of information electronics document content of aspects such as perhaps third-party authentication conclusion, electronics document are delivered information such as time started, the time of sending to.Mainly comprise submodules such as certification authentication, security log be visual.
Encryption and decryption and communication module Ea; Encrypt sending data from the level of application service; Carry out data and send and receive, and after receiving data, decipher, realize the secret exchange of information between client and the service end; Guarantee that the user uses process that the electronics document sends to service not by illegal supervision, mainly comprises data encryption module, data decryption module, data transmission blocks, data reception module;
Auxiliary administration module Ma: rights management, data safety management etc.
Certificate signature and authentication module Da; Cert relevant information cryptographic hash realizes signature; Promptly use service provider's private key to encrypt; Decipher and call hash function with cryptographic hash value in service provider's PKI cert and relevant information is generated cryptographic hash compare, mainly comprise submodules such as certificate signature, signature deciphering;
Other modules mainly contain hash function computing, certificate signature, certification authentication module; Cert relevant information cryptographic hash realizes signature; Promptly use service provider's private key to encrypt, decipher and call hash function with cryptographic hash value in service provider's PKI cert and relevant information is generated cryptographic hash compare.
Simultaneously, electronics document of the present invention is sent to the function that method also has the aspects such as auxiliary or management of internal operation, mainly contains:
R1: the electronics document is delivered message informing;
R2: rights management; Each user has the clear and definite rights management rule that authorizes; The user who only obtains a certain electronics document express authorization according to system convention could inquire about, collect this electronics document, and the irrelevant user of electronic document can't know any information therewith; Whether in time collect the electronics letter and carry out the user and describe evaluation according to receiving the user, be used for the authority constraint according to service contract;
R3: only implement during user inquiring, can not check the document content through format information, document state and authorization rule.
Further, said function R1 comprises the steps:
R11: service end is sent electronics document delivery notice message to the recipient, and showing has the electronics document to need to receive; The mode of in user's service agreement, arranging is in advance used in the transmission of notification message, allows to select for use various existing, general channels easily, like Email, SMS, instant message or the like.
R12: upgrade electronics document state and be notify status;
R13: notification message adds the secure ID when collecting, and notification message has information such as valid expiration date;
Further, the electronics document is sent to and is entrusted service as shown in Figure 4 among the said step S4, mainly comprises the steps:
S41: the user fills in electronics document format information, submits to the electronics document to give service end through client;
S42: service end safe storage electronics document;
S43: service end generates cryptographic hash with this electronics document relevant information and electronics document; By this cryptographic hash of third party's electronic data document proof server stores; Make up the forward secrecy daily record or use the service of electronic data document proof, it is registered state that the while service end is upgraded this electronics document state;
S44: according to user's service agreement, the joining day label, the electronics document that generates charged son stamp is sent to entrust certificate;
S45: the return electron document is sent to entrust certificate and is given client (user);
S46: upgrade electronics document state and be commission status;
Further, it is as shown in Figure 5 that the electronics document is sent to service among the said step S5, comprises the steps:
S51: service end is sent electronics document delivery electronic notification book to receiving the user, and the electronics document is delivered to comprise in the electronic notification book and sent the electronics document relevant information that the user fills in, and subsidiary electronics document secure ID;
S52: the reception user fills in electronics document relevant information, the submission electronics document preparing to receive through client and delivers the electronics document secure ID that attaches in the electronic notification book;
S53: service end is verified the relevant information that receives user's submission, information such as the secure ID of checking notification message, valid expiration date, and prompting user; Like the expired notification message that then resends of notification message, use other secure ID instead; Through verifying that the back receives the user and just can read or download said electronics document, the reception user reads or download finishes or click receiving flag, shows that said electronics document Delivered receives the user;
S54: it is the Delivered state that service end is upgraded this electronics document state;
S55: service end is sent electronics document Delivered certificate through client and is given the transmission user and receive the user.
Further, use electronics document status poll service as shown in Figure 6 among the said step S6, comprise the steps:
S61: the user fills in portions of electronics document related pattern information (electronics document title, theme, classification, recipient), the secure ID of being inquired about and submits query requests to through client;
S62: the information such as secure ID of service end checking notification message;
S63: inquire about this electronics document state
S64: the state that shows this electronics document;
S65: return;
Further, it is as shown in Figure 7 to use the electronics document to send to the service of process proof among the said step S7, comprises the steps:
S71: the user fills in portions of electronics document related pattern information (electronics document title, theme, classification, recipient), secure ID, the proof request of being inquired about through client;
S72: the information such as secure ID of service end checking notification message;
S73: ask to sending to the process proof and not having certificate like the user; Then obtain security log information; Perhaps based on the authenticity of document checking in the service of electronic data document proof; Deliver time started, the time of sending to etc. according to these results verification electronics document contents, electronics document, change S75;
S74: ask to sending to the process proof and having certificate like the user; The content of authentication certificate then; Cryptographic hash according to system's storage is compared; Also can require to obtain security log information, perhaps, deliver information such as time started, the time of sending to according to these results verification electronics document contents, electronics document based on the authenticity of document checking in the service of electronic data document proof according to the particular content of request;
S75: generate and send to the process certificate accordingly, return and send to the process certificate to the user;
S76: return;
Further, the user fills in electronics document format information through client and comprises among the said step S41:
Electronics document title, theme, classification, recipient etc.; The user can inquire about recipient (user) under the condition of protection privacy of user.Be divided into the user open during practical implementation and protect two types, open user can be arrived by other user inquirings, can accept the electronics document that other any users deliver, and the protection user receives only the message that subscriber is sent, can not be by other user inquirings.Concrete steps are to show corresponding user's inventory when under given querying condition, clicking query function.The back electronics document format information of accepting commission comprises electronics document numbering, title, theme, classification, sender, recipient, checking Hash, date of shipping and time.
Further, the said forward secrecy daily record of said step S43:
Adopt Hash chain and encryption safe mechanism to set up a kind of safe daily record system, realize strange land (under different server, the different controling mechanism at once) storage, from a certain moment calculating, daily record before can not distorted;
Further, the said electronic data document proof of said step S43 service:
Adopt third-party proof service, electronics document format information and electronics document are generated cryptographic hash be stored on the third-party server, and third-party server taked evincible security mechanism, guaranteed that cryptographic hash can not distorted.
The above embodiment of the present invention only be for explanation the present invention did for example, and be not to be qualification to execution mode of the present invention.For the those of ordinary skill in affiliated field, on the basis of above-mentioned explanation, can also make other multi-form variation and changes.Here can't give exhaustive to all execution modes.Everyly belong to the row that conspicuous variation that technical scheme of the present invention amplifies out or change still are in protection scope of the present invention.
Claims (10)
1. send to the evincible electronics document of process and send to method for one kind; Originally the basis of sending to method is to set up by what service end and client constituted to send to service system; Send the user with receive that the user registers and logging on client after can carry out the transmission and the reception of electronics document, it is characterized in that: this method is sent to process and is:
(1) transmission user and service end are set up the electronics document and are sent to clientage--and send the user and the electronics document is sent to service end through client; Service end is calculated this electronics document cryptographic hash and cryptographic hash is sent to third party's electronic data document proof server; Generate the electronics document certificate of registration and return to service end by the proof server, the electronics document and the corresponding certificate of registration are together taken care of by service end; Service end generates and sends to entrust certificate and notice transmission user then;
(2) the electronics document is sent to--and service end generates the electronics document and delivers the electronic notification book and send to the reception user; The electronics document that receiving the user proves and receive with network identity is delivered the electronic notification book and is collected the electronics document, and service end generates the certificate of delivery and notifies and send the user and receive the user after the reception user receives this electronics document;
(3) the electronics document is sent to process proves--according to the request of sending the user; Service end is provided the special process of sending to certificate to sending the user; The process certificate of sending to comprises electronics document that this is sent to and cryptographic hash thereof, the electronics document certificate of registration, the certificate of delivery, has accomplished sending to of this electronics document through sending to the provable transmission of process certificate user.
2. electronics document according to claim 1 is sent to method, it is characterized in that: said (1) goes on foot concrete steps does,
1.1) send the user and fill in the electronics document relevant information that need send to through client and submit to the electronics document to give service end;
1.2) service end stores said electronics document;
1.3) service end generates cryptographic hash with this electronics document relevant information and electronics document; By this cryptographic hash of third party's electronic data document proof server stores; Make up the forward secrecy daily record or use the service of electronic data document proof, it is registered state that the while service end is upgraded this electronics document state;
1.4) service end generates that charged son stabs and the sending to entrust certificate and return to sending the user of free label;
1.5) service end upgrades this electronics document state and be commission status.
3. electronics document according to claim 1 is sent to method, it is characterized in that: said (2) goes on foot concrete steps does,
2.1) service end sends the electronics document and deliver the electronic notification book to receiving the user, the electronics document is delivered to comprise in the electronic notification book and is sent the electronics document relevant information that the user fills in, and subsidiary electronics document secure ID;
2.2) receive the user and fill in the electronics document relevant information preparing to receive, submit to the electronics document to deliver electronics document secure ID subsidiary in the electronic notification book through client;
2.3) service end verifies the relevant information that receives the user and submit to; Through verifying that the back receives the user and just can read or download said electronics document; The reception user reads or download finishes or click receiving flag, shows that said electronics document Delivered receives the user;
2.4) to upgrade this electronics document state be the Delivered state to service end;
2.5) service end sends electronics document Delivered certificate through client and give and send the user and receive the user.
4. electronics document according to claim 1 is sent to method, it is characterized in that: said (3) step is sent to process proof concrete steps and does,
3.1) the transmission user fills in electronics document relevant information, the secure ID that need send to the process proof through client, and the request of process proof is sent in submission;
3.2) service end receives that sending the process of the sending to proof request back that the user submits to verifies relevant information;
3.3) send the user through after verifying, do not have like the request of sending user's submission and send to the entrust certificate and the certificate of delivery, then obtain security log information, perhaps verify based on the authenticity of document in the service of electronic data document proof, change 3.5);
3.4) send to the entrust certificate and the certificate of delivery, the then content of authentication certificate like user's request for sending to the process proof and having;
3.5) generate and to send to the process certificate and return to sending the user.
5. electronics document according to claim 1 is sent to method; It is characterized in that: this electronics document is sent to method and is also comprised the status poll of electronics document; That the electronics document is divided into is registered, notify, three kinds of states of Delivered; The user proves with network identity and inquires about electronics document state with the authority of service end agreement in advance that the status poll of electronics document starts according to the request that receives user or transmission user; Concrete steps are:
S61: reception user or transmission user fill in electronics document relevant information, the secure ID of being inquired about and submit query requests to through client;
S62: service end is verified said information;
S63: after checking, service end shows the state information of this electronics document through client.
6. electronics document according to claim 3 is sent to method, it is characterized in that: said step 2.1) comprise the steps:
R11: service end sends electronics document delivery notice message for the reception user, and showing has the electronics document to need to receive; Notification message adds the secure ID when collecting, and tells the reception user valid expiration date that this notification message has;
R12: upgrade electronics document state and be notify status.
7. send to the evincible electronics document of process and send to system for one kind; It is characterized in that: native system comprises service end, client and is connected both communication channels; Service end proves that with third party independently server is connected; According to the request of service end, prove that by the third party server provides the process proof service of sending to service end.
8. electronics document according to claim 7 is sent to system, it is characterized in that: said client functionality module comprises:
User management module Uc realizes customer management information typing and user's ID authentication information typing;
The electronics document is sent to commit module Bc, is used to fill in electronics document basic format information, submits the electronics document that sends the user to, and the store electrons document is sent to entrust certificate;
The electronics document is sent to module Vc, submits to user's needs to visit the electronics document format information of obtaining, the secure ID of notification message, and the electronics document is browsed or downloaded, the store electrons document certificate of delivery;
Electronics document status poll module Qc, the electronics document part format information of submission user's needs inquiry, the electronics document is divided into to be entrusted, has notified and three kinds of states of Delivered;
The electronics document is sent to process proof module Pc, submits user rs authentication request, electronics document part format information to or sends to the entrust certificate and the certificate of delivery;
Encryption and decryption and communication module Ec; Encrypt sending data from the level of application service; Carrying out data sends and receives; And after receiving data, decipher, realize the secret exchange of information between client and the service end, guarantee that the user uses the electronic data document to prove that the process of serving is not by illegal supervision.
9. send to system according to claim 7 or 8 described electronics documents, it is characterized in that: said service end functional module comprises:
User management module Ua is used to realize registration, the registration of user profile, agreement method for authenticating user identity and satellite information thereof, and other realize the management function of service;
The electronics document is sent to commit module Ba; Receive the electronics document that the user submits to, generate electronics document cryptographic hash, the joining day label; The safe storage related data; The electronics document that set up forward secrecy, can not distort is delivered security log, and the joining day label generates the electronics document trust certificate of delivery that charged son stabs;
The electronics document is sent to module Va, and system generates the electronics document automatically and delivers electronic notification book and notice reception user; Network identity proof and electronic notification book that the checking user submits to, system is the generation certificate of delivery and both advised after receiving the user to receive this electronics document;
Electronics document status poll module Qa: the electronics document be divided into entrust, notify, three kinds of states of Delivered; Receive the user inquiring request; Network identity proof and electronic notification book relevant information that the checking user submits to are according to authority inquiry of making an appointment and demonstration electronics document state;
The electronics document is sent to process proof module Pa, entrusts the certificate of registration, the electronics document certificate of delivery through the electronics document, perhaps security log, and perhaps third-party authentication conclusion confirms that electronics document content, electronics document deliver information such as time started, the time of sending to;
Encryption and decryption and communication module Ea; Encrypt sending data from the level of application service; Carrying out data sends and receives; And after receiving data, decipher, realize the secret exchange of information between client and the service end, guarantee that the user uses process that the electronics document sends to service not by illegal supervision;
Auxiliary administration module Ma: be used to realize rights management and data safety management function;
Certificate signature and authentication module Da, cert relevant information cryptographic hash realizes signature, promptly uses service provider's private key to encrypt, and deciphers and calls hash function with cryptographic hash value in service provider's PKI cert and relevant information is generated cryptographic hash compare.
10. electronics document according to claim 9 is sent to system, it is characterized in that: said communication channel is for the internet, applications of encrypting connects, the VPN passage or the special-purpose interface channel of special foundation.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110408619.2A CN102497367B (en) | 2011-12-09 | 2011-12-09 | Method and system for delivering electronic document in certifiable delivery process |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110408619.2A CN102497367B (en) | 2011-12-09 | 2011-12-09 | Method and system for delivering electronic document in certifiable delivery process |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102497367A true CN102497367A (en) | 2012-06-13 |
| CN102497367B CN102497367B (en) | 2014-07-30 |
Family
ID=46189153
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110408619.2A Expired - Fee Related CN102497367B (en) | 2011-12-09 | 2011-12-09 | Method and system for delivering electronic document in certifiable delivery process |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102497367B (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102811226A (en) * | 2012-08-29 | 2012-12-05 | 金宏中天(北京)科技有限公司 | Service and receipt method of electronic document |
| CN103235919A (en) * | 2013-04-19 | 2013-08-07 | 新疆君盾信息技术有限公司 | Method and business system for delivering litigation documents safely |
| CN103903123A (en) * | 2012-12-26 | 2014-07-02 | 北京华宇信息技术有限公司 | Electronic delivery system capable of confirming judicial documents received by addressee and method thereof |
| CN107730221A (en) * | 2017-11-30 | 2018-02-23 | 上海宝冶集团有限公司 | A kind of information of building project coupling management method based on information exchange platform |
| JP2019503550A (en) * | 2015-12-28 | 2019-02-07 | レリダネットワークス セルヴェイス テレマティクス エセ.アー. | How to authenticate an e-mail containing a certified electronic signature on the part of a telecommunications carrier |
| CN110415147A (en) * | 2019-07-18 | 2019-11-05 | 恒锋信息科技股份有限公司 | A kind of method and system that legal documents are sent to online |
| CN115002208A (en) * | 2022-05-27 | 2022-09-02 | 琢创网络科技(上海)有限公司 | High-reliability multi-layer digital delivery method |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102143176A (en) * | 2011-03-28 | 2011-08-03 | 河北华烨冀科信息技术有限责任公司 | Remote evidence obtaining system during trail in court |
| CN102215109A (en) * | 2011-08-15 | 2011-10-12 | 天津大学 | Method for dynamically storing and validating digital evidences based on computer forensics |
| CN102223374A (en) * | 2011-06-22 | 2011-10-19 | 熊志海 | Third-party authentication security protection system and third-party authentication security protection method based on online security protection of electronic evidence |
| CN102238191A (en) * | 2011-08-02 | 2011-11-09 | 熊志海 | Court electronic document server, court electronic document service client, court electronic document service system and court electronic document service method |
-
2011
- 2011-12-09 CN CN201110408619.2A patent/CN102497367B/en not_active Expired - Fee Related
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102143176A (en) * | 2011-03-28 | 2011-08-03 | 河北华烨冀科信息技术有限责任公司 | Remote evidence obtaining system during trail in court |
| CN102223374A (en) * | 2011-06-22 | 2011-10-19 | 熊志海 | Third-party authentication security protection system and third-party authentication security protection method based on online security protection of electronic evidence |
| CN102238191A (en) * | 2011-08-02 | 2011-11-09 | 熊志海 | Court electronic document server, court electronic document service client, court electronic document service system and court electronic document service method |
| CN102215109A (en) * | 2011-08-15 | 2011-10-12 | 天津大学 | Method for dynamically storing and validating digital evidences based on computer forensics |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102811226A (en) * | 2012-08-29 | 2012-12-05 | 金宏中天(北京)科技有限公司 | Service and receipt method of electronic document |
| CN103903123A (en) * | 2012-12-26 | 2014-07-02 | 北京华宇信息技术有限公司 | Electronic delivery system capable of confirming judicial documents received by addressee and method thereof |
| CN103235919A (en) * | 2013-04-19 | 2013-08-07 | 新疆君盾信息技术有限公司 | Method and business system for delivering litigation documents safely |
| JP2019503550A (en) * | 2015-12-28 | 2019-02-07 | レリダネットワークス セルヴェイス テレマティクス エセ.アー. | How to authenticate an e-mail containing a certified electronic signature on the part of a telecommunications carrier |
| CN107730221A (en) * | 2017-11-30 | 2018-02-23 | 上海宝冶集团有限公司 | A kind of information of building project coupling management method based on information exchange platform |
| CN110415147A (en) * | 2019-07-18 | 2019-11-05 | 恒锋信息科技股份有限公司 | A kind of method and system that legal documents are sent to online |
| CN110415147B (en) * | 2019-07-18 | 2022-07-19 | 恒锋信息科技股份有限公司 | Method and system for online delivery of legal documents |
| CN115002208A (en) * | 2022-05-27 | 2022-09-02 | 琢创网络科技(上海)有限公司 | High-reliability multi-layer digital delivery method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102497367B (en) | 2014-07-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101207482B (en) | System and method for implementation of single login | |
| US8261080B2 (en) | System and method for managing digital certificates on a remote device | |
| KR100925329B1 (en) | Method and apparatus of mutual authentication and key distribution for downloadable conditional access system in digital cable broadcasting network | |
| JP5204090B2 (en) | Communication network, e-mail registration server, network device, method, and computer program | |
| CN102497367B (en) | Method and system for delivering electronic document in certifiable delivery process | |
| US20150381580A1 (en) | System and method to use a cloud-based platform supported by an api to authenticate remote users and to provide pki- and pmi- based distributed locking of content and distributed unlocking of protected content | |
| US6938154B1 (en) | System, method and article of manufacture for a cryptographic key infrastructure for networked devices | |
| CN113691560B (en) | Data transmission method, method for controlling data use, and cryptographic device | |
| US8117438B1 (en) | Method and apparatus for providing secure messaging service certificate registration | |
| KR102660475B1 (en) | Platform and method for certifying an electronic contract for electronic identification and trust services (eidas) | |
| CN202424771U (en) | Security service system for electronic contracts | |
| KR102083313B1 (en) | Method for the registration and certification of receipt of electronic mail | |
| EP2553894B1 (en) | Certificate authority | |
| JP2006060779A (en) | Certificate transmission apparatus, communication system, certificate transmission method, program and recording medium | |
| JP2011521484A (en) | Signature method and apparatus | |
| CN111865988B (en) | Certificate-free key management method, system and terminal based on block chain | |
| CN101242269B (en) | Mobile communication terminal, service provider terminal, system and method for subscribing telecommunication service | |
| KR102015386B1 (en) | Method for certifying the sending of electronic mail | |
| CN102811211A (en) | Device supporting login certification and method for login certification | |
| CN108764912A (en) | A kind of method of payment and device based on short message verification code | |
| CN101252432B (en) | Field managing server and system, digital authority managing method based on field | |
| CN106921639A (en) | Mobile digital certificate application method and device | |
| JP2015508916A (en) | How to prove delivery of a data message to a mobile device | |
| Kyrillidis et al. | Distributed e-voting using the smart card web server | |
| KR102462411B1 (en) | Platform and method for authenticating electronic announcements for electronic identification and authentication services (EDS) |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C41 | Transfer of patent application or patent right or utility model | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20160127 Address after: Shenyang, Liaoning Province, Yuhong District, good fortune Town, good fortune village Patentee after: SHENYANG YUANMENG TECHNOLOGY CO., LTD. Address before: 400015, 12 floor, universal building, 9 Temple Road, Yuzhong District, Chongqing Patentee before: Chongqing Jundun Technology Co.,Ltd. |
|
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20171018 Address after: 126 -1, 110000, Xijiang North Street, Yuhong District, Liaoning, Shenyang Patentee after: Shenyang King farmers Technology Co., Ltd. Address before: Shenyang Town, Yuhong District, fortune town Patentee before: SHENYANG YUANMENG TECHNOLOGY CO., LTD. |
|
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20140730 Termination date: 20181209 |