CN103544444A - Method and system for achieving off-line printing limitation - Google Patents
Method and system for achieving off-line printing limitation Download PDFInfo
- Publication number
- CN103544444A CN103544444A CN201210243042.9A CN201210243042A CN103544444A CN 103544444 A CN103544444 A CN 103544444A CN 201210243042 A CN201210243042 A CN 201210243042A CN 103544444 A CN103544444 A CN 103544444A
- Authority
- CN
- China
- Prior art keywords
- control information
- document
- printing control
- printing
- specialized equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/606—Protecting data by securing the transmission between two devices or processes
- G06F21/608—Secure printing
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/12—Digital output to print unit, e.g. line printer, chain printer
- G06F3/1201—Dedicated interfaces to print systems
- G06F3/1202—Dedicated interfaces to print systems specifically adapted to achieve a particular effect
- G06F3/1222—Increasing security of the print job
Abstract
The embodiment of the invention discloses a method for achieving off-line printing limitation. The method includes the following steps that a document is registered in advance and printing control information of the document is stored; when the document needs to be printed, the printing control information of the document is obtained and authorization verification is carried out on the document according to the printing control information and after verification is passed, the document is printed. The embodiment of the invention discloses a system for achieving off-line printing limitation at the same time. The method and system for achieving off-line printing limitation can ensure safety in printing documents in an off-line state.
Description
Technical field
The present invention relates to document function control of authority technology, particularly a kind of method and system of realizing off-line printing restriction.
Background technology
, all there is the demand of user's document to be processed being carried out to certain Warrant Bounds in current official document or document file management system.Such as, certain user has obtained a document, even if the document has left document system, still needs to control the authority of the document, if do not allowed user arbitrarily to print etc.
Conventionally the document Warrant Bounds mode adopting in prior art is network verification mode, and when user need to print document on hand, first whether print routine have the authority of printing the document to online verification user on server, if had, prints; Otherwise refusal prints.Although this mode has realized user right restriction, also limited to user's usable range simultaneously, such as not having under the environment of network, even if user has legal print right, also can cause printing in time because of carrying out Authority Verification.
For addressing the above problem, off-line verification mode has been proposed again in prior art, usual way is in document, to add printing times information, while printing, all correspondingly revises printing times at every turn, as subtracts 1, when printing times is 0, non-print.Fig. 1 is the realization flow schematic diagram of existing off-line verification mode.As shown in Figure 1, comprise the following steps:
Step 101: document is set and allows to print umber.
Step 102: when needs printed document, first judge that whether the permission printing umber that the document is corresponding is greater than 0, if be greater than, performs step 103~104; Otherwise, process ends.
Although the mode of off-line verification shown in Fig. 1 can allow the mode of printing times to realize user's Warrant Bounds by arranging, but because user can optionally copy and even propagate document to be printed on network, so, the actual number of times that can print of user has just become " number of copies * permission print factor ", is equivalent to not restriction.Visible, existing off-line verification mode can not guarantee the security of document.
Summary of the invention
The embodiment of the present invention provides a kind of method that realizes off-line printing restriction, can guarantee the security of printed document under off-line state.
The embodiment of the present invention provides a kind of system that realizes off-line printing restriction simultaneously, can guarantee the security of printed document under off-line state.
The technical scheme of the embodiment of the present invention is achieved in that
A method that realizes off-line printing restriction, the method comprises:
In advance document is registered, store the printing control information of described document;
When needs are printed described document, obtain the printing control information of described document, according to described printing control information, described document is carried out to Authority Verification, and after being verified, print described document.
Described printing control information comprises document identification and allows to print umber information.
The method of the printing control information of described storage document is:
The printing control information that described document is set, is stored in specialized equipment.
Described method of described document being carried out to Authority Verification according to printing control information is:
Extract the sign of described document, whether more described document identification is consistent with the document identification in the printing control information of obtaining from described specialized equipment;
If consistent, judge whether the permission printing umber of described document is greater than predefined non-print threshold value, if be greater than, carry out printing.
The method further comprises: utilize the private key of described specialized equipment, the described printing control information being stored in specialized equipment is signed;
Before the sign of the described document of described extraction, the method further comprises:
From described specialized equipment, take out described signed data, use the PKI of described specialized equipment to verify described signed data, and after being verified, carry out the operation of the described document identification of described extraction.
The method further comprises: the described printing control information being stored in specialized equipment is encrypted;
Before the sign of the described document of described extraction, the method further comprises: the printing control information of obtaining from described specialized equipment is decrypted.
The method further comprises:
The printing control information of an above document is kept in same specialized equipment, when needs are printed one of them or more than one during document, obtain the printing control information of corresponding document, according to described printing control information, described document is carried out to Authority Verification, and after being verified, print described document.
The method of the printing control information of described storage document is:
The printing control information of described document is set, is saved in common apparatus;
The summary that extracts described printing control information, is saved in specialized equipment.
Described method of described document being carried out to Authority Verification according to printing control information is:
From described common apparatus, take out described printing control information, extract the summary of described printing control information, relatively whether the summary of this printing control information is consistent with the summary of the printing control information of obtaining from described specialized equipment;
If unanimously, extract the sign of described document, and whether more described document identification is consistent with the document identification in the printing control information of obtaining from described common apparatus;
If consistent, judge whether the permission printing umber of described document is greater than predefined non-print threshold value, if be greater than, carry out printing.
The method further comprises: utilize the private key of described specialized equipment, the described summary that is kept at the printing control information in specialized equipment is signed;
Described from described common apparatus, take out described printing control information before, the method further comprises:
From described specialized equipment, take out described signed data, use the PKI of described specialized equipment to verify described signed data, and after being verified, described in carrying out, from common apparatus, take out the operation of described printing control information.
The method further comprises: the described printing control information being kept in common apparatus is encrypted;
Before the summary of the described printing control information of described extraction, the method further comprises:
The printing control information getting from described common apparatus is decrypted.
The method further comprises: the described summary that is kept at the printing control information in specialized equipment is encrypted;
Described from described common apparatus, take out described printing control information before, the method further comprises:
Summary to the printing control information of obtaining from described specialized equipment is decrypted.
The method further comprises:
The printing control information of more than one document is kept in same common apparatus, the summary of the printing control information of all documents is kept in same specialized equipment simultaneously, when needs are printed one of them or more than one during document, obtain the summary of printing control information and the printing control information of corresponding document, according to the summary of described printing control information and described printing control information, described document is carried out to Authority Verification, and after being verified, print described document.
Preferably, described specialized equipment is Key, smart card or USB flash disk.
The method of the printing control information of described storage document is:
The printing control information of described document is set, and obtains the system features code of printing device, utilize described system features code to be encrypted described printing control information; Printing control information after described encryption is saved in the position of appointment.
Described method of described document being carried out to Authority Verification according to printing control information is:
From described file, take out the printing control information of described encryption, utilize described system features code to be decrypted the printing control information of described encryption;
Extract the sign of described document, and more described document identification with deciphering after printing control information in document identification whether consistent;
If consistent, judge whether the permission printing umber of described document is greater than predefined non-print threshold value, if be greater than, carry out printing.
Before the described printing control information of obtaining described document, the method further comprises:
Judge whether described document registers, if register, carry out subsequent step; If do not register, process ends.
Before the described document of described printing, the method further comprises:
Upgrade the printing control information of described document, and preserve the printing control information after described renewal.
A system that realizes off-line printing restriction, this system comprises: memory device and printing device;
Described memory device, for storing the printing control information of document;
Described printing device, for when needs are printed described document, obtains the printing control information of the described document in described memory device, according to described printing control information, described document is carried out to Authority Verification, and after being verified, prints described document.
Described memory device is specialized equipment, for preserving the printing control information of described document;
Described printing device comprises: authentication module and print module;
Described authentication module, for when needs are printed described document, extract the sign of described document, whether more described document identification is consistent with the document identification in the printing control information of obtaining from described specialized equipment, if consistent, whether the permission printing umber that judges described document is greater than predefined non-print threshold value, if be greater than, notifies described print module to carry out printing;
Described print module, for after receiving the notice of described authentication module, prints described document.
The printing control information of preserving in described specialized equipment is the printing control information after signing;
Described authentication module is further used for, and takes out described signed data from described specialized equipment, and uses the PKI of described specialized equipment to verify described signed data, if authentication is passed through, continues subsequent processes.
The printing control information of preserving in described specialized equipment is the printing control information after encrypting;
Described authentication module is further used for, and the printing control information of obtaining from described specialized equipment is decrypted.
Described memory device comprises: specialized equipment and common apparatus;
Described common apparatus, for preserving the printing control information of described document; Described specialized equipment, for preserving the summary of described printing control information;
Described printing device comprises: authentication module and print module;
Described authentication module, for when needs are printed described document, from described common apparatus, take out described printing control information, extract the summary of described printing control information, relatively whether the summary of this printing control information is consistent with the summary of the printing control information of obtaining from described specialized equipment, if consistent, extract the sign of described document, and whether more described document identification is consistent with the document identification in the printing control information of obtaining from described common apparatus, if consistent, whether the permission printing umber that judges described document is greater than predefined non-print threshold value, if be greater than, notify described print module to carry out printing,
Described print module, for after receiving the notice of described authentication module, prints described document.
The printing control information summary of preserving in described specialized equipment is the printing control information summary after signing;
Described authentication module is further used for, and takes out described signed data from described specialized equipment, and uses the PKI of described specialized equipment to verify described signed data, if authentication is passed through, continues subsequent processes.
The printing control information of preserving in described common apparatus is the printing control information after encrypting;
Described authentication module is further used for, and the printing control information getting from described common apparatus is decrypted.
The printing control information summary of preserving in described specialized equipment is the printing control information summary after encrypting;
Described authentication module is further used for, and the summary of the printing control information of obtaining from described specialized equipment is decrypted.
Described memory device is common apparatus, for preserving the printing control information of the described document after the system features code encryption that utilizes printing device;
Described printing device comprises: authentication module and print module;
Described authentication module, for when needs are printed described document, from described memory device, take out the printing control information of described encryption, utilize the system features code of described printing device to be decrypted the printing control information of described encryption, and extract the sign of described document, more described document identification with deciphering after printing control information in document identification whether consistent, if consistent, whether the permission printing umber that judges described document is greater than predefined non-print threshold value, if be greater than, notify described print module to carry out printing;
Described print module, for after receiving the notice of described authentication module, prints described document.
Visible, adopt the technical scheme of the embodiment of the present invention, obtain in advance and preserve by the mode of signing or encrypt the printing control information of document, while needing printed document under off-line state, obtain the printing control information of preserving in advance, and according to this printing control information, carry out the checking of user right, if the verification passes, allow to print.Compared with prior art, described in the embodiment of the present invention, scheme is separated preservation by printing control information and document, and printing control information is left in to the safer appointed area, public domain of taking precautions against with respect to not having, reduced the possibility that information is modified or copies, and the authentication procedures in the embodiment of the present invention is more perfect, guaranteed the accurate and reliable of proof procedure, that is to say, guaranteed the security of printed document under off-line state.
Accompanying drawing explanation
Fig. 1 is the realization flow schematic diagram of existing off-line verification mode.
Fig. 2 is the process flow diagram of first preferred embodiment of the inventive method.
Fig. 3 is the process flow diagram of second preferred embodiment of the inventive method.
Embodiment
For making object of the present invention, technical scheme and advantage clearer, referring to the accompanying drawing embodiment that develops simultaneously, the present invention is described in further detail.
In embodiments of the present invention, in advance document is registered the printing control information of storage document; When needs printed document, obtain the printing control information of document, according to this printing control information, document is carried out to Authority Verification, and after being verified, carry out printing.
Document is registered, reality saves the printing control information of document exactly, here the printing control information mentioned is mainly comprised of two parts, as the document identification of document identification information, and allow to print umber, print record and key etc. for the control information of the document.The mode of preserving printing control information can have several as follows:
(1), be kept in specialized equipment:
Described specialized equipment can be Key, USB flash disk or smart card, as hardware devices such as conventional storage card, encryption storage card, CPU card, radio-frequency cards, for guaranteeing the security of information, can utilize the private key of this specialized equipment, the printing control information of stored document is signed; Or, the printing control information of the document of storage is encrypted; Again or, can also both be encrypted the printing control information of document of storage, sign again,, before the printing control information of document is signed, printing control information is encrypted.
The method of correspondingly, according to printing control information, document being carried out to Authority Verification comprises:
If printing control information do not signed and/or encrypt:
Extract the sign of document, relatively whether the document sign is consistent with the document identification in the printing control information of obtaining from specialized equipment; If consistent, judge whether the permission printing umber of the document is greater than predefined non-print threshold value, if be greater than, carry out printing;
If printing control information is signed:
From specialized equipment, take out signed data, and use the PKI of this specialized equipment to verify described signed data; After being verified, extract document identification, and relatively whether the document sign is consistent with the document identification in the printing control information of obtaining from signed data; If consistent, further judge that whether the current permission printing umber of the document is greater than predefined non-print threshold value, such as 0, if be greater than, carries out printing.
If printing control information is encrypted:
The printing control information getting from specialized equipment is decrypted; Extract the sign of document, relatively whether the document sign is consistent with the document identification in the printing control information of obtaining from specialized equipment; If consistent, judge whether the permission printing umber of document is greater than predefined non-print threshold value, if be greater than, carry out printing.
If printing control information was both encrypted, sign again:
From specialized equipment, take out signed data, and use the PKI of this specialized equipment to verify described signed data; After being verified, the printing control information of taking out from specialized equipment is decrypted; Extract document identification, relatively whether the document sign is consistent with the document identification in the printing control information of obtaining from signed data; If consistent, further judge that whether the current permission printing umber of the document is greater than predefined non-print threshold value, if be greater than, carries out printing.
(2), be kept in specialized equipment and common apparatus:
When understanding the many or more detailed information of document comparison, as each time-write interval, while printing the information such as the page number of umber and printing, specialized equipment often cannot provide enough storage spaces, therefore, need to jointly realize by means of common apparatus the storage of information, that is: extract the printing control information of document, be saved in the common apparatus of appointment; The summary that extracts printing control information, is saved in the specialized equipment of appointment, and the summary mentioned here can be both traditional Hash (hash) value, can be also the parameter that last modification time, file size etc. can description document features.
The method of correspondingly, according to printing control information, document being carried out to Authority Verification comprises:
From common apparatus, take out printing control information, extract the summary of printing control information, relatively whether the summary of this printing control information is consistent with the summary of the printing control information of obtaining from specialized equipment; If consistent, extract document identification, and relatively whether the document sign is consistent with the document identification in the printing control information of obtaining from common apparatus; If consistent, judge whether the permission printing umber of document is greater than predefined non-print threshold value, if be greater than, carry out printing.
For improving security, can utilize the private key of specialized equipment, the summary of printing control information is signed; Like this, above-mentioned method of document being carried out to Authority Verification according to printing control information will comprise: from specialized equipment, take out signed data, and use the PKI of this specialized equipment to verify described signed data; After being verified, take out printing control information from common apparatus, extract the summary of printing control information, relatively whether the summary of this printing control information is consistent with the summary of the printing control information of obtaining from signed data; If consistent, extract document identification, and relatively whether the document sign is consistent with the document identification in the printing control information of obtaining from common apparatus; If consistent, judge whether the permission printing umber of document is greater than predefined non-print threshold value, if be greater than, carry out printing.
Except signing, can also be by the summary of printing control information and/or printing control information be encrypted to improve security; Correspondingly, follow-uply need to be decrypted the printing control information getting from common apparatus while carrying out purview certification, and/or the summary of the printing control information of obtaining from specialized equipment is decrypted.
Certainly, also can will to the summary of printing control information and/or printing control information, be encrypted and the summary of printing control information be signed and combined, can, before extracting the summary of printing control information, printing control information be encrypted; And/or, before the summary of the printing control information of document is signed, the summary of printing control information is encrypted.Like this, when document is carried out to Authority Verification, correspondingly, before extracting the summary of printing control information, need to be decrypted printing control information; And/or, obtain printing control information from common apparatus before, the summary of the printing control information of obtaining from signed data is decrypted.
In a word, the summary for printing control information and the printing control information of document, can directly leave in common apparatus and specialized equipment; Security for the storage of raising information, also can be encrypted printing control information, or the summary of printing control information is encrypted, or the summary of printing control information is signed, can also be above-mentioned three kinds and improve in security modes any two or three combination.
In above-mentioned (1) and (2) two kinds of preserving types, for further guaranteeing the security of the information of storing, can adopt independently developed signature algorithm or special signature algorithm, to realize the signature to printing control information or printing control information summary.
(3), be kept in assigned address:
The printing control information of document is set, and obtains the system features code of printing device, utilize this system features code to be encrypted printing control information, the data after encrypting are saved in the position of appointment.
The method of correspondingly, according to printing control information, document being carried out to Authority Verification comprises:
From the position of appointment, take out the printing control information of encrypting, utilize the system features code of printing device to be decrypted the printing control information of this encryption; Extract document identification, and whether the document identification in the printing control information after comparing the document sign and deciphering is consistent; If consistent, judge whether the permission printing umber of the document is greater than predefined non-print threshold value, if be greater than, carry out printing.
It should be noted that, for embodiments of the invention, at needs printed document, before obtaining the printing control information of document, can further include a process that judges whether the document has registered, if registered, continue to carry out subsequent step; If do not registered, process ends.
And, in the checking completing document authority, before being about to carry out printing, the printing control information of the document that also needs to upgrade in time, as permission is printed to umber, deduct current printing umber etc., and preserve the printing control information after upgrading according to the preserving type before upgrading.
The signature scheme adopting in above-mentioned each storage mode can be Public Key Infrastructure(PKI) signature scheme more conventional in prior art.PKI is a kind of security infrastructure of realizing, have versatility by asymmetric cryptographic algorithm principle and technology.PKI utilizes digital certificate tagged keys possessor's identity, by the standardized management to key, for organizational structure sets up and safeguards a reliable system environments, the safety guarantee of the various necessity such as authentication, data confidentiality and integrality and resisting denying is provided for application system pellucidly, meets the demand for security of various application systems.Briefly, PKI is a kind of system that public key encryption and digital signature service are provided, and object is for automatic managing keys and certificate, guarantees confidentiality, authenticity, integrality and the non-repudiation of online digital information transmission.
PKI is mainly comprised of KMC, certification authority (CA), registration audit mechanism (RA), certificate/certificate revocation list (CRL) delivery system and application interface system five parts.Owing to being prior art, the function of each several part repeats no more.
Below by preferred embodiment, technical scheme of the present invention is described in further detail:
Fig. 2 is the process flow diagram of first preferred embodiment of the inventive method.As shown in Figure 2, comprise the following steps:
Step 201: the printing control information of document is set, and is kept at after signing in the specialized equipment of appointment.
In this step, the printing control information of document is set, as umber information and print record information etc. are printed in document identification, permission, be kept at preassigned specialized equipment (this specialized equipment must be available), on USB flash disk, and utilize the private key of this specialized equipment to sign to printing control information.Obtaining of private key can complete by the development interface of specialized equipment, and this interface is provided by specialized equipment provider.The above-mentioned method of obtaining document print control information is prior art, repeats no more.
For further improving security, before printing control information is signed, can first to printing control information, be encrypted, cipher mode is not limit; And the signature algorithm adopting can be independently developed signature algorithm or not too general special signature algorithm.Suppose in the present embodiment, printing control information to be encrypted.
For the higher specialized equipment of level of security, the data after signature can be kept to the region that in specialized equipment, general user cannot have access to, to guarantee that the data after signature cannot be replicated.
Step 202: judge whether document registers.
When needs printed document, first judge that whether the document registers, and whether its printing control information is preserved in advance, if registered, performs step 203; Otherwise, think that the document is invalid document, do not allow to print, thus process ends.
Step 203: whether checking has the authority of printing the document.
The realization of this step specifically comprises following sub-step:
Step 2031: the print routine in printing device takes out signed data from specialized equipment, and utilize the PKI of specialized equipment to verify this signed data, whether certifying signature data are modified, if be not modified, perform step 2032; Otherwise, process ends.
Step 2032: the printing control information of obtaining from signed data is decrypted.
Step 2033: extract document identification, and relatively whether the document sign is consistent with the document identification in the printing control information of obtaining, if consistent, performs step 2034 from specialized equipment; Otherwise, process ends.
Step 2034: whether the permission printing umber that judges the document is greater than 0, if be greater than, performs step 204; Otherwise, process ends.
Step 204: the printing control information of revising/upgrade the document.
As permission printed to umber, deduct this printing umber, add this print record etc., and amended printing control information is preserved according to mode described in step 201.
Step 205: printed document.
It should be noted that, in the present embodiment, for ease of describing, the document of only take describes as example, but the printing control information of a plurality of documents can be saved in same specialized equipment, during printing in actual applications,, only the printing control information of corresponding document need be taken out, and correspondingly carry out the steps such as follow-up Authority Verification.
Fig. 3 is the process flow diagram of second preferred embodiment of the inventive method.As shown in Figure 3, comprise the following steps:
Step 301: the printing control information of document is set, is kept in the common apparatus of appointment.
In this step, the printing control information of document is set, as document identification, permission, prints umber information and print record information etc., be kept at preassigned common apparatus (this common apparatus must be available), in hard disk.In order to improve security, can be encrypted this printing control information.
Step 302: obtain the summary of printing control information, and be saved in after signing in the specialized equipment of appointment.
The mode of obtaining the summary of printing control information can be independently developed mode, also can be existing mode, the summary info obtaining can be traditional hash value, can be also the parameter information that the simplest as last modification time, file size etc. can description document features.After getting the summary of printing control information, utilize the private key of specialized equipment to sign to it.Obtaining of private key can complete by the development interface of specialized equipment, and this interface is provided by specialized equipment provider.
For further improving security, before the summary of printing control information is signed, can first to the summary of this printing control information, be encrypted, cipher mode is not limit; And the signature algorithm adopting can be independently developed signature algorithm or not too general special signature algorithm.Suppose that in the present embodiment, the summary to printing control information is encrypted.
For the higher specialized equipment of level of security, the data after signature can be kept to the region that in specialized equipment, general user cannot have access to, to guarantee that the data after signature cannot be replicated.
Step 303: judge whether document registers.
Identical with step 202, repeat no more.
Step 304: whether checking has the authority of printing the document.
The realization of this step specifically comprises following sub-step:
Step 3041: the print routine in printing device takes out signed data from specialized equipment, and utilize the PKI of specialized equipment to verify this signed data, whether certifying signature data are modified, if be not modified, perform step 3042; Otherwise, process ends.
Step 3042: the summary to the printing control information of obtaining from signed data is decrypted.
Step 3043: take out printing control information deciphering from common apparatus, extract the summary of the printing control information after deciphering, relatively whether the summary of this printing control information is consistent with the summary of the printing control information of obtaining from signed data, if consistent, performs step 3044; Otherwise, process ends.
Step 3044: extract document identification, relatively whether the document sign is consistent with the document identification in the printing control information of obtaining from common apparatus, if consistent, performs step 3045; Otherwise, illustrate that the printing control information on common apparatus is modified, process ends.
Step 3045: whether the permission printing umber that judges the document is greater than 0, if be greater than, performs step 305; Otherwise, process ends.
Step 305: revise/upgrade the printing control information of the document and the summary of printing control information.
As permission printed to umber, deduct this printing umber, add this print record etc., and amended printing control information is preserved according to mode described in step 301, revise the summary of this printing control information simultaneously, according to mode described in step 302, preserve.
Step 306: printed document.
In the present embodiment, for ease of describing, the document of only take describes as example, but in actual applications, the printing control information of a plurality of documents can be saved in same specialized equipment, in specialized equipment, preserve the summary of the printing control information of all documents simultaneously.During printing, the printing control information of corresponding document is taken out from common apparatus, and use the summary info on specialized equipment to verify its legitimacy, to determine whether allow to print.
Visible, compared with prior art, described in the embodiment of the present invention, scheme is separated preservation by printing control information and document, and printing control information is left in to the safer appointed area, public domain of taking precautions against with respect to not having, reduced the possibility that information is modified or copies, and, authentication procedures in the embodiment of the present invention is more perfect, guarantee the accurate and reliable of proof procedure, that is to say, guaranteed the security of printed document under off-line state.
In sum, these are only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.Within the spirit and principles in the present invention all, any modification of doing, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.
Claims (10)
1. a method that realizes off-line printing restriction, is characterized in that, the method comprises:
In advance document is registered, store the printing control information of described document;
When needs are printed described document, obtain the printing control information of described document, according to described printing control information, described document is carried out to Authority Verification, and after being verified, print described document.
2. method according to claim 1, is characterized in that, described printing control information comprises document identification and allows to print umber information.
3. method according to claim 2, is characterized in that, the method for the printing control information of described storage document is:
The printing control information that described document is set, is stored in specialized equipment.
4. method according to claim 3, is characterized in that, described method of described document being carried out to Authority Verification according to printing control information is:
Extract the sign of described document, whether more described document identification is consistent with the document identification in the printing control information of obtaining from described specialized equipment;
If consistent, judge whether the permission printing umber of described document is greater than predefined non-print threshold value, if be greater than, carry out printing.
5. method according to claim 4, is characterized in that, the method further comprises: utilize the private key of described specialized equipment, the described printing control information being stored in specialized equipment is signed;
Before the sign of the described document of described extraction, the method further comprises:
From described specialized equipment, take out described signed data, use the PKI of described specialized equipment to verify described signed data, and after being verified, carry out the operation of the described document identification of described extraction.
6. method according to claim 4, is characterized in that, the method further comprises: the described printing control information being stored in specialized equipment is encrypted;
Before the sign of the described document of described extraction, the method further comprises: the printing control information of obtaining from described specialized equipment is decrypted.
7. method according to claim 3, is characterized in that, the method further comprises:
The printing control information of an above document is kept in same specialized equipment, when needs are printed one of them or more than one during document, obtain the printing control information of corresponding document, according to described printing control information, described document is carried out to Authority Verification, and after being verified, print described document.
8. method according to claim 2, is characterized in that, the method for the printing control information of described storage document is:
The printing control information of described document is set, is saved in common apparatus;
The summary that extracts described printing control information, is saved in specialized equipment.
9. method according to claim 8, is characterized in that, described method of described document being carried out to Authority Verification according to printing control information is:
From described common apparatus, take out described printing control information, extract the summary of described printing control information, relatively whether the summary of this printing control information is consistent with the summary of the printing control information of obtaining from described specialized equipment;
If unanimously, extract the sign of described document, and whether more described document identification is consistent with the document identification in the printing control information of obtaining from described common apparatus;
If consistent, judge whether the permission printing umber of described document is greater than predefined non-print threshold value, if be greater than, carry out printing.
10. method according to claim 9, is characterized in that, the method further comprises: utilize the private key of described specialized equipment, the described summary that is kept at the printing control information in specialized equipment is signed;
Described from described common apparatus, take out described printing control information before, the method further comprises:
From described specialized equipment, take out described signed data, use the PKI of described specialized equipment to verify described signed data, and after being verified, described in carrying out, from common apparatus, take out the operation of described printing control information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210243042.9A CN103544444A (en) | 2012-07-13 | 2012-07-13 | Method and system for achieving off-line printing limitation |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210243042.9A CN103544444A (en) | 2012-07-13 | 2012-07-13 | Method and system for achieving off-line printing limitation |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103544444A true CN103544444A (en) | 2014-01-29 |
Family
ID=49967883
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210243042.9A Pending CN103544444A (en) | 2012-07-13 | 2012-07-13 | Method and system for achieving off-line printing limitation |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103544444A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104866256A (en) * | 2015-06-18 | 2015-08-26 | 龙海鹏 | Printing solution and printer using printing solution |
| CN105843566A (en) * | 2016-03-29 | 2016-08-10 | 珠海优特电力科技股份有限公司 | Restricted printing method and system |
-
2012
- 2012-07-13 CN CN201210243042.9A patent/CN103544444A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104866256A (en) * | 2015-06-18 | 2015-08-26 | 龙海鹏 | Printing solution and printer using printing solution |
| CN105843566A (en) * | 2016-03-29 | 2016-08-10 | 珠海优特电力科技股份有限公司 | Restricted printing method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10797879B2 (en) | Methods and systems to facilitate authentication of a user | |
| US8724819B2 (en) | Credential provisioning | |
| CN101777978B (en) | Method and system based on wireless terminal for applying digital certificate and wireless terminal | |
| US10375057B2 (en) | Systems and methods for certificate chain validation of secure elements | |
| CN103413159B (en) | A kind of RFID electronic certificate off-line false proof realization method and system of Jianzhen based on CPK | |
| CN108924147B (en) | Communication terminal digital certificate issuing method, server and communication terminal | |
| CN101859426B (en) | Electronic ticket service system and realizing method thereof | |
| US20160315778A1 (en) | Revocation status using other credentials | |
| CN106953732B (en) | Key management system and method for chip card | |
| CN112311538B (en) | Identity verification method, device, storage medium and equipment | |
| CN103095704A (en) | Trusted medium online validation method and device | |
| CN112332975A (en) | Internet of things equipment secure communication method and system | |
| JP2006262393A (en) | Tamper-resistant device and file generating method | |
| WO2018220693A1 (en) | Information processing device, verification device, information processing system, information processing method, and recording medium | |
| CN101369296A (en) | Method and system for implementing off-line printing limitation | |
| US11882214B2 (en) | Technique for cryptographic document protection and verification | |
| CN108234125B (en) | System and method for identity authentication | |
| CN108322311B (en) | Method and device for generating digital certificate | |
| CN117692134A (en) | Key update management system and key update management method | |
| CN103544444A (en) | Method and system for achieving off-line printing limitation | |
| CN101661573A (en) | Method for producing electronic seal and method for using electronic seal | |
| CN106487796A (en) | Identity card reads the safe ciphering unit in equipment and its application process | |
| CN114297673A (en) | Password verification method, solid state disk and upper computer | |
| EP2932646B1 (en) | Non alterable structure including cryptographic material | |
| CN112311807A (en) | Method, device, equipment and storage medium for preventing smart card from being reused |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20140129 |