CN106067849A - A kind of digital signature method being applicable to PDF document and device - Google Patents
A kind of digital signature method being applicable to PDF document and device Download PDFInfo
- Publication number
- CN106067849A CN106067849A CN201610348811.XA CN201610348811A CN106067849A CN 106067849 A CN106067849 A CN 106067849A CN 201610348811 A CN201610348811 A CN 201610348811A CN 106067849 A CN106067849 A CN 106067849A
- Authority
- CN
- China
- Prior art keywords
- signature
- contract
- module
- client
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 28
- 239000003607 modifier Substances 0.000 claims description 14
- 230000015572 biosynthetic process Effects 0.000 claims description 10
- 238000004321 preservation Methods 0.000 claims description 10
- 238000003786 synthesis reaction Methods 0.000 claims description 10
- 239000000203 mixture Substances 0.000 claims description 9
- 239000011800 void material Substances 0.000 claims description 6
- 230000006399 behavior Effects 0.000 claims description 2
- 238000012795 verification Methods 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 3
- 235000013399 edible fruits Nutrition 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000000151 deposition Methods 0.000 description 1
- 238000007689 inspection Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 230000009466 transformation Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
- G06Q50/18—Legal services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1466—Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/146—Markers for unambiguous identification of a particular session, e.g. session cookie or URL-encoding
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- General Business, Economics & Management (AREA)
- Computer Hardware Design (AREA)
- Finance (AREA)
- Computing Systems (AREA)
- Tourism & Hospitality (AREA)
- Accounting & Taxation (AREA)
- Economics (AREA)
- Theoretical Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Marketing (AREA)
- General Engineering & Computer Science (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- Primary Health Care (AREA)
- Human Resources & Organizations (AREA)
- General Health & Medical Sciences (AREA)
- Health & Medical Sciences (AREA)
- Technology Law (AREA)
- Development Economics (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a kind of digital signature method being applicable to PDF document and device, relate to field of digital signature.The method comprise the steps that the session identification that digital signature device is sent according to client determines active user, the contract ID sent according to client obtains current that preserve with described PDF treaty documents corresponding for contract ID, raw content in described PDF treaty documents is carried out computing of making a summary, the private key using the user certificate of active user carries out signature to summary operation result and obtains digital signature information, and the signature information active user that described digital signature information and client are sent being provided with is added in described PDF treaty documents.The present invention is used to provide method and apparatus, so that PDF document has authentication property, integrity and non-repudiation.
Description
Technical field
The present invention relates to field of digital signature, particularly relate to a kind of digital signature method being applicable to PDF document and device.
Background technology
Along with the universal of the Internet and the development of online transaction technology, carry out online transaction by the Internet and have become as
A kind of important mode of doing business.In order to protect the interests of Trading parties in transaction, electronic contract is occurred.
Generally, after client signs on contract or stamps an offical seal, contract just becomes legally effective.But,
It is highly difficult for signing on PDF electronic contract or affixing one's seal, and the electronic contract in current network trading only has official seal picture, big portion
Dividing without digital signature, digital certificate, this kind of electronic contract is easy to be forged and distort.
Summary of the invention
For solving problems of the prior art, the present invention proposes a kind of digital signature side being applicable to PDF document
Method and device.
The technical solution used in the present invention is as follows: a kind of digital signature method being applicable to PDF document, including:
Step S1, signature server receive session identification that client sends, contract ID and the signature letter being provided with
Breath, determines active user according to described session identification, and checks that the contract of active user signs whether state is signed, be then
Return refusal signature message to client, otherwise perform step S2;
Step S2, described signature server obtain the corresponding with described contract ID of current preservation according to described contract ID
PDF treaty documents;Raw content in described PDF treaty documents is carried out computing of making a summary, uses the user certificate of active user
Private key carries out signature obtain digital signature information to summary operation result, by described digital signature information with described be provided with
Signature information is added in described PDF treaty documents, and is signed by the contract signature status modifier of active user;
Step S3, signature server are each according to all signatories corresponding to described PDF treaty documents and all signatories
Whether self-corresponding contract signature condition adjudgement active user is last signatory, is to terminate, and otherwise returns step S1.
When described signature server receive client send refusal sign a contract request time, sign a contract from described refusal
Request obtains Reason For Denial and recorded in data base, the contract status of described PDF treaty documents corresponding for contract ID is set
For cancelling, terminate.After the described contract status arranging described PDF treaty documents corresponding for contract ID is for cancelling, described
Also include before end that all signatories to described PDF treaty documents is corresponding send void contract circular mail.
Above-mentioned steps S3, specifically, described signature server travels through the signature state of all signatories, is signed if all
Administration, it is determined that active user is last signatory, perform step S4, otherwise from signature state be unsigned signatory
Selected next signatory, and send signature circular mail to next signatory, it is then back to step S1;
Step S4, signature server arrange the contract status of described PDF treaty documents for complete, and to all signatories
Transmission contract signature completion notice mail, terminates.
Above-mentioned steps S1 and step S2 specifically include:
Step a1, described signature server receive session identification, contract ID and the signature that is provided with that client is sent
Information, determines active user according to described session identification, and checks that the contract of active user signs whether state is signed, be
Then return refusal signature message to client, otherwise perform step a2;
Step a2, described signature server obtain and ID pair, described contract from object storage server according to described contract ID
The PDF treaty documents answered;Raw content in described PDF treaty documents is carried out computing of making a summary, uses the user certificate of active user
The private key of book carries out signature to summary operation result and obtains digital signature information;
Described digital signature information and the described signature information being provided with are added to by step a3, described signature server
Described PDF treaty documents obtains new PDF treaty documents, described new PDF treaty documents is sent to the storage of described object
Server, and be signed by the contract signature status modifier of active user.
Or above-mentioned steps S1 and step S2 specifically include:
Step c1, described signature server receive session identification, contract ID and the signature that is provided with that client is sent
Information, determines active user according to described session identification, and checks that the contract of active user signs whether state is signed, be
Then return refusal signature message to client, otherwise perform step c2;
Step c2, described signature server obtain the corresponding with described contract ID of current preservation according to described contract ID
PDF treaty documents, carries out the raw content in described PDF treaty documents summary computing and obtains operation result of making a summary, according to described
The certificates identified composition signature request that summary operation result is corresponding with active user is sent to CA server, and receives described CA clothes
The digital signature information that business device returns;
The described signature information being provided with and the described digital signature received are believed by step c3, described signature server
Breath adds in described PDF treaty documents, and is signed by the contract signature status modifier of active user.
A kind of digital signature device being applicable to PDF document that the present invention provides, including following functions module:
Receiver module, for receiving session identification that client sends, contract ID and the signature information being provided with;
Memory module, is used for storing PDF treaty documents and user certificate;
For the described session identification received according to described receiver module, acquisition module, determines that active user triggering are sentenced
Disconnected module, be additionally operable to obtain during the triggering receiving judge module the user certificate of the active user of storage in memory module and
Described corresponding for the contract ID PDF treaty documents received with described receiver module;
Judge module, for when described acquisition module determines active user, checks the contract signature state of active user
Whether it is signed, is then to return refusal signature message to client, otherwise triggers described acquisition module;
Summary computing module, the raw content in the described PDF treaty documents obtained by described acquisition module is plucked
Computing is wanted to obtain operation result of making a summary;
Digital Signature module, for using the private key of the user certificate of active user that described acquisition module obtains to described
The described summary operation result that summary computing module computing obtains carries out signature and obtains digital signature information;
Arranging module, the signature information and the described numeral that are used for described in being received by described receiver module being provided with are signed
The described digital signature information that name module signature obtains is added in the described PDF treaty documents that described acquisition module obtains, and
The contract signature status modifier of the active user determined by described acquisition module is signed;
Described judge module, is additionally operable to all label that the described PDF treaty documents that obtains according to described acquisition module is corresponding
Whether administration person and all signatories each self-corresponding contract signature condition adjudgement active user are last signatories, are then
Complete contract signature, otherwise trigger receiver module.
Above-mentioned judge module, is additionally operable to when described receiver module receives the session identification that client is sent, and checks institute
State session identification the most effective, be, trigger described acquisition module, otherwise return refusal signature message to client.
Above-mentioned receiver module, be additionally operable to when receive client send refusal sign a contract request time, trigger described setting
Module;
Described module is set, being additionally operable to obtain from the described refusal that described receiver module the receives request of signing a contract refuse
Reason record absolutely, arranges the contract status of the described PDF treaty documents that described acquisition module obtains for cancel.It is additionally operable to work as
The contract status of the described PDF treaty documents that described acquisition module obtains is set for after cancelling, to described PDF treaty documents
Corresponding all signatories send void contract circular mail.
Above-mentioned judge module, also particularly useful for the institute that the described PDF treaty documents traveling through the acquisition of described acquisition module is corresponding
The contract signature state of sealed contract person, if all signeds, it is determined that active user is last signatory, triggers and arranges
Module, is otherwise selected next signatory unsigned signatory from signature state, sends signature to next signatory
Circular mail, and trigger described receiver module;
Accordingly, described module is set, is additionally operable to when described judge module goes out all label that described PDF treaty documents is corresponding
The contract of administration person arranges the contract shape of the described PDF treaty documents that described acquisition module obtains when signing all signeds of state
State is for complete.
Further, it is also possible to be: above-mentioned memory module, it is used for storing user certificate;Described PDF treaty documents is stored in
Object storage server;Or, above-mentioned memory module, it is used for storing PDF treaty documents, described user certificate is stored in CA clothes
Business device.
Beneficial effects of the present invention: the PDF document that have employed the digital signature technology that the present invention provides cannot be modified, fall
The low risk being forged and distorting, has authentication property, integrity and non-repudiation.
Accompanying drawing explanation
Fig. 1 is a kind of digital signature method flow chart being applicable to PDF document that embodiment 1 provides;
Fig. 2 is a kind of digital signature method flow chart being applicable to PDF document that embodiment 2 provides;
Fig. 3 is step 6 shown in Fig. 2 to a kind of concrete refinement figure of step 9;
Fig. 4 is step 6 shown in Fig. 2 to the another kind of concrete refinement figure of step 9;
Fig. 5 is step 6 shown in Fig. 2 to another concrete refinement figure of step 9;
Fig. 6 is a kind of digital signature method flow chart being applicable to PDF document that embodiment 3 provides;
Fig. 7 is a kind of digital signature device composition frame chart being applicable to PDF document that embodiment 4 provides.
Detailed description of the invention
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Describe, it is clear that described embodiment is only a part of embodiment of the present invention rather than whole embodiments wholely.Based on
Embodiment in the present invention, the every other reality that those skilled in the art are obtained on the premise of not making creative work
Execute example, broadly fall into the scope of protection of the invention.
Embodiment 1
A kind of digital signature method being applicable to PDF document that the present invention provides, as it is shown in figure 1, include signing server
Execution following steps:
Step 1, receive session identification that client sends, contract ID and the signature information being provided with, according to described
Session identification determines active user;
Concrete, when signature server receives the contract signature operation requests that client is sent, sign from described contract
Operation requests obtains contract ID and session identification;The corresponding with described contract ID of current preservation is found according to described contract ID
Treaty content picture, determine the signature information needing to arrange according to described session identification, and by described treaty content picture and
Need the signature information arranged to return to described client, then receive the signature information being provided with that client is sent.
Preferably, also include when signing server and receiving the contract signature operation requests that client sends: signature clothes
Business device checks that in described contract signature operation requests, the session identification that comprises is the most effective, is the most based on contract ID and session identification
Find the treaty content picture corresponding with active user of current preservation and need the signature information arranged and return to described
Client, otherwise returns the information again logged in client.When user logs in again in client, sign server
Can generate new for identifying the session identification of active user and returning to client.
Whether step 2, the contract signature state of inspection active user are signed, are then to return refusal signature to client
Message, otherwise performs step 3;
Step 3, obtain according to described contract ID current that preserve with described PDF treaty documents corresponding for contract ID;By institute
State the raw content in PDF treaty documents and carry out computing of making a summary, use the private key of user certificate of active user to summary computing knot
Fruit carries out signature and obtains digital signature information;
Concrete, described digital signature information includes signature value and user certificate.Described PDF treaty documents former in
Hold consistent with the content in said contract content picture.
Step 4, add described digital signature information and the described signature information being provided with to described PDF treaty documents
In, and be signed by the contract signature status modifier of active user;
Concrete, described PDF treaty documents includes the region for storing raw content and for storing digital signature
The region of content, adds to described digital signature information and the described signature information being provided with in described PDF treaty documents
It is specially and described digital signature information and the described signature information being provided with are added to for storing digital signature content
In region.
In the present embodiment concrete, according to PDF sign specification, it is known that PDF treaty documents, PDF treaty documents are used for depositing
The storage region (rectangle such as, determined by coordinate in certain one page of PDF treaty documents) of digital signature content, graphic form
The signature information, certificate chain (such as, user certificate, the superior certificates of user certificate and CA certificate) and the numeral that are provided with are signed
Name information, calls itext interface and obtains PDF signature result (i.e. by described digital signature information with described be provided with in step 4
Signature information add in described PDF treaty documents after, obtain with the addition of described digital signature information and described setting
The PDF treaty documents of the signature information completed).
Step 5, according to all signatories corresponding to described PDF treaty documents and each self-corresponding contract of all signatories
Whether signature condition adjudgement active user is last signatory, is to terminate, and otherwise returns step 1.
Concrete, signature server travels through the signature state of all signatories, if all signeds, it is determined that currently use
Family is last signatory, otherwise determines that active user is not last signatory.
Further, however, it is determined that active user is last signatory, then perform: signature server arranges contract status
For completing and be saved in data base, send contract to all signatories that described PDF treaty documents is corresponding and signed and lead to
Know mail, terminate;Specifically, contract signature completion notice mail in comprise with the addition of whole signatory corresponding digital signature letter
Breath and the PDF treaty documents of signature information.
Then perform if it is determined that active user is not last signatory: the selected next signature state of signature server is
Unsigned signatory, sends signature circular mail to next signatory, terminates.Lead to when next signatory receives signature
Know performing the operation of above-mentioned steps 1 after mail, do not repeat them here.
Embodiment 2
As in figure 2 it is shown, a kind of digital signature method being applicable to PDF document that the present embodiment provides, based on client and
The system of signature server composition realizes, and comprises the following steps:
Step 1, client terminal start-up contract conclusion platform, based on contract ID and session identification generation contract signature operation please
Ask;
Concrete, when signatory receives signature circular mail, client terminal start-up contract conclusion platform, prompting user is defeated
Access customer information logs in, and such as, user profile specifically includes user account and password, the use that client inputs according to user
Family acquisition of information contract ID and session identification, based on contract ID and session identification generate contract signature operation requests.
Preferably, this step also includes the mistake that the identity of currently logged on user is verified by described contract conclusion platform
Journey, specifically includes, and prompting user inputs short message verification code, the short message verification code that user inputs is sent to sign server and carries out
Checking, if receiving the information that is proved to be successful that signature server returns, current user identities is legal, performs step 2, if receiving
The authentication failed information then current user identities returned to signature server is illegal, Client-Prompt login failure.
Or specifically including, prompting user carries out face verification, the user's human face data received is sent to signature clothes
Business device is verified, if receiving the information that is proved to be successful that signature server returns, current user identities is legal, performs step
2, if receiving the authentication failed information that signature server returns, current user identities is illegal, and Client-Prompt logs in and loses
Lose.
General, can arrange by mail security code, mail security code+short message verification code, mail security code+face number
According to, the mode such as user account+password, user account+password+short message verification code, user account+password+human face data to registration
User or nonregistered user carry out authentication.Such as carry out authentication by mail security code, then step 1 can be concrete
For, when signatory receives signature circular mail, started by the chained address comprised in mail and log in contract conclusion and put down
Platform, and the contract signature operation requests comprising mail security code is sent to signature server.
Step 2, client send contract signature operation requests to signature server;
Step 3, signature server receive described contract signature operation requests, obtain from described contract signature operation requests
Contract ID and session identification are that find current preservation with described treaty content figure corresponding for contract ID according to described contract ID
Sheet, determines the signature information needing to arrange according to described session identification;
Concrete, this step also includes that signing server judges whether described contract status corresponding for contract ID is to complete
Or cancel, it is to return, to client, the miscue information that contract has completed or cancelled, otherwise according to described session mark
Know and determine active user, and judge that the contract of active user signs whether state is signed, be then to return currently to client
User's signed miscue information, otherwise performs step 4.
Further, if user's login mode of client be mail security code log in, then this step can also specifically,
Signature server receives described contract signature operation requests, according to the mail security code comprised in described contract signature operation requests
Find corresponding contract ID and session identification, find the corresponding with described contract ID of current preservation according to described contract ID
Treaty content picture, according to described session identification determine need arrange signature information.
Step 4, signature server send described treaty content picture to client and need the signature information arranged;
Concrete, the described signature information needing to arrange includes signature, stamped signature, Business Name, can also include further
Sign date.Treaty content in described treaty content picture is consistent with the raw content of PDF treaty documents.Preferably, described conjunction
It is the treaty content that contract founder creates to be converted to picture format and is saved in signature server with content picture.
Step 5, client receive and show the signature information that described treaty content picture and described needs are arranged;
Preferably, between step 5 and step 6, when client receives the operation information that user refuses signature, hold
OK:
Step 5-1, client refuse to obtain the operation information of signature Reason For Denial from described user, to signature server
Send the refusal request of signing a contract comprising described Reason For Denial;
Step 5-2, signature server receive the request of signing a contract of described refusal, therefrom obtain Reason For Denial and recorded number
According in storehouse, contract status is set for cancel, and sends void contract circular mail to all signatories, terminate.
Step 6, client receive the signature information of user setup;
Step 7, client judge that the described signature information needing to arrange the most all is provided with, and are then to perform step 8,
Otherwise continue executing with step 6;
Step 8, client send, to signature server, the signature information being provided with;
Step 9, signature server receive described in the signature information that is provided with, by the described signature information being provided with
Together with graphic form is synthesized to treaty content picture, and update the current described treaty content figure preserved with the picture after synthesis
Sheet;
Further, above-mentioned steps 6 to step 9 can be refined as content shown in Fig. 3, specific as follows:
Step 101, client receive the signature information of the written form of user's input;
Further, client the signature information of written form that user inputs can also be converted to graphic form and
Client shows.
Step 102, client judge that the described signature information needing to arrange the most all is provided with, and are to perform step
103, otherwise continue executing with step 101;
Step 103, client send, to signature server, the signature information being provided with;
The signature information being provided with described in step 104, signature server reception, by the described signature information being provided with
Be converted to graphic form, the signature information of graphic form is synthesized to treaty content picture together with, and with synthesis after picture
Update the current described treaty content picture preserved.
Further, above-mentioned steps 6 to step 9 can also be refined as content shown in Fig. 4, specific as follows:
Step 201, client receive the signature information of the graphic form that user selects;
Concrete, client pre-saves the signature information of the graphic form of active user and selects for user, works as user
After button selects, client receives and shows the signature information of the current graphic form selected.
Step 202, client judge that the described signature information needing to arrange the most all is provided with, and are to perform step
203, otherwise continue executing with step 201;
Step 203, client send, to signature server, the signature information being provided with;
The signature information of the graphic form being provided with described in step 204, signature server reception, is provided with described
The signature information of graphic form be synthesized to treaty content picture together with, and update the current institute preserved with the picture after synthesis
State treaty content picture.
Further, above-mentioned steps 6 to step 9 can also be refined as content shown in Fig. 5, specific as follows:
Step 301, when user presses the button arranging signature information, client from signature server obtain graphic form
Signature information and show;
Concrete, when user presses the button arranging signature information, client sends to signature server and obtains signature
Information request, signature server determines active user according to the described session identification comprised in signature information request that obtains, according to
Information (such as, the distinguished name of certificate authority person i.e. DN item) in the user certificate of active user generates the signature of graphic form
Information also returns to client.
Step 302, client judge that the described signature information needing to arrange the most all is provided with, and are to perform step
303, otherwise continue executing with step 302;
Concrete, when client receive user press the button signed time, it is judged that for the setting of described needs
Signature information is all provided with, and is otherwise judged as being not provided with.
Step 303, client send, to signature server, the signature information being provided with;
The signature information of the graphic form being provided with described in step 304, signature server reception, is provided with described
The signature information of graphic form be synthesized to treaty content picture together with, and update the current institute preserved with the picture after synthesis
State treaty content picture.
Step 10, signature server obtain and described PDF treaty documents corresponding for contract ID, are provided with according to described
Signature information determines active user, and the raw content of PDF treaty documents carries out computing of making a summary, and passes through current by summary operation result
The private key of the user certificate of user carries out signature and obtains digital signature information, by described digital signature information with described be provided with
Signature information add in described PDF treaty documents;
Concrete, described PDF treaty documents can be stored in signature server, it is possible to use object storage server
Store.Described digital signature information includes signature value and user certificate.The raw content of described PDF treaty documents and step
Content in treaty content picture described in rapid 3 is consistent.Preferably, described PDF treaty documents is conjunction contract founder created
Become PDF with Content Transformation and be saved in signature server.
Described PDF treaty documents includes the region for storing raw content and for storing the district of digital signature content
Territory, concrete, described digital signature information and the described signature information being provided with are added in described PDF treaty documents and have
Body is, adds described digital signature information and the described signature information being provided with to district for storing digital signature content
In territory.
Concrete, described in the signature information that is provided with includes session identification, signature server is according to described session
Mark determines active user.
Preferably, in the present embodiment, described summary operation result being carried out signature can also be completed by CA server, phase
Answer, this step particularly as follows:
Step 10-1, signature server obtain and described PDF treaty documents corresponding for contract ID, by PDF treaty documents
Raw content carries out summary computing and obtains operation result of making a summary, and summary operation result and certificates identified are sent to CA server;
Step 10-2, CA server find the private key of user certificate of correspondence according to described certificates identified, and with finding
Private key carries out signature to described summary operation result and obtains digital signature information, then returns to described digital signature information sign
Administration's server;
Concrete, described digital signature information includes signature value and user certificate.
Step 10-3, signature server add described digital signature information and the described signature information being provided with to institute
State and PDF treaty documents obtains new PDF treaty documents, and update the current described contract preserved by new PDF treaty documents
PDF treaty documents corresponding for ID.
The described signature information being provided with is saved in data base, by active user's by step 11, signature server
Contract signature status modifier is signed;
Step 12, signature server judge whether active user is last signatory, are then to perform step 13, otherwise
Perform step 14;
Concrete, signature server is sentenced according to all signatories corresponding with described contract ID preserved and signature state thereof
Whether disconnected active user is last signatory, concrete, and signature server travels through the signature state of all signatories, if entirely
Portion is signed, it is determined that active user is last signatory, performs step 13, and otherwise selected next signature state is
Unsigned signatory, and perform step 14.
Preferably, signature server is preserved the PDF treaty documents of contract founder establishment, contract founder for being somebody's turn to do
The signature information that all signatories, treaty content picture and the needs that PDF treaty documents sets are arranged.Step 13, signature service
It is to have completed and be saved in data base that device arranges contract status, and all signatories corresponding to described PDF treaty documents send
Comprise the contract signature completion notice mail of described PDF treaty documents, terminate;
Step 14, signature server send signature circular mail to next signatory, terminate.
Concrete, when next signatory receives signature circular mail, refer in the operation performed by client
State step 1.
Embodiment 3
As shown in Figure 6, a kind of digital signature method being applicable to PDF document that the present embodiment provides, based on client, label
Administration's server, OSS (the Object i.e. object of Storage Service stores, and is called for short OSS) server and CA server (ca authentication
The server of mechanism) system that forms realizes, comprises the following steps:
Step 1, client terminal start-up contract conclusion platform, based on contract ID and session identification generation contract signature operation please
Ask;
Preferably, this step also includes that the legitimacy of the current user identity logged in is tested by described contract conclusion platform
The process of card, specifically includes, and prompting user carries out face verification, is sent to the user's human face data received sign server
Verifying, if receiving the information that is proved to be successful that signature server returns, current user identities is legal, performs step 2, if
The authentication failed information then current user identities receiving signature server return is illegal, Client-Prompt login failure.
Step 2, client send contract signature operation requests to signature server;
Step 3, signature server receive described contract signature operation requests, obtain from described contract signature operation requests
Contract ID and session identification are that find current preservation with described treaty content figure corresponding for contract ID according to described contract ID
Sheet, determines the signature information needing to arrange according to described session identification;
Concrete, this step also includes that signing server judges whether described contract status corresponding for contract ID is to complete
Or cancel, it is to return, to client, the miscue information that contract has completed or cancelled, otherwise according to described session mark
Know and determine active user, and judge that the contract of active user signs whether state is signed, be then to return currently to client
User's signed miscue information, otherwise performs step 4.
Step 4, signature server send described treaty content picture to client and need the signature information arranged;
Concrete, the described signature information needing to arrange can include signature, stamped signature, Business Name and sign date.
Preferably, also including signing startup of server timer after this step, being preferably provided with timing time is 10 minutes,
If receiving the signature information being provided with that client is sent within starting 10 minutes of timing, then perform the operation of step 9,
Otherwise prompted the user with by client and re-start authentication.
Step 5, client receive and show the signature information that described treaty content picture and described needs are arranged;
Step 6, client receive the signature information of user setup;
Concrete, the signature information of user setup can be the signature of the graphic form that user selects from preservation information
Information, it is also possible to being user's signature information of inputting written form, its specific implementation is with the description in embodiment 2, at this
Repeat no more.
Step 7, client judge that the described signature information needing to arrange the most all is provided with, and are then to perform step 8,
Otherwise continue executing with step 6;
Step 8, client send, to signature server, the signature information being provided with;
Step 9, signature server receive described in the signature information that is provided with, by the described signature information being provided with
Together with graphic form is synthesized to treaty content picture, and update the current described treaty content figure preserved with the picture after synthesis
Sheet, obtains the request of PDF treaty documents according to described contract ID composition;
Step 10, signature server send the request of described acquisition PDF treaty documents to OSS server;
Step 11, OSS server obtain contract ID, according to institute from the described acquisition PDF treaty documents request received
The contract ID of stating finds the PDF treaty documents of correspondence;
Step 12, OSS server return described PDF treaty documents to signature server;
Step 13, signature server receive described PDF treaty documents, and the raw content of PDF treaty documents carries out summary fortune
Calculation obtains operation result of making a summary, and determines active user according to the described signature information being provided with, and ties according to described summary computing
The certificates identified composition signature request that fruit is corresponding with active user;
Concrete, the raw content of described PDF treaty documents and the treaty content one in treaty content picture described in step 4
Cause.Preferably, described PDF treaty documents and described treaty content picture are all that the treaty content that based on contract founder creates is entered
Row format is converted to.
Further, it is also possible to be first the Business Name in the described signature information being provided with and sign date to be added
In the raw content of PDF treaty documents, then to its carry out make a summary computing obtain make a summary result.
Step 14, signature server send described signature request to CA server;
Step 15, CA server obtain summary operation result and certificates identified, root from the described signature request received
Find the private key of the user certificate of correspondence according to described certificates identified, summary operation result is entered by the private key of described user certificate
Row signature obtains digital signature information;
Concrete, described digital signature information includes signature value and user certificate.
Step 16, CA server return described digital signature information to signature server;
The described digital signature information received and the described signature information being provided with are added by step 17, signature server
It is added in described PDF treaty documents obtain new PDF treaty documents;
Concrete, described PDF treaty documents includes the region for storing raw content and for storing digital signature
The region of content, this step specifically, described digital signature information and the described signature information being provided with are added to for
In the region of storage digital signature content.
The described signature information being provided with is saved in data base, by active user's by step 18, signature server
Contract signature status modifier is signed;
Step 19, signature server judge whether active user is last signatory, are then to perform step 21, otherwise
Perform step 20;
Concrete, signature server is sentenced according to all signatories corresponding with described contract ID preserved and signature state thereof
Whether disconnected active user is last signatory, concrete, and signature server travels through the signature state of all signatories, if entirely
Portion is signed, it is determined that active user is last signatory, performs step 21, and otherwise selected next signature state is
Unsigned signatory, and perform step 20.
Preferably, signature server preserve all signatories of contract founder setting, treaty content picture and need
Signature information to be arranged.
Step 20, signature server send signature circular mail to next signatory, terminate.
Concrete, when next signatory receives signature circular mail, refer in the operation performed by client
State step 1.
Step 21, signature server arrange contract status for completing and being saved in data base;
Step 22, signature server send described new PDF treaty documents to OSS server, to described new PDF contract
All signatories that document is corresponding send the contract signature completion notice mail comprising described new PDF treaty documents, knot
Bundle.
Step 23, the OSS server described new PDF treaty documents received updates described PDF corresponding for contract ID
Treaty documents.
Embodiment 4
Present embodiments provide a kind of digital signature device being applicable to PDF document, as it is shown in fig. 7, comprises: receiver module
401, memory module 402, acquisition module 403, judge module 404, summary computing module 405, Digital Signature module 406, setting
Module 407, the function of modules is specific as follows:
Receiver module 401, for receiving session identification that client sends, contract ID and the signature information being provided with;
Memory module 402, is used for storing PDF treaty documents and user certificate;
For the described session identification received according to described receiver module 401, acquisition module 403, determines that active user is also
Trigger judge module 404, be additionally operable to during the triggering receiving judge module 404 obtain the active user of storage in memory module 402
User certificate and described corresponding for the contract ID PDF treaty documents that receives with described receiver module 401;
Judge module 404, for when described acquisition module 403 determines active user, checks the contract label of active user
Whether administration's state is signed, is then to return refusal signature message to client, otherwise triggers described acquisition module 403;
Summary computing module 405, the raw content in the described PDF treaty documents that described acquisition module 403 is obtained
Carry out summary computing and obtain operation result of making a summary;
Digital Signature module 406, is used for the private key of the user certificate of the active user using described acquisition module 403 to obtain
The described summary operation result obtaining the computing of described summary computing module 405 carries out signature and obtains digital signature information;
Module 407 is set, the signature information that is provided with described in received by described receiver module 401 and described
The described digital signature information that Digital Signature module 406 signature obtains adds the described PDF conjunction that described acquisition module 403 obtains to
With in document, and the contract signature status modifier of the active user determined by described acquisition module 403 is signed;
Described judge module 404, the described PDF treaty documents being additionally operable to obtain according to described acquisition module 403 is corresponding
Whether all signatories and all signatories each self-corresponding contract signature condition adjudgement active user are last signatures
Person, is to complete contract signature, otherwise trigger receiver module 401.
Further, the digital signature device in the present embodiment can also is that and includes the first transceiver module;
Described first transceiver module, for receiving the contract signature operation requests that client is sent, and triggers acquisition module
403, the signature information being additionally operable to described treaty content picture and the needs setting returned by described acquisition module 403 is sent to institute
State client;
Accordingly, described memory module 402, it is additionally operable to store treaty content picture;
Accordingly, described acquisition module 403, it is additionally operable to the described contract signature behaviour received from described first transceiver module
Obtain contract ID and session identification in asking, obtain according to described contract ID described memory module 402 preserves with described
Treaty content picture corresponding for contract ID, determines active user according to described session identification and needs the signature information arranged, and
The signature information that described treaty content picture and needs are arranged is sent to described first transceiver module;
Or, described acquisition module 403, it is additionally operable to the described contract signature received according to described first transceiver module
The mail security code comprised in operation requests finds the contract ID corresponding with described mail security code and session identification, according to institute
State contract ID and obtain in described memory module 402 that preserve with described treaty content picture corresponding for contract ID, according to described meeting
Words identify and determine the signature information needing to arrange, and with the signature information needing setting, described treaty content picture is sent to institute
State the first transceiver module;
Further, the digital signature device in the present embodiment also includes image generating module, described image generating module,
The signature information being provided with described in received by described receiver module 401 is with graphic form and described acquisition module
The 403 described treaty content pictures obtained are synthesized to together, and update the conjunction of storage in memory module 402 with the picture after synthesis
With content picture.
Accordingly, described judge module 404, it is additionally operable to when described receiver module 401 receives the session that client is sent
During mark, check that described session identification is the most effective, be, trigger described acquisition module 403, otherwise return refusal to client
Signature message.
Preferably, the digital signature device in the present embodiment also includes authentication module;
Described authentication module, for verifying, if passing through the identity of the user being currently logged into contract conclusion platform
Checking then triggers the first transceiver module, if not verified, sends the message of prompting login failure to client.
Preferably, described first transceiver module, it is additionally operable to the described treaty content picture returned by described acquisition module 403
After being sent to described client with needing the signature information arranged, trigger judge module 404;
Described judge module 404, is additionally operable to judge whether described receiver module 401 is to receive client in preset duration
End send described in the signature information that is provided with, be then trigger setup module 407, otherwise send prompting to client and time-out is set
Message.
Preferably, described first transceiver module, it is additionally operable to when receiving the acquisition signature information request that client is sent,
Determine active user according to the described session identification comprised in signature information request that obtains, protect according in described memory module 402
Information (such as DN item information) in the user certificate of the active user deposited generates the signature information of graphic form and returns to institute
State client.
Further, above-mentioned receiver module 401, be additionally operable to when receive client send refusal sign a contract request time,
Trigger and described module 407 is set;
Accordingly, described module 407 is set, is additionally operable to the described refusal signature from described receiver module 401 receives and closes
With request obtains Reason For Denial record, the contract status of the described PDF treaty documents that described acquisition module 403 obtains is set
For cancelling.
Described module 407 is set, is additionally operable to when the conjunction that arrange the described PDF treaty documents that described acquisition module 403 obtains
With state for after cancelling, all signatories corresponding to described PDF treaty documents send void contract circular mail.
Preferably, described judge module 404, specifically for traveling through the described PDF contract literary composition that described acquisition module 403 obtains
The contract signature state of all signatories that shelves are corresponding, if all signeds, it is determined that active user is last signature
Person, trigger setup module 407, otherwise from signature state be selected next signatory unsigned signatory, to the next one
Signatory sends signature circular mail, and triggers described receiver module 401;
Accordingly, described module 407 is set, is additionally operable to when the judged result of described judge module 404 is for being arrange institute
State the contract status of the described PDF treaty documents that acquisition module obtains for complete.
Further, the memory module 402 of the digital signature device in the present embodiment, it is also possible to only store user certificate,
And described PDF treaty documents can be stored in other devices, such as object storage server (OSS server).
Accordingly, described acquisition module 403 includes determining unit and the first acquiring unit;
Described determine unit, determine active user for the described session identification received according to described receiver module 401;
Described first acquiring unit, for obtaining, from object storage server, the institute received with described receiver module 401
State PDF treaty documents corresponding for contract ID;
Accordingly, described module 407 is set, is provided with described in described receiver module 401 is received
Signature information and the described Digital Signature module 406 described digital signature information that obtains of signature add described acquisition module to
The 403 described PDF treaty documents obtained obtain new PDF treaty documents, and the new PDF treaty documents obtained is sent
Server is stored to described object;The contract signature status modifier of the active user for being determined by described acquisition module 403 is
Signed;It is additionally operable to when the judged result of described judge module 404 is arrange described in the acquisition of described acquisition module 403
The contract status of PDF treaty documents is for complete.
Or further, the memory module 401 of the digital signature device in the present embodiment, it is used for storing PDF contract
Document, and described user certificate is stored in other devices, such as CA server;
Accordingly, described Digital Signature module 406 includes component units and Transmit-Receive Unit;
Described component units, for the summary operation result that obtains according to the computing of described summary computing module 405 and described
Certificates identified composition signature request corresponding to the active user that acquisition module 403 determines, and trigger Transmit-Receive Unit;
Described Transmit-Receive Unit, is sent to CA server for the described signature request formed by described component units, and
For receiving the digital signature information that described CA server returns, and it is sent to described digital signature information described arrange module
407。
The above, the only detailed description of the invention of the present invention, but protection scope of the present invention is not limited thereto, and any
Those familiar with the art, in the technical scope that the invention discloses, can readily occur in change or replace, should contain
Cover within protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with scope of the claims.
Claims (24)
1. it is applicable to a digital signature method for PDF document, it is characterized in that including:
Step S1, signature server receive session identification that client sends, contract ID and the signature information being provided with, root
Determine active user according to described session identification, and check that the contract of active user signs whether state is signed, be then to visitor
Family end returns refusal signature message, otherwise performs step S2;
Step S2, described signature server obtain current that preserve and described PDF corresponding for contract ID according to described contract ID and close
Same document;Raw content in described PDF treaty documents is carried out computing of making a summary, uses the private key pair of the user certificate of active user
Summary operation result carries out signature and obtains digital signature information, by described digital signature information and the described signature letter being provided with
Breath adds in described PDF treaty documents, and is signed by the contract signature status modifier of active user;
Step S3, signature server are the most right according to all signatories corresponding to described PDF treaty documents and all signatories
Whether the contract signature condition adjudgement active user answered is last signatory, is to terminate, otherwise returns step S1.
Method the most according to claim 1, is characterized in that, also includes before described step S1:
Step S0, when signing server and receiving the contract signature operation requests that client sends, from described contract signature behaviour
Obtain contract ID and session identification in asking, find the corresponding with described contract ID of current preservation according to described contract ID
Treaty content picture, determines active user according to described session identification and needs the signature information arranged, and by described contract
Hold picture and need the signature information arranged to return to described client;
Described step S1 also includes, signs server by the described signature information being provided with in graphic form and described contract
Hold picture to be synthesized to together, and update the current described treaty content picture preserved with the picture after synthesis.
Method the most according to claim 1, is characterized in that, described step S1 also includes, described signature server checks institute
State session identification whether effective, be, perform described to determine active user according to described session identification, otherwise return to client
Refusal signature message.
Method the most according to claim 1, is characterized in that, also includes before described step S1:
Step S0, when signing server and receiving the contract signature operation requests that client sends, sign according to described contract
The mail security code comprised in operation requests finds the contract ID corresponding with described mail security code and session identification, according to institute
The contract ID of stating is that find current preservation with described treaty content picture corresponding for contract ID, determines need according to described session identification
Signature information to be arranged, and the signature information that described treaty content picture and needs are arranged is returned to described client;
Described step S1 also includes, signs server by the described signature information being provided with in graphic form and described contract
Hold picture to be synthesized to together, and update the current described treaty content picture preserved with the picture after synthesis.
5. according to the method described in claim 2 or 4, it is characterized in that: before described step S0, also include described signature server
The identity of active user is verified, if by checking, performs step S0, if not verified, pass through Client-Prompt
Login failure.
6. according to the method described in claim 2 or 4, it is characterized in that: also include between described step S0 and step S1, described label
Administration's server judges whether the signature information being provided with described in receiving client in preset duration sends, and is to perform
Step S1, is otherwise prompted the user with by client and arranges time-out.
7. according to the method described in claim 2 or 4, it is characterized in that: also include between described step S0 and step S1, when described
When signature server receives the acquisition signature information request that client is sent, described signature server obtains signature according to described
The session identification comprised in information request determines active user, generates picture shape according to the information in the user certificate of active user
The signature information of formula also returns to client.
Method the most according to claim 1, is characterized in that, also includes: send out when described signature server receives client
Refuse to sign a contract request time, from the request of signing a contract of described refusal, obtain Reason For Denial and recorded in data base, if
Put the contract status of described PDF treaty documents corresponding for contract ID for cancel, terminate.
Method the most according to claim 8, is characterized in that: described arrange described PDF treaty documents corresponding for contract ID
After contract status is for cancelling, before described end, also include that all signatories to described PDF treaty documents is corresponding send
Void contract circular mail.
Method the most according to claim 1, is characterized in that: described step S3 is specifically, described signature server travels through institute
The signature state of sealed contract person, if all signeds, it is determined that active user is last signatory, performs step S4,
It is otherwise selected next signatory unsigned signatory from signature state, and sends signature notice to next signatory
Mail, is then back to step S1;
Step S4, signature server arrange the contract status of described PDF treaty documents for complete, and send to all signatories
Contract signature completion notice mail, terminates.
11. methods according to claim 1, is characterized in that, described step S1 and step S2 specifically include:
Step a1, described signature server receive session identification, contract ID and the signature information that is provided with that client is sent,
Determine active user according to described session identification, and check whether the contract signature state of active user is signed, be then to
Client returns refusal signature message, otherwise performs step a2;
Step a2, described signature server obtain corresponding with described contract ID according to described contract ID from object storage server
PDF treaty documents;Raw content in described PDF treaty documents is carried out computing of making a summary, uses the user certificate of active user
Private key carries out signature to summary operation result and obtains digital signature information;
Described digital signature information and the described signature information being provided with are added to described by step a3, described signature server
PDF treaty documents obtains new PDF treaty documents, described new PDF treaty documents is sent to the storage service of described object
Device, and be signed by the contract signature status modifier of active user.
12. methods according to claim 1, is characterized in that, described step S1 and step S2 specifically include:
Step c1, described signature server receive session identification, contract ID and the signature information that is provided with that client is sent,
Determine active user according to described session identification, and check whether the contract signature state of active user is signed, be then to
Client returns refusal signature message, otherwise performs step c2;
Step c2, described signature server obtain current that preserve and described PDF corresponding for contract ID according to described contract ID and close
Same document, carries out the raw content in described PDF treaty documents summary computing and obtains operation result of making a summary, according to described summary fortune
The certificates identified composition signature request calculating result corresponding with active user is sent to CA server, and receives described CA server and return
The digital signature information returned;
The described signature information being provided with and the described digital signature information received are added by step c3, described signature server
It is added in described PDF treaty documents, and is signed by the contract signature status modifier of active user.
13. 1 kinds of digital signature devices being applicable to PDF document, is characterized in that including:
Receiver module, for receiving session identification that client sends, contract ID and the signature information being provided with;
Memory module, is used for storing PDF treaty documents and user certificate;
Acquisition module, determines active user for the described session identification received according to described receiver module and triggers judgement mould
Block, obtain when being additionally operable to the triggering receiving judge module the active user of storage in memory module user certificate and with institute
State described corresponding for the contract ID PDF treaty documents that receiver module receives;
Judge module, for when described acquisition module determines active user, checks whether the contract of active user signs state
For signed, it is then to return refusal signature message to client, otherwise triggers described acquisition module;
Summary computing module, the raw content in the described PDF treaty documents obtained by described acquisition module carries out summary fortune
Calculation obtains operation result of making a summary;
Digital Signature module, for using the private key of the user certificate of active user that described acquisition module obtains to described summary
The described summary operation result that computing module computing obtains carries out signature and obtains digital signature information;
Module is set, the signature information being provided with described in received by described receiver module and described digital signature mould
The described digital signature information that block signature obtains is added in the described PDF treaty documents that described acquisition module obtains, and by institute
The contract signature status modifier stating the active user that acquisition module determines is signed;
Described judge module, is additionally operable to all signatories that the described PDF treaty documents that obtains according to described acquisition module is corresponding
And whether all signatory's each self-corresponding contracts signature condition adjudgement active user is last signatory, it is to complete
Contract is signed, and otherwise triggers receiver module.
14. devices according to claim 13, is characterized in that: described device also includes the first transceiver module;
Described first transceiver module, for receiving the contract signature operation requests that client is sent, and triggers acquisition module, also uses
The signature information arranged in the described treaty content picture returned by described acquisition module and needs is sent to described client;
Described memory module, is additionally operable to store treaty content picture;
Described acquisition module, is additionally operable to obtain from the described contract signature operation requests that described first transceiver module receives close
With ID and session identification, obtain according to described contract ID described memory module preserves with in described contract corresponding for contract ID
Hold picture, determine active user according to described session identification and need the signature information arranged, and by described treaty content picture
It is sent to described first transceiver module with needing the signature information arranged;
Described device also includes image generating module, and described image generating module, for the institute received by described receiver module
State together with the described treaty content picture that the signature information being provided with obtains with described acquisition module with graphic form is synthesized to,
And update the treaty content picture of storage in memory module with the picture after synthesis.
15. devices according to claim 13, is characterized in that: described judge module, are additionally operable to when described receiver module connects
When receiving the session identification that client is sent, check that described session identification is the most effective, be to trigger described acquisition module, otherwise
Refusal signature message is returned to client.
16. devices according to claim 13, is characterized in that: described device also includes the first transceiver module;
Described first transceiver module, for receiving the contract signature operation requests that client is sent, and triggers acquisition module, also uses
The signature information arranged in the described treaty content picture returned by described acquisition module and needs is sent to described client;
Described memory module, is additionally operable to store treaty content picture;
Described acquisition module, is additionally operable to sign in operation requests according to the described contract that described first transceiver module receives comprise
Mail security code find the contract ID corresponding with described mail security code and session identification, according to described contract ID obtain institute
State in memory module preserve with described treaty content picture corresponding for contract ID, determine according to described session identification need arrange
Signature information, and by described treaty content picture and need arrange signature information be sent to described first transceiver module;
Described device also includes image generating module, and described image generating module, for the institute received by described receiver module
State together with the described treaty content picture that the signature information being provided with obtains with described acquisition module with graphic form is synthesized to,
And update the treaty content picture of storage in memory module with the picture after synthesis.
17., according to the device described in claim 14 or 16, is characterized in that: described device also includes authentication module;
Described authentication module, for the identity of active user is verified, if by checking, triggering the first transceiver module, if
The not verified message then sending prompting login failure to client.
18., according to the device described in claim 14 or 16, is characterized in that: described first transceiver module, are additionally operable to obtain described
After the described treaty content picture that delivery block returns is sent to described client with the signature information needing setting, triggers and judge
Module;
Described judge module, is additionally operable to judge whether described receiver module receives described in client sends in preset duration
The signature information being provided with, is to arrange module by the triggering of described receiver module is described, otherwise send prompting to client
The message of time-out is set.
19., according to the device described in claim 14 or 16, is characterized in that: described first transceiver module, are additionally operable to when receiving
During the acquisition signature information request that client is sent, determine according to the session identification comprised in described acquisition signature information request and work as
Front user, generates the signature letter of graphic form according to the information in the user certificate of the active user preserved in described memory module
Cease and return to described client.
20. devices according to claim 13, is characterized in that: described receiver module, are additionally operable to ought receive client and send out
Refuse to sign a contract request time, trigger that described module is set;
Described module is set, being additionally operable to obtain refusal from the described refusal that described receiver module the receives request of signing a contract former
Cause record, arrange the contract status of the described PDF treaty documents that described acquisition module obtains for cancel.
21. methods according to claim 20, is characterized in that: described arrange module, are additionally operable to when arrange described acquisition mould
After the contract status of the described PDF treaty documents that block obtains is for cancelling, to institute's sealed contract that described PDF treaty documents is corresponding
Person sends void contract circular mail.
22. devices according to claim 13, is characterized in that: described judge module, also particularly useful for traveling through described acquisition
The contract signature state of all signatories corresponding to described PDF treaty documents that module obtains, if all signeds, it is determined that
Active user is last signatory, trigger setup module, otherwise under signature state is to select unsigned signatory
One signatory, sends signature circular mail to next signatory, and triggers described receiver module;
Described module is set, is additionally operable to when described judge module goes out the contract of all signatories corresponding to described PDF treaty documents
The contract status of the described PDF treaty documents that described acquisition module obtains is set during all signeds of signature state for the completeest
Become.
23. devices according to claim 13, is characterized in that: described memory module, are used for storing user certificate;Described
PDF treaty documents is stored in object storage server;
Described acquisition module includes determining unit and the first acquiring unit;
Described determine unit, determine active user for the described session identification received according to described receiver module;
Described first acquiring unit, for obtaining, from object storage server, the described contract ID received with described receiver module
Corresponding PDF treaty documents;
Described module is set, specifically for the signature information being provided with described in being received by described receiver module and described number
The described digital signature information that word signature blocks signature obtains is added in the described PDF treaty documents that described acquisition module obtains
Obtain new PDF treaty documents, and the new PDF treaty documents obtained is sent to described object storage server;For
The contract signature status modifier of the active user determined by described acquisition module is signed.
24. devices according to claim 13, is characterized in that, described memory module, are used for storing PDF treaty documents;Institute
State user certificate and be stored in CA server;
Described Digital Signature module includes component units and Transmit-Receive Unit;
Described component units, for the summary operation result obtained according to described summary computing module computing and described acquisition module
Certificates identified composition signature request corresponding to the active user determined, and trigger Transmit-Receive Unit;
Described Transmit-Receive Unit, is sent to CA server for the described signature request formed by described component units, and is used for
Receive the digital signature information that described CA server returns, and be sent to described digital signature information described arrange module.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610348811.XA CN106067849B (en) | 2016-05-24 | 2016-05-24 | Digital signature method and device suitable for PDF document |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610348811.XA CN106067849B (en) | 2016-05-24 | 2016-05-24 | Digital signature method and device suitable for PDF document |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106067849A true CN106067849A (en) | 2016-11-02 |
CN106067849B CN106067849B (en) | 2020-02-21 |
Family
ID=57420828
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610348811.XA Active CN106067849B (en) | 2016-05-24 | 2016-05-24 | Digital signature method and device suitable for PDF document |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106067849B (en) |
Cited By (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107133777A (en) * | 2017-04-25 | 2017-09-05 | 飞天诚信科技股份有限公司 | A kind of establishment of electronic contract, signature method and system |
CN107294706A (en) * | 2017-06-09 | 2017-10-24 | 飞天诚信科技股份有限公司 | It is a kind of to support the endorsement method of long-term checking signature, sign server and system |
CN108764848A (en) * | 2018-05-31 | 2018-11-06 | 飞天诚信科技股份有限公司 | A kind of signature method and system of electronic contract |
CN108833105A (en) * | 2018-04-10 | 2018-11-16 | 阿里巴巴集团控股有限公司 | Electric endorsement method and device |
CN109508951A (en) * | 2018-10-09 | 2019-03-22 | 重庆君子签科技有限公司 | Barcode scanning contracting method, device, storage medium and server |
CN109829317A (en) * | 2018-12-14 | 2019-05-31 | 平安科技(深圳)有限公司 | A kind of method, apparatus and system generating electronic contract based on handwritten signature picture |
CN110069949A (en) * | 2019-04-19 | 2019-07-30 | 浙江鲸腾网络科技有限公司 | A kind of electronic contract signature method, apparatus, equipment and medium |
CN110570269A (en) * | 2019-07-31 | 2019-12-13 | 阿里巴巴集团控股有限公司 | Method and device for executing notification in credit item |
CN111431725A (en) * | 2020-04-12 | 2020-07-17 | 中信银行股份有限公司 | Method for signing, changing and verifying validity of electronic agreement in bank system, electronic agreement management system and readable storage medium |
CN111832009A (en) * | 2020-07-22 | 2020-10-27 | 上海绿安信息科技有限公司 | Electronic signature verification method applied to medicine management |
CN112329395A (en) * | 2019-07-18 | 2021-02-05 | 神通资讯科技股份有限公司 | Electronic signature system and method using web service |
WO2021208526A1 (en) * | 2020-04-17 | 2021-10-21 | 福建福昕软件开发股份有限公司 | Enterprise user-based method and system for simplified pdf document electronic signature |
WO2021208525A1 (en) * | 2020-04-17 | 2021-10-21 | 福建福昕软件开发股份有限公司 | Method, system and device for simplifying electronic signature process on basis of pdf document |
CN113806815A (en) * | 2021-09-27 | 2021-12-17 | 深圳法大大网络科技有限公司 | File signing method and system |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101593332A (en) * | 2008-05-28 | 2009-12-02 | 北京邮电大学 | A kind of electronic contract management system and its implementation |
CN101702150A (en) * | 2009-12-02 | 2010-05-05 | 江西金格网络科技有限责任公司 | Method for protecting, verifying and repealing content of PDF document page |
CN102117389A (en) * | 2011-03-11 | 2011-07-06 | 北京神舟航天软件技术有限公司 | Word file signature method and system |
US20140040611A1 (en) * | 2012-07-31 | 2014-02-06 | Isak Tenenboym | Distributed Validation of Digitally Signed Electronic Documents |
CN103617403A (en) * | 2013-11-25 | 2014-03-05 | 广东数字证书认证中心有限公司 | PDF file digital signature and verification method and system |
-
2016
- 2016-05-24 CN CN201610348811.XA patent/CN106067849B/en active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101593332A (en) * | 2008-05-28 | 2009-12-02 | 北京邮电大学 | A kind of electronic contract management system and its implementation |
CN101702150A (en) * | 2009-12-02 | 2010-05-05 | 江西金格网络科技有限责任公司 | Method for protecting, verifying and repealing content of PDF document page |
CN102117389A (en) * | 2011-03-11 | 2011-07-06 | 北京神舟航天软件技术有限公司 | Word file signature method and system |
US20140040611A1 (en) * | 2012-07-31 | 2014-02-06 | Isak Tenenboym | Distributed Validation of Digitally Signed Electronic Documents |
CN103617403A (en) * | 2013-11-25 | 2014-03-05 | 广东数字证书认证中心有限公司 | PDF file digital signature and verification method and system |
Cited By (19)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107133777A (en) * | 2017-04-25 | 2017-09-05 | 飞天诚信科技股份有限公司 | A kind of establishment of electronic contract, signature method and system |
CN107294706A (en) * | 2017-06-09 | 2017-10-24 | 飞天诚信科技股份有限公司 | It is a kind of to support the endorsement method of long-term checking signature, sign server and system |
CN107294706B (en) * | 2017-06-09 | 2019-08-30 | 飞天诚信科技股份有限公司 | A kind of endorsement method, signature server and system for supporting to verify signature for a long time |
CN108833105B (en) * | 2018-04-10 | 2020-12-29 | 创新先进技术有限公司 | Electronic signature method and device |
CN108833105A (en) * | 2018-04-10 | 2018-11-16 | 阿里巴巴集团控股有限公司 | Electric endorsement method and device |
CN108764848A (en) * | 2018-05-31 | 2018-11-06 | 飞天诚信科技股份有限公司 | A kind of signature method and system of electronic contract |
CN108764848B (en) * | 2018-05-31 | 2021-03-16 | 飞天诚信科技股份有限公司 | Electronic contract signing method and system |
CN109508951A (en) * | 2018-10-09 | 2019-03-22 | 重庆君子签科技有限公司 | Barcode scanning contracting method, device, storage medium and server |
CN109829317A (en) * | 2018-12-14 | 2019-05-31 | 平安科技(深圳)有限公司 | A kind of method, apparatus and system generating electronic contract based on handwritten signature picture |
CN110069949A (en) * | 2019-04-19 | 2019-07-30 | 浙江鲸腾网络科技有限公司 | A kind of electronic contract signature method, apparatus, equipment and medium |
CN112329395A (en) * | 2019-07-18 | 2021-02-05 | 神通资讯科技股份有限公司 | Electronic signature system and method using web service |
CN110570269A (en) * | 2019-07-31 | 2019-12-13 | 阿里巴巴集团控股有限公司 | Method and device for executing notification in credit item |
CN110570269B (en) * | 2019-07-31 | 2022-03-15 | 创新先进技术有限公司 | Method and device for executing notification in credit item |
CN111431725A (en) * | 2020-04-12 | 2020-07-17 | 中信银行股份有限公司 | Method for signing, changing and verifying validity of electronic agreement in bank system, electronic agreement management system and readable storage medium |
WO2021208526A1 (en) * | 2020-04-17 | 2021-10-21 | 福建福昕软件开发股份有限公司 | Enterprise user-based method and system for simplified pdf document electronic signature |
WO2021208525A1 (en) * | 2020-04-17 | 2021-10-21 | 福建福昕软件开发股份有限公司 | Method, system and device for simplifying electronic signature process on basis of pdf document |
CN111832009A (en) * | 2020-07-22 | 2020-10-27 | 上海绿安信息科技有限公司 | Electronic signature verification method applied to medicine management |
CN113806815A (en) * | 2021-09-27 | 2021-12-17 | 深圳法大大网络科技有限公司 | File signing method and system |
CN113806815B (en) * | 2021-09-27 | 2022-05-10 | 深圳法大大网络科技有限公司 | File signing method and system |
Also Published As
Publication number | Publication date |
---|---|
CN106067849B (en) | 2020-02-21 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106067849A (en) | A kind of digital signature method being applicable to PDF document and device | |
CN104283885B (en) | A kind of implementation method of many SP secure bindings based on intelligent terminal local authentication | |
CN109583184A (en) | Auth method and device and electronic equipment | |
US8549301B2 (en) | Method and computer system for ensuring authenticity of an electronic transaction | |
CN108416589A (en) | Connection method, system and the computer readable storage medium of block chain node | |
CN109660350A (en) | Data based on block chain deposit card method and device, electronic equipment | |
US20200403796A1 (en) | Platform and method of certification of an electronic contract for electronic identification and trust services (eidas) | |
CN108764848B (en) | Electronic contract signing method and system | |
CN107392618A (en) | It is implanted into the method and apparatus of intelligent contract | |
CN109245893A (en) | A kind of identity building and endorsement method for substituting U-shield | |
CN105046168A (en) | Network electron evidence processing system and processing method | |
CN108880832B (en) | Block chain real-name authentication method and system | |
CN110098932A (en) | A kind of electronic document signature method based on safe electronic notarization technology | |
CN106850693B (en) | Real-name authentication method and real-name authentication system | |
US11403633B2 (en) | Method for sending digital information | |
CN110335159B (en) | Application information processing method, device and equipment and readable storage medium | |
CN107330701A (en) | The method and apparatus of the intelligent contract of implantation | |
CN112165382B (en) | Software authorization method and device, authorization server side and terminal equipment | |
CN105554018B (en) | Genuine cyber identification verification method | |
CN105635036B (en) | A kind of verification system and method for electronic ID card | |
CN105591745A (en) | Method and system for performing identity authentication on user using third-party application | |
CN108833431A (en) | A kind of method, apparatus, equipment and the storage medium of password resetting | |
CN111737675A (en) | Block chain-based electronic signature method and device | |
CN112905979A (en) | Electronic signature authorization method and device, storage medium and electronic device | |
CN110022350A (en) | The treating method and apparatus of client registers and registration information |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |