CN106067849B - Digital signature method and device suitable for PDF document - Google Patents
Digital signature method and device suitable for PDF document Download PDFInfo
- Publication number
- CN106067849B CN106067849B CN201610348811.XA CN201610348811A CN106067849B CN 106067849 B CN106067849 B CN 106067849B CN 201610348811 A CN201610348811 A CN 201610348811A CN 106067849 B CN106067849 B CN 106067849B
- Authority
- CN
- China
- Prior art keywords
- contract
- signing
- module
- client
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Systems or methods specially adapted for specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
- G06Q50/18—Legal services; Handling legal documents
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1466—Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/146—Markers for unambiguous identification of a particular session, e.g. session cookie or URL-encoding
Abstract
The invention discloses a digital signature method and device suitable for a PDF document, and relates to the field of digital signatures. The method of the invention comprises the following steps: the digital signature device determines a current user according to a session identifier sent by a client, acquires a currently stored PDF contract document corresponding to a contract ID according to the contract ID sent by the client, performs summary operation on original content in the PDF contract document, signs a summary operation result by using a private key of a user certificate of the current user to obtain digital signature information, and adds the digital signature information and signature information set by the current user and sent by the client into the PDF contract document. By using the method and the device provided by the invention, the PDF document can be enabled to have authenticable, integrity and non-repudiation.
Description
Technical Field
The invention relates to the field of digital signatures, in particular to a digital signature method and a digital signature device suitable for PDF (Portable document Format) documents.
Background
With the popularization of the internet and the development of online transaction technology, online transactions via the internet have become an important transaction method. Electronic contracts are presented during transactions to protect the interests of the parties to the transaction.
Often, a party signs a contract or stamps a official seal before the contract becomes legal. However, it is difficult to sign or seal the PDF electronic contract, and at present, the electronic contract in the network transaction only has a public seal picture, and most of the electronic contract is not subjected to digital signature and electronic authentication, and such electronic contract is easily forged and tampered.
Disclosure of Invention
In order to solve the problems in the prior art, the invention provides a digital signature method and a digital signature device suitable for PDF documents.
The technical scheme adopted by the invention is as follows: a digital signature method applicable to PDF documents, comprising:
step S1, the signing server receives the session identification, contract ID and the set signing information sent by the client, determines the current user according to the session identification, and checks whether the contract signing state of the current user is signed, if yes, returns a signing refusing message to the client, otherwise, executes step S2;
step S2, the signing server acquires the currently stored PDF contract document corresponding to the contract ID according to the contract ID; performing digest operation on the original content in the PDF contract document, signing the digest operation result by using a private key of a user certificate of the current user to obtain digital signature information, adding the digital signature information and the set signing information into the PDF contract document, and modifying the contract signing state of the current user into signed state;
and step S3, the signing server judges whether the current user is the last signer according to all the signers corresponding to the PDF contract document and the respective contract signing states of all the signers, if so, the process is ended, and if not, the process returns to the step S1.
And when the signing server receives a contract refusing request sent by a client, acquiring a refusing reason from the contract refusing request and recording the refusing reason into a database, setting the contract state of the PDF contract document corresponding to the contract ID as invalid, and ending. After the contract state of the PDF contract document corresponding to the contract ID is set to be invalidated, sending a contract invalidation notification mail to all signers corresponding to the PDF contract document before ending.
The step S3 is that the signing server traverses the signing statuses of all signers, if all signers are signed, it is determined that the current user is the last signer, step S4 is executed, otherwise, the next signer is selected from the signers whose signing statuses are unsigned, and a signing notification mail is sent to the next signer, and then step S1 is returned;
and step S4, the signing server sets the contract state of the PDF contract document as completed, and sends a contract signing completion notification mail to all signers, and the process is finished.
The steps S1 and S2 specifically include:
step a1, the signing server receives the session identification, contract ID and the set signing information sent by the client, determines the current user according to the session identification, and checks whether the contract signing state of the current user is signed, if yes, returns a signing refusing message to the client, otherwise, executes step a 2;
step a2, the signing server acquires a PDF contract document corresponding to the contract ID from an object storage server according to the contract ID; performing digest operation on the original content in the PDF contract document, and signing the digest operation result by using a private key of a user certificate of the current user to obtain digital signature information;
step a3, the signing server adds the digital signature information and the set signing information to the PDF contract document to obtain a new PDF contract document, sends the new PDF contract document to the object storage server, and modifies the contract signing state of the current user into signed.
Or the steps S1 and S2 specifically include:
step c1, the signing server receives the session identification, contract ID and the set signing information sent by the client, determines the current user according to the session identification, and checks whether the contract signing state of the current user is signed, if yes, returns a signing refusing message to the client, otherwise, executes step c 2;
step c2, the signing server acquires the currently stored PDF contract document corresponding to the contract ID according to the contract ID, performs summary operation on the original content in the PDF contract document to obtain a summary operation result, forms a signing request according to the summary operation result and the certificate identification corresponding to the current user, sends the signing request to the CA server, and receives the digital signature information returned by the CA server;
step c3, the signing server adds the signing information with completed setting and the received digital signature information to the PDF contract document and modifies the contract signing status of the current user to be signed.
The invention provides a digital signature device suitable for PDF documents, which comprises the following functional modules:
the receiving module is used for receiving the session identification, the contract ID and the set signing information sent by the client;
the storage module is used for storing the PDF contract document and the user certificate;
the acquisition module is used for determining the current user according to the session identifier received by the receiving module and triggering the judgment module, and is also used for acquiring the user certificate of the current user stored in the storage module and the PDF contract document corresponding to the contract ID received by the receiving module when the trigger of the judgment module is received;
the judging module is used for checking whether the contract signing state of the current user is signed or not when the acquiring module determines the current user, if so, returning a signing refusing message to the client, and otherwise, triggering the acquiring module;
the abstract operation module is used for carrying out abstract operation on the original content in the PDF contract document acquired by the acquisition module to obtain an abstract operation result;
the digital signature module is used for signing the summary operation result obtained by the summary operation module by using the private key of the user certificate of the current user obtained by the obtaining module to obtain digital signature information;
the setting module is used for adding the signing information which is received by the receiving module and is set to be complete and the digital signature information which is obtained by the signature of the digital signature module into the PDF contract document which is obtained by the obtaining module, and modifying the contract signing state of the current user which is determined by the obtaining module into a signed contract;
the judging module is further configured to judge whether the current user is the last signer according to all signers corresponding to the PDF contract document acquired by the acquiring module and contract signing states corresponding to all the signers, if yes, contract signing is completed, and otherwise, the receiving module is triggered.
The judging module is further configured to check whether the session identifier is valid when the receiving module receives the session identifier sent by the client, trigger the obtaining module if the session identifier is valid, and return a signing refusal message to the client if the session identifier is not valid.
The receiving module is further configured to trigger the setting module when receiving a request for refusing to sign a contract sent by a client;
the setting module is further configured to obtain and record a rejection reason from the contract rejection request received by the receiving module, and set the contract status of the PDF contract document obtained by the obtaining module as voided. And the contract revocation notification module is further used for sending a contract revocation notification mail to all signers corresponding to the PDF contract document after setting the contract state of the PDF contract document acquired by the acquisition module as revoked.
The above-mentioned judging module is further specifically configured to traverse the contract signing statuses of all signers corresponding to the PDF contract document acquired by the acquiring module, determine that the current user is the last signer if all the signers are signed, and trigger the setting module, otherwise select a next signer from the signers whose signing statuses are unsigned, send a signing notification mail to the next signer, and trigger the receiving module;
correspondingly, the setting module is further configured to set the contract status of the PDF contract document acquired by the acquisition module to be completed when the judgment module judges that the contract signing statuses of all signers corresponding to the PDF contract document are all signed.
Further, the method can also comprise the following steps: the storage module is used for storing the user certificate; the PDF contract document is stored in an object storage server; or, the storage module is configured to store the PDF contract document, and the user certificate is stored in the CA server.
The invention has the beneficial effects that: the PDF document adopting the digital signature technology provided by the invention can not be modified, the risk of counterfeiting and tampering is reduced, and the PDF document has authenticable property, integrity and non-repudiation.
Drawings
FIG. 1 is a flow chart of a digital signature method suitable for PDF documents provided in embodiment 1;
FIG. 2 is a flow chart of a digital signature method suitable for PDF documents provided in embodiment 2;
FIG. 3 is a detailed view of step 6 to step 9 shown in FIG. 2;
FIG. 4 is another detailed view of step 6 through step 9 shown in FIG. 2;
FIG. 5 is a further detailed view of step 6 through step 9 shown in FIG. 2;
FIG. 6 is a flow chart of a digital signature method applied to a PDF document according to embodiment 3;
fig. 7 is a block diagram of a digital signature apparatus suitable for PDF documents according to embodiment 4.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Example 1
The invention provides a digital signature method suitable for PDF document, as shown in FIG. 1, comprising the following steps executed by a signing server:
step 1, receiving a session identifier, a contract ID and set signing information sent by a client, and determining a current user according to the session identifier;
specifically, when receiving a contract signing operation request sent by a client, a signing server acquires a contract ID and a session identifier from the contract signing operation request; and searching a currently stored contract content picture corresponding to the contract ID according to the contract ID, determining signing information needing to be set according to the session identifier, returning the contract content picture and the signing information needing to be set to the client, and receiving the set signing information sent by the client.
Preferably, when the signing server receives the contract signing operation request sent by the client, the signing server further comprises: and the signing server checks whether the session identifier contained in the contract signing operation request is valid, if so, finds out the currently stored contract content picture corresponding to the current user and the signing information needing to be set according to the contract ID and the session identifier and returns the contract content picture to the client, and otherwise, returns the prompt information of logging in again to the client. When the user logs in again at the client, the signing server generates a new session identifier for identifying the current user and returns the new session identifier to the client.
Step 2, checking whether the contract signing state of the current user is signed, if so, returning a signing refusing message to the client, otherwise, executing step 3;
step 3, acquiring a currently stored PDF contract document corresponding to the contract ID according to the contract ID; performing digest operation on the original content in the PDF contract document, and signing the digest operation result by using a private key of a user certificate of the current user to obtain digital signature information;
specifically, the digital signature information includes a signature value and a user certificate. The original content of the PDF contract document is consistent with the content in the contract content picture.
Step 4, adding the digital signature information and the set signing information into the PDF contract document, and modifying the contract signing state of the current user into signed state;
specifically, the PDF contract document includes an area for storing original content and an area for storing digital signature content, and adding the digital signature information and the set signing information to the PDF contract document specifically is adding the digital signature information and the set signing information to the area for storing digital signature content.
Specifically, according to the PDF signature specification, a PDF contract document, an area for storing digital signature content in the PDF contract document (for example, a rectangle determined by coordinates in a certain page of the PDF contract document), set signing information in a picture form, a certificate chain (for example, a user certificate, an upper certificate of the user certificate, and a CA certificate), and digital signature information are known, and an itext interface is invoked to obtain a PDF signature result (that is, after the digital signature information and the set signing information are added to the PDF contract document in step 4, the obtained PDF contract document to which the digital signature information and the set signing information are added is obtained).
And 5, judging whether the current user is the last signer or not according to all the signers corresponding to the PDF contract document and the contract signing states corresponding to all the signers respectively, if so, ending, otherwise, returning to the step 1.
Specifically, the signing server traverses the signing states of all signers, if all signers are signed, the current user is determined to be the last signer, and otherwise, the current user is determined not to be the last signer.
Further, if it is determined that the current user is the last signer, performing: the signing server sets the contract state as completed and stores the contract state in a database, and sends a contract signing completion notification mail to all signers corresponding to the PDF contract document, and the process is finished; specifically, the contract signing completion notification mail contains the PDF contract document to which the digital signature information and the signing information corresponding to all the signers are added.
If the current user is determined not to be the last signer, executing: the signing server selects the next signing state as the unsigned signer, sends a signing notification mail to the next signer, and ends. The operation of step 1 is executed after the next signer receives the signing notification mail, and will not be described herein again.
Example 2
As shown in fig. 2, the digital signature method for a PDF document provided by this embodiment is implemented based on a system composed of a client and a signing server, and includes the following steps:
step 1, a client starts a contract-making platform and generates a contract-making operation request according to a contract ID and a session identifier;
specifically, when a signer receives a signing notification mail, the client starts a contract-signing platform to prompt a user to input user information for logging in, for example, the user information specifically includes a user account and a password, the client acquires a contract ID and a session identifier according to the user information input by the user, and generates a contract signing operation request according to the contract ID and the session identifier.
Preferably, the step further includes a process of verifying the identity of the currently logged-in user by the contract-making platform, specifically including prompting the user to input a short message verification code, sending the short message verification code input by the user to the signing server for verification, if verification success information returned by the signing server is received, the identity of the current user is legal, executing step 2, if verification failure information returned by the signing server is received, the identity of the current user is illegal, and prompting login failure by the client.
Or the method specifically comprises the steps of prompting a user to carry out face verification, sending received face data of the user to a signing server to carry out verification, if verification success information returned by the signing server is received, judging that the identity of the current user is legal, executing the step 2, if verification failure information returned by the signing server is received, judging that the identity of the current user is illegal, and prompting that login fails by a client.
Generally, the identity of a registered user or a non-registered user can be authenticated by a mail security code, a mail security code + a short message authentication code, a mail security code + face data, a user account + a password + a short message authentication code, a user account + a password + face data, and the like. For example, the identity verification is performed through the mail security code, step 1 may specifically be that, when the signer receives the signing notification mail, the signer starts and logs in the contract signing platform through the link address contained in the mail, and sends a contract signing operation request containing the mail security code to the signing server.
Step 2, the client sends a contract signing operation request to the signing server;
step 3, the signing server receives the contract signing operation request, acquires a contract ID and a session identifier from the contract signing operation request, finds out a currently stored contract content picture corresponding to the contract ID according to the contract ID, and determines signing information needing to be set according to the session identifier;
specifically, the signing server further determines whether the contract state corresponding to the contract ID is completed or invalidated, if yes, returns an error prompt message that the contract is completed or invalidated to the client, otherwise, determines the current user according to the session identifier, determines whether the contract signing state of the current user is signed, if yes, returns an error prompt message that the current user is signed to the client, otherwise, executes step 4.
Further, if the user login mode of the client is mail security code login, the signing server may further specifically receive the contract signing operation request, find a contract ID and a session identifier corresponding to the contract ID according to the mail security code included in the contract signing operation request, find a currently stored contract content picture corresponding to the contract ID according to the contract ID, and determine signing information to be set according to the session identifier.
Step 4, the signing server sends the contract content picture and signing information needing to be set to the client;
specifically, the signing information to be set includes a signature, a company name, and further may include a signing date. And the contract content in the contract content picture is consistent with the original content of the PDF contract document. Preferably, the contract content picture is obtained by converting the contract content created by the contract creator into a picture format and storing the converted contract content in the signing server.
Step 5, the client receives and displays the contract content picture and the signing information needing to be set;
preferably, between step 5 and step 6, when the client receives the operation information that the user refuses to sign, the following steps are executed:
step 5-1, the client side obtains a refusal reason from the operation information refused to sign by the user, and sends a contract refusal request containing the refusal reason to a signing server;
and 5-2, the signing server receives the contract refusal request, acquires the refusal reason from the contract refusal request, records the refusal reason into a database, sets the contract state as invalid, sends a contract invalid notification mail to all signers, and ends.
Step 6, the client receives the signing information set by the user;
step 7, the client judges whether all the signing information needing to be set is set, if so, step 8 is executed, otherwise, step 6 is continuously executed;
step 8, the client sends the signing information with finished setting to the signing server;
step 9, the signing server receives the signing information which is set to be finished, synthesizes the signing information which is set to be finished with the contract content picture in a picture form, and updates the contract content picture which is stored currently by using the synthesized picture;
further, the above steps 6 to 9 can be detailed as shown in fig. 3, which is as follows:
step 101, a client receives signing information in a text form input by a user;
further, the client can also convert the signing information in the text form input by the user into the picture form and display the signing information at the client.
Step 102, the client judges whether all the signing information needing to be set is set, if so, step 103 is executed, otherwise, step 101 is continuously executed;
103, the client sends the set signing information to the signing server;
and 104, the signing server receives the set signing information, converts the set signing information into a picture form, synthesizes the picture-form signing information with the contract content picture, and updates the currently stored contract content picture by using the synthesized picture.
Further, the above steps 6 to 9 can be further refined as shown in fig. 4, which is specifically as follows:
step 201, a client receives signing information in a picture form selected by a user;
specifically, the client pre-stores the signing information in the form of the picture of the current user for the user to select, and after the user presses a key to select, the client receives and displays the signing information in the form of the currently selected picture.
Step 202, the client judges whether all the signing information needing to be set is set, if so, step 203 is executed, otherwise, step 201 is continuously executed;
step 203, the client sends the set signing information to the signing server;
and 204, the signing server receives the signing information in the set picture form, synthesizes the signing information in the set picture form with the contract content picture, and updates the currently stored contract content picture by using the synthesized picture.
Further, the above steps 6 to 9 can be further refined as shown in fig. 5, which is specifically as follows:
step 301, when a user presses a button for setting signing information, a client acquires and displays the signing information in a picture form from a signing server;
specifically, when a user presses a button for setting signing information, a client sends a signing information acquisition request to a signing server, the signing server determines a current user according to a session identifier contained in the signing information acquisition request, and generates signing information in a picture form according to information (for example, a recognizable name (DN) item of a certificate issuer) in a user certificate of the current user and returns the signing information to the client.
Step 302, the client judges whether all the signing information needing to be set is set, if so, step 303 is executed, otherwise, step 302 is continuously executed;
specifically, when the client receives a button that the user presses the signing completion, the client determines that all the signing information needing to be set is set, and otherwise, determines that the signing information is not set.
Step 303, the client sends the set signing information to the signing server;
and step 304, the signing server receives the signing information in the set picture form, synthesizes the signing information in the set picture form with the contract content picture, and updates the currently stored contract content picture by using the synthesized picture.
Step 10, a signing server acquires a PDF contract document corresponding to the contract ID, determines a current user according to the set signing information, performs summary operation on the original content of the PDF contract document, signs the summary operation result through a private key of a user certificate of the current user to obtain digital signature information, and adds the digital signature information and the set signing information into the PDF contract document;
specifically, the PDF contract document may be stored in the signing server, or may be stored using an object storage server. The digital signature information comprises a signature value and a user certificate. And 3, the original content of the PDF contract document is consistent with the content in the contract content picture in the step 3. Preferably, the PDF contract document is obtained by converting the contract content created by the contract creator into PDF format and storing it in the signing server.
The PDF contract document includes an area for storing original content and an area for storing digital signature content, and specifically, adding the digital signature information and the set signing information to the PDF contract document specifically is adding the digital signature information and the set signing information to the area for storing digital signature content.
Specifically, the set signing information includes a session identifier, and the signing server determines the current user according to the session identifier.
Preferably, in this embodiment, signing the digest operation result may also be completed by a CA server, and correspondingly, this step specifically includes:
step 10-1, the signing server acquires a PDF contract document corresponding to the contract ID, performs summary operation on the original content of the PDF contract document to obtain a summary operation result, and sends the summary operation result and the certificate identifier to a CA server;
step 10-2, the CA server finds out the private key of the corresponding user certificate according to the certificate identification, signs the summary operation result by using the found private key to obtain digital signature information, and then returns the digital signature information to the signing server;
specifically, the digital signature information includes a signature value and a user certificate.
And step 10-3, the signing server adds the digital signature information and the set signing information to the PDF contract document to obtain a new PDF contract document, and updates the currently stored PDF contract document corresponding to the contract ID by using the new PDF contract document.
Step 11, the signing server stores the signing information after the setting into a database, and modifies the contract signing state of the current user into signed state;
step 12, the signing server judges whether the current user is the last signer, if yes, step 13 is executed, otherwise step 14 is executed;
specifically, the signing server determines whether the current user is the last signer according to all stored signers corresponding to the contract ID and the signing states thereof, specifically, the signing server traverses the signing states of all the signers, if all the signers are signed, the current user is determined to be the last signer, step 13 is executed, otherwise, the next signing state is selected to be an unsigned signer, and step 14 is executed.
Preferably, the signing server stores the PDF contract document created by the contract creator, all signers set by the contract creator for the PDF contract document, the contract content picture, and signing information that needs to be set. Step 13, the signing server sets the contract state as completed and stores the contract state in a database, sends a contract signing completion notification mail containing the PDF contract document to all signers corresponding to the PDF contract document, and ends;
and step 14, the signing server sends a signing notification mail to the next signer, and the process is finished.
Specifically, when the next signer receives the signing notification mail, the operation performed at the client is detailed in step 1 above.
Example 3
As shown in fig. 6, the digital signature method for PDF documents provided in this embodiment is implemented by a system including a client, a signing server, an Object Storage Service (OSS) server and a CA server (CA certificate authority server), and includes the following steps:
step 1, a client starts a contract-making platform and generates a contract-making operation request according to a contract ID and a session identifier;
preferably, the step further includes a process of verifying the validity of the currently logged-in user identity by the contract-contracting platform, specifically including prompting the user to perform face verification, sending the received face data of the user to the signing server for verification, if verification success information returned by the signing server is received, the current user identity is legal, executing step 2, if verification failure information returned by the signing server is received, the current user identity is illegal, and the client prompts login failure.
Step 2, the client sends a contract signing operation request to the signing server;
step 3, the signing server receives the contract signing operation request, acquires a contract ID and a session identifier from the contract signing operation request, finds out a currently stored contract content picture corresponding to the contract ID according to the contract ID, and determines signing information needing to be set according to the session identifier;
specifically, the signing server further determines whether the contract state corresponding to the contract ID is completed or invalidated, if yes, returns an error prompt message that the contract is completed or invalidated to the client, otherwise, determines the current user according to the session identifier, determines whether the contract signing state of the current user is signed, if yes, returns an error prompt message that the current user is signed to the client, otherwise, executes step 4.
Step 4, the signing server sends the contract content picture and signing information needing to be set to the client;
specifically, the signing information to be set may include a signature, a company name, and a signing date.
Preferably, the signing server starts a timer after the step, the timing time is preferably set to 10 minutes, if the set signing information sent by the client is received within 10 minutes of starting timing, the operation of the step 9 is executed, otherwise, the client prompts the user to re-perform the authentication.
Step 5, the client receives and displays the contract content picture and the signing information needing to be set;
step 6, the client receives the signing information set by the user;
specifically, the signing information set by the user may be signing information in a picture form selected by the user from stored information, or signing information in a text form input by the user, and a specific implementation manner of the signing information set by the user is the same as that described in embodiment 2, and is not described herein again.
Step 7, the client judges whether all the signing information needing to be set is set, if so, step 8 is executed, otherwise, step 6 is continuously executed;
step 8, the client sends the signing information with finished setting to the signing server;
step 9, the signing server receives the signing information which is set to be finished, the signing information which is set to be finished is combined with the contract content picture in a picture form, the currently stored contract content picture is updated by the combined picture, and a PDF contract document acquisition request is formed according to the contract ID;
step 10, the signing server sends the request for obtaining the PDF contract document to the OSS server;
step 11, the OSS server obtains a contract ID from the received PDF contract document acquisition request, and finds a corresponding PDF contract document according to the contract ID;
step 12, the OSS server returns the PDF contract document to a signing server;
step 13, the signing server receives the PDF contract document, performs summary operation on the original content of the PDF contract document to obtain a summary operation result, determines the current user according to the set signing information, and forms a signature request according to the summary operation result and the certificate identifier corresponding to the current user;
specifically, the original content of the PDF contract document is consistent with the contract content in the contract content picture in step 4. Preferably, the PDF contract document and the contract content picture are both obtained by format conversion according to the contract content created by the contract creator.
Further, the company name and the signing date in the set signing information can be added to the original content of the PDF contract document, and then the summary operation is performed on the original content to obtain a summary result.
Step 14, the signing server sends the signing request to a CA server;
step 15, the CA server obtains the summary operation result and the certificate identification from the received signature request, finds the private key of the corresponding user certificate according to the certificate identification, and signs the summary operation result through the private key of the user certificate to obtain digital signature information;
specifically, the digital signature information includes a signature value and a user certificate.
Step 16, the CA server returns the digital signature information to the signing server;
step 17, the signing server adds the received digital signature information and the set signing information to the PDF contract document to obtain a new PDF contract document;
specifically, the PDF contract document includes an area for storing original content and an area for storing digital signature content, and this step is to add the digital signature information and the set signing information to the area for storing digital signature content.
Step 18, the signing server stores the signing information after the setting into a database, and modifies the contract signing state of the current user into signed state;
step 19, the signing server judges whether the current user is the last signer, if yes, step 21 is executed, otherwise step 20 is executed;
specifically, the signing server determines whether the current user is the last signer according to all stored signers corresponding to the contract ID and the signing status thereof, specifically, the signing server traverses the signing statuses of all the signers, if all the signers are signed, it is determined that the current user is the last signer, step 21 is executed, otherwise, the next signing status is selected as an unsigned signer, and step 20 is executed.
Preferably, the signing server stores all the signers set by the contract creator, the contract content pictures and the signing information required to be set.
And 20, the signing server sends a signing notification mail to the next signer, and the process is finished.
Specifically, when the next signer receives the signing notification mail, the operation performed at the client is detailed in step 1 above.
Step 21, the signing server sets the contract state to be completed and stores the contract state in a database;
and step 22, the signing server sends the new PDF contract document to an OSS server, sends a contract signing completion notification mail containing the new PDF contract document to all signers corresponding to the new PDF contract document, and ends.
And step 23, the OSS server updates the PDF contract document corresponding to the contract ID with the received new PDF contract document.
Example 4
The embodiment provides a digital signature device suitable for a PDF document, as shown in fig. 7, comprising: the system comprises a receiving module 401, a storage module 402, an obtaining module 403, a judging module 404, a summary operation module 405, a digital signature module 406 and a setting module 407, wherein the functions of the modules are as follows:
a receiving module 401, configured to receive a session identifier, a contract ID, and set signing information sent by a client;
a storage module 402, configured to store a PDF contract document and a user certificate;
an obtaining module 403, configured to determine a current user according to the session identifier received by the receiving module 401, trigger the determining module 404, and further configured to obtain a user certificate of the current user stored in the storing module 402 and a PDF contract document corresponding to the contract ID received by the receiving module 401 when the determining module 404 is triggered;
a judging module 404, configured to, when the obtaining module 403 determines the current user, check whether the contract signing status of the current user is signed, if yes, return a signing refusal message to the client, and otherwise, trigger the obtaining module 403;
a summarization operation module 405, configured to perform summarization operation on the original content in the PDF contract document acquired by the acquisition module 403 to obtain a summarization operation result;
a digital signature module 406, configured to sign the digest operation result obtained by the digest operation module 405 using the private key of the user certificate of the current user obtained by the obtaining module 403 to obtain digital signature information;
a setting module 407, configured to add the signing information that is received by the receiving module 401 and is set to be complete and the digital signature information obtained by the signature of the digital signature module 406 to the PDF contract document acquired by the acquiring module 403, and modify the contract signing status of the current user determined by the acquiring module 403 to be signed;
the determining module 404 is further configured to determine whether the current user is the last signer according to all signers corresponding to the PDF contract document acquired by the acquiring module 403 and the contract signing statuses corresponding to all signers, if yes, the contract signing is completed, and otherwise, the receiving module 401 is triggered.
Further, the digital signature apparatus in this embodiment may further include a first transceiver module;
the first transceiver module is configured to receive a contract signing operation request sent by a client, trigger an obtaining module 403, and send the contract content picture and signing information to be set, which are returned by the obtaining module 403, to the client;
correspondingly, the storage module 402 is further configured to store a contract content picture;
correspondingly, the obtaining module 403 is further configured to obtain a contract ID and a session identifier from the contract signing operation request received by the first transceiver module, obtain a contract content picture corresponding to the contract ID stored in the storage module 402 according to the contract ID, determine a current user and signing information required to be set according to the session identifier, and send the contract content picture and the signing information required to be set to the first transceiver module;
or, the obtaining module 403 is further configured to find a contract ID and a session identifier corresponding to the mail security code according to the mail security code included in the contract signing operation request received by the first transceiver module, obtain a contract content picture corresponding to the contract ID stored in the storage module 402 according to the contract ID, determine signing information required to be set according to the session identifier, and send the contract content picture and the signing information required to be set to the first transceiver module;
further, the digital signature apparatus in this embodiment further includes a picture generation module, which is configured to combine the signing information that is received by the receiving module 401 and is set to be complete with the contract content picture acquired by the acquiring module 403 in a picture form, and update the contract content picture stored in the storage module 402 with the combined picture.
Correspondingly, the determining module 404 is further configured to, when the receiving module 401 receives a session identifier sent by a client, check whether the session identifier is valid, if so, trigger the obtaining module 403, otherwise, return a signing refusal message to the client.
Preferably, the digital signature apparatus in this embodiment further includes a verification module;
the verification module is used for verifying the identity of the user currently logged in the contract-making platform, triggering the first transceiver module if the identity passes the verification, and sending a message prompting login failure to the client if the identity does not pass the verification.
Preferably, the first transceiver module is further configured to trigger the determining module 404 after sending the contract content picture returned by the obtaining module 403 and the signing information that needs to be set to the client;
the determining module 404 is further configured to determine whether the receiving module 401 receives the signing information that the setting is completed and is sent by the client within a preset time, if so, the setting module 407 is triggered, and otherwise, a message prompting that the setting is overtime is sent to the client.
Preferably, the first transceiver module is further configured to, when receiving a request for obtaining signed information sent by a client, determine a current user according to a session identifier included in the request for obtaining signed information, generate signed information in a picture form according to information (for example, DN item information) in a user certificate of the current user stored in the storage module 402, and return the signed information to the client.
Further, the receiving module 401 is further configured to trigger the setting module 407 when receiving a request sent by the client to reject signing the contract;
correspondingly, the setting module 407 is further configured to obtain and record a rejection reason from the request for rejecting signing a contract received by the receiving module 401, and set the contract status of the PDF contract document obtained by the obtaining module 403 as invalidated.
The setting module 407 is further configured to send a contract revocation notification mail to all signers corresponding to the PDF contract document after setting the contract status of the PDF contract document acquired by the acquiring module 403 as revoked.
Preferably, the determining module 404 is specifically configured to traverse the contract signing statuses of all signers corresponding to the PDF contract document acquired by the acquiring module 403, determine that the current user is the last signer if all the signers are signed, and trigger the setting module 407, otherwise select a next signer from the signers whose signing statuses are unsigned, send a signing notification mail to the next signer, and trigger the receiving module 401;
correspondingly, the setting module 407 is further configured to set the contract status of the PDF contract document acquired by the acquiring module to be completed when the judgment result of the judging module 404 is yes.
Further, the storage module 402 of the digital signature apparatus in this embodiment may also only store the user certificate, and the PDF contract document may be stored in other apparatuses, such as an object storage server (OSS server).
Correspondingly, the obtaining module 403 includes a determining unit and a first obtaining unit;
the determining unit is configured to determine a current user according to the session identifier received by the receiving module 401;
the first acquiring unit is configured to acquire a PDF contract document corresponding to the contract ID received by the receiving module 401 from an object storage server;
correspondingly, the setting module 407 is specifically configured to add the signing information that is received by the receiving module 401 and is set to be complete and the digital signature information obtained by the signature of the digital signature module 406 to the PDF contract document obtained by the obtaining module 403 to obtain a new PDF contract document, and send the obtained new PDF contract document to the object storage server; for modifying the contract signing status of the current user determined by the obtaining module 403 into signed; and is further configured to set the contract status of the PDF contract document acquired by the acquisition module 403 as completed when the judgment result of the judgment module 404 is yes.
Or further, the storage module 401 of the digital signature apparatus in this embodiment is configured to store the PDF contract document, and store the user certificate in another apparatus, such as a CA server;
correspondingly, the digital signature module 406 includes a component unit and a transceiver unit;
the composition unit is configured to compose a signature request according to the digest operation result obtained by the digest operation module 405 and the certificate identifier corresponding to the current user determined by the acquisition module 403, and trigger the transceiver unit;
the transceiver unit is configured to send the signature request composed by the component units to a CA server, receive digital signature information returned by the CA server, and send the digital signature information to the setting module 407.
The above description is only for the specific embodiments of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art can easily conceive of the changes or substitutions within the technical scope of the present invention, and all the changes or substitutions should be covered within the scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (24)
1. A digital signature method suitable for PDF document is characterized by comprising the following steps:
step S1, the signing server receives the session identification, contract ID and the set signing information sent by the client, determines the current user according to the session identification, and checks whether the contract signing state of the current user is signed, if yes, returns a signing refusing message to the client, otherwise, executes step S2;
step S2, the signing server obtains the currently stored PDF contract document corresponding to the contract ID according to the contract ID, wherein the PDF contract document comprises an area for storing original content and an area for storing digital signature content; performing digest operation on original content in the PDF contract document, signing a digest operation result by using a private key of a user certificate of a current user to obtain digital signature information, adding the digital signature information and the set signing information into an area, used for storing digital signature content, of the PDF contract document, and modifying a contract signing state of the current user into a signed state;
step S3, the signing server judges whether the current user is the last signer according to all signers corresponding to the PDF contract document and the respective contract signing states of all the signers, if so, the process is finished, otherwise, the process returns to the step S1;
step S0 is further included before step S1, and step S0 specifically includes:
step S0a, when a signing server receives a contract signing operation request sent by a client, acquiring a contract ID from the contract signing operation request, finding a currently stored contract content picture corresponding to the contract ID according to the contract ID, and returning the contract content picture to the client;
or, in step S0b, when the signing server receives a contract signing operation request sent by the client, finding a contract ID corresponding to the mail security code according to the mail security code included in the contract signing operation request, finding a currently stored contract content picture corresponding to the contract ID according to the contract ID, and returning the contract content picture to the client;
contract content in the contract content picture is consistent with original content of the PDF contract document;
the step S1 further includes that the signing server synthesizes the signing information with which the setting is completed and the contract content picture in a picture form, and updates the currently saved contract content picture with the synthesized picture.
2. The method as claimed in claim 1, wherein the step S0a further comprises:
and the signing server acquires a session identifier from the contract signing operation request, determines the current user and signing information required to be set according to the session identifier, and returns the signing information required to be set to the client.
3. The method according to claim 1, wherein said step S1 further comprises said signing server checking whether said session identifier is valid, if yes, performing said determining the current user according to said session identifier, otherwise returning a signing refusal message to the client.
4. The method as claimed in claim 1, wherein the step S0b further comprises:
the signing server searches a session identification corresponding to the mail security code according to the mail security code contained in the contract signing operation request, determines signing information needing to be set according to the session identification, and returns the signing information needing to be set to the client.
5. The method of claim 2 or 4, wherein: the step S0 further includes the signing server verifying the identity of the current user, if the verification is passed, the step S0 is executed, and if the verification is not passed, the client prompts that the login fails.
6. The method of claim 2 or 4, wherein: the step S0 and the step S1 further include that the signing server determines whether the set signing information sent by the client is received within a preset time, if so, the step S1 is executed, otherwise, the client prompts the user to set timeout.
7. The method of claim 2 or 4, wherein: between the step S0 and the step S1, when the signing server receives a request for obtaining signed information from a client, the signing server determines a current user according to a session identifier included in the request for obtaining signed information, generates signed information in a picture form according to information in a user certificate of the current user, and returns the signed information to the client.
8. The method of claim 1, further comprising: and when the signing server receives a contract refusing request sent by a client, acquiring a refusing reason from the contract refusing request and recording the refusing reason into a database, setting the contract state of the PDF contract document corresponding to the contract ID as invalid, and ending.
9. The method of claim 8, wherein: after the contract state of the PDF contract document corresponding to the contract ID is set to be invalidated, sending a contract invalidation notification mail to all signers corresponding to the PDF contract document before ending.
10. The method of claim 1, further comprising: the step S3 is that the signing server traverses the signing statuses of all signers, if all signers are signed, the current user is determined to be the last signer, step S4 is executed, otherwise, the next signer is selected from the signers whose signing statuses are unsigned, and a signing notification mail is sent to the next signer, and then step S1 is returned;
and step S4, the signing server sets the contract state of the PDF contract document as completed, and sends a contract signing completion notification mail to all signers, and the process is finished.
11. The method as claimed in claim 1, wherein the steps S1 and S2 specifically include:
step a1, the signing server receives the session identification, contract ID and the set signing information sent by the client, determines the current user according to the session identification, and checks whether the contract signing state of the current user is signed, if yes, returns a signing refusing message to the client, otherwise, executes step a 2;
step a2, the signing server acquires a PDF contract document corresponding to the contract ID from an object storage server according to the contract ID; performing digest operation on the original content in the PDF contract document, and signing the digest operation result by using a private key of a user certificate of the current user to obtain digital signature information;
step a3, the signing server adds the digital signature information and the set signing information to the PDF contract document to obtain a new PDF contract document, sends the new PDF contract document to the object storage server, and modifies the contract signing state of the current user into signed.
12. The method as claimed in claim 1, wherein the steps S1 and S2 specifically include:
step c1, the signing server receives the session identification, contract ID and the set signing information sent by the client, determines the current user according to the session identification, and checks whether the contract signing state of the current user is signed, if yes, returns a signing refusing message to the client, otherwise, executes step c 2;
step c2, the signing server acquires the currently stored PDF contract document corresponding to the contract ID according to the contract ID, performs summary operation on the original content in the PDF contract document to obtain a summary operation result, forms a signing request according to the summary operation result and the certificate identification corresponding to the current user, sends the signing request to the CA server, and receives the digital signature information returned by the CA server;
step c3, the signing server adds the signing information with completed setting and the received digital signature information to the PDF contract document and modifies the contract signing status of the current user to be signed.
13. A digital signature device suitable for PDF document is characterized by comprising:
the receiving module is used for receiving the session identification, the contract ID and the set signing information sent by the client;
the storage module is used for storing the PDF contract document and the user certificate;
the acquisition module is used for determining a current user according to the session identifier received by the receiving module and triggering the judgment module, and is also used for acquiring a user certificate of the current user stored in the storage module and a PDF contract document corresponding to the contract ID received by the receiving module when the judgment module is triggered, wherein the PDF contract document comprises an area for storing original content and an area for storing digital signature content;
the judging module is used for checking whether the contract signing state of the current user is signed or not when the acquiring module determines the current user, if so, returning a signing refusing message to the client, and otherwise, triggering the acquiring module;
the abstract operation module is used for carrying out abstract operation on the original content in the PDF contract document acquired by the acquisition module to obtain an abstract operation result;
the digital signature module is used for signing the summary operation result obtained by the summary operation module by using the private key of the user certificate of the current user obtained by the obtaining module to obtain digital signature information;
the setting module is used for adding the signing information which is received by the receiving module and is set to be complete and the digital signature information which is obtained by the signature of the digital signature module into the area of the PDF contract document which is obtained by the obtaining module and used for storing the digital signature content, and modifying the contract signing state of the current user which is determined by the obtaining module into a signed contract;
the judging module is further configured to judge whether the current user is the last signer according to all signers corresponding to the PDF contract document acquired by the acquiring module and contract signing states corresponding to all the signers, if so, contract signing is completed, otherwise, the receiving module is triggered;
the device further comprises: the first receiving and sending module is used for receiving a contract signing operation request sent by a client, triggering the acquisition module and sending the contract content picture returned by the acquisition module to the client;
the storage module is also used for storing contract content pictures;
the acquiring module is further configured to acquire a contract ID from the contract signing operation request received by the first transceiver module, acquire, according to the contract ID, a contract content picture corresponding to the contract ID and stored in the storage module, and send the contract content picture to the first transceiver module; or, the obtaining module is further configured to find a contract ID corresponding to the mail security code according to the mail security code included in the contract signing operation request received by the first transceiver module, obtain, according to the contract ID, a contract content picture corresponding to the contract ID stored in the storage module, and send the contract content picture to the first transceiver module; contract content in the contract content picture is consistent with original content of the PDF contract document;
the device also comprises a picture generation module, wherein the picture generation module is used for synthesizing the signing information which is received by the receiving module and is set to be complete with the contract content picture acquired by the acquisition module in a picture form, and updating the contract content picture stored in the storage module by using the synthesized picture.
14. The apparatus of claim 13, wherein: the first transceiver module is further configured to send the signing information to be set, which is returned by the acquisition module, to the client;
the acquiring module is further configured to acquire a session identifier from the contract signing operation request received by the first transceiver module, determine a current user and signing information required to be set according to the session identifier, and send the signing information required to be set to the first transceiver module.
15. The apparatus of claim 13, wherein: the judging module is further configured to check whether the session identifier is valid when the receiving module receives the session identifier sent by the client, trigger the obtaining module if the session identifier is valid, and return a signing refusal message to the client if the session identifier is not valid.
16. The apparatus of claim 13, wherein: the first transceiver module is further configured to send the signing information to be set, which is returned by the acquisition module, to the client;
the acquiring module is further configured to find a session identifier corresponding to the mail security code according to the mail security code included in the contract signing operation request received by the first transceiver module, determine signing information required to be set according to the session identifier, and send the signing information required to be set to the first transceiver module.
17. The apparatus of claim 14 or 16, wherein: the apparatus further comprises a verification module;
the verification module is used for verifying the identity of the current user, triggering the first transceiver module if the identity of the current user passes the verification, and sending a message prompting login failure to the client if the identity of the current user does not pass the verification.
18. The apparatus of claim 14 or 16, wherein: the first transceiving module is further configured to trigger a determining module after the contract content picture returned by the obtaining module and the signing information to be set are sent to the client;
the judging module is further configured to judge whether the receiving module receives the signature information that is sent by the client and is set to be completed within a preset time, if so, the receiving module triggers the setting module, otherwise, a message prompting setting timeout is sent to the client.
19. The apparatus of claim 14 or 16, wherein: the first transceiving module is further configured to, when receiving a request for obtaining signed information sent by a client, determine a current user according to a session identifier included in the request for obtaining signed information, generate signed information in a picture form according to information in a user certificate of the current user stored in the storage module, and return the signed information to the client.
20. The apparatus of claim 13, wherein: the receiving module is further used for triggering the setting module when receiving a request of refusing to sign a contract sent by a client;
the setting module is further configured to obtain and record a rejection reason from the contract rejection request received by the receiving module, and set the contract status of the PDF contract document obtained by the obtaining module as voided.
21. The apparatus of claim 20, wherein: the setting module is further configured to send a contract revocation notification mail to all signers corresponding to the PDF contract document when the contract status of the PDF contract document acquired by the acquiring module is set to be revoked.
22. The apparatus of claim 13, wherein: the judging module is further specifically configured to traverse contract signing statuses of all signers corresponding to the PDF contract document acquired by the acquiring module, determine that the current user is the last signer if all the signers are signed, trigger the setting module, otherwise select a next signer from the signers whose signing statuses are unsigned, send a signing notification mail to the next signer, and trigger the receiving module;
the setting module is further configured to set the contract status of the PDF contract document acquired by the acquiring module to be completed when the judging module judges that the contract signing statuses of all signers corresponding to the PDF contract document are all signed.
23. The apparatus of claim 13, wherein: the storage module is used for storing the user certificate; the PDF contract document is stored in an object storage server;
the acquisition module comprises a determination unit and a first acquisition unit;
the determining unit is configured to determine a current user according to the session identifier received by the receiving module;
the first acquisition unit is used for acquiring a PDF contract document corresponding to the contract ID received by the receiving module from an object storage server;
the setting module is specifically configured to add the signing information that is received by the receiving module and is set up and the digital signature information that is obtained by the signature of the digital signature module to the PDF contract document that is obtained by the obtaining module to obtain a new PDF contract document, and send the obtained new PDF contract document to the object storage server; for modifying the contract signing status of the current user determined by the acquisition module to signed.
24. The apparatus of claim 13, wherein the storage module is configured to store a PDF contract document; the user certificate is stored in a CA server;
the digital signature module comprises a composition unit and a transceiving unit;
the composition unit is used for composing a signature request according to the summary operation result obtained by the operation of the summary operation module and the certificate identifier corresponding to the current user determined by the acquisition module, and triggering the receiving and sending unit;
the receiving and sending unit is used for sending the signature request composed by the composition unit to a CA server, receiving digital signature information returned by the CA server and sending the digital signature information to the setting module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610348811.XA CN106067849B (en) | 2016-05-24 | 2016-05-24 | Digital signature method and device suitable for PDF document |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610348811.XA CN106067849B (en) | 2016-05-24 | 2016-05-24 | Digital signature method and device suitable for PDF document |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106067849A CN106067849A (en) | 2016-11-02 |
| CN106067849B true CN106067849B (en) | 2020-02-21 |
Family
ID=57420828
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610348811.XA Active CN106067849B (en) | 2016-05-24 | 2016-05-24 | Digital signature method and device suitable for PDF document |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106067849B (en) |
Families Citing this family (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107133777A (en) * | 2017-04-25 | 2017-09-05 | 飞天诚信科技股份有限公司 | A kind of establishment of electronic contract, signature method and system |
| CN107294706B (en) * | 2017-06-09 | 2019-08-30 | 飞天诚信科技股份有限公司 | A kind of endorsement method, signature server and system for supporting to verify signature for a long time |
| CN108833105B (en) * | 2018-04-10 | 2020-12-29 | 创新先进技术有限公司 | Electronic signature method and device |
| CN108764848B (en) * | 2018-05-31 | 2021-03-16 | 飞天诚信科技股份有限公司 | Electronic contract signing method and system |
| CN109508951A (en) * | 2018-10-09 | 2019-03-22 | 重庆君子签科技有限公司 | Barcode scanning contracting method, device, storage medium and server |
| CN109829317A (en) * | 2018-12-14 | 2019-05-31 | 平安科技(深圳)有限公司 | A kind of method, apparatus and system generating electronic contract based on handwritten signature picture |
| CN110069949A (en) * | 2019-04-19 | 2019-07-30 | 浙江鲸腾网络科技有限公司 | A kind of electronic contract signature method, apparatus, equipment and medium |
| TW202105215A (en) * | 2019-07-18 | 2021-02-01 | 神通資訊科技股份有限公司 | Electronic signature system using web services and method thereof |
| CN110570269B (en) * | 2019-07-31 | 2022-03-15 | 创新先进技术有限公司 | Method and device for executing notification in credit item |
| CN111431725B (en) * | 2020-04-12 | 2023-07-11 | 中信银行股份有限公司 | Bank system electronic protocol signing, changing and validity verification method, electronic protocol management system and readable storage medium |
| CN111539000B (en) * | 2020-04-17 | 2022-06-28 | 福建福昕软件开发股份有限公司 | Method, system and device for simplifying electronic signature process based on PDF document |
| CN111539001B (en) * | 2020-04-17 | 2022-06-28 | 福建福昕软件开发股份有限公司 | Method and system for simplifying PDF document electronic signature based on enterprise user |
| CN111832009A (en) * | 2020-07-22 | 2020-10-27 | 上海绿安信息科技有限公司 | Electronic signature verification method applied to medicine management |
| CN113806815B (en) * | 2021-09-27 | 2022-05-10 | 深圳法大大网络科技有限公司 | File signing method and system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101593332A (en) * | 2008-05-28 | 2009-12-02 | 北京邮电大学 | A kind of electronic contract management system and its implementation |
| CN101702150A (en) * | 2009-12-02 | 2010-05-05 | 江西金格网络科技有限责任公司 | Method for protecting, verifying and repealing content of PDF document page |
| CN102117389A (en) * | 2011-03-11 | 2011-07-06 | 北京神舟航天软件技术有限公司 | Word file signature method and system |
| CN103617403A (en) * | 2013-11-25 | 2014-03-05 | 广东数字证书认证中心有限公司 | PDF file digital signature and verification method and system |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9276749B2 (en) * | 2012-07-31 | 2016-03-01 | Adobe Systems Incorporated | Distributed validation of digitally signed electronic documents |
-
2016
- 2016-05-24 CN CN201610348811.XA patent/CN106067849B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101593332A (en) * | 2008-05-28 | 2009-12-02 | 北京邮电大学 | A kind of electronic contract management system and its implementation |
| CN101702150A (en) * | 2009-12-02 | 2010-05-05 | 江西金格网络科技有限责任公司 | Method for protecting, verifying and repealing content of PDF document page |
| CN102117389A (en) * | 2011-03-11 | 2011-07-06 | 北京神舟航天软件技术有限公司 | Word file signature method and system |
| CN103617403A (en) * | 2013-11-25 | 2014-03-05 | 广东数字证书认证中心有限公司 | PDF file digital signature and verification method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106067849A (en) | 2016-11-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106067849B (en) | Digital signature method and device suitable for PDF document | |
| US6789193B1 (en) | Method and system for authenticating a network user | |
| US8190903B2 (en) | Method and apparatus for verifying authenticity of digital data using trusted computing | |
| CN110098932B (en) | Electronic document signing method based on safe electronic notarization technology | |
| CN110391913B (en) | Vehicle binding method and device | |
| US20080016357A1 (en) | Method of securing a digital signature | |
| CN108764848B (en) | Electronic contract signing method and system | |
| US8549301B2 (en) | Method and computer system for ensuring authenticity of an electronic transaction | |
| US20200403796A1 (en) | Platform and method of certification of an electronic contract for electronic identification and trust services (eidas) | |
| CN108092779A (en) | A kind of method and device for realizing electronic signature | |
| US8261336B2 (en) | System and method for making accessible a set of services to users | |
| JP2002024177A (en) | Electronic notarization system and method | |
| JP2003521154A (en) | How to issue electronic identification information | |
| KR20130107188A (en) | Server and method for authentication using sound code | |
| CN112165382B (en) | Software authorization method and device, authorization server side and terminal equipment | |
| CN108833431B (en) | Password resetting method, device, equipment and storage medium | |
| US8601270B2 (en) | Method for the preparation of a chip card for electronic signature services | |
| CN107294706A (en) | It is a kind of to support the endorsement method of long-term checking signature, sign server and system | |
| CN109658041B (en) | File generation device, file generation method, file generation device, and readable storage medium | |
| KR102462411B1 (en) | Platform and method for authenticating electronic announcements for electronic identification and authentication services (EDS) | |
| CN110222077A (en) | Method of proof and system based on block chain | |
| WO2022248938A1 (en) | Authenticating data and communication sources | |
| CN115310141A (en) | Document authentication method based on notarization and signing of notarization system | |
| CN111698204B (en) | Bidirectional identity authentication method and device | |
| CN108763965A (en) | Method, apparatus, equipment and the medium that electronic contract data are saved from damage |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |