CN110008679A - A kind of electronic seal method and electronic seal system based on digital certificate - Google Patents

A kind of electronic seal method and electronic seal system based on digital certificate Download PDF

Info

Publication number
CN110008679A
CN110008679A CN201910128575.4A CN201910128575A CN110008679A CN 110008679 A CN110008679 A CN 110008679A CN 201910128575 A CN201910128575 A CN 201910128575A CN 110008679 A CN110008679 A CN 110008679A
Authority
CN
China
Prior art keywords
seal
stamped signature
digital certificate
management system
electronic
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201910128575.4A
Other languages
Chinese (zh)
Inventor
李�杰
巫乔顺
李桂雄
彭海波
匡胜徽
杨洋
杨滔
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Yunnan Kunming Electronic Mdt Infotech Ltd
Original Assignee
Yunnan Kunming Electronic Mdt Infotech Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Yunnan Kunming Electronic Mdt Infotech Ltd filed Critical Yunnan Kunming Electronic Mdt Infotech Ltd
Priority to CN201910128575.4A priority Critical patent/CN110008679A/en
Publication of CN110008679A publication Critical patent/CN110008679A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3231Biological data, e.g. fingerprint, voice or retina
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Health & Medical Sciences (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Life Sciences & Earth Sciences (AREA)
  • Biodiversity & Conservation Biology (AREA)
  • Biomedical Technology (AREA)
  • General Health & Medical Sciences (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Collating Specific Patterns (AREA)

Abstract

The present invention discloses a kind of electronic seal method and electronic seal system based on digital certificate.The method includes filing an application to E-seal management system, seal is covered into picture import system and generates E-seal, the E-seal of generation is stored in electronic key, fingerprint signature device and/or E-seal management system;Stamped signature logging in system by user simultaneously reads in electronic document, and private key, the E-seal of stamped signature user are read by electronic key, fingerprint signature device and/or system, then bundlees private key and E-seal to electronic document stamped signature;User terminal access system simultaneously opens stamped signature data, and system verifies the E-seal validity in stamped signature electronic document automatically, if electronic document and/or E-seal are illegal, give a warning and does not show;E-seal management system timely responds to the revoking of E-seal, handling of card loss.The electronic seal system includes E-seal production module, stamped signature module, authentication module, exception processing module, E-seal management system.

Description

A kind of electronic seal method and electronic seal system based on digital certificate
Technical field
The invention belongs to Automated Technology in Office fields, and in particular to a kind of manageability, high-efficient, at low cost, safety can The electronic seal method and electronic seal system based on digital certificate leaned on.
Background technique
As traditional office mode is gradually to informatized office work Mode change, the transaction models of papery document are also therewith to electricity The transaction models of Ziwen book change, but some problems encountered in practical applications are also gradually exposed.Such as: how to ensure Is electronic document from the horse's mouth? how electronic document content intact is ensured? how electronic document non-repudiation is ensured? how electricity is verified Is Ziwen book from the horse's mouth? how electronic document content intact is verified? these are the premises that can electronic document have legal effect Can condition and electronic document replace paper document and widely used key.In order to ensure that electronic document is effective Property while, but also electronic document can with traditionally on paper document public letter visual effect having the same, to propose electronics The concept of seal.And in the application of E-seal, how to ensure the availability of E-seal, and how to guarantee electronic document The problem of that writes comments on a document is safe, legal and effective, becomes urgent need to resolve.
E-seal technology integrates digital certificate and seal image scan data, with simulation tradition seal in kind, pipe Reason, usage mode meet the habit and experience of seal in kind, and the electronic document covered has the paper covered with seal in kind The identical appearance of file, identical validity and similar usage mode.
In general, digital certificate is by a pair of secret keys and user information and third party's digital certification authority (Certificate Authority, hereinafter referred to as CA) the data such as digital signature collectively constitute, and be written in certain storage medium, it is ensured that user Information is not illegally read and is distorted.Digital certificate (digital certificates) is usually the third party's digital authenticating trusted jointly by everybody Mechanism (i.e. CA) issues.Any one trusts one side of communication of CA, can be signed by the CA on verifying other side's digital certificate Name sets up the trust with other side, and obtains the public key of other side in case using, i.e., the key to be matched each other using a pair into Row encryption, decryption.Each user oneself setting one is solved being only specifically private cipher keys (private key) all in person with it Close and signature;It concurrently sets a public keys (public key) and is disclosed by me, it is shared by one group of user, for encrypting and testing Signed certificate name.When sending a classified document, sender uses the public key of recipient to data encryption, and recipient then uses certainly Oneself private key decryption, such information can arrive at the destination safe and punctually.Guarantee ciphering process by the means of number It is an irreversible procedure, i.e., could be only decrypted with private cipher key.The management that public key technique solves cipher key distribution is asked Topic, user can disclose its public-key cryptography, and retain its private cipher key.
Currently, the code key of E-seal is stored in the USB-KEY of physics mode, so that the life of E-seal Period and USB-KEY are bundled, although can guarantee certain security reliability.It is logical but there is also such as stamped signature persons Password verification mode opening USB-KEY is crossed to be difficult to avoid that on behalf of stamped signature, reliability Shortcomings;In Electronic Signature, holder Not band USB-KEY, then stamped signature could be completed by needing to take USB-KEY, and time-response is poor;In personnel variation or USB- extremely When KEY damage, loss, it is difficult to be freezed or be suspended in time use to E-seal, management and use are all inflexible.
Summary of the invention
The first object of the present invention is to provide a kind of manageability, high-efficient, at low cost, safe and reliable is demonstrate,proved based on number The electronic seal method of book;Second is designed to provide a kind of electronic seal system based on the first purpose based on digital certificate.
The first object of the present invention is achieved in that including E-seal production, E-seal use, E-seal is tested Card, E-seal abnormality processing step, specifically include:
A, E-seal makes: legitimate user proposes E-seal application to E-seal management system, then will scanning Original physical seal cover part picture and import E-seal management system and generate E-seal, the E-seal of generation is stored In electronic key, fingerprint signature device and/or E-seal management system;
B, E-seal uses: stamped signature user, which logs in E-seal management system by stamped signature customer side and reads in needs, to be added The electronic document of lid E-seal, stamped signature customer side are read by electronic key, fingerprint signature device and/or E-seal management system Private key, the E-seal of stamped signature customer digital certificate are taken, then private key and E-seal is bundled, stamped signature is carried out to electronic document, Complete the stamped signature of electronic document;
C, E-seal is verified: user terminal access E-seal management system simultaneously opens stamped signature data, E-seal pipe Reason system verifies stamped signature electronic document automatically and whether E-seal therein is effective, if electronic document and/or E-seal Illegally, then it gives a warning and E-seal cannot normally be shown;
D, E-seal abnormality processing: E-seal management system timely responds to E-seal and revokes, reports the loss, at change Reason.
The second object of the present invention be achieved in that including E-seal production module, stamped signature module, authentication module, Exception processing module, E-seal management system,
The E-seal production module, which is used to the original physical seal through scanning covering part picture, imports E-seal Management system generates E-seal, and the E-seal of generation is then stored in electronic key, fingerprint signature device and/or electronic seal In chapter management system;
The stamped signature module reads in the electronic document for needing to cover E-seal by E-seal management system, then leads to Cross private key, electronic seal that electronic key, fingerprint signature device and/or E-seal management system read stamped signature customer digital certificate Then private key and E-seal are bundled and carry out stamped signature to electronic document by chapter;
The authentication module opens stamped signature data by E-seal management system, and then E-seal management system is automatic Whether stamped signature electronic document and E-seal therein are effective for verifying, if electronic document and/or E-seal are illegal, issue It alerts and E-seal cannot normally be shown;
Exception processing module control E-seal management system timely responds to the revoking of E-seal, handling of card loss.
Compared with the prior art, the invention has the following beneficial effects:
1, the present invention is by electronic key, fingerprint signature device and/or E-seal management system to the stamped signature user of authorization Authentication is carried out, the management of E-seal can be reinforced, the especially fingerprint signature device with finger print identifying can be avoided electricity The allograph behavior of sub- seal, so as to accomplish that special chapter is dedicated;And by E-seal management system to the stamped signature user of authorization Authentication is carried out, when can be avoided USB-KEY and stamped signature people strange land the problem of stamped signature poor in timeliness;And it needs to step on before stamped signature E-seal management system is recorded, so that the document of each stamped signature has record in system, when can inquire stamped signature people, stamped signature at any time Between and the information such as signature purposes, and stamped signature is clear, carefully and neatly done;In addition, being placed in the stamped signature time into E-seal in stamped signature, read The stamped signature date can be directly displayed when document, so that document is examined limit management and had good grounds, it is more operational.
2, the present invention can substantially reduce repeated labor compared to traditional pure manually sign and seal, can make each department, The independent processing work of links is together in series, at the same also can in process flow too many levels task;It is each convenient for electronic document Audit, reply, the signature control of link, while the inquiry of different link replies can also be carried out;Long-range strange land stamped signature can be carried out, The round-trip number of working people is reduced, facilitates working people, so as to effectively improve working efficiency.
3, electronic document of the invention is almost free using Email or network transmission, solves traditional office Inefficiency and paper waste situation, and solve not busy due to leader is not available loaded down with trivial details modern office automation system The information-based investment set, so as to reduce office cost.
4, the present invention use digital certificate authentication stamped signature user identity, then by the digital certificate private key of stamped signature user with Electronic Signature binding carries out stamped signature binding to electronic document, improves the legal validity of E-seal, ensure electricity from the root Sub- seal it is legal, traceable;E-seal is managed by the management to customer digital certificate, enhances electronic seal The management intensity of chapter;In abnormal cases, it by the abnormality processing to customer digital certificate, can timely respond to, can stop in time Damage, enhances the control of E-seal, protects the legitimacy of contract stamped signature to greatest extent.
Therefore, the present invention has the characteristics that manageability, high-efficient, at low cost, safe and reliable.
Detailed description of the invention
Fig. 1 is the electronic seal method part flow diagram of the present invention;
Fig. 2 is the electronic seal system schematic illustration of the present invention;
In figure: 1- E-seal makes module, 2- stamped signature module, 3- authentication module, 4- exception processing module, 5- electronic seal Chapter management system;
The production of S100- E-seal, S200- E-seal use, the verifying of S300- E-seal, and S400- E-seal is different Often processing.
Specific embodiment
The present invention is further illustrated with reference to the accompanying drawings and examples, but is not subject in any way to the present invention Limitation, based on present invention teach that made any changes and modifications, all belong to the scope of protection of the present invention.
As shown in Figure 1, the present invention is based on the electronic seal method of digital certificate, including E-seal production, E-seal Using the verifying of, E-seal, E-seal abnormality processing step, specifically include:
A, E-seal makes: legitimate user proposes E-seal application to E-seal management system, then will scanning Original physical seal cover part picture and import E-seal management system and generate E-seal, the E-seal of generation is stored In electronic key, fingerprint signature device and/or E-seal management system;
B, E-seal uses: stamped signature user, which logs in E-seal management system by stamped signature customer side and reads in needs, to be added The electronic document of lid E-seal, stamped signature customer side are read by electronic key, fingerprint signature device and/or E-seal management system Private key, the E-seal of stamped signature customer digital certificate are taken, then private key and E-seal is bundled, stamped signature is carried out to electronic document, Complete the stamped signature of electronic document;
C, E-seal is verified: user terminal access E-seal management system simultaneously opens stamped signature data, E-seal pipe Reason system verifies stamped signature electronic document automatically and whether E-seal therein is effective, if electronic document and/or E-seal Illegally, then it gives a warning and E-seal cannot normally be shown;
D, E-seal abnormality processing: E-seal management system timely responds to E-seal and revokes, reports the loss, at change Reason.
Preferably, E-seal production include it is following step by step:
A1: legitimate user logs in E-seal management system and proposes E-seal application;
A2: original physical seal is covered to a paper blank;
A3: paper with an official seal affixed is scanned, seal image is then saved as;
A4: logging in E-seal management system and the information parameter of E-seal is arranged, and is then introduced into above-mentioned seal image, Generate E-seal;
A5: the E-seal of generation is stored in the electronic key comprising stamped signature customer digital certificate or fingerprint signature device In, and/or be stored in E-seal management system.
Preferably, in the A4 step E-seal management system by the private key pair of E-seal application customer digital certificate Seal image is signed, and is then encrypted with the public key of stamped signature customer digital certificate to the seal image signed, and is generated By the E-seal signed and encrypted;By the E-seal and E-seal application by signature and encryption in the A5 step The public key of customer digital certificate is stored in electronic key or fingerprint signature device, and/or is stored in E-seal management system.
Preferably, the information parameter of E-seal includes seal serial number, seal code, title, seal in the A4 step Initial data, seal creation time, seal service life, seal status indication position and can stamped signature user.
Preferably, the electronic key or fingerprint signature device are stored with customer digital certificate and PIN code or finger print information, institute E-seal application user or stamped signature user is stated to verify the customer digital certificate read in electronic key by PIN code or pass through finger Line card reads the customer digital certificate in fingerprint signature device.
Preferably, the E-seal using step include it is following step by step:
B1: stamped signature user logs in E-seal management system by stamped signature customer side;
B2: it reads in electronic key, fingerprint signature device or E-seal management system by signature and the electronic seal of encryption Chapter;
B3: it is decrypted, is obtained through electronic seal to by the E-seal signed and encrypted using the private key of stamped signature user The seal image data of the private key signature of chapter application customer digital certificate, decryption failure then terminate stamped signature;
B4: E-seal management system reads in the electronic document for needing to cover E-seal;
B5: E-seal management system signs the private key of stamped signature customer digital certificate to seal image data, so It is bundled afterwards with electronic document, completes the stamped signature of electronic document.
Preferably, the summary data of electronic document is generated, so first to electronic document executive summary operation in the B5 step The summary data of seal image data and electronic document is bundled afterwards, forms stamped signature data, then with stamped signature customer digital certificate Private key sign to stamped signature data, finally signed stamped signature data are bundled with electronic document, complete electronics text The stamped signature of book.
Preferably, in the B5 step also by E-seal management system obtain stamped signature timestamp, then by stamped signature when Between stab and bundled with signed stamped signature data, electronic document, complete the stamped signature of electronic document.
Preferably, the E-seal verification step include it is following step by step:
C1: the stamped signature data signed through stamped signature customer digital certificate private key, label are isolated from the electronic document of stamped signature Chapter timestamp, electronic document;
C2: using stamped signature customer digital certificate public key to the stamped signature data signed through stamped signature customer digital certificate private key into Row verifying obtains stamped signature data and prompts stamped signature data not over verifying if authentication failed;
C3: the seal image number of the private key signature through E-seal application customer digital certificate is isolated from stamped signature data According to, electronic document summary data;
C4: it is mentioned using the public key verifications seal image data of E-seal application customer digital certificate if authentication failed Show seal not over verifying;
C5: submitting to E-seal management system for stamped signature timestamp and verify to the stamped signature time, if authentication failed, Prompt the stamped signature time not over verifying.
As shown in Fig. 2, the present invention is based on the electronic seal system of digital certificate, including E-seal makes module, stamped signature Module, authentication module, exception processing module, E-seal management system,
The E-seal production module, which is used to the original physical seal through scanning covering part picture, imports E-seal Management system generates E-seal, and the E-seal of generation is then stored in electronic key, fingerprint signature device and/or electronic seal In chapter management system;
The stamped signature module reads in the electronic document for needing to cover E-seal by E-seal management system, then leads to Cross private key, electronic seal that electronic key, fingerprint signature device and/or E-seal management system read stamped signature customer digital certificate Then private key and E-seal are bundled and carry out stamped signature to electronic document by chapter;
The authentication module opens stamped signature data by E-seal management system, and then E-seal management system is automatic Whether stamped signature electronic document and E-seal therein are effective for verifying, if electronic document and/or E-seal are illegal, issue It alerts and E-seal cannot normally be shown;
Exception processing module control E-seal management system timely responds to the revoking of E-seal, handling of card loss.
Preferably, the electronic key or fingerprint signature device are stored with customer digital certificate and PIN code or finger print information, institute State E-seal production module or stamped signature module user by PIN code verifying reading electronic key in customer digital certificate or The customer digital certificate read in fingerprint signature device is demonstrate,proved by fingerprint.
Embodiment:
As illustrated in fig. 1 and 2, the electronic seal method based on digital certificate is as follows:
S100: E-seal production, including it is following step by step:
S110: legitimate user logs in E-seal management system and proposes E-seal application.
S120: original physical seal is covered to a paper blank.
S130: paper with an official seal affixed is scanned, seal image is then saved as.
S140: logging in E-seal management system, and E-seal such as seal serial number, seal code, title, seal is arranged Initial data, seal creation time, seal service life, seal status indication position, can the informations parameter such as stamped signature user, then lead Enter above-mentioned seal image, then E-seal management system is by the private key of E-seal application customer digital certificate to seal image Sign, after the seal image signed is encrypted with the public key of stamped signature customer digital certificate, generate by signature and The E-seal of encryption.
S150: it will be stored in by the public key of the E-seal and E-seal application customer digital certificate signing and encrypt In electronic key or fingerprint signature device, and/or it is stored in E-seal management system.
S200: E-seal using step include it is following step by step:
S210: stamped signature user logs in E-seal management system by stamped signature customer side.
S220: stamped signature user is by the electronic key of insertion stamped signature customer side, fingerprint signature device or logs in E-seal pipe Reason system carries out authentication, authenticates successfully then stamped signature customer side and reads wherein by signature and the E-seal of encryption, certification Failure then terminates stamped signature.
S230: it is decrypted, is obtained through E-seal to by the E-seal signed and encrypted using the private key of stamped signature user Apply for the seal image data of the private key signature of customer digital certificate, decryption failure then terminates stamped signature.
S240: E-seal management system reads in the electronic document for needing to cover E-seal.
S250: E-seal management system obtains stamped signature timestamp, then to electronic document executive summary operation, generates electricity The summary data of Ziwen book, by the summary data of seal image data and electronic document bundle, formed stamped signature data, then with sign The private key of chapter customer digital certificate signs to stamped signature data, finally by signed stamped signature data, stamped signature timestamp and electricity Ziwen book is bundled, and the stamped signature of electronic document is completed.
S300: E-seal verification step include it is following step by step:
S310: isolated from the electronic document of stamped signature the stamped signature data signed through stamped signature customer digital certificate private key, Stamped signature timestamp, electronic document.
S320: using the public key of stamped signature customer digital certificate to the stamped signature data signed through stamped signature customer digital certificate private key It is verified, obtains stamped signature data and prompt stamped signature data not over verifying if authentication failed.
S330: the seal image of the private key signature through E-seal application customer digital certificate is isolated from stamped signature data Data, electronic document summary data.
S340: using the public key verifications seal image data of E-seal application customer digital certificate, if authentication failed, Prompt seal not over verifying.
S350: submitting to E-seal management system for stamped signature timestamp and verify to the stamped signature time, if authentication failed, Then prompt the stamped signature time not over verifying.
By above-mentioned certification, if electronic document is crossed by unauthorized update or E-seal is to be replicated to be pasted onto current electricity On Ziwen book, then E-seal management system is it can be found that simultaneously warning user's electronic document has been modified immediately or electronics is literary What is covered on book is invalid electronic seal, and E-seal cannot normally be shown in electronic document, to reach protection electricity The integrality and inspection E-seal of Ziwen book and specific electronic document must be associated purposes.
S400: when E-seal is lost or stamped signature people changes extremely, E-seal management system timely responds to carry out electronics The revoking, report the loss of seal, exception processes.

Claims (10)

1. a kind of electronic seal method based on digital certificate, it is characterised in that used including E-seal production, E-seal, E-seal verifying, E-seal abnormality processing step, specifically include:
A, E-seal makes: legitimate user proposes E-seal application to E-seal management system, then by the original of scanning Beginning physical seal covers part picture and imports E-seal management system generation E-seal, and the E-seal of generation is stored in electricity In sub-key, fingerprint signature device and/or E-seal management system;
B, E-seal uses: stamped signature user, which logs in E-seal management system by stamped signature customer side and reads in needs, covers electricity Label are read by electronic key, fingerprint signature device and/or E-seal management system in the electronic document of sub- seal, stamped signature customer side Then private key and E-seal are bundled and carry out stamped signature to electronic document, completed by private key, the E-seal of chapter customer digital certificate The stamped signature of electronic document;
C, E-seal is verified: user terminal access E-seal management system simultaneously opens stamped signature data, E-seal management system Whether stamped signature electronic document and E-seal therein are effective for the automatic verifying of system, if electronic document and/or E-seal are illegal, It then gives a warning and E-seal cannot normally be shown;
D, E-seal abnormality processing: E-seal management system timely responds to the revoking, report the loss of E-seal, exception processes.
2. according to claim 1 based on the electronic seal method of digital certificate, it is characterised in that the E-seal production Including it is following step by step:
A1: legitimate user logs in E-seal management system and proposes E-seal application;
A2: original physical seal is covered to a paper blank;
A3: paper with an official seal affixed is scanned, seal image is then saved as;
A4: logging in E-seal management system and the information parameter of E-seal is arranged, and is then introduced into above-mentioned seal image, generates E-seal;
A5: the E-seal of generation is stored in the electronic key comprising stamped signature customer digital certificate or fingerprint signature device, and/ Or it is stored in E-seal management system.
3. according to claim 2 based on the electronic seal method of digital certificate, it is characterised in that electronics in the A4 step Control of stamping system signs the private key of E-seal application customer digital certificate to seal image, then uses stamped signature user The public key of digital certificate encrypts the seal image signed, and generates the E-seal by signature and encryption;The A5 It is close electronics will to be stored in by the public key of the E-seal and E-seal application customer digital certificate signing and encrypt in step In key or fingerprint signature device, and/or it is stored in E-seal management system.
4. according to claim 3 based on the electronic seal method of digital certificate, it is characterised in that the electronic key refers to Line signature device is stored with customer digital certificate and PIN code or finger print information, and the E-seal application user or stamped signature user are logical PIN code verifying is crossed to read the customer digital certificate in electronic key or demonstrate,prove the number read in fingerprint signature device by fingerprint Certificate.
5. based on the electronic seal method of digital certificate according to claim 3 or 4, it is characterised in that the E-seal makes With step include it is following step by step:
B1: stamped signature user logs in E-seal management system by stamped signature customer side;
B2: it reads in electronic key, fingerprint signature device or E-seal management system by signature and the E-seal of encryption;
B3: it is decrypted, is obtained through E-seal Shen to by the E-seal signed and encrypted using the private key of stamped signature user Please customer digital certificate private key signature seal image data, decryption failure then terminates stamped signature;
B4: E-seal management system reads in the electronic document for needing to cover E-seal;
B5: E-seal management system signs the private key of stamped signature customer digital certificate to seal image data, then with Electronic document is bundled, and the stamped signature of electronic document is completed.
6. according to claim 5 based on the electronic seal method of digital certificate, it is characterised in that first right in the B5 step Electronic document executive summary operation, generates the summary data of electronic document, then by seal image data and electronic document Summary data binding, forms stamped signature data, then signed to stamped signature data with the private key of stamped signature customer digital certificate, finally will Signed stamped signature data are bundled with electronic document, complete the stamped signature of electronic document.
7. according to claim 6 based on the electronic seal method of digital certificate, it is characterised in that also logical in the B5 step It crosses E-seal management system and obtains stamped signature timestamp, then by stamped signature timestamp and signed stamped signature data, electronic document It is bundled, completes the stamped signature of electronic document.
8. according to claim 7 based on the electronic seal method of digital certificate, it is characterised in that the E-seal verifying Step include it is following step by step:
C1: when isolating the stamped signature data signed through stamped signature customer digital certificate private key, stamped signature from the electronic document of stamped signature Between stamp, electronic document;
C2: the stamped signature data signed through stamped signature customer digital certificate private key are tested using the public key of stamped signature customer digital certificate Card obtains stamped signature data and prompts stamped signature data not over verifying if authentication failed;
C3: isolated from stamped signature data the private key signature through E-seal application customer digital certificate seal image data, Electronic document summary data;
C4: it prompts to print if authentication failed using the public key verifications seal image data of E-seal application customer digital certificate Chapter is not over verifying;
C5: stamped signature timestamp is submitted into E-seal management system, the stamped signature time is verified, if authentication failed, prompted The stamped signature time is not over verifying.
9. a kind of electronic seal system based on digital certificate, it is characterised in that including E-seal production module, stamped signature module, Authentication module, exception processing module, E-seal management system,
The E-seal production module, which is used to the original physical seal through scanning covering part picture, imports E-seal management System generates E-seal, and the E-seal of generation is then stored in electronic key, fingerprint signature device and/or E-seal pipe In reason system;
The stamped signature module reads in the electronic document for needing to cover E-seal by E-seal management system, then passes through electricity Sub-key, fingerprint signature device and/or E-seal management system read private key, the E-seal of stamped signature customer digital certificate, so Private key and E-seal are bundled afterwards, stamped signature is carried out to electronic document;
The authentication module opens stamped signature data by E-seal management system, and then E-seal management system is verified automatically Whether stamped signature electronic document and E-seal therein are effective, if electronic document and/or E-seal are illegal, give a warning And E-seal cannot normally be shown;
Exception processing module control E-seal management system timely responds to the revoking of E-seal, handling of card loss.
10. according to claim 9 based on the electronic seal system of digital certificate, it is characterised in that the electronic key refers to Line signature device is stored with customer digital certificate and PIN code or finger print information, the E-seal production module or stamped signature module User is verified the customer digital certificate read in electronic key by PIN code or demonstrate,proves the use read in fingerprint signature device by fingerprint Family digital certificate.
CN201910128575.4A 2019-02-21 2019-02-21 A kind of electronic seal method and electronic seal system based on digital certificate Pending CN110008679A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910128575.4A CN110008679A (en) 2019-02-21 2019-02-21 A kind of electronic seal method and electronic seal system based on digital certificate

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910128575.4A CN110008679A (en) 2019-02-21 2019-02-21 A kind of electronic seal method and electronic seal system based on digital certificate

Publications (1)

Publication Number Publication Date
CN110008679A true CN110008679A (en) 2019-07-12

Family

ID=67165794

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910128575.4A Pending CN110008679A (en) 2019-02-21 2019-02-21 A kind of electronic seal method and electronic seal system based on digital certificate

Country Status (1)

Country Link
CN (1) CN110008679A (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110881048A (en) * 2019-12-16 2020-03-13 苏宁云计算有限公司 Safety communication method and device based on identity authentication
CN111859439A (en) * 2020-08-06 2020-10-30 江苏华邦网络科技有限公司 Electronic contract processing method and device and electronic equipment
CN112685717A (en) * 2020-12-29 2021-04-20 山东钢铁集团日照有限公司 Metering electronic certificate verification management system based on block chain
CN113360952A (en) * 2021-05-21 2021-09-07 浙江百汇企业服务集团有限公司 Novel electronic seal processing method
CN113626879A (en) * 2021-09-03 2021-11-09 南京壹证通信息科技有限公司 Electronic seal picture binding digital certificate and presentation method
CN114312070A (en) * 2021-12-22 2022-04-12 胡金钱 Multifunctional area intelligent stamp die device and method for generating multifunctional area stamp die image
CN117668805A (en) * 2023-10-19 2024-03-08 中金金融认证中心有限公司 Credibility guaranteeing method for documents in evaluation process of third party evaluation service

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110881048A (en) * 2019-12-16 2020-03-13 苏宁云计算有限公司 Safety communication method and device based on identity authentication
CN111859439A (en) * 2020-08-06 2020-10-30 江苏华邦网络科技有限公司 Electronic contract processing method and device and electronic equipment
CN112685717A (en) * 2020-12-29 2021-04-20 山东钢铁集团日照有限公司 Metering electronic certificate verification management system based on block chain
CN113360952A (en) * 2021-05-21 2021-09-07 浙江百汇企业服务集团有限公司 Novel electronic seal processing method
CN113626879A (en) * 2021-09-03 2021-11-09 南京壹证通信息科技有限公司 Electronic seal picture binding digital certificate and presentation method
CN114312070A (en) * 2021-12-22 2022-04-12 胡金钱 Multifunctional area intelligent stamp die device and method for generating multifunctional area stamp die image
CN114312070B (en) * 2021-12-22 2024-02-13 胡金钱 Multifunctional area intelligent seal mold device and method for generating multifunctional area seal mold image
CN117668805A (en) * 2023-10-19 2024-03-08 中金金融认证中心有限公司 Credibility guaranteeing method for documents in evaluation process of third party evaluation service

Similar Documents

Publication Publication Date Title
CN110008679A (en) A kind of electronic seal method and electronic seal system based on digital certificate
US11516016B2 (en) Method and system for signing and authenticating electronic documents via a signature authority which may act in concert with software controlled by the signer
EP1678666B1 (en) Storage and authentication of data transactions
US8103867B2 (en) Method and system for obtaining digital signatures
US6367013B1 (en) System and method for electronic transmission, storage, and retrieval of authenticated electronic original documents
KR100455326B1 (en) Document authentication system and method
US20060206433A1 (en) Secure and authenticated delivery of data from an automated meter reading system
CN107832624A (en) A kind of visualization signature system and method based on block chain
CN107483498A (en) Academic authentication method and system based on block chain
US10181955B2 (en) Method for conversation of an original paper document into an authenticated original electronic information object
US20140013110A1 (en) Non-hierarchical infrastructure for managing twin-security keys of physical persons or of elements (igcp/pki)
CN103080958A (en) Method for creating/issuing electronic document distribution certificate, method for verifying electronic document distribution certificate, and system for distributing electronic document
KR20010043332A (en) System and method for electronic transmission, storage and retrieval of authenticated documents
US7107456B2 (en) Packaging evidence for long term validation
CN104104652A (en) Man-machine identification method, network service access method and corresponding equipment
CN108022194A (en) Law-enforcing recorder and its data safety processing method, server and system
CN111859457A (en) Intelligent contract setting method and system
CN116226824A (en) Electronic contract signing method and system based on blockchain and CA certificate
Olembo et al. Introducing verifiability in the polyas remote electronic voting system
CN114091066A (en) Verification report generation method and system
CN112995225A (en) Intelligent stamp credible verification system based on block chain
CN111626535B (en) Quality authentication system and method based on block chain
Reiniger The proposed international e-identity assurance standard for electronic notarization
CN118070348A (en) Method and system for protecting technical secrets by using intelligent electronic tag
CN117951753A (en) Method and system for data acquisition, certification storage and verification

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
WD01 Invention patent application deemed withdrawn after publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20190712