CN115439121A - Digital signature and signature verification method, system and device - Google Patents

Digital signature and signature verification method, system and device Download PDF

Info

Publication number
CN115439121A
CN115439121A CN202211115773.5A CN202211115773A CN115439121A CN 115439121 A CN115439121 A CN 115439121A CN 202211115773 A CN202211115773 A CN 202211115773A CN 115439121 A CN115439121 A CN 115439121A
Authority
CN
China
Prior art keywords
signature
information
transaction request
platform
user side
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202211115773.5A
Other languages
Chinese (zh)
Inventor
王一村
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Industrial and Commercial Bank of China Ltd ICBC
ICBC Technology Co Ltd
Original Assignee
Industrial and Commercial Bank of China Ltd ICBC
ICBC Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Industrial and Commercial Bank of China Ltd ICBC, ICBC Technology Co Ltd filed Critical Industrial and Commercial Bank of China Ltd ICBC
Priority to CN202211115773.5A priority Critical patent/CN115439121A/en
Publication of CN115439121A publication Critical patent/CN115439121A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3825Use of electronic signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present application relates to the field of information security, and in particular, to a method, system, and apparatus for digital signature and signature verification. The method comprises the following steps: after a transaction request is submitted to a service system, jumping to a signature confirmation page provided by a signature platform to perform signature confirmation; after the signature confirmation is completed, the business system is jumped to for business processing, the business system sends the transaction request and the signature information of the current account to the signature platform, so that the signature platform verifies the signature information to obtain a corresponding verification result, and the transaction request is executed according to the verification result. The method can ensure the reliability of the transaction.

Description

Digital signature and signature verification method, system and device
Technical Field
The present application relates to the field of information security, and in particular, to a method, system, and apparatus for digital signature and signature verification.
Background
In a business system, when sensitive operations such as fund transactions are involved, in order to meet the requirements of authentication, tamper resistance, repudiation resistance and the like, a user is generally required to digitally sign a submitted request by using a U shield or a soft certificate, and the actual transactions are initiated after the signature verification of the business system is passed.
However, if the purchased software or service has defects or backdoors, even if the user completes the digital signature when submitting the request, the finally initiated transaction may still not be the transaction that the user has confirmed.
Therefore, when a user conducts transaction in a business system at present, an original request of a signature is possibly tampered, and the validity of the signature cannot be guaranteed, namely the transaction is unreliable.
Disclosure of Invention
In view of the above, there is a need to provide a digital signature and verification method, system, device and computer apparatus, computer readable storage medium and computer program product for ensuring the reliability of transaction.
In a first aspect, the present application provides a digital signature and signature verification method, including:
after a transaction request is submitted to a service system, jumping to a signature confirmation page provided by a signature platform to perform signature confirmation;
after the signature confirmation is completed, skipping to the service system for service processing, and sending the transaction request and the signature information of the current account to the signature platform by the service system, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result.
In one embodiment, after submitting the transaction request to the business system, jumping to a signature confirmation page provided by a signature platform for signature confirmation includes:
sending a transaction request to a service system so that the service system can respond to the transaction request to construct a signature parameter, and feeding back first skip link information for redirecting a signature platform to a user side according to the signature parameter;
responding to the triggering operation aiming at the first skip link information, sending the signature parameters to the signature platform, so that the signature platform constructs a signature confirmation page according to the signature parameters and feeds back the signature confirmation page to the user side;
and after the signature confirmation page fed back by the signature platform is received, displaying the signature confirmation page in a display interface.
In one embodiment, after the signature confirmation is completed, skipping to the service system for service processing, and sending the transaction information and the signature information of the current account to the signature platform by the service system, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executes the transaction request according to the verification result, where the method includes:
responding to signature confirmation operation aiming at the signature confirmation page, and sending signature information to the signature platform so that the signature platform feeds back second jump link information for redirecting the service system to the user side according to the signature information;
and responding to the triggering operation aiming at the second skip link information, sending the signature information to the service system, so that the service system sends the transaction request and the signature information to the signature platform after executing service processing according to the signature information, further enabling the signature platform to verify the signature to obtain a verification result, and executing the transaction request according to the verification result.
In a second aspect, the present application provides a digital signature and signature verification method, including: after a user side submits a transaction request to a service system, a signature confirmation page is provided for the user side, so that after the user side skips to the signature confirmation page, signature confirmation is carried out on a current account logged in by the user side on the signature confirmation page;
after the current account completes signature confirmation, receiving the transaction request and the signature information of the current account sent by the service system;
verifying the signature information to obtain a corresponding verification result;
and executing the transaction request according to the verification result.
In one embodiment, the providing a signature confirmation page to the user terminal after the user terminal submits the transaction request to the service system includes:
receiving a signature parameter sent by the user side after triggering first skip link information, wherein the signature parameter is constructed by the service system according to the transaction request submitted by the user side, and the first skip link information is link information which is fed back to the user side by the service system according to the signature parameter and is used for redirecting a signature platform;
constructing the signature confirmation page according to the signature parameters;
and sending the signature confirmation page to the user side.
In one embodiment, the receiving the transaction request and the signature information of the current account sent by the business system after the signature confirmation of the current account is completed includes:
receiving signature information sent by the user side after signature confirmation operation is executed on the signature confirmation page;
feeding back second jump link information for redirecting the service system to the user side according to the signature information so that the user side responds to the triggering operation aiming at the second jump link information and sends the signature information to the service system, and then the service system executes service processing according to the signature information;
and after the service system executes service processing according to the signature information, receiving the transaction request sent by the service system and the signature information of the current account.
In one embodiment, said executing said transaction request according to said verification result comprises:
under the condition that the verification result represents that the verification label passes, generating a transaction message according to the transaction request, and sending the transaction message to a transaction system; alternatively, the first and second electrodes may be,
and under the condition that the verification result represents that the signature verification fails, feeding back error information to the service system according to the transaction request.
In a third aspect, the present application provides a digital signature and signature verification method, including: receiving a transaction request sent by a user side;
responding to the transaction request, sending skip link information to the user side, so that the user side skips to a signature confirmation page provided by a signature platform through the skip link information to perform signature confirmation;
after the user side completes signature confirmation on the signature confirmation page, business processing corresponding to the transaction request is carried out;
after the business processing is completed, the transaction request and the signature information of the current account are sent to the signature platform, so that the signature platform verifies the signature information to obtain a corresponding verification result, and the transaction request is executed according to the verification result.
In one embodiment, the sending jump link information to the user terminal in response to the transaction request includes:
acquiring transaction data and account information from the transaction request, and constructing a signature parameter according to the transaction data and the account information;
and feeding back jump link information for redirecting the signature platform to the user side according to the signature parameters.
In a fourth aspect, the present application provides a digital signature and signature verification system, including: a user terminal, a service system and a signature platform, wherein,
the user side is used for submitting a transaction request to the service system and jumping to a signature confirmation page provided by the signature platform to perform signature confirmation after submitting the transaction request to the service system;
the service system is used for performing service processing after the user side completes signature confirmation, and sending the transaction request and the signature information of the current account to the signature platform;
the signature platform is used for providing the signature confirmation page to the user side, receiving the transaction request and the signature information sent by the service system, verifying the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result.
In a fifth aspect, the present application provides a digital signature and signature verification method and device, where the device includes:
the signature confirmation module is used for jumping to a signature confirmation page provided by the signature platform to perform signature confirmation after submitting a transaction request to the service system;
and the skipping module is used for skipping to the service system for service processing after signature confirmation is completed, and the service system sends the transaction request and the signature information of the current account to the signature platform so that the signature platform verifies the signature information to obtain a corresponding verification result, and executes the transaction request according to the verification result.
In one embodiment, the signature confirmation module is further configured to send a transaction request to a service system, so that the service system constructs a signature parameter in response to the transaction request, and feeds back first skip link information for redirecting a signature platform to a user side according to the signature parameter; responding to the triggering operation aiming at the first skip link information, sending the signature parameters to the signature platform, so that the signature platform constructs a signature confirmation page according to the signature parameters and feeds back the signature confirmation page to the user side; and after the signature confirmation page fed back by the signature platform is received, displaying the signature confirmation page in a display interface.
In one embodiment, the skip module is further configured to send signature information to the signature platform in response to a signature verification operation for the signature verification page, so that the signature platform feeds back second skip link information for redirecting the service system to the user side according to the signature information; and responding to the triggering operation aiming at the second skip link information, sending the signature information to the service system, so that the service system sends the transaction request and the signature information to the signature platform after executing service processing according to the signature information, further enabling the signature platform to verify the signature to obtain a verification result, and executing the transaction request according to the verification result.
In a sixth aspect, the present application provides a digital signature and signature verification method and device, where the device includes:
the signature module is used for providing a signature confirmation page for the user side after the user side submits a transaction request to a service system, so that after the user side jumps to the signature confirmation page, the current account logged in by the user side carries out signature confirmation on the signature confirmation page;
the information receiving module is used for receiving the transaction request sent by the business system and the signature information of the current account after the current account completes signature confirmation;
the signature verification module is used for verifying the signature information to obtain a corresponding verification result;
and the execution module is used for executing the transaction request according to the verification result.
In one embodiment, the signature module is further configured to receive a signature parameter sent by the user side after triggering first skip link information, where the signature parameter is constructed by the service system according to the transaction request submitted by the user side, and the first skip link information is link information used for redirecting a signature platform and fed back to the user side by the service system according to the signature parameter; constructing the signature confirmation page according to the signature parameters; and sending the signature confirmation page to the user terminal.
In one embodiment, the information receiving module is further configured to receive signature information sent by the user side after the signature confirmation page performs a signature confirmation operation; feeding back second skip link information for redirecting the service system to the user side according to the signature information so that the user side sends the signature information to the service system in response to a trigger operation aiming at the second skip link information, and further the service system executes service processing according to the signature information; and after the service system executes service processing according to the signature information, receiving the transaction request sent by the service system and the signature information of the current account.
In one embodiment, the execution module is further configured to generate a transaction message according to the transaction request and send the transaction message to a transaction system when the verification result represents that the verification passes; or under the condition that the verification result represents that the signature verification fails, feeding back error information to the service system according to the transaction request.
In a seventh aspect, the present application provides a digital signature and signature verification method and apparatus, where the apparatus includes:
the information receiving module is used for receiving a transaction request sent by a user side;
the skip module is used for responding to the transaction request and sending skip link information to the user side so that the user side skips to a signature confirmation page provided by a signature platform through the skip link information to perform signature confirmation;
the service processing module is used for processing the service corresponding to the transaction request after the user side completes signature confirmation on the signature confirmation page;
and the information sending module is used for sending the transaction request and the signature information of the current account to the signature platform after the service processing is finished, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executes the transaction request according to the verification result.
In one embodiment, the skip module is further configured to obtain transaction data and account information from the transaction request, and construct a signature parameter according to the transaction data and the account information; and feeding back jump link information for redirecting the signature platform to the user side according to the signature parameters.
In an eighth aspect, the present application further provides a computer device, where the computer device includes a memory and a processor, where the memory stores a computer program, and the processor implements the steps in the foregoing method embodiments when executing the computer program.
In a ninth aspect, the present application further provides a computer-readable storage medium having a computer program stored thereon, which, when executed by a processor, implements the steps in the above-described method embodiments.
In a tenth aspect, the present application further provides a computer program product comprising a computer program that, when executed by a processor, performs the steps of the above-mentioned method embodiments.
After submitting a transaction request to a service system, the digital signature and signature verification method, the digital signature and signature verification system, the digital signature and signature verification device, the computer equipment, the computer readable storage medium and the computer program product jump to a signature confirmation page provided by a signature platform to perform signature confirmation; after signature confirmation is completed, skipping to the service system for service processing, and sending the transaction request and the signature information of the current account to the signature platform by the service system, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result. Compared with a method for signing, verifying and initiating a transaction by a service system in the prior art, the method has the advantages that a signature platform which is independently developed and deployed with the service system is introduced, the signature platform provides a signature confirmation page for a user side so that the user can confirm the transaction request for the second time, the signature platform verifies and executes the transaction request after confirmation, and the transaction which is finally sent to the transaction system can be guaranteed to be the content submitted and confirmed by the user as long as the reliability of the signature platform is guaranteed, so that the reliability of the transaction is guaranteed.
Drawings
FIG. 1 is a schematic diagram illustrating a process of signature verification in a conventional business system in one embodiment;
FIG. 2 is a flow diagram illustrating a digital signature and verification method in accordance with an embodiment;
FIG. 3 is a diagram of a signature confirmation page in one embodiment;
FIG. 4 is a flow chart illustrating step 202 in one embodiment;
FIG. 5 is a schematic flow chart of step 204 in one embodiment;
FIG. 6 is a flow diagram illustrating a digital signature and verification method in accordance with an embodiment;
FIG. 7 is a flow diagram illustrating a step 602, according to an embodiment;
FIG. 8 is a flowchart illustrating step 604, in one embodiment;
FIG. 9 is a flow diagram illustrating a digital signature and verification method in accordance with an embodiment;
FIG. 10 is a flowchart illustrating step 904 in one embodiment;
FIG. 11 is a flow diagram illustrating a digital signature and verification method in accordance with an embodiment;
FIG. 12 is a block diagram of a digital signature and signature verification apparatus in accordance with an embodiment;
FIG. 13 is a block diagram of a digital signature and signature verification apparatus in accordance with an embodiment;
FIG. 14 is a block diagram of an embodiment of a digital signature and signature verification apparatus;
FIG. 15 is a diagram showing an internal structure of a computer device according to an embodiment.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more clearly understood, the present application is further described in detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.
As shown in fig. 1, in a conventional service system, a service request of a user can be generally submitted directly. However, when transaction requests such as fund transactions are involved, in order to meet the requirements of authentication, tamper resistance, repudiation resistance and the like, a user is generally required to digitally sign the submitted request by using a U-shield or a soft certificate, and the actual transactions are initiated after the signature verification of the service system is passed. In the process, the business system directly processes the links of the display of the signature page, the call of the signature method, the verification of the signature and the initiation of the transaction, so that the correctness of the final transaction depends on the reliability of the business system. However, the business system is not necessarily self-developed by the owner, and may be the development and operation and maintenance services provided by the procurement software service provider. If the purchased software or service is faulty or backdoor, the final initiated transaction may still not be a user-confirmed transaction even if the user completes the digital signature when submitting the transaction request.
For example, the information that the business system shows to the user for confirmation on the signature page is "transfer 100 yuan to account 0001", and after the user confirms, the business system calls the signature method for the tampered information "transfer 200 yuan to account 0002". In this case, the transaction information confirmed by the user is not the information generated by the business system and finally the information submitted to the transaction system by the business system, and even if the signature is actually calculated by the private key of the user, the signature can be verified subsequently, but the fund of the user still suffers loss. If the whole business system is researched by the owner, the problem can be solved through the quality control of the owner, but the development cost and the development time are limited, and the owner can not research the whole business system, so that the original request of the signature can be falsified when the user transacts in the business system at present, the validity of the signature can not be ensured, and the transaction has unreliability.
Based on this, the embodiment of the application provides a digital signature and signature verification method to solve the above problems and ensure the reliability of the transaction.
In an embodiment, as shown in fig. 2, a digital signature and signature verification method is provided, and this embodiment is illustrated by applying this method to a terminal, it is to be understood that this method may also be applied to a server, and may also be applied to a system including a terminal and a server, and is implemented by interaction between the terminal and the server. In this embodiment, the method includes the steps of:
step 202, after submitting the transaction request to the service system, jumping to a signature confirmation page provided by the signature platform to perform signature confirmation.
In the embodiment of the present application, the business system is a system used by an Enterprise for asset and process management, for example, an ERP (Enterprise Resource Planning) system. And the signature platform and the service system are independently developed and deployed. The transaction request may be an operation request of a user for funds and the like, and the transaction request may include transaction information such as a transaction amount (in minutes), a payee account number and the like. After a transaction request is submitted to the service system, the subsequent operation of the transaction request is completed by the service system and the signature platform together, a signature confirmation page provided by the signature platform can be as shown in fig. 3, transaction information such as a collection account number and a transaction amount can be displayed on the signature confirmation page, and the signature confirmation page can also comprise two operation keys of confirmation, signature and cancellation. The signature is also called a digital signature, and in order to perform signature operation on the digest of the transaction request by using a private key, the mainstream signature operation algorithms include RSA (Rivest-Shamir-Adleman) algorithm and SM2 (elliptic curve algorithm) algorithm.
And 204, after signature confirmation is completed, skipping to a service system for service processing, sending the transaction request and the signature information of the current account to a signature platform by the service system, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result.
In the embodiment of the application, the signature confirmation can be completed by triggering the confirmation and signature operation key on the signature confirmation page. After the signature confirmation is completed, the user jumps to a service system to perform service processing, and meanwhile, signature information of the current account can be submitted to the service system. The business process may include internal processes, approval procedures, and the like. The signature information may include a signature corresponding to the transaction request, and a signature request unique number. After jumping to the service system, the service system can send the corresponding transaction request and the signature information to the signature platform according to the unique number of the signature request in the signature information, and the signature platform checks the signature to obtain a verification result. The verification result can be used for representing whether the verification label passes or not. And the signature verification is to verify the signature by using the public key.
The digital signature and signature verification method provided by the embodiment of the application jumps to a signature confirmation page provided by a signature platform for signature confirmation after submitting a transaction request to a service system; and after the signature confirmation is finished, skipping to a service system for service processing, and sending the transaction request and the signature information of the current account to a signature platform by the service system so that the signature platform verifies the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result. Compared with a method for signing, signature checking and transaction initiation by a service system in the traditional technology, the method has the advantages that a signature platform which is independently developed and deployed with the service system is introduced, the signature platform provides a signature confirmation page for a user side, so that the user can conveniently perform secondary confirmation on a transaction request, the signature platform performs signature checking and transaction request execution after confirmation, and as long as the reliability of the signature platform is ensured, the transaction which is finally sent to the transaction system can be ensured to be the content which is submitted and confirmed by the user, so that the reliability of the transaction is ensured.
In one embodiment, as shown in fig. 4, after submitting the transaction request to the business system, jumping to a signature confirmation page provided by the signature platform for signature confirmation in step 202 may include:
step 402, sending a transaction request to a service system, so that the service system constructs a signature parameter in response to the transaction request, and feeding back first skip link information for redirecting a signature platform to a user side according to the signature parameter.
In the embodiment of the application, after the transaction request is sent to the service system, the service system can process the transaction request, construct a signature parameter for the transaction request according to an interface protocol with the signature platform, and feed back first skip link information for redirecting the signature platform to the user side according to the signature parameter.
The transaction request can include transaction information such as transaction amount (unit is minutes) and a payee account, the service system can generate signature parameters according to the transaction information, and the signature parameters can include the transaction amount (unit is minutes), the payee account and a unique number of the signature request. And matching the transaction request with the signature parameters in a one-to-one way according to the unique number of the signature request. It should be noted that there may be multiple implementation manners for redirection, and the embodiment of the present application does not specifically limit the specific manner of redirection. For example: redirection can be based on the Http response code 302, and the service system sets the following in the Http response:
Header:HTTP/1.1 302Found
Locaiton:
https://sign_platform/sign_confirmamount=10000&payee=0001&request_uuid=000463d9-7ce7-11ec-9462-525400508ba4
at this time, the first jump link information is the link information included in Location. The first jump link information comprises a signature parameter: and (4) amount: a transaction amount; payee: a payee account number; request _ uuid: the signature request unique number. sign _ platform is the domain name of the signature platform, and sign _ confirm is the uri (Uniform Resource Identifier) of the signature confirmation page of the signature platform.
And step 404, responding to the triggering operation aiming at the first skip link information, sending a signature parameter to the signature platform, so that the signature platform constructs a signature confirmation page according to the signature parameter, and feeding back the signature confirmation page to the user terminal.
In the embodiment of the present application, the trigger operation for the first jump link information may be an access operation for the first jump link information. And when the first skip link information is accessed, the signature parameters contained in the first skip link information can be sent to the signature platform, so that the signature platform constructs a signature confirmation page according to the signature parameters, and the signature platform feeds back the signature confirmation page to the user terminal.
And 406, after receiving the signature confirmation page fed back by the signature platform, displaying the signature confirmation page in a display interface.
The display interface may be an interface used by the user side to display a picture on the terminal. And after the signature platform constructs a signature confirmation page according to the signature parameters contained in the first jump link information, feeding back the signature confirmation page to the user terminal. And the user side receives the signature confirmation page fed back by the signature platform and displays the page in the display interface. For example, in a redirection mode based on the Http response code 302, after accessing the first jump link information, the user side jumps to a signature confirmation page of the signature platform according to an address specified by localion. The user can confirm and sign or cancel the operation on the sign confirmation page at the display interface.
The signature confirmation page constructed by the signature platform can be displayed to the user, so that the user can perform secondary confirmation on the transaction request, and the user can perform signature after submitting confirmation, thereby preventing the occurrence of the problem of the service system and providing wrong transaction information for the signature platform, and ensuring the reliability of the transaction.
In an embodiment, as shown in fig. 5, in step 204, after the signature confirmation is completed, jumping to a service system for service processing, and sending, by the service system, the transaction request and the signature information of the current account to a signature platform, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executes the transaction request according to the verification result, which may include:
and 502, responding to signature confirmation operation aiming at the signature confirmation page, and sending signature information to the signature platform, so that the signature platform feeds back second skip link information for redirecting the service system to the user side according to the signature information.
In the embodiment of the application, the signature confirmation operation on the signature confirmation page may be a key operation for a user to select confirmation and signature on a display interface. The embodiment of the application does not specifically limit the specific method of signing, and only needs to perform signature operation on the abstract of the transaction request by using a private key to obtain the signature. The private key may come from the user's use of the U-shield or soft certificate. After the signature is confirmed, the signature confirmation page generates a signature for the abstract of the transaction request by using a private key of the user and submits signature information, wherein the signature information can be in a form format or a JSON (JavaScript Object Notation) format, and the signature information comprises the signature corresponding to the transaction request and a unique number of the signature request. After receiving the signature information, the signature platform can feed back second skip link information for redirecting the service system to the user side according to the signature information.
Illustratively, in a redirection manner based on the Http response code 302, for example, the signature platform sets the following in the Http response:
HTTP/1.1 302Found
Locaiton:https://erp/commit_signsign=a1b2c3d4&request_uuid=000463d9-7ce7-11ec-9462-525400508ba4
at this time, the second jump link information is the link information included in the Location. The second jump link information comprises signature information: sign: signing; request _ uuid: the signature request unique number. erp is the domain name of the signature platform, and commit _ sign is the interface uri for submitting the signature by the service system.
And step 504, responding to the triggering operation aiming at the second jump link information, sending signature information to the service system, so that the service system sends a transaction request and the signature information to the signature platform after executing service processing according to the signature information, further enabling the signature platform to verify the signature to obtain a verification result, and executing the transaction request according to the verification result.
In this embodiment of the application, the trigger operation for the second jump link information may be an access operation for the second jump link information. And when the second skip link information is accessed, signature information contained in the second skip link information can be sent to the service system, so that the service system can send a transaction request and the signature information to the signature platform after executing service processing according to the signature information. For example, in a redirection mode based on the Http response code 302, after accessing the second jump link information, the user terminal jumps to the service system according to the address specified by localiton, the service system processes the signature information, finds a corresponding transaction request according to the unique number of the signature request in the signature information, and stores the signature to complete subsequent service processing. After the business system completes all business processing, the transaction request and the signature in the signature information are submitted to a signature platform together, the submission format can be a form or JSON, and the following parameters are required to be included: an amount; transferring the amount of money; payee: a payee account number; sign: and (6) signing. The signature platform can calculate a transaction abstract by using a signature operation algorithm the same as that used in signature aiming at the signature and the transaction request submitted by the service system, check the signature by using a public key to obtain a verification result representing whether the signature passes or not, and execute the transaction request according to different verification results.
The signature verification method and the system have the advantages that the signature information and the transaction request are sent to the signature platform for signature verification after the skip service system performs service processing, so that the transaction which is finally sent to the transaction system can be guaranteed to be the content submitted and confirmed by the user as long as the reliability of the signature platform is guaranteed, and the reliability of the transaction is guaranteed.
In one embodiment, as shown in fig. 6, a digital signature and verification method is provided, which comprises the following steps:
step 602, after the user side submits the transaction request to the service system, a signature confirmation page is provided to the user side, so that after the user side jumps to the signature confirmation page, the current account logged in by the user side performs signature confirmation on the signature confirmation page.
In the embodiment of the application, after the user side submits the transaction request to the service system to the side in response to the operation of the user, the signature confirmation page can be generated according to the signature parameters sent by the service system, and the signature confirmation page is provided for the user side. The current account logged in by the user terminal can be confirmed and signed or cancelled on the signature confirmation page.
And step 604, after the current account completes signature confirmation, receiving a transaction request sent by the service system and the signature information of the current account.
In the embodiment of the application, after the current account selects the confirmation and signature key at the user side and completes signature confirmation, the signature information generated by the signature confirmation page can be received, so that the service system receives the signature information sent by the user side for service processing. After the service system completes service processing, the transaction request and the signature information of the current account sent by the service system can be received.
And 606, verifying the signature information to obtain a corresponding verification result.
In the embodiment of the application, the transaction abstract can be calculated by using the same signature operation algorithm as that used in signature, and the public key is used for signature verification to obtain a verification result representing whether the signature verification passes or not.
Step 608, the transaction request is executed according to the verification result.
In the embodiment of the application, different execution operations can be performed according to different verification results.
According to the digital signature and signature verification method provided by the embodiment of the application, after a user side submits a transaction request to a service system, a signature confirmation page is provided for the user side, so that after the user side jumps to the signature confirmation page, a current account logged in by the user side carries out signature confirmation on the signature confirmation page; after the current account completes signature confirmation, receiving a transaction request sent by a service system and signature information of the current account; verifying the signature information to obtain a corresponding verification result; and executing the transaction request according to the verification result. Compared with a method for signing, signature checking and transaction initiation by a service system in the traditional technology, the method has the advantages that a signature platform which is independently developed and deployed with the service system is introduced, the signature platform provides a signature confirmation page for a user side, so that the user can conveniently perform secondary confirmation on a transaction request, the signature platform performs signature checking and transaction request execution after confirmation, and as long as the reliability of the signature platform is ensured, the transaction which is finally sent to the transaction system can be ensured to be the content which is submitted and confirmed by the user, so that the reliability of the transaction is ensured.
In one embodiment, as shown in fig. 7, in step 602, after the user side submits the transaction request to the business system, providing a signature confirmation page to the user side may include:
step 702, receiving a signature parameter sent by the user side after triggering the first skip link information, where the signature parameter is constructed by the service system according to the transaction request submitted by the user side, and the first skip link information is link information used for redirecting the signature platform and fed back to the user side by the service system according to the signature parameter.
In the embodiment of the application, after the user side sends the transaction request to the service system, the service system can process the transaction request, construct the signature parameter for the transaction request according to an interface protocol with the signature platform, and feed back the first skip link information for redirecting the signature platform to the user side according to the signature parameter. When the user terminal accesses the first jump link information, the signature parameter sent by the user terminal may be received, and the signature parameter may be included in the first jump link information.
And step 704, constructing a signature confirmation page according to the signature parameters.
In this embodiment, the signature parameters may include a transaction amount (in minutes), a payee account number, and a unique number of the signature request. The signature confirmation page may be constructed from the transaction amount (in cents) and the payee account number in the signature parameters. The signature confirmation page may display transaction information such as a collection account number and a transaction amount as shown in fig. 3, and may further include two operation keys of confirmation, signature, and cancellation.
Step 706, send signature confirmation page to user.
In the embodiment of the application, after the signature confirmation page is constructed according to the signature parameters contained in the first skip link information, the signature confirmation page is fed back to the user side, so that the user side receives the signature confirmation page fed back by the signature platform and displays the signature confirmation page in the display interface. For example, in a redirection mode based on the Http response code 302, after the user accesses the first jump link information, the user jumps to a signature confirmation page of the signature platform according to an address specified by localion. The user can confirm and sign or cancel the operation on the sign confirmation page at the display interface.
The signature confirmation page constructed by the signature platform can be displayed for the user on the display interface of the user side, so that the user can perform secondary confirmation on the transaction request, and the user can perform signature after submitting confirmation, thereby preventing wrong transaction information from being provided for the signature platform due to the problem of a service system, and ensuring the reliability of transaction.
In one embodiment, as shown in fig. 8, in step 604, after the current account completes signature confirmation, receiving the transaction request and the signature information of the current account sent by the business system may include:
step 802, receiving signature information sent by the user end after executing signature confirmation operation on the signature confirmation page.
In the embodiment of the application, the confirmation and signature key can be triggered on the signature confirmation page so as to execute signature confirmation operation on the signature confirmation page. After the signature is confirmed, the signature confirmation page generates a signature for the summary of the transaction request by using a private key of the user and submits signature information, wherein the signature information can be in a form format or a JSON (JavaScript Object Notation) format, and the signature information comprises the signature corresponding to the transaction request and a unique number of the signature request. And receiving the signature information sent by the user terminal at the moment.
And step 804, feeding back second jump link information for redirecting the service system to the user side according to the signature information so that the user side responds to the triggering operation aiming at the second jump link information and sends the signature information to the service system, and the service system executes service processing according to the signature information.
In the embodiment of the application, after the signature information is received, second skip link information for redirecting the service system can be fed back to the user side according to the signature information. The second jump link information may include signature information: sign: signing; request _ uuid: the signature request unique number. The trigger operation for the second jump link information may be an access operation to the second jump link information. And when the user side accesses the second jump link information, the signature information contained in the second jump link information can be sent to the service system, so that the service system executes service processing according to the signature information.
Step 806, after the service system executes service processing according to the signature information, receiving a transaction request sent by the service system and the signature information of the current account.
In the embodiment of the present application, after the service system processes the signature information, finds out the corresponding transaction request according to the unique number of the signature request in the signature information, stores the signature, and completes subsequent service processing, the transaction request sent by the service system and the signature in the signature information may be received, the information format sent by the service system may be a form or JSON, where the following parameters need to be included: an amount; transferring the amount of money; payee: a payee account number; sign: and (6) signing.
The embodiment of the disclosure constructs the second skip link information after receiving the signature information so as to enable the user-side skip service system to perform service processing, and then receives the signature information and the transaction request sent by the service system, so that the signature verification of the signature platform is facilitated, and as long as the reliability of the signature platform is ensured, the transaction finally sent to the transaction system can be ensured to be the content submitted and confirmed by the user, and the reliability of the transaction is ensured.
In one embodiment, in step 608, executing the transaction request according to the verification result may include:
under the condition that the verification result represents that the verification label passes, generating a transaction message according to the transaction request, and sending the transaction message to a transaction system; or under the condition that the verification result represents that the verification label is not passed, feeding back error information to the service system according to the transaction request.
In the embodiment of the application, if the signature is successfully verified by using the public key, a verification result representing that the signature verification passes is obtained, a final transaction message can be generated according to an interface protocol of the transaction system, and the transaction message is submitted to the transaction system. The transaction system is a system for actually processing transactions, generally a bank or a third-party payment system, and can process transaction requests related to accounts and funds and finally complete fund receipt. If the signature verification by using the public key fails, a verification result representing that the signature verification fails is obtained, and error information can be fed back to the service system, so that the service system performs internal error processing.
The embodiment of the disclosure can judge whether to submit the transaction message to the transaction system for transaction based on different verification results, thereby avoiding the occurrence of signature or transaction error and transaction, and ensuring the reliability of transaction.
In one embodiment, as shown in fig. 9, a digital signature and verification method is provided, which comprises the following steps:
step 902, receiving a transaction request sent by a user side.
In this embodiment, the user side may be a browser on the terminal. The user terminal submits a transaction request in response to a user operation with respect to funds. And receiving a transaction request from the user terminal, wherein the transaction request can comprise transaction information such as transaction amount (in units of minutes), a payee account number and the like.
And 904, responding to the transaction request, sending jump link information to the user side, so that the user side jumps to a signature confirmation page provided by the signature platform through the jump link information to perform signature confirmation.
In the embodiment of the application, in response to a transaction request, a signature parameter can be constructed for the transaction request according to an interface protocol with a signature platform, and skip link information for redirecting the signature platform is fed back to a user side according to the signature parameter, so that the user side skips to a signature confirmation page provided by the signature platform through the skip link information to perform signature confirmation.
Step 906, after the user end completes signature confirmation on the signature confirmation page, the business process corresponding to the transaction request is performed.
In the embodiment of the application, after the user side responds to the confirmation on the signature confirmation page and triggers the signature key, signature information of the current account sent by the user side can be received, the corresponding transaction request is found according to the unique number of the signature request in the signature information, the signature is stored, subsequent business processing is completed, and the business processing can comprise internal processing, examination and approval processes and the like. Step 908, after the service processing is completed, the transaction request and the signature information of the current account are sent to the signature platform, so that the signature platform verifies the signature information to obtain a corresponding verification result, and the transaction request is executed according to the verification result.
In the embodiment of the application, after the service processing is completed, the transaction request and the signature in the signature information are submitted to a signature platform together, and the submission format may be a form or JSON, where the following parameters need to be included: an amount; transferring the amount of money; payee: a payee account number; sign: and (6) signing. The signature platform can calculate a transaction summary by using the same signature operation algorithm as that used in signature aiming at the signature and the transaction request submitted by the service system, check the signature by using a public key to obtain a verification result representing whether the signature passes or not, and execute the transaction request according to different verification results.
The digital signature and signature verification method provided by the embodiment of the application receives a transaction request sent by a user side; responding to the transaction request, sending jump link information to the user side, so that the user side jumps to a signature confirmation page provided by the signature platform through the jump link information to perform signature confirmation; after the user side completes signature confirmation on the signature confirmation page, business processing corresponding to the transaction request is carried out; after the business processing is completed, the transaction request and the signature information of the current account are sent to the signature platform, so that the signature platform verifies the signature information to obtain a corresponding verification result, and the transaction request is executed according to the verification result. Compared with a method for signing, signature checking and transaction initiation by a service system in the traditional technology, the method has the advantages that a signature platform which is independently developed and deployed with the service system is introduced, the signature platform provides a signature confirmation page for a user side, so that the user can conveniently perform secondary confirmation on a transaction request, the signature platform performs signature checking and transaction request execution after confirmation, and as long as the reliability of the signature platform is ensured, the transaction which is finally sent to the transaction system can be ensured to be the content which is submitted and confirmed by the user, so that the reliability of the transaction is ensured.
In one embodiment, as shown in fig. 10, in step 904, sending jump link information to the user terminal in response to the transaction request may include:
step 1002, acquiring transaction data and account information from the transaction request, and constructing a signature parameter according to the transaction data and the account information.
In the embodiment of the application, after the transaction request sent by the user side is received, the transaction request can be processed, and the signature parameters are constructed for the transaction request according to the interface protocol with the signature platform. The transaction request may include transaction data and account information, the transaction data may be a transaction amount (in minutes), the account information may be a payee account, and the signature parameter may be generated according to the transaction data and the account information, and the signature parameter may include the transaction amount (in minutes), the payee account, and a unique number of the signature request. And matching the transaction request with the signature parameters in a one-to-one way according to the unique number of the signature request.
And 1004, feeding back jump link information for redirecting the signature platform to the user side according to the signature parameters.
In the embodiment of the application, the skip link information may include a signature parameter, so that when the user accesses the skip link information, the signature parameter may be sent to the signature platform, and the signature platform constructs a signature confirmation page according to the signature parameter. That is, the user terminal can display the signature confirmation page by accessing the jump information link.
The embodiment of the disclosure can feed back the skip link information of the redirection signature platform to the user side after the signature parameter is constructed according to the transaction request, that is, the signature platform provides the signature confirmation page to the user side, so that the user can perform secondary confirmation on the transaction request, and as long as the reliability of the signature platform is ensured, the transaction finally sent to the transaction system can be ensured to be the content submitted and confirmed by the user, and the reliability of the transaction is ensured.
It should be understood that, although the steps in the flowcharts related to the embodiments as described above are sequentially displayed as indicated by arrows, the steps are not necessarily performed sequentially as indicated by the arrows. The steps are not performed in the exact order shown and described, and may be performed in other orders, unless explicitly stated otherwise. Moreover, at least a part of the steps in the flowcharts related to the embodiments described above may include multiple steps or multiple stages, which are not necessarily performed at the same time, but may be performed at different times, and the execution order of the steps or stages is not necessarily sequential, but may be rotated or alternated with other steps or at least a part of the steps or stages in other steps.
The embodiment of the application also provides a digital signature and signature verification system for realizing the digital signature and signature verification system method. The digital signature and signature verification system comprises: user side, service system and signature platform.
The system comprises a user side, a signature platform and a signature verification page, wherein the user side is used for submitting a transaction request to the service system and jumping to the signature verification page provided by the signature platform for signature verification after submitting the transaction request to the service system; the service system is used for performing service processing after the user side completes signature confirmation, and sending the transaction request and the signature information of the current account to the signature platform; the signature platform is used for providing a signature confirmation page for the user side, receiving the transaction request and the signature information sent by the service system, verifying the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result.
It should be noted that, in the embodiment of the present application, the processes of signing and verifying by the digital signature and verification system may refer to the related descriptions of the foregoing embodiments, and no further description is provided in the embodiment of the present application.
Compared with a method for signing, signature checking and transaction initiation by a service system in the traditional technology, the digital signature and signature checking system provided by the embodiment introduces a signature platform which is independently developed and deployed with the service system, the signature platform provides a signature confirmation page for a user side so that the user can perform secondary confirmation on a transaction request, the signature platform performs signature checking and transaction request execution after confirmation, and as long as the reliability of the signature platform is ensured, the transaction which is finally sent to the transaction system can be ensured to be the content submitted and confirmed by the user, so that the reliability of the transaction is ensured.
To facilitate further understanding of embodiments of the present application, referring to fig. 11, a flow chart of a digital signature and signature verification method incorporating a digital signature and signature verification system is provided herein. Steps 1.1-1.4 in the figure are conventional service requests and processing, still handled independently by the service system. The user side initiates a transaction request, and the transaction request is processed by the cooperation of the service system and the signature platform. The service system processes the transaction request, constructs signature parameters for the transaction request according to an interface protocol with the signature platform, and redirects the user side to jump to the signature platform. The user side can process an http response returned by the service system, a signature confirmation page of the signature platform is skipped according to an address specified by the Location, the skip link contains signature parameters, meanwhile, the signature platform receives the signature parameters, the signature confirmation page is constructed according to the signature parameters, and the signature confirmation page is displayed at the user side. The user confirms the transaction information displayed on the signature platform page, and the signature confirmation page generates a signature for the transaction abstract by using the user private key after confirmation. The user end submits the signature to the signature platform, and the signature platform receives the signature and redirects the user end back to the service system. The user side can process the returned http response and jump to the service system according to the address specified by the Location. And the service system receives and processes the signature sent by the user side, finds the previous transaction record by the unique number of the signature request, stores the signature and completes the subsequent service processing. And after the business system finishes all business processing, the business system finally submits the transaction request and the signature to the signature platform together. And the signature platform calculates the transaction abstract by using the same operation algorithm as that used in signature aiming at the parameters submitted by the service system, and verifies the signature by using the public key. If the check label fails, returning to the service system for error processing; if the check label passes, the signature platform generates a final message according to an interface protocol of the transaction system and submits the final message to the transaction system, the transaction system completes processing, and finally the fund is sent to the account.
Based on the same inventive concept, the embodiment of the application also provides a digital signature and signature verification device for realizing the digital signature and signature verification method. The implementation scheme for solving the problem provided by the device is similar to the implementation scheme described in the above method, so the specific limitations in one or more embodiments of the digital signature and signature verification device provided below can be referred to the limitations of the above digital signature and signature verification method, and are not described herein again.
In one embodiment, referring to fig. 12, a digital signature and signature verification apparatus 1200 is provided. The digital signature and verification apparatus 1200 includes:
the signature confirmation module 1202 is configured to jump to a signature confirmation page provided by the signature platform to perform signature confirmation after submitting a transaction request to the service system;
and the skipping module 1204 is configured to skip to the service system for service processing after the signature confirmation is completed, and the service system sends the transaction request and the signature information of the current account to the signature platform, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executes the transaction request according to the verification result.
The digital signature and signature verification device provided by the embodiment of the application jumps to a signature confirmation page provided by a signature platform to perform signature confirmation after submitting a transaction request to a service system; and after the signature confirmation is finished, skipping to a service system for service processing, and sending the transaction request and the signature information of the current account to a signature platform by the service system so that the signature platform verifies the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result. Compared with a method for signing, signature checking and transaction initiation by a service system in the traditional technology, the method has the advantages that a signature platform which is independently developed and deployed with the service system is introduced, the signature platform provides a signature confirmation page for a user side, so that the user can conveniently perform secondary confirmation on a transaction request, the signature checking and transaction request execution are performed by the signature platform after confirmation, and as long as the reliability of the signature platform is ensured, the transaction which is finally sent to the transaction system can be ensured to be the content submitted and confirmed by the user, and the reliability of the transaction is ensured.
In one embodiment, the signature confirmation module 1202 is further configured to send a transaction request to the service system, so that the service system constructs a signature parameter in response to the transaction request, and feeds back first skip link information for redirecting the signature platform to the user side according to the signature parameter; responding to the triggering operation aiming at the first skip link information, sending a signature parameter to the signature platform so that the signature platform constructs a signature confirmation page according to the signature parameter and feeds back the signature confirmation page to the user side; and after receiving the signature confirmation page fed back by the signature platform, displaying the signature confirmation page in a display interface.
In one embodiment, the skipping module 1204 is further configured to send signature information to the signature platform in response to a signature verification operation for the signature verification page, so that the signature platform feeds back second skipping link information for redirecting the service system to the user side according to the signature information; and responding to the triggering operation aiming at the second skip link information, sending signature information to the service system, so that the service system sends a transaction request and the signature information to the signature platform after executing service processing according to the signature information, further enabling the signature platform to verify the signature to obtain a verification result, and executing the transaction request according to the verification result.
In one embodiment, referring to fig. 13, a digital signature and signature verification apparatus 1300 is provided. The digital signature and verification apparatus 1300 includes:
the signature module 1302 is configured to provide a signature confirmation page to the user side after the user side submits the transaction request to the service system, so that after the user side jumps to the signature confirmation page, a current account logged in by the user side performs signature confirmation on the signature confirmation page;
the information receiving module 1304 is configured to receive a transaction request sent by a service system and signature information of a current account after the current account completes signature confirmation;
the signature verification module 1306 is configured to verify the signature information to obtain a corresponding verification result;
an executing module 1308 is configured to execute the transaction request according to the verification result.
According to the digital signature and signature verification device provided by the embodiment of the application, after a user side submits a transaction request to a service system, a signature confirmation page is provided for the user side, so that after the user side jumps to the signature confirmation page, a current account logged in by the user side carries out signature confirmation on the signature confirmation page; after the current account completes signature confirmation, receiving a transaction request sent by a service system and signature information of the current account; verifying the signature information to obtain a corresponding verification result; and executing the transaction request according to the verification result. Compared with a method for signing, signature checking and transaction initiation by a service system in the traditional technology, the method has the advantages that a signature platform which is independently developed and deployed with the service system is introduced, the signature platform provides a signature confirmation page for a user side, so that the user can conveniently perform secondary confirmation on a transaction request, the signature checking and transaction request execution are performed by the signature platform after confirmation, and as long as the reliability of the signature platform is ensured, the transaction which is finally sent to the transaction system can be ensured to be the content submitted and confirmed by the user, and the reliability of the transaction is ensured.
In one embodiment, the signature module 1302 is further configured to receive a signature parameter sent by the user end after triggering the first skip link information, where the signature parameter is constructed by the service system according to the transaction request submitted by the user end, and the first skip link information is link information used for redirecting the signature platform and fed back to the user end by the service system according to the signature parameter; constructing a signature confirmation page according to the signature parameters; and sending a signature confirmation page to the user terminal.
In one embodiment, the information receiving module 1304 is further configured to receive signature information sent by the user end after the signature confirmation page performs signature confirmation operation; feeding back second skip link information for redirecting the service system to the user side according to the signature information so that the user side responds to the triggering operation aiming at the second skip link information and sends the signature information to the service system, and further the service system executes service processing according to the signature information; and after the service system executes service processing according to the signature information, receiving a transaction request sent by the service system and the signature information of the current account.
In an embodiment, the executing module 1308 is further configured to, when the verification result represents that the signature verification passes, generate a transaction message according to the transaction request, and send the transaction message to the transaction system; or under the condition that the verification result represents that the verification label is not passed, feeding back error information to the service system according to the transaction request.
In one embodiment, referring to fig. 14, a digital signature and signature verification apparatus 1400 is provided. The digital signature and signature verification apparatus 1400 includes:
an information receiving module 1402, configured to receive a transaction request sent by a user end;
a skip module 1404, configured to send skip link information to the user side in response to the transaction request, so that the user side skips to a signature confirmation page provided by the signature platform through the skip link information to perform signature confirmation;
the service processing module 1406 is configured to perform service processing corresponding to the transaction request after the user side completes signature verification on the signature verification page;
the information sending module 1408 is configured to send the transaction request and the signature information of the current account to the signature platform after the service processing is completed, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executes the transaction request according to the verification result.
The digital signature and signature verification device provided by the embodiment of the application receives a transaction request sent by a user side; responding to the transaction request, sending jump link information to the user side, so that the user side jumps to a signature confirmation page provided by the signature platform through the jump link information to perform signature confirmation; after the user side completes signature confirmation on the signature confirmation page, business processing corresponding to the transaction request is carried out; after the business processing is completed, the transaction request and the signature information of the current account are sent to the signature platform, so that the signature platform verifies the signature information to obtain a corresponding verification result, and the transaction request is executed according to the verification result. Compared with a method for signing, signature checking and transaction initiation by a service system in the traditional technology, the method has the advantages that a signature platform which is independently developed and deployed with the service system is introduced, the signature platform provides a signature confirmation page for a user side, so that the user can conveniently perform secondary confirmation on a transaction request, the signature platform performs signature checking and transaction request execution after confirmation, and as long as the reliability of the signature platform is ensured, the transaction which is finally sent to the transaction system can be ensured to be the content which is submitted and confirmed by the user, so that the reliability of the transaction is ensured.
In one embodiment, the skip module 1404 is further configured to obtain transaction data and account information from the transaction request, and construct a signature parameter according to the transaction data and the account information; and feeding back jump link information for redirecting the signature platform to the user side according to the signature parameters.
The various modules in the digital signature and signature verification apparatus described above may be implemented in whole or in part by software, hardware, and combinations thereof. The modules can be embedded in a hardware form or independent from a processor in the computer device, and can also be stored in a memory in the computer device in a software form, so that the processor can call and execute operations corresponding to the modules.
In one embodiment, a computer device is provided, which may be a server, and the internal structure thereof may be as shown in fig. 15. The computer device includes a processor, a memory, and a network interface connected by a system bus. Wherein the processor of the computer device is configured to provide computing and control capabilities. The memory of the computer device includes a non-volatile storage medium and an internal memory. The non-volatile storage medium stores an operating system, a computer program, and a database. The internal memory provides an environment for the operation of an operating system and computer programs in the non-volatile storage medium. The database of the computer device is used for storing data such as transaction requests or signatures. The network interface of the computer device is used for communicating with an external terminal through a network connection. The computer program is executed by a processor to implement a digital signature and signature verification method.
Those skilled in the art will appreciate that the architecture shown in fig. 15 is merely a block diagram of some of the structures associated with the disclosed aspects and is not intended to limit the computing devices to which the disclosed aspects apply, as particular computing devices may include more or less components than those shown, or may combine certain components, or have a different arrangement of components.
In an embodiment, a computer device is provided, comprising a memory and a processor, the memory having stored therein a computer program, the processor implementing the steps of the above method embodiments when executing the computer program.
In an embodiment, a computer-readable storage medium is provided, on which a computer program is stored, which computer program, when being executed by a processor, carries out the steps of the above-mentioned method embodiments.
In an embodiment, a computer program product is provided, comprising a computer program which, when being executed by a processor, carries out the steps of the above-mentioned method embodiments.
It should be noted that, the user information (including but not limited to user device information, user personal information, etc.) and data (including but not limited to data for analysis, stored data, presented data, etc.) referred to in the present application are information and data authorized by the user or sufficiently authorized by each party.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by hardware instructions of a computer program, which can be stored in a non-volatile computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. Any reference to memory, database, or other medium used in the embodiments provided herein may include at least one of non-volatile and volatile memory. The nonvolatile Memory may include a Read-Only Memory (ROM), a magnetic tape, a floppy disk, a flash Memory, an optical Memory, a high-density embedded nonvolatile Memory, a resistive Random Access Memory (ReRAM), a Magnetic Random Access Memory (MRAM), a Ferroelectric Random Access Memory (FRAM), a Phase Change Memory (PCM), a graphene Memory, and the like. Volatile Memory can include Random Access Memory (RAM), external cache Memory, and the like. By way of illustration and not limitation, RAM can take many forms, such as Static Random Access Memory (SRAM) or Dynamic Random Access Memory (DRAM), among others. The databases referred to in various embodiments provided herein may include at least one of relational and non-relational databases. The non-relational database may include, but is not limited to, a block chain based distributed database, and the like. The processors referred to in the embodiments provided herein may be general purpose processors, central processing units, graphics processors, digital signal processors, programmable logic devices, quantum computing based data processing logic devices, etc., without limitation.
All possible combinations of the technical features in the above embodiments may not be described for the sake of brevity, but should be considered as being within the scope of the present disclosure as long as there is no contradiction between the combinations of the technical features.
The above-mentioned embodiments only express several embodiments of the present application, and the description thereof is more specific and detailed, but not construed as limiting the scope of the present application. It should be noted that, for a person skilled in the art, several variations and modifications can be made without departing from the concept of the present application, which falls within the scope of protection of the present application. Therefore, the protection scope of the present application shall be subject to the appended claims.

Claims (16)

1. A digital signature and signature verification method, the method comprising:
after a transaction request is submitted to a service system, jumping to a signature confirmation page provided by a signature platform to perform signature confirmation;
after the signature confirmation is completed, skipping to the service system for service processing, and sending the transaction request and the signature information of the current account to the signature platform by the service system, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result.
2. The method of claim 1, wherein after submitting the transaction request to the business system, jumping to a signature confirmation page provided by a signature platform for signature confirmation comprises:
sending a transaction request to a service system so that the service system can respond to the transaction request to construct a signature parameter, and feeding back first skip link information for redirecting a signature platform to a user side according to the signature parameter;
responding to the triggering operation aiming at the first skip link information, sending the signature parameters to the signature platform, so that the signature platform constructs a signature confirmation page according to the signature parameters and feeds back the signature confirmation page to the user side;
and after receiving the signature confirmation page fed back by the signature platform, displaying the signature confirmation page in a display interface.
3. The method as claimed in claim 1, wherein after the signature confirmation is completed, skipping to the service system for service processing, and the service system sending the transaction information and the signature information of the current account to the signature platform, so that the signature platform verifies the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result, including:
responding to signature confirmation operation aiming at the signature confirmation page, and sending signature information to the signature platform so that the signature platform feeds back second jump link information for redirecting the service system to the user side according to the signature information;
and responding to the triggering operation aiming at the second skip link information, sending the signature information to the service system, so that the service system sends the transaction request and the signature information to the signature platform after executing service processing according to the signature information, further enabling the signature platform to verify the signature to obtain a verification result, and executing the transaction request according to the verification result.
4. A digital signature and signature verification method, the method comprising:
after a user side submits a transaction request to a service system, a signature confirmation page is provided for the user side, so that after the user side jumps to the signature confirmation page, signature confirmation is carried out on a current account logged in by the user side on the signature confirmation page;
after the current account completes signature confirmation, receiving the transaction request and the signature information of the current account sent by the service system;
verifying the signature information to obtain a corresponding verification result;
and executing the transaction request according to the verification result.
5. The method of claim 4, wherein providing a signature confirmation page to the user side after the user side submits the transaction request to the business system comprises:
receiving a signature parameter sent by the user side after triggering first skip link information, wherein the signature parameter is constructed by the service system according to the transaction request submitted by the user side, and the first skip link information is link information which is fed back to the user side by the service system according to the signature parameter and is used for redirecting a signature platform;
constructing the signature confirmation page according to the signature parameters;
and sending the signature confirmation page to the user terminal.
6. The method of claim 4, wherein the receiving the transaction request and the signature information of the current account sent by the business system after the signature confirmation of the current account is completed comprises:
receiving signature information sent by the user side after signature confirmation operation is executed on the signature confirmation page;
feeding back second skip link information for redirecting the service system to the user side according to the signature information so that the user side sends the signature information to the service system in response to a trigger operation aiming at the second skip link information, and further the service system executes service processing according to the signature information;
and after the service system executes service processing according to the signature information, receiving the transaction request sent by the service system and the signature information of the current account.
7. The method of claim 4, wherein said executing the transaction request based on the verification result comprises:
under the condition that the verification result represents that the verification label passes, generating a transaction message according to the transaction request, and sending the transaction message to a transaction system; alternatively, the first and second electrodes may be,
and under the condition that the verification result represents that the signature verification fails, feeding back error information to the service system according to the transaction request.
8. A digital signature and signature verification method, the method comprising:
receiving a transaction request sent by a user side;
responding to the transaction request, sending skip link information to the user side, so that the user side skips to a signature confirmation page provided by a signature platform through the skip link information to perform signature confirmation;
after the user side completes signature confirmation on the signature confirmation page, business processing corresponding to the transaction request is carried out;
after the business processing is completed, the transaction request and the signature information of the current account are sent to the signature platform, so that the signature platform verifies the signature information to obtain a corresponding verification result, and the transaction request is executed according to the verification result.
9. The method of claim 8, wherein sending jump link information to the user side in response to the transaction request comprises:
acquiring transaction data and account information from the transaction request, and constructing a signature parameter according to the transaction data and the account information;
and feeding back jump link information for redirecting the signature platform to the user side according to the signature parameters.
10. A digital signature and signature verification system, said system comprising: a user terminal, a service system and a signature platform, wherein,
the user side is used for submitting a transaction request to the service system and jumping to a signature confirmation page provided by the signature platform to perform signature confirmation after submitting the transaction request to the service system;
the service system is used for performing service processing after the user side completes signature confirmation, and sending the transaction request and the signature information of the current account to the signature platform;
the signature platform is used for providing the signature confirmation page to the user side, receiving the transaction request and the signature information sent by the service system, verifying the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result.
11. A digital signature and signature verification method and device are characterized in that the device comprises:
the signature confirmation module is used for jumping to a signature confirmation page provided by the signature platform to perform signature confirmation after submitting a transaction request to the service system;
and the skipping module is used for skipping to the service system for service processing after signature confirmation is completed, and the service system sends the transaction request and the signature information of the current account to the signature platform so that the signature platform verifies the signature information to obtain a corresponding verification result, and executes the transaction request according to the verification result.
12. A digital signature and signature verification method and device are characterized in that the device comprises:
the signature module is used for providing a signature confirmation page for the user side after the user side submits a transaction request to a service system, so that after the user side jumps to the signature confirmation page, the current account logged in by the user side carries out signature confirmation on the signature confirmation page;
the information receiving module is used for receiving the transaction request sent by the business system and the signature information of the current account after the current account completes signature confirmation;
the signature verification module is used for verifying the signature information to obtain a corresponding verification result;
and the execution module is used for executing the transaction request according to the verification result.
13. A digital signature and signature verification method and device are characterized in that the device comprises:
the information receiving module is used for receiving a transaction request sent by a user side;
the skip module is used for responding to the transaction request and sending skip link information to the user side so that the user side skips to a signature confirmation page provided by a signature platform through the skip link information to perform signature confirmation;
the business processing module is used for processing the business corresponding to the transaction request after the user side finishes signature confirmation on the signature confirmation page;
and the information sending module is used for sending the transaction request and the signature information of the current account to the signature platform after the business processing is finished so that the signature platform verifies the signature information to obtain a corresponding verification result, and executing the transaction request according to the verification result.
14. A computer device comprising a memory and a processor, the memory storing a computer program, characterized in that the processor realizes the steps of the method of any one of claims 1 to 9 when executing the computer program.
15. A computer-readable storage medium, on which a computer program is stored which, when being executed by a processor, carries out the steps of the method according to any one of claims 1 to 9.
16. A computer program product comprising a computer program, characterized in that the computer program, when being executed by a processor, carries out the steps of the method of any one of claims 1 to 9.
CN202211115773.5A 2022-09-14 2022-09-14 Digital signature and signature verification method, system and device Pending CN115439121A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211115773.5A CN115439121A (en) 2022-09-14 2022-09-14 Digital signature and signature verification method, system and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211115773.5A CN115439121A (en) 2022-09-14 2022-09-14 Digital signature and signature verification method, system and device

Publications (1)

Publication Number Publication Date
CN115439121A true CN115439121A (en) 2022-12-06

Family

ID=84247766

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211115773.5A Pending CN115439121A (en) 2022-09-14 2022-09-14 Digital signature and signature verification method, system and device

Country Status (1)

Country Link
CN (1) CN115439121A (en)

Similar Documents

Publication Publication Date Title
US20230325940A1 (en) Systems and methods of access control and system integration
WO2020150741A1 (en) Identity management, smart contract generator, and blockchain mediating system, and related methods
KR101952498B1 (en) Loan service providing method using black chain and system performing the same
CN110458562B (en) Bill reimbursement method, device and equipment and computer storage medium
AU2014324112A1 (en) Systems for access control and system integration
WO2019052222A1 (en) Insurance policy processing method and apparatus, computer device, and readable storage medium
CN111967958A (en) Block chain-based drug supply management system and method
CN110659993A (en) Resource management method and device based on block chain network
CN112669140A (en) Financial account sales processing method and device, computer equipment and storage medium
CN111210190B (en) File signing method, device, computer equipment and storage medium
CN111105224B (en) Payment feedback information processing method and device, electronic equipment and storage medium
CN109460963A (en) Electronic signature method, apparatus, computer equipment and storage medium
CN115439121A (en) Digital signature and signature verification method, system and device
CN115641122A (en) Virtual resource processing method, device, equipment, medium and computer program product
CN110852864B (en) Digital resource amount processing method, device and storage medium
CN114066451A (en) Method and system for managing fund transaction and electronic equipment
CN111932326A (en) Data processing method based on block chain network and related equipment
CN111626877A (en) Data processing method
US20200104228A1 (en) Asynchronous self-proving transactions
CN114219617A (en) Trusted payment method, device, computer equipment and storage medium
CN116187944A (en) Batch proxy service processing method, device, computer equipment and storage medium
CN117436871A (en) Virtual card using method, apparatus, device, storage medium, and program product
CN116797211A (en) Product resource transfer method, device, computer equipment and storage medium
CN114331657A (en) Resource transfer method, system, computer device and storage medium
CN114240430A (en) Access processing method and device for collection terminal, and computer equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination