JP2009015445A - Document management system and document management method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a document management system and a document management method for accurately and efficiently managing an electronic document. <P>SOLUTION: A loan application form management system 30a is provided with a loan application form storage and retrieval system 31a and a common base IF part 21. This common base IF part 21 is connected to a common base system 22. The common base IF part 21 applies electronic signature to the image data of a scanner document file as the object of signature. Then, the common base IF part 21 calculates a hash value by using a hash function. The common base IF part 21 acquires invalidation information upon signature, and confirms validity of electronic signature. When confirming the validity of the electronic signature on that day when the electronic signature has been generated, the common base IF part 21 executes valid registration processing, and makes the issue request of a time stamp. Meanwhile, when an electronic certificate is invalidated, the common base IF part 21 invalidates a scanner document file, and transmits a re-scan instruction. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to a document management system and a document management method for accurately managing contracts and the like.

  Conventionally, in financial institutions, various applications and contracts received from customers at banks have been written and stored in a safe or the like. In addition, there is a case where centralized storage is performed at an office center or the like in order to reduce the risk of loss.

  In particular, recently, due to the enforcement of the “Act on the Use of Information and Communication Technology in Document Preservation etc. Performed by Private Business Operators” (hereinafter referred to as “e-Document Law”), book documents, receipts, order forms, etc. There is a possibility that documents stored on paper etc. may be digitized and saved by scanning, or that handwritten documents received from business partners may be digitized and saved. In other words, not only saving documents (electronic documents) created from the beginning as an electronic document, but also image files (electronic documents) obtained by scanning a document created on paper with a scanner satisfy the certain technical requirements. Can be considered.

  Today, as a technique for storing such electronic documents and digitized documents while ensuring their authenticity, an attempt to manage electronic documents using an electronic signature using a public key cryptosystem is being studied. For example, a loan management method for managing a loan efficiently and accurately has been studied (for example, see Patent Document 1). In the technique described in this document, a user sets a loan condition using a user terminal. Then, an electronic signature generated using a secret key stored in the user terminal is attached and transmitted. When a loan contract is made, an electronic signature is generated for the user's own contract image data and position data. The management computer records this electronic signature in the loan management data storage unit.

Also, a method for guaranteeing the authenticity of electronic documents using time stamps that give accurate date and time information to electronic data by a third-party organization and perform proof of existence and non-falsification of electronic data at that time is also being considered. (For example, refer to Patent Document 2). In the technique described in this document, a client device connected to a time stamp authority through a network calculates a hash value of an electronic signature attached to an electronic document, and a document identification code assigned to a plurality of electronic documents, and the hash value A hash value list in which and are recorded is created. Then, the time stamp authority gives a time stamp to the electronic signature given to the hash value list. The client information device further accepts the verification target electronic document. The authenticity of the hash value list is verified by comparing the hash value calculated from the hash value list included in the verification target electronic document with the hash value obtained by decrypting the electronic signature of the hash value list. Then, the hash value calculated from the electronic signature of the search target document is compared with the hash value of the search target document described in the hash value list to verify the authenticity of the search target document.
JP 2005-267417 A (first page) JP 2007-43321 A (first page)

  By the way, the enforcement of the e-Document Law applies to financial and tax-related documents such as contracts, quotations, orders, and invoices received from business partners, medical-related documents such as medical records and prescriptions, and articles of incorporation. And company related documents such as the minutes of the general meeting of shareholders and board of directors. In particular, in financial institutions, since there are a large number of documents to be managed, efficient management is desired.

  However, conventionally, different types of documents have been managed using separate management systems. In the future, when e-documentation of various business operations is promoted, performing a series of system development for each individual business operation will increase development costs and operational costs, which will be an impediment to e-documentation promotion.

  SUMMARY An advantage of some aspects of the invention is that it provides a document management system and a document management method for accurately and efficiently managing a digitized document.

  In order to solve the above problems, the invention described in claim 1 is obtained from a client terminal and a common infrastructure server that is connected to a plurality of application servers and that obtains a time stamp by connecting to a time stamp station. A document management system comprising: a document management unit that records document data; and an application server that includes an interface unit that attaches an electronic signature to the document data and connects to a common base server. When the document data is acquired from the client terminal, the electronic signature creation means for giving an electronic signature and the revocation information issued by the certificate authority are used for the electronic certificate used for giving the electronic signature. Validity checking means for determining the validity at the time of granting, and checking the validity of the electronic certificate. If it is possible, a hash value is calculated based on the document data, the electronic signature, and the revocation information, and a time stamp management means for transmitting a time stamp issue request for the hash value to the common infrastructure server is provided. This is the gist.

  The invention described in claim 2 is the document management system according to claim 1, wherein the revocation information issued by the certificate authority is used to apply the electronic signature to the electronic certificate used to give the electronic signature. In the case where it is not possible to confirm, the interface means requests to regenerate the document data again.

  The invention according to claim 3 is the document management system according to claim 1 or 2, wherein the common infrastructure server stores the revocation information issued by the certificate authority and provides it to the interface means. To do.

  According to a fourth aspect of the present invention, in the document management system according to any one of the first to third aspects, the common base server determines a priority order based on a time when the document data is acquired from the client terminal. Then, the gist is to obtain the time stamp according to the priority order.

  The invention according to claim 5 is connected to a plurality of application servers, connected to a time stamp station, acquires a time stamp, a document management means for recording document data acquired from a client terminal, A method for managing an electronic document using a document management system configured with an application server provided with an interface unit for giving an electronic signature to the document data and connecting to a common base server, The interface means, when obtaining document data from the client terminal, uses the electronic signature generation stage for giving an electronic signature and the revocation information issued by the certificate authority for the electronic certificate used for giving the electronic signature. A validity check stage for determining the validity at the time of applying the signature, and the validity of the electronic certificate. A time stamp management step of calculating a hash value based on the document data, the electronic signature, and the revocation information, and transmitting a time stamp issuance request for the hash value to the common infrastructure server. The gist is to do it.

(Function)
According to the first or fifth aspect of the present invention, the interface means gives an electronic signature when document data is acquired from the client terminal. Then, using the revocation information issued by the certificate authority, the validity at the time of giving the electronic signature is determined for the electronic certificate used for giving the electronic signature. Here, if the validity of the electronic certificate can be confirmed, a hash value is calculated based on the document data, electronic signature, and revocation information, and a request for issuing a time stamp for this hash value is sent to the common infrastructure server. To do. As a result, the time stamp can be acquired for the document whose validity of the electronic signature has been confirmed via the common base server as a window to the time stamp station. Therefore, in e-documentation, the common processing and the specific processing are separated from each other by paying attention to the fact that there is a portion where unique processing occurs for each individual business and a portion which is common processing across business. By linking these functions, it is possible to ensure versatility and expandability by designing so that common processing parts can be shared by each specific business while satisfying the functions required for e-documentation. . Furthermore, by separating the document management system from the common infrastructure system, it is possible to cope with higher information security.

  According to the second aspect of the present invention, when the validity at the time of granting the electronic signature of the electronic certificate used for giving the electronic signature cannot be confirmed using the revocation information issued by the certificate authority, the interface means Requests the regeneration of the document data again. Since the revocation information is not issued at the time when the electronic signature is given, the electronic signature may not be valid. Therefore, reliable document data can be secured by preparing the document data again.

  According to the invention described in claim 3, the revocation information issued by the certificate authority is accumulated and provided to the interface means. Thereby, the application server can acquire the revocation information from the common infrastructure server. In other words, the access to the external certificate authority is represented by the common infrastructure server, so that the communication load can be reduced.

  According to the invention described in claim 4, the common infrastructure server determines the priority order based on the time when the document data is acquired from the client terminal, and acquires the time stamp according to the priority order. As a result, the time stamp can be acquired preferentially for the document data whose time limit is approaching.

  According to the present invention, an electronic document can be managed accurately and efficiently.

  Hereinafter, an embodiment embodying the present invention will be described with reference to FIGS. In the present embodiment, a document management system and a document management method used for storing an electronic document (loan application form) in a financial institution will be described.

  In the present embodiment, as shown in FIG. 1, an electronic terminal 10 as a client terminal is installed in each branch office or department of a financial institution. In addition, a verification terminal 15 is installed in the electronic document management department. Here, the electronic terminal 10 and the verification terminal 15 include a control unit (CPU, RAM, ROM, hard disk storage device, etc.), a display unit composed of a display, etc., and an input unit composed of a keyboard, a pointing device, and the like. Computer terminal.

  The electronic terminal 10 is connected to a scanner device, and reads various documents such as contracts with the scanner device to generate document data obtained by digitizing the document. In the memory of the electronic terminal 10, reference image data corresponding to the document type and reference value data used in image comparison to be described later are recorded.

Further, the control unit of the electronic terminal 10 performs OCR (Optical Character Recognition) processing on the electronic document. The OCR means generates text data from a predetermined area of the image data read by the scanner device.

On the other hand, the verification terminal 15 is a computer terminal used by a person in charge of verifying an electronic document.
The electronic terminal 10 and the verification terminal 15 are connected to a document management system (30 to 30n) for managing various documents such as contracts via a network in the financial institution. This document management system (30 to 30n) functions as an application server, and is a computer system that manages application forms and contracts received in transactions and the like. In this embodiment, a different system is constructed for each management target. The document management system (30 to 30n) includes a loan application form management system 30a.

  Further, the document management system (30 to 30n) is connected to the common infrastructure system 22 via a network in the financial institution. The common platform system 22 is a platform system that manages in common a common process (electronic signature and time stamp) for digitized documents managed in each document management system (30 to 30n). The common infrastructure system 22 is connected to the certificate authority CA and the time stamp authority TSA via the Internet.

  Next, the configuration of the document management system (30 to 30n) will be described. The document management system (30 to 30n) is assigned a system identification code for individually specifying each system. The document management system (30 to 30n) includes storage search systems (31 to 31n) for managing the stored digitized documents. Each storage / retrieval system (31-31n) functions as a document management unit and includes a document management database (not shown) for storing digitized documents. Here, the loan application form management system 30a includes a loan application form storage search system 31a as a storage search system. The loan application form storage / retrieval system 31a includes a document management database in which an electronic loan application form is stored.

  The document management database includes a scanner document file, an electronic certificate file, an electronic signature file, a revocation information file, a root station certificate file, a root station revocation information file, and a time stamp file related to the digitized document. Composed.

  In the scanner document file storage unit, a file relating to image data of a document generated by the scanner device is recorded. This scanner document file is registered when image data is acquired from an electronic terminal. The scanner document file includes a scan management code, an electronic date and time, image data associated with a document attribute, and a management status.

In the scan management code data area, there is recorded data relating to a serial number that is an identifier generated when a document is digitized by a scanner and uniquely identifies the digitized document.
In the digitization date / time data area, data related to the date / time when the document is digitized by the scanner is recorded.

In the document attribute data area, data relating to the form type, store code, loan number, name, and application date of the loan are recorded.
Image data of a document generated by the scanner device is recorded in the image data area.
In the management status data area, data relating to the time stamp assignment status of the image data is recorded.

  In the electronic certificate file storage unit, a file related to the electronic certificate issued by the certificate authority is recorded. This electronic certificate file is recorded when it is acquired from a certificate authority and registered. This electronic certificate file includes an electronic certificate associated with the electronic certificate serial number, the certificate registration date and time, and the certificate validity period.

In the electronic certificate serial number data area, data relating to a number uniquely identifying the electronic certificate, which is an identifier assigned by the certificate authority that issues the electronic certificate, is recorded.
Data related to the date when the electronic certificate is registered is recorded in the certificate registration date / time data area.

Data related to the validity period of the electronic certificate is recorded in the certificate validity period data area.
In the electronic certificate data area, an electronic certificate issued by an authorized certification authority based on the electronic signature method is recorded.

  The electronic signature file storage unit records a file related to an electronic signature created using an electronic certificate for the digitized document. This electronic signature file is recorded when an electronic book name is generated. This electronic signature file includes a scan management code, an electronic certificate serial number, and an electronic signature associated with the electronic signature date and time.

In the scan management code data area, there is recorded data relating to a serial number that is an identifier generated when a document is digitized by a scanner and uniquely identifies the digitized document.
In the electronic certificate serial number data area, data relating to a number uniquely identifying the electronic certificate, which is an identifier assigned by the certificate authority that issues the electronic certificate, is recorded.
In the electronic signature date / time data area, data relating to the date / time when the electronic signature was performed is recorded.
In the electronic signature data area, an electronic signature created using an electronic certificate is recorded.

  In the revocation information file storage unit, a file related to revocation information issued by the certificate authority that issued the electronic certificate is recorded. This revocation information file is recorded when revocation information is acquired. The revocation information file includes an electronic certificate serial number and revocation information associated with the acquisition date.

In the electronic certificate serial number data area, data relating to a number uniquely identifying the electronic certificate, which is an identifier assigned by the certificate authority that issues the electronic certificate, is recorded.
In the acquisition date / time data area, data related to the date / time when the revocation information is acquired from the certificate authority is recorded.
In the revocation information area, revocation information acquired from the certificate authority is recorded.

  A file related to the electronic certificate issued by the certificate authority existing in the certification path of the electronic certificate is recorded in the root authority certificate file storage unit. This root station certificate file is recorded when a root station certificate is acquired. This root station certificate file includes an electronic certificate serial number and a root station certificate associated with the acquisition date and time.

In the electronic certificate serial number data area, data relating to a number uniquely identifying the electronic certificate, which is an identifier assigned by the certificate authority that issues the electronic certificate, is recorded.
Data related to the date and time when the root certificate is acquired from the certificate authority is recorded in the acquisition date and time data area.
The root station certificate acquired from the certificate authority is recorded in the root station certificate area.

A file related to revocation information issued by the certificate authority that issued the electronic certificate is recorded in the root station revocation information file storage unit. This root station revocation information file is recorded when revocation information is acquired. This root station revocation information file includes a digital certificate serial number and root station revocation information associated with the acquisition date and time.

In the electronic certificate serial number data area, data relating to a number uniquely identifying the electronic certificate, which is an identifier assigned by the certificate authority that issues the electronic certificate, is recorded.
In the acquisition date / time data area, data related to the date / time when the revocation information of the root station is acquired from the certificate authority is recorded.
In the root station revocation information area, root station revocation information acquired from the certificate authority is recorded.

  In the time stamp file storage unit, a file related to a time stamp generated using a scanner document, an electronic certificate, an electronic signature, revocation information, a root station certificate, and root station revocation information is recorded. This time stamp file is recorded when the time stamp is acquired. This time stamp file includes a scan management code and a time stamp associated with the acquisition date and time.

In the scan management code data area, there is recorded data relating to a serial number that is an identifier generated when a document is digitized by a scanner and uniquely identifies the digitized document.
Data related to the date and time when the time stamp is acquired from the certificate authority is recorded in the acquisition date and time data area.
In the time stamp data area, data related to the time stamp token acquired from the common infrastructure system 22 is recorded.

  Each document management system (30 to 30n) includes a common infrastructure IF unit 21. The common infrastructure IF unit 21 functions as an interface unit for connecting the common infrastructure system 22 and each storage / retrieval system (31-31n) as described later.

  The common infrastructure IF unit 21 executes processing of an electronic signature generation stage, a validity confirmation stage, and a time stamp management stage by starting a document management program. The common infrastructure IF unit 21 functions as an electronic signature creation unit 211, an electronic signature verification unit 212, a time stamp management unit 213, a document meta information recording instruction unit 214, and a log recording instruction unit 215, as shown in FIG. .

The electronic signature creation unit 211 realizes a function of giving an electronic signature to the digitized document.
The electronic signature verification means 212 functions as validity checking means, and realizes a function of verifying the electronic signature attached to the digitized document.

The time stamp management means 213 implements a function for requesting the issuance of a time stamp for a stored electronic document.
The document meta information recording instruction unit 214 realizes a function for recording meta information for a stored electronic document.
The log recording instruction unit 215 realizes a function for managing a log of each process.

  The common infrastructure system 22 is a server computer that acquires the revocation information from the certificate authority CA and the time stamp from the time stamp authority TSA via the Internet. These processes are executed in response to a request from the common infrastructure IF unit 21.

  The common infrastructure system 22 includes a certificate validity check unit 221, a time stamp acquisition unit 222, a time stamp verification unit 223, a document meta information management unit 224, a log management unit 225, and a verification result management unit 226.

The certificate validity check unit 221 implements a function for confirming the validity of the electronic certificate.
The time stamp acquisition means 222 implements a function for acquiring a time stamp from the time stamp authority TSA.

The time stamp verification means 223 implements a function for verifying the registered time stamp.
The document meta information management unit 224 implements a function for managing document meta information in the document meta information storage unit. In this document meta information storage unit, system identification code, storage destination path information, status indicating registration status (main registration, provisional registration), and data relating to document registration date are recorded.

  The log management unit 225 realizes a function for managing a history (log) of executing each process in the log information storage unit. In this log information storage unit, data related to the system identification code, process type, process start date and time, and process end date and time are recorded.

  The verification result management unit 226 implements a function for managing the verification result for the signature or time stamp in the verification result information storage unit. The verification result information storage unit records data relating to the system identification code, the verification type, and the verification result.

  A processing procedure for storing an electronic document in the loan application management system 30a using the system configured as described above will be described with reference to FIGS. Here, the scanner process (FIG. 4), digital signature creation process (FIG. 5), certificate validity check process (FIG. 6), time stamp executed by the document management method will be described with reference to FIG. Registration processing (FIG. 7), digital signature verification processing (FIG. 8), and time stamp verification processing (FIG. 9) will be described.

(Scanner processing)
First, as shown in FIG. 3, scanner processing is executed in the electronic terminal 10 (step S1-1). Specifically, the electronic terminal 10 generates image data of a document to be stored (here, a loan application form) using a scanner device. This scanner process will be described with reference to FIG.

  In this process, first, the electronic terminal 10 executes an image data generation process (step S2-1). Specifically, the electronic terminal 10 instructs the scanner device to execute scanning processing on the front and back surfaces of the loan application form to be digitized. Then, the image data of the front and back surfaces of the loan application form is acquired from the scanner device.

  Next, the electronic terminal 10 executes a scan target document type acquisition process (step S2-2). Specifically, the electronic terminal 10 performs OCR processing using image data on the surface of the form. Here, the form type description area is specified in the image data by pattern recognition of the document subjected to the scanner process, and the text data for the form type is acquired by the OCR process. Furthermore, in the present embodiment, the electronic terminal 10 acquires text data about the store code and the loan number by OCR processing. On the other hand, the name and application date are acquired via the input unit of the electronic terminal 10. Thereby, the electronic terminal 10 generates document attribute information.

Next, the electronic terminal 10 executes a reference image acquisition process (step S2-3). Specifically, the electronic terminal 10 acquires the reference image from the memory based on the set document type. In the present embodiment, image data (reference back image data) about the back side of an unused loan application form is acquired as the reference image.

  And the electronic terminal 10 performs an image comparison process (step S2-4). Specifically, the electronic terminal 10 compares the reference back image data acquired from the memory with the image data of the back surface of the loan application form acquired from the scanner device. Here, the electronic terminal 10 specifies a difference between the reference back surface image data and the image data acquired from the scanner device. Then, the data amount of the difference is calculated, and this data amount is compared with the reference value stored in the memory.

  If it is determined that the difference data amount is equal to or smaller than the reference value and there is no writing (in the case of “YES” in step S2-5), the electronic terminal 10 executes the back surface image data deletion process (step S2-5). S2-6). Specifically, the electronic terminal 10 deletes the back image from the image data acquired from the scanner device. On the other hand, when it is determined that the difference data amount is larger than the reference value and there is writing (in the case of “NO” in step S2-5), the electronic terminal 10 maintains the back surface image data as it is.

  Next, the electronic terminal 10 executes a scanner document file registration process together with the scan time (step S2-7). Specifically, the electronic terminal 10 transmits image data and document attribute information to the loan application management system 30a. In this case, the loan application management system 30a assigns a scan management code to the image data, and stores it in the document management database in association with the digitization date and time and the document attribute. In this case, an unassigned flag indicating that the time stamp has not been assigned is recorded in the management status data area.

(Digital signature creation process)
Next, as shown in FIG. 3, the loan application form management system 30a that has received the image data executes an electronic signature creation process (step S1-2). This electronic signature creation process is executed within a predetermined period after the scanner document file is registered. In the present embodiment, it is assumed that the common base IF unit 21 constantly monitors registration of a scanner document file and executes it promptly when this registration is detected. This process will be described with reference to FIG.

  The common infrastructure IF unit 21 of the loan application management system 30a executes start log generation processing (step S3-1). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, the system identification code of the document management system that has transmitted the log recording instruction is specified, and the start log of the electronic signature creation process is recorded in association with the system identification code.

  The common infrastructure IF unit 21 of the loan application management system 30a executes a process for acquiring a scanner document file to be signed (step S3-2). Specifically, the electronic signature creation unit 211 of the common infrastructure IF unit 21 acquires a scanner document file to which no electronic signature is assigned from the document management system.

  Then, the common infrastructure IF unit 21 of the loan application management system 30a executes a certificate validity check calling process (step S3-3). Specifically, the electronic signature creation unit 211 of the common infrastructure IF unit 21 transmits an instruction to confirm the validity of the electronic certificate to the common infrastructure system 22. In this case, the certificate validity check unit 221 of the common infrastructure system 22 executes a certificate check process for confirming the validity of the certificate using the certificate validity information. Then, the certificate validity checking means 221 returns the check result to the common infrastructure IF unit 21 of the loan application management system 30a.

  If the validity of the electronic certificate can be confirmed at this point, the common infrastructure IF unit 21 of the loan application management system 30a executes a hash value generation process (step S3-4). Specifically, the digital signature creation unit 211 of the common infrastructure IF unit 21 calculates a hash value for the image data of the scanner document file to be signed using a hash function.

  Next, the common infrastructure IF unit 21 of the loan application management system 30a executes a digital signature generation process (step S3-5). Specifically, the electronic signature creation unit 211 of the common infrastructure IF unit 21 generates an electronic signature from the hash value using the public key of the electronic certificate whose validity has been confirmed.

  The common infrastructure IF unit 21 of the loan application management system 30a executes a temporary registration process of document meta information (step S3-6). Specifically, the document meta information recording instruction unit 214 of the common infrastructure IF unit 21 transmits a temporary registration instruction for document meta information to the common infrastructure system 22. In this case, the document meta information management means 224 of the common infrastructure system 22 executes a meta information temporary registration process.

  Next, the common infrastructure IF unit 21 of the loan application management system 30a executes electronic signature registration processing (step S3-7). Specifically, the common infrastructure IF unit 21 records an electronic signature file in association with the scan management code, the electronic certificate serial number, and the electronic signature date and time in the document management database of the loan application storage / retrieval system 31a.

  Then, the common infrastructure IF unit 21 of the loan application management system 30a executes document meta information main registration processing (step S3-8). Specifically, the document meta information recording instruction unit 214 of the common infrastructure IF unit 21 transmits a document meta information main registration instruction to the common infrastructure system 22. In this case, the document meta information management unit 224 of the common infrastructure system 22 performs main registration of meta information in the meta information storage unit.

  Then, the common infrastructure IF unit 21 of the loan application management system 30a executes an end log generation process (step S3-9). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, an end log of the electronic signature creation process is recorded.

(Certificate validity check process)
Next, as shown in FIG. 3, the loan application management system 30a executes registration confirmation processing of the revocation information (revocation information for the electronic certificate, revocation information of the root station) (step S1-3). This process is executed according to the scheduled time when the revocation information of the day is issued from the certificate authority CA. First, the common infrastructure system 22 repeatedly accesses the certificate authority CA from a predetermined time before the scheduled time when the revocation information on the day when the electronic signature is generated is issued.

When the common infrastructure system 22 acquires the revocation information from the certificate authority CA, the common infrastructure system 22 discloses the revocation information to the document management system (30 to 30n).
On the other hand, the common infrastructure IF unit 21 of the document management system (30 to 30n) also accesses the common infrastructure system 22 from a predetermined time before the scheduled time when the revocation information is issued. Check whether the revocation information of the certificate has been acquired. The common infrastructure IF unit 21 repeats the registration confirmation process until the revocation information is acquired and registered in the common infrastructure system 22 (“NO” in step S1-4).

When the registration of the revocation information can be confirmed (“YES” in step S1-4), the loan application management system 30a executes a certificate validity confirmation process (step S1-5).
). This certificate validity checking process will be described with reference to FIG.

  The common infrastructure IF unit 21 of the loan application management system 30a executes a start log generation process (step S4-1). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, the system identification code of the document management system that has transmitted the log recording instruction is specified, and the start log of the certificate validity check process is recorded in association with the system identification code.

  Next, the common infrastructure IF unit 21 of the loan application management system 30a executes certificate acquisition processing (step S4-2). Specifically, the electronic signature verification unit 212 of the common infrastructure IF unit 21 acquires revocation information from the common infrastructure system 22. Then, the common infrastructure IF unit 21 of the loan application management system 30a repeats the following processing for each scan data.

  Here, the common infrastructure IF unit 21 of the loan application management system 30a executes a revocation information verification process (step S4-3). Specifically, the electronic signature verification unit 212 of the common infrastructure IF unit 21 uses the electronic certificate of the electronic certificate (electronic certificate and root station) used to generate the electronic signature in the scanner document file from which the time stamp is acquired. Check whether the serial number is included in the revocation information.

  If the digital certificate serial number is not included in the revocation information and the validity of the electronic signature on the day of generating the electronic signature is confirmed (in the case of “YES” in step S4-4), the loan application management The common infrastructure IF unit 21 of the system 30a executes an effective registration process (step S4-5). Specifically, the digital signature verification unit 212 of the common infrastructure IF unit 21 records a valid flag as the management status data of the scanner document file.

  On the other hand, if the digital certificate serial number is not included in the revocation information and the certificate is not valid (“NO” in step S4-4), the common infrastructure IF unit 21 of the loan application management system 30a. Executes rescan instruction processing (step S4-6). Specifically, since the electronic certificate is not valid, the electronic signature verification unit 212 of the common infrastructure IF unit 21 records the revocation flag as the management status data of the scanner document file. Then, a rescan instruction for rescanning the document is transmitted to the electronic terminal 10.

  Then, the common infrastructure IF unit 21 of the loan application form management system 30a executes an end log generation process (step S4-7). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, the system identification code of the document management system that has transmitted the log recording instruction is specified, and the end log of the certificate validity checking process is recorded in association with the system identification code.

(Time stamp registration process)
Next, as shown in FIG. 3, the loan application management system 30a executes time stamp registration processing (step S1-6). This time stamp registration process will be described with reference to FIG. Here, it is assumed that a time stamp is obtained for each document within 24 hours after the digitization of the document.

In this process, the common infrastructure IF unit 21 of the loan application management system 30a executes a start log generation process (step S5-1). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, the system identification code of the document management system that transmitted the log recording instruction is specified, and the start log of the time stamp registration process is recorded in association with the system identification code.

  The common infrastructure IF unit 21 of the loan application management system 30a executes a process for obtaining a file with an electronic signature (step S5-2). Specifically, the time stamp management unit 213 of the common infrastructure IF unit 21 performs image data, electronic signature, revocation information for the electronic certificate used for the electronic signature, and route for the scanner document file in which the valid flag is recorded. Get the revocation information of the station certificate and root station.

  Then, the common infrastructure IF unit 21 of the loan application management system 30a executes a hash value generation process (step S5-3). More specifically, the time stamp management means 213 of the common infrastructure IF unit 21 combines the image data, the electronic signature, the revocation information for the electronic certificate used for the electronic signature, the root station certificate, and the revocation information of the root station. In contrast, a hash value is calculated using a hash function.

  Next, the common infrastructure IF unit 21 of the loan application management system 30a executes a time stamp issue instruction process (step S5-4). Specifically, the time stamp management unit 213 of the common infrastructure IF unit 21 transmits a time stamp issue request including the calculated hash value to the common infrastructure system 22.

  In this case, the common infrastructure system 22 executes time stamp issue request processing (step S5-4a). Specifically, the time stamp acquisition means 222 of the common infrastructure system 22 transmits a time stamp issue request to the time stamp authority TSA. Then, the time stamp acquisition means 222 acquires a time stamp token from the time stamp authority TSA.

  Then, the time stamp acquisition unit 222 of the common infrastructure system 22 executes document meta information registration processing (step S5-4b). Then, the time stamp acquisition means 222 returns a time stamp token to the loan application form management system 30a.

  The common infrastructure IF unit 21 of the loan application management system 30a executes registration processing in the document management database (step S5-5). Specifically, the time stamp acquisition unit 222 of the common infrastructure IF unit 21 registers a time stamp file including the acquired time stamp token in the document management database.

  Then, the common infrastructure IF unit 21 of the loan application form management system 30a executes an end log generation process (step S5-6). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, an end log of the time stamp registration process is recorded.

(Digital signature verification process)
Next, the electronic signature verification process will be described with reference to FIG. This process is executed in response to a request from the verification terminal 15. First, using the verification terminal 15, a scan document file to be verified is specified. In this case, the verification terminal 15 transmits the scan management code of the scanned document file to the loan application form management system 30a.

The common infrastructure IF unit 21 of the loan application management system 30a executes a start log generation process (step S6-1). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, the system identification code of the document management system that has transmitted the log recording instruction is specified, and the start log of the electronic signature verification process is recorded in association with the system identification code.

  Next, the common infrastructure IF unit 21 of the loan application management system 30a executes a process for obtaining a signed file (step S6-2). Specifically, the electronic signature verification unit 212 of the common infrastructure IF unit 21 acquires a scanned document file to be verified from the management document database.

  Then, the common infrastructure IF unit 21 of the loan application management system 30a executes a hash value generation process (step S6-3). Specifically, the digital signature verification unit 212 of the common infrastructure IF unit 21 calculates a hash value by using a hash function for the image data of the scanned document file acquired from the management document database.

  Next, the common infrastructure IF unit 21 of the loan application management system 30a executes a digital signature verification process (step S6-4). Specifically, the electronic signature verification unit 212 of the common infrastructure IF unit 21 acquires an electronic signature from the document management database using the scan management code data of the scanned document file, decodes the signature with the public key, and generates a hash value To get. Then, verification is performed by comparing the hash value calculated from the image data with the decoded hash value.

  Next, the common infrastructure IF unit 21 of the loan application management system 30a executes a registration process in the verification result database (step S6-5). Specifically, the electronic signature verification means 212 of the common infrastructure IF unit 21 transmits a verification result recording instruction to the common infrastructure system 22. In this case, the verification result management unit 226 of the common infrastructure system 22 registers the verification result.

  Next, the common infrastructure IF unit 21 of the loan application management system 30a executes an end log generation process (step S6-6). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, an end log of the electronic signature verification process is recorded.

(Time stamp verification process)
Next, the time stamp verification process will be described with reference to FIG. This process is executed in response to a request from the verification terminal 15. First, using the verification terminal 15, a scan document file to be verified is specified. In this case, the verification terminal 15 transmits the scan management code of the scanned document file to the loan application form management system 30a.

  Then, the common infrastructure IF unit 21 of the loan application management system 30a executes a start log generation process (step S7-1). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, the system identification code of the document management system that has transmitted the log recording instruction is specified, and the start log of the time stamp verification process is recorded in association with the system identification code.

  Then, the common infrastructure IF unit 21 of the loan application management system 30a executes time stamp token acquisition processing (step S7-2). Specifically, the time stamp management unit 213 of the common infrastructure IF unit 21 acquires the image data, electronic signature, time stamp token, revocation information, and root station revocation information of the scan document file to be verified from the document management database. .

  The common infrastructure IF unit 21 of the loan application management system 30a executes a hash value generation process (step S7-3). Specifically, the time stamp management unit 213 of the common infrastructure IF unit 21 collects the image data, the electronic signature, the time stamp token, the revocation information, and the root station revocation information into one file, and uses a hash function to generate a hash value. Is calculated.

  The common infrastructure IF unit 21 of the loan application management system 30a executes a time stamp verification call process (step S7-4). Specifically, the time stamp management unit 213 of the common infrastructure IF unit 21 transmits a time stamp verification instruction to the common infrastructure system 22. In this case, the time stamp verification means 223 of the common infrastructure system 22 performs format verification (step S7-4a), time stamp signature verification (step S7-4b), TSA signature verification (step S7-4c), document verification (step Steps S7-4d) and verification result registration (step S7-4e) are executed.

  Then, the common infrastructure IF unit 21 of the loan application management system 30a executes a registration process in the verification result DB (step S7-5). Specifically, the time stamp management unit 213 of the common infrastructure IF unit 21 registers the verification result in the verification result database.

  Next, the common infrastructure IF unit 21 of the loan application management system 30a executes an end log generation process (step S7-6). Specifically, the log recording instruction unit 215 of the common infrastructure IF unit 21 transmits a log recording instruction to the common infrastructure system 22. In this case, the log management unit 225 of the common infrastructure system 22 executes log generation processing. Here, an end log of the time stamp verification process is recorded.

According to this embodiment, the following effects can be obtained.
-In this embodiment, the document management system (30-30n) for managing various documents, such as a contract, is provided with the storage search system (31-31n) for managing the stored electronic document. Each document management system (30 to 30n) includes a common infrastructure IF unit 21. The common infrastructure IF unit 21 is connected to the common infrastructure system 22. Here, when acquiring the time stamp, it is necessary to access the time stamp authority TSA, but a common process of acquiring the time stamp can be executed in the common infrastructure system 22. The common base IF unit 21 can acquire a time stamp while utilizing a plurality of existing document management systems. In the future, when e-documentation is performed for each type of business, an interface means for connecting to a document management system (application server) or a common base server with only a unique processing part will be developed, and only e will be connected to the common base server. -Documentation can be realized. Therefore, by using this system, e-documentation can be efficiently promoted even in a plurality of systems, and development costs and operation costs can be suppressed.

  In particular, the application server and the common infrastructure server are separated, and personal information of various documents is held in the application server. Then, the application server transmits the encrypted data to the common base server. For this reason, all the data held in the common infrastructure server connected to the outside through the Internet line is encrypted data that cannot be restored. By providing security holding means such as a firewall between the outside and the common base server, and between the common base server and the application server that manages individual documents, it is possible to realize a higher level of information security.

In the present embodiment, the loan application form management system 30a executes an electronic signature creation process (step S1-2). Then, the loan application management system 30a executes revocation information registration confirmation processing (step S1-3). When the electronic certificate serial number is not included in the revocation information and the validity of the electronic signature on the day when the electronic signature is generated is confirmed, the common infrastructure IF unit 21 of the loan application management system 30a An effective registration process is executed (step S4-6). Then, the common infrastructure IF unit 21 of the loan application management system 30a executes a process for acquiring a file with an electronic signature (step S5-2). Specifically, the time stamp management unit 213 of the common infrastructure IF unit 21 performs image data, electronic signature, revocation information for the electronic certificate used for the electronic signature, and route for the scanner document file in which the valid flag is recorded. Get the revocation information of the station certificate and root station. As a result, a time stamp can be given to a scanner document file digitally signed using a valid electronic certificate or root station.

  Then, the common infrastructure IF unit 21 of the loan application management system 30a executes a hash value generation process (step S5-3). More specifically, the time stamp management means 213 of the common infrastructure IF unit 21 combines the image data, the electronic signature, the revocation information for the electronic certificate used for the electronic signature, the root station certificate, and the revocation information of the root station. In contrast, a hash value is calculated using a hash function. The common infrastructure IF unit 21 of the loan application management system 30a executes time stamp issuance instruction processing (step S5-4). Specifically, the time stamp management unit 213 of the common infrastructure IF unit 21 transmits a time stamp issue request including the calculated hash value to the common infrastructure system 22. Thereby, it is possible to record including the proof that the electronic certificate is valid.

  In the present embodiment, the common infrastructure IF unit 21 of the loan application management system 30a executes a hash value generation process (step S5-3). That is, the hash value for the time stamp is generated in each document management system (30 to 30n). Thereby, the time stamp can be acquired without providing the common infrastructure system 22 to share specific contents.

  In the present embodiment, the electronic terminal 10 performs a reference image acquisition process (step S2-3) and an image comparison process (step S2-4). Here, the electronic terminal 10 compares the reference back side image data acquired from the memory with the back side image data of the loan application form acquired from the scanner device. Then, the electronic terminal 10 specifies a difference between the reference back surface image data and the image data acquired from the scanner device. The data amount of this difference is calculated and compared with a reference value stored in the memory. When it is determined that the difference data amount is equal to or less than the reference value and there is no writing, the electronic terminal 10 executes a back surface image data deletion process (step S2-6). Thereby, unnecessary image data can be reduced when there is no writing on the paper. On the other hand, when there is a writing on the paper, this writing can be used as a reference for inferring the contract and the situation at the time of application.

  In the present embodiment, the electronic terminal 10 executes a scan target document type acquisition process by OCR processing (step S2-2). Thereby, business management and management of digitized documents can be performed efficiently.

In addition, you may change each said embodiment as follows.
In the above embodiment, the electronic terminal 10 executes the reference image acquisition process (step S2-3) and the image comparison process (step S2-4). Here, the image comparison processing is performed on the back side of the loan application form to be digitized, but it is not limited to the back side. It is also possible to execute this image comparison process in an area other than the area where the application content is originally written.

In the above embodiment, the electronic signature verification process and the time stamp verification process specify a scan document file to be verified. In addition to this, it is possible to perform a verification process using a scanned document file extracted using a predetermined search condition as a verification target. Thereby, verification can be performed collectively.

  In the above embodiment, the common infrastructure IF unit 21 of the loan application management system 30a executes time stamp verification call processing (step S7-4). Specifically, the time stamp management unit 213 of the common infrastructure IF unit 21 transmits a time stamp verification instruction to the common infrastructure system 22. In this case, the time stamp verification means 223 of the common infrastructure system 22 performs format verification (step S7-4a), time stamp signature verification (step S7-4b), TSA signature verification (step S7-4c), document verification (step Steps S7-4d) and verification result registration (step S7-4e) are executed. This time stamp verification process may be executed by the document management system (30 to 30n), similarly to the electronic signature verification process. In this case, the time stamp verification means 223 is provided in each document management system (30 to 30n).

  In the above embodiment, the common infrastructure IF unit 21 of the loan application management system 30a executes time stamp issue instruction processing (step S5-4). In this case, the common infrastructure system 22 executes time stamp issue request processing (step S5-4a). Specifically, the time stamp acquisition means 222 of the common infrastructure system 22 transmits a time stamp issue request to the time stamp authority TSA. Here, the common infrastructure system 22 may determine the transmission order of the time stamp issuance request according to the generation time of the image data. For example, the time stamp acquisition unit 222 of the common infrastructure system 22 that has received a request for issuing a time stamp from the common infrastructure IF unit 21 accumulates the issuance request in the execution waiting memory, and the electronic date and time of the scanner document file is in the order of early date. Sort by. Then, a time stamp issuance request is transmitted to the time stamp authority TSA in this order. Thereby, the priority order can be determined in accordance with the time limit of time stamp acquisition.

  In the above embodiment, the electronic terminal 10 acquires text data about the form type, the store code, and the loan number by OCR processing. On the other hand, the name and application date are acquired via the input unit. Instead of this, the name and application date may be obtained by OCR processing, or all document attribute information may be obtained via the input unit of the electronic terminal 10.

The system schematic of embodiment of this invention. Explanatory drawing of the functional block of a common infrastructure IF part and a common infrastructure system. Explanatory drawing of the process sequence of this embodiment. Explanatory drawing of the process sequence of this embodiment. Explanatory drawing of the process sequence of this embodiment. Explanatory drawing of the process sequence of this embodiment. Explanatory drawing of the process sequence of this embodiment. Explanatory drawing of the process sequence of this embodiment. Explanatory drawing of the process sequence of this embodiment.

Explanation of symbols

DESCRIPTION OF SYMBOLS 10 ... Electronic terminal, 15 ... Verification terminal, 30-30n ... Document management system, 31-31n ... Storage / retrieval system, 21 ... Common infrastructure IF section, 211 ... Digital signature creation means, 212 ... Digital signature verification means, 213 ... Time stamp management means, 214 ... Document meta information recording instruction means, 21 ... Log recording instruction means, 22 ... Common infrastructure system, 221 ... Certificate validity check means, 222 ... Time stamp acquisition means, 223 ... Time stamp verification means, 224 ... document meta information management means, 225 ... log management means, 226 ... verification result management means, CA ... certificate authority, TSA ... time stamp authority.

Claims (5)

A common infrastructure server that is connected to a plurality of application servers and obtains a time stamp by connecting to a time stamp station,
Document management means for recording document data acquired from a client terminal;
A document management system comprising an application server provided with an interface unit for giving an electronic signature to the document data and connecting to a common infrastructure server,
The interface means includes
When obtaining document data from the client terminal, an electronic signature creating means for giving an electronic signature;
Validity checking means for judging the validity at the time of granting an electronic signature for the electronic certificate used for granting the electronic signature using the revocation information issued by the certificate authority;
When the validity of the electronic certificate is confirmed, a hash value is calculated based on the document data, the electronic signature, and the revocation information, and a time stamp issuance request for the hash value is transmitted to the common infrastructure server. And a time stamp management means.   When the validity at the time of granting the electronic signature of the electronic certificate used for granting the electronic signature cannot be confirmed using the revocation information issued by the certificate authority, the interface means regenerates the document data again. The document management system according to claim 1, wherein the document management system requests.   The document management system according to claim 1, wherein the common infrastructure server stores revocation information issued by the certificate authority and provides the revocation information to the interface unit.   The common base server determines priority based on time when document data is acquired from a client terminal, and acquires a time stamp according to the priority. Document management system described. A common infrastructure server that is connected to a plurality of application servers and obtains a time stamp by connecting to a time stamp station,
Document management means for recording document data acquired from a client terminal;
A method for managing a digitized document using a document management system configured with an application server provided with an interface unit for giving an electronic signature to the document data and connecting to a common infrastructure server,
The interface means includes
When obtaining document data from the client terminal, an electronic signature generation stage for giving an electronic signature;
Using the revocation information issued by the certificate authority, with regard to the electronic certificate used to give the electronic signature, the validity check stage for judging the validity at the time of giving the electronic signature,
When the validity of the electronic certificate is confirmed, a hash value is calculated based on the document data, the electronic signature, and the revocation information, and a time stamp issuance request for the hash value is transmitted to the common infrastructure server. And a time stamp management step of performing a document management method.

Images