TWI778361B - Distributed digital signature processing method and system - Google Patents

Distributed digital signature processing method and system Download PDF

Info

Publication number
TWI778361B
TWI778361B TW109116383A TW109116383A TWI778361B TW I778361 B TWI778361 B TW I778361B TW 109116383 A TW109116383 A TW 109116383A TW 109116383 A TW109116383 A TW 109116383A TW I778361 B TWI778361 B TW I778361B
Authority
TW
Taiwan
Prior art keywords
page
digital signature
pages
signature
digital
Prior art date
Application number
TW109116383A
Other languages
Chinese (zh)
Other versions
TW202145752A (en
Inventor
温峰泰
Original Assignee
天逸財金科技服務股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 天逸財金科技服務股份有限公司 filed Critical 天逸財金科技服務股份有限公司
Priority to TW109116383A priority Critical patent/TWI778361B/en
Priority to CN202010433670.8A priority patent/CN113688360B/en
Publication of TW202145752A publication Critical patent/TW202145752A/en
Application granted granted Critical
Publication of TWI778361B publication Critical patent/TWI778361B/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/16Program or content traceability, e.g. by watermarking
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures

Abstract

The present invention discloses a distributed digital signature processing method and system which allows users to execute signatures on digital documents with multiple pages through an electronic device, and for each digital document that has been signed page can be ensured that the signed digital document has not been replaced or changed.

Description

分散式數位簽章處理方法及其系統Distributed digital signature processing method and system

本發明是關於數位簽章的技術領域,特別是提供一種以低演算負荷進行數位簽章的分散式數位簽章處理方法及其系統。 The present invention relates to the technical field of digital signatures, and in particular, provides a distributed digital signature processing method and system for performing digital signatures with low calculation load.

傳統上,為了確定文件在法律上的效果,需要在文件上簽名或蓋章。 Traditionally, in order to determine the legal effect of a document, a signature or stamp is required on the document.

在紙本文件上,是透過簽名及/或蓋章確認文件的法律效果,通常,是在出現名稱或是最末頁進行簽名及/或蓋章,然而,又為了確保多張文件之間的連續性且不被替換性,遂在每一文件之間加蓋騎縫章,以確保多張文件的原始簽署狀態。 On paper documents, the legal effect of the document is confirmed by signature and/or seal. Usually, the signature and/or seal is performed on the name or the last page. However, in order to ensure the consistency between multiple documents Continuity and non-replacement, a stamp is added between each document to ensure the original signed state of multiple documents.

在數位文件中,是對整份的數位文件進行數位簽章,藉由數位簽章的加密來確保多張文件的不可變動性;然而,數位文件的加密或其他演算,會使得運算的負荷加重,需要有力的處理器來進行處理,否則將會造成演算時間茸成或是計算錯誤,又數位文件需要經由一次性下載進行數位簽章,若數位文件伴隨圖文參雜的情況或是影像解析度高等因素,其將導致於檔案十分龐大。對於目 前被普遍使用的電子裝置,例如手機或平板電腦,其處理器的能力不若個人電腦,且電子裝置之儲存空間有限的情況下,傳統的數位簽章方式是具有缺失的。 In a digital file, the entire digital file is digitally signed, and the encryption of the digital signature ensures the immutability of multiple files; however, the encryption of the digital file or other calculations will increase the computational load. , requires a powerful processor to process, otherwise it will cause calculation time or calculation errors, and digital files need to be digitally signed through a one-time download. Due to the high degree of factors, it will result in a very large file. For the purpose The commonly used electronic devices, such as mobile phones or tablet computers, are not as capable of processors as personal computers, and when the storage space of the electronic devices is limited, the traditional digital signature method is lacking.

有鑑於此,本發明係提供一種分散式數位簽章處理方法及其系統,以提供一種媒合有需求的買家與賣家。 In view of this, the present invention provides a distributed digital signature processing method and system, so as to provide a matching buyer and seller with needs.

本發明之第一目的係提供一種分散式數位簽章處理方法,係供使用者在具有複數頁面的數位文件執行簽章。 The first objective of the present invention is to provide a distributed digital signature processing method for users to execute signatures on digital documents with multiple pages.

本發明之第二目的係根據上述分散式數位簽章處理方法,係提供簽章頁面驗證步驟以供進行簽章的驗證。 The second object of the present invention is to provide a signature page verification step for verification of signatures according to the above-mentioned distributed digital signature processing method.

本發明之第三目的係根據上述分散式數位簽章處理方法,係利用雜湊演算法對頁面進行驗算,以在頁面產生數位簽章碼嵌入頁面。 The third object of the present invention is to use the hash algorithm to verify the page according to the above-mentioned distributed digital signature processing method, so as to generate a digital signature code on the page to embed the page.

本發明之第四目的係根據上述分散式數位簽章處理系統,係紀錄每一頁面中的數位簽章碼,以確認每一頁面的正確性與可靠性。 The fourth object of the present invention is to record the digital signature code in each page according to the above-mentioned distributed digital signature processing system, so as to confirm the correctness and reliability of each page.

本發明之第五目的係提供一種分散式數位簽章處理系統,係供使用者在具有複數頁面的數位文件執行簽章。 The fifth object of the present invention is to provide a distributed digital signature processing system for users to execute signatures on digital documents with multiple pages.

本發明之第六目的係提供一種分散式數位簽章處理系統,係供驗證相關於數位文件的簽章頁面與驗證頁面。 The sixth object of the present invention is to provide a distributed digital signature processing system for verifying signature pages and verification pages related to digital documents.

為達上述目的或其他目的,本發明係提供一種分散式數位簽章處理方法,係供使用者在具有複數頁面的一數位文件執行簽章。分散式數位簽章處理方法包含步驟(a)接收該數位文件的初始文件訊息,以確定該數位文件的該等頁面的數量;步驟(b)下載該數位文件之該等頁面之一者為待簽章頁面;步驟(c) 對該待簽章頁面執行第一雜湊演算法,以產生相應於該待簽章頁面的第一數位簽章碼並將該第一數位簽章碼嵌入該待簽章頁面進而形成簽章頁面;步驟(d)將該第一數位簽章碼記錄在待驗證頁面;步驟(e)根據該數量重複執行步驟(b),以在每一該等頁面產生相應的該簽章頁面並將該等第一數位簽章碼記錄在該待驗證頁面,直到全部的該等頁面都形成相應的該簽章頁面;步驟(f)對該待驗證頁面執行第二雜湊演算法,以產生相應於該待驗證頁面的第二數位簽章碼並將該第二數位簽章碼嵌入該待驗證頁面進而形成驗證頁面;以及步驟(g)輸出該驗證頁面。 In order to achieve the above object or other objects, the present invention provides a distributed digital signature processing method for users to execute signatures on a digital document with multiple pages. The distributed digital signature processing method includes step (a) receiving the initial document message of the digital document to determine the number of the pages of the digital document; step (b) downloading one of the pages of the digital document to be Signature page; step (c) Execute a first hash algorithm on the page to be signed to generate a first digital signature code corresponding to the page to be signed and embed the first digital signature code into the page to be signed to form a signature page; Step (d) recording the first digital signature code on the page to be verified; step (e) repeating step (b) according to the number to generate the corresponding signature page on each of the pages and The first digital signature code is recorded on the page to be verified, until all the pages form the corresponding signature page; step (f) executes a second hash algorithm on the page to be verified to generate a page corresponding to the page to be verified. Verifying the second digital signature code of the page and embedding the second digital signature code into the to-be-verified page to form a verification page; and step (g) outputting the verification page.

為達上述目的或其他目的,本發明係提供一種分散式數位簽章處理系統供使用者在具有複數頁面的數位文件執行簽章。分散式數位簽章處理系統包含一電子裝置、一第二輸入單元、一第二處理單元與一第二輸出單元。又,電子裝置更包含一第一輸入單元、一第一處理單元與一第一輸出單元。第一輸入單元接收來自於使用者的一簽名或是一印章,以及第一輸入單元依序地接收數位文件的每一該等頁面。第一處理單元連接第一輸入單元。第一處理單元將簽名或是印章嵌入在每一該等頁面。第一處理單元執行一第一雜湊演算法演算每一該等頁面以分別地產生具有一第一數位簽章碼的一簽章頁面。第一處理單元建立一驗證頁面以紀錄該等第一數位簽章碼並執行一第二雜湊演算法演算以在驗證頁面產生相應的一第二數位簽章碼。第一輸出單元連接第一處理單元以輸出簽章頁面與驗證頁面。第二輸入單元接收具有第一數位簽章碼的簽章頁面與具有第二數位簽章碼的驗證頁面。第二處理單元連接第二輸入單元。第二處理單元執行第一雜湊演算法演算每一該等頁面以分別地產生具有一第三數位簽章碼。第二處理單元建立一查驗頁面以紀錄該等第三數位簽章碼並執行第二雜湊演算 法演算以在查驗頁面產生相應的一第四數位簽章碼。第二輸出單元連接第二處理單元,以輸出一簽章成功通知與一簽章失敗通知。其中,第二處理單元比對第一數位簽章與第三數位簽章碼和比對第二數位簽章碼與第四數位簽章碼以產生簽章成功通知或簽章失敗通知。 To achieve the above object or other objects, the present invention provides a distributed digital signature processing system for users to execute signatures on digital documents with multiple pages. The distributed digital signature processing system includes an electronic device, a second input unit, a second processing unit and a second output unit. Furthermore, the electronic device further includes a first input unit, a first processing unit and a first output unit. The first input unit receives a signature or a seal from the user, and the first input unit sequentially receives each of the pages of the digital document. The first processing unit is connected to the first input unit. The first processing unit embeds a signature or stamp on each of these pages. The first processing unit executes a first hash algorithm to calculate each of the pages to generate a signature page with a first digital signature code, respectively. The first processing unit creates a verification page to record the first digital signature codes and executes a second hash algorithm to generate a corresponding second digital signature code on the verification page. The first output unit is connected to the first processing unit to output the signature page and the verification page. The second input unit receives the signature page with the first digital signature code and the verification page with the second digital signature code. The second processing unit is connected to the second input unit. The second processing unit executes the first hash algorithm to calculate each of the pages to separately generate a signature code having a third digit. The second processing unit creates a check page to record the third digital signature codes and executes the second hash calculation Algorithm to generate a corresponding fourth-digit signature code on the check page. The second output unit is connected to the second processing unit to output a signature success notification and a signature failure notification. The second processing unit compares the first digital signature with the third digital signature code and the second digital signature code and the fourth digital signature code to generate a signature success notification or a signature failure notification.

相較於習知技術,本發明提供一種分散式數位簽章處理方法及其系統,藉由本發明的發明概念,可具有以下的優勢: Compared with the prior art, the present invention provides a distributed digital signature processing method and system thereof. With the inventive concept of the present invention, it can have the following advantages:

(a)可以適用於低演算能力的工作環境,例如行動通訊裝置等。 (a) It can be applied to working environments with low computing power, such as mobile communication devices.

(b)儲存空間需求低,可以針對需要簽章的頁面進行下載。 (b) The storage space requirement is low, and the pages that need to be signed can be downloaded.

(c)除頁面可進行數位簽章之外,另外可以針對多頁的連續頁進行騎縫式的數位簽章。 (c) In addition to digital signatures for pages, stitched digital signatures can also be performed for consecutive pages of multiple pages.

(d)驗證每一頁面與多個頁面之間的正確性、不可替換性與不可變更性。 (d) Verify the correctness, irreplaceability and immutability of each page and multiple pages.

S11-S17:方法步驟 S11-S17: Method steps

S21-S23:方法步驟 S21-S23: Method steps

S21:方法步驟 S21: Method steps

2:數位文件 2: Digital files

22:頁面 22: Pages

10:分散式數位簽章處理系統 10: Distributed digital signature processing system

11:電子裝置 11: Electronics

12:第一輸入單元 12: The first input unit

12’:第二輸入單元 12': Second input unit

14:第一處理單元 14: The first processing unit

14’:第二處理單元 14': Second processing unit

16:第一處理單元 16: The first processing unit

16’:第二輸出單元 16': Second output unit

S1:簽名 S1: Signature

S2:印章 S2: Stamp

H1:第一雜湊演算法 H1: First Hash Algorithm

H2:第二雜湊演算法 H2: Second Hash Algorithm

FDSC:第一數位簽章碼 FDSC: First digit signature code

SDSC:第二數位簽章碼 SDSC: Second digital signature code

TDSC:第三數位簽章碼 TDSC: Third digit signature code

FODSC:第四數位簽章碼 FODSC: Fourth digit signature code

SP:簽章頁面 SP: Signature Page

RP:驗證頁面 RP: Verification page

CP:查驗頁面 CP: check page

SSN:簽章成功通知 SSN: Signing success notification

SFN:簽章失敗通知 SFN: Signing Failure Notification

圖1係本發明第一實施例之分散式數位簽章處理方法的流程示意圖。 FIG. 1 is a schematic flowchart of a distributed digital signature processing method according to a first embodiment of the present invention.

圖2係本發明第二實施例之分散式數位簽章處理方法的流程示意圖。 FIG. 2 is a schematic flowchart of a distributed digital signature processing method according to a second embodiment of the present invention.

圖3與圖4係本發明第三實施例之分散式數位簽章處理系統的部分方塊示意圖。 3 and 4 are partial block diagrams of a distributed digital signature processing system according to a third embodiment of the present invention.

為充分瞭解本發明之目的、特徵及功效,茲藉由下述具體之實施例,並配合所附之圖式,對本發明做一詳細說明,說明如後: 於本發明中,係使用「一」或「一個」來描述本文所述的單元、元件和組件。此舉只是為了方便說明,並且對本發明之範疇提供一般性的意義。因此,除非很明顯地另指他意,否則此種描述應理解為包括一個、至少一個,且單數也同時包括複數。 In order to fully understand the purpose, features and effects of the present invention, hereby, the present invention is described in detail by the following specific embodiments and in conjunction with the accompanying drawings, and the description is as follows: In the present disclosure, the use of "a" or "an" is used to describe the elements, elements and components described herein. This is done only for convenience of description and to provide a general sense of the scope of the invention. Thus, unless it is clear that it is meant otherwise, such descriptions should be read to include one, at least one, and the singular also includes the plural.

於本文中,用語「包含」、「包括」、「具有」、「含有」或其他任何類似用語意欲涵蓋非排他性的包括物。舉例而言,含有複數要件的一元件、結構、製品或裝置不僅限於本文所列出的此等要件而已,而是可以包括未明確列出但卻是該元件、結構、製品或裝置通常固有的其他要件。除此之外,除非有相反的明確說明,用語「或」是指涵括性的「或」,而不是指排他性的「或」。 As used herein, the terms "comprising," "including," "having," "containing," or any other similar term are intended to encompass non-exclusive inclusions. For example, an element, structure, article or device containing a plurality of elements is not limited to those elements listed herein, but may include not explicitly listed but generally inherent to the element, structure, article or device other requirements. Otherwise, unless expressly stated to the contrary, the term "or" refers to an inclusive "or" and not an exclusive "or".

請參考圖1,係本發明第一實施例之分散式數位簽章處理方法的流程示意圖。於圖1中,分散式數位簽章處理方法能夠提供使用者在具有複數頁面的一數位文件執行簽章。使用者可以在電子裝置,例如手機、平板等,執行分散式數位簽章處理方法。 Please refer to FIG. 1 , which is a schematic flowchart of a distributed digital signature processing method according to a first embodiment of the present invention. In FIG. 1 , the distributed digital signature processing method can provide a user to execute a signature on a digital document with multiple pages. The user can execute the distributed digital signature processing method on electronic devices, such as mobile phones, tablets, etc.

分散式數位簽章處理方法係起始於步驟S11,係接收該數位文件的初始文件訊息,以確定該數位文件的該等頁面的數量。於本步驟中,藉由初始文件訊息可以計算或是確認待等頁面的數量,以供後續進行數位標記的演算。 The distributed digital signature processing method starts from step S11 and receives the initial document message of the digital document to determine the number of the pages of the digital document. In this step, the number of waiting pages can be calculated or confirmed based on the initial file information for subsequent calculation of digital marking.

接著步驟S12,係下載該數位文件之該等頁面之一者為待簽章頁面。於本步驟中,係可以採取單頁下載或是多頁下載。於一實施例中,在單頁下載模式中,可以有效地達到節省儲存空間的目的。 Next in step S12, one of the pages in which the digital file is downloaded is the page to be signed. In this step, a single-page download or a multi-page download can be adopted. In one embodiment, in the single-page download mode, the purpose of saving storage space can be effectively achieved.

接著步驟S13,係對該待簽章頁面執行第一雜湊演算法,以產生相應於該待簽章頁面的第一數位簽章碼並將該第一數位簽章碼嵌入該待簽章頁面進而形成簽章頁面。於本步驟中,係藉由第一雜湊演算法對頁面的內容進行演 算,而在簽章頁面形成單獨且唯一的第一數位簽章,藉由第一數位簽章的內容,可以理解對簽章頁面進行數位簽章。值得注意的是,第一雜湊演算法演算可以加入時間戳記、頁數、頁碼等作為雜湊演算法的演算因子。此外,值得注意的是,使用者可以在待簽章頁面藉由加入印章或是簽名等,並經由第一雜湊演算法以形成具有使用者之印章或是簽名等的簽章頁面的第一數位簽章碼。值得注意的是,於一實施例中,當簽章頁面產生之後,輸出該簽章頁面至請求數位簽章的發送端,例如平台、被授權單位、伺服器或其他電子裝置等。 Then in step S13, a first hash algorithm is performed on the page to be signed, so as to generate a first digital signature code corresponding to the page to be signed, and the first digital signature code is embedded in the page to be signed, and then Form the signature page. In this step, the content of the page is processed by the first hash algorithm. Calculated, and a separate and unique first digital signature is formed on the signature page. With the content of the first digital signature, it can be understood that the signature page is digitally signed. It is worth noting that, in the first hash algorithm calculation, a time stamp, page number, page number, etc. may be added as calculation factors of the hash algorithm. In addition, it is worth noting that the user can add a seal or signature to the page to be signed, and use the first hash algorithm to form the first digit of the signed page with the user's seal or signature, etc. Signature code. It should be noted that, in an embodiment, after the signature page is generated, the signature page is output to the sender requesting the digital signature, such as a platform, an authorized unit, a server or other electronic devices.

接著步驟S14,係將該第一數位簽章碼記錄在待驗證頁面。於本步驟中,第一數位簽章碼可以依序的紀錄載待驗證頁面,換言之,待驗證頁面上具有一個或是多個來自於不同頁面的第一數位簽章碼的列表。 Next in step S14, the first digital signature code is recorded on the page to be verified. In this step, the first digital signature code can be recorded in the pages to be verified in sequence, in other words, the page to be verified has one or more lists of first digital signature codes from different pages.

接著步驟S15,係根據該數量重複執行步驟S12,以在每一該等頁面產生相應的該簽章頁面並將該等第一數位簽章碼記錄在該待驗證頁面,直到全部的該等頁面都形成相應的該簽章頁面。於本步驟中,可以在每一頁面嵌入第一數位簽章碼而形成相應的簽章頁面。 Following step S15, step S12 is repeatedly executed according to the number to generate the corresponding signature page on each of the pages and record the first digital signature codes on the pages to be verified until all the pages are All form the corresponding signature page. In this step, a first digital signature code may be embedded in each page to form a corresponding signature page.

接著步驟S16,係對該待驗證頁面執行第二雜湊演算法,以產生相應於該待驗證頁面的第二數位簽章碼並將該第二數位簽章碼嵌入該待驗證頁面進而形成驗證頁面。於本實施例中,第二雜湊演算法可以與第一雜湊演算法的方式相同或是不同。 Next in step S16, a second hash algorithm is performed on the page to be verified to generate a second digital signature code corresponding to the page to be verified, and the second digital signature code is embedded in the page to be verified to form a verification page . In this embodiment, the second hash algorithm may be the same as or different from the first hash algorithm.

接著步驟S17,係輸出該驗證頁面。 Following step S17, the verification page is output.

請參考圖2,係本發明第二實施例之分散式數位簽章處理方法的流程示意圖。於圖2中,係在第一實施例之步驟S11之前或是在步驟S17之後,其 目的是例如在數位文件的供應端,針對其所提供的數位文件進行執行數位文件初始步驟,其處理的步驟為: Please refer to FIG. 2 , which is a schematic flowchart of a distributed digital signature processing method according to a second embodiment of the present invention. In FIG. 2, before step S11 of the first embodiment or after step S17, the The purpose is, for example, at the supply end of the digital file, to perform the initial step of the digital file for the digital file provided by the digital file, and the processing steps are as follows:

步驟S21,係對每一該數位文件之該等頁面執行該第一雜湊演算法,以在每一該等頁面產生相應的第三數位簽章碼。 In step S21, the first hash algorithm is executed on the pages of each of the digital files to generate a corresponding third digital signature code on each of the pages.

步驟S22,係將每一該等頁面的該第三數位簽章碼記錄在查驗頁面。 In step S22, the third digital signature code of each of the pages is recorded on the inspection page.

步驟S23,係對該查驗頁面執行該第二雜湊演算法,以產生相應於該查驗頁面的第四數位簽章碼。 In step S23, the second hash algorithm is executed on the check page to generate a fourth digital signature code corresponding to the check page.

當數位文件初始步驟完成之後,接著可以進行第一類型的數位文書驗證步驟與第二類型的數位文書驗證步驟。 After the initial step of the digital document is completed, the first type of digital document verification step and the second type of digital document verification step can be performed.

在第一類型的數位文書驗證步驟中,其進一步包含簽章頁面驗證步驟與驗證頁面驗證步驟。 In the first type of digital document verification step, it further includes a signature page verification step and a verification page verification step.

在簽章頁面驗證步驟,起始步驟,係比對每一該等頁面第一數位簽章碼與第三數位簽章碼,以分別地產生比對成功與比對失敗的比對訊息;接著步驟,係根據該數量重複地執行前述步驟,以取得每一該等頁面的該比對訊息,直到全部的該等頁面都完成比對;以及,接著步驟,係演算該比對成功的該比對失敗的比率,以決定該數位文件的正確率。 In the signature page verification step, the initial step is to compare the first digit signature code and the third digit signature code of each of the pages to generate comparison success and comparison failure comparison messages respectively; then The step is to repeatedly perform the above-mentioned steps according to the number to obtain the comparison information of each of the pages until all the pages are compared; and, the next step is to calculate the comparison of the successful comparison The ratio of failures to determine the correct rate of the digital file.

在驗證頁面驗證步驟,起始步驟,係確認該正確率,在該正確率大於或等於閥值時執行步驟,係比對該第二數位簽章碼與該第四數位簽章碼,以產生文件正確訊息與文件錯誤訊息和根據該文件正確訊息發出簽章成功通知和根據該文件錯誤訊息發出簽章失敗通知,最終結束驗證;反之,在該正確率小於該閥值時,執行步驟,係結束驗證。 In the verification page verification step, the initial step is to confirm the correct rate, and when the correct rate is greater than or equal to the threshold, the step is performed, and the second digital signature code and the fourth digital signature code are compared to generate File correct message and file error message, and send a signature success notification based on the file correct message and a signature failure notification based on the file error message, and finally end the verification; on the contrary, when the correct rate is less than the threshold, execute the steps, the system End verification.

在第二類型的數位文書驗證步驟中,起始步驟,係比對該第二數位簽章碼與該第四數位簽章碼,以產生文件正確訊息與文件錯誤訊息;接著步驟,係根據該文件正確訊息執行步驟,係比對每一該等頁面第一數位簽章碼與第三數位簽章碼,以分別地產生比對成功與比對失敗的比對訊息,並且再比對之後,根據該數量重複地執行本步驟,以取得每一該等頁面的該比對訊息,直到全部的該等頁面都完成比對,又接著步驟,係進一步演算該比對成功與該比對失敗的比率,以決定該數位文件的正確率,經判斷該正確率大於或等於閥值時執行發出簽章成功通知,最終結束驗證,又經判斷在該正確率小於該閥值時,係發出簽章失敗通知,且最終結束驗證;反之,根據該文件錯誤訊息執行步驟,係發出簽章失敗通知,而最終結束驗證。 In the second type of digital document verification step, the initial step is to compare the second digital signature code and the fourth digital signature code to generate a document correct message and a document error message; the next step is based on the The file correct message execution step is to compare the first digital signature code and the third digital signature code of each of the pages, so as to generate the comparison information of the comparison success and the comparison failure respectively, and after the comparison, Repeat this step according to the number to obtain the comparison information of each of the pages until all the pages are compared, and then the step is to further calculate the comparison between the comparison success and the comparison failure. Ratio to determine the correct rate of the digital file, when it is judged that the correct rate is greater than or equal to the threshold, a successful notification of the signature is issued, and the verification is finally ended, and when it is judged that the correct rate is less than the threshold, a signature is issued Failure notification, and finally end the verification; on the contrary, according to the error message of the file, execute the steps, send a signature failure notification, and finally end the verification.

值得注意的是,前述第一類型的文書驗證步驟與前述第一類型的文書驗證步驟,其中可以將閥值設定在100%或其他的任意數值。 It is worth noting that, in the aforementioned first type of document verification step and the aforementioned first type of document verification step, the threshold can be set at 100% or any other value.

請參考圖3與圖4,係本發明第三實施例之分散式數位簽章處理系統的部分方塊示意圖。在圖3中,係說明分散式數位簽章處理系統之電子裝置的方塊示意圖,以及在圖4中,係說明分散式數位簽章處理系統之第二輸入單元、第二處理單元與第二輸出單元的方塊示意圖。 Please refer to FIG. 3 and FIG. 4 , which are partial block diagrams of the distributed digital signature processing system according to the third embodiment of the present invention. In FIG. 3, it is a block diagram illustrating the electronic device of the distributed digital signature processing system, and in FIG. 4, it is a second input unit, a second processing unit and a second output of the distributed digital signature processing system. Block diagram of the unit.

在圖3中,分散式數位簽章處理系統10能夠讓使用者透過電子裝置11對複數頁面22的數位文件2執行簽章。 In FIG. 3 , the distributed digital signature processing system 10 enables the user to execute the signature on the digital documents 2 of the plurality of pages 22 through the electronic device 11 .

在圖3中,分散式數位簽章處理系統10的電子裝置11包含一第一輸入單元12、一第一處理單元14與一第一輸出單元16。 In FIG. 3 , the electronic device 11 of the distributed digital signature processing system 10 includes a first input unit 12 , a first processing unit 14 and a first output unit 16 .

第一輸入單元12接收來自於該使用者的簽名S1或是印章S2,以及該第一輸入單元12依序地接收該數位文件2的每一該等頁面22。 The first input unit 12 receives the signature S1 or the seal S2 from the user, and the first input unit 12 receives each of the pages 22 of the digital document 2 in sequence.

第一處理單元14連接該第一輸入單元12。該第一處理單元14將該簽名S1或是該印章S2嵌入在每一該等頁面22。該第一處理單元14執行第一雜湊演算法H1演算每一該等頁面22以分別地產生具有第一數位簽章碼FDSC的簽章頁面SP。該第一處理單元14另外建立驗證頁面RP以紀錄該等第一數位簽章碼FDSC並執行第二雜湊演算法H2演算以在該驗證頁面RP產生相應的第二數位簽章碼SDSC。 The first processing unit 14 is connected to the first input unit 12 . The first processing unit 14 embeds the signature S1 or the seal S2 in each of the pages 22 . The first processing unit 14 executes a first hash algorithm H1 to calculate each of the pages 22 to generate a signature page SP with the first digital signature code FDSC, respectively. The first processing unit 14 additionally creates a verification page RP to record the first digital signature codes FDSC and executes the second hash algorithm H2 to generate the corresponding second digital signature codes SDSC on the verification page RP.

第一輸出單元16連接該第一處理單元14以輸出該簽章頁面SP與該驗證頁面RP。 The first output unit 16 is connected to the first processing unit 14 to output the signature page SP and the verification page RP.

在圖4中,分散式數位簽章處理系統10透過第二輸入單元12’、第二處理單元14’與第二輸出單元16'能夠驗證相關於數位文件2的簽章頁面SP與驗證頁面RP。其中,數位文件2具有複數頁面22。 In FIG. 4 , the distributed digital signature processing system 10 can verify the signature page SP and the verification page RP related to the digital file 2 through the second input unit 12 ′, the second processing unit 14 ′ and the second output unit 16 ′ . Among them, the digital file 2 has plural pages 22 .

第二輸入單元12’接收具有第一數位簽章碼FDSC的該簽章頁面SP與具有第二數位簽章碼SDSC的該驗證頁面RP。 The second input unit 12' receives the signature page SP with the first digital signature code FDSC and the verification page RP with the second digital signature code SDSC.

第二處理單元14’連接該輸入單元12’。該處理單元14’執行第一雜湊演算法H1演算每一該等頁面22以分別地產生具有第三數位簽章碼TDSC。該處理單元14’建立查驗頁面CP以紀錄該等第三數位簽章碼TDSC並執行第二雜湊演算法H2演算以在該查驗頁面CP產生相應的第四數位簽章碼FODSC。 The second processing unit 14' is connected to the input unit 12'. The processing unit 14' executes a first hash algorithm H1 to calculate each of the pages 22 to generate a TDSC with a third digital signature code, respectively. The processing unit 14' creates a check page CP to record the third digital signature codes TDSC and executes the second hash algorithm H2 to generate the corresponding fourth digital signature code FODSC on the check page CP.

第二輸出單元16’連接該處理單元14’,以輸出簽章成功通知SSN與簽章失敗通知SFN。前述的簽章成功通知SSN與簽章失敗通知SFN,是由該處理單元12’比對該第一數位簽章FDSC與該第三數位簽章碼TDSC和比對該第二數位簽章碼SDSC與該第四數位簽章碼FODSC所產生的。 The second output unit 16' is connected to the processing unit 14' to output the signature success notification SSN and the signature failure notification SFN. The aforementioned signature success notification SSN and signature failure notification SFN are performed by the processing unit 12' comparing the first digital signature FDSC with the third digital signature code TDSC and the second digital signature code SDSC Generated with the fourth digit signature code FODSC.

本發明在上文中已以較佳實施例揭露,然熟習本項技術者應理解的是,該實施例僅用於描繪本發明,而不應解讀為限制本發明之範圍。應注意的是,舉凡與該實施例等效之變化與置換,均應設為涵蓋於本發明之範疇內。因此,本發明之保護範圍當以申請專利範圍所界定者為準。 The present invention has been disclosed above with preferred embodiments, but those skilled in the art should understand that the embodiments are only used to describe the present invention, and should not be construed as limiting the scope of the present invention. It should be noted that all changes and substitutions equivalent to this embodiment should be considered to be included within the scope of the present invention. Therefore, the protection scope of the present invention should be defined by the scope of the patent application.

S11-S17:方法步驟S11-S17: Method steps

Claims (9)

一種分散式數位簽章處理方法,係供使用者在具有複數頁面的數位文件執行簽章,該分散式數位簽章處理方法包含:(a)電子裝置接收該數位文件的初始文件訊息,以確定該數位文件的該等頁面的數量;(b)該電子裝置下載該數位文件之該等頁面之一者為待簽章頁面,其中該電子裝置選擇性下載該等頁面之單頁或是多頁且非為全部的該等頁面;(c)對該待簽章頁面執行第一雜湊演算法,以產生相應於該待簽章頁面的第一數位簽章碼並將該第一數位簽章碼嵌入該待簽章頁面進而形成簽章頁面;(d)將該第一數位簽章碼記錄在待驗證頁面;(e)根據該數量重複執行步驟(b)至(d),以在每一該等頁面產生相應的該簽章頁面並將其相應的該第一數位簽章碼記錄在該待驗證頁面,直到全部的該等頁面都形成相應的該簽章頁面;(f)對該待驗證頁面執行第二雜湊演算法,以產生相應於該待驗證頁面的第二數位簽章碼並將該第二數位簽章碼嵌入該待驗證頁面進而形成驗證頁面;以及(g)輸出該驗證頁面。 A distributed digital signature processing method for users to execute signatures on a digital document with multiple pages, the distributed digital signature processing method comprising: (a) an electronic device receiving an initial document message of the digital document to determine The number of the pages of the digital file; (b) one of the pages of the digital file downloaded by the electronic device is the page to be signed, wherein the electronic device selectively downloads a single page or multiple pages of the pages and not all of the pages; (c) performing a first hash algorithm on the page to be signed, to generate a first digital signature code corresponding to the page to be signed and the first digital signature code Embed the to-be-signed page to form a signed page; (d) record the first digital signature code on the to-be-verified page; (e) repeat steps (b) to (d) according to the number, so that each The pages generate the corresponding signature page and record the corresponding first digital signature code on the page to be verified, until all the pages form the corresponding signature page; (f) The verification page executes a second hash algorithm to generate a second digital signature code corresponding to the to-be-verified page and embed the second digital signature code into the to-be-verified page to form a verification page; and (g) output the verification page. 如請求項1之分散式數位簽章處理方法,其中在步驟(c)之後,執行步驟:(h)輸出該簽章頁面。 The distributed digital signature processing method as claimed in claim 1, wherein after step (c), step: (h) outputting the signature page. 如請求項2之分散式數位簽章處理方法,其中在步驟(a)之前或步驟(g)之後,執行數位文件初始步驟,係包含: (i)對每一該數位文件之該等頁面執行該第一雜湊演算法,以在每一該等頁面產生相應的第三數位簽章碼;(j)將每一該等頁面的該第三數位簽章碼記錄在查驗頁面;以及(k)對該查驗頁面執行該第二雜湊演算法,以產生相應於該查驗頁面的第四數位簽章碼。 The distributed digital signature processing method of claim 2, wherein before step (a) or after step (g), the initial step of executing the digital file includes: (i) execute the first hash algorithm on the pages of each of the digital files to generate a corresponding third digital signature code on each of the pages; (j) convert the first hash of each of the pages The three-digit signature code is recorded on the check page; and (k) the second hash algorithm is performed on the check page to generate a fourth digit signature code corresponding to the check page. 如請求項3之分散式數位簽章處理方法,更包含簽章頁面驗證步驟:(l)比對每一該等頁面之第一數位簽章碼與第三數位簽章碼,以分別地產生比對成功與比對失敗的比對訊息;(m)根據該數量重複地執行步驟(l),以取得每一該等頁面的該比對訊息,直到全部的該等頁面都完成比對;(n)演算該比對成功的該比對失敗的比率,以決定該數位文件的正確率。 The distributed digital signature processing method of claim 3 further includes a signature page verification step: (1) Comparing the first digital signature code and the third digital signature code of each of the pages to generate separately The comparison information of the comparison success and the comparison failure; (m) repeatedly executing step (1) according to the number, to obtain the comparison information of each of the pages, until all the pages are compared; (n) calculating the ratio of the comparison failure to the successful comparison to determine the correct rate of the digital file. 如請求項4之分散式數位簽章處理方法,更包含驗證頁面驗證步驟:(o)確認該正確率,在該正確率不小於閥值時執行步驟(p),在該正確率小於該閥值時,執行步驟(r);(p)比對該第二數位簽章碼與該第四數位簽章碼,以產生文件正確訊息與文件錯誤訊息;(q)根據該文件正確訊息發出簽章成功通知和根據該文件錯誤訊息發出簽章失敗通知;以及(r)結束驗證。 For example, the distributed digital signature processing method of claim 4 further includes a verification page verification step: (o) confirming the correct rate, and executing step (p) when the correct rate is not less than the threshold, and when the correct rate is less than the threshold When the value is set, perform step (r); (p) compare the second digital signature code with the fourth digital signature code to generate a document correct message and a document error message; (q) issue a signature according to the document correct message and (r) end verification. 如請求項1之分散式數位簽章處理方法,更包含數位文件驗證步驟:(s)比對該第二數位簽章碼與該第四數位簽章碼,以產生文件正確訊息與文件錯誤訊息;(t)根據該文件正確訊息執行步驟(u)和根據該文件錯誤訊息執行步驟(z); (u)比對每一該等頁面之第一數位簽章碼與第三數位簽章碼,以分別地產生比對成功與比對失敗的比對訊息;(v)根據該數量重複地執行步驟(u),以取得每一該等頁面的該比對訊息,直到全部的該等頁面都完成比對;(w)演算該比對成功與該比對失敗的比率,以決定該數位文件的正確率;(x)判斷該正確率不小於閥值時執行步驟(y),在該正確率小於該閥值時,執行步驟(z);(y)發出簽章成功通知與結束驗證;以及(z)發出簽章失敗通知與結束驗證。 The distributed digital signature processing method of claim 1 further includes a digital document verification step: (s) comparing the second digital signature code and the fourth digital signature code to generate a document correct message and a document error message ; (t) perform step (u) according to the correct message of the document and step (z) according to the error message of the document; (u) compare the first digital signature code and the third digital signature code of each of the pages to generate comparison success and comparison failure information, respectively; (v) repeatedly execute according to the number Step (u), to obtain the comparison information of each of the pages until all the pages are compared; (w) calculate the ratio of the comparison success to the comparison failure to determine the digital file (x) when judging that the correct rate is not less than the threshold, execute step (y), and when the correct rate is less than the threshold, execute step (z); (y) issue a signature success notification and end verification; and (z) issue a signature failure notification and end verification. 如請求項5或6之分散式數位簽章處理方法,更包含設定步驟:(aa)設定該閥值為100%。 For example, the distributed digital signature processing method of claim 5 or 6 further includes a setting step: (aa) setting the threshold value to 100%. 如請求項1之分散式數位簽章處理方法,其中該第一雜湊演算法與該第二雜湊演算法為同一種演算法。 The distributed digital signature processing method of claim 1, wherein the first hash algorithm and the second hash algorithm are the same algorithm. 一種分散式數位簽章處理系統,係供使用者在具有複數頁面的數位文件執行簽章,驗證相關於該數位文件的簽章頁面與驗證頁面,其中該數位文件具有複數頁面,該分散式數位簽章處理系統包含:電子裝置,且該電子裝置更包含:第一輸入單元,係接收來自於該使用者的簽名或是印章,以及該第一輸入單元依序地接收該數位文件的每一該等頁面;第一處理單元,係連接該第一輸入單元,該第一處理單元將該簽名或是該印章嵌入在每一該等頁面,該第一處理單元執行第一雜湊演算法演算每一該等頁面以分別地產生具有第一數位簽章碼的簽章頁面,該第一處理單元建立驗 證頁面以紀錄該等第一數位簽章碼並執行第二雜湊演算法演算以在該驗證頁面產生相應的第二數位簽章碼;以及第一輸出單元,係連接該第一處理單元,以輸出該簽章頁面與該驗證頁面;第二輸入單元,係接收具有該第一數位簽章碼的該簽章頁面與具有該第二數位簽章碼的該驗證頁面;第二處理單元,係連接該第二輸入單元,該第二處理單元執行該第一雜湊演算法演算每一該等頁面以分別地產生具有第三數位簽章碼,該第二處理單元建立查驗頁面以紀錄該等第三數位簽章碼並執行該第二雜湊演算法演算以在該查驗頁面產生相應的第四數位簽章碼;以及第二輸出單元,係連接該第二處理單元,以輸出簽章成功通知與簽章失敗通知;其中該第二處理單元比對該第一數位簽章與該第三數位簽章碼和比對該第二數位簽章碼與該第四數位簽章碼以產生該簽章成功通知或該簽章失敗通知。 A distributed digital signature processing system is used for users to execute signatures on a digital file with plural pages, and verify the signature pages and verification pages related to the digital file, wherein the digital file has plural pages, and the distributed digital file The signature processing system includes: an electronic device, and the electronic device further includes: a first input unit for receiving the signature or seal from the user, and the first input unit sequentially receives each of the digital files the pages; the first processing unit is connected to the first input unit, the first processing unit embeds the signature or the seal in each of the pages, the first processing unit executes the first hash algorithm to calculate each one of these pages to respectively generate a signature page with a first digital signature code, the first processing unit creates a verification a certificate page to record the first digital signature codes and perform a second hash algorithm operation to generate a corresponding second digital signature code on the verification page; and a first output unit, connected to the first processing unit, to Output the signature page and the verification page; the second input unit receives the signature page with the first digital signature code and the verification page with the second digital signature code; the second processing unit is Connected to the second input unit, the second processing unit executes the first hash algorithm to calculate each of the pages to separately generate a third digital signature code, the second processing unit creates a check page to record the first Three-digit signature code and executing the second hash algorithm operation to generate a corresponding fourth-digit signature code on the check page; and a second output unit, connected to the second processing unit, to output a signature success notification and Signature failure notification; wherein the second processing unit compares the first digital signature with the third digital signature code and compares the second digital signature code with the fourth digital signature code to generate the signature Notification of success or notification of failure of this signature.
TW109116383A 2020-05-18 2020-05-18 Distributed digital signature processing method and system TWI778361B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
TW109116383A TWI778361B (en) 2020-05-18 2020-05-18 Distributed digital signature processing method and system
CN202010433670.8A CN113688360B (en) 2020-05-18 2020-05-21 Distributed digital signature processing method and system thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW109116383A TWI778361B (en) 2020-05-18 2020-05-18 Distributed digital signature processing method and system

Publications (2)

Publication Number Publication Date
TW202145752A TW202145752A (en) 2021-12-01
TWI778361B true TWI778361B (en) 2022-09-21

Family

ID=78576016

Family Applications (1)

Application Number Title Priority Date Filing Date
TW109116383A TWI778361B (en) 2020-05-18 2020-05-18 Distributed digital signature processing method and system

Country Status (2)

Country Link
CN (1) CN113688360B (en)
TW (1) TWI778361B (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI297873B (en) * 2005-07-22 2008-06-11 Univ Chang Gung
US7587607B2 (en) * 2003-12-22 2009-09-08 Intel Corporation Attesting to platform configuration
CN101923722A (en) * 2009-06-15 2010-12-22 北京书生国际信息技术有限公司 Realization method and device of connective seal
CN103679779A (en) * 2012-09-25 2014-03-26 苏州精易会信息技术有限公司 Realization method for seal on the perforation
CN105761048A (en) * 2016-01-08 2016-07-13 昆山百润科技股份有限公司 Electronic seal affixing method and system with cross-page seal function
TW201828642A (en) * 2017-01-19 2018-08-01 阿里巴巴集團服務有限公司 Method and device for realizing electronic signature, and signature server to solve the problem that the implementation cost of the U-shield signature scheme in the prior art is high
TWI659640B (en) * 2017-11-16 2019-05-11 中華電信股份有限公司 Signature system incorporating block chain technique, signature method and signature authentication method
TWI690192B (en) * 2019-01-15 2020-04-01 臺灣網路認證股份有限公司 System for providing signature entities to sign electronic document in order for generating signed document and method thereof

Family Cites Families (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI313998B (en) * 2006-07-14 2009-08-21 Formosoft Internat Inc Method of digital signature for electrical documents in the internet
CN101702150A (en) * 2009-12-02 2010-05-05 江西金格网络科技有限责任公司 Method for protecting, verifying and repealing content of PDF document page
TWI614636B (en) * 2013-06-10 2018-02-11 Jie Chen Content verification method based on digital signature code
CN105809450A (en) * 2014-12-31 2016-07-27 航天信息股份有限公司 Electronic invoice generation and verification method and system
CN108038388B (en) * 2018-01-18 2020-04-17 北京书生电子技术有限公司 Method for realizing Web page seal, client and server
TWI661334B (en) * 2018-05-11 2019-06-01 雲想科技股份有限公司 Electronic signature method and device with watermark
US10817385B2 (en) * 2018-07-31 2020-10-27 EMC IP Holding Company LLC Storage system with backup control utilizing content-based signatures
CN109450637B (en) * 2018-10-17 2023-01-10 航天信息股份有限公司 Signature data management method and device of electronic perforation seal
CN109409110A (en) * 2018-10-18 2019-03-01 胡金钱 A kind of electronic document signature method, device, equipment and readable medium
CN109756341B (en) * 2018-12-05 2022-03-11 新华三技术有限公司 Electronic signature method and device
CN110011808B (en) * 2019-03-29 2021-10-15 天逸财金科技服务股份有限公司 Method and system with mechanism for protecting digital signature and server

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7587607B2 (en) * 2003-12-22 2009-09-08 Intel Corporation Attesting to platform configuration
TWI297873B (en) * 2005-07-22 2008-06-11 Univ Chang Gung
CN101923722A (en) * 2009-06-15 2010-12-22 北京书生国际信息技术有限公司 Realization method and device of connective seal
CN103679779A (en) * 2012-09-25 2014-03-26 苏州精易会信息技术有限公司 Realization method for seal on the perforation
CN105761048A (en) * 2016-01-08 2016-07-13 昆山百润科技股份有限公司 Electronic seal affixing method and system with cross-page seal function
TW201828642A (en) * 2017-01-19 2018-08-01 阿里巴巴集團服務有限公司 Method and device for realizing electronic signature, and signature server to solve the problem that the implementation cost of the U-shield signature scheme in the prior art is high
TWI659640B (en) * 2017-11-16 2019-05-11 中華電信股份有限公司 Signature system incorporating block chain technique, signature method and signature authentication method
TWI690192B (en) * 2019-01-15 2020-04-01 臺灣網路認證股份有限公司 System for providing signature entities to sign electronic document in order for generating signed document and method thereof

Also Published As

Publication number Publication date
CN113688360A (en) 2021-11-23
TW202145752A (en) 2021-12-01
CN113688360B (en) 2024-02-09

Similar Documents

Publication Publication Date Title
CN110083606B (en) Cross-chain storage method, terminal and storage medium
WO2020042586A1 (en) Method and apparatus for generating address of smart contract, computer device, and readable storage medium
CN105262589B (en) Security Check method, apparatus and calibration equipment
CN111314172B (en) Block chain-based data processing method, device, equipment and storage medium
US20210248598A1 (en) Generating emoji sequence identifications to identify wallet addresses for blockchain wallets
KR102266059B1 (en) Block chain based document information management apparatus for ensuring document reliability and operating method thereof
KR102266056B1 (en) Document information management apparatus capable of managing document information based on a block chain and operating method thereof
CN109493054B (en) Multi-chain information management method, device, storage medium and block chain identity analyzer
WO2022252466A1 (en) Application authorization method, computing device, and storage medium
CN111901337A (en) File uploading method and system and storage medium
CN110969207A (en) Electronic evidence processing method, device, equipment and storage medium
CN110830256A (en) File signature method and device, electronic equipment and readable storage medium
US20200382284A1 (en) Tracking, storage and authentication of documented intellectual property
CN111339551B (en) Data verification method and related device and equipment
WO2021159639A1 (en) Checking method, apparatus, and device for data migration, and storage medium
US8677133B1 (en) Systems and methods for verifying an electronic documents provenance date
CN113468118B (en) File increment storage method, device and storage medium based on blockchain
TWI778361B (en) Distributed digital signature processing method and system
CN110826034B (en) File signature method and device, electronic equipment and readable storage medium
CN114710297B (en) Block chain evidence storing method, device and equipment based on aggregated signature and storage medium
WO2019169721A1 (en) Multi-channel packaging method and apparatus for application, computer device, and storage medium
CN111464258A (en) Data verification method, device, computing equipment and medium
CN116048868A (en) Code generation method, device, equipment and storage medium
TWI553630B (en) Apparatus and method for adding watermark data to audio signals
CN113515747A (en) Equipment upgrading method, device, equipment and storage medium

Legal Events

Date Code Title Description
GD4A Issue of patent certificate for granted invention patent