WO2023170969A1 - Control method, control program, and information processing device - Google Patents

Abstract

This information processing device (101) accepts a request for verification of an electronic signature (S1). The electronic signature (S1) is a signature that is added to digital data (D). The information processing device (101) refers to a verification history (130) in a verification-side organization (120) corresponding to a verifier (121) who is a requestor requesting verification, and determines, on the basis of a sequence of verification by verifiers (121-123) including the requestor on the electronic signature verified by the verifiers (121-123), display content of the result of verifying the electronic signature (S1) for the verifier (121) who is the requestor.

Description

Control method, control program, and information processing device

The present invention relates to a control method, a control program, and an information processing device.

In recent years, documents such as contracts and invoices between companies are often exchanged digitally. In digital business between companies, it is important to confirm the validity of the digital data being exchanged and the confirmation of intentions. The validity of the digital data and the declaration of intention are confirmed by, for example, adding a signature to the digital data and verifying the contents of the added signature.

As a prior art, a computer generates content data to which a plurality of pieces of authenticity ensuring information for ensuring the authenticity of content data are added together with a plurality of attribute information indicating attributes whose authenticity is ensured by the plurality of pieces of authenticity ensuring information, respectively. In some cases, information whose authenticity is ensured by each authenticity ensuring information is set as attribute information in an attribute information setting area.

Japanese Patent Application Publication No. 2007-281713

However, in the conventional technology, when multiple verifiers verify the content of a signature attached to digital data, there is a problem in that it is not possible to control the content of the verification results disclosed depending on the verifier.

In one aspect, the present invention aims to control the display content of verification results to a verifier.

In one embodiment, a first electronic signature verification request is received, and the electronic signature verified by a plurality of verifiers including the requester is verified by referring to the verification history of an organization corresponding to the requester of the verification request. A control method is provided that determines display content of a verification result of the first electronic signature for the requester based on the order of verification of the signature by the plurality of verifiers.

According to one aspect of the present invention, it is possible to control the content of the verification results displayed to the verifier.

FIG. 1 is an explanatory diagram showing an example of a control method according to an embodiment. FIG. 2 is an explanatory diagram showing an example of the system configuration of the information processing system 200. FIG. 3 is a block diagram showing an example of the hardware configuration of the control device 201. As shown in FIG. FIG. 4A is an explanatory diagram (Part 1) showing an example of the stored contents of the signature information DB 250. FIG. 4B is an explanatory diagram (Part 2) showing an example of the stored contents of the signature information DB 250. FIG. 5 is an explanatory diagram showing an example of the storage contents of the verification history DB 220. FIG. 6 is an explanatory diagram showing an example of the storage contents of the usage trend table 230. FIG. 7 is a block diagram showing an example of the functional configuration of the control device 201. As shown in FIG. FIG. 8 is an explanatory diagram showing an example of the stored contents of the verification information table 240. FIG. 9A is an explanatory diagram (part 1) showing an example of a method of displaying verification results. FIG. 9B is an explanatory diagram (part 2) showing an example of a method of displaying verification results. FIG. 10A is an explanatory diagram showing an example of display contents at a summary level. FIG. 10B is an explanatory diagram showing an example of display contents of the detail level. FIG. 11A is an explanatory diagram (Part 1) illustrating an example of the display contents of the electronic signature verification result when there are multiple signer organizations. FIG. 11B is an explanatory diagram (Part 2) illustrating an example of the display content of the electronic signature verification result when there are multiple signer organizations. FIG. 12 is a flowchart illustrating an example of a control processing procedure of the control device 201.

Embodiments of a control method, a control program, and an information processing device according to the present invention will be described in detail below with reference to the drawings.

(Embodiment)
FIG. 1 is an explanatory diagram showing an example of a control method according to an embodiment. In FIG. 1, an information processing apparatus 101 is a computer that controls display contents of verification results of electronic signatures added to digital data. Digital data is information that can be processed by a computer, and includes text, audio, images, videos, and the like. Digital data is, for example, digital documents used for transactions between organizations such as companies and organizations.

An electronic signature is a signature created electronically, and is used, for example, to prove when and by whom digital data was created, and to prevent falsification of digital data. The validity of digital data and the declaration of intention are confirmed by, for example, adding an electronic signature to the digital data and verifying the contents of the added signature.

Here, the verification of signature content confirms the existence of an electronic signature attached to digital data. When verifying signature content, it may be desirable to display verification results that match the purpose of the verifier. For example, when verification is performed by multiple verifiers in the verifier organization, the content to be confirmed may differ depending on the position of the verifier.

For example, the person in charge may not only check whether the electronic signature is correct, but also check who gave the electronic signature and who verified it. In addition, the person in charge's superior may check only the person who has finally confirmed that the digital data has been given an electronic signature (the person who has finally confirmed that the digital data has been given an electronic signature) (the person who has finally confirmed that the digital data has been given an electronic signature).

Furthermore, as the position of the verifier increases, the areas to be checked may become more limited. For example, a final verifier such as a department manager may only check whether the electronic signature is correct. Further, the content to be confirmed may differ depending on the department to which the verifier belongs. In this way, the content to be confirmed may differ depending on the position or affiliation of the verifier.

Additionally, if more information than necessary is provided to the verifier, there is a risk that the efficiency of the verification process will decrease. On the other hand, if too little information is provided to the verifier, the number of operations required to display the information increases, which may reduce work efficiency. For this reason, it is desirable to display verification results that match the purpose of the verification side. However, there are cases where it is not possible to obtain position information and affiliation information for each of the multiple verifiers in the verifier organization.

Here, when multiple verifiers in the verifying organization verify the signature contents, the order in which each verifier performs the verification is often determined. For example, after a person in charge performs verification, his or her superior may perform verification. Furthermore, when there are multiple persons in charge, the order in which each person in charge performs the verification may be determined.

Therefore, if you know the verification order of each of the multiple verifiers, you can estimate what kind of content each verifier often verifies, even if you cannot obtain position information or affiliation information. Further, if the content to be confirmed by the verifier can be estimated, the display content of the verification results can be controlled by the verifier.

Therefore, in this embodiment, a control method for controlling the display contents of the verification results of electronic signatures to the verifiers based on the order of verification by the plurality of verifiers with respect to the electronic signatures verified by the plurality of verifiers will be described. Here, a processing example of the information processing apparatus 101 will be described.

The information processing device 101 accepts a first electronic signature verification request. Here, the first electronic signature is an electronic signature to be verified. The first electronic signature verification request is for verifying the signature content of the first electronic signature. The first electronic signature verification request is made, for example, by specifying digital data to which the first electronic signature is attached.

In the example of FIG. 1, the first electronic signature is the electronic signature S1 given to the digital data D. The electronic signature S1 is an electronic signature added to the digital data D through signature processing by the signers 111 to 113 of the signing organization 110. The electronic signature S1 is attached to the digital data D using, for example, an existing signature system.

The digital data D to which the electronic signature S1 has been added is uploaded to the cloud service CL. The cloud service CL provides cloud storage that can be used by the signing organization 110 and the verifying organization 120, for example. The verification side organization 120 can access the digital data D to which the electronic signature S1 has been added by using the cloud service CL.

The information processing device 101 refers to the verification history of the organization corresponding to the requester of the first electronic signature verification request and determines the display content of the first electronic signature verification result for the requester. The verification history is a record of electronic signature verification processing performed in an organization. The verification history includes, for example, information that allows identification of the order in which each of the plurality of verifiers verified the electronic signatures.

Specifically, for example, the information processing apparatus 101 refers to the verification history, and based on the order of verification by the plurality of verifiers for the electronic signatures verified by the plurality of verifiers including the requester, the information processing apparatus 101 performs the first Determines the display content of the electronic signature verification result.

In the example of FIG. 1, the requester is the verifier 121 of the verifier organization 120. In this case, the information processing apparatus 101 refers to the verification history 130 at the verification side organization 120 and determines the display content of the verification result of the electronic signature S1 to the verifier 121. Specifically, for example, the information processing apparatus 101 refers to the verification history 130 and performs verification based on the order of verification by the plurality of verifiers for the electronic signatures verified by the plurality of verifiers (for example, verifiers 121 to 123). , determines the display content of the verification result of the electronic signature S1 for the verifier 121.

To explain in more detail, for example, when a plurality of verifiers of the verifying organization 120 verify an electronic signature, the information processing device 101 determines in what order the requestor (verifier 121) performed the verification. to identify the At this time, the information processing apparatus 101 may specify the order (relative order) of which verifiers performed the verification.

The information processing device 101 determines the specified order as the order of verification of the requester (verifier 121) with respect to the electronic signature S1. Then, the information processing apparatus 101 determines the display content of the verification result of the electronic signature S1 for the requester (verifier 121) in accordance with the determined verification order. For example, the information processing apparatus 101 may determine the display content of the verification result of the electronic signature S1 for the requester (verifier 121) such that the earlier the verification order, the higher the detail of the display content.

As an example, a plurality of verifiers including a requester (verifier 121) are assumed to be "verifiers 121 to 123", and the verification order of the requester (verifier 121) with respect to the electronic signature S1 is determined to be "1 (3)". Suppose that 1 (3) indicates the first of three verifiers. In this case, the information processing apparatus 101 determines, for example, the display content of the verification result of the electronic signature S1 for the requester (verifier 121) in accordance with the verification order "1(3)". The display content corresponding to the verification order "1 (3)" is, for example, the display content at the detailed level.

Displayed details at the detailed level include, for example, electronic signature information (e.g., validity of electronic signature, date of creation, etc.), information on the signing organization (organization name, representative, location, etc.), information on the signer (name, department, etc.) Including. In the example of FIG. 1, the signing organization is the signing organization 110. The signers are signers 111-113. In addition, the content displayed at the detailed level includes information indicating who (the signer) signed the signature in what order and when, comments made at the time of signing, the person performing each step until the signature is completed, and the processing details. Good too.

Further, assume that the verification order of the requester (verifier 121) with respect to the electronic signature S1 is determined to be "2 (3)". 2(3) indicates the second of the three verifiers. In this case, the information processing apparatus 101 determines, for example, the display content of the verification result of the electronic signature S1 for the requester (verifier 121) in accordance with the verification order "2(3)". The display content corresponding to the verification order "2 (3)" is, for example, the display content at the summary level. The display contents at the summary level include, for example, information on the electronic signature (e.g., validity of the electronic signature, creation date, etc.) and information on the signing organization (organization name, representative, location, etc.).

It is also assumed that the verification order of the requester (verifier 121) for the electronic signature S1 is determined to be "3 (3)". 3 (3) indicates the third of the three verifiers. In this case, the information processing apparatus 101 determines, for example, the display content of the verification result of the electronic signature S1 for the requester (verifier 121) in accordance with the verification order "3(3)". The display content corresponding to the verification order "3(3)" is, for example, the display content at the simple level. The display content at the simple level includes, for example, only electronic signature information (e.g., validity of the electronic signature, date of creation, etc.).

In this way, according to the information processing device 101, it is possible to control the display content of the verification results to the requesting verifier based on the past order of verification by a plurality of verifiers in the organization corresponding to the requesting party. . For example, the information processing apparatus 101 can estimate the importance of the verifier (eg, attributes such as job title) from past verification rankings and narrow down the information to be provided at the time of verification.

In the example of FIG. 1, the information processing device 101 determines that the earlier the verification order of the requestor (verifier 121) estimated from the verification history 130, the lower the importance of the verifier (for example, the lower the position). Accordingly, the display content of the verification result of the electronic signature S1 for the requester can be determined to be display content with a high degree of detail.

(Example of system configuration of information processing system 200)
Next, a system configuration example of the information processing system 200 including the information processing apparatus 101 shown in FIG. 1 will be described. Here, a case where the information processing apparatus 101 shown in FIG. 1 is applied to a control apparatus 201 in an information processing system 200 will be described as an example. The information processing system 200 is applied, for example, to a computer system that supports verification of electronic signatures added to digital documents exchanged between companies.

FIG. 2 is an explanatory diagram showing an example of the system configuration of the information processing system 200. In FIG. 2, the information processing system 200 includes a control device 201, a signature system 202, a plurality of signer terminals 203, and a plurality of verifier terminals 204. In the information processing system 200, a control device 201, a signature system 202, a signer terminal 203, and a verifier terminal 204 are connected via a wired or wireless network 210. The network 210 is, for example, the Internet, a LAN (Local Area Network), a WAN (Wide Area Network), or the like.

Here, the control device 201 has a verification history DB (Database) 220, a usage trend table 230, and a verification information table 240, and controls the display contents of the verification results of the electronic signature added to the digital data. The control device 201 is realized by, for example, a cloud computing server.

Note that the storage contents of the verification history DB 220, usage trend table 230, and verification information table 240 will be described later using FIGS. 5, 6, and 8.

The signature system 202 is a computer system for attaching an electronic signature to digital data. For example, a signature process on digital data is performed by a plurality of signers. The signer is, for example, a person who applies an electronic signature or confirms that an electronic signature has been applied. The signature system 202 can manage and confirm the process of adding electronic signatures to digital data.

Additionally, the signature system 202 includes a signature information DB 250. The signature information DB 250 stores, for example, information on electronic signatures added to digital documents, information on signing organizations, information on signers, signature flows, and the like. The electronic signature information includes, for example, verification results indicating whether the electronic signature is correct, creation date, size, storage location, and other information. The information on the signature organization includes, for example, information such as the name, location, and representative of the signature organization.

The signer information includes attribute information such as the signer's name, department, and position. The signature flow is information indicating a processing procedure for signature processing on digital data. The signature flow includes, for example, information on the executor (signer) of each step from the start to the completion of the signature process, processing details, and the like. A specific example of the signature flow will be described later using FIGS. 4A and 4B.

Note that the signature information DB 250 may store, for example, hash values of digital documents. The hash value of a digital document is used, for example, to verify that the digital document has not been tampered with. The signature system 202 is realized by, for example, a cloud computing server.

The signer terminal 203 is a computer used by the signer. The signer terminal 203 is, for example, a PC (Personal Computer), a tablet PC, or the like. Verifier terminal 204 is a computer used by a verifier. The verifier terminal 204 is, for example, a PC, a tablet PC, a smartphone, or the like.

In the information processing system 200, the signer accesses the signature system 202 from the signer terminal 203, adds an electronic signature to the digital document, or confirms that the electronic signature has been added to the digital document, for example. can do. Digital data to which an electronic signature is attached is exchanged between organizations (between a signing organization and a verifying organization), for example, via a cloud service.

For example, the verifier can access the control device 201 from the verifier terminal 204 and check the verification result of the electronic signature. Verification of whether the electronic signature is correct is performed by, for example, the control device 201. Specifically, for example, the control device 201 verifies the validity of the electronic signature by confirming that the electronic signature is valid and issued by a reliable certification authority. Further, the control device 201 may verify the validity of the electronic signature by using the hash value of the digital document and the electronic signature to confirm that the digital document has not been tampered with.

Note that although the control device 201 and the signature system 202 are provided separately here, the present invention is not limited to this. For example, the control device 201 may be realized by the same computer system as the signature system 202.

(Example of hardware configuration of control device 201)
FIG. 3 is a block diagram showing an example of the hardware configuration of the control device 201. As shown in FIG. In FIG. 3, the control device 201 includes a CPU (Central Processing Unit) 301, a memory 302, a disk drive 303, a disk 304, a communication I/F (Interface) 305, a portable recording medium I/F 306, It has a portable recording medium 307. Further, each component is connected to each other by a bus 300.

Here, the CPU 301 is in charge of overall control of the control device 201. CPU 301 may have multiple cores. The memory 302 includes, for example, a ROM (Read Only Memory), a RAM (Random Access Memory), a flash ROM, and the like. Specifically, for example, the flash ROM stores an OS program, the ROM stores an application program, and the RAM is used as a work area for the CPU 301. The program stored in the memory 302 is loaded into the CPU 301 and causes the CPU 301 to execute the coded processing.

The disk drive 303 controls reading/writing of data to/from the disk 304 under the control of the CPU 301. The disk 304 stores data written under the control of the disk drive 303. Examples of the disk 304 include a magnetic disk and an optical disk.

The communication I/F 305 is connected to a network 210 through a communication line, and is connected to an external computer via the network 210. The communication I/F 305 serves as an interface between the network 210 and the inside of the device, and controls data input/output from an external computer. For example, a modem or a LAN adapter can be used as the communication I/F 305.

The portable recording medium I/F 306 controls reading/writing of data to/from the portable recording medium 307 under the control of the CPU 301. The portable recording medium 307 stores data written under the control of the portable recording medium I/F 306. Examples of the portable recording medium 307 include a CD (Compact Disc)-ROM, a DVD (Digital Versatile Disk), and a USB (Universal Serial Bus) memory.

Note that the control device 201 may include, for example, an input device, a display, etc. in addition to the above-mentioned components. Further, the control device 201 may not include, for example, the portable recording medium I/F 306 and the portable recording medium 307 among the above-mentioned components. Furthermore, the signature system 202, signer terminal 203, and verifier terminal 204 shown in FIG. 2 can also be realized by the same hardware configuration as the control device 201. However, the signer terminal 203 and the verifier terminal 204 have, for example, an input device, a display, etc. in addition to the above-described components.

(Specific example of signature flow)
Next, a specific example of the signature flow stored in the signature information DB 250 included in the signature system 202 will be described using FIGS. 4A and 4B. The signature information DB 250 is realized, for example, by a storage device such as a memory or a disk of the signature system 202.

4A and 4B are explanatory diagrams showing an example of the stored contents of the signature information DB 250. In FIGS. 4A and 4B, a signature flow 400 is information indicating a signature processing procedure for target data. The target data is a digital document with the file name ``○× corporation invoice''.

Here, the signature flow 400 includes steps S1 to S8. Steps S1 to S8 are executed in ascending order of step number (S#). Step S1 indicates the start of signature processing for target data. Step S1 shows the executor's name "Taro Fuji," the department he belongs to "ID Trust PJ," his position "in charge," and the date "2021-03-12 16:22:52." The date indicates the date and time of execution.

Step S2 shows the process of adding the signer's electronic signature 1 to the target data. Step S2 shows the executor's name "Taro Fuji," the department he belongs to "ID Trust PJ," his position "in charge," and the date "2021-03-12 16:22:52." Step S3 shows a process of recording the target data to which the electronic signature 1 has been added to the storage destination. Step S3 shows the executor's name "Taro Fuji," the department he belongs to "ID Trust PJ," his position "in charge," and the date "2021-03-12 16:22:52."

Step S4 shows the process of adding the signer's electronic signature 2 to the target data. Step S4 shows the executor's name "Hanako Yamada", the department to which he or she belongs "ID Trust PJ", the position "in charge", and the date "2021-03-12 16:45:52". Step S5 shows a process of recording the target data to which electronic signatures 1 and 2 have been added to the storage destination. Step S5 shows the executor's name "Hanako Yamada", the department to which he belongs "ID Trust PJ", his position "in charge", and the date "2021-03-12 16:45:52".

Step S6 shows a process of confirming that electronic signatures 1 and 2 have been added to the target data. In step S6, the name of the executor "Ichiro Suzuki", the department to which he belongs "ID Trust PJ", his position "Supervising Researcher", and the date "2021-03-12 17:00:17" are shown. Step S7 shows a process of recording the target data to which electronic signatures 1 and 2 have been added to the storage destination. Step S5 shows the executor's name "Ichiro Suzuki", the department to which he belongs "ID Trust PJ", his position "Supervising Researcher", and the date "2021-03-12 17:00:17".

Step S8 indicates the completion of signature processing for the target data. In step S8, the signer's department "ID Trust PJ" and the date "2021-03-12 16:22:52" are shown. This date indicates the date and time when the electronic signature 1 was attached to the target data. Furthermore, the final process “2021-03-12 17:00:17” is shown in step S8. The final process “2021-03-12 17:00:17” indicates the date and time when the signature process was completed.

(Memory contents of verification history DB 220)
Next, the storage contents of the verification history DB 220 included in the control device 201 will be explained using FIG. 5. The verification history DB 220 is provided for each verification organization, for example. Here, the verification history DB 220 of a company (verifier organization) to which the user (verifier) of the verifier terminal 204 shown in FIG. 2 belongs will be described as an example. The verification history DB 220 is realized, for example, by a storage device such as the memory 302 and the disk 304 of the control device 201 shown in FIG.

FIG. 5 is an explanatory diagram showing an example of the storage contents of the verification history DB 220. In FIG. 5, the verification history DB 220 has fields for ID, date, time, access time, number of clicks, document ID, issuer, document classification, signature information, and check signature. By setting information in each field, the verification history (for example, verification history 500-1 to 500-3) is stored as a record.

Here, ID is an identifier that uniquely identifies the verifier. The date indicates the date on which the electronic signature was verified. The time indicates the time when the electronic signature was verified. The access time indicates the cumulative amount of time (in minutes) that the digital document (including information regarding the electronic signature) was accessed during verification. The number of clicks indicates the number of clicks detected during verification. The document ID is an identifier that uniquely identifies the digital document to which the electronic signature to be verified is attached. The issuer indicates the issuer of the digital document to which the electronic signature to be verified is attached.

The document classification indicates the classification of the digital document to which the electronic signature to be verified is attached. Document classifications include, for example, invoices and design documents. The signature information indicates a level according to the number of signatures. For example, when one electronic signature is given, the signature information becomes "1 level". Further, when two electronic signatures are given, the signature information becomes "2 level". Further, when three electronic signatures are added, the signature information becomes "3-level". The check signature indicates the number of electronic signatures checked by the verifier.

In addition to the above-mentioned information, the verification history includes, for example, information such as the number of openings, processing classification, history, and storage location. The number of openings indicates the number of times the digital document was opened. The processing classification indicates how the digital document was processed during verification. Examples of processing classifications include download, reference, and the like. The provenance indicates the history of the digital document until it reaches the verifier. The storage location indicates the storage location of the digital document.

(Contents stored in usage trend table 230)
Next, the storage contents of the usage trend table 230 included in the control device 201 will be explained using FIG. 6. The usage trend table 230 is realized, for example, by a storage device such as the memory 302 and the disk 304 of the control device 201 shown in FIG.

The usage trend information in the usage trend table 230 is created based on the verification history in the verification history DB 220 shown in FIG. 5, for example. The usage trend information is created by the control device 201, for example. However, the usage trend information may be created by a computer other than the control device 201 (for example, the verifier terminal 204).

FIG. 6 is an explanatory diagram showing an example of the storage contents of the usage trend table 230. In FIG. 6, the usage trend table 230 has fields of ID, document ID, access order, access time, number of openings, signature confirmation information, and document internal check information. By setting information in each field, usage trend information (for example, usage trend information 600-1 to 600-3) is stored as a record. Note that the usage trend information is stored in the usage trend table 230, for example, in the order in which verification is performed by the verifier.

Here, ID is an identifier that uniquely identifies the verifier. The document ID is an identifier that uniquely identifies the digital document to which the electronic signature to be verified is attached. The access order indicates the order in which the verifier accessed the digital document. The verifier is a verifier identified by an ID. A digital document is a digital document identified by a document ID.

The access time indicates the cumulative time that the verifier accessed the digital document (including information regarding the electronic signature) during verification (unit: minutes). The number of openings indicates the number of times the verifier opened the digital document. The signature verification information indicates the number of electronic signatures checked by the verifier. Note that the number of electronic signatures given to a digital document can be specified, for example, from signature information in the verification history (see FIG. 5). However, the usage trend information may include signature information.

The check information in the document indicates the percentage of the digital document (including information regarding electronic signatures) that was referenced by the verifier (unit: %). The in-document check information is calculated from, for example, the verifier's access time, the number of clicks, signature information, signature confirmation information (check signature), and the like. For example, the control device 201 may calculate the in-document check information in accordance with a predetermined rule such that among a plurality of verifiers, the verifier who takes more access time has a higher percentage.

Furthermore, the control device 201 may calculate the in-document check information in accordance with a predetermined rule so that among the plurality of verifiers, the verifier who clicks more often has a higher percentage. Further, the control device 201 may calculate the in-document check information according to the ratio of the number of checked electronic signatures among the electronic signatures added to the digital document, according to a predetermined rule.

Furthermore, the control device 201 may calculate the intra-document check information by combining a plurality of pieces of information such as access time, number of clicks, and ratio of the number of electronic signatures checked, according to predetermined rules. In addition, the verifier's operations (click operations, scroll operations, etc.) on the digital document (including information regarding the electronic signature) are added to the program for displaying the digital document (including information regarding the electronic signature) on the verifier terminal 204. It may also be possible to incorporate a function (plug-in) that calculates the proportion of displayed information according to the displayed information. In this case, the control device 201 may calculate the intra-document check information from the ratio calculated by this function (plug-in).

(Functional configuration example of control device 201)
Next, an example of the functional configuration of the control device 201 will be described.

FIG. 7 is a block diagram showing an example of the functional configuration of the control device 201. In FIG. 7, the control device 201 includes a reception section 701, a determination section 702, a determination section 703, and an output section 704. The reception unit 701 to the output unit 704 are functions of the control unit 700, and specifically, for example, they execute programs stored in a storage device such as the memory 302, disk 304, or portable recording medium 307 shown in FIG. The function is realized by having the CPU 301 execute it or by the communication I/F 305. The processing results of each functional unit are stored in a storage device such as the memory 302 or the disk 304, for example.

The receiving unit 701 receives a first electronic signature verification request. Specifically, for example, the reception unit 701 accepts a verification request for the first electronic signature by receiving a verification request from the verifier terminal 204 shown in FIG. The verification request includes, for example, the ID of the verifier and the document ID of the target data. The target data is digital data to which a first electronic signature is attached. Further, the verification request may include, for example, information indicating the document classification and issuer of the target data.

The determining unit 702 refers to the verification history of the organization corresponding to the requester of the verification request and determines the order of verification of the requester with respect to the first electronic signature. The organization corresponding to the request source is, for example, a company (verifier organization) to which the user (verifier) who is the request source belongs. The verification history is information that can specify the verification order of each verifier for electronic signatures verified by a plurality of verifiers, and is, for example, the verification history in the verification history DB 220 shown in FIG. 5.

Specifically, for example, the determination unit 702 refers to the verification history and verifies the electronic signatures verified by the plurality of verifiers based on the order of verification by the plurality of verifiers, including the request source. The verification order of the requester is specified for the electronic signatures that have been submitted. Then, the determination unit 702 determines the specified verification order as the requester's verification order for the first digital signature.

The verification order of the requester for the first electronic signature is represented by, for example, the verification order of the requester among the plurality of verifiers for the first electronic signature. For example, the determining unit 702 may determine that the requester is the i-th verifier among m verifiers as the verification order for the first electronic signature (m, i are integers).

To explain in more detail, for example, the determination unit 702 refers to the usage trend table 230 shown in FIG. 6 and identifies the latest usage trend information corresponding to the request source ID. The usage trend information in the usage trend table 230 is created based on the verification history in the verification history DB 220, for example. Next, the determining unit 702 identifies the access order i of the identified usage trend information.

Further, the determination unit 702 refers to the usage trend table 230 and identifies the number m of verifiers from the number of usage trend information that has the same document ID as the identified usage trend information. Then, the determining unit 702 determines that the requester's verification order for the first digital signature is the i-th one among the m verifiers.

Thereby, the determination unit 702 can estimate the requester's verification order for the first electronic signature from the past verification order by a plurality of verifiers in the organization corresponding to the requester. Note that the identified usage trend information does not have to be the latest usage trend information as long as it corresponds to the ID of the request source.

Further, the determination unit 702 may, for example, refer to the usage trend table 230 and identify the usage trend information for the most recent M times in which the number m of verifiers is the same, among the usage trend information corresponding to the ID of the request source. (M is an integer of 1 or more). M can be set arbitrarily, and is set to a value of about 5, for example.

Then, the determining unit 702 determines the access ranking with the highest number of appearances among the access rankings of the identified usage trend information for the most recent M times as the order of verification of the requester for the first electronic signature. Thereby, the determination unit 702 can estimate the requester's verification order for the first electronic signature, taking into consideration the trend of past verification orders by a plurality of verifiers in the organization corresponding to the requester.

Further, the determination unit 702 may determine the order of verification of the requester for the first electronic signature based on the order of verification by a plurality of verifiers of the electronic signatures added to digital data of the same classification as the target data. good.

To explain in more detail, for example, the determination unit 702 refers to the verification request and identifies the document classification of the target data. Next, the determination unit 702 refers to the usage trend table 230 and determines usage trend information (for example, the latest usage trend information). Note that the document classification of the digital document is specified from the verification history DB 220, for example.

Then, the determination unit 702 identifies the access order i of the identified usage trend information. Further, the determining unit 702 refers to the usage trend table 230 and identifies the number m of verifiers from the number of usage trend information having the same document ID as the identified usage trend information. Then, the determining unit 702 determines that the requester's verification order for the first digital signature is the i-th one among the m verifiers.

As a result, the determination unit 702 considers the trend of the past verification order by multiple verifiers for electronic signatures attached to digital documents of the same type (document classification) as the target data, and makes a request for the first electronic signature. The original verification order can be estimated.

Further, the determination unit 702 determines the order in which the requester verifies the first electronic signature based on the order in which the multiple verifiers verify the electronic signatures attached to the digital data from the same issuer as the target data. Good too.

To explain in more detail, for example, the determination unit 702 refers to the verification request and identifies the issuer of the target data. Next, the determination unit 702 refers to the usage trend table 230 and determines usage trend information (for example, the latest usage trend information). Note that the issuer of the digital document is specified, for example, from the verification history DB 220.

Then, the determination unit 702 identifies the access order i of the identified usage trend information. Further, the determining unit 702 refers to the usage trend table 230 and identifies the number m of verifiers from the number of usage trend information having the same document ID as the identified usage trend information. Then, the determining unit 702 determines that the requester's verification order for the first digital signature is the i-th one among the m verifiers.

As a result, the determination unit 702 determines whether or not to verify the requester's first electronic signature, taking into account the trend of past verification orders by multiple verifiers for electronic signatures attached to digital documents issued by the same issuer as the target data. The order can be estimated.

The determined verification order of the request source is stored in the verification information table 240, for example. Here, the stored contents of the verification information table 240 will be explained using FIG. 8.

FIG. 8 is an explanatory diagram showing an example of the stored contents of the verification information table 240. In FIG. 8, the verification information table 240 has fields for ID, access order, basic level, and actual provision level, and by setting information in each field, verification information (for example, verification information 800-1 to 800- 4) is stored as a record.

Here, ID is an identifier that uniquely identifies the verifier. The access order indicates the order in which the requester verifies the first electronic signature. The number in parentheses indicates the number m of verifiers. However, if only the order in which verification is to be performed is determined as the verification order of the requester for one electronic signature, the number in parentheses will be null. The basic level indicates a level determined based on the access order. The actual provision level indicates a level determined based on the verifier's usage tendency.

The determined verification order (access order) of the request source is stored in the verification information table 240 in association with, for example, the ID of the verifier. As a result, new verification information is stored as a record. However, at this point, the basic level and actual provision level of verification information are "null".

Returning to the explanation of FIG. 7, the determining unit 703 displays the verification result of the first electronic signature for the requester based on the order of verification by the plurality of verifiers for the electronic signatures verified by the plurality of verifiers including the requester. Decide on the content. Specifically, for example, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester in accordance with the determined verification order.

For example, assume that the requester's verification order for the first digital signature is determined to be "i-th among m verifiers." In this case, the determining unit 703 determines that the verifier who is earlier in the verification order is less important among the m verifiers, and changes the display content of the verification result of the first electronic signature for the i-th requester. You may decide to do so.

To explain in more detail, for example, the determining unit 703 verifies the first electronic signature for the i-th requester such that the earlier the verification order among the m verifiers, the higher the detail level of the displayed content. The display contents of the results may also be determined. For example, the determining unit 703 takes advantage of the fact that the verification order of the person in charge is earlier than that of a verifier with a higher position such as a manager, and displays the content to the person in charge with a higher level of detail than that of a verifier with a higher position. Decide to be high.

Here, the multiple verifiers are assumed to be "three verifiers" (m=3). Further, it is assumed that the display content of the verification result of the first electronic signature for the requester is determined to be display content at a detailed level, a summary level, or a simple level. The content displayed at the detailed level has a higher degree of detail than the summary level and the simple level. The content displayed at the summary level has a higher degree of detail than that at the simple level. The display contents of each level can be set arbitrarily.

For example, assume that the requester's verification order for the first electronic signature is determined to be "first of three verifiers." In this case, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester to be the display content at the detailed level. The display content at the detailed level includes, for example, all information that can be displayed as a verification result of the first electronic signature (for example, information on the electronic signature, information on the signing organization, and information on each signer).

Further, assume that the requester's verification order for the first digital signature is determined to be "the second of three verifiers." In this case, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester to be display content at a summary level. The display contents at the summary level include, for example, electronic signature information, final signer information, and the like.

Further, assume that the requester's verification order for the first digital signature is determined to be "the third of three verifiers." In this case, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester to be the display content of the simple level. The display content at the simple level includes, for example, only electronic signature information.

Note that here, the display content is determined such that the earlier the verification order is, the higher the detail level of the display content is, but the present invention is not limited to this. For example, the determining unit 703 may determine the display content of the first electronic signature verification result for the i-th requester such that the earlier the verification order is, the lower the detail level of the display content is.

The display content (level) determined based on the verification order is set, for example, to the basic level and actual provision level of the verification information corresponding to the verifier ID in the verification information table 240 as shown in FIG. At this point, the actual provision level is set to the same level as the basic level.

Further, the determining unit 703 refers to the verification history and further determines the verification result of the first electronic signature for the requester based on information representing the usage tendency of the requester at the time of verification of the digital data to which the electronic signature is attached. The display contents may be determined.

To explain in more detail, for example, the determining unit 703 refers to the usage trend table 230 and identifies the usage trend information for the most recent N times among the usage trend information corresponding to the request source ID (N is 1 (integer greater than or equal to). N can be set arbitrarily, and is set to a value of about 5, for example. However, the usage trend table 230 may not contain usage trend information for N times corresponding to the ID of the request source. In this case, the determination unit 702 may, for example, specify all usage trend information corresponding to the ID of the request source.

Next, the determining unit 703 calculates the average value of the in-document check information of the identified usage trend information for the most recent N times. Then, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester based on the calculated average value of the check information within the document. For example, when the average value of the check information in the document is equal to or less than the threshold value α, the determining unit 703 may determine the display content of the verification result of the first electronic signature for the requester as the display content of the simple level. The threshold value α can be set arbitrarily, and is set to a value of about 30, for example.

As a result, for example, even if the requester's verification order is early, if there is a tendency to not check very detailed content in the past, the determining unit 703 may display content with a lower level of detail. can be determined. Further, here, the usage tendency of the requester is determined based on the average value of the check information in the document, but the present invention is not limited to this. For example, the determining unit 703 may determine the usage tendency of the requester based on the maximum value or minimum value of the check information within the document.

Further, the determining unit 703 may determine the request source's usage tendency based on the average value, maximum value, minimum value, etc. of the number of clicks of the identified usage trend information for the most recent N times. For example, when the average value of the number of clicks is equal to or less than the threshold value β, the determining unit 703 may determine the display content of the verification result of the first electronic signature for the requester as the display content of the simple level.

Further, the determining unit 703 may determine the request source's usage tendency based on the average value, maximum value, minimum value, etc. of the access time of the identified usage trend information for the most recent N times. For example, when the average value of access times is less than or equal to the threshold value γ, the determining unit 703 may determine the display content of the verification result of the first electronic signature for the requester as the display content of the simple level.

The display content (level) determined based on the usage tendency is set, for example, to the actual provision level of the verification information corresponding to the verifier ID in the verification information table 240 as shown in FIG. Specifically, when the display content (level) determined based on usage trends differs from the basic level, the actual provision level is updated.

Further, the determining unit 703 may further determine the display content of the verification result of the first electronic signature for the requester based on the issuer of the target data. For example, the issuer may be a company with low trust. Therefore, when the issuer of the target data is a specific organization, the determining unit 703 may determine the display content of the verification result of the first electronic signature for the requester as the display content of the level of detail.

Further, the determining unit 703 may further determine the display content of the verification result of the first electronic signature for the requester based on the document classification of the target data. For example, depending on the type of target data, it may be desirable for all verifiers to check the signature details in detail. Therefore, when the document classification (type) of the target data is a specific document classification, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester as the display content of the detail level. Good too.

The output unit 704 outputs the verification results of the determined display content to the requester. Specifically, for example, the output unit 704 refers to the verification information table 240 and identifies the verification information corresponding to the ID of the request source. Further, the output unit 704 acquires signature information and signature-related information of the target data from the signature system 202.

The target data is specified, for example, from the document ID included in the verification request. The signature information includes, for example, electronic signature information, signature organization information, hash value of target data, and the like. The signature-related information includes, for example, signer information, signature flow, and the like. Verification of whether the first electronic signature is correct is performed by, for example, the control device 201.

Specifically, for example, the control device 201 verifies the first electronic signature in response to receiving a verification request for the first electronic signature. The output unit 704 obtains the first electronic signature verification result executed by the own device. Then, the output unit 704 outputs the verification result of the display content of the actual provision level of the specified verification information to the requesting verifier terminal 204 based on the acquired signature information and signature-related information of the target data. do.

In the above description, the verification order of the requester for the first electronic signature is expressed by the verification order of the requester among the plurality of verifiers for the first electronic signature. It is not limited to this. For example, the requester's verification order for the first electronic signature may be expressed only by the order in which verification is performed.

To explain in more detail, for example, the determination unit 702 refers to the usage trend table 230 and identifies the usage trend information for the most recent N times among the usage trend information corresponding to the ID of the request source. Then, the determining unit 702 determines the access ranking with the highest number of appearances among the access rankings of the most recent N usage trend information identified as the order of verification of the requester for the first electronic signature.

The determination unit 702 can improve the determination accuracy by determining the verification order of the request source from a plurality of pieces of usage trend information, compared to the case where the determination is made from a single piece of usage trend information. Note that there may be multiple access rankings with the highest number of appearances. In this case, the determining unit 702 may determine, for example, the earliest access ranking among the access rankings with the greatest number of appearances as the verification order of the requester for the first digital signature.

Then, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester in accordance with the determined verification order. To explain in more detail, for example, when the determined verification order is 2 or less, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester to be the display content of the detailed level. Further, when the determined verification order is 3 or 4, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester to be the display content at the summary level. Further, when the determined verification order is 5 or more, the determining unit 703 determines the display content of the verification result of the first electronic signature for the requester to be the display content of the simple level.

Further, the determining unit 702 may determine the order in which the requester verifies the first electronic signature based on the verification status of the first electronic signature. Specifically, for example, the determination unit 702 searches the verification history DB 220 for the verification history corresponding to the document ID included in the verification request. Then, the determination unit 702 calculates the number k of searched verification histories. For example, the determination unit 702 determines the calculated number k of verification histories as the number of verifiers who have verified the first digital signature. Then, the determining unit 702 may determine the number (k+1) obtained by incrementing the calculated number k of verification histories as the requester's verification order for the first electronic signature.

The functional units (reception unit 701 to output unit 704) of the control device 201 described above may be realized by a plurality of computers (for example, the control device 201 and the verifier terminal 204) within the information processing system 200.

(How to display verification results on verifier terminal 204)
Next, a method of displaying the electronic signature verification result on the verifier terminal 204 will be described using FIGS. 9A and 9B. The control device 201 may control the method of displaying the verification results on the verifier terminal 204, for example, depending on the size of the display area on the verifier terminal 204.

FIGS. 9A and 9B are explanatory diagrams showing an example of a method of displaying verification results. In FIG. 9A, a verification result 910 is an example of a verification result of an electronic signature. In FIG. 9A, the entire verification result 910 is displayed in display area A of the verifier terminal 204. Therefore, the verifier can check the entire verification result 910 without performing a scroll operation or the like.

In FIG. 9B, verification results 920-1 to 920-3 are examples of electronic signature verification results. In FIG. 9B, verification results 920-1 to 920-3 are scrollably displayed in display area A of verifier terminal 204. The verifier can sequentially check the verification results 920-1 to 920-3 without expanding the display area A by operating the scroll bar sb.

The control device 201 can improve convenience for the user (verifier) by displaying the verification results in accordance with the size of the display area A of the verifier terminal 204. For example, when the size of the display area A is larger than the specified size, the control device 201 may decide to use a display method of displaying the entire verification result as shown in FIG. 9A. On the other hand, when the size of the display area A is smaller than or equal to the specified size, the control device 201 may decide to use a display method of displaying the verification results in a scrollable manner as shown in FIG. 9B.

(Example of display contents of electronic signature verification results)
Next, the display contents of the electronic signature verification result displayed on the verifier terminal 204 will be described using FIGS. 10A and 10B.

FIG. 10A is an explanatory diagram showing an example of display contents at the summary level. In FIG. 10A, verification result information 1010 is an example of display content of a verification result of an electronic signature. Verification result information 1010 includes signature status information 1011, confirmer information 1012, electronic signature information 1013, and electronic signature information 1014.

The signature status information 1011 indicates that a correct electronic signature has been added to the target data “XX Corporation_Invoice” (verification result). Confirmer information 1012 indicates the final signer. The electronic signature information 1013 indicates the electronic signature 1 given to the target data “XX Corporation_Invoice”. The electronic signature information 1014 indicates the electronic signature 2 given to the target data “XX Corporation_Invoice”.

According to the verification result information 1010, the verifier can confirm from the signature status information 1011 that a correct electronic signature has been attached to the target data "XX Corporation_Invoice". Furthermore, the verifier can confirm from the verifier information 1012 that the final signer has verified. Further, the verifier can confirm from the electronic signature information 1013 and 1014 that the electronic signatures 1 and 2 have been added to the target data "XX Corporation_Invoice".

In this way, according to the verification result information 1010, the verifier can confirm the signature structure of the electronic signature. For example, the verifier can confirm that after the electronic signatures 1 and 2 have been added to the target data "XX Corporation_Invoice", a check has been performed by the final signer. Further, according to the verification result information 1010, it is possible to prevent verification efficiency from decreasing due to display of more information than necessary (for example, detailed information of each signer).

In addition, on the verifier terminal 204, for example, when the verifier selects the verifier information 1012 of the verification result information 1010 by operating input (drill down), the final signer information (name, department, position, execution date and time, etc.) is displayed. Detailed information can be displayed. Further, by selecting the electronic signature information 1013 of the verification result information 1010, detailed information about the signer of the electronic signature 1 (name, department, position, date and time of execution, etc.) can be displayed. Furthermore, by selecting the electronic signature information 1014 of the verification result information 1010, detailed information about the signer of the electronic signature 2 (name, department, position, date and time of execution, etc.) can be displayed. Detailed information on each signer is obtained from the control device 201, for example.

FIG. 10B is an explanatory diagram showing an example of the display content of the detail level. In FIG. 10B, verification result information 1020 is an example of display content of a verification result of an electronic signature. Verification result information 1020 includes signature status information 1021, confirmer information 1022, electronic signature information 1023, and electronic signature information 1024.

The signature status information 1021 indicates that a correct electronic signature has been added to the target data "XX Corporation_Invoice" (verification result). Confirmer information 1022 indicates the final signer. The confirmer information 1022 includes the name of the final signer, department, position, date and time of execution, and comments.

The electronic signature information 1023 indicates the electronic signature 1 given to the target data “XX Corporation_Invoice”. The electronic signature information 1023 includes the name of the signer of the electronic signature 1, department, position, date and time of execution, and comments. The electronic signature information 1024 indicates the electronic signature 2 given to the target data “XX Corporation_Invoice”. The electronic signature information 1024 includes the name of the signer of the electronic signature 2, department, position, date and time of execution, and comments.

According to the verification result information 1020, the verifier can confirm from the signature status information 1021 that a correct electronic signature has been added to the target data "XX Corporation_Invoice". Further, the verifier can confirm from the verifier information 1022 that the final signer has verified. Further, the verifier can confirm the name, department, position, date and time of execution, and comments of the final signer from the verifier information 1022.

Additionally, the verifier can confirm from the electronic signature information 1023 and 1024 that the electronic signatures 1 and 2 have been added to the target data "XX Corporation_Invoice". Further, the verifier can confirm the name, department, position, date and time of execution, and comments of the signer of the electronic signature 1 from the electronic signature information 1023. Further, the verifier can confirm the name, department, position, date and time of execution, and comments of the signer of the electronic signature 2 from the electronic signature information 1024.

In this way, according to the verification result information 1020, the verifier can confirm the signature structure of the electronic signature. For example, the verifier can confirm that after the electronic signatures 1 and 2 have been added to the target data "XX Corporation_Invoice", a check has been performed by the final signer. Furthermore, the verifier can confirm detailed information of each signer without performing operations such as drill-down.

Although not shown, the display content of the simple level includes only signature status information 1011 and 1021 as shown in FIGS. 10A and 10B, for example.

(Example of display contents of electronic signature verification results when there are multiple signer organizations)
Next, with reference to FIGS. 11A and 11B, the display contents of the electronic signature verification results when there are multiple signer organizations will be described.

Here, multiple organizations (signing organizations) may collaborate to perform signature processing on the target data. If there are multiple signer organizations, the information that can be disclosed to the verifier may differ depending on the signer organization. For this reason, for example, when determining the display content of the verification result of the first electronic signature for the requester, the control device 201 adjusts the display content of information regarding the signer organization according to each of the plurality of signer organizations. You may decide to do so.

FIGS. 11A and 11B are explanatory diagrams illustrating an example of the display contents of the electronic signature verification results when there are multiple signer organizations. In FIGS. 11A and 11B, verification result information 1110, 1120, and 1130 are examples of display contents of electronic signature verification results when there are multiple signer organizations.

Here, the multiple signer organizations that have performed the signature processing on the target data are referred to as "organization A, organization B, and organization C." Also, assuming that three verifiers perform verification (m = 3), the first verifier verifies organization A, the second verifier verifies organization B, and the third verifier verifies organization A. Assume that organization C is to be verified.

Here, the verification order of the requester is set to "1". In this case, the control device 201, for example, determines the display content of the verification result of the electronic signature (first electronic signature) according to the verification order "1" of the requester, determine the display content of information regarding the organization. As a result, verification result information 1110 is displayed on the verifier terminal 204 of the first verifier.

The verification result information 1110 includes signature status information 1111 and signer organization information 1112 to 1114. The signature status information 1111 indicates that a correct electronic signature has been added to the target data (verification result). The signer organization information 1112 to 1114 indicates information on the signer organizations (organizations A to C).

Here, the first verifier verifies organization A. It is assumed that organization A can only disclose information about the final signer. Therefore, in the signer organization information 1112, only the information of the final signer of organization A (confirmer a) is displayed. Further, in the signer organization information 1113 and 1114 of organizations B and C, only the organization names of organizations B and C are displayed.

Next, the verification order of the request source is set to "2". In this case, the control device 201, for example, determines the display content of the verification result of the electronic signature (first electronic signature) according to the verification order "2" of the requester, and the determine the display content of information regarding the organization. As a result, verification result information 1120 is displayed on the verifier terminal 204 of the second verifier.

The verification result information 1120 includes signature status information 1121 and signer organization information 1122 to 1124. The signature status information 1121 indicates that a correct electronic signature has been added to the target data (verification result). The signer organization information 1122 to 1124 indicates information on the signer organizations (organizations A to C).

Here, the second verifier verifies organization B. It is assumed that organization B can disclose only the information of the final signer and the information of the electronic signature. Therefore, in the signer organization information 1123, only the information of the final signer of organization B (confirmer b) and the information of electronic signatures 1 to 3 are displayed. Further, in the signer organization information 1122 and 1124 of organizations A and C, only the organization names of organizations A and C are displayed.

Next, the verification order of the requester is set to "3". In this case, the control device 201 determines the display content of the verification result of the electronic signature (first electronic signature) according to the verification order "3" of the requester, for example, according to each of the organizations A to C. determine the display content of information regarding the organization. As a result, verification result information 1130 is displayed on the verifier terminal 204 of the third verifier.

The verification result information 1130 includes signature status information 1131 and signer organization information 1132 to 1134. The signature status information 1131 indicates that a correct electronic signature has been added to the target data (verification result). Signing side organization information 1132 to 1134 indicate information on signing side organizations (organizations A to C).

Here, the third verifier verifies organization C. It is assumed that organization C can disclose only the information of the final signer and the information of the electronic signature. Therefore, in the signer organization information 1134, only the information of the final signer of organization C (confirmer c) and the information of electronic signatures 4 and 5 are displayed. Further, in the signer organization information 1132 and 1133 of organizations A and B, only the organization names of organizations A and B are displayed.

(Control processing procedure of control device 201)
Next, the control processing procedure of the control device 201 will be explained using FIG. 12.

FIG. 12 is a flowchart illustrating an example of a control processing procedure of the control device 201. In the flowchart of FIG. 12, first, the control device 201 determines whether a verification request has been received from the verifier terminal 204 (step S1201). Here, the control device 201 waits for receiving the verification request (step S1201: No).

If the verification request is accepted (step S1201: Yes), the control device 201 acquires the signature information and signature-related information of the target data from the signature system 202 (step S1202). The signature information includes, for example, electronic signature information, signature organization information, and the like. The signature-related information includes, for example, signer information, signature flow, and the like.

Next, the control device 201 refers to the usage trend table 230 and determines the verification order of the requester for the first electronic signature (step S1203). Specifically, for example, the control device 201 refers to the usage trend table 230 and identifies the latest usage trend information corresponding to the ID of the request source. Next, the control device 201 specifies the access order i of the specified usage trend information. Further, the control device 201 refers to the usage trend table 230 and specifies the number m of verifiers from the number of usage trend information having the same document ID as the identified usage trend information. Then, the control device 201 determines that the verification order of the requester for the first digital signature is the i-th verification among the m verifiers.

Then, the control device 201 determines the basic level based on the determined verification order of the request source (step S1204). The basic level is determined to be, for example, a detailed level, an overview level, or a simple level. Next, the control device 201 refers to the usage trend table 230 and identifies the usage trend information for the most recent N times among the usage trend information corresponding to the ID of the request source (step S1205).

Then, the control device 201 determines the actual provision level based on the identified usage trend information for the most recent N times (step S1206). The actual provision level is determined to be one of a detailed level, an overview level, and a simple level, for example. Next, the control device 201 updates the verification information corresponding to the ID of the requester in the verification information table 240 based on the determined basic level and actual provision level (step S1207).

Then, the control device 201 outputs the verification result of the display content according to the updated verification information to the requesting verifier terminal 204 (step S1208), and ends the series of processes according to this flowchart. Specifically, for example, the control device 201 outputs the verification result of the display content of the actual provision level of the updated verification information.

Thereby, the control device 201 can control the display content of the verification results for the requester, taking into account the requester's verification order for the first electronic signature and the requester's past usage trends during verification. .

As described above, according to the control device 201 according to the embodiment, when a first electronic signature verification request is received, the requester It is possible to determine the display content of the verification result of the first electronic signature for the first digital signature. Specifically, for example, the control device 201 refers to the verification history, and based on the order of verification by the plurality of verifiers with respect to the electronic signatures verified by the plurality of verifiers including the requester, the control device 201 performs the first Determine the display content of the electronic signature verification result.

Thereby, the control device 201 can control the display content of the verification results for the verifier based on the past order of verification by a plurality of verifiers in the organization corresponding to the request source. For example, the control device 201 can estimate the importance of the verifier (for example, attributes such as job title) from past verification rankings and narrow down the information to be provided at the time of verification.

Furthermore, according to the control device 201, it is possible to output the verification results of the determined display content to the requester.

Thereby, the control device 201 can prevent verification efficiency from decreasing due to unnecessary information being displayed to the verifier.

Further, according to the control device 201, based on the order of verification by the plurality of verifiers on the electronic signatures verified by the plurality of verifiers including the requester, the order of verification of the requester with respect to the first electronic signature is determined, and The display content of the verification result of the first digital signature for the original can be determined according to the determined verification order.

Thereby, the control device 201 can estimate the requester's verification order for the first electronic signature from the past verification order by a plurality of verifiers in the organization corresponding to the requester. Further, the control device 201 can, for example, determine information at a predetermined level (detail level) as the display content according to the estimated verification order.

Further, according to the control device 201, a request for the first electronic signature is made based on the order of verification by the plurality of verifiers for the electronic signature added to the digital data of the same category as the digital data to which the first electronic signature is added. The original verification order can be determined.

As a result, the control device 201 determines the requester's verification order for the first electronic signature, taking into account trends in past verification orders by multiple verifiers for electronic signatures attached to digital documents of the same type as the target data. can be estimated. For example, even if the verification order of a plurality of verifiers changes depending on document classification, the verification order of the requester can be accurately determined.

Further, according to the control device 201, the first electronic signature is verified based on the order in which the plurality of verifiers verify the electronic signature given to the digital data from the same issuer as the digital data to which the first electronic signature is given. The requester's verification order can be determined.

As a result, the control device 201 performs verification of the requester for the first electronic signature, taking into account trends in past verification orders by multiple verifiers for electronic signatures attached to digital documents issued by the same issuer as the target data. The order can be estimated. For example, even if the verification order of a plurality of verifiers changes depending on the issuer, the verification order of the requester can be accurately determined.

According to the control device 201, the control device 201 refers to the verification history and further applies a first electronic signature to the requester based on information representing usage trends during verification by the requester regarding the digital data to which the electronic signature has been attached. The display content of the verification results can be determined.

Thereby, the control device 201 can narrow down the information to be provided at the time of verification, taking into account the verifier's past usage trends. For example, even if the requester's verification order is early, the control device 201 may decide to display content with a lower level of detail if there is a past usage tendency of not checking very detailed content. I can do it.

For these reasons, according to the control device 201, when the signature content of digital data is verified by multiple verifiers, the content of the verification results disclosed according to the verifiers is appropriately controlled, and the content of the verification results disclosed is not exceeded. Information can be prevented from being provided. For example, in a business workflow, the control device 201 provides information by distinguishing between a person who confirms the signature of an organization and a person who confirms the signature of a specific person in charge, thereby preventing a decrease in work efficiency and verifying. Processing efficiency can be improved. Further, the control device 201 can prevent leakage of confidential information by not providing information to the verification side more than necessary.

Note that the control method described in this embodiment can be realized by executing a program prepared in advance on a computer such as a personal computer or a workstation. This control program is recorded on a computer-readable recording medium such as a hard disk, flexible disk, CD-ROM, DVD, or USB memory, and is executed by being read from the recording medium by the computer. Further, this control program may be distributed via a network such as the Internet.

In addition, the control device 201 described in this embodiment is a specific application IC such as a standard cell or a structured ASIC (Application Specific Integrated Circuit), or a PLD (Programmable Logic Device) such as an FPGA. It can also be realized by e).

101 Information processing device 110 Signing organization 111, 112, 113 Signer 120 Verifying organization 121, 122, 123 Verifier 130 Verification history 200 Information processing system 201 Control device 202 Signature system 203 Signer terminal 204 Verifier terminal 210 Network 220 Verification history DB
230 Usage trend table 240 Verification information table 250 Signature information DB
300 bus 301 CPU
302 Memory 303 Disk Drive 304 Disk 305 Communication I/F
306 Portable recording medium I/F
307 Portable recording medium 400 Signature flow 700 Control unit 701 Reception unit 702 Determination unit 703 Determination unit 704 Output unit

Claims (8)

1. Accepting the first electronic signature verification request,
   With reference to the verification history of the organization corresponding to the requester of the verification request, based on the order of verification by the plurality of verifiers for the electronic signatures verified by the plurality of verifiers including the requester, determining display content of the verification result of the first electronic signature;
   A control method characterized in that processing is executed by a computer.
2. outputting a verification result of the determined display content to the requester;
   2. The control method according to claim 1, wherein the processing is executed by the computer.
3. The determining process is
   Determining the order of verification of the requester with respect to the first electronic signature based on the order of verification by the plurality of verifiers with respect to the electronic signatures verified by a plurality of verifiers including the requester,
   determining display content of a verification result of the first electronic signature for the requester in accordance with the determined verification order;
   The control method according to claim 1, characterized in that:
4. The determining process is
   Based on the order of verification by the plurality of verifiers of electronic signatures added to digital data in the same category as the digital data to which the first electronic signature is added, the requester's verification order for the first electronic signature is determined. 4. The control method according to claim 3, further comprising: determining.
5. The determining process is
   the requester's verification order for the first electronic signature based on the verification order by the plurality of verifiers for electronic signatures added to digital data from the same issuer as the digital data to which the first electronic signature is added; 4. The control method according to claim 3, further comprising: determining.
6. The determining process is
   Displaying a verification result of the first electronic signature for the requesting party with reference to the verification history and further based on information representing a usage tendency of the digital data to which the electronic signature has been applied at the time of verification by the requesting party. 6. The control method according to claim 1, further comprising determining the content.
7. Accepting the first electronic signature verification request,
   With reference to the verification history of the organization corresponding to the requester of the verification request, based on the order of verification by the plurality of verifiers for the electronic signatures verified by the plurality of verifiers including the requester, determining display content of the verification result of the first electronic signature;
   A control program that causes a computer to perform processing.
8. Accepting the first electronic signature verification request,
   With reference to the verification history of the organization corresponding to the requester of the verification request, based on the order of verification by the plurality of verifiers for the electronic signatures verified by the plurality of verifiers including the requester, determining display content of the verification result of the first electronic signature;
   An information processing device comprising a control section.

Images