CN101111813A - Time-stamp device, time emendation method and time emendation program - Google Patents

Time-stamp device, time emendation method and time emendation program Download PDF

Info

Publication number
CN101111813A
CN101111813A CN 200580047407 CN200580047407A CN101111813A CN 101111813 A CN101111813 A CN 101111813A CN 200580047407 CN200580047407 CN 200580047407 CN 200580047407 A CN200580047407 A CN 200580047407A CN 101111813 A CN101111813 A CN 101111813A
Authority
CN
China
Prior art keywords
constantly
time
authentication
moment
obtains
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN 200580047407
Other languages
Chinese (zh)
Inventor
秋山良太
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Fujitsu Ltd
Original Assignee
Fujitsu Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Fujitsu Ltd filed Critical Fujitsu Ltd
Priority to CN 200580047407 priority Critical patent/CN101111813A/en
Publication of CN101111813A publication Critical patent/CN101111813A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Electric Clocks (AREA)

Abstract

A local time generated by a local time generation unit is calibrated by an authentication time acquisition unit by using an authentication time acquired from a time issuing device. An authentication time request unit requests the time issuing device to issue an authentication time when triggered by that a period during which a difference between the local time and the radio wave time is smaller than a predetermined value has continued for a predetermined period of time and the difference between the local time and the radio wave time is equal to or above a predetermined value. A time calibration unit calibrates the local time by considering the delay time of the authentication time acquired via the authentication time acquisition unit.

Description

Time-stamp device, time adjustment method and time emendation program
Technical field
The present invention relates to local timestamp (time stamp) device, time adjustment method and the time emendation program that comprises the electronic signature constantly of this this locality constantly, even particularly by preventing that the malice user from altering time-stamp device, time adjustment method and the time emendation program that has improved the reliability in the moment that is used to sign electronically constantly and also can guarantee reliability constantly under the situation that often is not connected to network according to internal clocking output.
Background technology
In recent years, along with the development of digital certificate technology, prove that the wright of e-file or the electronic signature of publisher are used gradually.Technology such as encryption key are used to this electronic signature to guarantee the reliability of electronic signature.In addition, also carried out proving the making moment of e-file and the trial of delivery time by in this electronic signature, comprising the national standard moment (hereinafter referred to as " etalon time ").
The device that comprises electronic signature constantly is commonly called time-stamp device.This time-stamp device has internal clocking, revises constantly locally by local the grade constantly and by the electric wave that reception comprises etalon time of internal clocking timing, has improved the precision in the moment that is used to sign electronically thus.
As mentioned above, under the situation that comprises electronic signature constantly, the local of time-stamp device need be suppressed to below the setting with the deviation of etalon time constantly.That is, be below the setting if can guarantee to be included in the deviation of the moment and etalon time in the electronic signature, then can by comprise local electronic signature constantly prove with as the relevant moment of the e-file of signature object.
In addition, as should this locality being suppressed to method below the setting with the deviation of etalon time constantly, except the method identical, be connected on the etalon time management server that is connected with network and obtain the method for etalon time in addition from this server with above-mentioned so-called radiowave timepiece.For example, disclose following method in patent documentation 1: administrative standard server constantly sends etalon time and the etalon time of transmission is provided with guaranty period to the client terminal device that can be often communicates with this server, detect thus client terminal device internal clocking disorder or alter.
Patent documentation 1: the Japanese documentation spy opens the 2002-229869 communique.
Summary of the invention
Invent problem to be solved
But in above-mentioned existing time-stamp device, it is constantly local to prevent that the malice user from altering.What for example, the electric wave that can replace comprising genuine etalon time by the electric wave that use comprises false etalon time made time-stamp device locally constantly departs from genuine etalon time far away.If be carried out altering of so local moment, then can't have proved the moment relevant with e-file.
Even be provided with that Looking Out Time stabs device local constantly with the deviation that is included in the etalon time in the electric wave and when this deviation has surpassed setting judgement be carried out the mechanism of altering, heating or the temperature of stabbing device cool time attack and the electric wave that carries out with false electric wave is attacked and the situation of usefulness under, this mechanism can be inoperative and allow to alter the local moment.
As mentioned above, using electric wave to revise constantly in the local method constantly, existing and to alter local problem constantly by ganging up against of false electric wave and temperature operation.Thereby, can't by time-stamp device is used this time correction method guarantee with as the relevant moment of the e-file of signature object.
In addition, time-stamp device miniaturization constantly itself owing to various miniaturization of devices, imagination have on the networks such as often not being connected LAN but as wrist-watch or mobile phone, the user can carry easily and the mode used when needed, and estimates to exist the user's request of wishing this use-pattern of employing.
In addition, disclosed technology relates on the networks such as often being connected LAN so that can be often and the client terminal device that communicates of etalon time management server in patent documentation 1, and this technology can't be applicable to the time-stamp device of above-mentioned use-pattern.
For above-mentioned reasons, how to realize by preventing that the malice user from altering the time-stamp device that improves the reliability in the moment that is used to sign electronically constantly and do not need often to be connected on the network and becoming great problem.
The present invention finishes in order to solve above-mentioned the problems of the prior art, its purpose is to provide a kind of time-stamp device, time adjustment method and time emendation program, constantly improving the reliability in the moment that is used to sign electronically, even and under situation about often not being connected on the network, also can guarantee reliability constantly by preventing that the malice user from altering.
The means that are used to deal with problems
In order to solve above-mentioned problem and to reach goal of the invention, the invention provides a kind of time-stamp device, the local electronic signature that comprises this this locality moment constantly according to internal clocking output, described time-stamp device is characterised in that, comprise: electric wave is obtained the unit constantly, and the electric wave that comprises etalon time by reception is obtained as electric wave this etalon time constantly; Authentication constantly obtains the unit, under the situation that has been prompted authenticate key, obtains this authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; And the time correction unit, according to described electric wave constantly with described local constantly poor, this this locality is proofreaied and correct constantly by the described authentication moment.
In addition, the invention is characterized in, it is continuous continuous under the situation of specified time limit under the situation of stipulated number or during littler than this first threshold with the absolute value of the described local difference constantly number of times littler than first threshold constantly at described electric wave that described authentication obtains the unit constantly, obtain described authentication constantly from described moment distribution device, described time correction unit will authenticate to be obtained this authentication moment of obtaining the unit constantly and is set at described this locality moment.
In addition, the invention is characterized in, described authentication obtains the unit constantly under the absolute value of described difference is situation more than the described first threshold, obtain described authentication constantly from described moment distribution device, described time correction unit will authenticate to be obtained this authentication moment of obtaining the unit constantly and is set at described this locality moment.
In addition, the invention is characterized in that described authentication obtains the unit constantly and obtains described authentication constantly from described moment distribution device termly, described time correction unit will authenticate to be obtained this authentication moment of obtaining the unit constantly and is set at described this locality moment.
In addition, the invention is characterized in, described authentication obtains the unit constantly under the situation of the operation that has been carried out regulation, obtains described authentication constantly from described moment distribution device, and described time correction unit will authenticate to be obtained this authentication moment of obtaining the unit constantly and be set at described this locality moment.
In addition, the invention is characterized in, described time correction unit described authentication constantly obtain the described authentication that obtains the unit constantly with the absolute value of described local difference constantly than the little situation of second threshold value under, should authenticate the moment to be set at this this locality moment.
In addition, the invention is characterized in that it is under the situation more than second threshold value with the absolute value of described local difference constantly constantly that described time correction unit is obtained the described authentication that obtains the unit constantly in described authentication, this this locality is not proofreaied and correct constantly.
In addition, the invention is characterized in, described time correction unit described authentication constantly obtain the described authentication that obtains the unit constantly with the absolute value of described local difference constantly be number of times more than second threshold value continuous under the situation of stipulated number or for this more than second threshold value during continuous under the situation of specified time limit, end to described electronic signature additional described constantly local and export alarm.
In addition, the invention provides a kind of time adjustment method, proofread and correct the local moment of internal clocking output and the deviation of etalon time, described time adjustment method is characterised in that, comprise: electric wave is obtained step constantly, and the electric wave that comprises etalon time by reception is obtained as electric wave this etalon time constantly; Authentication constantly obtains step, under the situation that has been prompted authenticate key, obtains this authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; And the time correction step, according to described electric wave constantly with described local constantly poor, this this locality is proofreaied and correct constantly by the described authentication moment.
In addition, the invention provides a kind of time emendation program, proofread and correct the local moment of internal clocking output and the deviation of etalon time, described time emendation program is characterised in that, make computing machine carry out following steps: electric wave is obtained step constantly, and the electric wave that comprises etalon time by reception is obtained as electric wave this etalon time constantly; Authentication constantly obtains step, under the situation that has been prompted authenticate key, obtains this authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; And the time correction step, according to described electric wave constantly with described local constantly poor, this this locality is proofreaied and correct constantly by the described authentication moment.
The effect of invention
According to the present invention, the electric wave that comprises etalon time by reception is obtained as electric wave etalon time constantly; Under the situation that has been prompted authenticate key, obtain authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; According to electric wave constantly with constantly poor of this locality, carry out local correction constantly constantly by authentication.Therefore, can obtain following effect: carry out local adjustment constantly constantly with authentication constantly by using electric wave, can prevent that the malice user from altering constantly, thereby improved the reliability in the moment that is used to sign electronically, even and under situation about often not being connected on the network, also can guarantee constantly reliability.
In addition, according to the present invention, it is continuous continuous under the situation of specified time limit under the situation of stipulated number or during littler than first threshold with the absolute value of this locality difference constantly number of times littler than first threshold constantly at electric wave that authentication constantly obtains the unit, obtain authentication constantly from moment distribution device, the time correction unit will authenticate to be obtained the authentication that obtains the unit constantly and is set at the local moment constantly.Therefore can obtain following effect: prevented that the malice user from altering constantly, thereby improved the reliability in the moment that is used to sign electronically, even and under situation about often not being connected on the network, also can guarantee reliability constantly.
In addition, according to the present invention, authentication constantly obtains the unit under the absolute value of difference is situation more than the first threshold, obtains authentication constantly from moment distribution device, and the time correction unit will authenticate to be obtained the authentication that obtains the unit constantly and be set at the local moment constantly.Therefore can obtain following effect: prevented that the malice user from altering constantly, thereby improved the reliability in the moment that is used to sign electronically, even and under situation about often not being connected on the network, also can guarantee reliability constantly.
In addition, according to the present invention, authentication constantly obtains the unit and obtains authentication constantly from moment distribution device termly, and the time correction unit will authenticate to be obtained the authentication that obtains the unit constantly and be set at the local moment constantly.Therefore can obtain following effect: prevented that the malice user from altering constantly, thereby improved the reliability in the moment that is used to sign electronically, even and under situation about often not being connected on the network, also can guarantee reliability constantly.
In addition, according to the present invention, authentication constantly obtains the unit under the situation of the operation that has been carried out regulation, obtains authentication constantly from moment distribution device, and the time correction unit will authenticate to be obtained the authentication that obtains the unit constantly and be set at the local moment constantly.Therefore can obtain following effect: prevented that the malice user from altering constantly, thereby improved the reliability in the moment that is used to sign electronically, even and under situation about often not being connected on the network, also can guarantee reliability constantly.
In addition, according to the present invention, the time correction unit authentication constantly obtain the authentication that obtains the unit constantly with the absolute value of this locality difference constantly than the little situation of second threshold value under, will authenticate and be set at this locality moment constantly.Therefore, can obtain the effect that can detect the devious conduct of the network delay of sening as an envoy to effectively.
In addition, according to the present invention, it is under the situation more than second threshold value with the absolute value of this locality difference constantly constantly that the authentication that obtains the unit is constantly obtained in authentication in the time correction unit, does not carry out local correction constantly.Therefore, can obtain following effect: prevent to be taken into the devious conduct that has been subjected to making network delay influence authentication constantly.
In addition, the time correction unit authentication constantly obtain the authentication that obtains the unit constantly with the absolute value of this locality difference constantly be number of times more than second threshold value continuous under the situation of stipulated number or be more than second threshold value during continuous under the situation of specified time limit, end to electronic signature additional constantly local and export alarm.Therefore, can obtain following effect: got rid of the influence of the devious conduct that makes network delay, thereby guaranteed the reliability in the local moment.
Description of drawings
Fig. 1 shows the sketch of the time-stamp device of present embodiment;
Fig. 2 shows the sketch of time correction;
Fig. 3-1 shows the figure of the configuration example 1 of time-stamp device;
Fig. 3-2 shows the figure of the configuration example 2 of time-stamp device;
Fig. 3-3 shows the figure of the configuration example 3 of time-stamp device;
Fig. 4 shows the functional block diagram of the formation of time-stamp device;
Fig. 5 shows the process flow diagram of the handling procedure that does not carry out the initial treatment that electric wave obtains constantly;
Fig. 6 shows the process flow diagram of the handling procedure that carries out the initial treatment that electric wave obtains constantly;
Fig. 7 shows the process flow diagram of the handling procedure of time correction processing;
Fig. 8 shows the sketch to authentication delay correcting process constantly;
Fig. 9 shows the process flow diagram of the handling procedure of the delay correction of issuance server constantly;
Figure 10 shows the process flow diagram of handling procedure of the delay correction of time-stamp device;
Figure 11 shows the figure of the computing machine of carrying out time emendation program;
Figure 12 shows the sketch of existing time-stamp device;
Figure 13 shows the figure that the inside of existing time-stamp device is changed constantly;
Figure 14 shows the figure of the skew (drift) that causes owing to devious conduct in existing time-stamp device.
1 time-stamp device
2 standard wave acceptance divisions
3 oscillators
4 communication interface part
5 display parts
6 input parts
10 control parts
11 electric waves are obtaining section constantly
13 local generating units constantly
14 authentication request constantly portions
15 authentications are obtaining section constantly
16 time correction handling parts
17 timestamp handling parts
20 storage parts
21 authenticate key storage parts
30 time-stamp devices (computing machine)
31 standard wave acceptance divisions
32 oscillators
33 communication interface part
34 display parts
35 input parts
36 volatibility RAM
The 36a authenticate key
37ROM
The 37a time emendation program
38CPU
The 38a time correction is handled
39 buses
51 request messages
52 response messages
101 moment issuance servers
Embodiment
Below, explain the preferred embodiment of time-stamp device of the present invention, time adjustment method and time emendation program with reference to accompanying drawing.In addition, in following embodiment, illustrate time correction of the present invention is handled the situation that is applied to time-stamp device.In addition, the invention is not restricted to present embodiment.
Embodiment
At first, the time-stamp device handled of the time correction that uses Fig. 1~Fig. 3-3 and Figure 12~Figure 14 correspondence to be used as the characteristic of present embodiment describes.In addition, Fig. 1~Fig. 3-the 3rd, about the figure of the time-stamp device of present embodiment, Figure 12~Figure 14 is the figure about existing time-stamp device.
At first, use Figure 12 existing time-stamp device to be carried out briefly bright.Figure 12 shows the sketch of existing time-stamp device.Here, time-stamp device is meant the device that the electronic data of e-file etc. is comprised electronic signature constantly.In recent years, generally exchange e-file by network, the making that proves this e-file constantly and the business (so-called " time business ") of delivery time etc. also obtained significant progress.
For example, if except the text data of e-file, invoice or the receipt etc. relevant such as said case history or the medical diagnosis on death book e-file relevant with tax with finance with medical treatment, stab device and the electronic signature that makes additional service time in view data and image data etc., then can prove the date and time of making of these electronic data and the date and time of transmission.In addition, by built-in time-stamp device in devices such as digital camera and digital camera, also the range of application of time business can be expanded to needs record date and field constantly.
For constructing aforesaid time business, extremely important to the management that is included in the moment in the electronic signature.That is, not only to pursue correctness constantly, also need to make up the mechanism that does not allow change such as the malice user moment.For example, imagination can exist in order to conceal malpractice revises the moment that is attached on the case history or the malice user who changes the invention date of patent, need prevent that therefore these users from changing constantly.
In a kind of mode of this time business, make the distribution facility or the moment between a plurality of time-stamp devices in device and these facilities of reception or device moment of issuing reliably constantly synchronous.In addition, as distribution facility or device reliably constantly, the moment issuance server that is connected with standard wave transmission place, satellite or the Internet etc. that transmission comprises the electric wave of etalon time and etalon time is provided according to the prompting of authenticate key etc. is arranged.
The enterprise of produce and market time-stamp device must guarantee to sell in order to carry out the time business time-stamp device carried out additional " constantly " that electronic signature constantly arranged is below the setting with the deviation of etalon time.Guarantee to make the time business feasible constantly by carrying out this.
But, imagination in the process of circulation that gets involved at time-stamp device the people or the people that buys in can have the moment of change time-stamp device and comprise the malice user of the electronic signature that fictitious time carves.If allow such moment change, then can't carry out moment assurance, therefore can cause the time business infeasible.
Existing time-stamp device shown in Figure 12 has internal clocking in device inside, according to the electric wave moment (T that is included in from the standard wave of standard wave transmission transmission w) revise moment of this internal clocking.And, use revised internal clocking to comprise signature constantly and handle.This time-stamp device is the device that has had the function of so-called " radiowave timepiece " in time-stamp device, only limits to bona fide use person and uses the correctness that can guarantee the moment.
But above-mentioned existing time-stamp device is in case arrived in malice user's the hand and will allow change constantly.Here, use Figure 13 illustrates the change to this moment.Figure 13 shows the figure of the inside change constantly of existing time-stamp device.
As shown in figure 13, malice user takes the place that can't arrive as standard waves such as basements with time-stamp device, and the electric wave of use and standard wave same form (false electric wave) sends the moment of departing from etalon time.Can revise the constantly local of internal clocking according to this vacation electric wave owing to receive the time-stamp device of this vacation electric wave, therefore can cause local constantly departing from the genuine moment.
In the time-stamp device that uses electric wave to revise constantly, in order to prevent this devious conduct, usually take the following countermeasure that prevents: when this locality has constantly surpassed setting (ε) with electric wave difference constantly, end to use electric wave to revise constantly and former state is used constantly local.But when being carried out with temperature operation that this vacation electric wave is cooperated, this prevents that strategy is just inoperative.
Usually, in having the device of internal clocking, use crystal oscillator (Crystal Oscillator) or in crystal oscillator, appended temperature-compensation circuit to realize TCXO (temperature compensating crystal oscillator, Temperature Compensated XtalOscillator) to the stabilization of temperature variation.Particularly the time-stamp device that uses in extensive fields such as circulation stage or field of employment is suitable for TCXO.When with the error being the longitudinal axis (direction that makes progress for just) and when being transverse axis with the temperature variation, these oscillators have the temperature characterisitic of the shape that is roughly quafric curve protruding upward.
Thereby, the time-stamp device that comprises this oscillator heated or cool off all can make internal clocking slack-off.Under the situation of TCXO, control so that in the temperature range of temperature-compensation circuit work error be close to 0, but when surpassed this temperature range, can be sharp produce the error of the delay that causes the moment.
When this temperature attack and the attack of false electric wave are cooperated, owing to the difference of this locality moment with the electric wave moment (electric wave of false electric wave constantly) can be suppressed in the setting (ε), so can allow to make the local etalon time (below, be called " skew that causes owing to devious conduct) that constantly departs from far away.Here, use Figure 14 that the skew that causes owing to this devious conduct is described.Figure 14 shows the figure of the skew that causes owing to devious conduct in existing time-stamp device.
As shown in figure 14, do not carrying out under the situation of devious conduct, as mentioned above, by with setting (ε) be threshold value prevent strategy this locality constantly is suppressed at the error of etalon time (constantly genuine)-ε~+ scope of ε in.On the other hand, attack under the situation of cooperate in that temperature is attacked with false electric wave, local constantly with false electric wave in the error in moment of comprising can be suppressed in-ε~+ scope of ε in, but this locality moment can depart from far away the genuine moment.
As mentioned above, in existing time-stamp device, to the malice user alter constantly prevent strategy and insufficient, can't guarantee the purpose of time-stamp device, i.e. proof or assurance constantly constantly.Therefore, in having the time-stamp device that time correction of the present invention handles, provide to be used to the mechanism that prevents that this from altering constantly.
Below, use Fig. 1 the time-stamp device in the present embodiment to be carried out briefly bright.Fig. 1 shows the sketch of the time-stamp device of present embodiment.As shown in the drawing, in the time-stamp device of present embodiment,, also obtain authentication (T constantly from moment issuance server by the Internet except obtaining above-mentioned electric wave the moment N), and use this authentication constantly the local of internal clocking to be proofreaied and correct constantly.
Here, constantly issuance server is the device that can provide under the situation that has been prompted authenticate key by the etalon time of this server admin, and it is connected on the network such as the Internet and by network provides reliability high etalon time.In addition, in the present embodiment, time-stamp device is obtained etalon time (T from this moment issuance server N) situation describe, but also the moment distribution device of distribution etalon time can be connected on the server with etalon time distribution functions and by this server and obtain etalon time (T N), perhaps also can obtain etalon time (T from the moment distribution device that directly is connected on the network N).
And, in the time-stamp device of present embodiment, use above-mentioned electric wave to be used as constantly being used for obtaining authentication (T constantly from moment issuance server N) trigger.Particularly, monitor this locality moment and electric wave deviation constantly, obtain the authentication moment and use this authentication moment to come correcting local constantly from moment issuance server according to these deviations constantly.
Then, use Fig. 2 further to describe in detail to using this authentication time correction constantly.Fig. 2 is the sketch of time correction.In addition, Fig. 2 be with about the corresponding figure of Figure 14 of existing time-stamp device.In addition, the T among this figure N' express time stabs the constantly local of device.
As shown in Figure 2, in the time-stamp device of present embodiment, setting is used for the threshold value (σ) that guarantees constantly and controls so that the local scope that is positioned at this threshold value (σ) constantly with the deviation in the genuine moment.And, satisfying under the situation of rated condition, by the authentication moment (T that carries out obtaining from moment issuance server N) be set at local (T constantly NThe correction of ') is suppressed at the deviation of this locality moment with etalon time in the scope of threshold value (σ).
Particularly, the time-stamp device of present embodiment monitors local (T constantly N') and the electric wave moment (T W) deviation.And, when the absolute value of this deviation (| T W-T N' |) than the threshold value (ε) of regulation little during during continuous specified time limit, is connected with moment issuance server, obtain the authentication moment (T N), the authentication moment (T that goes forward side by side and be about to obtain N) be set at local (T constantly NThe time correction of ').That is, in this case, judgement might be subjected to above-mentioned ganging up against.In addition, use was used as this specified time limit during waiting in 7th.In addition, when number of pass times rather than during be 7 times (receiving the situation of primary wave every day) when monitoring deviation.And, use under the situation during use with reference to local constantly timer and under the situation of access times the counter of usage count number of times get final product.
In addition, when this absolute value (| T W-T N' |) be the threshold value (ε) of regulation when above, also is connected with moment issuance server, obtain and authenticate the moment (T N), the authentication moment (T that goes forward side by side and be about to obtain N) be set at local (T constantly N') time correction.That is, in this case, judgement might be subjected to certain attack in temperature attack or the attack of false electric wave.
As mentioned above, in the time-stamp device of present embodiment, do not make local (T constantly N') and the electric wave moment (T W) corresponding to moment correction, and be to use electric wave (T constantly W) and local (T constantly NThe deviation of ') is used as obtaining authentication (T constantly N) trigger, and use authentication (T constantly N) come correcting local (T constantly N').Thereby, even also can't change local (T constantly by ganging up against of temperature and false electric wave N') is so can improve local (T constantly NThe reliability of ').In addition, get final product on the issuance server owing to when the user needs, be connected to the moment, so do not need time-stamp device often is connected on the network by network.
Below, use the configuration example of the time-stamp device of Fig. 3-1~Fig. 3-3 pair present embodiment to describe.In addition, the supposition time-stamp device can carry in these configuration examples, but also can be the time-stamp device of fixed.
Fig. 3-1 shows the figure of the configuration example 1 of time-stamp device.In the formation shown in Fig. 3-1, USB (USB (universal serial bus), the Universal Serial Bus) interface that time-stamp device is connected to the personal computer that is connected with network waits and uses.And,, stab the local (T constantly of device service time from the e-file of personal computer reception as signature object N') and authenticate key add and comprise electronic signature constantly, and the e-file after will signing sends personal computer to.
In addition, when this time-stamp device carries out time correction, be connected to constantly on the issuance server and obtain authentication (T constantly by personal computer and the Internet N).In addition, for this time-stamp device, imagination just like wrist-watch or mobile phone such, the user can carry easily and the use-pattern used when needed.
Fig. 3-2 shows the figure of the configuration example 2 of time-stamp device.Configuration example shown in Fig. 3-2 is identical with Fig. 3-1, is connected on USB interface of computer of being connected with the Internet etc. to use.Be with the difference of Fig. 3-1: the function as electronic signature has the program that is installed in the personal computer.
In this configuration example, under the situation of needs electronic signatures, personal computer sends authentication request message by USB interface etc. to time-stamp device.The time-stamp device that receives this message returns to personal computer with this locality moment and authenticate key.So, personal computer additional electron signature and on the authentication object file by signature function that self had.
In addition, when this time-stamp device carries out time correction, below 2 situations with Fig. 3-1 identical: be connected to constantly on the issuance server and obtain authentication (T constantly by personal computer and the Internet N); Imagination just like wrist-watch or mobile phone such, the user can carry easily and the use-pattern used when needed.
Fig. 3-3 shows the figure of the configuration example 3 of time-stamp device.In the configuration example shown in Fig. 3-3, time-stamp device is directly connected on the networks such as the Internet.And, when the e-file that receives as signature object, use local (T constantly N') and authenticate key come after the additional electron signature, the e-file behind the output signature.In addition, in the figure, illustrate time-stamp device and receive the situation of signature object file from the outside, the signature object file is kept at formation in the inner storer etc. but also can be time-stamp device.
In addition, when this time-stamp device carries out time correction, be connected to constantly on the issuance server and obtain authentication (T constantly via personal computer and the Internet N).In addition, for this time-stamp device, imagination just like wrist-watch or mobile phone such, the user can carry easily and the use-pattern this point used when needed is identical with Fig. 3-2 with Fig. 3-1.
In addition, in the configuration example of the time-stamp device shown in Fig. 3-1~Fig. 3-3, the object data that shows electronic signature is the situation of text data, but is not limited to text data, and also electronic data that can view data or image data is such is as the signature object data.In addition, also can be in devices such as digital camera built-in time-stamp device and when each shooting, comprise electronic signature constantly.
Then, use Fig. 4 to illustrate to comprise the formation of the time-stamp device of handling as the time correction of the characteristic of present embodiment 1.Fig. 4 shows the functional block diagram of the formation of time-stamp device 1.In addition, the formation shown in Fig. 4 shows the situation that time-stamp device 1 adopts the formation of Fig. 3-1.
As shown in the drawing, time-stamp device 1 comprises various devices such as standard wave acceptance division 2, oscillator 3, communication interface part 4, display part 5, input part 6, control part 10 and storage part 20.
In addition, control part 10 also comprises: electric wave obtaining section 11, local generating unit 13 constantly, authentication request constantly portion 14, authentication constantly be obtaining section 15, time correction handling part 16 and timestamp handling part 17 constantly, and storage part 20 also comprises authenticate key storage part 21.
Standard wave acceptance division 2 carries out following processing: from standard wave transmission or satellite acceptance criteria electric wave, and the electric wave moment (T that will be constantly synchronous with national standard W) send control part 10 to.For example, when from the standard wave that the standard wave transmission sends, comprising, minute, second, total number of days, year (behind the Gregorian calendar two) since the beginning of the year, what day etc. time information.In addition, can at random specify the timing of these standard wave acceptance division 2 acceptance criteria electric waves, except carrying out the appointment of 7:00 and 19:00 reception etc., can also forcibly receiving processing by user's operation.
Oscillator 3 is the local devices that constantly carry out timing that are used for crystal oscillator etc., carries out providing to control part 10 processing of oscillating impulse.Because imagination time-stamp device 1 is attacked except also can be subjected to temperature using under the various temperature environments, so preferably using the equal stable oscillator of accuracy of timekeeping as TCXO (temperature compensating crystal oscillator), in wider temperature range in this oscillator 3.
Communication interface part 4 is devices that USB interface or network interface card (LAN board) etc. can carry out two-way communication, and it carries out following processing: the transmission of carrying out data between time-stamp device 1 and personal computer receives, and exchanges these data with control part 10.In addition, and the data transmit-receive between the moment issuance server also undertaken by this communication interface 4.
Display part 5 is display devices such as LCD, is used to show warning message or error message from control part 10 or each device, perhaps is used to show the local moment etc.In addition, input part 6 is devices such as power knob, is used for the various operations such as power source ON/OFF of time-stamp device 1, and operating result is notified to control part 10.
Control part 10 generates constantly local, and the time correction that the moment of using standard wave to finish is rightly revised and uses authentication constantly to finish, thus this locality constantly is suppressed at below the setting with the deviation in the genuine moment, and uses the processing that signs electronically constantly of this this locality.
Electric wave obtaining section 11 constantly is the handling parts that carry out following processing: receive the electric wave moment (Tw) and send authentication request constantly portion 14 to from standard wave acceptance division 2.In addition, this electric wave constantly the electric wave obtained of obtaining section 11 constantly (Tw) be used as the judgement key element of authentication request constantly portion 14 when moment issuance server authenticates constantly request.
Local generating unit 13 constantly is to receive from the pulse of oscillator 3 outputs and according to this pulse to generate local (T constantly NThe handling part of ').This this locality is (T constantly N') is to use authentication (T constantly by time correction handling part 13 N) carry out the object that time correction is handled.In addition, this this locality moment generating unit 13 is carried out following processing: the local (T constantly that will generate N') is notified to authentication request portion 14 and timestamp handling part 15 constantly.
Authentication request constantly portion 14 uses the local (T constantly that is generated by this locality moment generating unit 13 with predetermined timing N') and the moment issuance server of authenticate key on network that is stored in the authenticate key storage part 21 authenticate distribution processing of request portion constantly.In addition, when the distribution request that authenticates constantly, by authenticate key to comprising local (T constantly NAfter encrypting, the request message of ') sends communication interface part 4 to.
This authentication request constantly portion 14 also uses the electric wave electric wave obtained of obtaining section 11 (T constantly constantly except forcibly authenticate distribution request constantly according to user's operation W) judge whether to be connected on the moment issuance server, and when needing to connect, authenticate distribution request constantly to moment issuance server.
Specifically, calculate electric wave (Tw) and local (T constantly constantly NThe absolute value of the difference of ') (| Tw-T N' |), and the threshold value (ε) of this absolute value and regulation compared.And, when this absolute value than threshold value (ε) little (| Tw-T N' |<ε) during during continuous specified time limit, authenticate distribution request constantly to moment issuance server.In addition, when this absolute value (| Tw-T N' |) be threshold value (ε) when above (| Tw-T N' | 〉=ε), also authenticate distribution request constantly to moment issuance server.
Illustrate when " | Tw-T N' | during<the ε " authenticate the situation of distribution request constantly for example continuous seven days the time to moment issuance server.Making ε is 0.5 second, carries out primary wave (T constantly every day when supposing W) obtain the time, local (T constantly N') can accepted in the error range of genuine moment maximum deviation 3.5 seconds (7 * 0.5) based on the authentication moment (T N) treatment for correcting.
In addition, here to authenticating the portion 14 of request constantly according to the electric wave moment (T W) and local (T constantly NThe deviation of ') and situation about being connected with moment issuance server describe, but also the meaning that need be connected with moment issuance server can be presented at the display part 5 first-class users of notice, and be connected with moment issuance server according to user's operation.In addition, in this case, obtaining authentication (T constantly from moment issuance server N) before, the intermission stabs and handles (the additional electronic signature processing that has constantly).
Specifically, when the user when the time (timing) is represented the operation (pressing this button etc.) of " compulsory certificate obtains constantly " by input part 6 arbitrarily, the moment issuance server of authentication request constantly portion 14 on network authenticates distribution request constantly.Can on display part 5, show in this case, " | Tw-T N' | the number of times that<ε is continuous or during " or " | Tw-T N' | the number of times that 〉=ε is continuous or during " etc. information, operate to impel the user.
In addition, this authentication request constantly portion 14 can be not yet with user's the trigger that is operating as, but according to by this locality local (T constantly of generating of generating unit 13 constantly N') authenticates distribution request constantly to moment issuance server termly.For example, when hope is suppressed at 45 second in local deviation constantly etalon time,, then authenticates distribution request constantly to moment issuance server and get final product with 90 days intervals once if the deviation in the moment of every day is 0.5 second when maximum.
Authentication constantly obtaining section 15 is the handling parts that carry out following processing: receive authentication that response sends from the request of authentication request constantly portion 14 and from moment issuance server (T constantly by communication interface part 4 N), and the authentication that will the receive moment (T N) send time correction handling part 16 to.In addition, this authentication constantly obtaining section 15 use the authenticate key that is stored in the authenticate key storage part 21 to the authentication of encrypted state (T constantly N) be decrypted.
Time correction handling part 16 is the handling parts that carry out following processing: use from the authentication moment (T that authentication moment obtaining section 15 receives N) proofread and correct by this locality local (T constantly of generating of generating unit 13 constantly N').In addition, it is as follows to adjust the reason that is called " correction " based on the authentication moment constantly.
That is, the constantly original index of electric wave is carved on time, has the delay that produces owing to electric wave hardly, therefore is suitable for use as the moment as local benchmark constantly.But, illustrated like that as using Fig. 2 etc., owing to also might be subjected to the influence of the devious conduct undertaken by false electric wave, so the utmost good faith electric wave is also incorrect constantly.
On the other hand, need authenticate key constantly in order to obtain authentication, therefore authentication constantly has higher reliability constantly than electric wave.Therefore, adjust, will be called " correction ", be called " correction " and will adjust based on the higher authentication moment constantly of reliability based on electric wave moment adjustment constantly in order to distinguish the above-mentioned moment.
Timestamp handling part 17 be to use following local constantly and the authenticate key that is stored in the authenticate key storage part 21 e-file is comprised the handling part of electronic signature constantly, described local constantly by this locality constantly generating unit 13 generate and accepted the time correction of time correction handling part 16.Particularly, the e-file that this timestamp handling part 17 receives as authentication object by communication interface part 4, and after the e-file that receives having been carried out electronic signature, will finish the e-file of signature via communication interface part 4 outputs.
Storage part 20 is the memory devices that are made of volatibility RAM (random access memory, Random Access Memory), comprises that also storage waits the authenticate key storage part 21 of the authenticate key that is distributed in advance during fabrication.Stored after the authenticate key, storage part 20 has been switched on always.As above the purpose of Gou Chenging is to prevent that the malice user from taking out authenticate key.That is, when the malice user wants to take out authenticate key and can stop will the resolving time stab device the time to 20 energisings of this storage part, thereby can lose the authenticate key of storage.
Then, use Fig. 5 and Fig. 6 that the initial treatment of time-stamp device 1 is described.Fig. 5 shows the process flow diagram of the handling procedure that does not carry out the initial treatment that electric wave obtains constantly, and Fig. 6 shows the process flow diagram of the handling procedure that carries out the initial treatment that electric wave obtains constantly.
As shown in Figure 5, do not carrying out under the situation that electric wave obtains constantly, authentication request constantly portion 14 is in order to authenticate (T constantly N) obtain request and be connected with moment issuance server, time correction handling part 16 will by authentication constantly obtaining section 15 from the authentication moment (T that moment issuance server receives N) as local (T constantly NThe initial value of ') (step S101) also finishes initial treatment.
On the other hand, as shown in Figure 6, carrying out under the situation that electric wave obtains constantly, authentication request constantly portion 14 is in order to authenticate (T constantly N) obtain request and be connected with moment issuance server, time correction handling part 16 will by authentication constantly obtaining section 15 from the authentication moment (T that moment issuance server receives N) as local (T constantly NThe initial value of ') (step S201).
Then, electric wave moment obtaining section 11 obtains electric wave (T constantly by standard wave acceptance division 2 W) (step S202), to the electric wave moment (T W) and local (T constantly N') compares (step S203), error in judgement (| T W-T N' |) whether than the threshold value of stipulating (ε) little (step S204).
Hour (step S204, Yes), former state is used local (T constantly when the threshold value (ε) of error ratio regulation N') carries out timing.On the other hand, when this error (| T W-T N' |) for the threshold value (ε) of regulation when above (step S204, No), the use of stand-by time stamp device 1.
Then, use Fig. 7 that the handling procedure in the use of time-stamp device 1 is described.Fig. 7 shows the process flow diagram of the handling procedure of time correction processing.As shown in the drawing, when time-stamp device 1 is brought into use, at first the counter that uses, be used to count read-around ratio is carried out initialization (step S301) in the processing of back.Then, electric wave moment obtaining section 11 obtains electric wave (T constantly with the interval of regulation by standard wave acceptance division 2 W) (step S302).
Then, authentication request constantly portion 14 calculates electric wave (T constantly W) and local (T constantly N') poor, error in judgement | T W-T N' | whether than correction threshold (ε) little (step S303).Work as error | T W-T N' | (step S303, Yes), former state is used local (T constantly than correction threshold (ε) hour N') also continues timing (step S304).On the other hand, work as error | T W-T N' | (step S303 No), to display part 5 output alarms (step S307) etc., is connected with moment issuance server to impel the user for correction threshold (ε) when above.
Then, error in judgement | T W-T N' | whether than the little number of times of threshold value (ε) is setting (α time) above (step S305), when be that α time (step S305 Yes) exports alarms (step S307) etc. to display part 5, is connected with moment issuance server to impel the user when above.On the other hand, when than α time hour (step S305, No), the processing after the repeating step S302.
Then, authentication request constantly portion 14 is in order to authenticate (T constantly N) obtain the request and be connected (step S308) with moment issuance server.Then, when the moment treatment for correcting portion 16 by authentication constantly obtaining section 15 receive authentication (T constantly N) time, with the authentication moment (T that receives N) as local (T constantly NProcessing after ') (step S309), repeating step S301.
Then, use Fig. 8~Figure 10 to obtain authentication (T constantly from moment issuance server N) time the delay correcting process describe.Fig. 8 shows the sketch to authentication delay correcting process constantly.As shown in the drawing, authenticating (T constantly from time-stamp device 1 to moment issuance server 101 N) request to receiving authentication (T constantly N) during in comprise the network delay of return volume.
Particularly, before the request due in issuance server 101 that time-stamp device 1 sends, need τ 1Time, the authentication that sends at moment issuance server 101 is (T constantly N) need τ before stabbing device 1 time of arrival 2Time.That is, time-stamp device 1 is with τ 2The authentication that sends of the delay issuance server time of reception 101 (T constantly N).Usually, owing to these time delay of (τ 1And τ 2) be the little time delay of 100msec degree, thus can not become problem, but when the sharp practice that has been carried out as making network delay, be difficult to guarantee the authentication moment (T that specially obtains N) correctness.
Therefore, time-stamp device 1 is obtained above-mentioned τ 1+ τ 2Value and be worth according to this and infer out τ 2Value.Particularly, authentication request constantly portion 14 sends and comprises the local (T constantly that authenticates when constantly asking NThe request message 51 of ').The moment issuance server 101 that receives this request message 51 returns and comprises authentication (T constantly N) and the local (T constantly that receives NThe response message 52 of ').In addition, the 52a among Fig. 8 shows the local (T constantly that is included in this response message N'), 52b shows authentication (T constantly equally N).
Time-stamp device 1 is by from receiving the moment (T of this response message 52 N'+(τ 1+ τ 2)) in deduct the 52a (T that is included in this response message N') calculates the expression (τ of reciprocal time delay 1+ τ 2).And, by making this (τ 1+ τ 2) infer τ divided by 2 2, and be taken into from the authentication moment (T that receives N) deducted τ 2Value be used as authentication constantly.
In addition, in the present embodiment, make (τ time delay by once asking to obtain 1+ τ 2) infer out τ divided by 2 2, but also can get (τ time delay that repeatedly carries out this request and obtain 1+ τ 2) average, can be orientated also perhaps that a plurality of moment issuance servers 101 are asked and (τ time delay that obtains 1+ τ 2) average.
Then, use Fig. 9 that the handling procedure of the delay correction of moment issuance server 101 is described.Fig. 9 shows the process flow diagram of the handling procedure of the delay correction of issuance server constantly.As shown in the drawing, issuance server 101 is when receive local (T constantly from time-stamp device 1 constantly NWhen ') (step S401), judge self-administered authentication (T constantly N) with the local (T constantly that receives NWhether the absolute value of the difference of ') is than setting (σ ') little (step S402).
As the authentication moment (T N) with the local (T constantly that receives NThe absolute value of the difference of ') than setting (σ ') hour (and step S402, Yes), with the local (T constantly that receives N') and authentication be (T constantly N) send to time-stamp device 1 (step S403) and end process.On the other hand, when this absolute value be that (step S402 No), forbids sending authentication (T constantly to time-stamp device 1 setting (σ ') when above N) (step S404) and send alarm order (step S405) and end process to time-stamp device 1.
Thus, issuance server 101 can be ended to depart from authentication (T constantly far away to having constantly N) local (T constantly NThe time-stamp device 1 of ') provides authentication (T constantly N).Thereby, can prevent to use the high time-stamp device 1 of possibility that has been carried out devious conduct effectively.
Then, use Figure 10 that the handling procedure of the delay correction of time-stamp device 1 is described.Figure 10 shows the process flow diagram of handling procedure of the delay correction of time-stamp device.As shown in the drawing, at first time-stamp device 1 sends local (T constantly to moment issuance server 101 N') (step S501).Then, wait for from the replying of moment issuance server 101, and when receiving the alarm order (step S502, Yes), to output alarm (step S510) such as display part 5 and stop and being connected of moment issuance server.
On the other hand, (step S502 No), does not obtain authentication (T constantly from this message when the message that receives is not the alarm order N) and the previous local (T constantly that sends N') (step S503).Then, calculate the time of reception and the local (T constantly that is included in the message of message NPoor (the τ of ') 1+ τ 2).This poor (τ 1+ τ 2) the round network delay of expression.
Then, judge this time delay of (τ 1+ τ 2) whether the value that obtains divided by 2 than setting (ε ') little (step S505).As (τ 1+ τ 2((step S505 Yes), used the authentication moment (T that receives in ε ') hour than setting in)/2 N) be used as new local (T constantly N') (step S506) and end process.
On the other hand, as (τ time delay 1+ τ 2) value that obtains divided by 2 is setting ((step S505 when ε ') is above, No), (whether the number of times more than the ε ') is continuous stipulated number (step S507) to be judged as setting, when continuous stipulated number is above (in step S507 for certainly), stop afterwards and being connected of moment issuance server in output alarm (step S508).In addition, when read-around ratio than stipulated number hour, the processing after (step S509) repeats step S501 after output alarms such as display part 5.
As mentioned above, in the present embodiment, use by the authentication authentication that obtains from moment issuance server of obtaining section constantly proofread and correct constantly by this locality constantly generating unit generate constantly local, authentication request constantly portion with this locality constantly and electric wave deviation ratio setting constantly little during continuous specified time limit, and the local moment is to issue authentication constantly as trigger to moment issuance server request more than the setting with electric wave deviation constantly, the time correction handling part is proofreaied and correct constantly to this locality on the basis of the time delay in the authentication moment of having considered to obtain by authentication moment obtaining section, can prevent that thus the malice user from altering constantly, thereby can improve the reliability in the moment that is used to sign electronically, even and under situation about often not being connected on the network, also can guarantee constantly reliability.
Shuo Ming various processing can realize by making computing machine carry out cut-and-dried program in the above-described embodiments.Therefore, use Figure 11 that an example of the computing machine of carrying out time emendation program is described below, described time emendation program has function same as the previously described embodiments.Figure 11 shows the figure of the computing machine of carrying out time emendation program.
Here, described " computing machine " is not personal computer, also comprises so-called " embedded computer " in the devices such as being built in digital camera or digital camera.By in the aforementioned calculation machine, carrying out this time emendation program, can guarantee the date and time of the electronic data of text data, view data, image data etc.
As shown in the drawing, computing machine 30 as time-stamp device passes through to connect standard wave acceptance divisions 31, oscillator 32, communication interface part 33, display part 34, input part 35, volatibility RAM36, ROM (ROM (read-only memory) with bus 39, Read Only Memory) 37 and CPU (central processing unit, Central Processing Unit) 38 and constituting.Here, standard wave acceptance division 31, oscillator 32, communication interface part 33, display part 34 and input part 35 are corresponding with standard wave acceptance division 2, oscillator 3, communication interface part 4, display part 5 and efferent 6 shown in Figure 4 respectively.And this computing machine 30 is connected with other computing machine or network via communication interface part 33.
Store time emendation program 37a in advance in ROM37, read the time emendation program 37a among the ROM37 and move by CPU38, as shown in figure 11, time emendation program 37a handles 38a as time correction and plays a role.In addition, in volatibility RAM36, store authenticate key 36a, carry out using when time correction is handled this authenticate key 36a at time emendation program 37a.
But, above-mentioned time emendation program 37a need not be stored among the ROM37 in advance, for example, in " other computing machine (or server) " that also can be stored in floppy disk (FD) that computing machine 30 can read, CD-ROM, photomagneto disk etc. " movably physical medium " or be connected with computing machine 30 by public line, the Internet, LAN, WAN etc. etc., computing machine 30 can be from above-mentioned storage medium fetch program and moving.
(remarks 1) a kind of time-stamp device, according to the local electronic signature that comprises this this locality moment constantly of internal clocking output, described time-stamp device is characterised in that, comprising:
Electric wave is obtained the unit constantly, and the electric wave that comprises etalon time by reception is obtained as electric wave this etalon time constantly;
Authentication constantly obtains the unit, under the situation that has been prompted authenticate key, obtains this authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; And
The time correction unit, according to described electric wave constantly with described local constantly poor, this this locality is proofreaied and correct constantly by the described authentication moment.
(remarks 2) is characterized in that as remarks 1 described time-stamp device,
It is continuous continuous under the situation of specified time limit under the situation of stipulated number or during littler than this first threshold with the absolute value of the described local difference constantly number of times littler than first threshold constantly at described electric wave that described authentication obtains the unit constantly, obtain described authentication constantly from described moment distribution device
Described time correction unit will authenticate constantly to be obtained this authentication that obtains the unit and is set at the described local moment constantly.
(remarks 3) is characterized in that as remarks 2 described time-stamp devices,
Described authentication obtains the unit constantly under the absolute value of described difference is situation more than the described first threshold, obtains the described authentication moment from described moment distribution device,
Described time correction unit will authenticate constantly to be obtained this authentication that obtains the unit and is set at the described local moment constantly.
(remarks 4) is characterized in that as remarks 1 described time-stamp device,
Described authentication obtains the unit constantly and obtains described authentication constantly from described moment distribution device termly,
Described time correction unit will authenticate constantly to be obtained this authentication that obtains the unit and is set at the described local moment constantly.
(remarks 5) is characterized in that as remarks 1 described time-stamp device,
Described authentication obtains the unit constantly under the situation of the operation that has been carried out regulation, obtains described authentication constantly from described moment distribution device,
Described time correction unit will authenticate constantly to be obtained this authentication that obtains the unit and is set at the described local moment constantly.
(remarks 6) is characterized in that as remarks 5 described time-stamp devices,
Described time correction unit described authentication constantly obtain the described authentication that obtains the unit constantly with the absolute value of described local difference constantly than the little situation of second threshold value under, should authenticate the moment to be set at this this locality moment.
(remarks 7) is characterized in that as remarks 6 described time-stamp devices,
It is under the situation more than second threshold value with the absolute value of described local difference constantly constantly that described time correction unit is obtained the described authentication that obtains the unit constantly in described authentication, this this locality is not proofreaied and correct constantly.
(remarks 8) is characterized in that as remarks 7 described time-stamp devices,
Described time correction unit described authentication constantly obtain the described authentication that obtains the unit constantly with the absolute value of described local difference constantly be number of times more than second threshold value continuous under the situation of stipulated number or for this more than second threshold value during continuous under the situation of specified time limit, end to described electronic signature additional described constantly local and export alarm.
(remarks 9) is characterized in that as remarks 8 described time-stamp devices,
Described authentication obtains the unit constantly and calculates from carrying out to the described moment distribution device time delay till described authentication distribution constantly asks to receive this authentication constantly, and the value that obtains divided by 2 in this time delay obtains this authentication moment under than the little situation of the 3rd threshold value.
(remarks 10) is characterized in that as remarks 9 described time-stamp devices,
It is under the situation more than the 3rd threshold value, to carry out described authentication distribution request constantly once more to described moment distribution device that described authentication obtains value that the unit obtains divided by 2 in described time delay constantly.
(remarks 11) is characterized in that as remarks 10 described time-stamp devices,
Described authentication obtains the unit constantly and repeatedly carries out described authentication distribution request constantly to described moment distribution device, and obtains the time delay of representing a plurality of described time delays that calculate.
(remarks 12) is characterized in that as remarks 10 described time-stamp devices,
Described authentication obtains the unit constantly and carries out described authentication distribution request constantly to a plurality of described moment distribution devices, and obtains the time delay of representing a plurality of described time delays that calculate.
(remarks 13) is characterized in that as remarks 11 or 12 described time-stamp devices,
Described authentication obtains the unit constantly and constantly carries out described authentication distribution request constantly by send additional this locality that bears the signature to described moment distribution device, if received described additional constantly local and this authentication that bears the signature constantly from this moment distribution device, then from the expression local moment of the time of reception, deduct this additional bear the signature constantly local, calculate described time delay thus.
(remarks 14) a kind of moment distribution device is characterized in that,
The absolute value that receives the additional local etalon time constantly time that bears the signature and this additional local difference constantly that bears the signature than the little situation of the 4th threshold value under, return on this etalon time, added signature authentication constantly and the local moment that should additional bear the signature.
(remarks 15) a kind of moment distribution device is characterized in that,
Under the absolute value that receives additional local etalon time constantly time that bears the signature and the local difference constantly that should additional bear the signature is situation more than the 4th threshold value, stop constantly, and return the additional warning information that bears the signature to this request source to the request source return authentication.
(remarks 16) a kind of time adjustment method is proofreaied and correct the local moment of internal clocking output and the deviation of etalon time, and described time adjustment method is characterised in that, comprising:
Electric wave is obtained step constantly, and the electric wave that comprises etalon time by reception is obtained as electric wave this etalon time constantly;
Authentication constantly obtains step, under the situation that has been prompted authenticate key, obtains this authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; And
The time correction step, according to described electric wave constantly with described local constantly poor, this this locality is proofreaied and correct constantly by the described authentication moment.
(remarks 17) is characterized in that as remarks 16 described time adjustment methods,
Constantly obtain in the step in described authentication, continuous continuous under the situation of specified time limit under the situation of stipulated number or during littler with the absolute value of the described local difference constantly number of times littler constantly at described electric wave than this first threshold than first threshold, to described moment distribution device, obtain described authentication constantly from described moment distribution device
In described time correction step, will obtain this authentication that step obtains constantly by this authentication and be set at the described local moment constantly.
(remarks 18) is characterized in that as remarks 16 or 17 described time adjustment methods,
Constantly obtain in the step in described authentication, under the absolute value of described difference is situation more than the described first threshold, obtain the described authentication moment from described moment distribution device,
In described time correction step, will obtain this authentication that step obtains constantly by this authentication and be set at the described local moment constantly.
(remarks 19) a kind of time emendation program is proofreaied and correct the local moment of internal clocking output and the deviation of etalon time, and described time emendation program is characterised in that, makes computing machine carry out following steps:
Electric wave is obtained step constantly, and the electric wave that comprises etalon time by reception is obtained as electric wave this etalon time constantly;
Authentication constantly obtains step, under the situation that has been prompted authenticate key, obtains this authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; And
The time correction step, according to described electric wave constantly with described local constantly poor, this this locality is proofreaied and correct constantly by the described authentication moment.
(remarks 20) is characterized in that as remarks 19 described time emendation programs,
Constantly obtain in the step in described authentication; Constantly continuous continuous in the situation of specified time limit in the situation of stipulated number or during littler than this first threshold with the absolute value of the described local difference constantly number of times littler than first threshold at described electric wave; And/or absolute value of this difference be this number of times more than first threshold continuous in the situation of stipulated number or be this more than first threshold during continuous in the situation of specified time limit; Obtain described authentication constantly from described moment distribution device
In described time correction step, will obtain this authentication that step obtains constantly by this authentication and be set at the described local moment constantly.
Industrial applicibility
As mentioned above, time-stamp device of the present invention, time adjustment method and time emendation program The situation of the reliability in the moment that assurance provides for needs is useful, is particularly suitable for as in the time business Employed time-stamp device.

Claims (20)

1. time-stamp device comprises the electronic signature constantly of this this locality constantly according to internal clocking output local, and described time-stamp device is characterised in that, comprising:
Electric wave is obtained the unit constantly, and the electric wave that comprises etalon time by reception is obtained as electric wave this etalon time constantly;
Authentication obtains the unit constantly, obtains this authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; And
The time correction unit, according to described electric wave constantly with described local constantly poor, this this locality is proofreaied and correct constantly by the described authentication moment.
2. time-stamp device as claimed in claim 1 is characterized in that,
It is continuous continuous under the situation of specified time limit under the situation of stipulated number or during littler than this first threshold with the absolute value of the described local difference constantly number of times littler than first threshold constantly at described electric wave that described authentication obtains the unit constantly, obtain described authentication constantly from described moment distribution device
Described time correction unit will authenticate constantly to be obtained this authentication that obtains the unit and is set at the described local moment constantly.
3. time-stamp device as claimed in claim 2 is characterized in that,
Described authentication obtains the unit constantly under the absolute value of described difference is situation more than the described first threshold, obtains the described authentication moment from described moment distribution device,
Described time correction unit will authenticate constantly to be obtained this authentication that obtains the unit and is set at the described local moment constantly.
4. time-stamp device as claimed in claim 1 is characterized in that,
Described authentication obtains the unit constantly and obtains described authentication constantly from described moment distribution device termly,
Described time correction unit will authenticate constantly to be obtained this authentication that obtains the unit and is set at the described local moment constantly.
5. time-stamp device as claimed in claim 1 is characterized in that,
Described authentication obtains the unit constantly under the situation of the operation that has been carried out regulation, obtains described authentication constantly from described moment distribution device,
Described time correction unit will authenticate constantly to be obtained this authentication that obtains the unit and is set at the described local moment constantly.
6. time-stamp device as claimed in claim 5 is characterized in that,
Described time correction unit described authentication constantly obtain the described authentication that obtains the unit constantly with the absolute value of described local difference constantly than the little situation of second threshold value under, should authenticate the moment to be set at this this locality moment.
7. time-stamp device as claimed in claim 6 is characterized in that,
It is under the situation more than second threshold value with the absolute value of described local difference constantly constantly that described time correction unit is obtained the described authentication that obtains the unit constantly in described authentication, this this locality is not proofreaied and correct constantly.
8. time-stamp device as claimed in claim 7 is characterized in that,
Described time correction unit described authentication constantly obtain the described authentication that obtains the unit constantly with the absolute value of described local difference constantly be number of times more than second threshold value continuous under the situation of stipulated number or for this more than second threshold value during continuous under the situation of specified time limit, end to described electronic signature additional described constantly local and export alarm.
9. time-stamp device as claimed in claim 8 is characterized in that,
Described authentication obtains the unit constantly and calculates from carrying out to the described moment distribution device time delay till described authentication distribution constantly asks to receive this authentication constantly, and the value that obtains divided by 2 in this time delay obtains this authentication moment under than the little situation of the 3rd threshold value.
10. time-stamp device as claimed in claim 9 is characterized in that,
It is under the situation more than the 3rd threshold value, to carry out described authentication distribution request constantly once more to described moment distribution device that described authentication obtains value that the unit obtains divided by 2 in described time delay constantly.
11. time-stamp device as claimed in claim 10 is characterized in that,
Described authentication obtains the unit constantly and repeatedly carries out described authentication distribution request constantly to described moment distribution device, and obtains the time delay of representing a plurality of described time delays that calculate.
12. time-stamp device as claimed in claim 10 is characterized in that,
Described authentication obtains the unit constantly and carries out described authentication distribution request constantly to a plurality of described moment distribution devices, and obtains the time delay of representing a plurality of described time delays that calculate.
13. as claim 11 or 12 described time-stamp devices, it is characterized in that,
Described authentication obtains the unit constantly and constantly carries out described authentication distribution request constantly by send additional this locality that bears the signature to described moment distribution device, if received described additional constantly local and this authentication that bears the signature constantly from this moment distribution device, then from the expression local moment of the time of reception, deduct this additional bear the signature constantly local, calculate described time delay thus.
14. a moment distribution device is characterized in that,
The absolute value that receives the additional local etalon time constantly time that bears the signature and this additional local difference constantly that bears the signature than the little situation of the 4th threshold value under, return on this etalon time, added signature authentication constantly and the local moment that should additional bear the signature.
15. a moment distribution device is characterized in that,
Under the absolute value that receives additional local etalon time constantly time that bears the signature and the local difference constantly that should additional bear the signature is situation more than the 4th threshold value, stop constantly, and return the additional warning information that bears the signature to this request source to the request source return authentication.
16. a time adjustment method is proofreaied and correct the local moment of internal clocking output and the deviation of etalon time, described time adjustment method is characterised in that, comprising:
Electric wave is obtained step constantly, and the electric wave that comprises etalon time by reception is obtained as electric wave this etalon time constantly;
Authentication constantly obtains step, under the situation that has been prompted authenticate key, obtains this authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; And
The time correction step, according to described electric wave constantly with described local constantly poor, this this locality is proofreaied and correct constantly by the described authentication moment.
17. time adjustment method as claimed in claim 16 is characterized in that,
Constantly obtain in the step in described authentication, continuous continuous under the situation of specified time limit under the situation of stipulated number or during littler with the absolute value of the described local difference constantly number of times littler constantly at described electric wave than this first threshold than first threshold, obtain described authentication constantly from described moment distribution device
In described time correction step, will obtain this authentication that step obtains constantly by this authentication and be set at the described local moment constantly.
18. as claim 16 or 17 described time adjustment methods, it is characterized in that,
Constantly obtain in the step in described authentication, under the absolute value of described difference is situation more than the described first threshold, obtain the described authentication moment from described moment distribution device,
In described time correction step, will obtain this authentication that step obtains constantly by this authentication and be set at the described local moment constantly.
19. a time emendation program is proofreaied and correct the local moment of internal clocking output and the deviation of etalon time, described time emendation program is characterised in that, makes computing machine carry out following steps:
Electric wave is obtained step constantly, and the electric wave that comprises etalon time by reception is obtained as electric wave this etalon time constantly;
Authentication constantly obtains step, under the situation that has been prompted authenticate key, obtains this authentication constantly from the authentication moment distribution device constantly that distribution and etalon time are synchronous; And
The time correction step, according to described electric wave constantly with described local constantly poor, this this locality is proofreaied and correct constantly by the described authentication moment.
20. time emendation program as claimed in claim 19 is characterized in that,
Constantly obtain in the step in described authentication; Constantly continuous continuous in the situation of specified time limit in the situation of stipulated number or during littler than this first threshold with the absolute value of the described local difference constantly number of times littler than first threshold at described electric wave; And/or absolute value of this difference be this number of times more than first threshold continuous in the situation of stipulated number or be this more than first threshold during continuous in the situation of specified time limit; Obtain described authentication constantly from described moment distribution device
In described time correction step, will obtain this authentication that step obtains constantly by this authentication and be set at the described local moment constantly.
CN 200580047407 2005-02-28 2005-02-28 Time-stamp device, time emendation method and time emendation program Pending CN101111813A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200580047407 CN101111813A (en) 2005-02-28 2005-02-28 Time-stamp device, time emendation method and time emendation program

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 200580047407 CN101111813A (en) 2005-02-28 2005-02-28 Time-stamp device, time emendation method and time emendation program

Publications (1)

Publication Number Publication Date
CN101111813A true CN101111813A (en) 2008-01-23

Family

ID=39043098

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 200580047407 Pending CN101111813A (en) 2005-02-28 2005-02-28 Time-stamp device, time emendation method and time emendation program

Country Status (1)

Country Link
CN (1) CN101111813A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105247810A (en) * 2013-05-29 2016-01-13 威德米勒界面有限公司及两合公司 Method for detecting in receiver transmitter local time
CN107645374A (en) * 2016-07-22 2018-01-30 发那科株式会社 For maintaining server, method and the system of moment precision
CN111711949A (en) * 2020-06-08 2020-09-25 烟台东方威思顿电气有限公司 4G communication encryption algorithm based on time

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105247810A (en) * 2013-05-29 2016-01-13 威德米勒界面有限公司及两合公司 Method for detecting in receiver transmitter local time
CN105247810B (en) * 2013-05-29 2019-06-28 威德米勒界面有限公司及两合公司 Method for detecting transmitter local zone time in receiver
CN107645374A (en) * 2016-07-22 2018-01-30 发那科株式会社 For maintaining server, method and the system of moment precision
CN111711949A (en) * 2020-06-08 2020-09-25 烟台东方威思顿电气有限公司 4G communication encryption algorithm based on time
CN111711949B (en) * 2020-06-08 2023-04-18 烟台东方威思顿电气有限公司 4G communication encryption method based on time

Similar Documents

Publication Publication Date Title
US7257393B2 (en) Method and apparatus for time calibration
KR20020007860A (en) Method of correcting time in internet and trading time management method using thereof
US9654297B2 (en) Systems, methods and apparatuses for secure time management
EP1229424A2 (en) Method and apparatus for synchronizing real-time clocks of time stamping cryptographic modules
US20060195697A1 (en) Method of supplying power to time-stamping device, security device, and time-correcting device
CN102007787A (en) A method and apparatus for secure trusted time techniques
CN101133401A (en) Time-stamp device, time emendation method and time emendation program
CN103370901A (en) Long-term-signature terminal, long-term-signature server, long-term-signature terminal program, and long-term-signature server program
WO2002054656A2 (en) Use of time-stamps and digital signatures
EP1806672A2 (en) Device and method for storing current time information
US20080183623A1 (en) Secure Provisioning with Time Synchronization
CN101111813A (en) Time-stamp device, time emendation method and time emendation program
JP4612040B2 (en) Time stamp device, time calibration method, and time calibration program
EP1841124B1 (en) Flexible generation of trusted time sources
US20040000587A1 (en) Electronic balloting module and electronic balloting method
US20080022116A1 (en) Time stamp apparatus, time correcting method, and time correcting program
Rousseau Secure time in a portable device
KR102251730B1 (en) Time-synchronized OTP authentication method
KR20090098928A (en) Time synchronized challenge-response one time password and authentication system based on it
JP2004260666A (en) Time stamp certificate preparation method, its device, and its program
JPH11239130A (en) Method and system for certifying data, electronic transaction system storage medium storing data certification program and storage medium storing electronic transaction program
US20090210926A1 (en) method for maintaining plesiochronous entities
JP2004062497A (en) Data communication system and method for correcting data generation time

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C02 Deemed withdrawal of patent application after publication (patent law 2001)
WD01 Invention patent application deemed withdrawn after publication

Open date: 20080123