CN102271138A - Verifying method for electronic signature, terminal and server - Google Patents

Verifying method for electronic signature, terminal and server Download PDF

Info

Publication number
CN102271138A
CN102271138A CN2011102524879A CN201110252487A CN102271138A CN 102271138 A CN102271138 A CN 102271138A CN 2011102524879 A CN2011102524879 A CN 2011102524879A CN 201110252487 A CN201110252487 A CN 201110252487A CN 102271138 A CN102271138 A CN 102271138A
Authority
CN
China
Prior art keywords
terminal
electronic signature
pressure information
sign
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2011102524879A
Other languages
Chinese (zh)
Other versions
CN102271138B (en
Inventor
何小展
师坚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Transsion Holdings Co Ltd
Original Assignee
Yulong Computer Telecommunication Scientific Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Yulong Computer Telecommunication Scientific Shenzhen Co Ltd filed Critical Yulong Computer Telecommunication Scientific Shenzhen Co Ltd
Priority to CN201110252487.9A priority Critical patent/CN102271138B/en
Priority claimed from CN201110252487.9A external-priority patent/CN102271138B/en
Publication of CN102271138A publication Critical patent/CN102271138A/en
Application granted granted Critical
Publication of CN102271138B publication Critical patent/CN102271138B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Collating Specific Patterns (AREA)

Abstract

The invention provides a verifying method for an electronic signature, and the method comprises the following steps of: 102, recording the graphical information of the electronic signature and pressure information generated to a touch input device in a signature process when a first terminal receives the electronic signature input on the touch input device; 104, sending the pressure information to a server and sending the graphical information and pressure information of the electronic signature to a second terminal; and 106, when the electronic signature is verified on the second terminal, sending a verification request to the server by using the second terminal, and determining the truth of the electronic signature by verifying the graphical information and pressure information of the electronic signature. Correspondingly, the invention further provides a terminal and the server. According to the technical scheme, the truth of the electronic signature can be checked; the safety of the electronic signature is improved; the signature information is prevented from being forged; and the unnecessary loss caused to a user is avoided.

Description

The verification method that is used to sign electronically, terminal and server
Technical field
The present invention relates to electronic information checking field, in particular to a kind of verification method that is used to sign electronically, a kind of terminal and a kind of server.
Background technology
The application of the feasible electronic signature of Development of E-business more and more widely, the user can directly write signature on the equipment of band touch-screen, all have touch screen function such as at present a lot of mobile phones or intelligent terminal, the user issues the other side with multimedia message or other modes by network then, the affirmation that signs electronically, but because hand-written signature on the handset touch panel, writing is easy to imitated, the electronic signature shelves also are replicated easily, will make the user suffer tremendous loss in case be deceived; Simultaneously, for the authentication of some ecommerce contacts, also have big leak, this type of safety issue is perplexing the user just at present, and also yoke a major issue of electronic signature development.
Therefore, need a kind of false proof and verification method of new electronic signature, can check the true and false of electronic signature, improve the fail safe of electronic signature, prevent that signing messages from faking, avoid causing unnecessary loss to the user.
Summary of the invention
Technical problem to be solved by this invention is, a kind of verification method that is used to sign electronically, terminal and server are provided, make and the true and false that to check electronic signature improve the fail safe that signs electronically, prevent the signing messages fraud, avoid causing unnecessary loss to the user.
In view of this, the present invention proposes a kind of verification method that is used to sign electronically, it is characterized in that, comprise: step 102, during electronic signature that first terminal is imported on receiving touch input device, write down the pressure information that in the graphical information of described electronic signature and the signature process described touch input device is produced; Step 104 is sent to described pressure information server and the graphical information of described electronic signature, described pressure information is sent to second terminal; Step 106, when verifying described electronic signature on described second terminal, described second terminal sends the checking request to described server, and by verifying the described graphical information and the described pressure information of described electronic signature, to determine the true and false of described electronic signature.In this technical scheme, terminal also can write down the pressure information that this process produces in the graphical information of recorded electronic signature, because the dynamics difference of each signature, therefore the pressure information for signature generation each time also is unique, increases the fail safe of electronic signature with this.
In technique scheme, preferably, described step 104 also comprises: the sign of described electronic signature is sent to described second terminal and the sign of described electronic signature, the sign of described second terminal are sent to described server.The sign that the sign of electronic signature and the sign of second terminal can be used for making the pressure information of storage to be associated with two parties for the IMEI string of the character string of the user ID of two parties in server, both sides' agreement or statement, user's ID card No., user's phone number, mobile phone terminal number etc., by sign, the sign of second terminal and the corresponding stored of pressure information of electronic signature, make pressure information be convenient to search, verify simultaneously; Simultaneously, electronic signature and transmit leg binding can prevent that people's malice from pretending to be transmit leg, and will sign electronicallys and the sign of second terminal is bound, and can prevent that then other-end from duplicating the electronic signature that use sends to second terminal.
In technique scheme, preferably, in described step 102, if described touch input device is the resistive touch input unit, then described first terminal writes down described pressure information by the variation of the resistance sizes that causes in the signature process; And if described touch input device is the capacitance touch input unit, then described first terminal writes down described pressure information by the variation of the capacitance size that causes in the signature process.In this technical scheme, touch input device can be divided into resistance-type and condenser type, specifically can comprise all devices that possess touch-input function (as electronic signature etc.) and finish the required parts of this function such as the touch-screen of touch-screen mobile phone, panel computer and touch pad, terminal is according to the difference of device, by the variation of resistance or capacitance size, record corresponding pressure information.
In technique scheme, preferably, described first terminal is carried out encryption to described pressure information and is obtained encrypting pressure information; And described first terminal sends described encryption pressure information when second terminal sends described graphical information.In this technical scheme, need the pressure information that obtains is carried out encryption, even then other people obtain this pressure information, also be difficult to read and crack, increase fail safe; Simultaneously, electronic signature is when sending, and the pressure information after graphical information and the encryption all need send, so that verify.
In technique scheme, preferably, in described step 106, specifically comprise: when described second terminal is verified described electronic signature, determine whether described graphical information is correct,, determine that then described electronic signature is invalid if described graphical information is incorrect; If described graphical information is correct, then sign and the described encryption pressure information with the sign of described electronic signature, described second terminal is uploaded to described server, on described server, described encryption pressure information is decrypted, seek the sign and the pressure information of second terminal corresponding with the sign of described electronic signature, and it is whether consistent with the described corresponding pressure information that finds according to the pressure information after the deciphering, and whether the sign of described second terminal is consistent with the sign of described second terminal that finds, and determines whether described electronic signature is effective; And described server is deleted the sign and the described pressure information of the sign of described electronic signature, described second terminal after definite described electronic signature effectively.In this technical scheme, the graphical information and the pressure information of electronic signature all need be verified, wherein, at first graphical information is verified by second terminal, if graphical information is incorrect then sign electronically invalid, if graphical information is correct, then send the sign (as subscriber phone number) of electronic signature by second terminal to server, the sign of second terminal and encryption pressure information, wherein, the sign of electronic signature is the user's of first terminal a sign, be used for finding out the sign and the pressure information of second terminal that is stored in server, then corresponding second terminal of the sign of second terminal and user thereof, by with server in the sign of second terminal of storing compare, prove that second terminal is second terminal of user's appointment of first terminal, prevent that electronic signature is replicated; Pressure information after deciphering with the process server by the pressure information that will find out simultaneously compares, thus the true and false of checking electronic signature.After determining electronic signature effectively, the corresponding information of deletion can guarantee that this electronic signature can not be used again from server.
In technique scheme, after described second terminal was proved to be successful described pressure information, deletion was stored in the sign and the described pressure information of the sign of the described electronic signature on the described server, described second terminal.In this technical scheme, specifically can send removal request by second terminal to server, server carries out deletion action according to removal request, after determining electronic signature effectively, the corresponding information of deletion can guarantee that this electronic signature can not be used again from server.
The present invention also provides a kind of terminal, comprising: logging modle, when receiving the electronic signature of importing on the touch input device, write down the pressure information that in the graphical information of described electronic signature and the signature process described touch input device is produced; Authentication module during from the electronic signature of other-end, is verified the described graphical information and the described pressure information of described electronic signature, to determine the true and false of described electronic signature in checking.In this technical scheme, logging modle also can write down the pressure information that this process produces in the graphical information of recorded electronic signature, because the dynamics difference of each signature, therefore the pressure information for signature generation each time also is unique, increases the fail safe of electronic signature with this; And, effectively increased the fail safe of electronic signature by the double verification of authentication module to graphical information and pressure information.
In technique scheme, preferably, described logging modle is under the situation of resistive touch input unit at described touch input device, by the variation of the resistance sizes that causes in the signature process, writes down described pressure information; And described logging modle is under the situation of capacitance touch input unit at described touch input device, by the variation of the capacitance size that causes in the signature process, writes down described pressure information.In this technical scheme, touch input device can be divided into resistance-type and condenser type, specifically can comprise all devices that possess touch-input function (as electronic signature etc.) and finish the required parts of this function such as the touch-screen of touch-screen mobile phone, panel computer and touch pad, terminal is according to the difference of device, by the variation of resistance or capacitance size, record corresponding pressure information.
In technique scheme, preferably, also comprise: encrypting module, carry out encryption to described pressure information and obtain encrypting pressure information; Sending module, send the checking request to described server, or after described electric signing verification success, send removal request to described server, and in described graphical information that sends described electronic signature to second terminal and described encryption pressure information, the sign of described electronic signature, the sign of second terminal, described pressure information are sent to described server.In this technical scheme, the sign that the sign of electronic signature and the sign of second terminal can be used for making the pressure information of storage to be associated with two parties for the IMEI string of the character string of the user ID of two parties in server, both sides' agreement or statement, user's ID card No., user's phone number, mobile phone terminal number etc., by sign, the sign of second terminal and the corresponding stored of pressure information of electronic signature, make pressure information be convenient to search, verify simultaneously; Simultaneously, electronic signature and transmit leg binding can prevent that people's malice from pretending to be transmit leg, and will sign electronicallys and the sign of second terminal is bound, and can prevent that then other-end from duplicating the electronic signature that use sends to second terminal.
In technique scheme, preferably, described authentication module comprises: the graphical information authentication module, determine whether described graphical information is correct, and if described graphical information is incorrect, determine that then described electronic signature is invalid; And pressure information authentication module, when described graphical information authentication module determines that described graphical information is correct, send the request of the described pressure information of checking to described server, and make described sending module send the sign and the described encryption pressure information of the sign of described electronic signature, described second terminal to described server, and determine according to result whether the sign of described second terminal and described pressure information be correct, and then determine whether described electronic signature is effective from described server.In this technical scheme, the graphical information and the pressure information of electronic signature all need be verified, wherein, at first graphical information is verified by the graphical information authentication module, if graphical information is incorrect then sign electronically invalid, if graphical information is correct, then by the pressure information authentication module after server sends request, send the sign (as subscriber phone number) of electronic signature by sending module, the sign of second terminal and encryption pressure information, wherein, the sign of electronic signature is the user's of first terminal a sign, be used for finding out the sign and the pressure information of second terminal that is stored in server, then corresponding second terminal of the sign of second terminal and user thereof, by with server in the sign of second terminal of storing compare, prove that second terminal is second terminal of user's appointment of first terminal, prevent that electronic signature is replicated; Pressure information after deciphering with the process server by the pressure information that will find out simultaneously compares, thus the true and false of checking electronic signature.
In technique scheme, preferably, also comprise: described authentication module is verified the described pressure information of described electronic signature on described second terminal.In this technical scheme, after can also sending the checking request by second terminal to server, the pressure information of the electronic signature that second terminal sends first terminal and store from this server is downloaded, specifically can be by in server, sending the sign of second terminal, thereby inquire corresponding electronic signature pressure information, compare at the pressure information of the electronic signature that will receive by authentication module on second terminal and the pressure information under the download then, finish checking electronic signature.
According to another aspect of the invention, also proposed a kind of server, having comprised: memory module, store the sign of the electronic signature that first terminal uploads, the sign and the pressure information of second terminal accordingly; Authentication module, in the sign of receiving sign from the electronic signature to be verified of second terminal, second terminal with when encrypting pressure information, encryption pressure information deciphering with described electronic signature to be verified, the sign and the pressure information of corresponding second terminal of sign of searching and described electronic signature, whether consistent according to the pressure information after the deciphering with described corresponding pressure information, and whether the sign of described second terminal is consistent with the sign of described corresponding second terminal, determine whether described electronic signature is effective, and will verify that the result is sent to described terminal; And removing module, after described authentication module is determined described electronic signature effectively, delete the sign and the described pressure information of the sign of described electronic signature, described second terminal.In this technical scheme, the sign of the sign that memory module will sign electronically, second terminal and pressure information corresponding stored when pressure information is associated with two parties, are searched when being convenient to verify; During checking, the sign of electronic signature is the user's of first terminal a sign, be used for finding out the sign and the pressure information of second terminal that is stored in server, then corresponding second terminal of the sign of second terminal and user thereof, by with server in the sign of second terminal of storing compare, prove that second terminal is second terminal of user's appointment of first terminal, prevent that electronic signature is replicated; Pressure information after deciphering with the process server by the pressure information that will find out simultaneously compares, thus the true and false of checking electronic signature.After determining electronic signature effectively, the corresponding information of deletion can guarantee that this electronic signature can not be used again from server.In addition, after server received checking request from second terminal, the sign of second terminal that sends according to second terminal inquired for the pressure information of the electronic signature of storage and downloads for second terminal.
Description of drawings
Fig. 1 shows the flow chart that is used to the verification method that signs electronically according to an embodiment of the invention;
Fig. 2 shows the block diagram of terminal according to an embodiment of the invention;
Fig. 3 shows the block diagram of authentication module according to an embodiment of the invention;
Fig. 4 shows the block diagram of server according to an embodiment of the invention;
Fig. 5 shows the flow chart of checking electronic signature on terminal according to an embodiment of the invention;
Fig. 6 shows the particular flow sheet that is used to the verification method that signs electronically according to an embodiment of the invention; And
Fig. 7 shows and uses electronic signature to get the flow chart of procurement payment according to an embodiment of the invention.
Embodiment
In order more to be expressly understood above-mentioned purpose of the present invention, feature and advantage, the present invention is further described in detail below in conjunction with the drawings and specific embodiments.
Set forth a lot of details in the following description so that fully understand the present invention, still, the present invention can also adopt other to be different from other modes described here and implement, and therefore, the present invention is not limited to the restriction of following public specific embodiment.
Fig. 1 shows the flow chart that is used to the verification method that signs electronically according to an embodiment of the invention.
As shown in the figure, the verification method that is used to according to an embodiment of the invention to sign electronically comprises:
When step 102, electronic signature that first terminal is imported on receiving touch input device, the pressure information that in the graphical information of recorded electronic signature and the signature process touch input device is produced; Step 104 is sent to described pressure information server and the graphical information of described electronic signature, described pressure information is sent to second terminal; Step 106, when checking signed electronically on second terminal, second terminal to server sent the checking request, and by verifying the graphical information and the pressure information of electronic signature, to determine the true and false of electronic signature.In this technical scheme, terminal also can write down the pressure information that this process produces in the graphical information of recorded electronic signature, because the dynamics difference of each signature, therefore the pressure information for signature generation each time also is unique, increases the fail safe of electronic signature with this.
In technique scheme, preferably, described step 104 also comprises: the sign of described electronic signature is sent to second terminal and the sign of described electronic signature, the sign of described second terminal are sent to server.The sign that the sign of electronic signature and the sign of second terminal can be used for making the pressure information of storage to be associated with two parties for the IMEI string of the character string of the user ID of two parties in server, both sides' agreement or statement, user's ID card No., user's phone number, mobile phone terminal number etc., by sign, the sign of second terminal and the corresponding stored of pressure information of electronic signature, make pressure information be convenient to search, verify simultaneously; Simultaneously, electronic signature and transmit leg binding can prevent that people's malice from pretending to be transmit leg, and the sign that will sign electronically with second terminal is bound, can prevent that then other-end from duplicating the electronic signature that use sends to second terminal, make when second terminal is not correct second terminal, can't be proved to be successful.
In technique scheme, in step 102, if touch input device is the resistive touch input unit, then first terminal writes down pressure information by the variation of the resistance sizes that causes in the signature process; And if touch input device is the capacitance touch input unit, then first terminal writes down pressure information by the variation of the capacitance size that causes in the signature process.In this technical scheme, touch input device can be divided into resistance-type and condenser type, specifically can comprise all devices that possess touch-input function (as electronic signature etc.) and finish the required parts of this function such as the touch-screen of touch-screen mobile phone, panel computer and touch pad, terminal is according to the difference of device, by the variation of resistance or capacitance size, record corresponding pressure information.
In technique scheme, first terminal is carried out encryption to pressure information and is obtained encrypting pressure information; And first terminal when second terminal sends graphical information, send and encrypt pressure information.In this technical scheme, need the pressure information that obtains is carried out encryption, even then other people obtain this pressure information, also be difficult to read and crack, increase fail safe; Simultaneously, electronic signature is when sending, and the pressure information after graphical information and the encryption all need send, so that verify.
In technique scheme, in step 104, specifically comprise: when second terminal is verified electronic signature, determine whether graphical information is correct,, determine that then electronic signature is invalid if graphical information is incorrect; If graphical information is correct, then the sign of the sign that will sign electronically, second terminal and encryption pressure information upload onto the server, on server, be decrypted encrypting pressure information, seek the sign and the pressure information of second terminal corresponding with the sign of electronic signature, and it is whether consistent with the corresponding pressure information that finds according to the pressure information after the deciphering, and whether the sign of second terminal is consistent with the sign of second terminal that finds, and determines whether electronic signature is effective; And described server is deleted the sign and the described pressure information of the sign of described electronic signature, described second terminal after definite described electronic signature effectively.In this technical scheme, the graphical information and the pressure information of electronic signature all need be verified, wherein, at first graphical information is verified by second terminal, if graphical information is incorrect then sign electronically invalid, if graphical information is correct, then send the sign (as subscriber phone number) of electronic signature by second terminal to server, the sign of second terminal and encryption pressure information, wherein, the sign of electronic signature is the user's of first terminal a sign, be used for finding out the sign and the pressure information of second terminal that is stored in server, then corresponding second terminal of the sign of second terminal and user thereof, by with server in the sign of second terminal of storing compare, prove that second terminal is second terminal of user's appointment of first terminal, prevent that electronic signature is replicated; Pressure information after deciphering with the process server by the pressure information that will find out simultaneously compares, thus the true and false of checking electronic signature.After determining electronic signature effectively, the corresponding information of deletion can guarantee that this electronic signature can not be used again from server.
Fig. 2 shows the block diagram of terminal according to an embodiment of the invention.
According to another aspect of the invention, a kind of terminal 200 has as shown in Figure 2 also been proposed, comprise: logging modle 202, when receiving the electronic signature of importing on the touch input device, the graphical information of recorded electronic signature, with the pressure information that in the signature process touch input device is produced, logging modle 202 is in the graphical information of recorded electronic signature, also can write down the pressure information that this process produces, because the dynamics difference of each signature, therefore the pressure information for signature generation each time also is unique, increases the fail safe of electronic signature with this; Authentication module 204, in checking during from the electronic signature of other-end, verify the described graphical information and the described pressure information of described electronic signature, to determine the true and false of described electronic signature, by the double verification of authentication module, effectively increased the fail safe of electronic signature to graphical information and pressure information; Encrypting module 206 carries out encryption to pressure information and obtains encrypting pressure information; Sending module 208, when sending the graphical information of electronic signature to second terminal and encrypting pressure information, sign, the sign of second terminal, the pressure information of electronic signature are sent to server, or in checking during, with the sign of the sign of electronic signature, second terminal with encrypt pressure information and be sent to server from the electronic signature of other-end.In this technical scheme, carry out encryption by 206 pairs of pressure informations that obtain of encrypting module, even then other people obtain this pressure information, also be difficult to read and crack, increase fail safe; The sign that the sign of electronic signature and the sign of second terminal can be used for making the pressure information of storage to be associated with two parties for the IMEI string of the character string of the user ID of two parties in server, both sides' agreement or statement, user's ID card No., user's phone number, mobile phone terminal number etc., by sign, the sign of second terminal and the corresponding stored of pressure information of electronic signature, make pressure information be convenient to search, verify simultaneously; Simultaneously, electronic signature and transmit leg binding can prevent that people's malice from pretending to be transmit leg, and will sign electronicallys and the sign of second terminal is bound, and can prevent that then other-end from duplicating the electronic signature that use sends to second terminal.
In technique scheme, logging modle 202 is under the situation of resistive touch input unit at touch input device, by the variation of the resistance sizes that causes in the signature process, writes down pressure information; And logging modle 202 is under the situation of capacitance touch input unit at touch input device, by the variation of the capacitance size that causes in the signature process, writes down pressure information.In this technical scheme, touch input device can be divided into resistance-type and condenser type, specifically can comprise all devices that possess touch-input function (as electronic signature etc.) and finish the required parts of this function such as the touch-screen of touch-screen mobile phone, panel computer and touch pad, terminal is according to the difference of device, by the variation of resistance or capacitance size, record corresponding pressure information.
Concrete formation for the authentication module described in Fig. 2 204 describes below in conjunction with Fig. 3.
Fig. 3 shows the block diagram of authentication module according to an embodiment of the invention.
As shown in Figure 3, authentication module 300 comprises: graphical information authentication module 302, determine whether graphical information is correct, and if graphical information is incorrect, determine that then electronic signature is invalid; And pressure information authentication module 304, when graphical information authentication module 302 determines that graphical information is correct, send the request of checking pressure information to server, and make sending module send the sign of electronic signature, the sign and the encryption pressure information of second terminal to server, and determine according to result whether the sign of second terminal and pressure information be correct, and then determine whether electronic signature is effective from server.In this technical scheme, the graphical information and the pressure information of electronic signature all need be verified, wherein, at first graphical information is verified by the graphical information authentication module, if graphical information is incorrect then sign electronically invalid, if graphical information is correct, then by the pressure information authentication module after server sends request, send the sign (as subscriber phone number) of electronic signature by sending module, the sign of second terminal and encryption pressure information, wherein, the sign of electronic signature is the user's of first terminal a sign, be used for finding out the sign and the pressure information of second terminal that is stored in server, then corresponding second terminal of the sign of second terminal and user thereof, by with server in the sign of second terminal of storing compare, prove that second terminal is second terminal of user's appointment of first terminal, prevent that electronic signature is replicated; Pressure information after deciphering with the process server by the pressure information that will find out simultaneously compares, thus the true and false of checking electronic signature.
Fig. 4 shows the block diagram of server according to an embodiment of the invention.
As shown in Figure 4, invention has also proposed a kind of server 400, comprising: memory module 402, store the sign of the electronic signature that first terminal uploads, the sign and the pressure information of second terminal accordingly; Authentication module 406, in the sign of receiving sign from the electronic signature to be verified of second terminal, second terminal with when encrypting pressure information, encryption pressure information deciphering with electronic signature to be verified, seek sign and pressure information with corresponding second terminal of sign that signs electronically, whether consistent according to the pressure information after the deciphering with corresponding pressure information, and whether the sign of second terminal is consistent with the sign of corresponding second terminal, determine whether electronic signature is effective, and will verify that the result is sent to terminal; And removing module 408, after authentication module is determined electronic signature effectively, the sign of deletion electronic signature, the sign and the pressure information of second terminal.In this technical scheme, the sign of the sign that memory module 402 will sign electronically, second terminal and pressure information corresponding stored when pressure information is associated with two parties, are searched when being convenient to verify; During checking, the sign of electronic signature is the user's of first terminal a sign, be used for finding out the sign and the pressure information of second terminal that is stored in server, then corresponding second terminal of the sign of second terminal and user thereof, by with server in the sign of second terminal of storing compare, prove that second terminal is second terminal of user's appointment of first terminal, prevent that electronic signature is replicated; Pressure information after deciphering with the process server by the pressure information that will find out simultaneously compares, thus the true and false of checking electronic signature.After determining electronic signature effectively, the corresponding information of deletion can guarantee that this electronic signature can not be used again from server.
Certainly, server is finished the verification method of electronic signature pressure information, can also on terminal, both verify, again pressure information be verified, specifically as shown in Figure 5 graphical information except above-mentioned.
Fig. 5 shows the flow chart of checking electronic signature on terminal according to an embodiment of the invention.
As shown in Figure 5, want to enter following steps when verifying in second terminal from the electronic signature of first terminal:
Step 502, whether the graphical information of checking electronic signature is correct, if incorrect, then authentication failed finishes checking;
Step 504 if graphical information is proved to be successful, is then initiated the checking request by second terminal to server;
Step 506 if the server refusal then returns step 504, if server receives this request, then enters step 508;
Step 508, second terminal to server sends the sign of second terminal, and downloads the pressure information of corresponding electronic signature;
Step 510, second terminal will compare from the pressure information of the electronic signature of first terminal and the pressure information of download;
Step 512, if two pressure informations are inequality, then authentication failed finishes checking, if pressure information is identical, then enters step 514;
Step 514 is proved to be successful, and second terminal to server sends removal request, server is according to removal request, with the sign of the electronic signature of corresponding stored, the sign and the pressure information deletion of second terminal, guarantee that electronic signature this time and proof procedure finish, and can not be used and verify again.
According to the verification method of present embodiment, can the pressure information on the server be sent on second terminal according to the request of second terminal and verify, to reduce the consumption of network traffics; Simultaneously, the proof procedure that carries out pressure information on terminal has flexibility, when the user finds new verification technique, can be voluntarily the authentication module on the new terminal more, and do not need renewal on the waiting for server.
Fig. 6 shows the particular flow sheet that is used to the verification method that signs electronically according to an embodiment of the invention.
As shown in Figure 6, step 602, user A is at portable terminal editor signing messages, during electronic signature that this terminal is imported on receiving touch input device, the pressure information that in the graphical information of recorded electronic signature and the signature process touch input device is produced is because the dynamics difference of each signature, therefore the pressure information for signature generation each time also is unique, increases the fail safe of electronic signature with this; Simultaneously, in step 602, if touch input device is the resistive touch input unit, then terminal writes down pressure information by the variation of the resistance sizes that causes in the signature process; And if touch input device is the capacitance touch input unit, then terminal is by the variation of the capacitance size that causes in the signature process, write down pressure information, touch input device can be divided into resistance-type and condenser type, specifically can comprise all devices that possess touch-input function (as electronic signature etc.) and finish the required parts of this function such as the touch-screen of touch-screen mobile phone, panel computer and touch pad, terminal is according to the difference of device, by the variation of resistance or capacitance size, record corresponding pressure information.
Step 604, the sign of terminal transmission user A electronic signature, the sign of second terminal and pressure information are to server, and step 606, and the sign and the pressure information of the sign of this electronic signature, second terminal are stored on the server accordingly.In this technical scheme, the sign that the sign of electronic signature can be used for making the pressure information of storage to be associated with two parties for the IMEI string of the character string of the user ID of two parties in server, both sides' agreement or statement, user's ID card No., user's phone number, mobile phone terminal number etc., by sign, the sign of second terminal and the corresponding stored of pressure information of electronic signature, make pressure information be convenient to search, verify simultaneously.
Step 608, user B receives the graphical information of the electronic signature that the portable terminal of user A sends out and the pressure information of encryption by terminal.Before this step 608, can the sign electronically pressure information that generates of the terminal of user A carries out encryption and obtains encrypting pressure information, even then other people obtain this pressure information, also is difficult to read and crack, and increases fail safe; Simultaneously, electronic signature is when sending, and the pressure information after graphical information and the encryption all need send, so that verify.
Step 610 when user B uses this authorization electronic signature of user A to user C place, at first enters step 612, graphical information to this electronic signature is verified, determine whether described graphical information is correct,, determine that then described electronic signature is invalid if described graphical information is incorrect; If described graphical information is correct, then enter step 614, the sign and the described encryption pressure information of the terminal of the sign of described electronic signature, user B is uploaded to described server; Step 616, on described server, described encryption pressure information is decrypted, seek the sign and the pressure information of second terminal corresponding with the described sign of described electronic signature, and it is whether consistent with the described corresponding pressure information that finds according to the pressure information after the deciphering, and whether the sign of the terminal of user B is consistent with the sign of second terminal that finds, determine whether described electronic signature is effective, if the sign of terminal is all consistent with pressure information, step 618 then, user C approves that this electronic signature is effective, otherwise it is invalid to sign electronically.In this technical scheme, the graphical information and the pressure information of electronic signature all need be verified, wherein, at first graphical information is verified by terminal, if graphical information is incorrect then sign electronically invalid, if graphical information is correct, then send the sign (as subscriber phone number) of electronic signature by terminal to server, the sign of second terminal and encryption pressure information, wherein, the sign of electronic signature is the user's of first terminal a sign, be used for finding out the sign and the pressure information of second terminal that is stored in server, then corresponding second terminal of the sign of second terminal and user thereof, by with server in the sign of second terminal of storing compare, prove that second terminal is second terminal of user's appointment of first terminal, prevent that electronic signature is replicated; Pressure information after deciphering with the process server by the pressure information that will find out simultaneously compares, thus the true and false of checking electronic signature.
The checking of the true and false to electronic signature among Fig. 6 can be used for multiple occasion, makes a concrete analysis of below in conjunction with Fig. 7.
Fig. 7 shows and uses electronic signature to get the flow chart of procurement payment according to an embodiment of the invention.
In certain company, when user B gets procurement payment to the user C place of financial office, need the mandate through boss A (to call user A in the following text), then user B uses from user A electron gain signature as authorizing foundation, by user C this electronic signature is verified that idiographic flow is as follows then:
As shown in Figure 7, step 702, user A is at portable terminal editor signing messages, during electronic signature that this terminal is imported on receiving touch input device, the pressure information that in the graphical information of recorded electronic signature and the signature process touch input device is produced is because the dynamics difference of each signature, therefore the pressure information for signature generation each time also is unique, increases the fail safe of electronic signature with this; Simultaneously, in step 702, if touch input device is the resistive touch input unit, then terminal writes down pressure information by the variation of the resistance sizes that causes in the signature process; And if touch input device is the capacitance touch input unit, then terminal is by the variation of the capacitance size that causes in the signature process, write down pressure information, touch input device can be divided into resistance-type and condenser type, specifically can comprise all devices that possess touch-input function (as electronic signature etc.) and finish the required parts of this function such as the touch-screen of touch-screen mobile phone, panel computer and touch pad, terminal is according to the difference of device, by the variation of resistance or capacitance size, record corresponding pressure information.
Step 704, the sign of terminal transmission user A electronic signature, the sign of second terminal and pressure information certainly, can not be to be sent to server also to server here, but directly be sent on the terminal or other device of user C, specifically can decide as circumstances require;
Step 706 supposes and has used server in the step 704 that then the sign of the sign that will sign electronically, second terminal and pressure information are stored on the server accordingly.In this technical scheme, the sign that the sign of electronic signature can be used for making the pressure information of storage to be associated with two parties for the IMEI string of the character string of the user ID of two parties in server, both sides' agreement or statement, user's ID card No., user's phone number, mobile phone terminal number etc., by sign, the sign of second terminal and the corresponding stored of pressure information of electronic signature, make pressure information be convenient to search, verify simultaneously.
Step 708, user B receives the graphical information of the electronic signature that the portable terminal of user A sends out and the pressure information of encryption by terminal.Before this step 708, can the sign electronically pressure information that generates of the terminal of user A carries out encryption and obtains encrypting pressure information, even then other people obtain this pressure information, also is difficult to read and crack, and increases fail safe; Simultaneously, electronic signature is when sending, and the pressure information after graphical information and the encryption all need send, so that verify.
Step 710, user B holds this electronic signature as authorizing evidence, gets procurement payment to user C place, user C at first verifies the graphical information of this electronic signature, determine whether described graphical information is correct,, determine that then described electronic signature is invalid if described graphical information is incorrect; If described graphical information is correct, then enter step 712;
Step 712, user C is uploaded to described server with the sign and the described encryption pressure information of the terminal of the sign of described electronic signature, user B;
Step 714, described server is decrypted described encryption pressure information, seek the sign and the pressure information of second terminal corresponding with the described sign of described electronic signature, and it is whether consistent with the described corresponding pressure information that finds according to the pressure information after the deciphering, and whether the sign of the terminal of user B is consistent with the sign of second terminal that finds, determine whether described electronic signature is effective, if the sign of terminal is all consistent with pressure information, then enter step 716, user C approves that this electronic signature is effective, allow user B to get corresponding fund, otherwise it is invalid to sign electronically.
Certainly, this embodiment can also be used for a lot of other occasions, such as signing electronically as the instruction that enters confidential departments, using electronic signature issue upper strata instruction etc.
In addition, in the above-described embodiments, directly used the contrast verification of pressure information, and in fact also can adopt other modes to transform.Such as utilizing some algorithms to change this pressure information into certain figure or pattern, then when checking, can be to this pattern consistent checking whether, because being each signature, pressure information produces, has randomness, therefore pattern also correspondingly has randomness, thereby has guaranteed the security reliability of whole process.
More than be described with reference to the accompanying drawings technical scheme of the present invention, considered that writing is easy to imitated under traditional electronic signature mode, the electronic signature shelves also are replicated easily, will make the user suffer tremendous loss in case be deceived; Simultaneously, authentication for some ecommerce contacts, also there is big leak, this type of safety issue is perplexing the user just at present, and also yoke a major issue of electronic signature development, therefore, the present invention is by having proposed a kind of false proof and verification method of new electronic signature, can check the true and false of electronic signature, improve the fail safe of electronic signature, prevent the signing messages fraud; Simultaneously, preserve relative recording, be convenient to investigate afterwards, avoid causing unnecessary loss to the user.
The above is the preferred embodiments of the present invention only, is not limited to the present invention, and for a person skilled in the art, the present invention can have various changes and variation.Within the spirit and principles in the present invention all, any modification of being done, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.

Claims (10)

1. a verification method that is used to sign electronically is characterized in that, comprising:
When step 102, electronic signature that first terminal is imported, write down the pressure information that in the graphical information of described electronic signature and the signature process described touch input device is produced on receiving touch input device;
Step 104 is sent to described pressure information server and the graphical information of described electronic signature, described pressure information is sent to second terminal;
Step 106, when the described electronic signature of described second terminal checking, described second terminal sends the checking request to described server, and passes through the described graphical information and the described pressure information of the described electronic signature of checking, to determine the true and false of described electronic signature.
2. the verification method that is used to sign electronically according to claim 1 is characterized in that, described step 104 also comprises:
The sign of described electronic signature is sent to described second terminal and the sign of described electronic signature, the sign of described second terminal are sent to described server.
3. the verification method that is used to sign electronically according to claim 1 is characterized in that, described step 104 also comprises:
Described first terminal is carried out encryption to described pressure information and is obtained encrypting pressure information; And
Described first terminal sends described encryption pressure information when described second terminal sends described graphical information.
4. the verification method that is used to sign electronically according to claim 2 is characterized in that, in described step 106, specifically comprises:
When described second terminal is verified described electronic signature, determine whether described graphical information is correct, if described graphical information is incorrect, determine that then described electronic signature is invalid;
If described graphical information is correct, whether whether the sign of described second terminal of storing on the sign of then more described second terminal and the described server is consistent, and relatively more consistent from the described pressure information of storing on the described pressure information of described second terminal and the described server.
5. according to the described verification method that is used to sign electronically of claim 1 to 4, it is characterized in that, after described second terminal was proved to be successful described pressure information, deletion was stored in the sign and the described pressure information of the sign of the described electronic signature on the described server, described second terminal.
6. a terminal is characterized in that, comprising:
Logging modle when receiving the electronic signature of importing on the touch input device, writes down the pressure information that in the graphical information of described electronic signature and the signature process described touch input device is produced;
Authentication module during from the electronic signature of other-end, is verified the described graphical information and the described pressure information of described electronic signature, to determine the true and false of described electronic signature in checking.
7. terminal according to claim 6 is characterized in that, also comprises:
Encrypting module carries out encryption to described pressure information and obtains encrypting pressure information;
Sending module sends the checking request to described server, or after described electric signing verification success, sends removal request to described server, and
In described graphical information that sends described electronic signature to second terminal and described encryption pressure information, the sign and the described pressure information of described second terminal is sent to described server.
8. according to claim 6 or 7 described terminals, it is characterized in that described authentication module comprises:
The graphical information authentication module determines whether described graphical information is correct, if described graphical information is incorrect, determines that then described electronic signature is invalid; And
The pressure information authentication module, when described graphical information authentication module determines that described graphical information is correct, send the request of the described pressure information of checking to described server, and make described sending module send the sign and the described encryption pressure information of described second terminal to described server, and determine according to result whether the sign of described second terminal and described pressure information be correct, and then determine whether described electronic signature is effective from described server.
9. a server is characterized in that, comprising:
Memory module is stored the sign and the pressure information of second terminal that first terminal uploads accordingly;
Authentication module, when receiving from the sign of second terminal to be verified of described second terminal and pressure information, whether whether the sign of described second terminal of storing on the sign of more described second terminal and the described server is consistent, and relatively more consistent from the described pressure information of storing on the described pressure information of described second terminal and the described server.
10. server according to claim 9 is characterized in that, also comprises:
Removing module after described authentication module is determined described electronic signature effectively, is deleted the sign and the described pressure information of described second terminal.
CN201110252487.9A 2011-08-30 Verification method, terminal and server for electronic signature Active CN102271138B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201110252487.9A CN102271138B (en) 2011-08-30 Verification method, terminal and server for electronic signature

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201110252487.9A CN102271138B (en) 2011-08-30 Verification method, terminal and server for electronic signature

Publications (2)

Publication Number Publication Date
CN102271138A true CN102271138A (en) 2011-12-07
CN102271138B CN102271138B (en) 2016-12-14

Family

ID=

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105159531A (en) * 2015-08-27 2015-12-16 广东欧珀移动通信有限公司 Application starting method and mobile terminal
CN106294702A (en) * 2016-08-08 2017-01-04 龙官波 A kind of information query method and device
CN107239719A (en) * 2017-06-05 2017-10-10 中国农业银行股份有限公司 Characteristic generating means, card reader, data handling system and method
CN107871266A (en) * 2016-09-28 2018-04-03 菜鸟智能物流控股有限公司 Method for acquiring interactive certificate and related device
US10599252B2 (en) 2014-06-25 2020-03-24 Huawei Technologies Co., Ltd. Intelligent terminal control method utilizing touch contact location and pressure

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1389824A (en) * 2001-06-04 2003-01-08 华为技术有限公司 Hand-written script discriminating server and its processing method to electronic signature system
CN101136747A (en) * 2006-08-30 2008-03-05 中兴通讯股份有限公司 Information checking system and method
CN101789067A (en) * 2009-12-31 2010-07-28 北京书生国际信息技术有限公司 Electronic document signature protecting method and system
US20110072274A1 (en) * 2009-03-31 2011-03-24 Topaz Systems, Inc. Distributed system for multi-function secure verifiable signer authentication

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1389824A (en) * 2001-06-04 2003-01-08 华为技术有限公司 Hand-written script discriminating server and its processing method to electronic signature system
CN101136747A (en) * 2006-08-30 2008-03-05 中兴通讯股份有限公司 Information checking system and method
US20110072274A1 (en) * 2009-03-31 2011-03-24 Topaz Systems, Inc. Distributed system for multi-function secure verifiable signer authentication
CN101789067A (en) * 2009-12-31 2010-07-28 北京书生国际信息技术有限公司 Electronic document signature protecting method and system

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10599252B2 (en) 2014-06-25 2020-03-24 Huawei Technologies Co., Ltd. Intelligent terminal control method utilizing touch contact location and pressure
CN105159531A (en) * 2015-08-27 2015-12-16 广东欧珀移动通信有限公司 Application starting method and mobile terminal
CN106294702A (en) * 2016-08-08 2017-01-04 龙官波 A kind of information query method and device
CN107871266A (en) * 2016-09-28 2018-04-03 菜鸟智能物流控股有限公司 Method for acquiring interactive certificate and related device
CN107871266B (en) * 2016-09-28 2022-05-27 菜鸟智能物流控股有限公司 Method for acquiring interactive certificate and related device
CN107239719A (en) * 2017-06-05 2017-10-10 中国农业银行股份有限公司 Characteristic generating means, card reader, data handling system and method
CN107239719B (en) * 2017-06-05 2021-04-02 中国农业银行股份有限公司 Characteristic data generating device, card reader, data processing system and method

Similar Documents

Publication Publication Date Title
CN109472166B (en) Electronic signature method, device, equipment and medium
CN109150548B (en) Digital certificate signing and signature checking method and system and digital certificate system
CN108989346B (en) Third-party valid identity escrow agile authentication access method based on account hiding
US20210004454A1 (en) Proof of affinity to a secure event for frictionless credential management
CN109600223A (en) Verification method, Activiation method, device, equipment and storage medium
US8661262B2 (en) User authentication system, terminal used in the same, authentication verification device, and program
CN107864124B (en) Terminal information security protection method, terminal and Bluetooth lock
CN105868970B (en) authentication method and electronic equipment
CN109035024A (en) Method, system and the storage medium of electronic signature
CN105515783A (en) Identity authentication method, server and authentication terminal
CN110826043A (en) Digital identity application system and method, identity authentication system and method
CN104579649A (en) Identity recognition method and system
CN1989493A (en) Management service device, backup service device, communication terminal device, and storage medium
EP3017580A1 (en) Signatures for near field communications
CN102930435A (en) Authentication method and system for mobile payment
CN111931209B (en) Contract information verification method and device based on zero knowledge proof
TW200910894A (en) Authentication system and method thereof for wireless networks
CN104468099A (en) Dynamic password generating method and device based on CPK (Combined Public Key) and dynamic password authentication method and device based on CPK (Combined Public Key)
CN104660401A (en) Authentication method, authentication system and terminal
CN106686585A (en) Binding method and system
CN102802150A (en) Phone number validation method and system as well as terminal
CN108696361A (en) Configuration method, generation method and the device of smart card
CN109388923B (en) Program execution method and device
CN111709747B (en) Intelligent terminal authentication method and system
CN202197405U (en) Wireless safe secret key apparatus and electronic business system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20190117

Address after: 518057 Desai Science and Technology Building, 9789 Shennan Avenue, Yuehai Street, Nanshan District, Shenzhen City, Guangdong Province, 17th Floor (15th Floor of Natural Floor) 1702-1703

Patentee after: Shenzhen acoustic Cmi Holdings Ltd

Address before: 518040 8th Floor, Block B, Innovation Science and Technology Plaza, Tian'an Digital City, Chegongmiao, Shenzhen City, Guangdong Province

Patentee before: Yulong Computer and Communication Sci. & Tech. (Shenzhen) Co., Ltd.

TR01 Transfer of patent right