CN102831360B - Personal electronic document safety management system and management method thereof - Google Patents
Personal electronic document safety management system and management method thereof Download PDFInfo
- Publication number
- CN102831360B CN102831360B CN201210276946.1A CN201210276946A CN102831360B CN 102831360 B CN102831360 B CN 102831360B CN 201210276946 A CN201210276946 A CN 201210276946A CN 102831360 B CN102831360 B CN 102831360B
- Authority
- CN
- China
- Prior art keywords
- file
- user
- key
- module
- password
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The invention provides a personal electronic document safety management system and a management method thereof. The personal electronic document safety management system comprises a key management module and an electronic document safety management module. The all-life cycle of a confidential electronic document is managed, a safe personal electronic document storage environment is constructed, and the system is wide in application range. By the method and system, additional hardware support is not required, the operating habits of users do not need to be changed, and the cost performance is high.
Description
Technical field
The present invention relates to computer information safety technique field, be specifically related to a kind of personal electronic document safety management system and management method thereof.
Background technology
, economic interaction day by day detailed in the division of labor in society day by day closely, infotech today of making rapid progress, the how intellecture property of available protecting oneself, reduction factor, according to leaking the risk caused, is a baptism faced by each user has to.
Be easy to copy, be easy to propagate because e-file has, the management and control of e-file is a problem being difficult to solution always.Once user terminal suffers long-range invasion, or e-file memory device is stolen, and the stealer of data will have power completely to data, objectively cause the leakage of individual privacy e-file.
The mode mainly taked at present has three kinds.The first is that user utilizes some instruments such as office software, compressed software to arrange access code, this method has significant limitation: as Word software can only for Word file layout, the e-file of other form then must adopt other software design patterns access control matched, and user operation is inconvenient, user needs the access code managing all e-files voluntarily, and inputs password when opening file each time.The second is that user manually specifically revises e-file, reaches the effect of encryption, and this method has very high danger, once misoperation will be easy to cause e-file to damage, causes loss of data.The third uses some safety of electronic file management softwares, user opens encrypt file by management software after logging in, when opening without the need to again inputting password, doing like this can effective managing encrypted e-file, simplify user operation, but still the operating habit of user can be had influence on, cause user to perplex.
Therefore, how safety management personal electronic document, and management method needs simple, workable, and applicability is wide, is a problem demanding prompt solution.
Summary of the invention
The object of the invention is the limitation existed for the potential safety hazard that may cause in personal electronic document secure administration procedure and prior art, the invention provides a kind of personal electronic document safety management system and manages its method.The Life cycle of this method to secure electronic file manages, and constructs the personal electronic document storage environment of a safety, applied widely.This method and system is without the need to additional hardware support, and do not change the operating habit of user, cost performance is high.
For reaching above-mentioned purpose, the present invention proposes a kind of personal electronic document safety management system, comprises key management module and safety of electronic file administration module.Key management module, comprise cipher key initialization module and importing and exporting key module, described cipher key initialization module is for generating e-file cryptographic key factor, and this e-file cryptographic key factor uses user password encryption, and the content after encryption is stored in the key file of system.Key is derived module and after the user logs according to the derivation path that user selects, can be encrypted, encrypted result be stored in key derivation file by deriving the cryptographic hash of password to key file and user authentication information.Key imports module can be undertaken upgrading or initialization by the key in current system, when key imports, first judge whether to have created user, if do not create user, then select importing secret key file and input the legitimacy importing password and then detect file and import password, if legal, then importing secret key file, obtain e-file cryptographic key factor, upgrade key file.If create user, that login system also detects the legitimacy of user, if legal, then select importing secret key file and input importing password, then file and the legitimacy importing password is detected, if legal, then importing secret key file, obtain e-file cryptographic key factor, upgrade key file.Safety of electronic file administration module connects above-mentioned key management module, and safety of electronic file administration module comprises " protected mode selection module ", " e-file automatic protection module ", " the manual protection module of e-file ".By user by " protected mode selection module " selection " e-file automatic protection module " or " the manual protection module of e-file ", enter corresponding modes.Wherein, e-file automatic protection module is after logging in system by user, symmetry algorithm is adopted to calculate e-file cryptographic key factor according to user's entry password, and automatically decipher according to reading and writing data of software when user opens encrypted electronic file, the overall encryption method performance adopted compared with other software existing is high, when systems axiol-ogy is updated to e-file, automatically by upgrade after encrypted content file and be stored in file; And the manual protection module of e-file is after logging in system by user, the needs according to user manually select " encryption " or " deciphering " to operate by user, and file is corresponding to be changed into " ciphertext " or " expressly ".
For reaching above-mentioned purpose, the present invention separately proposes a kind of management method of personal electronic document safety management system, it is characterized in that, comprises the following steps:
Key management module carries out cipher key initialization, e-file cryptographic key factor is generated by user password, stochastic generation identification code is as e-file cryptographic key factor, this identification code uses user password encryption, and the content after encryption is stored in key file, system preserves the cryptographic hash of user password simultaneously;
User logs in personal electronic document safety management system, whether unanimously judges the legitimacy of user identity when user logs in by comparing cryptographic hash.System, after user authentication passes through, uses user password) decruption key file, obtain identification code,
Select the protected mode of safety of electronic file management, when selection protection automatically, e-file automatic protection module calculates e-file cryptographic key factor according to user's entry password after logging in system by user, and automatically use above-mentioned cryptographic key factor declassified document when user opens encrypted electronic file, when systems axiol-ogy is updated to e-file, automatically by the encrypted content file after upgrading and updating file, when selecting manually to protect, the manual protection module of e-file is used for the manual switch of clear text electronic file and ciphertext e-file, according to user need calculate e-file cryptographic key factor by user password and e-file be encrypted or decryption oprerations.
The Life cycle of safety of electronic file management system of the present invention to secure electronic file manages, construct the personal electronic document storage environment of a safety, encryption process can be accomplished user transparent, this method and system is without the need to additional hardware support, do not change the operating habit of user, use directly perceived, simple operation, widely applicable.
Accompanying drawing explanation
Fig. 1 is the theory diagram of the personal electronic document safety management system of the embodiment of the present invention.
Fig. 2 is the process flow diagram of the management method of personal electronic document safety management system in Fig. 1.
Fig. 3 is the particular flow sheet of cipher key initialization in Fig. 2.
Fig. 4 is the particular flow sheet in Fig. 2 under automatic protected mode.
Fig. 5 is the particular flow sheet in Fig. 2 under manual protected mode.
Fig. 6 is the particular flow sheet that key is derived.
Fig. 7 is the particular flow sheet that key imports.
Embodiment
In order to more understand technology contents of the present invention, institute's accompanying drawings is coordinated to be described as follows especially exemplified by specific embodiment.
Fig. 1 is the theory diagram of the personal electronic document safety management system of the embodiment of the present invention.As shown in Figure 1, personal electronic document safety management system comprises key management module 10 and safety of electronic file administration module 20.
Key management module 10 comprises cipher key initialization module 101 and importing and exporting key module 102, described cipher key initialization module 101 is for generating e-file cryptographic key factor, this e-file cryptographic key factor uses user password encryption, and the content after encryption is stored in key file, importing and exporting key module 102 connects described cipher key initialization module 101, for needing backup according to user or importing e-file cryptographic key factor.
Safety of electronic file administration module 20 connects above-mentioned key management module 10, and safety of electronic file administration module comprises protected mode selection module 201 and selects the e-file automatic protection module 202 of model calling with protected mode, the manual protection module 203 of e-file, user selects module 201 to select e-file automatic protection module 202 or the manual protection module 203 of e-file by protected mode, wherein, e-file automatic protection module 202 calculates e-file cryptographic key factor according to user's entry password after logging in system by user, and automatically use above-mentioned cryptographic key factor declassified document when user opens encrypted electronic file, when systems axiol-ogy is updated to e-file, automatically by the encrypted content file after upgrading and updating file, and the manual protection module 203 of e-file is for the manual switch of clear text electronic file and ciphertext e-file, according to user need calculate e-file cryptographic key factor by user password and e-file be encrypted or decryption oprerations.
Fig. 2 is the process flow diagram of the management method of personal electronic document safety management system in Fig. 1.Concrete grammar is as follows:
Key management module carries out cipher key initialization, as shown in Figure 3, generate e-file cryptographic key factor, stochastic generation identification code is as e-file cryptographic key factor, this identification code uses user password encryption, and the content after encryption is stored in key file, system preserves the cryptographic hash of user password simultaneously;
User logs in personal electronic document safety management system, whether unanimously judges the legitimacy of user identity when user logs in by comparing cryptographic hash.System, after user authentication passes through, uses user password) decruption key file, obtain identification code,
Select the protected mode of safety of electronic file management, when selecting automatically to protect, as shown in Figure 4, e-file automatic protection module calculates e-file cryptographic key factor according to user's entry password after logging in system by user, and automatically use above-mentioned cryptographic key factor declassified document when user opens encrypted electronic file, when systems axiol-ogy is updated to e-file, automatically by upgrade after encrypted content file and updating file; When selecting manually to protect; as shown in Figure 5; the manual protection module of e-file is used for the manual switch of clear text electronic file and ciphertext e-file, according to user need calculate e-file cryptographic key factor by user password and e-file be encrypted or decryption oprerations.
Further, in the present invention, user can also back up or import e-file cryptographic key factor as required, Fig. 6 and Fig. 7 is respectively the process flow diagram that key is derived and imported.
As shown in Figure 6, when key is derived, first detect the legitimacy of user, if legal, then select key file path and password is derived in input, then more new key.And when key imports, first judge whether to have created user, if do not create user, then select importing secret key file and input importing password, then detect file and the legitimacy importing password, if legal, then importing secret key file, obtains e-file cryptographic key factor, upgrades key file.If create user, that login system also detects the legitimacy of user, if legal, then select importing secret key file and input importing password, then file and the legitimacy importing password is detected, if legal, then importing secret key file, obtain e-file cryptographic key factor, upgrade key file.
In sum, the Life cycle of safety of electronic file management system of the present invention to secure electronic file manages, construct the personal electronic document storage environment of a safety, encryption process can be accomplished user transparent, this method and system, without the need to additional hardware support, does not change the operating habit of user, uses directly perceived, simple operation, widely applicable.
Although the present invention with preferred embodiment disclose as above, so itself and be not used to limit the present invention.Persond having ordinary knowledge in the technical field of the present invention, without departing from the spirit and scope of the present invention, when being used for a variety of modifications and variations.Therefore, protection scope of the present invention is when being as the criterion depending on those as defined in claim.
Claims (3)
1. a personal electronic document safety management system, is characterized in that, comprising:
1) key management module, comprise cipher key initialization module and importing and exporting key module, described cipher key initialization module is for generating e-file cryptographic key factor, and this e-file cryptographic key factor uses user password encryption, and is stored in the key file of system by the content after encryption; Key is derived module and after the user logs according to the derivation path that user selects, can be encrypted, encrypted result be stored in key derivation file by deriving the cryptographic hash of password to key file and user authentication information; Key imports module can be undertaken upgrading or initialization by the key in current system, when key imports, first judges whether to have created user, if do not create user, then selects importing secret key file and input importing password; Then detect file and the legitimacy importing password, if legal, then importing secret key file, obtains e-file cryptographic key factor, upgrades key file; If create user, that login system also detects the legitimacy of user, if legal, then select importing secret key file and input importing password, then file and the legitimacy importing password is detected, if legal, then importing secret key file, obtain e-file cryptographic key factor, upgrade key file.
2) safety of electronic file administration module, comprises " protected mode selection module ", " e-file automatic protection module ", " the manual protection module of e-file "; By user by " protected mode selection module " selection " e-file automatic protection module " or " the manual protection module of e-file ", enter corresponding modes;
Wherein, e-file automatic protection module is after logging in system by user, symmetry algorithm is adopted to calculate e-file cryptographic key factor according to user's entry password, and automatically decipher according to reading and writing data of software when user opens encrypted electronic file, the overall encryption method performance adopted compared with other software existing is high, when systems axiol-ogy is updated to e-file, automatically by upgrade after encrypted content file and be stored in file; And the manual protection module of e-file is after logging in system by user, the needs according to user manually select " encryption " or " deciphering " to operate by user, and file is corresponding to be changed into " ciphertext " or " expressly ".
2. personal electronic document safety management system according to claim 1, is characterized in that, key management module comprises cipher key initialization and importing and exporting key module, for needing initialization, backup according to user or importing e-file cryptographic key factor.
3., according to the management method of the personal electronic document safety management system described in claim 1, it is characterized in that, comprise the following steps:
Key management module carries out cipher key initialization, e-file cryptographic key factor is generated by user password, stochastic generation identification code is as e-file cryptographic key factor, this identification code uses user password encryption, and the content after encryption is stored in key file, system preserves the cryptographic hash of user password simultaneously;
User logs in personal electronic document safety management system, whether unanimously judges the legitimacy of user identity when user logs in by comparing cryptographic hash, and system, after user authentication passes through, uses user password decruption key file, obtains identification code;
Select the protected mode of safety of electronic file management, when selecting automatically to protect, e-file automatic protection module calculates e-file cryptographic key factor according to user's entry password after logging in system by user, and automatically use above-mentioned cryptographic key factor declassified document when user opens encrypted electronic file, when systems axiol-ogy is updated to e-file, automatically by upgrade after encrypted content file and updating file; When selecting manually to protect, clear text electronic file and ciphertext e-file are encrypted or decipher by the manual protection module of e-file.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210276946.1A CN102831360B (en) | 2012-08-06 | 2012-08-06 | Personal electronic document safety management system and management method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210276946.1A CN102831360B (en) | 2012-08-06 | 2012-08-06 | Personal electronic document safety management system and management method thereof |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102831360A CN102831360A (en) | 2012-12-19 |
| CN102831360B true CN102831360B (en) | 2015-01-28 |
Family
ID=47334493
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210276946.1A Active CN102831360B (en) | 2012-08-06 | 2012-08-06 | Personal electronic document safety management system and management method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102831360B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104318174A (en) * | 2014-10-28 | 2015-01-28 | 深圳市大成天下信息技术有限公司 | Document protecting method, document protecting devices and document protecting system |
| CN107749895A (en) * | 2017-11-12 | 2018-03-02 | 高飞 | A kind of e-file medium digital display circuit |
| CN109635579A (en) * | 2018-12-10 | 2019-04-16 | 万兴科技股份有限公司 | Document decryption method, device, computer equipment and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6185681B1 (en) * | 1998-05-07 | 2001-02-06 | Stephen Zizzi | Method of transparent encryption and decryption for an electronic document management system |
| US7178033B1 (en) * | 2001-12-12 | 2007-02-13 | Pss Systems, Inc. | Method and apparatus for securing digital assets |
| CN101833625A (en) * | 2010-05-11 | 2010-09-15 | 上海众烁信息科技有限公司 | File and folder safety protection method based on dynamic password and system thereof |
| CN102404120A (en) * | 2011-10-28 | 2012-04-04 | 哈尔滨朗威电子技术开发有限公司 | Encryption method and encryption system for electronic documents |
| CN102842005A (en) * | 2011-06-21 | 2012-12-26 | 国民技术股份有限公司 | CSP (chip scale package) module of TSPI (telephony service provider interface) based on TSM (tivoli storage manager) and CSP implementation method |
-
2012
- 2012-08-06 CN CN201210276946.1A patent/CN102831360B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6185681B1 (en) * | 1998-05-07 | 2001-02-06 | Stephen Zizzi | Method of transparent encryption and decryption for an electronic document management system |
| US7178033B1 (en) * | 2001-12-12 | 2007-02-13 | Pss Systems, Inc. | Method and apparatus for securing digital assets |
| CN101833625A (en) * | 2010-05-11 | 2010-09-15 | 上海众烁信息科技有限公司 | File and folder safety protection method based on dynamic password and system thereof |
| CN102842005A (en) * | 2011-06-21 | 2012-12-26 | 国民技术股份有限公司 | CSP (chip scale package) module of TSPI (telephony service provider interface) based on TSM (tivoli storage manager) and CSP implementation method |
| CN102404120A (en) * | 2011-10-28 | 2012-04-04 | 哈尔滨朗威电子技术开发有限公司 | Encryption method and encryption system for electronic documents |
Non-Patent Citations (1)
| Title |
|---|
| 电子文件加密识别技术研究;陈全;《档案学研究》;20020420;第54-56页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102831360A (en) | 2012-12-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103106372B (en) | For lightweight privacy data encryption method and the system of android system | |
| USRE49194E1 (en) | Method and apparatus for controlling access to encrypted data | |
| CN103327002B (en) | Based on the cloud memory access control system of attribute | |
| CN103065080B (en) | A kind of application program login method and device | |
| CN100495421C (en) | Authentication protection method based on USB device | |
| CN103686716B (en) | Android access control system for enhancing confidentiality and integrality | |
| CN103546547B (en) | A kind of cloud storage file encryption system | |
| CN105681039A (en) | Method and device for secret key generation and corresponding decryption | |
| CN101815292B (en) | Device and method for protecting data of mobile terminal | |
| KR101625785B1 (en) | Method and device for information security management of mobile terminal, and mobile terminal | |
| CN101833625A (en) | File and folder safety protection method based on dynamic password and system thereof | |
| CN103971034A (en) | Method and device for protecting Java software | |
| CN103929312A (en) | Mobile terminal and method and system for protecting individual information of mobile terminal | |
| CN104408363A (en) | Safe password system | |
| CN104601820A (en) | Mobile terminal information protection method based on TF password card | |
| CA3066701A1 (en) | Controlling access to data | |
| CN102831360B (en) | Personal electronic document safety management system and management method thereof | |
| CN102831335A (en) | Safety protecting method and safety protecting system of Windows operating system | |
| CN102118503A (en) | Data protection method, device and terminal | |
| CN101945246A (en) | Method, device and equipment for authenticating passwords | |
| CN113722741A (en) | Data encryption method and device and data decryption method and device | |
| CN101692265A (en) | Method of encrypting and protecting files | |
| CN201130381Y (en) | Electric signature tool with cryptogram management function | |
| CN103873521A (en) | Cloud architecture-based mobile phone privacy file protection system and method | |
| TWI428752B (en) | Electronic file delivering system, portable communication apparatus with decryption functionality, and related computer program product |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |