CN103577969A - Electronic seal stamping method - Google Patents
Electronic seal stamping method Download PDFInfo
- Publication number
- CN103577969A CN103577969A CN201210270486.1A CN201210270486A CN103577969A CN 103577969 A CN103577969 A CN 103577969A CN 201210270486 A CN201210270486 A CN 201210270486A CN 103577969 A CN103577969 A CN 103577969A
- Authority
- CN
- China
- Prior art keywords
- seal
- file
- information
- affixing
- label
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses an electronic seal stamping method, device and system to prevent the modification of a stamped source file in the stamping process. The stamping method comprises the steps of setting a label bonded with the stamped source file, and recording related information of an electronic seal and a seal impression digital signature in the label corresponding to the stamped source file.
Description
Technical field
The present invention relates to computer software technology, be specifically related to a kind of method of affixing one's seal, Apparatus and system of E-seal.
Background technology
E-seal is by seal digitized processing, and the numerical information encryption to seal by security means, with safe and reliable mode to digitized seal store, application and administration.Its management, use-pattern meet custom and the experience of seal in kind, and its e-file of adding a cover has the outward appearance that the paper document of adding a cover with seal in kind is identical, identical validity and similar use-pattern.
At present, using E-seal to affix one's seal to file is generally that E-seal is directly added a cover hereof, in this mode, the seal information of E-seal and printed text information are all stored in the e-file of being affixed one's seal, the file that needs like this change to be affixed one's seal in the process of affixing one's seal, has caused the variation of stamping source file.
In order to be badly in need of a kind of new E-seal implementation, to avoid the modification to stamping source file in the process of affixing one's seal.
Summary of the invention
In view of this, the embodiment of the present invention provides a kind of method of affixing one's seal, Apparatus and system of E-seal, to avoid the modification to stamping source file in the process of affixing one's seal.
For solving the problems of the technologies described above, the technical scheme that the present invention proposes is:
The method of affixing one's seal, comprising: a label with stamping source file binding is set;
While affixing one's seal by E-seal relevant information and printed text digitized signature record in label corresponding to stamping source file.
A seal apparatus for E-seal, comprising:
The first module, for arranging a label of binding with stamping source file;
The second module, for when affixing one's seal by E-seal relevant information and printed text digitized signature record at label corresponding to stamping source file.
A sealing system for E-seal, comprising:
First device, for arranging a label of binding with stamping source file; And when affixing one's seal by E-seal relevant information and printed text digitized signature record in label corresponding to stamping source file.
As can be seen here, the method of affixing one's seal of the E-seal that the embodiment of the present invention proposes, by adopting label technique to carry out the operation of affixing one's seal of E-seal, the relevant information of E-seal and the operation information of affixing one's seal are all recorded in the corresponding label of the file of affixing one's seal, have overcome in prior art seal information, the operation information of affixing one's seal are directly recorded in to the modification of the stamping source file causing in stamping source file.To affix one's seal information recording in addition in label file, and also profit is conducive to later analysis user behavior, historical rudiment, thereby improves security.
Accompanying drawing explanation
Fig. 1 is the affix one's seal process flow diagram of method of E-seal in the embodiment of the present invention.
Fig. 2 is the system of electronic-seal that realizes in the embodiment of the present invention.
Embodiment
In embodiments of the present invention, while affixing one's seal by E-seal relevant information and printed text digitized signature record with the corresponding label of stamping source file in, wherein this label is default setting, a segment information with stamping source file logic binding, it both can be set to be stored in same physical file with corresponding file, also can independently leave in other file or in database.By carry out the affix one's seal operation of managing electronic seal to file with label, can not shine into any modification to stamping source file.
Fig. 1 is the affix one's seal process flow diagram of method of E-seal in the embodiment of the present invention.As shown in Figure 1, the method comprises the following steps:
Step 101: adopt preset algorithm to calculate the digest value of stamping source file.
Step 102: adopt preset algorithm to calculate the digest value of E-seal relevant information.Wherein E-seal relevant information comprises seal information and the information of affixing one's seal.Seal information comprises the digital certificate of E-seal view data, E-seal, the digital signature information of E-seal, E-seal metadata.Wherein E-seal metadata can comprise that again E-seal issuer certificate, E-seal issue one or more the combination in time, E-seal owner information, the E-seal term of validity, E-seal title.The information of affixing one's seal comprises affix one's seal positional information and/or the temporal information of affixing one's seal, and the positional information of affixing one's seal comprises that seal lid page number and/or seal hereof covers the position in file page.As when file only has one page, the positional information of affixing one's seal can only include seal and cover the positional information in file page, if when document surpasses one page, the positional information of affixing one's seal can comprise chapter lid page number and seal hereof and cover the position in file page.And for example, when covering the positional information at file page without concern seal, the positional information of affixing one's seal can only comprise chapter lid page number information hereof.
Step 103: the digest value to the digest value of stamping source file and E-seal relevant information carries out digital signature, obtains printed text data signature.
Use the private key in E-seal digital certificate to do altogether digital signature to the digest value of the digest value of stamping source file and E-seal relevant information, obtain printed text digital signature.
Step 104: E-seal relevant information and printed text data signature are all recorded in label.
Here the step that in step 104, E-seal relevant information is recorded in to label can be carried out separately, this step and step 101 to step 103 does not have strict sequencing, as this step can be carried out before step 101, first E-seal relevant information is recorded in label, order performs step 101 to step 103 acquisition printed text data signature again, finally printed text data signature is recorded in label.
Here in step 101 and step 102, identical preset algorithm can be adopted, also different preset algorithm can be adopted.No matter adopt identical preset algorithm or different preset algorithm, the algorithm preferably step 101 and step 102 being adopted is respectively recorded in label, uses when testing chapter.If certainly with test Zhang Fang and have special agreement, can the algorithm of employing be recorded in label.Here preset algorithm can be MD(message-digest algorithm, md5-challenge) 5, SHA(secure hash algorithm, Secure Hash Algorithm) 256 and SHA-1 etc.
Through above-mentioned steps, in the corresponding label of stamping source file, can comprise following information: file identification, file attribute, seal attribute, Authorization Attributes and file operation daily record.
Wherein, file identification unique identification stamping source file.The relevant information such as the filename of include file, file size in file attribute.Authorization Attributes is for limiting the operating right to file, as stipulated, which kind of user has operating right etc. to which kind of action type of file.File operation daily record is for recording one or more information of affixing one's seal to file, and each file operation packets of information is containing action type, operator and running time, and wherein action type can be to affix one's seal, test chapter or read seal information.The attribute that comprises one or more seals in seal attribute.The attribute of a seal can comprise seal information, the information of affixing one's seal and printed text digital signature information.
The above E-seal method of affixing one's seal can be carried out by application software, by application software, performs step 101 methods of affixing one's seal to step 104, and by last E-seal relevant information and printed text digitized signature record in label.Another kind of more excellent mode is specifically to carry out above-mentioned steps 101 to the method for affixing one's seal of step 104 by secure file service middleware, but for application software leaves corresponding standard interface, for various application software, calls, thereby application software is separated with the operation of affixing one's seal.The advantage of this mode is to allow application software be absorbed in application problem, and secure file service middleware is absorbed in the operation of affixing one's seal.
Fig. 2 is the system of electronic-seal that realizes in the embodiment of the present invention.As shown in Figure 2, this system comprises application software 201 and secure file service middleware 202.This system not only can complete the method for affixing one's seal of above-described embodiment, can also realize the checking of seal.
202 pairs of application software 201 of secure file service middleware provide various file service interfaces, such as the interface of affixing one's seal, test chapter interface and obtain seal information interface.
The interface function parameter of interface of wherein affixing one's seal comprises secure ID, stamping source file name, the file destination name of affixing one's seal, the information of affixing one's seal and seal information.Function return value is the success or not information of affixing one's seal, and error message is returned in the failure of affixing one's seal simultaneously.Wherein secure ID is in advance registration in secure file service middleware 202, legal user ID.When validated user calls secure file service middleware 202 by application software, secure ID is the sign of this validated user.When label file and stamping source file are stored in same physical file, this file destination of affixing one's seal refers in the physical file that comprises label file and stamping source file, and when label file is independent of stamping source file, this file destination of affixing one's seal refers to label file.
When there is not the label file corresponding with stamping source file before, secure file service middleware 202 generates has the label file that user specifies the file destination name of affixing one's seal, and by the information recording after affixing one's seal in the label file generating.If there is the file destination name of affixing one's seal of user's appointment before, secure file service middleware 202 directly by the information recording after affixing one's seal in the label file generating.
The interface function parameter of testing chapter interface comprises secure ID, the file destination name of affixing one's seal and seal sequence number to be verified (such as identify seal sequence number to be verified with natural number, representing to verify all seals with " 1 ").Function return value is the checking situation of the seal of input parameter appointment, comprises the information of each seal and the information whether each seal is verified.
The interface function parameter of obtaining seal information interface comprises secure ID, the file destination name of affixing one's seal and seal sequence number to be obtained (such as identify seal sequence number to be verified with natural number, representing to obtain all seal information with " 1 ").Function return value is the information of the seal of seal quantity and appointment.
When application software 201 is called above interface function, can specify corresponding function parameter for these interface functions, secure file service middleware 202 is carried out corresponding operation according to corresponding interface function parameter.
No matter by application software or secure file middleware, carry out aforesaid operations, application software or secure file middleware all need to possess the operating right to label, therefore after completing the binding of label and stamping source file, utilize the signature private key of application software or secure file middleware to calculate and make a summary and sign all the elements except label integrality signature in label, this signature result is placed in to label as label integrality signature, in application software or secure file middleware, carried out above-mentioned document function information recording before label, utilize the public signature key of application software or secure file middleware to verify that application software or secure file middleware possess the functipnal capability to label.Detailed process comprises: first use the public signature key of application software or secure file middleware to verify label integrality signature, if be verified, label is complete credible, then file is carried out to digest calculations, the document relatively recording in digest calculations result and label body, as identical, show that application software or secure file middleware possess the functipnal capability to label.
In addition under many circumstances, user wishes to affix one's seal, signs, reads, a series of document operation such as printing can unify to be organically managed.For this reason can be by signing, read, the sequence of operations information such as printing is all recorded in label, by label, carrys out all document functions of unified management.Just can unified management affix one's seal operation and other operation to file of label like this.Be label can the attribute of storage file, the operator of defined file and authority the operation vestige of record to file.
The corresponding label of stamping source file can comprise following information like this: file identification, file attribute, cryptographic attributes, seal attribute, Authorization Attributes and file operation daily record.
Wherein, cryptographic attributes comprises the enciphered message to file.Action type now can also be sign, read or print etc. in addition.
The function of secure file service middleware further can also be generalized to and sign, reads or print etc. in a series of document function equally, by secure file service middleware, complete the operation to this class safe operation, but for application software leaves the safe operation standard interface of various correspondences, for various application software, call, thus application software is separated with safe operation.Security firm just can be absorbed in Secure Application details like this, and application vendor is absorbed in application flow.
The method of affixing one's seal of the E-seal providing corresponding to the embodiment of the present invention, the embodiment of the present invention has also proposed a kind of seal apparatus of E-seal, in the simplest situation, can comprise: the first module, for a label of binding with stamping source file is set; The second module, for when affixing one's seal by E-seal relevant information and printed text digitized signature record at label corresponding to stamping source file.Seal apparatus can further include the 3rd module, for the corresponding interface of affixing one's seal is provided, for other application software, calls, and when the described interface of affixing one's seal is called, carries out the operation of affixing one's seal.Certainly seal apparatus can further include four module, for when carrying out other document function, by other document function information recordings in label, by label unified management.Seal apparatus can further include the 5th module, is used to application software that other corresponding document function interface is provided, and for application software, calls.As can be seen from the above description, when seal apparatus only comprises the first module and the second module, or while comprising the first module, the second module and four module, in fact can think an application software.When seal apparatus comprises the first module, the second module and the 3rd module, or when the first module, the second module, the 3rd module, four module and the 5th module, in fact it can think secure file service middleware.
As seen from the above-described embodiment, adopt label technique to the file operation of affixing one's seal, the relevant information of E-seal and the operation information of affixing one's seal are all recorded in the corresponding label of file, and file itself is not had to any change.In addition, adopt label technique can make to comprise that the various operations to file of affixing one's seal are unified management, all operation informations are all recorded in label, convenient inquiry and modification.Further, by secure file service middleware, completed the safe operation of file, as the operation of affixing one's seal, test chapter operation etc., and for application software provides various safe operation interfaces, thereby safe operation is separated with application software, be better applicable to the industry division of labor.
In a word, the foregoing is only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.Within the spirit and principles in the present invention all, any modification of doing, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.
Claims (10)
1. the method for affixing one's seal of E-seal, is characterized in that, comprising:
A label of binding with stamping source file is set;
While affixing one's seal by E-seal relevant information and printed text digitized signature record in label corresponding to stamping source file.
2. method according to claim 1, is characterized in that, further comprises:
When other document function except affixing one's seal, operation information is recorded in label;
The operation information of other document function by label unified management except affixing one's seal.
3. method according to claim 1 and 2, is characterized in that, further log file sign, file attribute, Authorization Attributes and file operation daily record in described label;
Wherein said Authorization Attributes is for limiting the operating right to file;
Described file operation daily record is for recording one or more operation informations to file.
4. method according to claim 3, is characterized in that, the described operation information to file comprises action type, operator and running time.
5. method according to claim 4, is characterized in that, described action type be affix one's seal, test chapter, any one or more in reading seal information, sign, read or printing.
6. method according to claim 1, is characterized in that, described printed text digital signature is obtained as follows:
Adopt preset algorithm to calculate the digest value of stamping source file;
Adopt preset algorithm to calculate the digest value of E-seal relevant information;
With the private key in the digital certificate of E-seal, the digest value of stamping source file and E-seal relevant information is carried out to digital signature altogether, to obtain printed text digital signature.
7. method according to claim 6, is characterized in that, described preset algorithm is: MD5, SHA-1 or SHA256.
8. according to the method described in claim 1 or 6, it is characterized in that, described E-seal relevant information comprises one of the following or combination arbitrarily: seal information and the information of affixing one's seal.
9. method according to claim 8, is characterized in that, described seal information comprises one of the following or combination arbitrarily: the digital certificate of E-seal view data, E-seal, the digital signature information of E-seal, E-seal metadata.
10. method according to claim 9, it is characterized in that, described E-seal metadata comprises one of the following or combination arbitrarily: issuer certificate, E-seal are issued time, E-seal owner information, the E-seal term of validity, E-seal title.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210270486.1A CN103577969A (en) | 2012-07-31 | 2012-07-31 | Electronic seal stamping method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210270486.1A CN103577969A (en) | 2012-07-31 | 2012-07-31 | Electronic seal stamping method |
Publications (1)
Publication Number | Publication Date |
---|---|
CN103577969A true CN103577969A (en) | 2014-02-12 |
Family
ID=50049709
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201210270486.1A Pending CN103577969A (en) | 2012-07-31 | 2012-07-31 | Electronic seal stamping method |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103577969A (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109299588A (en) * | 2018-12-11 | 2019-02-01 | 李扬渊 | A kind of seal device and its method of affixing one's seal |
CN110717738A (en) * | 2019-10-12 | 2020-01-21 | 珠海优特物联科技有限公司 | Seal management method and device and electronic equipment |
-
2012
- 2012-07-31 CN CN201210270486.1A patent/CN103577969A/en active Pending
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109299588A (en) * | 2018-12-11 | 2019-02-01 | 李扬渊 | A kind of seal device and its method of affixing one's seal |
CN110717738A (en) * | 2019-10-12 | 2020-01-21 | 珠海优特物联科技有限公司 | Seal management method and device and electronic equipment |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN101639903B (en) | Method, device and system for stamping of electronic seal | |
CN107423629B (en) | Method and system for file information output anti-disclosure and tracing | |
US10602202B1 (en) | System and techniques for digital data lineage verification | |
JP5190800B2 (en) | Program execution control system, execution control method, and computer program for execution control | |
CN109784922B (en) | Electronic contract signing method, electronic contract signing device, computer equipment and storage medium | |
CN108363929B (en) | System and method for generating information elimination report of storage device and preventing tampering | |
CN106598930A (en) | Electronic certificate processing method based on layout file | |
CN103259659B (en) | The identification authentication system that a kind of digital signature and person's handwriting, fingerprint combine | |
CN102834841A (en) | Document management system, evaluation device, data output control device, document management method and document management program | |
US7881469B2 (en) | Crypto-wireless-tag | |
CN111797430A (en) | Data verification method, device, server and storage medium | |
CN107301343A (en) | Secure data processing method, device and electronic equipment | |
CN111914305A (en) | System and method for carrying out national secret electronic signature processing based on UOF document | |
CN105631361A (en) | Application program channel source identification method and device | |
CN104517203A (en) | Stamping method, apparatus and system of electronic stamp | |
CN108122097A (en) | Support the electronic signature method and system of more application scenarios | |
CN107330304B (en) | Safe production method and device of electronic certificate | |
JP4631398B2 (en) | Document management apparatus, document management method, and computer program | |
KR101497067B1 (en) | Electric document transfer method and apparatus based digital forensic | |
CN103577969A (en) | Electronic seal stamping method | |
CA2986828A1 (en) | Data recording method, device and system, and computer storage medium | |
CN112328975A (en) | Product software authorization management method, terminal device and medium | |
CN112100685A (en) | Encryption and tamper-proof processing method for checking and detecting electronic report | |
JP2011113167A (en) | Computer system and content management method | |
CN101226568A (en) | Juggling-proof electric medical record system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20140212 |