The content of the invention
The purpose of the present invention is intended at least solve one of described technological deficiency.
Therefore, it is an object of the present invention to propose a kind of 2 D code verification method based on electronic signature.This method
It can effectively ensure that the security during Quick Response Code use.
It is another object of the present invention to propose a kind of Quick Response Code checking system based on electronic signature.
To reach the purpose, the embodiment of the first aspect of the present invention discloses a kind of Quick Response Code based on electronic signature
Verification method, comprises the following steps:Quick Response Code generation side is signed electronically to two-dimensional code data, and electronic signature is divided into
First signature segmentation block and the second signature segmentation block;The Quick Response Code generation side is signed by the two-dimensional code data, described first
Segmentation block and the second signature segmentation block are sent to Quick Response Code authenticating party;The Quick Response Code authenticating party is to the two-dimensional code data, institute
State the first signature segmentation block and the second signature segmentation block is authenticated and generates witness data;Quick Response Code user is scanned by described
Quick Response Code generation side issue Quick Response Code, and according to scanning result from the Quick Response Code authenticating party inquiry it is corresponding witness data and
First signature segmentation block, wherein, the Quick Response Code includes the two-dimensional code data and the second signature segmentation block;And the two dimension
Code user splits block, the second signature segmentation block and the witness data according to the described first signature and the two-dimensional code data is entered
Row checking.
2 D code verification method based on electronic signature according to embodiments of the present invention, can be ensured by Quick Response Code authenticating party
Two-dimensional code data is not tampered with, and effectively prevents criminal from carrying out malice competition or implantation virus by distorting two-dimensional code data
Deng behavior.In addition, collaborative work of this method by Quick Response Code generation side, Quick Response Code authenticating party and Quick Response Code user so that
Quick Response Code market has more safety guarantee.The information truth that guarantee user is obtained by Quick Response Code is legal and is not tampered with.Two dimension
Whether the data that can spontaneously verify entrained by the Quick Response Code after code user's scanning Quick Response Code have a destroyed vestige, and with two
Tie up code authentication side to cooperate, the safety and reliability of mutual authentication two-dimensional code data, so that, ensure the legitimate rights and interests of user.
In addition, the 2 D code verification method according to the above embodiment of the present invention based on electronic signature can also have it is as follows
Additional technical characteristic:
In some instances, the Quick Response Code generation side signs electronically to two-dimensional code data, including:Quick Response Code is produced
Side is signed electronically by digital certificate to two-dimensional code data, wherein, the digital certificate is by the Quick Response Code authenticating party label
Hair, the digital certificate includes the authentication information of the Quick Response Code generation side.
In some instances, when producing electronic signature, using SM2, RSA124 or RSA2048 AES, and to described
Electronic signature is split, and produces the first signature segmentation block and the second signature segmentation block.
In some instances, the witness data include the authentication information of the Quick Response Code authenticating party.
In some instances, the Quick Response Code authenticating party is to meet the Third Party Authentication mechanism that country issues authority.
The embodiment of second aspect of the present invention discloses a kind of Quick Response Code checking system based on electronic signature, including:Two
Code generation side, Quick Response Code authenticating party and Quick Response Code user are tieed up, wherein, the Quick Response Code generation side is used to enter two-dimensional code data
Row electronic signature, and electronic signature is divided into the first signature segmentation block and the second signature segmentation block, and by the two-dimentional yardage
Sent according to, the first signature segmentation block and the second signature segmentation block to Quick Response Code authenticating party, and issue Quick Response Code, wherein,
The Quick Response Code includes the two-dimensional code data and the second signature segmentation block;The Quick Response Code authenticating party is used for from described two
The two-dimensional code data, the first signature segmentation block and the second signature segmentation block that dimension code generation side is sent are authenticated and given birth to
Into witness data;And the Quick Response Code user is used to scan by the Quick Response Code of Quick Response Code generation side issue, and according to
Scanning result is signed from the corresponding witness data of Quick Response Code authenticating party inquiry and the first signature segmentation block according to described first
Name segmentation block, the second signature segmentation block and the witness data are verified to the two-dimensional code data.
Quick Response Code based on electronic signature checking system according to embodiments of the present invention, can be ensured by Quick Response Code authenticating party
Two-dimensional code data is not tampered with, and effectively prevents criminal from carrying out malice competition or implantation virus by distorting two-dimensional code data
Deng behavior.In addition, collaborative work of the system by Quick Response Code generation side, Quick Response Code authenticating party and Quick Response Code user so that
Quick Response Code market has more safety guarantee.The information truth that guarantee user is obtained by Quick Response Code is legal and is not tampered with.Two dimension
Whether the data that can spontaneously verify entrained by the Quick Response Code after code user's scanning Quick Response Code have a destroyed vestige, and with two
Tie up code authentication side to cooperate, the safety and reliability of mutual authentication two-dimensional code data, so that, ensure the legitimate rights and interests of user.
In addition, it is according to the above embodiment of the present invention based on electronic signature Quick Response Code checking system can also have it is as follows
Additional technical characteristic:
In some instances, the Quick Response Code generation side is used to carry out electronics label to two-dimensional code data by digital certificate
Name, wherein, the digital certificate is signed and issued by the Quick Response Code authenticating party, and the digital certificate includes the Quick Response Code generation side
Authentication information.
In some instances, when the Quick Response Code generation side is used to produce electronic signature, using SM2, RSA124 or
RSA2048 AESs, and the electronic signature is split, produce the first signature segmentation block and the second signature segmentation
Block.
In some instances, the witness data include the authentication information of the Quick Response Code authenticating party.
In some instances, the Quick Response Code authenticating party is to meet the Third Party Authentication mechanism that country issues authority.
The additional aspect of the present invention and advantage will be set forth in part in the description, and will partly become from the following description
Obtain substantially, or recognized by the practice of the present invention.
Embodiment
Embodiments of the invention are described below in detail, the example of the embodiment is shown in the drawings, wherein from beginning to end
Same or similar label represents same or similar element or the element with same or like function.Below with reference to attached
The embodiment of figure description is exemplary, is only used for explaining the present invention, and is not construed as limiting the claims.
In the description of the invention, it is to be understood that term " longitudinal direction ", " transverse direction ", " on ", " under ", "front", "rear",
The orientation or position relationship of the instruction such as "left", "right", " vertical ", " level ", " top ", " bottom " " interior ", " outer " is based on accompanying drawing institutes
The orientation or position relationship shown, is for only for ease of the description present invention and simplifies description, rather than indicate or imply signified dress
Put or element there must be specific orientation, with specific azimuth configuration and operation, therefore it is not intended that to the limit of the present invention
System.
In the description of the invention, it is necessary to explanation, unless otherwise prescribed and limit, term " installation ", " connected ",
" connection " should be interpreted broadly, for example, it may be mechanically connect or electrical connection or the connection of two element internals, can
To be to be joined directly together, it can also be indirectly connected to by intermediary, for the ordinary skill in the art, can basis
Concrete condition understands the concrete meaning of the term.
In the following description, Quick Response Code generation side is, for example, online merchants, and Quick Response Code authenticating party is, for example, to meet country to issue
The Third Party Authentication mechanism of authority is sent out, similar to ca authentication mechanism, Quick Response Code user is, for example, final payment/use user
Deng.
The flow of 2 D code verification method based on electronic signature according to embodiments of the present invention is described below in conjunction with accompanying drawing
Figure.
Fig. 1 is the flow chart of the 2 D code verification method according to an embodiment of the invention based on electronic signature.Such as Fig. 1
It is shown, with reference to Fig. 2, Fig. 3 and Fig. 4, the 2 D code verification method according to an embodiment of the invention based on electronic signature, including
Following steps:
Step S101:Quick Response Code generation side is signed electronically to two-dimensional code data, and electronic signature is divided into first
Signature segmentation block (i.e. signature segmentation 1) and the second signature segmentation block (i.e. signature segmentation 2).
Specifically, Quick Response Code is produced and two-dimensional code data can signed electronically by digital certificate, wherein, numeral
Certificate is signed and issued by Quick Response Code authenticating party, and digital certificate includes the authentication information of Quick Response Code generation side, similar to body
Part card etc..
With reference to shown in Fig. 2 and Fig. 3, Quick Response Code produces digital certificates (the i.e. digital card that root is issued according to Quick Response Code authenticating party
Book) data (i.e. two-dimensional code data) that Quick Response Code is carried are signed electronically, after signing successfully, Quick Response Code is produced can basis
Unique electronic signature cutting techniques are split to the Quick Response Code signed, and produce signature segmentation 1 and signature segmentation 2.For example:
Electronic signature is encrypted through but not limited to SM2, RSA124 or RSA2048 AES for Quick Response Code generation side, then right
Electronic signature is split, and obtains signature segmentation 1 and signature segmentation 2, that is, when producing electronic signature, using SM2, RSA124 or
RSA2048 AESs, and electronic signature is split, the first signature segmentation block and the second signature segmentation block are produced,
Using SM2, RSA1024, the AES such as RSA2048 can also ensure partition data while reducing data volume in Quick Response Code
Uniqueness and non-reproduction.
Step S102:Quick Response Code generation side sends two-dimensional code data, the first signature segmentation block and the second signature segmentation block
To Quick Response Code authenticating party.
In this example, two-dimensional code data, the first signature segmentation block and the second signature segmentation block are sent out by Quick Response Code generation side
The purpose for delivering to Quick Response Code authenticating party is:Quick Response Code produces the request of direction Quick Response Code authenticating party to be recognized for this Quick Response Code
Card operation.
Step S103:Quick Response Code authenticating party is carried out to two-dimensional code data, the first signature segmentation block and the second signature segmentation block
Certification simultaneously generates witness data.
Specifically, with reference to shown in Fig. 2 and Fig. 3, the signature point that Quick Response Code authenticating party first provides Quick Response Code generation side
Cut 1 to be synthesized with signature segmentation 2, synthesize electronic signature data, conveniently the subsequent operation such as storage and checking.Then Quick Response Code
Authenticating party is signed electronically to signature segmentation 1, signature segmentation 2, two-dimensional code data according to the certificate of itself and forms witness number
According to.Witness data include but is not limited to the authentication information of Quick Response Code authenticating party.Witness data major function includes:
1st, Late Stage Verification work is carried out for the Quick Response Code of scanning for Quick Response Code user.
2nd, Third Party Authentication work, convenient evidence obtaining clothes in the future are carried out for the 2 D code information that Quick Response Code generation side is this time carried
Business.
That is, Quick Response Code authenticating party is to the two dimension of the signature segmentation 1, signature segmentation 2, Quick Response Code generation side split
Code carries data and signed electronically, and the content after signature is preserved as witness data, and the witness data are mainly the 3rd
Service Ticket function of the square certification authority to the 2 D code information of Quick Response Code generation side.
Step S104:Quick Response Code user scanning by the Quick Response Code side of generationing issue Quick Response Code, and according to scanning result from
The corresponding witness data of Quick Response Code authenticating party inquiry and the first signature segmentation block, wherein, Quick Response Code includes two-dimensional code data and the
Two signature segmentation blocks.Wherein, Quick Response Code produces to enter the Quick Response Code by the certification of Quick Response Code authenticating party by legal means
Row is propagated, and mode of propagation is determined that Quick Response Code user is for example by browsing route of transmission by Quick Response Code generation side.
With reference to shown in Fig. 2 and Fig. 4, after Quick Response Code user's successful scan, Quick Response Code user is by the two dimension got
Two-dimensional code data and embedded signature segmentation 2 entrained by code are scanned, and Quick Response Code user can now be directed to scanning result
Worked as follows:Quick Response Code user is based on signature segmentation 2 and asks authentication service to Quick Response Code authenticating party, inquires about the Quick Response Code
Signature segmentation 1 and witness data.
Step S105:Quick Response Code user splits block, the second signature segmentation block and witness data to two according to the first signature
Dimension code data are verified.
Specifically, Quick Response Code user is verified and same based on signature segmentation 1,2 pairs of two-dimensional code datas progress of signature segmentation
When checking witness data (such as identity of Quick Response Code authenticating party) reliability, ensure that the information entrained by the Quick Response Code is with this
It is safe and reliable, do not carry any potential safety hazard.So as to learn whether Quick Response Code is safe and reliable.
In this example, checking of the Quick Response Code user to Quick Response Code be in local running background, it is ensured that foreground is used
The normal using terminal of user can not be perceived, thus, it is to avoid influence user experience.Wherein, Quick Response Code user is, for example,
Mobile terminal, tablet personal computer etc..
2 D code verification method based on electronic signature according to embodiments of the present invention, can be ensured by Quick Response Code authenticating party
Two-dimensional code data is not tampered with, and effectively prevents criminal from carrying out malice competition or implantation virus by distorting two-dimensional code data
Deng behavior.In addition, collaborative work of this method by Quick Response Code generation side, Quick Response Code authenticating party and Quick Response Code user so that
Quick Response Code market has more safety guarantee.The information truth that guarantee user is obtained by Quick Response Code is legal and is not tampered with.Two dimension
Whether the data that can spontaneously verify entrained by the Quick Response Code after code user's scanning Quick Response Code have a destroyed vestige, and with two
Tie up code authentication side to cooperate, the safety and reliability of mutual authentication two-dimensional code data, so that, ensure the legitimate rights and interests of user.
As shown in figure 5, further embodiment of the present invention additionally provides a kind of Quick Response Code checking system based on electronic signature
System 500, including:Quick Response Code generation side 510, Quick Response Code authenticating party 520 and Quick Response Code user 530.
Wherein, Quick Response Code generation side 510 is used to sign electronically to two-dimensional code data, and electronic signature is divided into the
One signature segmentation block and the second signature split block, and two-dimensional code data, the first signature segmentation block and the second signature segmentation block are sent out
Quick Response Code authenticating party, and issue Quick Response Code are delivered to, wherein, Quick Response Code includes two-dimensional code data and the second signature segmentation block.Its
In, Quick Response Code generation side 510 can be added through but not limited to SM2, RSA124 or RSA2048 AES to electronic signature
It is close, then electronic signature is split, the first signature segmentation block and the second signature segmentation block, i.e. Quick Response Code generation side is obtained
510 for producing during electronic signature, splits using SM2, RSA124 or RSA2048 AES, and to electronic signature, produces
Raw first signature segmentation block and the second signature segmentation block.Quick Response Code authenticating party 520 is used for being sent from Quick Response Code generation side 510
Two-dimensional code data, first signature segmentation block and second signature segmentation block be authenticated and generate witness data, wherein, witness number
According to including but not limited to:The authentication information of Quick Response Code authenticating party 520.Quick Response Code user 530 is used to scan by Quick Response Code
The Quick Response Code that generation side 510 is issued, and corresponding witness data and first are inquired about from Quick Response Code authenticating party 520 according to scanning result
Signature segmentation block, and two-dimensional code data is verified according to the first signature segmentation block, the second signature segmentation block and witness data.
In one embodiment of the invention, Quick Response Code generation side 510 is used to enter two-dimensional code data by digital certificate
Row electronic signature, wherein, digital certificate is signed and issued by Quick Response Code authenticating party 520, and digital certificate includes the identity of Quick Response Code generation side
Authentication information.
It should be noted that the Quick Response Code based on electronic signature of the embodiment of the present invention verifies the specific implementation of system
It is similar with the specific implementation of the part of the 2 D code verification method based on electronic signature, in order to reduce redundancy, do not repeat.
Quick Response Code based on electronic signature checking system according to embodiments of the present invention, can be ensured by Quick Response Code authenticating party
Two-dimensional code data is not tampered with, and effectively prevents criminal from carrying out malice competition or implantation virus by distorting two-dimensional code data
Deng behavior.In addition, collaborative work of the system by Quick Response Code generation side, Quick Response Code authenticating party and Quick Response Code user so that
Quick Response Code market has more safety guarantee.The information truth that guarantee user is obtained by Quick Response Code is legal and is not tampered with.Two dimension
Whether the data that can spontaneously verify entrained by the Quick Response Code after code user's scanning Quick Response Code have a destroyed vestige, and with two
Tie up code authentication side to cooperate, the safety and reliability of mutual authentication two-dimensional code data, so that, ensure the legitimate rights and interests of user.
Embodiments in accordance with the present invention, it is possible to increase the security during Quick Response Code use, user is using Quick Response Code
It can no longer worry whether the source of information is reliable or whether information was once tampered in transmitting procedure while obtaining information,
Embodiments of the invention are prevented effectively from Quick Response Code and take viruliferous possibility, are that businessman and user also ensure while offering convenience
The benign competition in Quick Response Code market, is the good development in Quick Response Code market escorts.
In the description of this specification, reference term " one embodiment ", " some embodiments ", " example ", " specifically show
The description of example " or " some examples " etc. means to combine specific features, structure, material or the spy that the embodiment or example are described
Point is contained at least one embodiment of the present invention or example.In this manual, to the schematic representation of the term not
Necessarily refer to identical embodiment or example.Moreover, specific features, structure, material or the feature of description can be any
One or more embodiments or example in combine in an appropriate manner.
Although an embodiment of the present invention has been shown and described, for the ordinary skill in the art, can be with
A variety of changes, modification can be carried out to these embodiments, replace without departing from the principles and spirit of the present invention by understanding
And modification, the scope of the present invention is by appended claims and its equivalent limits.