CN105447710A - Commodity authenticity verification system and commodity authenticity verification method based on two-dimensional barcode in e-commerce - Google Patents

Commodity authenticity verification system and commodity authenticity verification method based on two-dimensional barcode in e-commerce Download PDF

Info

Publication number
CN105447710A
CN105447710A CN201510770621.2A CN201510770621A CN105447710A CN 105447710 A CN105447710 A CN 105447710A CN 201510770621 A CN201510770621 A CN 201510770621A CN 105447710 A CN105447710 A CN 105447710A
Authority
CN
China
Prior art keywords
commodity
trade company
signature
commerce platform
merchant identification
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201510770621.2A
Other languages
Chinese (zh)
Inventor
郭楠
王权琦
赵英南
冯络银
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Northeastern University China
Original Assignee
Northeastern University China
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Northeastern University China filed Critical Northeastern University China
Priority to CN201510770621.2A priority Critical patent/CN105447710A/en
Publication of CN105447710A publication Critical patent/CN105447710A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/018Certifying business or products
    • G06Q30/0185Product, service or business identity fraud

Landscapes

  • Business, Economics & Management (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Accounting & Taxation (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Finance (AREA)
  • Marketing (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention provides a commodity authenticity verification system and a commodity authenticity verification method based on the two-dimensional barcode in e-commerce. The system comprises an e-commerce platform, a trusted two-dimensional barcode generator and a two-dimensional barcode verifier. The method comprises the following steps: the e-commerce platform generates CBS signature algorithm common parameters; a merchant identity certificate application is submitted; a merchant applies to the e-commerce platform for a commodity signature; the trusted two-dimensional barcode generator generates a commodity two-dimensional barcode and sends the commodity two-dimensional barcode to a user; the user scans the two-dimensional barcode of the commodity through the two-dimensional barcode verifier to verify whether the information in the two-dimensional barcode of the commodity is authentic. According to the invention, the authenticity of purchased commodities is verified through a safe and efficient mechanism, and the reliability of merchants can be confirmed. The identity authenticity of merchants is ensured by authorizing the CBS digital signature permission to merchants, and the authenticity of commodities is ensured through a BLS digital signature generated based on the commodity barcode.

Description

Based on the commodity authenticity verification system and method for Quick Response Code in a kind of ecommerce
Technical field
The invention belongs to technical field of network security, particularly in a kind of ecommerce based on the commodity authenticity verification system and method for Quick Response Code.
Background technology
Quick Response Code be mobile phone is needed access, use information coding in Quick Response Code, utilize the camera of mobile phone to distinguish.Mobile phone two-dimension code can be printed in the variety carrier such as newspaper, magazine, business card, user can be realized fast browsing webpage, download picture and text, music, video, acquisition reward voucher by the number below scanning Quick Response Code or input Quick Response Code, key word, be understood commodity favor information, and eliminate the process inputting URL on mobile phone, realize a key online.
Digital signature technology is exactly a kind of information security technology come with reference to real-life signature simulation.Digital signature can solve forgery, the problem such as distort, deny and pretend to be, and it solves information well.Digital signature sends to recipient together with making a summary with source document or its, once information is tampered, recipient can judge this by calculating summary and certifying signature, and file is invalid, thus ensure the integrality of data.In digital signature, when using private key to sign, if recipient verifies with corresponding PKI, just can assert that signer is exactly the people having private key as long as be verified, oneself knowing because private key only has signer, thus demonstrate signer identity.As long as recipient returns the signature of oneself after receiving information in signature system, receive message to represent, just can solve non-repudiation very well.
Along with the constantly universal of ecommerce and development, the problem of the commodity authenticity that user buys also receives all the more the concern of people.In e-commerce field, the sell-fake-products problem of third party trade company on e-commerce platform is the thorny problem of an electric business of puzzlement and consumer always, buy for consumer that certification after fake products substandard products is difficult, feedback is difficult, right-safeguarding is difficult, the confusion that commodity supervision is difficult, tracking is difficult, accountability is difficult that third party trade company sells, whole industry is all badly in need of wanting a kind of succinct effectively solution.Commodity authenticity verification technology solves trade company in ecommerce to sell the effective technology means of fake products problem, public key system or signature system are combined with Quick Response Code coding techniques, makes user can by the authenticity of items scanning Quick Response Code and bar code verifier commodity after receiving the commodity bought on electric business website.
In recent years, scholars expand a series of research for using the safety issue of Quick Response Code in ecommerce, are intended to realize safety, efficiently commodity authenticity verification mechanism.Document " design of asymmetric encryption two-dimension code anti-counterfeiting system " proposes a kind of by the coding of RSA asymmetric encryption in conjunction with Quick Response Code and the authentication method of mobile phone decoding principle, the method is by being built in APP by PKI, as long as the mobile phone being provided with this APP can be verified Quick Response Code, solve the forgery problem of Quick Response Code, but the rsa encryption mechanism arithmetic speed that the method is selected is slower, for guaranteeing its security, large several n that algorithm is selected is at least more than 512, and the computing of large number result in authentication efficiency and reduces.PKI technology is used for generation and the verification process of Quick Response Code by document " two-dimensional bar code E-consumer certificate and system thereof based on PKI ", these means produce two-dimensional bar code after mainly original message being utilized and carrying out signing and encrypt based on the public-key technology of PKI, checking is the inverse operation to generative process, has ensured the security of data and the from the horse's mouth of message.But these means need a large amount of infrastructure to maintain running, and there is the problems such as certificate management complexity.
Visible, among above-mentioned certificate scheme, what solve commodity authenticity questions many employings is some classical schemes of traditional cryptography, although these schemes can solve entity authentication problem, but in the application process of reality, but there is inefficiency, feature that operation maintenance cost is high, be unfavorable for the popularization on a large scale in actual environment.
Summary of the invention
For the deficiency that prior art exists, the invention provides the commodity authenticity verification system and method based on Quick Response Code in a kind of ecommerce.
Technical scheme of the present invention is:
Based on a commodity authenticity verification system for Quick Response Code in ecommerce, comprising:
E-commerce platform: generate common parameter, the legitimacy of checking merchant identification information and the legitimacy of merchandise news, the trade company legal to identity issues merchant identification certificate and generates the signature key comprising merchant identification certificate and trade company's public private key pair, the commodity legal to quality generate commodity signature, commodity signature and signature key are fed back to credible two-dimension code and generates end;
Credible two-dimension code generates end: submit to merchant identification certificate request and commodity to sign to e-commerce platform and apply for, e-commerce platform ID, the merchant identification ID of trade company's input and commodity bar code, commodity are signed, generating merchant identity is signed, and then generation comprises e-commerce platform ID, merchant identification ID, merchandise news, commodity are signed, merchant identification is signed, the commodity Quick Response Code of trade company's PKI sends to user;
Quick Response Code verifying end: realize in the intelligent terminal of user, items scanning Quick Response Code, the authenticity of checking commodity Quick Response Code internal information.
Described e-commerce platform comprises:
Trade company's authentication module: the systematic parameter generating e-commerce platform self, generates the signature key comprising merchant identification certificate and trade company's public private key pair, is connected by signature key send to trade company by the socket that trade company sets up; Generation commodity are signed, and connected commodity signature is sent to trade company by socket;
Item authentication module: send to the merchandise news of e-commerce platform to verify to trade company, and sign to the merchandise news in commodity bar code, obtains commodity signature and returns to trade company;
Trade company's certificate keeping module: by database keeping merchant identification certificate.
Described credible two-dimension code generates end and comprises:
Trade company logs in/Registering modules: submit merchant identification certificate request to e-commerce platform, obtains merchant identification certificate;
Item authentication application module: trade company signs to e-commerce platform application commodity;
Two-dimensional code generation module: e-commerce platform ID, merchant identification ID and commodity bar code, commodity are signed, generating merchant identity is signed, and then generates the commodity Quick Response Code comprising e-commerce platform ID, merchant identification ID, merchandise news, commodity signature, merchant identification signature, trade company's PKI.
Described Quick Response Code verifying end comprises:
Quick Response Code scan module: be the development interface provided according to Zxing storehouse, call the camera authority of intelligent terminal, carry out scan decoder, commodity Quick Response Code is converted to the data stream comprising e-commerce platform ID, merchant identification ID, merchandise news, commodity signature, merchant identification signature, trade company's PKI;
Quick Response Code authentication module: data stream is verified: Base64 decoding is carried out to the commodity Quick Response Code of signing containing merchant identification and obtains byte array, extract merchandise news, merchant identification signature, trade company's PKI, merchant identification ID, if the merchant identification that commodity Quick Response Code is corresponding is legal, then carry out commodity authenticity verification.
Carry out the method for commodity authenticity verification in ecommerce described in utilization based on the commodity authenticity verification system of Quick Response Code, comprise the following steps:
Step 1: e-commerce platform generates CBS signature algorithm common parameter;
Step 2: trade company's credible two-dimension code generates end and uses socket to connect to e-commerce platform submission merchant identification certificate request, if there is not this merchant identification certificate in the database of e-commerce platform, then perform step 3, if there is this merchant identification certificate in the database of e-commerce platform, then the corresponding trade company signature key be stored in database is sent to trade company by socket connection by e-commerce platform, and performs step 4;
Step 3: e-commerce platform utilizes CBS signature algorithm to generate the signature key comprising merchant identification certificate and trade company's public private key pair, is connected signature key by the socket that trade company sets up and sends to trade company, and perform step 4;
Step 4: trade company signs to e-commerce platform application commodity, e-commerce platform utilizes trust center to verify the quality legitimacy of merchandise news, the electronic article business platform legal to quality utilizes BLS signature algorithm to generate commodity signature to commodity bar code, is connected commodity signature is sent to trade company by socket;
Step 5: credible two-dimension code generates end and generates commodity Quick Response Code and send to user;
Step 6: user, by the Quick Response Code of Quick Response Code verifying end items scanning, verifies the authenticity of the information in the Quick Response Code of commodity.
E-commerce platform described in step 1 generates CBS signature algorithm common parameter, and idiographic flow is as follows:
First e-commerce platform chooses two rank is the cyclic group G of q 1, G 2with a Bilinear map e:G 1× G 1→ G 2; Select a generator P ∈ G afterwards 1with a random e-commerce platform private key then e-commerce platform PKI PK is calculated c=s cp, selects two key hash function H in addition 1: { 0,1} *→ G 1and H 2: generating e-commerce platform common parameter is (G 1, G 2, e, q, P, PK c, H 1, H 2).
The concrete steps of described step 3 are as follows:
Step 3.1: trade company initiates letter of identity application to e-commerce platform, and the identity information of oneself is sent to e-commerce platform by trade company, the identity legitimacy of e-commerce platform checking merchant information, the trade company legal to identity issues letter of identity; Identity information comprises the PKI PK of trade company a=s ap and identity ID, s ait is trade company's private key;
Step 3.2: trade company, after obtaining the letter of identity issued by e-commerce platform, utilizes CBS signature algorithm to generate and comprises merchant identification certificate and trade company public private key pair (s a, PK a) signature key S a=s cp a+ s ap a=Cert a+ s ap a; Through H 1hash function process e-commerce platform PKI, trade company's PKI and merchant identification ID obtain the intermediate value P that signs a=H 1(PK c|| PK a|| ID a) ∈ G 1, ID afor the identity ID of trade company;
Step 3.3: signature key is connected by the socket that trade company sets up and sends to trade company, and perform step 4.
The concrete steps of described step 4 are as follows:
Step 4.1: generate BLS signature algorithm common parameter;
E-commerce platform generates two q rank cyclic group G 1and G 2, a bilinear map e:G 1× G 1→ G 2, select a random number s ∈ Z q *as private key, select a stochastic generation unit point P ∈ G 1, and calculate e-commerce platform PKI P pub=s*p, selects Hash function H 1:
Step 4.2: e-commerce platform utilizes trust center to verify the quality legitimacy of merchandise news, the merchandise news m be included in commodity bar code that e-commerce platform provides according to trade company, the commodity legal to quality utilize BLS signature algorithm to calculate commodity signature sigma=sH (m) ∈ G 1;
Step 4.3: commodity signature is sent to trade company by socket connection by e-commerce platform.
The concrete steps of described step 5 are as follows:
Step 5.1: user utilizes credible two-dimension code to generate end and signs to e-commerce platform ID, the merchant identification ID of trade company's input and commodity bar code, commodity, generating merchant identity is signed Sign; U and V is comprised, wherein U=rP in merchant identification signature Sign a, r is the number of trade company's random selecting, V=(r+h) S a=(r+h) (s c+ s a) P a, h=H 2(m, U), H 2: { 0 , 1 } * × G 1 * → Z q * ;
Step 5.2: generate commodity Quick Response Code, the data stream of this commodity Quick Response Code comprises e-commerce platform ID, merchant identification ID, commodity signature, merchant identification signature, trade company's PKI.
The concrete steps of described step 6 are as follows:
Step 6.1: commodity Quick Response Code, by Quick Response Code verifying end items scanning Quick Response Code, is converted to the data stream comprising e-commerce platform ID, merchant identification ID, merchandise news m, commodity signature, merchant identification signature Sign, trade company's PKI by user;
Step 6.2: commodity Quick Response Code is verified: judge whether containing merchant identification signature Sign in commodity Quick Response Code, if containing merchant identification signature Sign, then perform step 6.3, otherwise commodity Quick Response Code authentication failed, terminates the checking of commodity Quick Response Code;
Step 6.3: the data stream of commodity Quick Response Code is carried out Base64 decoding, thus obtain byte array;
Step 6.4: according to the length of merchandise news m in front 4 numerical value determination commodity Quick Response Codes of byte array, length, the length of trade company's PKI, the length of merchant identification ID of merchant identification signature Sign, extract merchandise news m, merchant identification signature Sign, trade company's PKI, merchant identification ID according to each length value;
Step 6.5: use the e-commerce platform PKI PK in CBS digital signature cwith trade company PKI PK adata P in process commodity Quick Response Code a, U, V, h: calculate e-commerce platform PKI PK cwith (U+hP a) mapping and trade company PKI PK awith (U+hP a) the product of mapping, and verify whether this product equals P, the mapping of V, namely verify e (PK c, U+hP a) e (PK a, U+hP awhether)=e (P, V) sets up, U and V wherein forms signature information, and h comprises merchandise news m, P acomprise merchant identification information, if set up, then merchant identification signature verification successfully proves that merchant identification is legal, performs step 6.6, otherwise authentication failed proves that merchant identification is illegal, terminates checking;
Step 6.6: for merchandise news m and commodity signature, use the e-commerce platform PKI P in BLS digital signature pubwhether checking merchandise news m meets e (H (m), P pub)=e (σ, P pub)=e (σ, P), if equal, is then proved to be successful, and these commodity are real goods, otherwise authentication failed, these commodity are untrue commodity.
Beneficial effect:
The present invention purchases the authenticity of commodity by the institute of authenticate safely and efficiently, can confirm the reliability of trade company simultaneously, and mechanism that line calls to account under feedback and line has been merged in the present invention in addition, provides the channel that reflects trade company's sell-fake-products efficiently and call to account to user.System authorizes CBS digital signature authority to ensure the authenticity of merchant identification by e-commerce platform to trade company, and e-commerce platform ensures the authenticity of commodity by the BLS digital signature generated commodity bar code.In sum, the present invention to a certain degree solves the commodity supervision difficult problem that ecommerce faces now.
Accompanying drawing explanation
Fig. 1 is the system and method applied environment Organization Chart of the specific embodiment of the invention;
Fig. 2 be the specific embodiment of the invention entity between the schematic diagram of communication process;
Fig. 3 is the merchant identification certificate request process sequential chart of the specific embodiment of the invention;
Fig. 4 is the commodity Quick Response Code generative process sequential chart of the specific embodiment of the invention;
Fig. 5 is the commodity signature generative process sequential chart of the specific embodiment of the invention;
Fig. 6 is the commodity authenticity verification methods process flow diagram of the specific embodiment of the invention;
Fig. 7 is the Quick Response Code checking process flow diagram of the specific embodiment of the invention.
Embodiment
Below in conjunction with accompanying drawing, the specific embodiment of the present invention is elaborated.
Present embodiment is that the commodity authenticity verification system and method based on Quick Response Code is applied to commodity authenticity verification field, applied environment as shown in Figure 1, encoded after adopting id-based signatures mechanism to sign to commodity bar code in specific implementation process and produced Quick Response Code, need be verified merchant identification signature and commodity signature while checking Quick Response Code internal information, just can obtain commodity is be really commodity simultaneously.
Based on the commodity authenticity verification system of Quick Response Code in the ecommerce of present embodiment, comprising:
E-commerce platform: generate common parameter, the legitimacy of checking merchant identification information and the legitimacy of merchandise news, the trade company legal to identity issues merchant identification certificate and generates the signature key comprising merchant identification certificate and trade company's public private key pair, the commodity legal to quality generate commodity signature, commodity signature and signature key are fed back to credible two-dimension code and generates end;
Credible two-dimension code generates end: submit to merchant identification certificate request and commodity to sign to e-commerce platform and apply for, e-commerce platform ID, the merchant identification ID of trade company's input and commodity bar code, commodity are signed, generating merchant identity is signed, and then generation comprises e-commerce platform ID, merchant identification ID, merchandise news, commodity are signed, merchant identification is signed, the commodity Quick Response Code of trade company's PKI sends to user;
Quick Response Code verifying end: realize in the intelligent terminal of user, items scanning Quick Response Code, the authenticity of checking commodity Quick Response Code internal information.
E-commerce platform comprises:
Trade company's authentication module: the systematic parameter generating e-commerce platform self, generates the signature key comprising merchant identification certificate and trade company's public private key pair, is connected by signature key send to trade company by the socket that trade company sets up; Generation commodity are signed, and connected commodity signature is sent to trade company by socket;
Item authentication module: send to the merchandise news of e-commerce platform to verify to trade company, and sign to the merchandise news in commodity bar code, obtains commodity signature and returns to trade company;
Trade company's certificate keeping module: by database keeping merchant identification certificate.
Described credible two-dimension code generates end and comprises:
Trade company logs in/Registering modules: submit merchant identification certificate request to e-commerce platform, obtains merchant identification certificate;
Item authentication application module: trade company signs to e-commerce platform application commodity;
Two-dimensional code generation module: e-commerce platform ID, merchant identification ID and commodity bar code, commodity are signed, generating merchant identity is signed, and then generates the commodity Quick Response Code comprising e-commerce platform ID, merchant identification ID, merchandise news, commodity signature, merchant identification signature, trade company's PKI.
Described Quick Response Code verifying end comprises:
Quick Response Code scan module: be the development interface provided according to Zxing storehouse, call the camera authority of intelligent terminal, carry out scan decoder, commodity Quick Response Code is converted to the data stream comprising e-commerce platform ID, merchant identification ID, merchandise news, commodity signature, merchant identification signature, trade company's PKI;
Quick Response Code authentication module: data stream is verified: Base64 decoding is carried out to the commodity Quick Response Code of signing containing merchant identification and obtains byte array, extract merchandise news, merchant identification signature, trade company's PKI, merchant identification ID, if the merchant identification that commodity Quick Response Code is corresponding is legal, then carry out commodity authenticity verification.
For convenience of subsequent descriptions, provide mark as shown in Table 1 and Table 2 and explanation.
Table 1 identifies and illustrates
Fig. 2 be present embodiment entity between communication process: during (1) initialization, e-commerce platform generates EBP PKI PK c, private key s cwith other system parameter.(2) trade company runs the public private key pair that MrKeyGen algorithm generates oneself.(3) trade company signs to e-commerce platform initiation merchant identification certificate request and commodity and applies for, the PKI of oneself and identity information are issued e-commerce platform, request merchant identification certificate.(3) its identity is verified after the request that e-commerce platform receives from trade company.(4) the e-commerce platform systematic parameter generated before and the private key of oneself generates merchant identification certificate Cert a.(5), after trade company receives letter of identity, compute signature middle entry, is used for producing follow-up signature key.(6) trade company uses SignKeyGen algorithm to generate signature key.(7) trade company uses Sign algorithm to merchandise news m signature, generates signature result.(8) Quick Response Code generating algorithm is called by the PKI PK of merchandise news m, ID, trade company by trade company awith Sign as output, generate commodity Quick Response Code.(9) user's runtime verification algorithm verify, calculates the correctness of commodity signature.(10) user is after being verified, and can show merchandise news m.
Carry out the method for commodity authenticity verification in ecommerce described in utilization based on the commodity authenticity verification system of Quick Response Code, as shown in Figure 6, comprise the following steps:
Step 1: e-commerce platform generates CBS signature algorithm common parameter;
Idiographic flow is: first e-commerce platform chooses two rank is the cyclic group G of q 1, G 2with a Bilinear map e:G 1× G 1→ G 2; Select a generator P ∈ G afterwards 1with a random e-commerce platform private key then e-commerce platform PKI PK is calculated c=s cp, selects two key hash function H in addition 1: { 0,1} *→ G 1and H 2: generating e-commerce platform common parameter is (G 1, G 2, e, q, P, PK c, H 1, H 2).
Step 2: trade company's credible two-dimension code generates end and uses socket to connect to e-commerce platform submission merchant identification certificate request, if there is not this merchant identification certificate in the database of e-commerce platform, then perform step 3, if there is this merchant identification certificate in the database of e-commerce platform, then the corresponding trade company signature key be stored in database is sent to trade company by socket connection by e-commerce platform, and performs step 4;
Step 3: e-commerce platform utilizes the generation of CBS signature algorithm to comprise merchant identification certificate Cert awith trade company public private key pair (s a, PK a) signature key S a, by signature key S athe socket connection of being set up by trade company sends to trade company, and performs step 4;
Idiographic flow is as shown in Figure 3:
Step 3.1: trade company initiates letter of identity application to e-commerce platform, and the identity information of oneself is sent to e-commerce platform by trade company, the identity legitimacy of e-commerce platform checking merchant information, the trade company legal to identity issues letter of identity Cert a; Identity information comprises the PKI PK of trade company a=s ap and identity ID, s ait is trade company's private key;
Step 3.2: trade company, after obtaining the letter of identity issued by e-commerce platform, utilizes CBS signature algorithm to generate and comprises merchant identification certificate and trade company public private key pair (s a, PK a) signature key S a=s cp a+ s ap a=Cert a+ s ap a; Through H 1hash function process e-commerce platform PKI, trade company's PKI and merchant identification ID obtain the intermediate value P that signs a=H 1(PK c|| PK a|| ID a) ∈ G 1, ID afor the identity ID of trade company;
Step 3.3: signature key is connected by the socket that trade company sets up and sends to trade company, and perform step 4.
Step 4: trade company signs to e-commerce platform application commodity, e-commerce platform utilizes trust center to verify the quality legitimacy of merchandise news, the electronic article business platform legal to quality utilizes BLS signature algorithm to generate commodity signature to commodity bar code, is connected commodity signature is sent to trade company by socket;
Step 4.1: generate BLS signature algorithm common parameter;
E-commerce platform generates two q rank cyclic group G 1and G 2, a bilinear map e:G 1× G 1→ G 2, select a random number as private key, select a stochastic generation unit point P ∈ G 1, and calculate e-commerce platform PKI P pub=s*p, selects Hash function H 1:
Step 4.2: e-commerce platform utilizes trust center to verify the quality legitimacy of merchandise news, the merchandise news m be included in commodity bar code that e-commerce platform provides according to trade company, the commodity legal to quality utilize BLS signature algorithm to calculate commodity signature sigma=sH (m) ∈ G 1;
Step 4.3: commodity signature sigma is sent to trade company by socket connection by e-commerce platform.
Generate communication process in the process of commodity signature between e-commerce platform, trade company and user as shown in Figure 5: commercial product identification information, to e-commerce platform application commercial product certificate, is connected by socket and sends to e-commerce platform by (1) trade company; (2) e-commerce platform utilizes BLS signature algorithm to generate commodity signature, is connected commodity signature is sent to trade company by socket; (3) trust authentication mechanism returns the result of commodity checking; (4) e-commerce platform utilizes BLS signature algorithm to calculate commodity signature according to the merchandise news m that trade company provides; (5) return commodity signature result to trade company simultaneously.
Step 5: credible two-dimension code generates end and generates commodity Quick Response Code and send to user;
Idiographic flow is as shown in Figure 4:
Step 5.1: user utilizes credible two-dimension code to generate end and signs to e-commerce platform ID, the merchant identification ID of trade company's input and commodity bar code, commodity signature sigma, generating merchant identity signature Sign; U and V is comprised, wherein U=rP in merchant identification signature Sign a, r is the number of trade company's random selecting, V=(r+h) S a=(r+h) (s c+ s a) P a, h=H 2(m, U), H 2: { 0 , 1 } * × G 1 * → Z q * ;
Step 5.2: generate commodity Quick Response Code, the data stream of this commodity Quick Response Code comprises e-commerce platform ID, merchant identification ID, commodity signature sigma, merchant identification signature Sign, trade company PKI PK a.
Step 6: user, by the Quick Response Code of Quick Response Code verifying end items scanning, verifies the authenticity of the information in the Quick Response Code of commodity.
Idiographic flow is as shown in Figure 7:
Step 6.1: commodity Quick Response Code, by Quick Response Code verifying end items scanning Quick Response Code, converts to and comprises e-commerce platform ID, merchant identification ID, merchandise news m, commodity signature sigma, merchant identification signature Sign, trade company PKI PK by user adata stream;
Step 6.2: commodity Quick Response Code is verified: judge whether containing merchant identification signature Sign in commodity Quick Response Code, if containing merchant identification signature Sign, then perform step 6.3, otherwise commodity Quick Response Code authentication failed, terminates the checking of commodity Quick Response Code;
Step 6.3: the data stream of commodity Quick Response Code is carried out Base64 decoding, thus obtain byte array;
Step 6.4: according to the length of merchandise news m in front 4 numerical value determination commodity Quick Response Codes of byte array, length, the trade company PKI PK of merchant identification signature Sign alength, merchant identification ID length, extract merchandise news m, merchant identification signature Sign, trade company PKI PK according to each length value a, merchant identification ID;
Step 6.5: use the e-commerce platform PKI PK in CBS digital signature cwith trade company PKI PK adata P in process commodity Quick Response Code a, U, V, h: calculate e-commerce platform PKI PK cwith (U+hP a) mapping and trade company PKI PK awith (U+hP a) the product of mapping, and verify whether this product equals P, the mapping of V, namely verify e (PK c, U+hP a) e (PK a, U+hP awhether)=e (P, V) sets up, U and V wherein forms signature information, and h comprises merchandise news m, P acomprise merchant identification information, if set up, then merchant identification signature verification successfully proves that merchant identification is legal, performs step 6.6, otherwise authentication failed proves that merchant identification is illegal, terminates checking;
Step 6.6: for merchandise news m and commodity signature, use the e-commerce platform PKI P in BLS digital signature pubwhether checking merchandise news m meets e (H (m), P pub)=e (σ, P pub)=e (σ, P), if equal, is then proved to be successful, and these commodity are real goods, otherwise authentication failed, these commodity are untrue commodity.

Claims (10)

1. in ecommerce based on a commodity authenticity verification system for Quick Response Code, it is characterized in that, comprising:
E-commerce platform: generate common parameter, the legitimacy of checking merchant identification information and the legitimacy of merchandise news, the trade company legal to identity issues merchant identification certificate and generates the signature key comprising merchant identification certificate and trade company's public private key pair, the commodity legal to quality generate commodity signature, commodity signature and signature key are fed back to credible two-dimension code and generates end;
Credible two-dimension code generates end: submit to merchant identification certificate request and commodity to sign to e-commerce platform and apply for, e-commerce platform ID, the merchant identification ID of trade company's input and commodity bar code, commodity are signed, generating merchant identity is signed, and then generation comprises e-commerce platform ID, merchant identification ID, merchandise news, commodity are signed, merchant identification is signed, the commodity Quick Response Code of trade company's PKI sends to user;
Quick Response Code verifying end: realize in the intelligent terminal of user, items scanning Quick Response Code, the authenticity of checking commodity Quick Response Code internal information.
2. in ecommerce according to claim 1 based on the commodity authenticity verification system of Quick Response Code, it is characterized in that, described e-commerce platform comprises:
Trade company's authentication module: the systematic parameter generating e-commerce platform self, generates the signature key comprising merchant identification certificate and trade company's public private key pair, is connected by signature key send to trade company by the socket that trade company sets up; Generation commodity are signed, and connected commodity signature is sent to trade company by socket;
Item authentication module: send to the merchandise news of e-commerce platform to verify to trade company, and sign to the merchandise news in commodity bar code, obtains commodity signature and returns to trade company;
Trade company's certificate keeping module: by database keeping merchant identification certificate.
3. in ecommerce according to claim 1 based on the commodity authenticity verification system of Quick Response Code, it is characterized in that, described credible two-dimension code generates end and comprises:
Trade company logs in/Registering modules: submit merchant identification certificate request to e-commerce platform, obtains merchant identification certificate;
Item authentication application module: trade company signs to e-commerce platform application commodity;
Two-dimensional code generation module: e-commerce platform ID, merchant identification ID and commodity bar code, commodity are signed, generating merchant identity is signed, and then generates the commodity Quick Response Code comprising e-commerce platform ID, merchant identification ID, merchandise news, commodity signature, merchant identification signature, trade company's PKI.
4. in ecommerce according to claim 1 based on the commodity authenticity verification system of Quick Response Code, it is characterized in that, described Quick Response Code verifying end comprises:
Quick Response Code scan module: be the development interface provided according to Zxing storehouse, call the camera authority of intelligent terminal, carry out scan decoder, commodity Quick Response Code is converted to the data stream comprising e-commerce platform ID, merchant identification ID, merchandise news, commodity signature, merchant identification signature, trade company's PKI;
Quick Response Code authentication module: data stream is verified: Base64 decoding is carried out to the commodity Quick Response Code of signing containing merchant identification and obtains byte array, extract merchandise news, merchant identification signature, trade company's PKI, merchant identification ID, if the merchant identification that commodity Quick Response Code is corresponding is legal, then carry out commodity authenticity verification.
5. utilize the method for carrying out commodity authenticity verification in the ecommerce described in claim 1 based on the commodity authenticity verification system of Quick Response Code, it is characterized in that, comprise the following steps:
Step 1: e-commerce platform generates CBS signature algorithm common parameter;
Step 2: trade company's credible two-dimension code generates end and uses socket to connect to e-commerce platform submission merchant identification certificate request, if there is not this merchant identification certificate in the database of e-commerce platform, then perform step 3, if there is this merchant identification certificate in the database of e-commerce platform, then the corresponding trade company signature key be stored in database is sent to trade company by socket connection by e-commerce platform, and performs step 4;
Step 3: e-commerce platform utilizes CBS signature algorithm to generate the signature key comprising merchant identification certificate and trade company's public private key pair, is connected signature key by the socket that trade company sets up and sends to trade company, and perform step 4;
Step 4: trade company signs to e-commerce platform application commodity, e-commerce platform utilizes trust center to verify the quality legitimacy of merchandise news, the electronic article business platform legal to quality utilizes BLS signature algorithm to generate commodity signature to commodity bar code, is connected commodity signature is sent to trade company by socket;
Step 5: credible two-dimension code generates end and generates commodity Quick Response Code and send to user;
Step 6: user, by the Quick Response Code of Quick Response Code verifying end items scanning, verifies the authenticity of the information in the Quick Response Code of commodity.
6. commodity authenticity verification methods according to claim 5, is characterized in that, the e-commerce platform described in step 1 generates CBS signature algorithm common parameter, and idiographic flow is as follows:
First e-commerce platform chooses two rank is the cyclic group G of q 1, G 2with a Bilinear map e:G 1× G 1→ G 2; Select a generator P ∈ G afterwards 1with a random e-commerce platform private key then e-commerce platform PKI PK is calculated c=s cp, selects two key hash function H in addition 1: { 0,1} *→ G 1with generating e-commerce platform common parameter is (G 1, G 2, e, q, P, PK c, H 1, H 2).
7. commodity authenticity verification methods according to claim 5, is characterized in that, the concrete steps of described step 3 are as follows:
Step 3.1: trade company initiates letter of identity application to e-commerce platform, and the identity information of oneself is sent to e-commerce platform by trade company, the identity legitimacy of e-commerce platform checking merchant information, the trade company legal to identity issues letter of identity; Identity information comprises the PKI PK of trade company a=s ap and identity ID, s ait is trade company's private key;
Step 3.2: trade company, after obtaining the letter of identity issued by e-commerce platform, utilizes CBS signature algorithm to generate and comprises merchant identification certificate and trade company public private key pair (s a, PK a) signature key S a=s cp a+ s ap a=Cert a+ s ap a; Through H 1hash function process e-commerce platform PKI, trade company's PKI and merchant identification ID obtain the intermediate value P that signs a=H 1(PK c|| PK a|| ID a) ∈ G 1, ID afor the identity ID of trade company;
Step 3.3: signature key is connected by the socket that trade company sets up and sends to trade company, and perform step 4.
8. commodity authenticity verification methods according to claim 5, is characterized in that, the concrete steps of described step 4 are as follows:
Step 4.1: generate BLS signature algorithm common parameter;
E-commerce platform generates two q rank cyclic group G 1and G 2, a bilinear map e:G 1× G 1→ G 2, select a random number as private key, select a stochastic generation unit point P ∈ G 1, and calculate e-commerce platform PKI P pub=s*p, selects Hash function H 1 : { 0 , 1 } * → G 1 * ;
Step 4.2: e-commerce platform utilizes trust center to verify the quality legitimacy of merchandise news, the merchandise news m be included in commodity bar code that e-commerce platform provides according to trade company, the commodity legal to quality utilize BLS signature algorithm to calculate commodity signature sigma=sH (m) ∈ G 1;
Step 4.3: commodity signature is sent to trade company by socket connection by e-commerce platform.
9. commodity authenticity verification methods according to claim 5, is characterized in that, the concrete steps of described step 5 are as follows:
Step 5.1: user utilizes credible two-dimension code to generate end and signs to e-commerce platform ID, the merchant identification ID of trade company's input and commodity bar code, commodity, generating merchant identity is signed Sign; U and V is comprised, wherein U=rP in merchant identification signature Sign a, r is the number of trade company's random selecting, V=(r+h) S a=(r+h) (s c+ s a) P a, h=H 2(m, U), H 2 : { 0 , 1 } * × G 1 * → Z q * ;
Step 5.2: generate commodity Quick Response Code, the data stream of this commodity Quick Response Code comprises e-commerce platform ID, merchant identification ID, commodity signature, merchant identification signature, trade company's PKI.
10. commodity authenticity verification methods according to claim 5, is characterized in that, the concrete steps of described step 6 are as follows:
Step 6.1: commodity Quick Response Code, by Quick Response Code verifying end items scanning Quick Response Code, is converted to the data stream comprising e-commerce platform ID, merchant identification ID, merchandise news m, commodity signature, merchant identification signature Sign, trade company's PKI by user;
Step 6.2: commodity Quick Response Code is verified: judge whether containing merchant identification signature Sign in commodity Quick Response Code, if containing merchant identification signature Sign, then perform step 6.3, otherwise commodity Quick Response Code authentication failed, terminates the checking of commodity Quick Response Code;
Step 6.3: the data stream of commodity Quick Response Code is carried out Base64 decoding, thus obtain byte array;
Step 6.4: according to the length of merchandise news m in front 4 numerical value determination commodity Quick Response Codes of byte array, length, the length of trade company's PKI, the length of merchant identification ID of merchant identification signature Sign, extract merchandise news m, merchant identification signature Sign, trade company's PKI, merchant identification ID according to each length value;
Step 6.5: use the e-commerce platform PKI PK in CBS digital signature cwith trade company PKI PK adata P in process commodity Quick Response Code a, U, V, h: calculate e-commerce platform PKI PK cwith (U+hP a) mapping and trade company PKI PK awith (U+hP a) the product of mapping, and verify whether this product equals P, the mapping of V, namely verify e (PK c, U+hP a) e (PK a, U+hP awhether)=e (P, V) sets up, U and V wherein forms signature information, and h comprises merchandise news m, P acomprise merchant identification information, if set up, then merchant identification signature verification successfully proves that merchant identification is legal, performs step 6.6, otherwise authentication failed proves that merchant identification is illegal, terminates checking;
Step 6.6: for merchandise news m and commodity signature, use the e-commerce platform PKI P in BLS digital signature pubwhether checking merchandise news m meets e (H (m), P pub)=e (σ, P pub)=e (σ, P), if equal, is then proved to be successful, and these commodity are real goods, otherwise authentication failed, these commodity are untrue commodity.
CN201510770621.2A 2015-11-12 2015-11-12 Commodity authenticity verification system and commodity authenticity verification method based on two-dimensional barcode in e-commerce Pending CN105447710A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510770621.2A CN105447710A (en) 2015-11-12 2015-11-12 Commodity authenticity verification system and commodity authenticity verification method based on two-dimensional barcode in e-commerce

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510770621.2A CN105447710A (en) 2015-11-12 2015-11-12 Commodity authenticity verification system and commodity authenticity verification method based on two-dimensional barcode in e-commerce

Publications (1)

Publication Number Publication Date
CN105447710A true CN105447710A (en) 2016-03-30

Family

ID=55557846

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510770621.2A Pending CN105447710A (en) 2015-11-12 2015-11-12 Commodity authenticity verification system and commodity authenticity verification method based on two-dimensional barcode in e-commerce

Country Status (1)

Country Link
CN (1) CN105447710A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106372950A (en) * 2016-09-21 2017-02-01 东北大学秦皇岛分校 Anti-counterfeiting authentication method for e-commerce and online shopping goods
CN108596665A (en) * 2018-04-24 2018-09-28 深圳市亿道数码技术有限公司 A kind of shopping motivational techniques and system based on block chain
CN110263559A (en) * 2019-06-20 2019-09-20 江西金格科技股份有限公司 The anti-tamper method of papery contract key message based on SM9 algorithm

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070051816A1 (en) * 2005-03-10 2007-03-08 Mil. Digital Labeling Inc. Digital Labels for Product Authentication
CN102932148A (en) * 2012-10-25 2013-02-13 成都市易恒信科技有限公司 System and method for preventing safety two-dimensional code counterfeiting on basis of combination of public key (CPK) authentication
CN104320253A (en) * 2014-09-28 2015-01-28 东北大学 Two-dimension code authentication system and method based on CBS signature mechanism
CN105024824A (en) * 2014-11-05 2015-11-04 祝国龙 Method for generating and verifying credible label based on asymmetrical encryption algorithm and system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070051816A1 (en) * 2005-03-10 2007-03-08 Mil. Digital Labeling Inc. Digital Labels for Product Authentication
CN102932148A (en) * 2012-10-25 2013-02-13 成都市易恒信科技有限公司 System and method for preventing safety two-dimensional code counterfeiting on basis of combination of public key (CPK) authentication
CN104320253A (en) * 2014-09-28 2015-01-28 东北大学 Two-dimension code authentication system and method based on CBS signature mechanism
CN105024824A (en) * 2014-11-05 2015-11-04 祝国龙 Method for generating and verifying credible label based on asymmetrical encryption algorithm and system

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106372950A (en) * 2016-09-21 2017-02-01 东北大学秦皇岛分校 Anti-counterfeiting authentication method for e-commerce and online shopping goods
CN106372950B (en) * 2016-09-21 2020-12-15 东北大学秦皇岛分校 Anti-counterfeiting authentication method for e-commerce and online shopping commodities
CN108596665A (en) * 2018-04-24 2018-09-28 深圳市亿道数码技术有限公司 A kind of shopping motivational techniques and system based on block chain
CN110263559A (en) * 2019-06-20 2019-09-20 江西金格科技股份有限公司 The anti-tamper method of papery contract key message based on SM9 algorithm

Similar Documents

Publication Publication Date Title
CN107038578B (en) Multi-signature transaction information processing method in data transaction platform based on block chain
TWI718567B (en) Two-dimensional code generation method, data processing method, device, server and computer readable storage medium
CN108809658A (en) A kind of digital signature method and system of the identity base based on SM2
TWI748209B (en) Two-dimensional code anti-counterfeiting method, equipment and system based on security application
CN103718500A (en) Credential validation
CN110795752A (en) Logistics information storage method, device, medium and electronic equipment based on block chain
CN102663591A (en) Product anti-counterfeiting method and system based on electronic tag
CN108764912B (en) Payment method and device based on short message verification code
CN104050431A (en) Self-signing method and self-signing device for RFID chips
US8595505B2 (en) Apparatus and method for direct anonymous attestation from bilinear maps
CN104320253A (en) Two-dimension code authentication system and method based on CBS signature mechanism
CN105376064A (en) Anonymous message authentication system and message signing method thereof
CN105447710A (en) Commodity authenticity verification system and commodity authenticity verification method based on two-dimensional barcode in e-commerce
CN102761556A (en) Method to protect communication security and privacy function of mobile client
CN104077625B (en) Two-dimension code content verifying method based on electronic signature
CN111817857A (en) Electronic document signing method based on electronic notarization and SM2 collaborative signature and server adopted by same
CN111882329A (en) Product tracing method and device based on block chain
CN104252731B (en) High-safety wireless transaction method based on self-authentication mechanism efficiency
CN114240547A (en) Steel trade transaction method, system, device and storage medium based on digital signature
CN102609842B (en) A kind of payment cipher device based on hardware signature equipment and application process thereof
JP2021100227A (en) IoT KEY MANAGEMENT SYSTEM, SECURE DEVICE, IoT DEVICE, DEVICE MANAGEMENT APPARATUS, AND METHOD FOR CREATING PUBLIC KEY CERTIFICATE OF SECURE ELEMENT
KR100507809B1 (en) Anonymous fingerprinting scheme based on the bilinear pairings diffie-hellman problem
CN102055587B (en) Digital signature method capable of being implemented on flow line
CN104252674A (en) Elliptic curve cipher-based self-authentication mechanism mobile phone trading method
CN113849860A (en) Anti-counterfeiting method and device for electronic credential, electronic equipment and storage medium

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20160330

RJ01 Rejection of invention patent application after publication