CN105704117A - Internet online voting system - Google Patents
Internet online voting system Download PDFInfo
- Publication number
- CN105704117A CN105704117A CN201511017848.6A CN201511017848A CN105704117A CN 105704117 A CN105704117 A CN 105704117A CN 201511017848 A CN201511017848 A CN 201511017848A CN 105704117 A CN105704117 A CN 105704117A
- Authority
- CN
- China
- Prior art keywords
- server
- private key
- public key
- ballot
- verification public
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C13/00—Voting apparatus
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
- H04L67/025—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
Abstract
The invention discloses an Internet online voting system. The system includes: a terminal set which includes a voting terminal, an auditing terminal and a management terminal, the voting terminal being used for network voting voters who input a correct user password to elect and vote, and the user password being used for verifying identities of the network voting voters; an access router; a voting subsystem which includes a first server and a second server; a firewall subsystem which includes a firewall router and a firewall server; a database server used for storing election data; an identity authentication server used for storing registration information; and a third server and a fourth server, an isolation gatekeeper being arranged between the fourth server and the third server and used for ferrying data information that needs to be transmitted between the third server and the fourth server. The Internet online voting system solves the technical problem in related technologies that user experience is relatively poor when a user uses an Internet online voting system.
Description
Technical field
The present invention relates to data security arts, in particular to the online ballot system in a kind of the Internet。
Background technology
For a lot of internet trading system such as the online ballot system in the Internet and the Internet bank, the key issue of service security is key management, namely carries out protecting, manage and distributing for critical data (such as key)。At present; there is the key management mechanism of a whole set of maturation for processing this problem; i.e. so-called PKI (i.e. PKIX); its detailed description of the invention can be that certain quasi official professional services organization provides public key certificate service to the whole society; or similar network bank is the same; the special U-shield being loaded with user certificate is issued to its user by Mei Jia large scale business mechanism; when concluding the business every time; user needs to use the certificate comprised in U-shield that the Transaction Information of oneself is protected, thus ensureing the Transaction Information of whole network bank business based system and the safety of process of exchange。
If using U-shield to carry out the safety of guarantee information in the online ballot system in the Internet, needing to provide the user U-shield on the one hand, namely adding cost;On the other hand, owing to part population (such as old people, disabled) can not expertly use U-shield, the experience of user can therefore be reduced。
The technical problem that when using the online ballot system in the Internet for user in correlation technique, Consumer's Experience is poor, not yet proposes effective solution at present。
Summary of the invention
Embodiments provide the online ballot system in a kind of the Internet, at least to solve the technical problem that when user in correlation technique uses the online ballot system in the Internet, Consumer's Experience is poor。
According to embodiments of the present invention, provide the online ballot system in a kind of the Internet, this system includes: terminal set, terminal set includes voting terminal, audit terminal and management terminal, voting terminal conducts an election ballot for throwing voter for the net that have input correct user password, and user password is for verifying that the identity of voter thrown by net, and audit terminal is audited election data for supplying audit person, management terminal is for conducting an election management for manager, and net throwing voter is the voter being registered as online vote;Couple in router, is connected with voting terminal, audit terminal and management terminal respectively;Ballot subsystem, ballot subsystem includes first server and second server, and first server is provided with the web resource for throwing voter's poll for net, and second server is for configuring the election parameter of web resource for manager;Fire wall subsystem, fire wall subsystem includes firewall router and SOCKS server, and SOCKS server is connected between couple in router and ballot subsystem, and firewall router is connected with ballot subsystem;Database server, is connected with firewall router, is used for preserving election data;Authentication server, is connected with firewall router, and for preserving the user profile including the log-on message that net throws voter, audit person and manager, wherein, user profile is for verifying the identity of user;3rd server, is connected with firewall router;4th server, 4th server is connected with backstage off-line subsystem, it is provided with isolation gap or ferry-boat equipment between 4th server and the 3rd server, wherein, isolation gap or ferry-boat equipment need the data message of transmission between the 3rd server and the 4th server for ferrying, and backstage off-line subsystem is for processing the election data received。
Further, second server or the 3rd server are after initiating certificate request to certificate agency, receive and install the root certificate that certificate agency sends, receive and preserve the certification authentication PKI that certificate agency sends, wherein, certificate agency provides paired signature private key and verification public key for the equipment for initiating certificate request, and certification authentication PKI is the verification public key of certificate agency。
Further, first server is used for performing following steps: receive and install the root certificate that certificate agency sends;Receive and preserve the certification authentication PKI that certificate agency sends;Receive and preserve the first verification public key that second server sends;Receive and preserve the second verification public key and system encryption PKI that the 3rd server sends, wherein, first verification public key is the verification public key of second server, and the second verification public key is the verification public key of the 3rd server, and system encryption PKI is the encrypted public key of backstage off-line subsystem。
Further, second server, after initiating certificate request, performs following steps: receive respectively via the first signature private key of certificate signature private key signature and the first verification public key;When the first signature private key and the first verification public key have passed through the checking of certification authentication PKI, preserve the first signature private key, and send the first verification public key to first server, wherein, certificate signature private key is the signature private key of certificate agency, and the first signature private key is the signature private key of second server。
Further, the 3rd server, after initiating certificate request, performs following steps: receive respectively via the second signature private key of certificate signature private key signature and the second verification public key;When the second signature private key and the second verification public key have passed through the checking of certification authentication PKI, preserve the second signature private key, and send the second verification public key to first server;Receive and preserve the 3rd verification public key that the 4th server sends;Receive the system encryption PKI via the 3rd signature private key signature;When system encryption PKI has passed through the checking of the 3rd verification public key, send system encryption PKI to first server, wherein, second signature private key is the signature private key of the 3rd server, 3rd verification public key is the verification public key of the 4th server, and the 3rd signature private key is the signature private key of the 4th server。
Further, the 4th server is used for performing following steps: generate the 3rd signature private key and the 3rd verification public key according to the first preset algorithm;By isolation gap or ferry-boat equipment transmission the 3rd verification public key to the 3rd server;System encryption PKI is obtained from backstage off-line subsystem;By isolation gap or ferry-boat equipment transmission via the system encryption PKI of the 3rd signature private key signature to the 3rd server;Preserving database authentication PKI and ballot verification public key that database server sends, wherein, database authentication PKI is the verification public key of database server, and ballot verification public key is the verification public key of voting terminal。
Further, database server is used for performing following steps: generates database signatures private key and data base's verification public key according to the second preset algorithm, and preserves database signatures private key;Accept and preserve the admin-authentication PKI that management terminal sends;Accept and preserve the auditing verification PKI that audit terminal sends;Accept and preserve the ballot verification public key that voting terminal sends;By the 3rd server forwarding database verification public key and ballot verification public key to the 4th server, wherein, database signatures private key is the signature private key of database server, and admin-authentication PKI is the verification public key of management terminal, and auditing verification PKI is the verification public key of audit terminal。
Further, management terminal is used for performing following steps: the log-on message of receiving management person's input and log-in password, and preserves the management AES key that the log-in password based on manager's input generates;Management signature private key and admin-authentication PKI is generated according to the 3rd preset algorithm;Preserve the first verification public key got from second server, and preserve the management signature private key via management AES key encryption;By the log-on message of second server forwarding manager's input to authentication server;Forwarding admin-authentication PKI to database server by second server, wherein, management signature private key is the signature private key of management terminal。
Further, audit terminal is used for performing following steps: receives log-on message and the log-in password of audit person's input, and preserves the audit AES key that the log-in password based on audit person's input generates;Audit signature private key and auditing verification PKI is generated according to the 4th preset algorithm;Preserve the second verification public key got from first server, and preserve the audit signature private key via audit AES key encryption;By the log-on message of first server forwarding audit person's input to authentication server;Forwarding auditing verification PKI to database server by first server, wherein, audit signature private key is the signature private key of audit terminal。
Further, voting terminal is used for performing following steps: receives log-on message and the log-in password of voter's input, and preserves the ballot AES key that the log-in password based on voter's input generates;Ballot signature private key and ballot verification public key is generated according to the 5th preset algorithm;Preserve get from first server the first verification public key, the second verification public key, system encryption PKI, and preserve the ballot signature private key via ballot AES key encryption;By the log-on message of first server forwarding net throwing voter's input to authentication server;Forwarding ballot verification public key to database server by first server, wherein, ballot signature private key is the signature private key of voting terminal。
In embodiments of the present invention, terminal set includes voting terminal, audit terminal and management terminal, voting terminal is for the ballot that conducts an election for the net throwing voter that have input correct user password, user password is for verifying that the identity of voter thrown by net, audit terminal is for auditing election data for audit person, and management terminal is for conducting an election management for manager;Couple in router, is connected with voting terminal, audit terminal and management terminal respectively;Ballot subsystem includes first server and second server, and first server is provided with the web resource for throwing voter's poll for net, and second server is for configuring the election parameter of web resource for manager;Fire wall subsystem includes firewall router and SOCKS server, and SOCKS server is connected between couple in router and ballot subsystem, and firewall router is connected with ballot subsystem;Database server, is connected with firewall router, is used for preserving election data;Authentication server, is connected with firewall router, throws the user profile including log-on message of voter, audit person and manager for preserving net;3rd server, is connected with firewall router;4th server, 4th server is connected with backstage off-line subsystem, it is provided with isolation gap between 4th server and the 3rd server, wherein, isolation gap needs the data message of transmission between the 3rd server and the 4th server for ferrying, backstage off-line subsystem is for processing the election data received, thus solving the technical problem that when user in correlation technique uses the online ballot system in the Internet, Consumer's Experience is poor, by arranging isolation gap, achieve the physical separation between the front end of online ballot and the rear end of responsible ballot paper process, ensure that the safety of data, net throwing voter only need to input user password at voting terminal and can be made directly ballot, without carrying with corresponding U-shield, thus improve the experience of user。
Accompanying drawing explanation
Accompanying drawing described herein is used for providing a further understanding of the present invention, constitutes the part of the application, and the schematic description and description of the present invention is used for explaining the present invention, is not intended that inappropriate limitation of the present invention。In the accompanying drawings:
Fig. 1 is the schematic diagram of the online ballot system in the Internet according to embodiments of the present invention;
Fig. 2 is the schematic diagram of the online ballot system in a kind of optional the Internet according to embodiments of the present invention;And
Fig. 3 is the schematic diagram of the online ballot system in another kind of optional the Internet according to embodiments of the present invention。
Detailed description of the invention
In order to make those skilled in the art be more fully understood that the present invention program, below in conjunction with the accompanying drawing in the embodiment of the present invention, technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is only the embodiment of a present invention part, rather than whole embodiments。Based on the embodiment in the present invention, the every other embodiment that those of ordinary skill in the art obtain under not making creative work premise, all should belong to the scope of protection of the invention。
It should be noted that term " first " in description and claims of this specification and above-mentioned accompanying drawing, " second " etc. are for distinguishing similar object, without being used for describing specific order or precedence。Should be appreciated that the data of so use can be exchanged in the appropriate case, in order to embodiments of the invention described herein can with except here diagram or describe those except order implement。In addition, term " includes " and " having " and their any deformation, it is intended to cover non-exclusive comprising, such as, contain series of steps or the process of unit, method, system, product or equipment be not necessarily limited to those steps or the unit clearly listed, but can include clearly not listing or for intrinsic other step of these processes, method, product or equipment or unit。
First, the part noun occurred in the process that the embodiment of the present invention is described or term are applicable to description below:
Router: being connect the equipment of LAN and wide area network in the Internet, its kind is more, as being used for being positioned at the couple in router at networking peripheral edge, have the firewall router of firewall functionality。
Isolation gap: English name GAP, is a kind of by the link layer connection cutting off between network on circuit with various control function specialized hardware, and can carry out the Network Security Device of the application data exchange of safety appropriateness between network。
PKI: PKI and private key are the double secret key (i.e. a PKI and a private key) obtained by a kind of algorithm, and PKI is part disclosed in cipher key pair, and private key is then private part。
MD5: Message Digest Algorithm 5, for the widely used a kind of hash function of computer safety field, for providing the integrity protection of message。
SHA-3: be the hash algorithm of a new generation, have become as a kind of new Secure Hash Standard at present。
According to embodiments of the present invention, provide the embodiment of the online ballot system in a kind of the Internet, Fig. 1 is the schematic diagram of the online ballot system in the Internet according to embodiments of the present invention, as it is shown in figure 1, this system includes: terminal set 10, couple in router 20, ballot subsystem 30, fire wall subsystem 40, database server 50, authentication server the 60, the 3rd server 70 and the 4th server 80。
Terminal set, terminal set 10 includes voting terminal 101, audit terminal 102 and management terminal 103, voting terminal is for the ballot that conducts an election for the net throwing voter that have input correct user password, user password is for verifying that the identity of voter thrown by net, audit terminal is for auditing election data for audit person, management terminal is for conducting an election management for manager, and net throwing voter is the voter being registered as online vote。
Couple in router 20, is connected with voting terminal, audit terminal and management terminal respectively。
Ballot subsystem 30, ballot subsystem includes first server 301 and second server 302, and first server is provided with the web resource for throwing voter's poll for net, and second server is for configuring the election parameter of web resource for manager。
Fire wall subsystem 40, fire wall subsystem includes firewall router 401 and SOCKS server 402, and SOCKS server is connected between couple in router and ballot subsystem, and firewall router is connected with ballot subsystem。
Database server 50, is connected with firewall router, is used for preserving election data。
Authentication server 60, is connected with firewall router, and for preserving the user profile including the log-on message that net throws voter, audit person and manager, wherein, user profile is for verifying the identity of user。
3rd server 70, is connected with firewall router。
4th server 80,4th server is connected with backstage off-line subsystem, it is provided with isolation gap or ferry-boat equipment 90 between 4th server and the 3rd server, wherein, isolation gap or ferry-boat equipment need the data message of transmission between the 3rd server and the 4th server for ferrying, and backstage off-line subsystem is for processing the election data received。
In embodiments of the present invention, terminal set includes voting terminal, audit terminal and management terminal, voting terminal is for the ballot that conducts an election for the net throwing voter that have input correct user password, user password is for verifying that the identity of voter thrown by net, audit terminal is for auditing election data for audit person, and management terminal is for conducting an election management for manager;Couple in router, is connected with voting terminal, audit terminal and management terminal respectively;Ballot subsystem includes first server and second server, and first server is provided with the web resource for throwing voter's poll for net, and second server is for configuring the election parameter of web resource for manager;Fire wall subsystem includes firewall router and SOCKS server, and SOCKS server is connected between couple in router and ballot subsystem, and firewall router is connected with ballot subsystem;Database server, is connected with firewall router, is used for preserving election data;Authentication server, is connected with firewall router, throws the user profile including log-on message of voter, audit person and manager for preserving net;3rd server, is connected with firewall router;4th server, 4th server is connected with backstage off-line subsystem, it is provided with isolation gap between 4th server and the 3rd server, wherein, isolation gap needs the data message of transmission between the 3rd server and the 4th server for ferrying, backstage off-line subsystem is for processing the election data received, thus solving the technical problem that when user in correlation technique uses the online ballot system in the Internet, Consumer's Experience is poor, by arranging isolation gap, achieve the physical separation between the front end of online ballot and the rear end of responsible ballot paper process, ensure that the safety of data, net throwing voter only need to input user password at voting terminal and can be made directly ballot, without carrying with corresponding U-shield, thus improve the experience of user。
In the embodiment illustrated in figure 2, second server 302 and the 3rd server 70 are connected with certificate agency 100 by the Internet, certificate agency provides paired signature private key and verification public key for the equipment for initiating certificate request, second server and the 3rd server can initiate certificate request to third party's certificate agency, to obtain respective signature private key and verification public key。It should be noted that, server is after initiating certificate request, first the server initiating request need to install the root certificate of certificate agency, then the verification public key of certificate agency can be used, therefore, second server or the 3rd server to certificate agency after initiating certificate request, it is necessary to receive and install the root certificate that certificate agency sends, receiving and preserve the certification authentication PKI that certificate agency sends, certification authentication PKI is the verification public key of certificate agency。
Specifically, the second server 302 of ballot subsystem is after initiating certificate request to certificate agency 100, certificate agency accepts certificate request, send to second server after generating corresponding digital signature (verification public key and signature private key) and digital signature being signed, in order to receive smoothly and use above-mentioned digital certificate, the second server of ballot subsystem is after initiating certificate request, it is necessary to perform following steps: receive respectively via the first signature private key of certificate signature private key signature and the first verification public key (i.e. digital signature);When the first signature private key and the first verification public key have passed through the checking of certification authentication PKI, preserve the first signature private key, and send the first verification public key to first server, wherein, certificate signature private key is the signature private key of certificate agency, and the first signature private key is the signature private key of second server。Second server, after obtaining corresponding signature private key and verification public key, can provide certificate to download to user (namely using termination set to close the user of the terminal in 10, as net throws voter and manager)。
The 3rd above-mentioned server 70 is after initiating certificate request, it is necessary to perform following steps: receive respectively via the second signature private key of certificate signature private key signature and the second verification public key (i.e. signing certificate);When the second signature private key and the second verification public key have passed through the checking of certification authentication PKI, preserve the second signature private key, and send the second verification public key to first server;Receive and preserve the 3rd verification public key that the 4th server sends;Receive the system encryption PKI via the 3rd signature private key signature;When system encryption PKI has passed through the checking of the 3rd verification public key, send system encryption PKI to first server, wherein, second signature private key is the signature private key of the 3rd server, 3rd verification public key is the verification public key of the 4th server, and the 3rd signature private key is the signature private key of the 4th server。
Alternatively, first server can also be passed through the Internet and be connected with certificate agency, and the first server of ballot subsystem needs to perform following steps: receive and install the root certificate that certificate agency sends;Receive and preserve the certification authentication PKI that certificate agency sends;Receive and preserve the first verification public key (i.e. signing certificate) that second server sends;Receive and preserve the second verification public key and system encryption PKI that the 3rd server sends, wherein, first verification public key is the verification public key of second server, and the second verification public key is the verification public key of the 3rd server, and system encryption PKI is the encrypted public key of backstage off-line subsystem。Simultaneously, in order to realize and the communication of the equipment such as the 3rd server, user (user of the terminal in namely using termination set to close) can download its verification public key certificate from first server or second server, so, user just can receive the data signed via the signature private key of the 3rd server, the 3rd server is sent to, thus realizing the communication of the 3rd server and user terminal (such as voting terminal or audit terminal) after data verification public key can also be encrypted。
The confidential information such as the ballot paper that above-mentioned system encryption PKI sends for encryption server, the generation of system decrypted private key and keeping, by backstage off-line subsystem responsible, only can be deciphered by backstage off-line subsystem via the information of system encryption public key encryption;3rd server with database server communication, can be ferried to backstage off-line subsystem after being signed by all kinds of ballot box data signature private key of database server side。
Alternatively, database server 50 is used for performing following steps: generates database signatures private key and data base's verification public key according to the second preset algorithm, and preserves database signatures private key;By the 3rd server 70 forwarding database verification public key and ballot verification public key to the 4th server;Accept and preserve the admin-authentication PKI that management terminal sends;Accept and preserve the auditing verification PKI that audit terminal sends;Accept and preserve the ballot verification public key that voting terminal sends;Wherein, database signatures private key is the signature private key of database server, and admin-authentication PKI is the verification public key of management terminal, and auditing verification PKI is the verification public key of audit terminal。
In an embodiment of the present invention, the 4th server may be used for performing following steps: generate the 3rd signature private key and the 3rd verification public key according to the first preset algorithm;By isolation gap or ferry-boat equipment transmission the 3rd verification public key to the 3rd server;System encryption PKI is obtained from backstage off-line subsystem;By isolation gap or ferry-boat equipment transmission via the system encryption PKI of the 3rd signature private key signature to the 3rd server;Preserving the database authentication PKI that database server sends, wherein, database authentication PKI is the verification public key of database server。Namely the 4th server generates signature private key and verification public key voluntarily, and preserves on the 3rd server of being ferried to by verification public key, to carry out communication with the 3rd server。
It should be noted that the ballot system of the application is before being used for ballot, it is necessary to carry out following preparation process:
Step S101, the election on second server manages Web site and the 3rd server respectively to third party's certificate agency application for registration digital signature。
Step S102, third party's certificate agency signs the verification public key certificate of second server and the 3rd server with the signature private key of oneself, and the signature private key of each of which and verification public key certificate are respectively sent to the server of correspondence simultaneously。
Step S103, second server provides the verification public key of oneself to download to management terminal。
Step S104, verification public key is issued the Web site of first server by second server, throws voter for net and openly downloads。
Step S105, second server preserves the signature private key of oneself。
Step S106, the 4th server obtains system encryption PKI, and ferries to the 3rd server。
Step S107, the 3rd server signature private key signs election system encrypted public key (i.e. system encryption PKI)。
Step S108, election system encrypted public key, oneself verification public key are issued the Web site of first server by the 3rd server, throw voter for net and openly download。
Step S109, database server generates signature private key and verification public key voluntarily。
Step S110, verification public key is sent to the 4th server by the 3rd server and ferry-boat equipment by database server。
Step S111, database server preserves the signature private key of oneself。
Pass through above-described embodiment, critical data (such as signature private key, verification public key and system encryption PKI etc.) is saved in this locality, user can complete all operations of ballot by user password on a machine, easy understandable, critical data is stored, it is to avoid because USB flash disk loses the problem that can not carry out voting without the portable memory apparatus using USB flash disk etc。
In an embodiment of the present invention, management terminal may be used for performing following steps: the log-on message of receiving management person's input and log-in password, and preserves the management AES key that the log-in password based on manager's input generates;Management signature private key and admin-authentication PKI is generated according to the 3rd preset algorithm;Preserve the first verification public key got from second server and the management signature private key via management AES key encryption;By the log-on message of second server forwarding manager's input to authentication server;Forwarding admin-authentication PKI to database server by second server, wherein, management signature private key is the signature private key of management terminal。Above-mentioned log-in password and user password can be same password, namely the password for generating AES key is identical with the password for decrypted signature private key。Communication data (data produced during such as log-on message, login) between audit terminal and second server only can be deciphered by second server;Meanwhile, management terminal is possible to prevent data illegally to be distorted when revising ballot paper。
Alternatively, audit terminal may be used for performing following steps: receives log-on message and the log-in password of audit person's input, and preserves the audit AES key that the log-in password based on audit person's input generates;Audit signature private key and auditing verification PKI is generated according to the 4th preset algorithm;Preserve the second verification public key got from first server and the audit signature private key via audit AES key encryption;By the log-on message of first server forwarding audit person's input to authentication server;Forwarding auditing verification PKI to database server by first server, wherein, audit signature private key is the signature private key of audit terminal。Audit terminal is main carries out communication with first server, and communication data includes the data produced in the log-on message of audit person and audit person's login process, and audit terminal can also pass through first server from database server download election process data。
Specifically, in management terminal and audit terminal, after user registers, according to the password generated AES key of user's input to encrypt the signature private key of this user;It not fix to be saved in terminal local (being automatically deleted after namely completing encrypted work) due to AES key, therefore, when user operates again, need input password again to generate the AES key for above-mentioned signature private key is decrypted, such user just can carry out associative operation (such as ballot), the data produced in operation need to via transmitting after the signature of signature private key to server, by using signature private key, data source can be authenticated by server end, namely packet certain its claimed individual or server from the beginning are ensured, and it is not tampered in transmitting procedure。
As it is shown on figure 3, voting terminal 101 may be used for performing following steps: receive log-on message and the log-in password of voter's input, and preserve the ballot AES key that the log-in password based on voter's input generates;Ballot signature private key and ballot verification public key is generated according to the 5th preset algorithm;Preserve the first verification public key, the second verification public key, system encryption PKI and the ballot signature private key via ballot AES key encryption that get from first server 301;Send log-on message and ballot verification public key to first server, first server is upon receipt, send net and throw the log-on message of voter's input to authentication server, and send ballot verification public key to database server 50, database server preserves the ballot verification public key received, wherein, ballot signature private key is the signature private key of voting terminal。Voting terminal is mainly used in and first server communication, throw the data message of generation in the log-on message of voter, login process, reception blank ballot (Web page form) as sent net, send the ballot paper etc. filled in, and preserve the critical data after encryption。
Net throws voter after voting terminal is registered, and voting terminal throws the password generated AES key of voter's input according to net, and this AES key is for being encrypted preservation to the signature private key of voting terminal;It not fix to be saved in voting terminal this locality due to AES key, therefore when net throwing voter votes, user needs again input password to generate the AES key for signature private key is decrypted, then filling in ballot paper, the ballot paper filled in is sent to server end after signing via signature private key again。
It should be noted that the individual log-on message that net throws voter, audit person and manager includes the information such as individual essential information, biological characteristic, machine behavior characteristics;Client (includes voting terminal, audit terminal and management terminal) and does not pre-save AES key, this AES key is calculated through Hash function (as by MD5 algorithm, SHA-3 algorithm) is derivative by log-in password, this key need to be calculated after first being inputted user password by user when needs use signature private key, then can use with its decrypted signature private key。When multi-user shared machine, the signature private key of each user uses its password individually to encrypt, and is then saved in a tables of data by the critical data after encryption, and tables of data includes the critical data after net throws voter ID and encryption。So, when many people shared computer login system, still can guarantee that critical data (such as key) is safe and effective, do not interfere with each other。The preset algorithm of the application (i.e. the first preset algorithm to the 5th preset algorithm) can be passed through above-mentioned hash function and realize。
After by above-mentioned cipher key delivery, each terminal is as follows except the Chief data preserved:
Voting terminal: ballot AES key, ballot signature private key, the first verification public key, the second verification public key, system encryption PKI。
Audit terminal: audit AES key, audit signature private key, the second verification public key。
Management terminal: management AES key, management signature private key, the first verification public key。
First server: certification authentication PKI, the first verification public key, the second verification public key, system encryption PKI。
Second server: certification authentication PKI, the first signature private key。
3rd server: the second signature private key, certification authentication PKI。
4th server: the 4th signature private key, database authentication PKI, ballot verification public key。
Database server: database signatures private key, admin-authentication PKI, ballot verification public key, auditing verification PKI。
The invention described above embodiment sequence number, just to describing, does not represent the quality of embodiment。
In the above embodiment of the present invention, the description of each embodiment is all emphasized particularly on different fields, certain embodiment there is no the part described in detail, it is possible to referring to the associated description of other embodiments。
In several embodiments provided herein, it should be understood that disclosed technology contents, can realize by another way。Wherein, device embodiment described above is merely schematic, the such as division of described unit, can be that a kind of logic function divides, actual can have other dividing mode when realizing, such as multiple unit or assembly can in conjunction with or be desirably integrated into another system, or some features can be ignored, or does not perform。Another point, shown or discussed coupling each other or direct-coupling or communication connection can be through INDIRECT COUPLING or the communication connection of some interfaces, unit or module, it is possible to be electrical or other form。
The described unit illustrated as separating component can be or may not be physically separate, and the parts shown as unit can be or may not be physical location, namely may be located at a place, or can also be distributed on multiple unit。Some or all of unit therein can be selected according to the actual needs to realize the purpose of the present embodiment scheme。
It addition, each functional unit in each embodiment of the present invention can be integrated in a processing unit, it is also possible to be that unit is individually physically present, it is also possible to two or more unit are integrated in a unit。Above-mentioned integrated unit both can adopt the form of hardware to realize, it would however also be possible to employ the form of SFU software functional unit realizes。
If described integrated unit is using the form realization of SFU software functional unit and as independent production marketing or use, it is possible to be stored in a computer read/write memory medium。Based on such understanding, part or all or part of of this technical scheme that prior art is contributed by technical scheme substantially in other words can embody with the form of software product, this computer software product is stored in a storage medium, including some instructions with so that a computer equipment (can for personal computer, server or the network equipment etc.) performs all or part of step of method described in each embodiment of the present invention。And aforesaid storage medium includes: USB flash disk, read only memory (ROM, Read-OnlyMemory), the various media that can store program code such as random access memory (RAM, RandomAccessMemory), portable hard drive, magnetic disc or CD。
The above is only the preferred embodiment of the present invention; it should be pointed out that, for those skilled in the art, under the premise without departing from the principles of the invention; can also making some improvements and modifications, these improvements and modifications also should be regarded as protection scope of the present invention。
Claims (10)
1. the online ballot system in the Internet, it is characterised in that including:
Terminal set, described terminal set includes voting terminal, audit terminal and management terminal, described voting terminal is for the ballot that conducts an election for the net throwing voter that have input correct user password, described user password is for verifying that the identity of voter thrown by net, described audit terminal is for auditing election data for audit person, described management terminal is for conducting an election management for manager, and net throwing voter is the voter being registered as online vote;
Couple in router, is connected with described voting terminal, described audit terminal and described management terminal respectively;
Ballot subsystem, described ballot subsystem includes first server and second server, being provided with the web resource for throwing voter's poll for net in described first server, described second server is for configuring the election parameter of described web resource for manager;
Fire wall subsystem, described fire wall subsystem includes firewall router and SOCKS server, and described SOCKS server is connected between described couple in router and described ballot subsystem, and described firewall router is connected with described ballot subsystem;
Database server, is connected with described firewall router, is used for preserving described election data;
Authentication server, is connected with described firewall router, and for preserving the user profile including the log-on message that net throws voter, audit person and manager, wherein, described user profile is for verifying the identity of user;
3rd server, is connected with described firewall router;
4th server, described 4th server is connected with backstage off-line subsystem, it is provided with isolation gap or ferry-boat equipment between described 4th server and described 3rd server, wherein, described isolation gap or described ferry-boat equipment need the data message of transmission between described 3rd server and described 4th server for ferrying, and described backstage off-line subsystem is for processing the described election data received。
2. ballot system according to claim 1, it is characterized in that, described second server or described 3rd server are after initiating certificate request to certificate agency, receive and install the root certificate that described certificate agency sends, receive and preserve the certification authentication PKI that described certificate agency sends, wherein, described certificate agency provides paired signature private key and verification public key for the equipment for initiating described certificate request, and described certification authentication PKI is the verification public key of described certificate agency。
3. ballot system according to claim 2, it is characterised in that described first server is used for performing following steps: receive and install the described certificate that described certificate agency sends;Receive and preserve the described certification authentication PKI that described certificate agency sends;Receive and preserve the first verification public key that described second server sends;Receive and preserve the second verification public key and system encryption PKI that described 3rd server sends, wherein, described first verification public key is the verification public key of described second server, described second verification public key is the verification public key of described 3rd server, and described system encryption PKI is the encrypted public key of described backstage off-line subsystem。
4. ballot system according to claim 3, it is characterised in that described second server, after initiating described certificate request, performs following steps: receive respectively via the first signature private key of certificate signature private key signature and described first verification public key;When described first signature private key and described first verification public key have passed through the checking of described certification authentication PKI, preserve described first signature private key, and send described first verification public key extremely described first server, wherein, described certificate signature private key is the signature private key of described certificate agency, and described first signature private key is the signature private key of described second server。
5. ballot system according to claim 4, it is characterised in that described 3rd server, after initiating described certificate request, performs following steps: receive respectively via the second signature private key of described certificate signature private key signature and described second verification public key;When described second signature private key and described second verification public key have passed through the checking of described certification authentication PKI, preserve described second signature private key, and send described second verification public key extremely described first server;Receive and preserve the 3rd verification public key that described 4th server sends;Receive the system encryption PKI via the 3rd signature private key signature;When described system encryption PKI has passed through the checking of described 3rd verification public key, send described system encryption PKI extremely described first server, wherein, described second signature private key is the signature private key of described 3rd server, described 3rd verification public key is the verification public key of described 4th server, and described 3rd signature private key is the signature private key of described 4th server。
6. ballot system according to claim 5, it is characterised in that described 4th server is used for performing following steps: generate described 3rd signature private key and described 3rd verification public key according to the first preset algorithm;Described 3rd verification public key extremely described 3rd server is transmitted by described isolation gap or described ferry-boat equipment;Described system encryption PKI is obtained from described backstage off-line subsystem;Described system encryption PKI extremely described 3rd server via described 3rd signature private key signature is transmitted by described isolation gap or described ferry-boat equipment;Preserving database authentication PKI and ballot verification public key that described database server sends, wherein, described database authentication PKI is the verification public key of described database server, and described ballot verification public key is the verification public key of described voting terminal。
7. ballot system according to claim 6, it is characterised in that described database server is used for performing following steps: generate database signatures private key and described database authentication PKI according to the second preset algorithm, and preserve described database signatures private key;Accept and preserve the admin-authentication PKI that described management terminal sends;Accept and preserve the auditing verification PKI that described audit terminal sends;Accept and preserve the described ballot verification public key that described voting terminal sends;Described database authentication PKI and described ballot verification public key extremely described 4th server is forwarded by described 3rd server, wherein, described database signatures private key is the signature private key of described database server, described admin-authentication PKI is the verification public key of described management terminal, and described auditing verification PKI is the verification public key of described audit terminal。
8. ballot system according to claim 7, it is characterised in that described management terminal is used for performing following steps: the log-on message of receiving management person's input and log-in password, and preserve the management AES key that the log-in password based on manager's input generates;Management signature private key and described admin-authentication PKI is generated according to the 3rd preset algorithm;Preserve described first verification public key got from described second server, and preserve the described management signature private key via the encryption of described management AES key;The log-on message extremely described authentication server of manager's input is forwarded by described second server;Forwarding described admin-authentication PKI to described database server by described second server, wherein, described management signature private key is the signature private key of described management terminal。
9. ballot system according to claim 7, it is characterised in that described audit terminal is used for performing following steps: receive log-on message and the log-in password of audit person's input, and preserve the audit AES key that the log-in password based on audit person's input generates;Audit signature private key and described auditing verification PKI is generated according to the 4th preset algorithm;Preserve described second verification public key got from described first server, and preserve the described audit signature private key via the encryption of described audit AES key;The log-on message extremely described authentication server of audit person's input is forwarded by described first server;Forwarding described auditing verification PKI to described database server by described first server, wherein, described audit signature private key is the signature private key of described audit terminal。
10. ballot system according to claim 6, it is characterised in that described voting terminal is used for performing following steps: receive log-on message and the log-in password of voter's input, and preserve the ballot AES key that the log-in password based on voter's input generates;Ballot signature private key and described ballot verification public key is generated according to the 5th preset algorithm;Described first verification public key that preservation gets from described first server, described second verification public key, described system encryption PKI, and preserve the described ballot signature private key via the encryption of described ballot AES key;Net is forwarded to throw the log-on message extremely described authentication server of voter's input by described first server;Forwarding described ballot verification public key to described database server by described first server, wherein, described ballot signature private key is the signature private key of described voting terminal。
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201511017848.6A CN105704117A (en) | 2015-12-29 | 2015-12-29 | Internet online voting system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201511017848.6A CN105704117A (en) | 2015-12-29 | 2015-12-29 | Internet online voting system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105704117A true CN105704117A (en) | 2016-06-22 |
Family
ID=56225957
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201511017848.6A Pending CN105704117A (en) | 2015-12-29 | 2015-12-29 | Internet online voting system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105704117A (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106506523A (en) * | 2016-11-29 | 2017-03-15 | 济南恒大视讯科技有限公司 | A kind of processing system and method for ensureing electronic vote data safety |
| CN107465734A (en) * | 2017-07-31 | 2017-12-12 | 合肥光照信息科技有限公司 | A kind of online ballot system and method based on WEB |
| WO2018026531A1 (en) * | 2016-08-05 | 2018-02-08 | Mastercard International Incorporated | Online voting methods and systems |
| CN107833345A (en) * | 2017-11-06 | 2018-03-23 | 东信和平科技股份有限公司 | A kind of method and system of estate management electronic voting |
| CN108711212A (en) * | 2018-05-21 | 2018-10-26 | 中国联合网络通信集团有限公司 | Card method, apparatus and system are deposited in ballot |
| CN109246175A (en) * | 2017-07-11 | 2019-01-18 | 松下电器(美国)知识产权公司 | electronic voting system and control method |
| CN110032873A (en) * | 2018-01-11 | 2019-07-19 | 万事达卡国际公司 | Method and system for the public election on the block chain moderately limited |
| CN111600721A (en) * | 2020-05-26 | 2020-08-28 | 牛津(海南)区块链研究院有限公司 | Asset management system, method and device based on multi-user voting mechanism |
| CN113747426A (en) * | 2020-05-14 | 2021-12-03 | 京东方科技集团股份有限公司 | Data auditing method and system, electronic equipment and storage medium |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102521910A (en) * | 2011-12-16 | 2012-06-27 | 河海大学 | Vote-hiding type electronic voting method |
| CN102568074A (en) * | 2012-01-16 | 2012-07-11 | 浙江工业大学 | Localized anti-repudiation electronic voting control method |
| CN102722931A (en) * | 2012-06-21 | 2012-10-10 | 陈利浩 | Voting system and voting method based on intelligent mobile communication devices |
| CN102984126A (en) * | 2012-11-02 | 2013-03-20 | 天地融科技股份有限公司 | System and method of voting certification and electronic signature tool and transmission method of voting data |
| CN103065385A (en) * | 2012-11-27 | 2013-04-24 | 浙江中呼科技有限公司 | Mobile phone voting method and voting system for method |
| CN104935565A (en) * | 2015-04-15 | 2015-09-23 | 浙江师范大学 | Vote processing system used for network voting system, vote processing method used for network voting system and vote processing device used for network voting system |
-
2015
- 2015-12-29 CN CN201511017848.6A patent/CN105704117A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102521910A (en) * | 2011-12-16 | 2012-06-27 | 河海大学 | Vote-hiding type electronic voting method |
| CN102568074A (en) * | 2012-01-16 | 2012-07-11 | 浙江工业大学 | Localized anti-repudiation electronic voting control method |
| CN102722931A (en) * | 2012-06-21 | 2012-10-10 | 陈利浩 | Voting system and voting method based on intelligent mobile communication devices |
| CN102984126A (en) * | 2012-11-02 | 2013-03-20 | 天地融科技股份有限公司 | System and method of voting certification and electronic signature tool and transmission method of voting data |
| CN103065385A (en) * | 2012-11-27 | 2013-04-24 | 浙江中呼科技有限公司 | Mobile phone voting method and voting system for method |
| CN104935565A (en) * | 2015-04-15 | 2015-09-23 | 浙江师范大学 | Vote processing system used for network voting system, vote processing method used for network voting system and vote processing device used for network voting system |
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2018026531A1 (en) * | 2016-08-05 | 2018-02-08 | Mastercard International Incorporated | Online voting methods and systems |
| CN106506523A (en) * | 2016-11-29 | 2017-03-15 | 济南恒大视讯科技有限公司 | A kind of processing system and method for ensureing electronic vote data safety |
| CN109246175A (en) * | 2017-07-11 | 2019-01-18 | 松下电器(美国)知识产权公司 | electronic voting system and control method |
| CN109246175B (en) * | 2017-07-11 | 2022-11-29 | 松下电器(美国)知识产权公司 | Electronic voting system and control method |
| CN107465734A (en) * | 2017-07-31 | 2017-12-12 | 合肥光照信息科技有限公司 | A kind of online ballot system and method based on WEB |
| CN107833345A (en) * | 2017-11-06 | 2018-03-23 | 东信和平科技股份有限公司 | A kind of method and system of estate management electronic voting |
| CN110032873A (en) * | 2018-01-11 | 2019-07-19 | 万事达卡国际公司 | Method and system for the public election on the block chain moderately limited |
| CN108711212A (en) * | 2018-05-21 | 2018-10-26 | 中国联合网络通信集团有限公司 | Card method, apparatus and system are deposited in ballot |
| CN108711212B (en) * | 2018-05-21 | 2021-03-09 | 中国联合网络通信集团有限公司 | Voting certificate storage method, device and system |
| CN113747426A (en) * | 2020-05-14 | 2021-12-03 | 京东方科技集团股份有限公司 | Data auditing method and system, electronic equipment and storage medium |
| CN113747426B (en) * | 2020-05-14 | 2024-04-05 | 京东方科技集团股份有限公司 | Data auditing method and system, electronic equipment and storage medium |
| CN111600721A (en) * | 2020-05-26 | 2020-08-28 | 牛津(海南)区块链研究院有限公司 | Asset management system, method and device based on multi-user voting mechanism |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105704117A (en) | Internet online voting system | |
| CN105103488B (en) | By the policy Enforcement of associated data | |
| CN105471833B (en) | A kind of safe communication method and device | |
| CN106888084B (en) | Quantum fort machine system and authentication method thereof | |
| CN104767731B (en) | A kind of Restful move transactions system identity certification means of defence | |
| CN104917741B (en) | A kind of plain text document public network secure transmission system based on USBKEY | |
| CN105656920B (en) | A kind of encryption and decryption method and system for posting number of packages evidence based on express delivery | |
| EP3585023B1 (en) | Data protection method and system | |
| CN101243438A (en) | Distributed single sign-on service | |
| CN104639516A (en) | Method, equipment and system for authenticating identities | |
| Seo et al. | A security framework for a drone delivery service | |
| CN103229452A (en) | Mobile handset identification and communication authentication | |
| CN104486087B (en) | A kind of digital signature method based on remote hardware security module | |
| CN109639697A (en) | Cloud mobile phone safe throws method, mobile terminal and the server of screen | |
| CN106953732B (en) | Key management system and method for chip card | |
| CN104901928A (en) | Data interaction method, device and system | |
| CN107517221A (en) | A kind of acentric secure and trusted auditing system | |
| CN104322003A (en) | Cryptographic authentication and identification method using real-time encryption | |
| CN106789029A (en) | A kind of auditing system and auditing method and quantum fort machine system based on quantum fort machine | |
| CN102075327A (en) | Method, device and system for unlocking electronic key | |
| CN105656862A (en) | Authentication method and device | |
| CN106936579A (en) | Cloud storage data storage and read method based on trusted third party agency | |
| CN110519268A (en) | Voting method, device, equipment, system and storage medium based on block chain | |
| Bokslag et al. | Evaluating e-voting: theory and practice | |
| EP3395004A1 (en) | A method for encrypting data and a method for decrypting data |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20160622 |
|
| RJ01 | Rejection of invention patent application after publication |