CN105763506A - Grain information management method and system - Google Patents
Grain information management method and system Download PDFInfo
- Publication number
- CN105763506A CN105763506A CN201410784175.6A CN201410784175A CN105763506A CN 105763506 A CN105763506 A CN 105763506A CN 201410784175 A CN201410784175 A CN 201410784175A CN 105763506 A CN105763506 A CN 105763506A
- Authority
- CN
- China
- Prior art keywords
- grain
- server
- trusted timestamp
- mobile terminal
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention relates to a grain information management method, and the method comprises the steps that a mobile terminal builds safe cup-joint layer safety connection with a credible time stamp through a user digital certificate when a grain information submitting request is received; the mobile terminal carries out the call of the credible time stamp through the safe cup-joint layer safety connection, so as to generate credible time stamp information for the grain information; the mobile terminal builds safe cup-joint layer safety connection with a grain background server through the user digital certificate; and the mobile terminal enables the credible time stamp information and the grain information to be transmitted and stored in the grain background server through the safe cup-joint layer safety connection. The invention also provides a grain information management system. The method and system can provide reliable basis for the tracking of the quality safety of grains.
Description
Technical field
The present invention relates to a kind of approaches to IM and system, particularly to a kind of grain approaches to IM and system.
Background technology
Along with the raising of living standards of the people, the requirement of grain quality safety is also increased day by day.In order to ensure grain quality safety, it will usually grain to be set up quality safety traceability system.This quality safety traceability system refers to the grain information by grain is likely to have influence on grain quality safety in the links such as purchase, storage, processing, circulation, such as, after the information such as humidity, temperature, processing technique, operator is standardized gathering and store, the quality safety information management issued in many ways and traceability system.By the quality safety traceability system of grain, it is possible to the information reflecting grain quality safety in whole grain supply chain is effectively traced to the source, followed the tracks of and early warning, thus ensureing grain quality safety.
In existing grain quality safety tracing system, the grain information that acquisition for mobile terminal operator input can be used, and by wireless network, this grain information is uploaded to grain background server and preserves, enter this grain background server for consumer by modes such as the Quick Response Codes in such as scanning grain outer package and inquire about this grain information.But, the problem that the RFDC between current mobile terminal and grain background server also exists some data safety, it is impossible to ensure that the data uploaded are not tampered with.First, the external interface of grain background server substantially all adopts based on HTTP (HyperTextTransferProtocol, HTML (Hypertext Markup Language)) and less encryption and the signature algorithm of using, the safety making whole communication link in grain message transmitting procedure is relatively low, thus cannot ensure that grain information is not intercepted or steals.Secondly, have ignored the authentication to the operator inputting grain information, it is easy to cause unauthorized person to pretend to be operator to operate or revise source grain information.
In addition, mobile terminal needs record uplink time when uploading grain information to grain background server, and all adopt at present generally the current system time of mobile terminal as uplink time, it is likely to there is bigger time error, as believable electronic evidence, foundation cannot be provided for the audit of grain information, safety inspection and information tracing etc..
Summary of the invention
In view of this, it is necessary to provide a kind of grain approaches to IM and system, grain information can be improved and be committed to the process of grain background server the safety of whole communication link from mobile terminal, ensure the legitimacy of the operator of grain information, adopt third party's trusted timestamp information as credible electronic evidence, it is possible to the quality safety for grain reviews the reliable foundation of offer simultaneously.
A kind of grain approaches to IM, comprises the following steps: when the submission receiving grain information is asked, mobile terminal sets up SSL secure connection by customer digital certificate and trusted timestamp server;Mobile terminal calls described trusted timestamp server by this SSL secure connection and this grain information is generated trusted timestamp information;Mobile terminal sets up SSL secure connection by customer digital certificate and grain background server;Described trusted timestamp information and grain information are sent and store to this grain background server by this SSL secure connection by mobile terminal.
The step that described mobile terminal sets up SSL secure connection by customer digital certificate and trusted timestamp server includes: mobile terminal sends SSL secure connection request by this customer digital certificate to this trusted timestamp server;Whether trusted timestamp server calls this customer digital certificate of Light Directory Access Protocol server authentication is effective;If this customer digital certificate is effective, then mobile terminal and trusted timestamp server set up SSL secure connection;The step that described mobile terminal sets up SSL secure connection by customer digital certificate and grain background server includes: mobile terminal sends SSL secure connection request by this customer digital certificate to grain background server;Whether grain background server calls this customer digital certificate of Light Directory Access Protocol server authentication effective;If this customer digital certificate is effective, then mobile terminal and grain background server set up SSL secure connection.
Described mobile terminal uses the domestic SM2 algorithm based on elliptic curve to set up SSL secure connection with trusted timestamp server;Described mobile terminal uses the domestic SM2 algorithm based on elliptic curve to set up SSL secure connection with grain background server.
Described mobile terminal calls the described trusted timestamp server step to this grain information generation trusted timestamp information by this SSL secure connection and includes: mobile terminal adopts digest algorithm that this grain information carries out Hash operation and generates digest value, this digest value is followed Time-Stamping Protocol and is sent to trusted timestamp server by SSL secure connection;This digest value is added a cover trusted timestamp and signs by trusted timestamp server, generates described trusted timestamp information, and follows Time-Stamping Protocol by this trusted timestamp information transmission to mobile terminal.
This digest value is added a cover trusted timestamp by described trusted timestamp server and the step signed includes: trusted timestamp server uses the domestic SM2 algorithm based on elliptic curve this digest value is added a cover trusted timestamp and signs.
The step that described trusted timestamp information and grain information are sent and store to this grain background server by described mobile terminal by this SSL secure connection includes: mobile terminal by this SSL secure connection by described trusted timestamp information and the transmission of grain information to grain background server;Whether grain background server calls the certificate of trusted timestamp server described in Light Directory Access Protocol server authentication legal;If the certificate of this trusted timestamp server is legal, then whether grain background server to call this trusted timestamp information of trusted timestamp server authentication effective;If this trusted timestamp information is effective, then grain background server stores described trusted timestamp information and grain information.
A kind of grain information management system, including mobile terminal, trusted timestamp server and grain background server;When described mobile terminal is for asking when the submission receiving grain information, set up SSL secure connection by customer digital certificate and described trusted timestamp server;This grain information is generated trusted timestamp information for responding mobile terminal by calling of this SSL secure connection by described trusted timestamp server;Mobile terminal is additionally operable to set up SSL secure connection by customer digital certificate and described grain background server;Described grain background server passes through, for memory mobile terminal, described trusted timestamp information and the grain information that this SSL secure connection sends.
Described mobile terminal is set up SSL secure connection by customer digital certificate and trusted timestamp server and is included: mobile terminal sends SSL secure connection request by this customer digital certificate to this trusted timestamp server;Whether trusted timestamp server calls this customer digital certificate of Light Directory Access Protocol server authentication is effective;If this customer digital certificate is effective, then mobile terminal and trusted timestamp server set up SSL secure connection;Described mobile terminal is set up SSL secure connection by customer digital certificate and grain background server and is included: mobile terminal sends SSL secure connection request by this customer digital certificate to grain background server;Whether grain background server calls this customer digital certificate of Light Directory Access Protocol server authentication effective;If this customer digital certificate is effective, then mobile terminal and grain background server set up SSL secure connection.
This grain information generation trusted timestamp information is included by described trusted timestamp server response mobile terminal by calling of this SSL secure connection: mobile terminal adopts digest algorithm that this grain information carries out Hash operation and generates digest value, this digest value is followed Time-Stamping Protocol and is sent to trusted timestamp server by SSL secure connection;This digest value is added a cover trusted timestamp and signs by trusted timestamp server, generates described trusted timestamp information, and follows Time-Stamping Protocol by this trusted timestamp information transmission to mobile terminal.
Described trusted timestamp information and grain information that described grain background server memory mobile terminal is sent by this SSL secure connection include: described trusted timestamp information and grain information are sent to grain background server by mobile terminal by this SSL secure connection;Whether grain background server calls the certificate of trusted timestamp server described in Light Directory Access Protocol server authentication legal;If the certificate of this trusted timestamp server is legal, then whether grain background server to call this trusted timestamp information of trusted timestamp server authentication effective;If this trusted timestamp information is effective, then grain background server stores described trusted timestamp information and grain information.
Compared to prior art, grain approaches to IM of the present invention and system provide the benefit that:
First, mobile terminal uses strict AES to set up SSL secure connection with trusted timestamp server and grain background server respectively, grain information can be improved and be committed to the process of grain background server the safety of whole communication link from mobile terminal, it is ensured that submitted grain information is not intercepted or steals;
Secondly, mobile terminal calls described trusted timestamp server by this SSL secure connection and grain information to be committed is generated trusted timestamp information, and this trusted timestamp information and this grain information are sent jointly to grain background server, grain background server is put on record as credible electronic evidence by calling pot life stamp this trusted timestamp information of server authentication record, it is possible to prevent the playback of grain information, resists the various attacks to group key exchange agreement;
Finally, when mobile terminal sets up SSL secure connection with trusted timestamp server and grain background server respectively, call the effectiveness of Light Directory Access Protocol this customer digital certificate of server authentication, only when this customer digital certificate is effective, mobile terminal just sets up SSL secure connection with trusted timestamp server and grain background server, it is possible to prevent grain information from illegally being called.
In sum, grain approaches to IM of the present invention and system, can ensure that grain information is submitted in the process of grain background server the safety of whole transmission link, ensure the legitimacy of the operator of input grain information, adopt third party's trusted timestamp information as credible electronic evidence, it is possible to the quality safety for grain reviews the reliable foundation of offer simultaneously.
For the above and other purpose of the present invention, feature and advantage can be become apparent, preferred embodiment cited below particularly, and coordinate institute's accompanying drawings, it is described in detail below.
Accompanying drawing explanation
The Organization Chart of the grain information management system that Fig. 1 provides for the embodiment of the present invention.
The flow chart of the grain approaches to IM that Fig. 2 provides for the embodiment of the present invention.
Fig. 3 is the flow chart that mobile terminal and trusted timestamp server set up SSL secure connection.
Fig. 4 is the flow chart that mobile terminal calls trusted timestamp server generation trusted timestamp information.
Fig. 5 is the flow chart that mobile terminal and grain background server set up SSL secure connection.
Fig. 6 is that trusted timestamp information and grain information are sent and store the flow chart to this grain background server by mobile terminal.
The mutual sequential chart of the grain approaches to IM that Fig. 7 provides for the embodiment of the present invention.
Detailed description of the invention
For further setting forth that the present invention realizes technological means and effect that predetermined goal of the invention is taked, below in conjunction with accompanying drawing and preferred embodiment, to according to the specific embodiment of the present invention, structure, feature and effect thereof, describe in detail as after.
Consult shown in Fig. 1, for the Organization Chart of the grain information management system that the embodiment of the present invention provides.In the present embodiment, this grain information management system 1 includes mobile terminal 10, trusted timestamp server (being called for short TSA (i.e. TimeStampAuthority) server) 20, grain background server 30 and Light Directory Access Protocol (LightweightDirectoryAccessProtocol is called for short LDAP) server 40.Wherein, wireless network 2 can be passed through between this mobile terminal 10, TSA server 20, grain background server 30 and ldap server 40 and carry out mutually data communication.This wireless network 2 can include cellular telephone networks, WLAN or Metropolitan Area Network (MAN).nullAbove-mentioned wireless network can use various communication standard、Agreement and technology,Include, but are not limited to global system for mobile communications (GlobalSystemforMobileCommunication,GSM)、Enhancement mode mobile communication technology (EnhancedDataGSMEnvironment,EDGE),Wideband CDMA Technology (widebandcodedivisionmultipleaccess,W-CDMA),CDMA (Codedivisionaccess,CDMA)、Tdma (timedivisionmultipleaccess,TDMA),Adopting wireless fidelity technology (Wireless,Fidelity,WiFi) (such as IEEE-USA standard IEEE 802.11a,IEEE802.11b,IEEE802.11g and/or IEEE802.11n)、The networking telephone (Voiceoverinternetprotocal,VoIP)、Worldwide interoperability for microwave accesses (WorldwideInteroperabilityforMicrowaveAccess,Wi-Max)、Other are used for mail、The agreement of instant messaging and short message,And any other suitable communication protocol,Even can include those agreements being currently developed not yet.
This mobile terminal 10 is the hand-held intelligent equipment being equipped with for the operator of grain business.In the present embodiment, this mobile terminal 10 has the multiple functions such as Quick Response Code scanning parsing, Quick Response Code displaying and printing, customer digital certificate management, the input of grain information, grain information submission.Wherein, this Quick Response Code is used for the different grains after identifying encapsulation.In the acquisition process that grain is initial, just the grain of encapsulation is also not provided with Quick Response Code, the operator of grain business are to the grain information of this bag grain after mobile terminal 10 input package, including the mark of such as operator, ambient temperature and the information such as humidity, packaging place, and use the grain information management system 1 of the present embodiment that the grain information inputted is committed to grain background server 30 to preserve.Grain background server 30 generates Quick Response Code according to the chained address of this grain information, and sends this Quick Response Code to mobile terminal 30.After mobile terminal 30 prints this Quick Response Code, this Quick Response Code is fixed in the outer package of described grain by operator.This Quick Response Code is by the whole production process of circulation with this bag grain, and midway is no longer changed.Consumer is when buying grain, it is possible to use has the Quick Response Code in the terminal scanning grain outer package of Quick Response Code scan function, can obtain the grain information under this Quick Response Code correspondence chained address from grain background server 30.
Operator use mobile terminal 10 to scan and resolve the Quick Response Code in grain outer package, it is possible to obtain the mark of this grain, and enter grain background server 30 and add or revise the grain information that this mark is corresponding.Specifically, operator first can input the grain information of this grain to mobile terminal 10, then uses mobile terminal 10 that this grain information is committed to grain background server 30 and preserves.Described grain information management system 1 is namely for realizing being committed to this grain information the process of preservation in grain background server 30.Below, in conjunction with Fig. 2, the interaction of the described mobile terminal 10 in grain information management system 1, TSA server 20, grain background server 30 and ldap server 40 is described in detail.
Consult shown in Fig. 2, for the flow chart of the grain approaches to IM that the embodiment of the present invention provides.In the present embodiment, this grain approaches to IM comprises the following steps:
Step S1, when the submission receiving grain information is asked, mobile terminal sets up SSL secure connection by customer digital certificate and trusted timestamp server;
Step S2, mobile terminal calls described trusted timestamp server by this SSL secure connection and this grain information is generated trusted timestamp information;
Step S3, mobile terminal sets up SSL secure connection by customer digital certificate and grain background server;
Step S4, described trusted timestamp information and grain information are sent and store to this grain background server by this SSL secure connection by mobile terminal.
According to above-mentioned grain approaches to IM, can ensure that grain information is submitted in the process of grain background server the safety of whole transmission link, ensure the legitimacy of the operator of input grain information, adopt third party's trusted timestamp information as credible electronic evidence, it is possible to the quality safety for grain reviews the reliable foundation of offer simultaneously.
In some instances, each step of said method to realize details as follows:
In step S1, described grain information can for operator by being erected at some sensors in the storage environment of grain, the information such as ambient temperature that such as temperature sensor, humidity sensor etc. collect, humidity, and the place of storage environment, the stage etc. that current grain is residing in producing the process of circulation.Additionally, this grain information also includes the mark of operator, for instance the job number of operator, name etc..This grain information may be used for reviewing the safe mass of grain.When operator input grain information to mobile terminal 10 and select that this grain information is committed to grain background server 30 by submission option, namely send the submission request of described grain information.After step S1 receives the submission request of this grain information, namely mobile terminal 10 sets up SSL (SSL, SecureSocketsLayer) secure connection by customer digital certificate and TSA server 20.This customer digital certificate is used for identifying operator's identity information, by verifying that this customer digital certificate may determine that whether operator are legal.
Specifically, consulting shown in Fig. 3, the process that mobile terminal 10 sets up SSL secure connection by customer digital certificate and TSA server 20 comprises the following steps:
Step S11, mobile terminal 10 sends SSL secure connection request by this customer digital certificate to TSA server 20.This SSL secure connection request includes the relevant information of this customer digital certificate, including certificate DN (DistinctName, identification name), effect duration, scaling option etc..
Step S12, TSA server 20 calls ldap server 40 and verifies that whether this customer digital certificate is effective.Specifically, the ldap server 40 relevant information according to this customer digital certificate, namely described certificate DN, effect duration, scaling option etc. verify that whether this customer digital certificate is effective, and return the result to TSA server 20.If this result is that this customer digital certificate is invalid, then TSA server 20 refusal sets up SSL secure connection with mobile terminal 10.
Step S13, if to be this customer digital certificate effective for this result, then mobile terminal 10 and TSA server 20 set up SSL secure connection.In conjunction with practical situation, mobile terminal 10 uses the domestic SM2 algorithm based on elliptic curve to complete SSL key agreement, it is achieved sets up SSL with TSA server 20 and is connected.SM2 algorithm has safer, arithmetic speed advantage faster.
In step S2, consulting shown in Fig. 4, mobile terminal 10 calls the TSA server 20 process to this grain information generation trusted timestamp information by SSL secure connection and specifically includes following steps:
Step S21, mobile terminal 10 adopts digest algorithm that grain information carries out Hash operation and generates digest value, this digest value is followed Time-Stamping Protocol and is sent to TSA server 20 by SSL secure connection;
This digest value is added a cover trusted timestamp and signs by step S22, TSA server 20, generates described trusted timestamp information, and follows Time-Stamping Protocol by this trusted timestamp information transmission to mobile terminal 10.Similarly, TSA server 20 can use the domestic SM2 algorithm based on elliptic curve this digest value is added a cover trusted timestamp and signs.This trusted timestamp is by country's time service central authority, and by sign and issue one tool of authority's trusted time stamping authority valid can prove that electronic message (e-file) time point be that existed, complete, can verify that, the electronic certificate that possesses act of law.Any mechanism includes Time Stamping Authority oneself all can not modify to ensure to the time authority of time.Trusted timestamp is mainly used in e-file anti-tamper and deny afterwards, it is determined that the correct time that e-file produces.Use trusted timestamp at Grain Trade, make grain be not tampered with in the different grain information producing the circulation stage equally, there is act of law simultaneously.
In step S3, consulting shown in Fig. 5, the process that mobile terminal 10 sets up SSL secure connection by customer digital certificate and grain background server 30 comprises the following steps:
Step S31, mobile terminal 10 sends SSL secure connection request by this customer digital certificate to grain background server 30.This SSL secure connection request includes the relevant information of this customer digital certificate, including certificate DN, effect duration, scaling option etc..
Step S32, grain background server 30 calls ldap server 40 and verifies that whether this customer digital certificate is effective.Specifically, the ldap server 40 relevant information according to this customer digital certificate, namely described certificate DN, effect duration, scaling option etc. verify that whether this customer digital certificate is effective, and return the result to grain background server 30.If this result is that this customer digital certificate is invalid, then grain background server 30 refusal sets up SSL secure connection with mobile terminal 10.
Step S33, if to be this customer digital certificate effective for this result, then mobile terminal 10 and grain background server 30 set up SSL secure connection.In conjunction with practical situation, mobile terminal 10 uses the domestic SM2 algorithm based on elliptic curve to complete SSL key agreement, it is achieved sets up SSL with grain background server 30 and is connected.
In step S4, consulting shown in Fig. 6, the process that trusted timestamp information and grain information are sent and store to this grain background server 30 by mobile terminal 10 by SSL secure connection comprises the following steps:
Step S41, trusted timestamp information and grain information are sent to grain background server 30 by mobile terminal 10 by SSL secure connection.
Step S42, grain background server 30 calls ldap server 40 and verifies that whether the certificate of this TSA server 20 is legal.Specifically, ldap server 40 verifies that whether the certificate of this issued TSA server 20 is legal, and the result is back to grain background server 30.If the certificate of this TSA server 20 is illegal, then grain background server 30 refusal stores described trusted timestamp information and grain information.
Step S43, if the certificate of TSA server 20 is legal, then grain background server 30 calls TSA server 20 and verifies that whether this trusted timestamp information is effective.Specifically, TSA server 20 can verify that whether this trusted timestamp information be that the machine is signed and issued, whether the sign test of this trusted timestamp information can be passed through.Such as, if verifying, this trusted timestamp information is that the machine is signed and issued, and the sign test of this trusted timestamp information can be passed through, then TSA server 20 verifies that this trusted timestamp information is effective.The result is back to grain background server 30 by TSA server 20.If the result is that trusted timestamp information is invalid, then grain background server 30 refusal stores described trusted timestamp information and grain information.
Step S44, if to be trusted timestamp information effective for the result, then grain background server 30 stores described trusted timestamp information and grain information.Consumer can use the Quick Response Code in the terminal scanning grain outer package with Quick Response Code scan function, can obtain the grain information under this Quick Response Code correspondence chained address from grain background server 30.
Consult shown in Fig. 7, for the mutual sequential chart of the grain approaches to IM that the embodiment of the present invention provides.In conjunction with this mutual sequential chart, interaction between mobile terminal 10, TSA server 20, grain background server 30 and ldap server 40 in grain information management system 1 is described as follows:
1., when the submission receiving grain information is asked, mobile terminal 10 sends SSL secure connection request by customer digital certificate to TSA server 20;
2.TSA server 20 calls ldap server 40 and verifies that whether this customer digital certificate is effective;
According to the relevant information of this customer digital certificate, 3.LDAP server 40 verifies that whether this customer digital certificate is effective, and the result is back to TSA server 20;
If 4. this customer digital certificate is effective, then TSA server 20 and mobile terminal 10 set up SSL secure connection;
5. grain information is generated digest value by mobile terminal 10, and sends this digest value to TSA server 20;
This digest value is generated trusted timestamp information by 6.TSA server 20, and sends this trusted timestamp information to mobile terminal 10;
7. mobile terminal 10 sends SSL secure connection request by customer digital certificate to grain background server 30;
8. grain background server 30 calls ldap server 40 and verifies that whether this customer digital certificate is effective;
According to the relevant information of this customer digital certificate, 9.LDAP server 40 verifies that whether this customer digital certificate is effective, and the result is back to grain background server 30;
If 10. this customer digital certificate is effective, then grain background server 30 and mobile terminal 10 set up SSL secure connection;
11. mobile terminal 10 submits trusted timestamp information and grain information to grain background server 30;
12. grain background server 30 calls ldap server 40 and verifies that whether the certificate of TSA server 20 is effective;
13.LDAP whether the certificate that server 40 verifies TSA server 20 is effective, and the result is back to grain background server 30;
14. if the certificate of TSA server 20 is effective, then grain background server 30 calls TSA server 20 and verifies that whether this trusted timestamp information is effective;
15.TSA server 20 verifies that whether this trusted timestamp information is effective, and the result is back to grain background server 30;
16. if trusted timestamp information is effective, then grain background server 30 stores described trusted timestamp information and grain information.
In sum, in the grain approaches to IM and system of the present embodiment, mobile terminal 10 uses strict AES to set up SSL secure connection with TSA server 20 and grain background server 30 respectively, it is possible to improve the safety of whole communication link in transmitting procedure of grain information;Secondly, mobile terminal 10 calls described TSA server 20 by this SSL secure connection and grain information is generated trusted timestamp information, and this trusted timestamp information and this grain information are sent jointly to grain background server 30, by calling TSA server 20, grain background server verifies that this trusted timestamp information record are put on record as credible electronic evidence, it is possible to the quality safety for grain reviews the reliable foundation of offer;Finally, when mobile terminal 10 sets up SSL secure connection with TSA server 20 and grain background server 30 respectively, call ldap server 40 and verify the effectiveness of this customer digital certificate, only when this customer digital certificate is effective, mobile terminal 10 just sets up SSL secure connection with TSA server 20 and grain background server 30, it is possible to prevent grain information from illegally being called.
The above, it it is only presently preferred embodiments of the present invention, not the present invention is done any pro forma restriction, although the present invention discloses as above with preferred embodiment, but it is not limited to the present invention, any those skilled in the art, without departing within the scope of technical solution of the present invention, when the technology contents of available the disclosure above makes a little change or is modified to the Equivalent embodiments of equivalent variations, in every case it is without departing from technical solution of the present invention content, according to any brief introduction amendment that above example is made by the technical spirit of the present invention, equivalent variations and modification, all still fall within the scope of technical solution of the present invention.
Claims (10)
1. a grain approaches to IM, it is characterised in that the method comprises the following steps:
When the submission receiving grain information is asked, mobile terminal sets up SSL secure connection by customer digital certificate and trusted timestamp server;
Mobile terminal calls described trusted timestamp server by this SSL secure connection and this grain information is generated trusted timestamp information;
Mobile terminal sets up SSL secure connection by customer digital certificate and grain background server;
Described trusted timestamp information and grain information are sent and store to this grain background server by this SSL secure connection by mobile terminal.
2. grain approaches to IM as claimed in claim 1, it is characterised in that the step that described mobile terminal sets up SSL secure connection by customer digital certificate and trusted timestamp server includes:
Mobile terminal sends SSL secure connection request by this customer digital certificate to this trusted timestamp server;
Whether trusted timestamp server calls this customer digital certificate of Light Directory Access Protocol server authentication is effective;
If this customer digital certificate is effective, then mobile terminal and trusted timestamp server set up SSL secure connection;
The step that described mobile terminal sets up SSL secure connection by customer digital certificate and grain background server includes:
Mobile terminal sends SSL secure connection request by this customer digital certificate to grain background server;
Whether grain background server calls this customer digital certificate of Light Directory Access Protocol server authentication effective;
If this customer digital certificate is effective, then mobile terminal and grain background server set up SSL secure connection.
3. grain approaches to IM as claimed in claim 2, it is characterised in that described mobile terminal uses the domestic SM2 algorithm based on elliptic curve to set up SSL secure connection with trusted timestamp server;
Described mobile terminal uses the domestic SM2 algorithm based on elliptic curve to set up SSL secure connection with grain background server.
4. grain approaches to IM as claimed in claim 1, it is characterised in that described mobile terminal calls the described trusted timestamp server step to this grain information generation trusted timestamp information by this SSL secure connection and includes:
Mobile terminal adopts digest algorithm that this grain information carries out Hash operation and generates digest value, this digest value is followed Time-Stamping Protocol and is sent to trusted timestamp server by SSL secure connection;
This digest value is added a cover trusted timestamp and signs by trusted timestamp server, generates described trusted timestamp information, and follows Time-Stamping Protocol by this trusted timestamp information transmission to mobile terminal.
5. grain approaches to IM as claimed in claim 4, it is characterised in that this digest value is added a cover trusted timestamp by described trusted timestamp server and the step signed includes:
Trusted timestamp server uses the domestic SM2 algorithm based on elliptic curve this digest value is added a cover trusted timestamp and signs.
6. grain approaches to IM as claimed in claim 1, it is characterised in that the step that described trusted timestamp information and grain information are sent and store to this grain background server by described mobile terminal by this SSL secure connection includes:
Described trusted timestamp information and grain information are sent to grain background server by mobile terminal by this SSL secure connection;
Whether grain background server calls the certificate of trusted timestamp server described in Light Directory Access Protocol server authentication legal;
If the certificate of this trusted timestamp server is legal, then whether grain background server to call this trusted timestamp information of trusted timestamp server authentication effective;
If this trusted timestamp information is effective, then grain background server stores described trusted timestamp information and grain information.
7. a grain information management system, it is characterised in that this system includes mobile terminal, trusted timestamp server and grain background server;
When described mobile terminal is for asking when the submission receiving grain information, set up SSL secure connection by customer digital certificate and described trusted timestamp server;
This grain information is generated trusted timestamp information for responding mobile terminal by calling of this SSL secure connection by described trusted timestamp server;
Mobile terminal is additionally operable to set up SSL secure connection by customer digital certificate and described grain background server;
Described grain background server passes through, for memory mobile terminal, described trusted timestamp information and the grain information that this SSL secure connection sends.
8. grain information management system as claimed in claim 7, it is characterised in that described mobile terminal is set up SSL secure connection by customer digital certificate and trusted timestamp server and included:
Mobile terminal sends SSL secure connection request by this customer digital certificate to this trusted timestamp server;
Whether trusted timestamp server calls this customer digital certificate of Light Directory Access Protocol server authentication is effective;
If this customer digital certificate is effective, then mobile terminal and trusted timestamp server set up SSL secure connection;
Described mobile terminal is set up SSL secure connection by customer digital certificate and grain background server and is included:
Mobile terminal sends SSL secure connection request by this customer digital certificate to grain background server;
Whether grain background server calls this customer digital certificate of Light Directory Access Protocol server authentication effective;
If this customer digital certificate is effective, then mobile terminal and grain background server set up SSL secure connection.
9. grain information management system as claimed in claim 7, it is characterised in that this grain information generation trusted timestamp information is included by described trusted timestamp server response mobile terminal by calling of this SSL secure connection:
Mobile terminal adopts digest algorithm that this grain information carries out Hash operation and generates digest value, this digest value is followed Time-Stamping Protocol and is sent to trusted timestamp server by SSL secure connection;
This digest value is added a cover trusted timestamp and signs by trusted timestamp server, generates described trusted timestamp information, and follows Time-Stamping Protocol by this trusted timestamp information transmission to mobile terminal.
10. grain information management system as claimed in claim 7, it is characterised in that described trusted timestamp information and grain information that described grain background server memory mobile terminal is sent by this SSL secure connection include:
Described trusted timestamp information and grain information are sent to grain background server by mobile terminal by this SSL secure connection;
Whether grain background server calls the certificate of trusted timestamp server described in Light Directory Access Protocol server authentication legal;
If the certificate of this trusted timestamp server is legal, then whether grain background server to call this trusted timestamp information of trusted timestamp server authentication effective;
If this trusted timestamp information is effective, then grain background server stores described trusted timestamp information and grain information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410784175.6A CN105763506A (en) | 2014-12-16 | 2014-12-16 | Grain information management method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410784175.6A CN105763506A (en) | 2014-12-16 | 2014-12-16 | Grain information management method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105763506A true CN105763506A (en) | 2016-07-13 |
Family
ID=56339517
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410784175.6A Pending CN105763506A (en) | 2014-12-16 | 2014-12-16 | Grain information management method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105763506A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106789064A (en) * | 2016-12-07 | 2017-05-31 | 北京信安世纪科技有限公司 | A kind of digital signature method and device based on the close algorithm of state |
| CN107147501A (en) * | 2017-06-27 | 2017-09-08 | 中国联合网络通信集团有限公司 | Timestamp processing method and processing device |
| CN111144893A (en) * | 2018-11-06 | 2020-05-12 | 航天信息股份有限公司 | Grain transaction detection system, method and device based on block chain |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101295387A (en) * | 2007-04-23 | 2008-10-29 | 北京数字证书认证中心有限公司 | Method for implementing network transaction data text |
| CN101931631A (en) * | 2010-09-15 | 2010-12-29 | 北京数字证书认证中心有限公司 | Method for digital signatures capable of establishing reliable correspondence with handwritten signatures |
| CN103152182A (en) * | 2013-03-08 | 2013-06-12 | 新疆君盾信息技术有限公司 | Method for authenticating and validating electronic data |
| CN103514410A (en) * | 2013-09-30 | 2014-01-15 | 上海市数字证书认证中心有限公司 | Dependable preservation and evidence collection system and method for electronic contract |
-
2014
- 2014-12-16 CN CN201410784175.6A patent/CN105763506A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101295387A (en) * | 2007-04-23 | 2008-10-29 | 北京数字证书认证中心有限公司 | Method for implementing network transaction data text |
| CN101931631A (en) * | 2010-09-15 | 2010-12-29 | 北京数字证书认证中心有限公司 | Method for digital signatures capable of establishing reliable correspondence with handwritten signatures |
| CN103152182A (en) * | 2013-03-08 | 2013-06-12 | 新疆君盾信息技术有限公司 | Method for authenticating and validating electronic data |
| CN103514410A (en) * | 2013-09-30 | 2014-01-15 | 上海市数字证书认证中心有限公司 | Dependable preservation and evidence collection system and method for electronic contract |
Non-Patent Citations (2)
| Title |
|---|
| 郑重: "数字签名在电子病历系统中的应用研究和实现", 《中国优秀硕士学位论文全文数据库 信息科技辑(2005)》 * |
| 马松: "不可否认机制与时间戳服务系统研究", 《中国优秀硕士学位论文全文数据库 信息科技辑(2012)》 * |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106789064A (en) * | 2016-12-07 | 2017-05-31 | 北京信安世纪科技有限公司 | A kind of digital signature method and device based on the close algorithm of state |
| CN107147501A (en) * | 2017-06-27 | 2017-09-08 | 中国联合网络通信集团有限公司 | Timestamp processing method and processing device |
| CN107147501B (en) * | 2017-06-27 | 2019-08-06 | 中国联合网络通信集团有限公司 | Timestamp processing method and processing device |
| CN111144893A (en) * | 2018-11-06 | 2020-05-12 | 航天信息股份有限公司 | Grain transaction detection system, method and device based on block chain |
| CN111144893B (en) * | 2018-11-06 | 2023-09-12 | 航天信息股份有限公司 | Grain transaction detection system, method and device based on blockchain |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11727396B2 (en) | Processing electronic tokens | |
| CN101873588B (en) | Method and system for realizing service application safety | |
| CN104539701B (en) | A kind of equipment of activation line mobile terminal token and the method for work of system | |
| CN110351239B (en) | Block chain-based electronic contract storage method and device and electronic equipment | |
| US8341141B2 (en) | Method and system for automated document registration | |
| US9031541B2 (en) | Method for transmitting information stored in a tamper-resistant module | |
| CN104065484B (en) | A kind of electronic contract platform implementation method based on SDK short messages and digital signature | |
| US20110055909A1 (en) | Methods, apparatus, and computer program products for subscriber authentication and temporary code generation | |
| CN105306211B (en) | A kind of identity identifying method of client software | |
| US10212144B2 (en) | Digital credential with embedded authentication instructions | |
| CN106302381A (en) | Device authentication | |
| CN108011715A (en) | A kind of distribution method of key, relevant device and system | |
| CN103561115B (en) | Obtain the method for electronics code, open platform and system in real time | |
| CN104202736A (en) | Mobile terminal short message end-to-end encryption method oriented to Android system | |
| CN106127441A (en) | A kind of network system preventing personal information from leaking and implementation method | |
| CN110278084A (en) | EID method for building up, relevant device and system | |
| CN111614731B (en) | Method and system for accessing block chain to Internet of things equipment, aggregation gateway and storage medium | |
| CN103973714A (en) | E-mail account generating method and system | |
| CN105763506A (en) | Grain information management method and system | |
| CN107196918B (en) | Data matching method and device | |
| US10033719B1 (en) | Mobile work platform for remote data centers | |
| Omar et al. | Smart phone anti-counterfeiting system using a decentralized identity management framework | |
| US20240039707A1 (en) | Mobile authenticator for performing a role in user authentication | |
| CN112800486A (en) | Bill information processing method, device and system | |
| KR101611241B1 (en) | Message authentication method, system, server and computer-readable medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20160713 |
|
| RJ01 | Rejection of invention patent application after publication |