CN108764848B - Electronic contract signing method and system - Google Patents
Electronic contract signing method and system Download PDFInfo
- Publication number
- CN108764848B CN108764848B CN201810547761.7A CN201810547761A CN108764848B CN 108764848 B CN108764848 B CN 108764848B CN 201810547761 A CN201810547761 A CN 201810547761A CN 108764848 B CN108764848 B CN 108764848B
- Authority
- CN
- China
- Prior art keywords
- module
- signature
- signed
- server
- client
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/10—Office automation; Time management
- G06Q10/103—Workflow collaboration or project management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Systems or methods specially adapted for specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
- G06Q50/18—Legal services; Handling legal documents
Abstract
The invention discloses a signing method and a signing system of an electronic contract, and relates to the field of digital signatures. The method comprises the following steps: the client receives a trigger signal for starting to sign a contract and sends a contract identifier to the server; the server acquires a PDF contract file to be signed according to the contract identifier; the server generates a first signature result and generates a temporary signing PDF contract file according to the first signature result and the PDF contract file to be signed; the server generates data to be signed and sends the data to the client, and the client sends the data to be signed to the intelligent key device connected with the client; receiving a second signature result transmitted by the equipment; and the server acquires the temporary signed PDF contract file, replaces the first signature result in the temporary signed PDF contract file with the second signature result, groups a second signature data packet, combines the acquired signing information with the temporary signed PDF contract file and the second signature data packet to generate a signed PDF contract file, and finishes signing. And the intelligent secret key equipment is used in the signing process, so that the safety is improved.
Description
Technical Field
The invention relates to the field of digital signatures, in particular to a signing method and a signing system of an electronic contract.
Background
With the popularization of the internet and the development of online transaction technology, online transactions via the internet have become an important transaction method. Electronic contracts are presented during transactions to ensure the benefit of each party to the transaction. The existing electronic contract is generally signed by a soft certificate (including a long-term digital certificate and a short-term digital certificate), and the soft certificate is displayed in a file certificate form and is not fixedly stored in a certain hardware medium, so that the electronic contract is easily copied and stolen by others to sign, and the security level is low.
Disclosure of Invention
In order to solve the problems in the prior art, the invention provides a method and a system for signing an electronic contract.
The invention provides a signing method of an electronic contract, which comprises the following steps:
step S1, the client receives the trigger signal for starting to sign the contract and sends a contract identifier to the server; the server acquires a PDF contract file to be signed according to the contract identifier;
step S2, the server generates a first signature result, generates a temporary signing PDF contract file according to the first signature result and the PDF contract file to be signed, and stores the temporary signing PDF contract file corresponding to the contract identifier;
step S3, the server generates data to be signed and sends the data to be signed and the contract identification to the client; the client sends the data to be signed to the intelligent key device connected with the client; receiving a second signature result transmitted by the intelligent key equipment, and transmitting the second signature result and the contract identifier to the server;
step S4, the server acquires the temporary signed PDF contract file according to the contract identifier, analyzes the temporary signed PDF contract file, and replaces the first signature result in the temporary signed PDF contract file with the second signature result;
and step S5, the server forms a second signature data packet according to the acquired equipment certificate, the preset signature algorithm and the second signature result, and combines the acquired signing information, the temporary signing PDF contract file and the second signature data packet to generate a signed PDF contract file, and signing is completed.
The invention provides a signing system of an electronic contract, comprising: the system comprises a client, a server and an intelligent key device;
the client specifically comprises:
the first receiving module is used for receiving a trigger signal for starting to sign the contract;
the first sending module is used for sending a contract identifier to the server after the first receiving module receives the trigger signal for starting to sign the contract;
the first receiving module is also used for receiving the data to be signed and the contract identifier sent by the server;
the first sending module is also used for sending the data to be signed received by the first receiving module to the intelligent secret key equipment connected with the first sending module;
the first receiving module is also used for receiving a second signature result transmitted by the intelligent secret key equipment;
the first sending module is further used for sending the second signature result and the contract identifier to the server;
the server specifically comprises:
the second receiving module is used for receiving the contract identification sent by the client;
the first acquisition module is used for acquiring a PDF contract file to be signed according to the contract identifier received by the second receiving module;
the first generation module is used for generating a first signature result;
the second generation module is used for generating a temporary signing PDF contract file according to the first signature result generated by the first generation module and the PDF contract file to be signed and storing the temporary signing PDF contract file corresponding to the contract identifier;
the third generation module is used for generating data to be signed;
the second sending module is used for sending the data to be signed generated by the third generating module and the contract identifier received by the second receiving module to the client;
the second receiving module is further used for receiving a second signature result and a contract identifier sent by the client;
the first acquisition module is also used for acquiring a temporary signing PDF contract file according to the contract identifier received by the second receiving module;
the analysis module is used for analyzing the temporary signed PDF contract file acquired by the first acquisition module;
the replacing module is used for replacing the second signature result received by the second receiving module with the first signature result in the temporary signing PDF contract file generated by the first generating module;
the first group of packet modules are used for forming a second signature data packet according to the acquired equipment certificate, a preset signature algorithm and a second signature result received by the second receiving module;
and the fourth generation module is used for combining the acquired signing information, the temporary signing PDF contract file acquired by the first acquisition module and a second signing data packet consisting of the first group of packet modules to generate a signed PDF contract file.
The invention has the beneficial effects that: by adopting the method provided by the invention, the intelligent key equipment participates in the signing of the electronic contract, and the certificate of the intelligent key equipment is used in the signing process, so that the security of signing the electronic contract is greatly improved.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a flowchart of a binding process in an electronic contract signing method according to a second embodiment of the present invention;
2-3 are flowcharts of a signing process in a signing method of an electronic contract according to a second embodiment of the present invention;
fig. 4 is a schematic diagram of a PDF contract file to be signed according to the second embodiment of the present invention;
FIG. 5 is a schematic diagram of a signed PDF contract document according to a second embodiment of the present invention;
fig. 6 is a block diagram of an electronic contract signing system provided in the third embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Example one
The embodiment provides a method for signing an electronic contract, which comprises the following steps:
step S1, the client receives the trigger signal for starting to sign the contract and sends a contract identifier to the server; the server acquires a PDF contract file to be signed according to the contract identifier;
step S2, the server generates a first signature result, generates a temporary signing PDF contract file according to the first signature result and the PDF contract file to be signed, and stores the temporary signing PDF contract file corresponding to the contract identifier;
step S3, the server generates data to be signed and sends the data to be signed and the contract identification to the client; the client sends the data to be signed to the intelligent key device connected with the client; receiving a second signature result transmitted by the intelligent key equipment, and transmitting the second signature result and the contract identifier to the server;
step S4, the server acquires the temporary signed PDF contract file according to the contract identifier, analyzes the temporary signed PDF contract file, and replaces the first signature result in the temporary signed PDF contract file with the second signature result;
and step S5, the server forms a second signature data packet according to the acquired equipment certificate, the preset signature algorithm and the second signature result, and combines the acquired signing information, the temporary signing PDF contract file and the second signature data packet to generate a signed PDF contract file, and signing is completed.
Preferably, step S5 is preceded by: and the server acquires the signing information according to the contract identifier.
Preferably, step S1 further includes: the client sends user information to the server;
step S5 is preceded by: and the server acquires the equipment certificate according to the user information.
Preferably, step S1 further includes: the server verifies whether the user identity is legal or not according to the user information, and if so, the server acquires a PDF contract file to be signed according to the contract identifier; otherwise, returning error information to the client.
Specifically, a temporary signed PDF contract file is generated according to the first signature result and the to-be-signed PDF contract file and is stored in correspondence with the contract identifier, which specifically includes: and the server forms a first signature data packet according to the acquired equipment certificate, a preset signature algorithm and a first signature result, synthesizes the acquired signing information, the PDF contract file to be signed and the first signature data packet together, generates a temporary signing PDF contract file and correspondingly stores the temporary signing PDF contract file and the contract identification.
Specifically, the analyzing of the temporarily signed PDF contract file specifically includes: the server analyzes the temporary signed PDF contract file to obtain signing information, the PDF contract file to be signed and a first signature data packet.
Correspondingly, replacing the first signature result in the temporary signed PDF with the second signature result specifically includes: the server acquires a first signature data packet according to the preset position identification, analyzes the first signature data packet according to the preset data packet format, acquires a first signature result, and replaces the first signature result with a second signature result.
Specifically, the server forms a second signature data packet according to the obtained device certificate, the preset signature algorithm and the second signature result, and specifically includes: and the server combines the equipment certificate, the preset signature algorithm and the second signature result into a second signature data packet according to the preset data packet format.
Preferably, step S3 further includes: the client acquires and verifies the personal identification number input by the user, and if the verification is successful, the client sends the data to be signed to the intelligent key device connected with the client; if the verification fails, the error is reported to be over.
Specifically, the generation of the data to be signed by the server specifically includes: and the server performs summary operation on the PDF contract file to be signed and the acquired signing information to generate data to be signed.
Preferably, step S1 further includes: the client sends user information to the server;
step S3 is preceded by: the server acquires a certificate serial number according to the user information;
step S3 further includes: the server sends the certificate serial number to the client; the client sends the certificate serial number to the intelligent secret key equipment; and the intelligent key equipment acquires the corresponding equipment certificate according to the certificate serial number.
Preferably, step S3 further includes: the intelligent key equipment calls a preset signature function to sign the data to be signed by applying a preset signature algorithm and an equipment certificate, generates a second signature result, and sends the second signature result to the client.
Preferably, the server generates the first signature result, specifically:
the server calls a preset signature function to sign the data to be signed generated by the server by using a preset signature algorithm and the obtained equipment certificate, and a first signature result is generated.
Preferably, the server generates the first signature result, specifically: the server generates a random number and takes the random number as a first signature result; the length of the random number is matched with a public key algorithm in the acquired device certificate.
Preferably, step S1 is preceded by:
step T1, the client receives the user information input by the user and sends the user information to the server;
step T2, the client establishes connection with the intelligent key device, and obtains certificate information from the intelligent key device connected with the client, and sends the certificate information to the server;
and step T3, the server binds and stores the certificate information and the user information.
Preferably, before the step T2 and after the step T1, the method further comprises: the server verifies whether the user information is legal, if so, the step T2 is executed; otherwise, returning error information to the client and ending.
Example two
The embodiment provides a method for signing an electronic contract, which is implemented based on a system consisting of a client and a server, and with reference to fig. 1 to3, the method comprises the following steps: a binding process and a signing process;
as shown in fig. 1, the binding process specifically includes:
step 101, a client receives user information input by a user and sends the user information to a server;
specifically, the user information specifically includes a user account and a password.
For example, the user account: com; password: 123456;
step 102, the server verifies whether the user information is legal, if so, step 103 is executed; otherwise, returning a verification failure response to the client, and ending;
103, the client acquires certificate information from the intelligent key equipment connected with the client and sends the certificate information to the server;
in this embodiment, the certificate information includes a device certificate and a certificate serial number;
for example, the device certificate is:
MiICXTCCAcegagawIBAgIONNTNENTVEQ 0I0OEYxODAwDAYIKOEcz1UBg3UFADB4 MQswCQYDVQGEwJDTjETMBEGA 1UEChMKYm9jY tLnBbTERMA 8GA1 UECxMIkFOS 0NPTU0xFDASBgNVBAsTC0 VudGvGvHJpc 2 VzMSKQYDVQDEyVQDEwNDBANDODIwMTwMTIwNzE 4 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; certificate serial number: 3533443535444342343846313830
It should be noted that, before step 103, the method further includes: the client establishes connection with the intelligent key device;
step 104, the server binds and stores the certificate information and the user information;
specifically, in the present embodiment, the server saves the certificate information into the certificate table.
The signing process is shown in fig. 2-3, and specifically includes:
step 201, a client receives a trigger signal for starting to sign a contract;
step 202, the client sends user information and contract identification to the server;
specifically, the user information specifically includes a user account and a password.
For example, the contract identification is: 8AC16BEC273057A775AB6A4673135D36
Step 203, the server verifies whether the user identity is legal, if so, step 204 is executed; otherwise, returning error information to the client;
step 204, the server acquires certificate information according to the user information;
specifically, the server obtains certificate information stored in the server according to the user information, wherein the certificate information includes an equipment certificate and a certificate serial number of the intelligent key equipment.
Step 205, the server acquires a currently stored PDF contract file to be signed corresponding to the contract identifier according to the contract identifier;
in this embodiment, the present step further includes: the server judges whether the PDF contract file corresponding to the contract identifier is signed completely or invalidated according to the contract identifier, if so, the server returns an error prompt message that the PDF contract file is signed completely or invalidated to the client, otherwise, the server executes step 206; the PDF contract document to be signed is shown in fig. 4.
Among them, PDF (a short form of Portable Document Format, which means "Portable Document Format") is a file Format developed by Adobe Systems for exchanging files in a manner independent of an application program, an operating system, and hardware. The PDF file is based on a PostScript language image model, and accurate colors and accurate printing effects can be guaranteed regardless of the printer, i.e., the PDF faithfully reproduces each character, color, and image of the original.
Step 206, the server acquires the correspondingly stored signing information according to the contract identifier;
specifically, the signing information to be set includes the picture information of the signature and the position rectangle of the signature, and further may include the signing date.
For example, the picture information is: data is image/png; GbaORw 0 KGGOAANSUgAAAGMAAAA 8CAYAAABy4wS3AAAOT0lEQVR42U1 cCViGvXbXfGvXbXbXbXbXfQWQWfXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXbXb QPiySyD 5Vdq + Nm3a1 BMW 8en5zR2M2 vPYHqeOpbWume 3sxOAto5rnoK9 phjAsTyWqqvEKLEob 7Ny056cMW + vznfXfXfXfQFfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfXfQXfQFpXfQXfXfQFfQFvXfXfXfXfQFvXfXfXfXfXfXfQFvXfQFvXfQFfQFvXfXfQFvXfQFfQFvXfQFvXfQFvXfQFvXfQFfQFvXfQFfQFvXfQFfQFvXfQFvXfQFvXfQFvQFvQFvXfQFvQFvXfQFvXfQFvQFvXfQFvQFvQFvXfQFvQFvQFvXfQFvXfQFvXfQFvQFvQFvQFvQFvXfQFvQFvQFvQFvQFvQFvXfQFvXfQFvQFvXfQFvQFvQFvQFvQFvQFvXfQFvXfXfQFvXfXfQFvXfXfXfXfXfXfXfXfQFvQFvQFvQFvQFvQFvQFvQFvQFvQFfQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQfQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQfQFvQfQfQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvXfXfXfXfXfXfQFvXfXfXfXfXfQfQFvQFvQfXfQfQfXfQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQfQfQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvXfQFvXfXfQFvQFvQfQFvQFvXfXfQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQfQfQfQfQfXfQFvQfQFvQFvQfQFvQFvQFvQFvQfQfQfQfQfQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvQFvXfXfXfXfQfQFvQfQFvQfQfQFvQfQfQFvQFvQFvQFvQFvQFvQfQFvQFvQFvQFvQFvQFvQfQfQfXfQfQfQfQfXfXfXfXfXfXfXfXfQfQfQfXfXfXfXfQfXfXfQfQfXfQfQfXfXfXfXfQfQfQfQfQfQfQFvQfQfXfQfQfQfQfQfQfQfQfQfQfQfQFvQfQfQfQFvQFvQFvQfQfQfQFvQfQfQfQfQfQfQfQfXfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQFvQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfXfQfQfXfXfXfXfXfXfXfXfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQfQf; position rectangle: position 24.692936785.195290.76323825.2221
Optionally, step 206 may also be:
step A1, the server sends the acquired PDF contract file to be signed and signing information to be set to the client;
step A2, the client receives and displays the contract content picture and the signing information needing to be set;
step A3, the client sends the signed information with completed setting to the server;
step A4, the server obtains the signing information.
Step 207, the server performs summary operation on the PDF contract file to be signed and the signing information to generate data to be signed;
step 208, the server calls a preset signature function to sign the data to be signed by applying a preset signature algorithm and a certificate serial number, and a first signature result is generated;
for example, the first signature result is:
30460221004BFF8B5A9A1A58907F9642C433977450CF54CD1732C9D7E11AE25B2E564410380221004BFF8B5A9A1A58907F9642C433977450CF54CD1732C9D7E11AE25B2E56441038
in this embodiment, the first signature result may also be a set of random numbers generated by the server.
Step 209, the server forms a first signature data packet according to the device certificate, the preset signature algorithm and the first signature result in the certificate information;
in this embodiment, the server composes the device certificate, the preset signature algorithm, and the first signature result in the certificate information into a first signature packet according to the preset packet format.
Specifically, the preset data packet format is a PKCS7 format.
For example, the first signature packet is:
<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……>
preferably, the first signature data packet may further include information such as the signer identity information, the signing reason, and the picture attribute (format, size, position, etc.) of the signature in the signing information.
Step 210, the server combines the signing information, the first signature data packet and the PDF contract file to be signed together to generate a temporary signing PDF contract file and correspondingly stores the temporary signing PDF contract file and the contract identifier;
step 211, the server sends the data to be signed, the certificate serial number and the contract identification in the certificate information to the client;
step 212, the client acquires and verifies the personal identification code input by the user, and if the verification is successful, step 213 is executed; if the verification fails, the error is reported to be over;
for example, pin number: 12345678 a;
step 213, the client sends the data to be signed and the certificate serial number in the certificate information to the connected intelligent key device;
for example, certificate serial number: 3533443535444342343846313830, respectively;
step 214, the client receives a second signature result transmitted by the intelligent key device;
in the embodiment, the intelligent key equipment calls a signature function to sign the data to be signed by applying a preset signature algorithm and a certificate serial number, and a second signature result is generated;
for example, the second signature result generated is:
304602210087F6456DF8F0CDEA921548A6609F357F2F38FBC62C8A79CCF5B9B20E415A7AD8022100B15CCE2379EFDCC6AF0DC43E387DA188D9AD4AF25E95F2BE1F254191DFB37FF3
step 215, the client sends the second signature result and the contract identifier to the server;
step 216, the server acquires a temporary signed PDF contract file according to the contract identifier;
step 217, the server analyzes the temporary signed PDF contract file to obtain a first signature data packet; replacing the first signature result in the signature data packet with a second signature result;
specifically, the server analyzes the temporary signed PDF contract file to obtain signing information, a PDF contract file to be signed and a signature data packet, and obtains a first signature data packet according to a preset position identifier; analyzing the signature data packet according to a preset data packet format to obtain a first signature result; the first signature result is replaced with a second signature result.
Step 218, the server composes a second signature data packet according to the device certificate, the preset signature algorithm and the second signature result in the certificate information;
specifically, the server combines the device certificate, the preset signature algorithm and the second signature result in the certificate information into a second signature data packet according to a preset data packet format;
for example, the generated second signature packet is: < a f70d010702a08203f 03f 300d 06092a f70d 701a d 7a c06092 c06082a811ccf b e 130a626f 6d2e636f6d f 4b434f4d4d 130b456 b b d 170d a170d 818a c e e 0c0c454 c301a b0c 6d e 0c0d534d 6d b0c 0c e636f6d 572 d 6d 24 b0c 9f 6d 8648ce3d 811ccf c5562f 0be56bfef38d 2d50b63f8ae d546d31b efdca83bd485a72f848d0558b f374c68d 300 a d0f 0300d 130d 101f 300b 300f 20 b 35 f 8b 35d 8b 35 f35 d 35a 35d 35 c 35d 35a 35d 35 c 35d 35a 35d 35a 35 f35 d 35a 35d 35 c 35d 35a b 35d 35a b 35d 35 f35 d 35a 35d 8d 35 c 35d 35a 35d 35a 35d 8d 35a 35d 35 c 35d 35a b 35d 35a 35d 35a 35d 8d 35a 35d 35a 35d 8d 35a 35d 35a 35 c 35d 8d 35a 35d 35a 35 c 35d 35a 35d 8d 35a 35 c 35d 35a 35d 35
Step 219, the server combines the signing information, the second signature data packet and the temporary signing PDF contract file together to generate and store a signed PDF contract file;
in the present embodiment, the signed PDF contract file is as shown in fig. 5.
Step 220, the server sends the signing success information to the client, and the process is finished.
EXAMPLE III
The present embodiment provides an electronic contract signing system, as shown in fig. 6, including: the system comprises a client, a server and an intelligent key device;
the client specifically comprises:
a first receiving module 301, configured to receive a trigger signal for starting to sign a contract;
the first sending module 302 is configured to send a contract identifier to the server after the first receiving module 301 receives the trigger signal for starting to sign the contract;
the first receiving module 301 is further configured to receive data to be signed and a contract identifier sent by a server;
the first sending module 302 is further configured to send the data to be signed, received by the first receiving module 301, to the smart key device connected to the first sending module 302;
the first receiving module 301 is further configured to receive a second signature result sent by the smart key device;
the first sending module 302 is further configured to send the second signature result and the contract identifier to the server;
the server specifically comprises:
a second receiving module 401, configured to receive a contract identifier sent by a client;
a first obtaining module 402, configured to obtain a PDF contract file to be signed according to the contract identifier received by the second receiving module 401;
a first generating module 403, configured to generate a first signature result;
a second generating module 404, configured to generate a temporary signed PDF contract file according to the first signature result generated by the first generating module 403 and the to-be-signed PDF contract file, and store the temporary signed PDF contract file in correspondence to the contract identifier;
a third generating module 405, configured to generate data to be signed;
a second sending module 406, configured to send, to the client, the data to be signed generated by the third generating module 405 and the contract identifier received by the second receiving module 401;
the second receiving module 401 is further configured to receive a second signature result and a contract identifier sent by the client;
the first obtaining module 402 is further configured to obtain a temporarily signed PDF contract file according to the contract identifier received by the second receiving module 401;
the analysis module 407 is configured to analyze the temporary signed PDF contract file acquired by the first acquisition module 402;
a replacing module 408, configured to replace the first signature result in the temporary signed PDF contract file generated by the first generating module 403 with the second signature result received by the second receiving module 401;
a first group packet module 409, configured to form a second signature data packet according to the obtained device certificate, a preset signature algorithm, and a second signature result received by the second receiving module 401;
the fourth generating module 410 is configured to combine the obtained signing information with the temporary signing PDF contract file obtained by the first obtaining module 402 and the second signature data package composed of the first group package module 409 to generate a signed PDF contract file.
Preferably, the first obtaining module 402 is further configured to obtain the signing information according to the contract identifier received by the second receiving module 401.
Preferably, the first sending module 302 is further configured to send the user information to the server;
the second receiving module 401 is further configured to receive user information sent by the client;
the first obtaining module 402 is further configured to obtain the device certificate according to the user information received by the second receiving module 401.
The server further comprises: a first judgment module;
a first determining module, configured to verify whether the user identity is legal according to the user information received by the second receiving module 401;
the first obtaining module 402 is specifically configured to, when the first determining module determines that the user identity is legal, obtain a PDF contract file to be signed according to the contract identifier;
the second sending module 406 is further configured to return an error message to the client when the first determining module determines that the user identity is illegal.
Preferably, the second generating module 404 is specifically configured to form a first signature data packet according to the acquired device certificate, the preset signature algorithm, and the first signature result, and combine the acquired signing information, the to-be-signed PDF contract file, and the first signature data packet together to generate a temporary signing PDF contract file, and store the temporary signing PDF contract file corresponding to the contract identifier.
Preferably, the parsing module 407 is specifically configured to parse the temporary signing PDF contract file to obtain signing information, the to-be-signed PDF contract file, and the first signature data packet.
Preferably, the replacing module 408 is specifically configured to obtain the first signature data packet according to the preset location identifier, analyze the first signature data packet according to the preset data packet format, obtain the first signature result, and replace the first signature result with the second signature result.
Preferably, the first group packet module 409 is specifically configured to combine the device certificate, the preset signature algorithm, and the second signature result into a second signature packet according to a preset packet format.
Preferably, the client further comprises a first verification module;
the first receiving module 301 is further configured to obtain a personal identification number input by a user;
the first verification module is used for verifying the personal identification number input by the user and received by the first receiving module 301, and the verification fails and the error reporting is finished;
the first sending module 302 is specifically configured to send the data to be signed, received by the first receiving module 301, to the smart key device connected to the first sending module when the verification module succeeds in verification.
Preferably, the third generating module 405 is specifically configured to perform a digest operation on the PDF contract file to be signed and the obtained signing information, which are obtained by the first obtaining module 402, to generate data to be signed.
Preferably, the smart key device includes: a third receiving module and a second obtaining module;
the first sending module 302 is further configured to send user information to the server;
the second receiving module 401 is further configured to receive user information sent by the client;
the first obtaining module 402 is further configured to obtain a certificate serial number according to the user information received by the second receiving module 401;
a second sending module 406, configured to send the certificate serial number to the client;
a first sending module 302, configured to send a certificate serial number to the smart key device connected to the first sending module;
the third receiving module is used for receiving the certificate serial number sent by the client;
and the second acquisition module acquires the corresponding equipment certificate according to the certificate serial number received by the third receiving module.
Preferably, the smart key device further comprises: a fifth generation module and a third sending module;
the fifth generation module is used for calling a preset signature function, signing the data to be signed by using a preset signature algorithm and an equipment certificate and generating a second signature result;
and the third sending module is used for sending the second signature result generated by the fifth generating module to the client.
Preferably, the first generating module 403 is specifically configured to invoke a preset signature function to sign the data to be signed generated by the server by using a preset signature algorithm and the acquired device certificate, so as to generate a first signature result.
Preferably, the first generating module 403 is specifically configured to generate a random number and use the random number as the first signature result; the length of the random number is matched with a public key algorithm in the acquired device certificate.
Preferably, the client further comprises: a third obtaining module;
the first receiving module 301 is further configured to receive user information input by a user;
the first sending module 302 is further configured to send the user information received by the first receiving module 301 to the server;
the third acquisition module is used for establishing connection with the intelligent secret key equipment and acquiring certificate information from the intelligent secret key equipment connected with the third acquisition module;
the first sending module 302 is further configured to send the certificate information obtained by the third obtaining module to the server;
the server further comprises: a binding module;
the second receiving module 401 is further configured to receive credential information sent by the client;
and a binding module, configured to bind and store the certificate information received by the second receiving module 401 and the user information.
Preferably, the server further comprises: a second authentication module;
the second verification module is used for verifying whether the user information is legal or not;
the third obtaining module is specifically used for establishing connection with the intelligent secret key equipment and obtaining certificate information from the intelligent secret key equipment connected with the third obtaining module when the second verifying module verifies that the user information is legal;
the second sending module 406 is further configured to return an error message to the client when the second verifying module verifies that the user information is legal.
The above description is only for the specific embodiments of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art can easily conceive of the changes or substitutions within the technical scope of the present invention, and the changes or substitutions should be covered within the scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (24)
1. A method of signing an electronic contract, comprising:
step S1, the client receives the trigger signal for starting to sign the contract and sends a contract identifier to the server; the server acquires a PDF contract file to be signed according to the contract identifier;
step S2, the server generates a first signature result, generates a temporary signed PDF contract file according to the first signature result and the PDF contract file to be signed, and stores the temporary signed PDF contract file corresponding to the contract identifier;
step S3, the server generates data to be signed and sends the data to be signed and the contract identifier to the client; the client sends the data to be signed to the intelligent secret key equipment connected with the client; receiving a second signature result transmitted by the intelligent key equipment, and transmitting the second signature result and the contract identifier to a server;
step S4, the server acquires a temporary signing PDF contract file according to the contract identifier, analyzes the temporary signing PDF contract file, and replaces a first signature result in the temporary signing PDF contract file with the second signature result;
step S5, the server forms a second signature data packet according to the acquired equipment certificate, a preset signature algorithm and the second signature result, and combines the acquired signing information, the temporary signing PDF contract file and the second signature data packet to generate a signed PDF contract file, and signing is completed;
the server generates a first signature result, specifically: the server calls a preset signature function to sign the data to be signed generated by the server by using a preset signature algorithm and the acquired equipment certificate to generate a first signature result; or the like, or, alternatively,
the server generates a first signature result, specifically: the server generates a random number and takes the random number as a first signature result; the length of the random number is matched with a public key algorithm in the acquired equipment certificate;
the generating a temporary signed PDF contract file according to the first signature result and the PDF contract file to be signed and storing the temporary signed PDF contract file corresponding to the contract identifier specifically comprises the following steps: the server forms a first signature data packet according to the acquired equipment certificate, a preset signature algorithm and the first signature result, and synthesizes the acquired signing information, the PDF contract file to be signed and the first signature data packet together to generate a temporary signing PDF contract file which is stored corresponding to the contract identifier;
the signature data packet is specifically a data packet in a PKCS7 format including an equipment certificate, a preset signature algorithm, and a signature result.
2. The method according to claim 1, wherein step S1 further comprises: the client sends user information to the server;
the step S5 is preceded by: and the server acquires the equipment certificate according to the user information.
3. The method according to claim 2, wherein the step S1 further comprises: the server verifies whether the user identity is legal or not according to the user information, and if so, a PDF contract file to be signed is obtained according to the contract identifier; otherwise, returning error information to the client.
4. The method according to claim 1, wherein the parsing the temporarily signed PDF contract file specifically comprises: and the server analyzes the temporary signing PDF contract file to obtain signing information, a PDF contract file to be signed and a first signature data packet.
5. The method according to claim 4, wherein the replacing the first signature result in the temporarily signed PDF contract file with the second signature result specifically comprises: the server acquires a first signature data packet according to a preset position identifier, analyzes the first signature data packet according to a preset data packet format, acquires a first signature result, and replaces the first signature result with a second signature result.
6. The method according to claim 1, wherein the server forms a second signature data packet according to the acquired device certificate, a preset signature algorithm, and the second signature result, and specifically includes: and the server combines the equipment certificate, the preset signature algorithm and the second signature result into a second signature data packet according to a preset data packet format.
7. The method according to claim 1, wherein the step S3 further comprises: the client acquires and verifies the personal identification number input by the user, and if the verification is successful, the client sends the data to be signed to the intelligent key device connected with the client; if the verification fails, the error is reported to be over.
8. The method according to claim 1, wherein the server generating the data to be signed is specifically: and the server performs summary operation on the PDF contract file to be signed and the acquired signing information to generate data to be signed.
9. The method according to claim 1, wherein step S1 further comprises: the client sends user information to the server;
the step S3 is preceded by: the server acquires a certificate serial number according to the user information;
the step S3 further includes: the server sends the certificate serial number to a client; the client side sends the certificate serial number to the intelligent secret key equipment; and the intelligent key equipment acquires a corresponding equipment certificate according to the certificate serial number.
10. The method according to claim 9, wherein the step S3 further comprises: and the intelligent key equipment calls a preset signature function to sign the data to be signed by using a preset signature algorithm and the equipment certificate, generates a second signature result and sends the second signature result to the client.
11. The method according to claim 1, wherein the step S1 is preceded by:
step T1, the client receives the user information input by the user and sends the user information to the server;
step T2, the client establishes connection with the intelligent key device, acquires the certificate information from the intelligent key device connected with the client, and sends the certificate information to the server;
and step T3, the server binds and stores the certificate information and the user information.
12. The method of claim 11, further comprising, before the step T2 and after the step T1: the server verifies whether the user information is legal, if so, the step T2 is executed; otherwise, returning error information to the client and ending.
13. An electronic contract signing system, comprising: the system comprises a client, a server and an intelligent key device;
the client specifically includes:
the first receiving module is used for receiving a trigger signal for starting to sign the contract;
the first sending module is used for sending a contract identifier to the server after the first receiving module receives a trigger signal for starting to sign a contract;
the first receiving module is further configured to receive the data to be signed and the contract identifier sent by the server;
the first sending module is further configured to send the data to be signed, received by the first receiving module, to the smart key device connected to the first sending module;
the first receiving module is further configured to receive a second signature result transmitted by the smart key device;
the first sending module is further configured to send the second signature result and the contract identifier to the server;
the server specifically includes:
the second receiving module is used for receiving the contract identification sent by the client;
the first acquisition module is used for acquiring a PDF contract file to be signed according to the contract identifier received by the second receiving module;
the first generation module is used for generating a first signature result;
the second generation module is used for generating a temporary signing PDF contract file according to the first signature result generated by the first generation module and the PDF contract file to be signed and storing the temporary signing PDF contract file corresponding to the contract identifier;
the third generation module is used for generating data to be signed;
the second sending module is used for sending the data to be signed generated by the third generating module and the contract identifier received by the second receiving module to the client;
the second receiving module is further configured to receive the second signature result and the contract identifier sent by the client;
the first obtaining module is further configured to obtain a temporarily signed PDF contract file according to the contract identifier received by the second receiving module;
the analysis module is used for analyzing the temporary signed PDF contract file acquired by the first acquisition module;
a replacing module, configured to replace the first signature result in the temporary signing PDF contract file generated by the first generating module with the second signature result received by the second receiving module;
the first group of packet modules are used for forming a second signature data packet according to the acquired equipment certificate, a preset signature algorithm and the second signature result received by the second receiving module;
the fourth generation module is used for combining the acquired signing information with the temporary signing PDF contract file acquired by the first acquisition module and a second signing data packet composed of the first group of packet modules to generate a signed PDF contract file;
the first generation module is specifically used for calling a preset signature function, applying a preset signature algorithm and the obtained equipment certificate to sign the data to be signed generated by the server, and generating a first signature result; or the like, or, alternatively,
the first generation module is specifically configured to generate a random number and use the random number as a first signature result; the length of the random number is matched with a public key algorithm in the acquired equipment certificate;
the second generation module is specifically configured to form a first signature data packet according to the acquired device certificate, a preset signature algorithm and the first signature result, combine the acquired signing information with the to-be-signed PDF contract file and the first signature data packet, generate a temporary signing PDF contract file, and store the temporary signing PDF contract file corresponding to the contract identifier;
the signature data packet is specifically a data packet in a PKCS7 format including an equipment certificate, a preset signature algorithm, and a signature result.
14. The system of claim 13, wherein the first sending module is further configured to send user information to the server;
the second receiving module is further configured to receive user information sent by the client;
the first obtaining module is further configured to obtain an apparatus certificate according to the user information received by the second receiving module.
15. The system of claim 14, wherein the server further comprises: a first judgment module;
the first judging module is used for verifying whether the user identity is legal or not according to the user information received by the second receiving module;
the first obtaining module is specifically configured to obtain the PDF contract file to be signed according to the contract identifier when the first determining module determines that the user identity is legal;
and the second sending module is further used for returning error information to the client when the first judging module judges that the user identity is illegal.
16. The system according to claim 13, wherein the parsing module is specifically configured to parse the temporarily signed PDF contract file to obtain signing information, the PDF contract file to be signed, and the first signature data packet.
17. The system according to claim 16, wherein the replacement module is specifically configured to obtain a first signature packet according to a preset location identifier, parse the first signature packet according to a preset packet format, obtain a first signature result, and replace the first signature result with a second signature result.
18. The system according to claim 13, wherein the first group of packet modules is specifically configured to combine the device certificate, the predetermined signature algorithm, and the second signature result into a second signature packet according to a predetermined packet format.
19. The system of claim 13, further comprising a first authentication module in the client;
the first receiving module is also used for acquiring the personal identification number input by the user;
the first verification module is used for verifying the personal identification number received by the first receiving module and input by the user, and the verification fails and the error reporting is finished;
the first sending module is specifically configured to send the data to be signed, received by the first receiving module, to the smart key device connected to the first sending module when the first verification module succeeds in verification.
20. The system according to claim 13, wherein the third generating module is specifically configured to perform a digest operation on the PDF contract file to be signed and the obtained signing information, which are obtained by the first obtaining module, to generate data to be signed.
21. The system of claim 13, wherein the smart key device comprises: a third receiving module and a second obtaining module;
the first sending module is further configured to send user information to the server;
the second receiving module is further configured to receive user information sent by the client;
the first obtaining module is further configured to obtain a certificate serial number according to the user information received by the second receiving module;
the second sending module is further configured to send the certificate serial number to the client;
the first sending module is further configured to send the certificate serial number to the smart key device connected to the first sending module;
the third receiving module is used for receiving the certificate serial number sent by the client;
and the second acquisition module acquires the corresponding equipment certificate according to the certificate serial number received by the third receiving module.
22. The system of claim 21, wherein the smart key device further comprises: a fifth generation module and a third sending module;
the fifth generation module is used for calling a preset signature function, applying a preset signature algorithm and the equipment certificate to sign the data to be signed, and generating a second signature result;
the third sending module is configured to send the second signature result generated by the fifth generating module to the client.
23. The system of claim 13, wherein the client further comprises: a third obtaining module;
the first receiving module is further used for receiving user information input by a user;
the first sending module is further configured to send the user information received by the first receiving module to a server;
the third acquisition module is used for establishing connection with the intelligent secret key equipment and acquiring certificate information from the intelligent secret key equipment connected with the third acquisition module;
the first sending module is further configured to send the certificate information obtained by the third obtaining module to a server;
the server further comprises: a binding module;
the second receiving module is further configured to receive credential information sent by the client;
and the binding module is used for binding and storing the certificate information received by the second receiving module and the user information.
24. The system of claim 23, wherein the server further comprises: a second authentication module;
the second verification module is used for verifying whether the user information is legal or not;
the third obtaining module is specifically configured to establish connection with the smart key device and obtain certificate information from the smart key device connected to the third obtaining module when the second verifying module verifies that the user information is legal;
and the second sending module is further used for returning error information to the client when the second verification module verifies that the user information is legal.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810547761.7A CN108764848B (en) | 2018-05-31 | 2018-05-31 | Electronic contract signing method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810547761.7A CN108764848B (en) | 2018-05-31 | 2018-05-31 | Electronic contract signing method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108764848A CN108764848A (en) | 2018-11-06 |
| CN108764848B true CN108764848B (en) | 2021-03-16 |
Family
ID=64000917
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810547761.7A Active CN108764848B (en) | 2018-05-31 | 2018-05-31 | Electronic contract signing method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108764848B (en) |
Families Citing this family (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109784873B (en) * | 2019-02-28 | 2021-07-02 | 飞天诚信科技股份有限公司 | Working method and device of electronic contract signing platform |
| CN110245220B (en) * | 2019-05-05 | 2022-03-11 | 深圳法大大网络科技有限公司 | Electronic document signing method, electronic document signing device, electronic document server and storage medium |
| CN110263581A (en) * | 2019-05-08 | 2019-09-20 | 深圳法大大网络科技有限公司 | Contract signs method, system, terminal device and storage medium |
| CN110750964A (en) * | 2019-09-18 | 2020-02-04 | 平安科技(深圳)有限公司 | Information adding method and related device |
| CN110830449B (en) * | 2019-10-17 | 2020-11-13 | 北京三快在线科技有限公司 | File processing method and device, electronic equipment and readable storage medium |
| CN111523135B (en) * | 2020-07-06 | 2020-10-13 | 飞天诚信科技股份有限公司 | PDF file electronic signature method and device |
| CN111832080A (en) * | 2020-07-21 | 2020-10-27 | 杭州天谷信息科技有限公司 | Method for making electronic contract useless |
| CN112994900B (en) * | 2021-04-25 | 2021-09-17 | 北京信安世纪科技股份有限公司 | File countersigning method, device, client, server and storage medium |
| CN114820147B (en) * | 2022-06-02 | 2022-11-25 | 杭州天谷信息科技有限公司 | Signing method and signing system for staged electronic contract |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20100085633A (en) * | 2009-01-21 | 2010-07-29 | (주)듀플렉스 | System and method for digitalizing paper document with time stamp |
| CN103338185A (en) * | 2013-05-31 | 2013-10-02 | 飞天诚信科技股份有限公司 | File sharing method and file sharing system |
| CN104243451A (en) * | 2014-08-19 | 2014-12-24 | 天地融科技股份有限公司 | Information interaction method and system and smart key equipment |
| CN106067849A (en) * | 2016-05-24 | 2016-11-02 | 飞天诚信科技股份有限公司 | A kind of digital signature method being applicable to PDF document and device |
| CN106656504A (en) * | 2016-10-27 | 2017-05-10 | 飞天诚信科技股份有限公司 | Signature device and system and working method thereof |
| CN108092779A (en) * | 2018-01-05 | 2018-05-29 | 北京汇通金财信息科技有限公司 | A kind of method and device for realizing electronic signature |
-
2018
- 2018-05-31 CN CN201810547761.7A patent/CN108764848B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20100085633A (en) * | 2009-01-21 | 2010-07-29 | (주)듀플렉스 | System and method for digitalizing paper document with time stamp |
| CN103338185A (en) * | 2013-05-31 | 2013-10-02 | 飞天诚信科技股份有限公司 | File sharing method and file sharing system |
| CN104243451A (en) * | 2014-08-19 | 2014-12-24 | 天地融科技股份有限公司 | Information interaction method and system and smart key equipment |
| CN106067849A (en) * | 2016-05-24 | 2016-11-02 | 飞天诚信科技股份有限公司 | A kind of digital signature method being applicable to PDF document and device |
| CN106656504A (en) * | 2016-10-27 | 2017-05-10 | 飞天诚信科技股份有限公司 | Signature device and system and working method thereof |
| CN108092779A (en) * | 2018-01-05 | 2018-05-29 | 北京汇通金财信息科技有限公司 | A kind of method and device for realizing electronic signature |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108764848A (en) | 2018-11-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108764848B (en) | Electronic contract signing method and system | |
| KR101883156B1 (en) | System and method for authentication, user terminal, authentication server and service server for executing the same | |
| CN106067849B (en) | Digital signature method and device suitable for PDF document | |
| CN109741056B (en) | Method and device for uploading electronic certificate | |
| CN110098932B (en) | Electronic document signing method based on safe electronic notarization technology | |
| CN110930147B (en) | Offline payment method and device, electronic equipment and computer-readable storage medium | |
| CN112165382B (en) | Software authorization method and device, authorization server side and terminal equipment | |
| CN108880832B (en) | Block chain real-name authentication method and system | |
| CN106779698B (en) | Method, system and device for distributing payment mark and safely paying payment mark | |
| CN106529938A (en) | Virtual card issuing method, device and terminal | |
| CN108833431B (en) | Password resetting method, device, equipment and storage medium | |
| CN105591745A (en) | Method and system for performing identity authentication on user using third-party application | |
| CN113411184B (en) | Integrated management terminal device and integrated management method | |
| CN111506632A (en) | Data processing method and device | |
| CN108876375B (en) | Block chain real name participation method and system | |
| CN106778290A (en) | A kind of application software verification method and system based on wechat platform | |
| CN108900311A (en) | A kind of no certificate bluetooth key endorsement method and system | |
| CN111464555B (en) | File signing confirmation method based on client screen video, service server, authentication server and client | |
| CN107203576A (en) | Information synchronization method and device | |
| CN104753940B (en) | A kind of method to issue invoice, common invoice self-service terminal and server | |
| CN110071907A (en) | The generation method and device of two dimensional code | |
| CN108243005B (en) | Application registration verification method, participant management system, device and medium | |
| CN106559433B (en) | Method and system for fixing electronic evidence and user identity by using digital certificate | |
| CN109658041B (en) | File generation device, file generation method, file generation device, and readable storage medium | |
| CN110766388B (en) | Virtual card generation method and system and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |