CN109617697B - Asynchronous signature method for network node - Google Patents
Asynchronous signature method for network node Download PDFInfo
- Publication number
- CN109617697B CN109617697B CN201910008636.3A CN201910008636A CN109617697B CN 109617697 B CN109617697 B CN 109617697B CN 201910008636 A CN201910008636 A CN 201910008636A CN 109617697 B CN109617697 B CN 109617697B
- Authority
- CN
- China
- Prior art keywords
- signature
- network node
- data
- machine
- sub
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention discloses a network node asynchronous signature method, firstly, a network node sends data needing signature to a signature machine, the signature machine generates a universal unique identification code and returns the universal unique identification code to the network node, when the signature machine finishes signature, a signature notification queue informs the network node, the network node acquires the data finishing signature according to the universal unique identification code, meanwhile, the network node internally adopts a callback mode and processes all sub-services of the signature data through the signature callback queue, if the notification of a message queue is not received within a specified time, the network node sends a query request to the signature machine, and if the signature machine fails to process, the data needing signature can be re-signed. The invention informs the network node whether the signature is completed or not by adopting a signature notification mode, can effectively reduce the access operation of the network node to the signature machine, does not discard the data failed in processing, but signs the data failed in signature again, and ensures the integrity of the data.
Description
Technical Field
The invention relates to the technical field of computers, in particular to a network node asynchronous signature method.
Background
Referring to fig. 1, a method for signing a network node in the prior art is provided, in which a network node submits data to a signing machine through an adapter for signing, the signing machine returns a Universally Unique Identifier (UUID) to the network node, the network node obtains a signature according to the received universally unique identifier, at this time, if the obtained signature is in an empty state, retry is performed, the data sent to the signing machine is discarded after the retry is performed for a plurality of times, the network node continues to wait for all signatures of all subdata segments to be confirmed after obtaining the signature, and if all signatures are ready, the data is sent to a sending queue, and the sending queue sends out the data. However, the network node signature method has the following problems: 1. if the signature is not completed within a certain number of times, the data sent to the signature machine by the adapter is discarded, so that the data cannot enter a sending queue, and the data is lost; 2. the retry mechanism may result in a large amount of resources being occupied in the network node, reducing the efficiency of data transmission.
Disclosure of Invention
The technical problem solved by the invention is that: aiming at the defects of the prior art, the asynchronous signature method of the network node is provided, which avoids data loss, ensures data integrity and avoids a large amount of occupied resources.
The technical problem to be solved by the invention can be realized by adopting the following technical scheme:
a network node asynchronous signature method comprises the following steps:
step S1, the network node sends the data to be signed to the signature machine for signature;
step S2, the signature machine signs the data which needs to be signed and is sent by the network node, generates a universal unique identification code and returns the identification code to the network node;
step S2, the network node locally stores the universal unique identification code returned by the signature machine, and simultaneously stores the service corresponding to the data needing signature and the sub-service thereof;
step S3, when the signature machine finishes signing, the signature machine generates a signature finishing notice and sends the notice to a signature notice queue;
step S4, the signature notification queue sends the signature completion notification to the network node to notify the network node that the signature operation is completed, and sends the signature completion notification to the signature callback queue;
step S5, the network node inquires the service and the sub-service corresponding to the data needing signature according to the local stored universal unique identification code;
step S6, judging whether the inquired data needing signature has sub-service; if yes, the process proceeds to step S7, and if no, the process proceeds to step S10;
step S7, the signature callback queue verifies the signature of the sub-service corresponding to the data needing signature;
step S8, judging whether the signature callback queue is overtime, if yes, entering step S9, if not, entering step S10;
step S9, the network node sends a request for acquiring sub-service signature data to the signature machine according to the universal unique identification code, and judges whether the sub-service signature data returned by the signature machine is successfully received; if the reception is successful, the process proceeds to step S10, and if the reception is unsuccessful, the process returns to step S1;
step S10, the sub-services corresponding to the data needing signature are completely signed, and then step S11 is carried out;
and step S11, the network node sends the signed data to a sending queue for sending.
Due to the adoption of the technical scheme, the invention has the beneficial effects that: the invention informs the network node whether the signature is finished or not by adopting a signature informing mode, can effectively reduce the access operation of the network node to the signature machine, avoids the problem that a large number of resources in the network node are occupied, does not discard the data failed in processing, but signs the data failed in signature again, avoids data loss and ensures the integrity of the data.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1 is a flowchart of a conventional network node signing method.
Fig. 2 is a flow chart of the asynchronous signature method of the network node of the present invention.
Detailed Description
In order to make the technical means, the creation characteristics, the achievement purposes and the effects of the invention easy to understand, the invention is further explained below by combining the specific drawings.
Referring to fig. 2, a network node asynchronous signature method is shown, which includes the following steps:
step S1, the network node sends the data to be signed to the signature machine for signature through the adapter;
step S2, the signature machine signs the data which need to be signed and is sent by the network node, generates a universal unique identification code and returns the identification code to the network node;
step S2, the network node locally stores the universal unique identification code returned by the signature machine, and simultaneously stores the service corresponding to the data needing signature and the sub-service thereof;
step S3, when the signature machine finishes signature, the signature machine generates a signature finish notice and sends the notice to the signature notice queue;
step S4, the signature notification queue sends a signature completion notification to the network node on one hand to inform the network node that the signature operation is completed, and on the other hand sends the signature completion notification to the signature callback queue;
step S5, the network node inquires the service and sub-service corresponding to the data needing signature according to the local stored universal unique identification code;
step S6, judging whether the inquired data needing signature has sub-service; if yes, the process proceeds to step S7, and if no, the process proceeds to step S10;
step S7, the signature callback queue verifies the signature of the sub-service corresponding to the data needing signature;
step S8, judging whether the signature callback queue is overtime, if yes, entering step S9, if not, entering step S10;
step S9, the network node sends a request for acquiring the sub-service signature data to the signature machine according to the universal unique identification code, and judges whether the sub-service signature data returned by the signature machine is successfully received; if the reception is successful, the process proceeds to step S10, and if the reception is unsuccessful, the process returns to step S1;
step S10, the sub-services corresponding to the data needing signature are completely signed, and then step S11 is carried out;
and step S11, the network node sends the signed data to a sending queue for sending.
The foregoing shows and describes the general principles and broad features of the present invention and advantages thereof. It will be understood by those skilled in the art that the present invention is not limited to the embodiments described above, which are described in the specification and illustrated only to illustrate the principle of the present invention, but that various changes and modifications may be made therein without departing from the spirit and scope of the present invention, which fall within the scope of the invention as claimed. The scope of the invention is defined by the appended claims and equivalents thereof.
Claims (1)
1. A network node asynchronous signature method is characterized by comprising the following steps:
step S1, the network node sends the data to be signed to the signature machine for signature;
step S2, the signature machine signs the data which needs to be signed and is sent by the network node, generates a universal unique identification code and returns the identification code to the network node;
step S2, the network node locally stores the universal unique identification code returned by the signature machine, and simultaneously stores the service corresponding to the data needing signature and the sub-service thereof;
step S3, when the signature machine finishes signing, the signature machine generates a signature finishing notice and sends the notice to a signature notice queue;
step S4, the signature notification queue sends the signature completion notification to the network node to notify the network node that the signature operation is completed, and sends the signature completion notification to the signature callback queue;
step S5, the network node inquires the service and the sub-service corresponding to the data needing signature according to the local stored universal unique identification code;
step S6, judging whether the inquired data needing signature has sub-service; if yes, the process proceeds to step S7, and if no, the process proceeds to step S10;
step S7, the signature callback queue verifies the signature of the sub-service corresponding to the data needing signature;
step S8, judging whether the signature callback queue is overtime, if yes, entering step S9, if not, entering step S10;
step S9, the network node sends a request for acquiring sub-service signature data to the signature machine according to the universal unique identification code, and judges whether the sub-service signature data returned by the signature machine is successfully received; if the reception is successful, the process proceeds to step S10, and if the reception is unsuccessful, the process returns to step S1;
step S10, the sub-services corresponding to the data needing signature are completely signed, and then step S11 is carried out;
and step S11, the network node sends the signed data to a sending queue for sending.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910008636.3A CN109617697B (en) | 2019-01-04 | 2019-01-04 | Asynchronous signature method for network node |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910008636.3A CN109617697B (en) | 2019-01-04 | 2019-01-04 | Asynchronous signature method for network node |
Publications (2)
Publication Number | Publication Date |
---|---|
CN109617697A CN109617697A (en) | 2019-04-12 |
CN109617697B true CN109617697B (en) | 2021-05-14 |
Family
ID=66015716
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910008636.3A Active CN109617697B (en) | 2019-01-04 | 2019-01-04 | Asynchronous signature method for network node |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109617697B (en) |
Family Cites Families (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1805339B (en) * | 2005-12-31 | 2010-05-12 | 北京握奇数据系统有限公司 | Digital signature supporting personal trusted device and its method for implementing signature |
US7987375B2 (en) * | 2006-11-20 | 2011-07-26 | Canon Kabushiki Kaisha | Communication apparatus, control method thereof and computer readable medium |
CN101296136B (en) * | 2007-04-29 | 2011-05-11 | 华为技术有限公司 | Method and system for information distribution of server information, and management device |
CN101483522B (en) * | 2008-01-09 | 2012-04-04 | 华为技术有限公司 | Method, system and device for controlling trustable network access |
US9838205B2 (en) * | 2014-09-16 | 2017-12-05 | Keypasco Ab | Network authentication method for secure electronic transactions |
CN106506170B (en) * | 2016-12-15 | 2019-08-02 | 北京三未信安科技发展有限公司 | A kind of distributed signature method and system based on RSA |
-
2019
- 2019-01-04 CN CN201910008636.3A patent/CN109617697B/en active Active
Also Published As
Publication number | Publication date |
---|---|
CN109617697A (en) | 2019-04-12 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CA3158476C (en) | Method for processing response timeout, and systems for server and client to process response timeout | |
CN111045794B (en) | Distributed transaction processing method, device, system, computer equipment and storage medium | |
CN114138500B (en) | Resource scheduling system and method | |
CN111626858A (en) | Processing method and device for transaction, electronic equipment and computer readable medium | |
CN111090532A (en) | Application service calling method and device, electronic equipment and computer storage medium | |
CN103677988A (en) | Multi-process communication method and system for software system | |
CN109617697B (en) | Asynchronous signature method for network node | |
CN112822300B (en) | RDMA (remote direct memory Access) -based data transmission method and device and electronic equipment | |
CN108011926B (en) | Message sending method, message processing method, server and system | |
CN112715041B (en) | Method and apparatus for identifying device, computer-readable storage medium, and program | |
WO2016074572A1 (en) | Service data processing method, device and system | |
CN115131112A (en) | Request information response method, storage medium and electronic equipment | |
CN110008010B (en) | System calling method, device, equipment and readable storage medium | |
CN112770277B (en) | Forwarding number verification method and device, mobile terminal and computing equipment | |
CN111416889B (en) | Communication method and system adapted through GATT and exception handling | |
CN109905243B (en) | Method and server for processing digital certificate updating request | |
CN111309500A (en) | Service processing method, device, equipment and storage medium | |
CN111767580A (en) | Block chain-based real object handover method and device | |
CN116010126B (en) | Service aggregation method, device and system | |
CN115150031B (en) | Distributed system message response method and device based on distributed message | |
CN111176799A (en) | Service scheduling method, equipment and storage medium | |
CN115334466B (en) | Message sending method and device, electronic equipment and storage medium | |
CN112822238B (en) | Main node switching method and computer readable storage medium | |
CN109857410B (en) | Cloud water knife processing method and system of message queue | |
CN113453378B (en) | Method and device for establishing S1 application protocol link |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |