CN111737715A - Decentralized electronic contract online signing method and system - Google Patents
Decentralized electronic contract online signing method and system Download PDFInfo
- Publication number
- CN111737715A CN111737715A CN202010575543.1A CN202010575543A CN111737715A CN 111737715 A CN111737715 A CN 111737715A CN 202010575543 A CN202010575543 A CN 202010575543A CN 111737715 A CN111737715 A CN 111737715A
- Authority
- CN
- China
- Prior art keywords
- contract
- data
- signing
- digital signature
- preset
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 60
- 238000003860 storage Methods 0.000 claims abstract description 32
- 238000012797 qualification Methods 0.000 claims abstract description 13
- 238000012795 verification Methods 0.000 claims description 14
- 230000008520 organization Effects 0.000 claims description 3
- 238000004519 manufacturing process Methods 0.000 abstract description 4
- 230000006870 function Effects 0.000 description 8
- 238000005516 engineering process Methods 0.000 description 5
- 230000009286 beneficial effect Effects 0.000 description 3
- 230000008901 benefit Effects 0.000 description 3
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 230000000694 effects Effects 0.000 description 3
- 230000008569 process Effects 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 238000005034 decoration Methods 0.000 description 2
- 239000003999 initiator Substances 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 235000010627 Phaseolus vulgaris Nutrition 0.000 description 1
- 244000046052 Phaseolus vulgaris Species 0.000 description 1
- 238000013475 authorization Methods 0.000 description 1
- 238000012217 deletion Methods 0.000 description 1
- 230000037430 deletion Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000009826 distribution Methods 0.000 description 1
- 230000002427 irreversible effect Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 239000002699 waste material Substances 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/27—Replication, distribution or synchronisation of data between databases or within a distributed database system; Distributed database system architectures therefor
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Systems or methods specially adapted for specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
- G06Q50/18—Legal services; Handling legal documents
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/083—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/30—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
- H04L9/3066—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy involving algebraic varieties, e.g. elliptic or hyper-elliptic curves
Abstract
The invention discloses a decentralized electronic contract online signing method and a decentralized electronic contract online signing system, aiming at finding a more effective implementation scheme for signing an electronic contract online, and the method comprises the following steps: selecting local contract data, wherein the contract data comprises document class data and non-document class data; acquiring a third party digital certificate with electronic authentication qualification, and performing one-time digital signature on the contract data by using the third party digital certificate and a preset offeror private key; the contract data subjected to the primary digital signature uses a preset contracting party public key as an encrypted password, and uses a preset random password as encrypted content to carry out AES encryption; and uploading the encrypted file class data to the IPFS, and uploading the storage path and the non-file class data returned by the IPFS together by calling the intelligent contract. The invention realizes contract signing based on the block chain, not only improves the production efficiency, but also avoids the risk of data leakage to a certain extent.
Description
Technical Field
The invention relates to the field of block chains, in particular to a decentralized electronic contract online signing method and system.
Background
With the development of internet technology, a signing mode of a paper contract commonly used by a business subject gradually adopts online signing, but an existing electronic contract signing platform mostly adopts a Software-as-a-Service (SaaS) platform based on centralization, and the SaaS platform for the third-party electronic contract solves the problems of time and labor waste in signing of the paper contract to a certain extent, but also has the risk of data leakage and even deletion because related data is on the third party.
Disclosure of Invention
In order to find a more effective implementation scheme for signing the electronic contract online, the invention provides a decentralized method and a decentralized system for signing the electronic contract online.
The first scheme is as follows:
there is provided a method of decentralized online signing of electronic contracts, the method of decentralized online signing of electronic contracts comprising the steps of:
selecting local contract data, wherein the contract data comprises document class data and non-document class data;
acquiring a third party digital certificate with electronic authentication qualification, and performing one-time digital signature on the contract data by using the third party digital certificate and a preset offeror private key;
the contract data subjected to the primary digital signature uses a preset contracting party public key as an encrypted password, and uses a preset random password as encrypted content to carry out AES encryption;
uploading the encrypted file class data to the IPFS, and uploading the storage path returned by the IPFS and the non-file class data together by calling an intelligent contract.
Preferably, before the local contract data is selected, the method includes the following steps:
generating signature information corresponding to a user based on an elliptic curve algorithm locally, wherein the signature information comprises an address, a public key and a private key;
and acquiring the identity information of the user, verifying the identity information of the user, encrypting the verified identity information of the user and the signature information by an elliptic curve algorithm, and storing the encrypted identity information and signature information in a block chain.
Preferably, before the contract data digitally signed once is encrypted by using a preset offeror public key and is AES encrypted by using a preset random password as the encrypted content, the method includes the following steps:
generating a random 32-bit password using a hash function;
and converting the random 32-bit password into a scaled character string to obtain a preset random password.
Preferably, the non-document type data is a title, a contract number, contracting party identification information, and contracting party identification information.
Scheme II:
there is provided a method of decentralized online signing of electronic contracts, the method of decentralized online signing of electronic contracts comprising the steps of:
acquiring a primary digital signature, a storage path and an encrypted preset random password of the contract data from a chain based on the intelligent contract address of the contract data, and calling a preset contracting party private key to perform decryption verification;
decrypting the encrypted preset random password by using the preset contracting party private key to obtain preset random password decryption contract data;
calling a third party digital certificate with electronic authentication qualification, and performing secondary digital signature on contract data confirmed by a contracting party by using the third party digital certificate and a preset contracting party private key;
and uploading the contract data subjected to the secondary digital signature to the IPFS for storage so as to update the contract state to be signed.
Preferably, before the intelligent contract address based on the contract data obtains the primary digital signature, the storage path and the encrypted preset random password of the contract data from the chain, the method includes the following steps:
generating signature information corresponding to a user based on an elliptic curve algorithm locally, wherein the signature information comprises an address, a public key and a private key;
and acquiring the identity information of the user, verifying the identity information of the user, encrypting the verified identity information of the user and the signature information by an elliptic curve algorithm, and storing the encrypted identity information and signature information in a block chain.
Preferably, the identity information of the user includes one or more of a natural person name, an identification number, a corporate unified social credit code, an organization code, and the like.
The third scheme is as follows:
there is provided a method of decentralized online signing of electronic contracts, the method of decentralized online signing of electronic contracts comprising the steps of:
calling an intelligent contract to verify the signing identity on the contract data which is subjected to the primary digital signature and the secondary digital signature on the chain;
and after the signing identity verification on the contract data of the primary digital signature and the secondary digital signature passes, updating the contract state into signing completion through an intelligent contract.
Preferably, the invoking of the intelligent contract to verify the signing identity on the chain of primary and secondary digitally signed contract data comprises the steps of:
and acquiring an address in the signature information corresponding to the user generated based on an elliptic curve algorithm, and verifying the signing identity on contract data of the uplink subjected to the primary digital signature and the secondary digital signature based on the address.
And the scheme is as follows:
there is provided a system for decentralized online signing of electronic contracts comprising an offeror end, an offeree end and a block link end, the offeror end and the offeree end being two nodes of the block link end, wherein,
the method comprises the steps that an offeror side selects local contract data, wherein the contract data comprise file data and non-file data; acquiring a third party digital certificate with electronic authentication qualification, and performing one-time digital signature on the contract data by using the third party digital certificate and a preset offeror private key; the contract data subjected to the primary digital signature uses a preset contracting party public key as an encrypted password, and uses a preset random password as encrypted content to carry out AES encryption; uploading encrypted file class data to an IPFS (Internet protocol file system) and uploading a storage path returned by the IPFS and the non-file class data together by calling an intelligent contract;
the contracting party end obtains a primary digital signature, a storage path and an encrypted preset random password of the contract data from a chain based on the intelligent contract address of the contract data and calls a preset contracting party private key to carry out decryption verification; decrypting the encrypted preset random password by using the preset contracting party private key to obtain preset random password decryption contract data; calling a third party digital certificate with electronic authentication qualification, and performing secondary digital signature on contract data confirmed by a contracting party by using the third party digital certificate and a preset contracting party private key; uploading the contract data subjected to the secondary digital signature to an IPFS (Internet protocol File System) for storage so as to update the contract state to be signed;
the block chain end calls an intelligent contract to verify the signing identity on the contract data of the uplink subjected to the primary digital signature and the secondary digital signature; and after the signing identity verification on the contract data of the primary digital signature and the secondary digital signature passes, updating the contract state into signing completion through an intelligent contract.
Compared with the prior art, the decentralized electronic contract online signing method and system have the following beneficial effects:
the invention provides a decentralized online electronic contract signing method and system, which are based on a block chain technology, and are used for encrypting and decrypting data on local user terminal equipment, signing a contract, chaining signed signature information, encrypting the contract data and storing the encrypted contract data in a distributed storage system, so that the production efficiency is improved, the risk of data leakage is avoided to a certain extent, a user masters own identity information to avoid the risk of identity misuse, and meanwhile, the user can freely participate in continuous storage activity of data, and the data and signed information cannot be tampered and deleted.
Additional aspects and advantages of the invention will be set forth in part in the description which follows, and in part will be obvious from the description, or may be learned by practice of the invention.
Drawings
The foregoing and/or additional aspects and advantages of the present invention will become apparent and readily appreciated from the following description of the embodiments, taken in conjunction with the accompanying drawings of which:
FIG. 1 is a schematic flow chart illustrating a method for signing an electronic contract online without centralization according to an embodiment of the present invention;
FIG. 2 is a schematic flow chart illustrating a method for on-line signing of a decentralized electronic contract according to another embodiment of the present invention;
fig. 3 is a flowchart illustrating a method for signing an electronic contract online with decentralized centers according to another embodiment of the present invention.
Detailed Description
In order to make the technical solutions of the present invention better understood, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention.
In some of the flows described in the present specification and claims and in the above figures, a number of operations are included that occur in a particular order, but it should be clearly understood that these operations may be performed out of order or in parallel with the order in which they occur, the order of the operations being 202, 204, etc. merely to distinguish between various operations, the order of which does not itself represent any order of performance. Additionally, the flows may include more or fewer operations, and the operations may be performed sequentially or in parallel. It should be noted that, the descriptions of "first", "second", etc. in this document are used for distinguishing different messages, devices, modules, etc., and do not represent a sequential order, nor limit the types of "first" and "second" to be different.
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Referring to fig. 1, a decentralized method for online signing of an electronic contract according to an embodiment of the present invention is mainly applied to a non-centralized processing system for implementing one-stop processing of contract creation, signing, replenishment, delivery, closing, and the like and block chain storage based on an intelligent contract, and includes a local end and a block chain, where the local end is divided into an offerer end and an offeree end according to an application scenario of the contract; the block chain is preferably a coin-less licensed public chain, such as the grassland chain of Shanghai Qian chain technologies, Inc., and is not limited in this respect.
For further understanding of the embodiment of the present invention, fig. 1 shows a flowchart of a method for on-line signing of a decentralized electronic contract according to an embodiment of the present invention, and it should be understood that the flowchart of fig. 1 is an execution subject of an offerer, as shown in fig. 1, an embodiment of the present invention is a method for on-line signing of a decentralized electronic contract, which includes steps S101-S107, specifically as follows:
step S101: local contract data is selected, wherein the contract data includes document class data and non-document class data.
Exemplarily, local contract data is selected as a party to be offered or an initiator selects a PDF contract file, an attachment, a signature picture and the like of the contract data at a local terminal of the initiator, wherein the file data corresponds to the PDF contract file, the attachment, the signature picture and the like; the non-document data corresponds to a title, a contract number, contracting party identification information, and the like.
In some embodiments, prior to selecting local contract data, the method includes the steps of:
generating signature information corresponding to a user based on an elliptic curve algorithm locally, wherein the signature information comprises an address, a public key and a private key;
and acquiring the identity information of the user, verifying the identity information of the user, encrypting the verified identity information of the user and the signature information by an elliptic curve algorithm, and storing the encrypted identity information and signature information in the block chain.
Specifically, the identity information of the user generally includes one or more of a natural person name, an identification number, a corporate unified social credit code, an organization code, and the like, and thus, the authentication of the identity information of the user can be achieved by calling a third party authority.
An Elliptic Curve algorithm (ECC for short) is an asymmetric encryption algorithm implemented based on an Elliptic Curve mathematical theory. Compared with the RSA algorithm of the asymmetric encryption algorithm, the ECC has the advantage that a shorter key can be used to achieve a security equivalent to or higher than that of RSA.
Step S103: and acquiring a third party digital certificate with electronic authentication qualification, and performing one-time digital signature on the contract data by using the third party digital certificate and a preset offeror private key.
It should be noted that the preset offeror private key is the private key generated by the elliptic curve algorithm.
Step S105: the contract data subjected to the primary digital signature uses a preset contracting party public key as an encrypted password, and uses a preset random password as encrypted content to carry out AES encryption; the preset offeror private key is the public key generated by the elliptic curve algorithm.
Advanced Encryption Standard (AES) is the most common symmetric Encryption algorithm. The specific encryption principle is as follows:
assuming the AES encryption function is E, C is E (K, P), where P is plaintext, K is a secret key, and C is ciphertext. That is, the encryption function E outputs the ciphertext C by inputting the plaintext P and the key K as parameters of the encryption function.
In some embodiments, before performing AES encryption on the contract data digitally signed once using the preset offeror public key as the encrypted password and the preset random password as the encrypted content, the method includes the following steps:
generating a random 32-bit password using a hash function;
and converting the random 32-bit password into a scaled character string to obtain a preset random password.
Step S107: uploading the encrypted file class data to the IPFS, and uploading the storage path returned by the IPFS and the non-file class data together by calling an intelligent contract.
The InterPlanetary File System (abbreviated IPFS), originally designed by Juan bean, is a network transport protocol aimed at creating persistent and distributed storage and sharing of files. It is a content addressable peer-to-peer hypermedia distribution protocol. The nodes in the IPFS network will constitute a distributed file system. It is an open source code project that was developed by Protocol Labs with the help of open source communities since 2014.
An intelligent contract is a computer protocol intended to propagate, validate or execute contracts in an informational manner. Smart contracts allow trusted transactions to be conducted without third parties, which transactions are traceable and irreversible. The intelligent contract concept was first proposed in 1995 by nicak sabo (Nick Szabo). His definition is as follows: an intelligent contract is a set of commitments defined in digital form, including agreements on which contract participants can enforce the commitments. It is important to note that the digital form, meaning that the contracts have to be written in computer readable code, that the rights and obligations established by the intelligent contracts are carried out by a computer or network of computers as long as the parties agree upon the agreement.
Further elaboration is as follows:
(1) agreement is reached
When a participant of an intelligent contract reaches an agreement? The answer depends on the particular smart contract implementation. In general, contracts are discovered when a party is engaged in the execution of the contract by installing the contract on a contract hosting platform.
(2) Contract execution
The actual meaning of "performing" also depends on the implementation. Generally, execution means active implementation by technical means.
(3) Computer readable code
In essence, an intelligent contract is neither contract nor intelligent in nature, but it is just running the code on the blockchain.
The goal of smart contracts is to provide a secure method over traditional contracts and to reduce other transaction costs associated with the contracts.
Referring to fig. 2, the same inventive concept as the method for on-line signing of decentralized electronic contract according to the embodiment of the present invention, another embodiment of the present invention provides a method for on-line signing of decentralized electronic contract, it should be understood that the flowchart of fig. 2 is implemented by the accepting party side, as shown in fig. 2, and the method for on-line signing of decentralized electronic contract according to the embodiment of the present invention includes steps S202-S208, which are specifically as follows:
step S202: and acquiring a primary digital signature, a storage path and an encrypted preset random password of the contract data from the chain based on the intelligent contract address of the contract data, and calling a preset contracting party private key for decryption and verification.
As described above, before acquiring the primary digital signature, the storage path, and the encrypted preset random password of the contract data from the chain based on the intelligent contract address of the contract data, the method includes the following steps:
generating signature information corresponding to a user based on an elliptic curve algorithm locally, wherein the signature information comprises an address, a public key and a private key;
the method comprises the steps of obtaining identity information of a user, verifying the identity information of the user, encrypting the identity information and signature information of the user passing verification through an elliptic curve algorithm, and storing the encrypted identity information and signature information in a block chain.
It is noted that, although the contracting party is the accepting party, the nature of the contracting party is also the local terminal implementation.
Step S204: and decrypting the encrypted preset random password by using the preset contracting party private key to obtain preset random password decryption contract data.
Specifically, the AES specific decryption method is as follows:
let AES decrypt function be D, then P ═ D (K, C), where C is ciphertext, K is secret key, and P is plaintext. That is, the ciphertext C and the key K are input as parameters of the decryption function, and the decryption function outputs the plaintext P.
Step S206: calling a third party digital certificate with electronic authentication qualification, and performing secondary digital signature on contract data confirmed by a contracting party by using the third party digital certificate and a preset contracting party private key;
step S208: and uploading the contract data subjected to the secondary digital signature to the IPFS for storage so as to update the contract state to be signed.
Here, the relationship of the public key, the private key, and the digital signature is specifically explained, in which the public key and the private key are paired and they decrypt each other; encrypting a public key and decrypting a private key; private key digital signature, public key verification.
Referring to fig. 3, the same inventive concept as the method for on-line signing of decentralized electronic contract according to the embodiment of the present invention, and yet another embodiment of the present invention provides a method for on-line signing of decentralized electronic contract, it should be understood that the flowchart of fig. 2 is implemented by taking block chain ends as the main implementation bodies, as shown in fig. 3, the method for on-line signing of decentralized electronic contract according to the embodiment of the present invention includes steps S301-S303, which are specifically as follows:
step S301: calling an intelligent contract to verify the signing identity on the contract data which is subjected to the primary digital signature and the secondary digital signature on the chain;
step S303: and after the signing identity verification on the contract data of the primary digital signature and the secondary digital signature passes, updating the contract state into signing completion through an intelligent contract.
In some embodiments, invoking the intelligent contract to verify the identity of the endorsement on the chain's primary and secondary digitally signed contract data comprises the steps of:
and acquiring an address in the signature information corresponding to the user generated based on an elliptic curve algorithm, and verifying the signing identity on contract data of the chain subjected to the primary digital signature and the secondary digital signature based on the address.
It should be particularly noted that, in the implementation process, the contract status may be set according to a scenario, such as a lot, an authorization, and the like, and the embodiment of the present invention is not limited herein.
Compared with the prior art, the method for signing the decentralized electronic contract on line provided by the embodiment of the invention has the following beneficial effects:
the method for signing the electronic contract on line without centralization in the embodiment of the invention realizes data encryption and decryption on the local terminal equipment of the user based on the blockchain technology, the contract is signed, the signed signature information is linked, the contract data is encrypted and then stored in a distributed storage system, not only is the production efficiency improved, but also the risk of data leakage is avoided to a certain extent, the user controls the own identity information to avoid the risk of identity impersonation and embezzlement, meanwhile, the user can freely participate in the continuous storage activity of the data, and the data and the signed information can not be tampered and deleted.
The same inventive concept as the method for on-line signing of decentralized electronic contract according to the embodiment of the present invention, the embodiment of the present invention further provides a system for on-line signing of decentralized electronic contract, which comprises an offerer end, an offeree end and a block link end, the offerer end and the offeree end being two nodes of the block link end, wherein,
the method comprises the steps that an offeror side selects local contract data, wherein the contract data comprise file data and non-file data; acquiring a third party digital certificate with electronic authentication qualification, and performing one-time digital signature on contract data by using the third party digital certificate and a preset offeror private key; the contract data subjected to the primary digital signature uses a preset contracting party public key as an encrypted password, and uses a preset random password as encrypted content to carry out AES encryption; uploading the encrypted file class data to the IPFS, and uploading the storage path and the non-file class data returned by the IPFS together by calling an intelligent contract;
the contracting party end obtains a primary digital signature, a storage path and an encrypted preset random password of the contract data from a chain based on the intelligent contract address of the contract data and calls a preset contracting party private key to carry out decryption verification; decrypting the encrypted preset random password by using a preset contracting party private key to obtain preset random password decryption contract data; calling a third party digital certificate with electronic authentication qualification, and performing secondary digital signature on contract data confirmed by a contracting party by using the third party digital certificate and a preset contracting party private key; uploading the contract data subjected to the secondary digital signature to an IPFS (Internet protocol File System) for storage so as to update the contract state to be signed;
the block chain end calls an intelligent contract to verify the signing identity on the contract data of the uplink subjected to the primary digital signature and the secondary digital signature; and after the signing identity verification on the contract data of the primary digital signature and the secondary digital signature passes, updating the contract state into signing completion through the intelligent contract.
It should be noted that the detailed explanation of the system for online signing of decentralized electronic contract according to the embodiment of the present invention is consistent with the above three embodiments, and will not be described herein again.
It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the above-described systems, apparatuses and units may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
Compared with the prior art, the decentralized electronic contract online signing system has the following beneficial effects:
the decentralized electronic contract online signing system provided by the embodiment of the invention realizes data encryption and decryption on user local terminal equipment based on a blockchain technology, contracts and signs, signed signature information is linked, contract data is encrypted and then stored in a distributed storage system, so that the production efficiency is improved, the risk of data leakage is avoided to a certain extent, a user controls own identity information to avoid the risk of identity misuse, and meanwhile, the user can freely participate in continuous storage activity of data, and the data and signed information cannot be tampered and deleted.
In the several embodiments provided in the present application, it should be understood that the disclosed system, apparatus and method may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the units is only one logical division, and other divisions may be realized in practice, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
Those skilled in the art will appreciate that all or part of the steps in the methods of the above embodiments may be implemented by associated hardware instructed by a program, which may be stored in a computer-readable storage medium, and the storage medium may include: a Read Only Memory (ROM), a Random Access Memory (RAM), a magnetic or optical disk, or the like.
The foregoing is only a partial embodiment of the present invention, and it should be noted that, for those skilled in the art, various modifications and decorations can be made without departing from the principle of the present invention, and these modifications and decorations should also be regarded as the protection scope of the present invention.
Claims (10)
1. A method for on-line signing of a decentralized electronic contract, characterized in that the method for on-line signing of a decentralized electronic contract comprises the steps of:
selecting local contract data, wherein the contract data comprises document class data and non-document class data;
acquiring a third party digital certificate with electronic authentication qualification, and performing one-time digital signature on the contract data by using the third party digital certificate and a preset offeror private key;
the contract data subjected to the primary digital signature uses a preset contracting party public key as an encrypted password, and uses a preset random password as encrypted content to carry out AES encryption;
uploading the encrypted file class data to the IPFS, and uploading the storage path returned by the IPFS and the non-file class data together by calling an intelligent contract.
2. The method for the online signing of a decentralized electronic contract according to claim 1, wherein said selecting local contract data is preceded by the steps of:
generating signature information corresponding to a user based on an elliptic curve algorithm locally, wherein the signature information comprises an address, a public key and a private key;
and acquiring the identity information of the user, verifying the identity information of the user, encrypting the verified identity information of the user and the signature information by an elliptic curve algorithm, and storing the encrypted identity information and signature information in a block chain.
3. The method for signing a decentralized electronic contract online according to claim 1, wherein said method, before performing AES encryption using a preset random cipher as the encrypted content and using a preset public key of the offeror as the cipher for said contract data that has been digitally signed once, comprises the steps of:
generating a random 32-bit password using a hash function;
and converting the random 32-bit password into a scaled character string to obtain a preset random password.
4. The method of claim 1, wherein the non-document type data is a title, a contract number, identity identification information of an offering party, and identity identification information of an offering party.
5. A method for on-line signing of a decentralized electronic contract, characterized in that the method for on-line signing of a decentralized electronic contract comprises the steps of:
acquiring a primary digital signature, a storage path and an encrypted preset random password of the contract data from a chain based on the intelligent contract address of the contract data, and calling a preset contracting party private key to perform decryption verification;
decrypting the encrypted preset random password by using the preset contracting party private key to obtain preset random password decryption contract data;
calling a third party digital certificate with electronic authentication qualification, and performing secondary digital signature on contract data confirmed by a contracting party by using the third party digital certificate and a preset contracting party private key;
and uploading the contract data subjected to the secondary digital signature to the IPFS for storage so as to update the contract state to be signed.
6. The method for on-line signing of decentralized electronic contract according to claim 5, characterized in that said intelligent contract address based on contract data is before acquiring the primary digital signature, storage path and encrypted preset random password of contract data from the chain, comprising the following steps:
generating signature information corresponding to a user based on an elliptic curve algorithm locally, wherein the signature information comprises an address, a public key and a private key;
and acquiring the identity information of the user, verifying the identity information of the user, encrypting the verified identity information of the user and the signature information by an elliptic curve algorithm, and storing the encrypted identity information and signature information in a block chain.
7. The method for on-line signing of decentralized electronic contract according to claim 6, characterized in that said user's identity information comprises one or more of natural person name, identification number, legal unified social credit code, organization code, etc.
8. A method for on-line signing of a decentralized electronic contract, characterized in that the method for on-line signing of a decentralized electronic contract comprises the steps of:
calling an intelligent contract to verify the signing identity on the contract data which is subjected to the primary digital signature and the secondary digital signature on the chain;
and after the signing identity verification on the contract data of the primary digital signature and the secondary digital signature passes, updating the contract state into signing completion through an intelligent contract.
9. The method for decentralized online signing of electronic contracts according to claim 8, wherein said invoking intelligent contract to verify the signing identity on the chain's primary and secondary digitally signed contract data comprises the steps of:
and acquiring an address in the signature information corresponding to the user generated based on an elliptic curve algorithm, and verifying the signing identity on contract data of the uplink subjected to the primary digital signature and the secondary digital signature based on the address.
10. A system for on-line signing of a decentralized electronic contract, characterized in that the system for on-line signing of a decentralized electronic contract comprises an offeror end, an offeree end and a block-link end, the offeror end and the offeree end being two nodes of the block-link end, wherein,
the method comprises the steps that an offeror side selects local contract data, wherein the contract data comprise file data and non-file data; acquiring a third party digital certificate with electronic authentication qualification, and performing one-time digital signature on the contract data by using the third party digital certificate and a preset offeror private key; the contract data subjected to the primary digital signature uses a preset contracting party public key as an encrypted password, and uses a preset random password as encrypted content to carry out AES encryption; uploading encrypted file class data to an IPFS (Internet protocol file system) and uploading a storage path returned by the IPFS and the non-file class data together by calling an intelligent contract;
the contracting party end obtains a primary digital signature, a storage path and an encrypted preset random password of the contract data from a chain based on the intelligent contract address of the contract data and calls a preset contracting party private key to carry out decryption verification; decrypting the encrypted preset random password by using the preset contracting party private key to obtain preset random password decryption contract data; calling a third party digital certificate with electronic authentication qualification, and performing secondary digital signature on contract data confirmed by a contracting party by using the third party digital certificate and a preset contracting party private key; uploading the contract data subjected to the secondary digital signature to an IPFS (Internet protocol File System) for storage so as to update the contract state to be signed;
the block chain end calls an intelligent contract to verify the signing identity on the contract data of the uplink subjected to the primary digital signature and the secondary digital signature; and after the signing identity verification on the contract data of the primary digital signature and the secondary digital signature passes, updating the contract state into signing completion through an intelligent contract.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010575543.1A CN111737715A (en) | 2020-06-22 | 2020-06-22 | Decentralized electronic contract online signing method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010575543.1A CN111737715A (en) | 2020-06-22 | 2020-06-22 | Decentralized electronic contract online signing method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111737715A true CN111737715A (en) | 2020-10-02 |
Family
ID=72652037
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010575543.1A Pending CN111737715A (en) | 2020-06-22 | 2020-06-22 | Decentralized electronic contract online signing method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111737715A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112307125A (en) * | 2020-11-10 | 2021-02-02 | 湖南众享账本网络技术有限公司 | Signing method and device for realizing encrypted electronic contract based on block chain intelligent contract |
| CN112347452A (en) * | 2020-11-10 | 2021-02-09 | 上海祺鲲信息科技有限公司 | Electronic contract signing method, electronic equipment and storage medium |
| CN112615719A (en) * | 2020-12-15 | 2021-04-06 | 平安消费金融有限公司 | Decentralized online contract signing method, device, equipment and medium |
| CN112669176A (en) * | 2020-12-11 | 2021-04-16 | 浙江数秦科技有限公司 | Electronic contract signing method based on intelligent contract |
| CN113673988A (en) * | 2021-08-02 | 2021-11-19 | 苏州优炫智能科技有限公司 | Electronic contract online transaction method and transaction system |
| CN114553441A (en) * | 2022-04-22 | 2022-05-27 | 杭州天谷信息科技有限公司 | Electronic contract signing method and system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109978543A (en) * | 2019-04-03 | 2019-07-05 | 浙江鲸腾网络科技有限公司 | A kind of method, apparatus, electronic equipment and the storage medium of contract signature |
| CN110602084A (en) * | 2019-09-10 | 2019-12-20 | 上海黔易数据科技有限公司 | Decentralized contract signing and checking method |
| CN110674523A (en) * | 2019-09-30 | 2020-01-10 | 民生科技有限责任公司 | Method for confirming electronic contract signer by combining digital signature with handwritten signature |
| CN111224788A (en) * | 2020-04-21 | 2020-06-02 | 国网区块链科技(北京)有限公司 | Electronic contract management method, device and system based on block chain |
-
2020
- 2020-06-22 CN CN202010575543.1A patent/CN111737715A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109978543A (en) * | 2019-04-03 | 2019-07-05 | 浙江鲸腾网络科技有限公司 | A kind of method, apparatus, electronic equipment and the storage medium of contract signature |
| CN110602084A (en) * | 2019-09-10 | 2019-12-20 | 上海黔易数据科技有限公司 | Decentralized contract signing and checking method |
| CN110674523A (en) * | 2019-09-30 | 2020-01-10 | 民生科技有限责任公司 | Method for confirming electronic contract signer by combining digital signature with handwritten signature |
| CN111224788A (en) * | 2020-04-21 | 2020-06-02 | 国网区块链科技(北京)有限公司 | Electronic contract management method, device and system based on block chain |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112307125A (en) * | 2020-11-10 | 2021-02-02 | 湖南众享账本网络技术有限公司 | Signing method and device for realizing encrypted electronic contract based on block chain intelligent contract |
| CN112347452A (en) * | 2020-11-10 | 2021-02-09 | 上海祺鲲信息科技有限公司 | Electronic contract signing method, electronic equipment and storage medium |
| CN112347452B (en) * | 2020-11-10 | 2023-08-04 | 上海祺鲲信息科技有限公司 | Electronic contract signing method, electronic equipment and storage medium |
| CN112669176A (en) * | 2020-12-11 | 2021-04-16 | 浙江数秦科技有限公司 | Electronic contract signing method based on intelligent contract |
| CN112669176B (en) * | 2020-12-11 | 2024-04-12 | 浙江数秦科技有限公司 | Electronic contract signing method based on intelligent contract |
| CN112615719A (en) * | 2020-12-15 | 2021-04-06 | 平安消费金融有限公司 | Decentralized online contract signing method, device, equipment and medium |
| CN112615719B (en) * | 2020-12-15 | 2023-07-25 | 平安消费金融有限公司 | Off-centering on-line contract signing method, device, equipment and medium |
| CN113673988A (en) * | 2021-08-02 | 2021-11-19 | 苏州优炫智能科技有限公司 | Electronic contract online transaction method and transaction system |
| CN114553441A (en) * | 2022-04-22 | 2022-05-27 | 杭州天谷信息科技有限公司 | Electronic contract signing method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11936774B2 (en) | Determining a common secret for the secure exchange of information and hierarchical, deterministic cryptographic keys | |
| JP6869374B2 (en) | Decentralized key management for trusted execution environments | |
| CN110933108B (en) | Data processing method and device based on block chain network, electronic equipment and storage medium | |
| CN109756485B (en) | Electronic contract signing method, electronic contract signing device, computer equipment and storage medium | |
| CN108418680B (en) | Block chain key recovery method and medium based on secure multi-party computing technology | |
| CN108885741B (en) | Tokenization method and system for realizing exchange on block chain | |
| CN111737715A (en) | Decentralized electronic contract online signing method and system | |
| CN111563261A (en) | Privacy protection multi-party computing method and system based on trusted execution environment | |
| CN109670801B (en) | Digital encryption money transfer method for block chain | |
| CN110061845A (en) | Block chain data ciphering method, device, computer equipment and storage medium | |
| WO2018203186A1 (en) | Secure dynamic threshold signature scheme employing trusted hardware | |
| CN111431713A (en) | Private key storage method and device and related equipment | |
| CN109547218B (en) | Alliance link node key distribution and backup system for improving BIP (building information processing) protocol | |
| WO2020253108A1 (en) | Information hiding method, apparatus, device, and storage medium | |
| CN114036539A (en) | Safety auditable Internet of things data sharing system and method based on block chain | |
| CN111815321A (en) | Transaction proposal processing method, device, system, storage medium and electronic device | |
| CN115345618B (en) | Block chain transaction verification method and system based on mixed quantum digital signature | |
| CN113328997A (en) | Alliance chain cross-chain system and method | |
| CN108777673B (en) | Bidirectional identity authentication method in block chain | |
| CN114760071B (en) | Zero-knowledge proof based cross-domain digital certificate management method, system and medium | |
| JP2010231404A (en) | System, method, and program for managing secret information | |
| CN112231769A (en) | Block chain-based numerical verification method and device, computer equipment and medium | |
| Jayaraman et al. | Decentralized certificate authorities | |
| CN113328854B (en) | Service processing method and system based on block chain | |
| CN110851804B (en) | Alliance chain identity authentication mode based on electronic contract |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |