CN112307495A - Electronic certificate sharing application model and method based on certificate two-dimensional code - Google Patents
Electronic certificate sharing application model and method based on certificate two-dimensional code Download PDFInfo
- Publication number
- CN112307495A CN112307495A CN202011151687.0A CN202011151687A CN112307495A CN 112307495 A CN112307495 A CN 112307495A CN 202011151687 A CN202011151687 A CN 202011151687A CN 112307495 A CN112307495 A CN 112307495A
- Authority
- CN
- China
- Prior art keywords
- certificate
- license
- dimensional code
- electronic
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/36—User authentication by graphic or iconic representation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
Abstract
The invention discloses an electronic license sharing application model and method based on a license two-dimensional code. Through the electronic license sharing application model and method based on the certificate-highlighting two-dimensional code, an electronic license sharing application system based on the national license cross-domain sharing standard can be established, convenient sharing of the electronic license is supported, tracing of the electronic license sharing application condition is supported, and support is provided for wide and deep use of the electronic license.
Description
Technical Field
The invention relates to the technical field of two-dimension code information, and particularly provides an electronic license sharing application model and method based on a certificate two-dimension code.
Background
The two-dimensional bar code records data symbol information by adopting a specific black-white geometric figure, and a user can automatically read the information by an image input device or a scanning device. The two-dimensional code has the characteristics of large information capacity, wide coding range, strong fault-tolerant capability, high decoding reliability, good confidentiality, good anti-counterfeiting performance and the like, and provides convenience for information transmission and the like.
The electronic certificate shares the release of national standard, and puts higher requirements on the capability of the electronic certificate system for providing service to the outside. The establishment of the data exchange and sharing interface specification of the national government affair service platform provides guidance for the data exchange of the electronic license system among different levels. The establishment and the perfection of the electronic certificate sharing related standards provide support for the popularization and the deepening of the application of the electronic certificates.
Because the electronic license may relate to business secrets or individual privacy, in the electronic license sharing application, the electronic license information should not be directly transmitted and exposed, and necessary technical means should be provided, so that the application condition of the electronic license can be limited and traced.
Disclosure of Invention
Due to the fact that part of the electronic certificate may relate to business privacy or personal privacy, necessary technical means should be provided in the electronic certificate sharing application, and the application situation of the electronic certificate can be limited and traced.
The establishment of the electronic license identification standard provides a standard for the unique identification of the electronic license, specifies the length of the electronic license identification, the range of characters and symbols which can be contained and the like, and provides a foundation for generating the two-dimensional code based on the electronic license identification.
The invention aims at the problems, provides an electronic license sharing application model and method based on a license two-dimensional code, combines the requirements of the relevant national standard specification of the electronic license, assembles information such as an electronic license identifier and the like, encrypts the information by adopting a state-secret algorithm to generate the license two-dimensional code, and a user can identify the two-dimensional code through specific APP or software to obtain license information and the like, so that the sharing application of the electronic license is facilitated, and the tracing support of the electronic license application is provided.
In order to achieve the purpose, the invention provides the following technical scheme:
an electronic certificate sharing application method based on a certificate two-dimensional code is characterized in that an electronic certificate identifier and a timestamp are encrypted to generate the certificate two-dimensional code, and the certificate two-dimensional code is analyzed and processed through a sharing application model to realize the sharing application of the electronic certificate.
The electronic license identifier comprises the following components: the electronic license comprises an electronic license heel code, a license type code, a license issuing organization code, a serial number, a version number and a check bit.
The timestamp adopts the number of milliseconds after 1 month and 1 day in 1970, and the format is as follows: 00:00:00 GMT.
The electronic certificate mark is encrypted, so that the random use of the certificate-illuminating two-dimensional code is avoided; the time stamp is sealed in the content of the two-dimensional code, so that the timeliness of the two-dimensional code is guaranteed.
An electronic certificate sharing application model based on a certificate two-dimensional code is composed of: electronic certificate illumination certificate system, encryption and decryption center, client, wherein:
the electronic certificate illuminating system is responsible for providing services such as cross-domain retrieval, acquisition, downloading, verification and the like of electronic certificate information, interacts with the encryption and decryption center, and generates and analyzes a certificate illuminating two-dimensional code;
the encryption and decryption center is responsible for generating and managing a secret key and encrypting and decrypting text contents;
the client provides user login and real-name authentication, and calls an interface of the certificate system to acquire certificate information of the user to generate a certificate two-dimensional code;
in the model, the content of the certificate-illuminating two-dimensional code is an encrypted character string, the content of the two-dimensional code is not interpretable for a system without a secret key, the certificate-illuminating two-dimensional code information is generated and analyzed, and the user operation authority limit and the application condition of the certificate-illuminating two-dimensional code can be traced through the processing of a client, an electronic certificate-illuminating system and an encryption and decryption center.
The encryption and decryption of the two-dimensional code for the certificate are carried out in the encryption and decryption center, and the external sharing of the secret key is not involved, so that the content of the two-dimensional code is encrypted by adopting a symmetric encryption algorithm. Based on the national cipher industry standard, the SM4 algorithm is selected in the model.
The contents of the certificate-highlighting two-dimensional code are encrypted twice, and the purpose of the encryption twice is as follows:
the first encryption aims at the electronic license identifier and aims at avoiding plaintext transmission, storage and application of the electronic license identifier;
and the second encryption is used for encrypting the electronic license identifier and the timestamp after the first encryption, so that the content can be obtained only by scanning and analyzing the two-dimensional code through specific application with a secret key, and the random use of the certificate-illuminating two-dimensional code is avoided.
The interface of the electronic certificate system setting comprises:
acquiring a certificate-highlighting two-dimensional code interface;
the license association service interface acquires license list information according to the license holding main body code and returns information such as an encrypted identifier, a license number and an issuing mechanism of the license;
the inquiry service interface acquires the license information according to the content of the certificate-illuminating two-dimensional code and supports cross-domain inquiry;
and the license copy downloading service interface acquires a downloading address of the license attachment according to the content of the certificate-illuminating two-dimensional code and supports cross-domain query.
The interface that encryption and decryption center set up includes:
an information encryption interface and an information decryption interface.
The generation process of the evidence two-dimensional code is as follows:
1) the client receives an instruction of inquiring the electronic certificate information of the user A and calls a certificate correlation interface of the electronic certificate lighting certificate system;
2) the electronic certificate illuminating certificate system inquires the certificate information of the user A, encrypts the certificate identification through the encryption and decryption center and returns the encrypted certificate identification to the client;
3) the client stores the license information of the user A and displays the license information to the user A;
4) the client calls a certificate two-dimensional code obtaining interface of the electronic certificate illumination certificate system again according to the electronic certificate to be shared selected by the user A, and transmits an encrypted certificate identification;
5) the electronic certificate illumination certificate system calls an interface of the encryption and decryption center to encrypt the 'certificate identification and timestamp once encrypted' again to generate a two-dimensional code picture, and the two-dimensional code picture is returned to the client.
The user a may present the generated two-dimensional code.
The resolution process of the evidence two-dimensional code is as follows:
1) the client scans the two-dimensional code presented by the user A according to the operation types of the license inquiry/download and the like selected by the user B;
2) the two-dimensional code content (encrypted character string) read by the client calls a relevant interface of the electronic certificate illumination certificate system (inquiry service (according to the certificate two-dimensional code content), certificate copy downloading service (according to the certificate two-dimensional code content)), and the like, and transmits the two-dimensional code content and the basic information of the user B;
3) the electronic certificate illuminating certificate system verifies and records the information of the user B, and calls a decryption interface of an encryption and decryption center to obtain a certificate identification and a time stamp which are encrypted once;
4) the electronic certificate illuminating system judges whether the timestamp is in an effective time range, if the timestamp is effective, the decryption interface of the encryption and decryption center is called again to obtain an original electronic certificate identifier; if the time stamp is invalid, returning error information;
5) the electronic certificate illuminating system acquires detailed information of the certificate or accessory information and the like by using the electronic certificate identification and returns the detailed information to the client.
User B may view license information/attachments, etc. through the client.
Compared with the prior art, the electronic license sharing application model and method based on the certificate two-dimensional code have the following outstanding beneficial effects:
the invention realizes the sharing application of the license by generating the two-dimensional code of the license. Because the content of the two-dimensional code for the certificate is an encrypted character string, the content of the two-dimensional code cannot be read for a system without a secret key, and the generation and analysis of the information of the two-dimensional code for the certificate must be processed by a client, an electronic certificate illumination certificate system and an encryption and decryption center, so that the limitation of the operation authority of a user can be supported, and the application condition of the two-dimensional code for the certificate can be traced.
Through the electronic license sharing application model and method based on the certificate-highlighting two-dimensional code, an electronic license sharing application system based on the national license cross-domain sharing standard can be established, convenient sharing of the electronic license is supported, tracing of the electronic license sharing application condition is supported, and support is provided for wide and deep use of the electronic license.
Drawings
FIG. 1 is a schematic diagram of the application process of the two-dimensional code of the present invention;
fig. 2 is a return value two-dimensional code.
Detailed Description
The present invention will be described in further detail with reference to the accompanying drawings and examples.
An electronic certificate sharing application model based on a certificate two-dimensional code is composed of: electronic certificate illumination certificate system, encryption and decryption center, client, wherein:
1) electronic certificate illuminating system
Based on the national standard specification, the method provides services such as cross-domain retrieval, acquisition, downloading and verification of electronic license information, interacts with an encryption and decryption center, generates and analyzes a two-dimensional code of a certificate, and comprises the following steps:
interface is acquireed to the two-dimensional code of certificate:
other related interfaces:
2) encryption and decryption center
Establishing an independent encryption and decryption center, realizing the generation and management of keys and the encryption and decryption of text contents, comprising the following steps:
an information encryption interface:
an information decryption interface:
3) client terminal
The user login and real-name authentication are supported by the client side of the certificate holder, the certificate information of the user can be acquired by calling the interface of the certificate system, the certificate two-dimensional code is generated, the certificate user is authenticated, the user login is supported by the client side, the certificate two-dimensional code is scanned, the certificate information, accessories and the like of the certificate holder are acquired, and the functions are as follows:
as shown in fig. 1, the generation process of the highlight two-dimensional code is as follows:
1) the client receives an instruction of inquiring the electronic certificate information of the user A and calls a certificate correlation interface of the electronic certificate lighting certificate system;
2) the electronic certificate illuminating certificate system inquires the certificate information of the user A, encrypts the certificate identification through the encryption and decryption center and returns the encrypted certificate identification to the client;
3) the client stores the license information of the user A and displays the license information to the user A;
4) the client calls a certificate two-dimensional code obtaining interface of the electronic certificate illumination certificate system again according to the electronic certificate to be shared selected by the user A, and transmits an encrypted certificate identification;
5) the electronic certificate illumination certificate system calls an interface of the encryption and decryption center to encrypt the 'certificate identification and timestamp once encrypted' again to generate a two-dimensional code picture, and the two-dimensional code picture is returned to the client.
The user a may present the generated two-dimensional code.
The resolution process of the evidence two-dimensional code is as follows:
1) the client scans the two-dimensional code presented by the user A according to the operation types of the license inquiry/download and the like selected by the user B;
2) the two-dimensional code content (encrypted character string) read by the client calls a related interface of the electronic certificate illumination certificate system (inquiry service (two-dimensional code content according to the certificate), 'certificate copy downloading service (two-dimensional code content according to the certificate),' and the like), and the two-dimensional code content and the basic information of the user B are transmitted;
3) the electronic certificate illuminating certificate system verifies and records the information of the user B, and calls a decryption interface of an encryption and decryption center to obtain a certificate identification and a time stamp which are encrypted once;
4) the electronic certificate illuminating system judges whether the timestamp is in an effective time range, if the timestamp is effective, the decryption interface of the encryption and decryption center is called again to obtain an original electronic certificate identifier; if the time stamp is invalid, returning error information;
5) the electronic certificate illuminating system acquires detailed information of the certificate or accessory information and the like by using the electronic certificate identification and returns the detailed information to the client.
User B may view license information/attachments, etc. through the client.
The above-described embodiments are merely preferred embodiments of the present invention, and general changes and substitutions by those skilled in the art within the technical scope of the present invention are included in the protection scope of the present invention.
Claims (10)
1. An electronic license sharing application method based on a license two-dimensional code is characterized in that the electronic license identification and a timestamp are encrypted to generate the license two-dimensional code, and the license two-dimensional code is analyzed and processed through a sharing application model to realize the sharing application of the electronic license.
2. The electronic license sharing application method based on the license two-dimensional code according to claim 1, wherein the electronic license identifier comprises: the electronic license comprises an electronic license heel code, a license type code, a license issuing organization code, a serial number, a version number and a check bit.
3. The electronic license sharing application method based on the license two-dimensional code according to claim 1 or 2, wherein the timestamp adopts the number of milliseconds after 1/1970, and the format is as follows: 00:00:00 GMT.
4. An electronic certificate sharing application model based on a certificate two-dimensional code is characterized in that the sharing application model comprises the following components: electronic certificate illumination certificate system, encryption and decryption center, client, wherein:
the electronic certificate illumination system is responsible for providing cross-domain retrieval, acquisition, downloading and verification of electronic certificate information, and interacts with the encryption and decryption center to generate and analyze a certificate illumination two-dimensional code;
the encryption and decryption center is responsible for generating and managing a secret key and encrypting and decrypting text contents;
the client provides user login and real-name authentication, and calls an interface of the certificate system to acquire certificate information of the user to generate the certificate two-dimensional code.
5. The electronic license sharing application model based on the license two-dimensional code as claimed in claim 4, wherein the encryption and decryption of the license two-dimensional code are performed in an encryption and decryption center, and a symmetric encryption algorithm is adopted to encrypt the two-dimensional code content.
6. The electronic license sharing application model depending on the license two-dimensional code according to claim 5, wherein the encryption process of the license two-dimensional code is twice:
the first encryption aims at the electronic license identifier and aims at avoiding plaintext transmission, storage and application of the electronic license identifier;
and the second encryption is used for encrypting the electronic license identifier and the timestamp which are encrypted for the first time, so that the two-dimensional code can be obtained only by scanning and analyzing through a specific application with a secret key.
7. The electronic certificate sharing application model based on the certificate two-dimensional code as claimed in claim 6, wherein the interface of the electronic certificate system setting comprises:
a certificate-highlighting two-dimensional code acquisition interface;
the license association service interface acquires license list information according to the license holding main body code and returns information such as an encrypted identifier, a license number and an issuing mechanism of the license;
the inquiry service interface acquires the license information according to the content of the certificate-illuminating two-dimensional code and supports cross-domain inquiry;
and the license copy downloading service interface acquires a downloading address of the license attachment according to the content of the certificate-illuminating two-dimensional code and supports cross-domain query.
8. The electronic license sharing application model based on the license two-dimensional code as claimed in claim 7, wherein the interface arranged by the encryption and decryption center comprises: an information encryption interface and an information decryption interface.
9. The electronic license sharing application model based on the license two-dimensional code as claimed in claim 8, wherein the generation process of the license two-dimensional code is as follows:
1) the client receives an instruction of inquiring the electronic certificate information of the user A and calls a certificate correlation interface of the electronic certificate lighting certificate system;
2) the electronic certificate illuminating certificate system inquires the certificate information of the user A, encrypts the certificate identification through the encryption and decryption center and returns the encrypted certificate identification to the client;
3) the client stores the license information of the user A and displays the license information to the user A;
4) the client calls a certificate two-dimensional code obtaining interface of the electronic certificate illumination certificate system again according to the electronic certificate to be shared selected by the user A, and transmits the certificate identification encrypted for the first time;
5) the electronic certificate illumination certificate system calls an interface of the encryption and decryption center to encrypt the 'certificate identification and timestamp once encrypted' again to generate a two-dimensional code picture, and the two-dimensional code picture is returned to the client.
10. The electronic license sharing application model based on the license two-dimensional code as claimed in claim 9, wherein the resolution process of the license two-dimensional code is as follows:
1) the client scans the two-dimensional code shown by the user A according to the operation type selected by the user B;
2) the client reads the two-dimension code content, calls a related interface of the electronic certificate illuminating system, and transmits the two-dimension code content and the basic information of the user B;
3) the electronic certificate illuminating certificate system verifies and records the information of the user B, and calls a decryption interface of an encryption and decryption center to obtain a certificate identification and a time stamp which are encrypted once;
4) the electronic certificate illuminating system judges whether the timestamp is in an effective time range, if the timestamp is effective, the decryption interface of the encryption and decryption center is called again to obtain an original electronic certificate identifier; if the time stamp is invalid, returning error information;
5) the electronic certificate illuminating system acquires detailed information of the certificate or accessory information by using the electronic certificate identification and returns the detailed information to the client.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011151687.0A CN112307495A (en) | 2020-10-26 | 2020-10-26 | Electronic certificate sharing application model and method based on certificate two-dimensional code |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011151687.0A CN112307495A (en) | 2020-10-26 | 2020-10-26 | Electronic certificate sharing application model and method based on certificate two-dimensional code |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112307495A true CN112307495A (en) | 2021-02-02 |
Family
ID=74330483
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011151687.0A Pending CN112307495A (en) | 2020-10-26 | 2020-10-26 | Electronic certificate sharing application model and method based on certificate two-dimensional code |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112307495A (en) |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105095728A (en) * | 2015-06-15 | 2015-11-25 | 南京市信息中心 | Two-dimensional code identification method based on digital signatures and timestamps |
| CN107743119A (en) * | 2017-09-26 | 2018-02-27 | 甘肃万维信息技术有限责任公司 | A kind of E-Government electronics license shared platform and sharing method |
| CN108170857A (en) * | 2018-01-22 | 2018-06-15 | 广州市中智软件开发有限公司 | A kind of method for building up and call method of the cross-domain interconnection services of electronics license |
| CN109002875A (en) * | 2018-06-04 | 2018-12-14 | 上海德必创新科技发展有限公司 | Two dimensional code encryption method, two dimensional code Transmission system and storage medium |
| CN109102291A (en) * | 2018-08-15 | 2018-12-28 | 阿里巴巴集团控股有限公司 | A kind of method of controlling security and device of two dimensional code payment |
-
2020
- 2020-10-26 CN CN202011151687.0A patent/CN112307495A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105095728A (en) * | 2015-06-15 | 2015-11-25 | 南京市信息中心 | Two-dimensional code identification method based on digital signatures and timestamps |
| CN107743119A (en) * | 2017-09-26 | 2018-02-27 | 甘肃万维信息技术有限责任公司 | A kind of E-Government electronics license shared platform and sharing method |
| CN108170857A (en) * | 2018-01-22 | 2018-06-15 | 广州市中智软件开发有限公司 | A kind of method for building up and call method of the cross-domain interconnection services of electronics license |
| CN109002875A (en) * | 2018-06-04 | 2018-12-14 | 上海德必创新科技发展有限公司 | Two dimensional code encryption method, two dimensional code Transmission system and storage medium |
| CN109102291A (en) * | 2018-08-15 | 2018-12-28 | 阿里巴巴集团控股有限公司 | A kind of method of controlling security and device of two dimensional code payment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7606769B2 (en) | System and method for embedding user authentication information in encrypted data | |
| US6061448A (en) | Method and system for dynamic server document encryption | |
| US20080137861A1 (en) | Security Code Production Method and Methods of Using the Same, and Programmable Device Thereof | |
| US20040010699A1 (en) | Secure data management techniques | |
| US20070014406A1 (en) | Cryptographic key split binding process and apparatus | |
| JP2005010826A (en) | Authentication terminal device, biometrics information authentication system and biometrics information acquisition system | |
| DE60306648D1 (en) | Device and method for secure communication based on smart cards | |
| CN107463848B (en) | Application-oriented ciphertext search method, device, proxy server and system | |
| CN112436936B (en) | Cloud storage method and system with quantum encryption function | |
| JP4883698B2 (en) | Key distribution method and system | |
| JP2006050535A (en) | Scanner device, information processing apparatus, image data encryption method, image data display method, image data encryption program and image data display program | |
| CN112040279B (en) | Audio and video playing method and storage medium for self-defined DRM (digital rights management) | |
| KR20130021126A (en) | Image-based user authentication method, and computer readable recording medium storing program for the same | |
| EP1715437A2 (en) | Controlling data access | |
| CN112307495A (en) | Electronic certificate sharing application model and method based on certificate two-dimensional code | |
| JP2004295807A (en) | System for preparing document file for distribution | |
| KR100763756B1 (en) | System and method for providing short message service | |
| JP2003169049A (en) | Communication mediating device | |
| KR101467402B1 (en) | Method for managing fax data received through network and apparatus using the same | |
| JP4864566B2 (en) | Attribute authentication method, key management device, service providing destination device, service providing source device, and attribute authentication system | |
| JP2005222488A (en) | User authentication system, information distribution server and user authentication method | |
| JP2007080145A (en) | Data management system, data processing method and data processing program | |
| JP2004096583A (en) | Communication method and communication terminal | |
| JP2007525123A (en) | Apparatus and method for authenticating a user accessing content stored in encrypted form on a storage medium | |
| JP2003234727A (en) | Digital contents distributing device, digital contents distribution program, program recording medium and digital contents distributing method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210202 |