CN112597443A - Method for defining original text in electronic signature - Google Patents
Method for defining original text in electronic signature Download PDFInfo
- Publication number
- CN112597443A CN112597443A CN202011567635.1A CN202011567635A CN112597443A CN 112597443 A CN112597443 A CN 112597443A CN 202011567635 A CN202011567635 A CN 202011567635A CN 112597443 A CN112597443 A CN 112597443A
- Authority
- CN
- China
- Prior art keywords
- signature
- original text
- text
- standard
- electronic
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 49
- 238000012795 verification Methods 0.000 claims abstract description 11
- 238000004590 computer program Methods 0.000 claims description 14
- 239000000470 constituent Substances 0.000 abstract 1
- 238000004891 communication Methods 0.000 description 4
- 238000012545 processing Methods 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 238000004422 calculation algorithm Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 230000001172 regenerating effect Effects 0.000 description 2
- 238000013515 script Methods 0.000 description 2
- 238000000926 separation method Methods 0.000 description 2
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000007689 inspection Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 239000004973 liquid crystal related substance Substances 0.000 description 1
- 238000000968 medical method and process Methods 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2107—File encryption
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Computer Security & Cryptography (AREA)
- General Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Health & Medical Sciences (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Storage Device Security (AREA)
Abstract
The invention provides a method for defining a text in an electronic signature, which comprises the following steps: defining signature elements, wherein a service system defines a group of signature elements for each piece of original text needing electronic signature; the signature elements include but are not limited to one or more of a textual standard name, a serial number, a textual table name, a column name, a definition time; defining a signature element table, wherein a service system generates a text standard based on a signature element and stores the text standard in the signature element table, the signature element table is called when the signature and the signature of the text are verified, and the text standard comprises but is not limited to a text standard name, a group of signature elements and time for generating the text standard; the method defines the constituent elements of the original text dispersedly stored in the database system through the signature element table for calling during signature and signature verification, and selects and generates the content of the original text according to the standard defined in the table, thereby completing the rigorous, correct and safe signature verification process.
Description
Technical Field
The invention belongs to the technical field of electronic signatures and encryption, and particularly relates to a method for defining a text in an electronic signature.
Background
Digital signatures are a method of applying mathematical encryption to generate signatures associated with the contents of a document, the encrypted signature data being mathematically proven to be unbreakable or forgeable under existing conditions, while the signature can be verified by a particular authority. The digital signature generated by using the digital certificate technology is a legally recognized 'reliable electronic signature', and with the development of hospital informatization, doctors generate a plurality of electronic documents in the medical process, such as various examinations, inspection reports, patient prescriptions, medical records of admission and discharge, operation records and the like.
And (3) verifying whether the electronic document is modified or not (namely, in the anti-encryption process), wherein the cipher text generated in the signature process is restored through an anti-encryption process to obtain a new original text, and the new original text is compared with the original text generated in the signature process, and the same verification passes, otherwise, the document is tampered and does not have legal effect.
In practical application, we find that in the specific implementation of signing, the system can splice out data elements related to electronic document signing to generate an original text, then generate a signature value according to an encryption algorithm, finally store the original text, the signature value, the time of signing and a signature public key certificate, and compare the signature value with the stored original text in signature verification. This alignment is not strict because the original text must be used when aligning, and the elements of the original text are scattered in different tables in the system, so that the system must record and store the elements generated by the original text.
Disclosure of Invention
In order to solve the technical problem, the present invention provides a method for textual definition in an electronic signature, the method comprising the steps of:
defining signature elements, wherein a service system defines a group of signature elements for each piece of original text needing electronic signature; the signature elements include but are not limited to one or more of a textual standard name, a serial number, a textual table name, a column name, a definition time;
and defining a signature element table, wherein the service system generates a text standard based on the signature element and stores the text standard in the signature element table, the signature element table is called when the signature and the signature of the text are verified, and the text standard comprises but is not limited to a text standard name, a group of signature elements and the time of generation of the text standard.
The invention has the advantages that the composing elements of the original text which is dispersedly stored in the database system are defined by the signature element table, the signature element table provided by the method can be called when signing and signature checking are carried out, and the protected original text content is selected according to the defined standard so as to complete the rigorous, correct and safe signature checking process.
Drawings
FIG. 1 is a flow chart of a method for textual definition in an exemplary electronic signature;
FIG. 2 is a diagram of textual definitions in an exemplary electronic signature;
FIG. 3 is a schematic view of a radiographic report sheet;
FIG. 4 is a flow diagram of an exemplary electronic signature;
FIG. 5 is a flow diagram of an exemplary verification signature.
Detailed Description
In some embodiments of the present invention, as shown in fig. 1, a flow chart of a method for textual definition in an electronic signature is shown, the method comprising the steps of:
defining signature elements, wherein a service system defines a group of signature elements for each piece of original text needing electronic signature; the signature elements include but are not limited to one or more of a textual standard name, a serial number, a textual table name, a column name, a definition time;
and defining a signature element table, wherein the service system generates a text standard based on the signature element and stores the text standard in the signature element table, the signature element table is called when the signature and the signature of the text are verified, and the text standard comprises but is not limited to a text standard name, a group of signature elements and the time of generation of the text standard.
As shown in table 1, a signature original text element definition table is shown, which includes 5 columns, namely, an original text standard name, a serial number, an original text indication, a column name and a definition time, wherein the original text name definition is defined by letters (other symbol definitions can be adopted, and all are within the scope of the present application), the serial number represents the number of participating original text tables, the original text table name represents a specific table name participating in the original text definition, the column name represents some fields participating in the original text specifying the original text table, the definition time is the time generated by the standard, the service system defines the signature element, defines the table name of the table signature element, and both the encryption process and the anti-encryption process need to call the table.
TABLE 1 signature text element definition Table
As shown in fig. 2, in some embodiments of the present invention, the original standard is valid once defined and enabled, and if the original text requiring the electronic signature changes (i.e. the protected document content changes), a new original standard needs to be generated according to the document content, the new original standard is enabled, the original text is generated, and the signature process is completed. After each signature is finished, besides information such as a signature value and the like, an original text standard name must be recorded, when the signature needs to be verified, the content of the original text needing to be spliced is selected according to the original text standard name to generate the original text, and finally the process of difficult signature is finished.
If a radiological image report shown in fig. 3 is protected based on fig. 1 and table 1, the report has 4 tables related to protection in the system, wherein each table has a field to be protected clearly defined, as shown in table 2, and a specific text definition standard such as table 2 clearly shows.
TABLE 2 examination report original text definition case
When the business system signs the electronic document, the information such as the generated signature value must be stored, the information to be stored comprises the original standard name, the original, the signature value, the signature time and the signature public key certificate, and the values are applied when comparing in signature verification. Where a signed public key certificate is information representing an individual's identity when encrypted.
In some embodiments, when the original text requiring the electronic signature changes, a new record is added to the original text table, and the new original text table comprises an original text standard and a new original text standard.
If the original text needing the electronic signature changes, only a new original text standard needs to be added in the table, and the original text and the signature value are generated by utilizing the new standard. The original signature is still valid by using the original standard signature value; when the signature content is changed, the system only adds the original text definition record, and uses the new original text standard to complete the electronic signature process, and the previous signature report is not affected and does not need to be re-signed.
As shown in fig. 4, the present example provides an application of the method of textual definition to an electronic signature process, the method comprising the steps of: the service system calls the original text definition table to generate original text according to the definition standard, encrypts the original text to generate a signature value, and stores the original text signature time, the signature public key certificate and the applied original text standard name together to finish the process of electronic signature. The signed result is stored in the service system, and besides the signature value, the signature time, the signature public key certificate and the original text generated during signature, the name of the original text standard called during original text generation must be stored for regenerating the original text during anti-encryption.
In some examples, the method further comprises the steps of: and when the original text needing the electronic signature changes, the service system calls a new signature element standard to generate a new original text, and encrypts the new original text.
The present example, as shown in fig. 5, provides an application of the method defined in the original text in the process of signature verification (decryption), the method comprising the following steps: and carrying out decryption operation according to the signature value and a decryption algorithm to obtain a decrypted original text 1, calling the signature element table by the service system to assemble again to generate an original text 2, comparing whether the original text 1 is consistent with the original text 2, if so, determining that the original text 1 is not tampered, and if not, determining that the original text 1 is tampered.
The present example also provides a method of verifying a signature, the method comprising: the service system calls the original text standard to splice again to generate an original text 1; and the service system decrypts the encrypted signature value to obtain an original text 2, compares the original text 1 with the original text 2, if the encrypted signature value is consistent with the original text 2, the electronic document is not tampered, otherwise, the electronic document is tampered, and no legal effect exists.
The technical problem to be solved by the invention is to standardize the definition of the original text, store the standard of the original text definition in a database table, and each protected electronic document corresponds to the respective standard. And regenerating the original text according to the original text definition during signature verification so as to really protect the data participating in the original text generation.
The invention solves the technical problems and also ensures the stability of the program to a great extent. When the content of the protected electronic document changes at the time of signature, the changes are recorded in the table by the standard, and the changes are implemented in the program, and no matter how the protected electronic document changes, the business system program does not need to be updated.
The present embodiment provides a computer program product for textual definition in electronic signatures, comprising a computer program which, when executed by a processor, implements the steps in the above method for textual definition in electronic signatures.
The present embodiment provides a computer program product for signature verification, comprising a computer program which, when executed by a processor, performs the steps in the method of signature verification of a table of signature elements.
An apparatus can comprise special purpose logic circuitry, e.g., an FPGA (field programmable gate array) or an ASIC (application-specific integrated circuit). The apparatus can include, in addition to hardware, code that creates an execution environment for the associated computer program, e.g., code that constitutes processor firmware, a protocol stack, a database management system, an operating system, or a combination of one or more of them.
A computer program (which may also be referred to or described as a program, software application, module, software module, script, or code) can be written in any form of programming language, including compiled or interpreted languages, or declarative or procedural languages, and it can be deployed in any form, including as a stand-alone program or as a module, component, subroutine, or other unit suitable for use in a computing environment. A computer program may, but need not, correspond to a file in a file system. A program can be stored in a portion of a file that holds other programs or data, e.g., one or more scripts stored in: in a markup language document; in a single file dedicated to the relevant program; or in multiple coordinated files, such as files that store one or more modules, sub programs, or portions of code. A computer program can be deployed to be executed on one computer or on multiple computers that are located at one site or distributed across multiple sites and interconnected by a communication network.
The processes and logic flows described in this specification can be performed by one or more programmable computers executing one or more computer programs to perform functions by operating on input data and generating output. The processes and logic flows can also be performed by, and apparatus can also be implemented as, special purpose logic circuitry, e.g., an FPGA (field programmable gate array) or an ASIC (application-specific integrated circuit).
Computers suitable for carrying out computer programs include, and illustratively may be based on, general purpose microprocessors, or special purpose microprocessors, or both, or any other kind of central processing unit. Typically, the central processing unit will receive instructions and data from a read-only memory or a random access memory or both. The essential elements of a computer are a central processing unit for executing or executing instructions and one or more memory devices for storing instructions and data. Generally, a computer will also include, or be operatively coupled to receive data from or transfer data to, or both, one or more mass storage devices for storing data, e.g., magnetic, magneto optical disks, or optical disks. However, a computer need not have such a device.
To send interactions with a user, embodiments of the subject matter described in this specification can be implemented on a computer having: a display device, for example, a CRT (cathode ray tube) or LCD (liquid crystal display) monitor, for displaying information to a user; and a keyboard and a pointing device, such as a mouse or trackball, by which a user can communicate input to the computer.
Implementations of the subject matter described in this specification can be implemented in a computing system that includes a back-end component, e.g., as a data server, or that includes a middleware component, e.g., an application server, or that includes a front-end component, e.g., a client computer having a graphical user interface or a Web browser through which a user can interact with an implementation of the subject matter described in this specification, or any combination of one or more such back-end, middleware, or front-end components. The components in the system can be interconnected by any form or medium of digital data communication, e.g., a communication network. A client and server are generally remote from each other and typically interact through a communication network. The relationship of client and server arises by virtue of computer programs running on the respective computers and having a client-server relationship to each other.
While this specification contains many specific implementation details, these should not be construed as limitations on the scope of any inventions or of what may be claimed, but rather as descriptions of features that may embody particular implementations of particular inventions. Certain features that are described in this specification in the context of separate embodiments can also be implemented in combination in a single embodiment. Conversely, various features that are described in the context of a single embodiment can also be implemented in multiple embodiments separately or in any suitable subcombination. Moreover, although features may be described above as acting in combination and even initially claimed as such, one or more features from a claimed combination can in some cases be excised from the combination, and the claimed combination may be directed to a subcombination or variation of a subcombination.
Similarly, while operations are depicted in the drawings in a particular order, this should not be understood as: such operations are required to be performed in the particular order shown, or in sequential order, or all illustrated operations may be performed, in order to achieve desirable results. In certain situations, multitasking and parallel processing may be advantageous. Moreover, the separation of various system modules and components in the embodiments described above should not be understood as requiring such separation in all embodiments, and it should be understood that the program components and systems can generally be integrated together in a single software product or packaged into multiple software products.
Claims (7)
1. A method for defining a text in an electronic signature, the method for defining a text in an electronic signature comprising the steps of:
defining signature elements, wherein a service system defines a group of signature elements for each piece of original text needing electronic signature; the signature elements include but are not limited to one or more of a textual standard name, a serial number, a textual table name, a column name, and a definition time;
and defining a signature element table, wherein the service system generates a text standard based on the signature element and stores the text standard in the signature element table, the signature element table is called when the original text is signed and signed, and the text standard comprises but is not limited to a text standard name, a signature element and time for generating the text standard.
2. The method of claim 1, wherein the textual criteria is valid once defined and enabled, and wherein if the textual criteria requiring an electronic signature changes, a new textual criteria is generated, and wherein the new textual criteria participates in an electronic signature and signature verification process after the new textual criteria are enabled.
3. The method of claim 1, wherein when the original text requiring the electronic signature changes, a new record is added to the original text table, and the new original text table comprises an original text standard and a new original text standard.
4. A method of electronic signing using the signature elements table of any of claims 1-3, characterized in that the method comprises the steps of: the service system calls the original text definition table to generate original text according to the definition standard, encrypts the original text to generate a signature value, and stores the original text signature time, the signature public key certificate and the applied standard name together to finish the process of electronic signature.
5. The method of claim 4, further comprising the steps of: and when the original text needing the electronic signature changes, the service system calls a new signature element standard to generate a new original text, and encrypts the new original text.
6. A method of verifying a signature using a signature elements table according to any one of claims 1 to 3, the method comprising the steps of: the service system calls the original text standard to splice again to generate an original text 1; and the service system decrypts the encrypted signature value to obtain an original text 2, compares the original text 1 with the original text 2, if the original text 1 is consistent with the original text 2, the electronic document is not tampered, and otherwise, the electronic document is tampered.
7. A computer program product for textual definition in electronic signatures, comprising a computer program, characterized in that the computer program realizes the steps of the method of claims 1-5 when executed by a processor.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011567635.1A CN112597443A (en) | 2020-12-25 | 2020-12-25 | Method for defining original text in electronic signature |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011567635.1A CN112597443A (en) | 2020-12-25 | 2020-12-25 | Method for defining original text in electronic signature |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112597443A true CN112597443A (en) | 2021-04-02 |
Family
ID=75202294
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011567635.1A Pending CN112597443A (en) | 2020-12-25 | 2020-12-25 | Method for defining original text in electronic signature |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112597443A (en) |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040181756A1 (en) * | 2000-06-06 | 2004-09-16 | Berringer Ryan R. | Creating and verifying electronic documents |
| US20100082993A1 (en) * | 2008-10-01 | 2010-04-01 | Sap Ag | Computer-implemented methods, systems and computer program products for generating and verifying signatures |
| CN101964710A (en) * | 2010-09-26 | 2011-02-02 | 用友软件股份有限公司 | Digital signature and signature authenticating method |
| CN102195781A (en) * | 2011-05-30 | 2011-09-21 | 武汉理工大学 | Electronic evidence obtaining system based on electronic record correlated signature |
| CN103647650A (en) * | 2013-12-18 | 2014-03-19 | 用友软件股份有限公司 | Rule definition based automatic signature/signature verification device and method |
-
2020
- 2020-12-25 CN CN202011567635.1A patent/CN112597443A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040181756A1 (en) * | 2000-06-06 | 2004-09-16 | Berringer Ryan R. | Creating and verifying electronic documents |
| US20100082993A1 (en) * | 2008-10-01 | 2010-04-01 | Sap Ag | Computer-implemented methods, systems and computer program products for generating and verifying signatures |
| CN101964710A (en) * | 2010-09-26 | 2011-02-02 | 用友软件股份有限公司 | Digital signature and signature authenticating method |
| CN102195781A (en) * | 2011-05-30 | 2011-09-21 | 武汉理工大学 | Electronic evidence obtaining system based on electronic record correlated signature |
| CN103647650A (en) * | 2013-12-18 | 2014-03-19 | 用友软件股份有限公司 | Rule definition based automatic signature/signature verification device and method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Desjardins et al. | DICOM images have been hacked! Now what? | |
| US10572236B2 (en) | System and method for updating or modifying an application without manual coding | |
| US7721105B1 (en) | Repurposing digitally signed information | |
| US10007803B2 (en) | Searching over encrypted keywords in a database | |
| US11210426B2 (en) | Tracing objects across different parties | |
| Bennett et al. | Reengineering workflow for curation of DICOM datasets | |
| US11012242B1 (en) | Systems and methods for trusted chain code system | |
| Ulybyshev et al. | Protecting electronic health records in transit and at rest | |
| US9853817B2 (en) | Generating enhanced digital signatures for artifacts | |
| WO2022151888A1 (en) | Data sharing method and apparatus | |
| US9258126B2 (en) | Method for non-repudiation of ad-hoc workflows | |
| US20180137292A1 (en) | Controlled publication of sensitive content | |
| CN112597443A (en) | Method for defining original text in electronic signature | |
| Oakley et al. | Scrybe: A Secure Audit Trail for Clinical Trial Data Fusion | |
| Baysal et al. | Implications of Blockchain technology in the health domain | |
| Anderson et al. | Jikzi—a new framework for security policy, trusted publishing and electronic commerce | |
| Al‐Sarayreh et al. | A reference measurement framework of software security product quality (SPQNFSR) | |
| Bojanova et al. | Information exposure (IEX): A new class in the bugs framework (BF) | |
| Xiong et al. | E-health Web application frameworks based on cloud technology | |
| Charles | Regulatory compliance considerations for blockchain in life sciences research | |
| Vaswani | A blockchain-based approach for securing Electronic Hospital Records | |
| Shi et al. | AUDITEM: toward an automated and efficient data integrity verification model using blockchain | |
| Länger et al. | HCI patterns for cryptographically equipped cloud services | |
| Lien et al. | Applying a presentation content manifest for signing clinical documents | |
| Vasile | Validation of the electronic reports issued by the electronic fiscal cash registers ExportValidator application. |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210402 |