CN115481383A

CN115481383A - Service processing method, server, service end and system based on digital certificate

Info

Publication number: CN115481383A
Application number: CN202211207326.2A
Authority: CN
Inventors: 王瑶
Original assignee: Bank of China Ltd
Current assignee: Bank of China Ltd
Priority date: 2022-09-30
Filing date: 2022-09-30
Publication date: 2022-12-16

Abstract

The invention provides a service processing method, a server, a service end and a system based on a digital certificate, in particular to the field of finance, wherein the method comprises the following steps: judging whether to automatically examine and approve the certificate application according to the service end equipment information sent by the service end and a preset automatic examination and approval list, and if so, examining and approving the certificate request information sent by the service end based on preset examination and approval conditions and the service end equipment information; if the examination and approval are passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information so as to enable the service end to perform service processing based on the installed digital certificate. The invention can improve the speed, accuracy and safety of digital certificate installation, thereby improving the efficiency of overall service processing.

Description

Service processing method, server, service end and system based on digital certificate

Technical Field

The present invention relates to the field of business processing technologies, and in particular, to the field of finance, and in particular, to a business processing method, a server, a business terminal, and a system based on a digital certificate.

Background

In various business processes of banks, due to related verification requirements, credit requirements and some business data operation and processing requirements, corresponding access operations are often required to be performed by using installed digital certificates, and therefore, the business processes often involve installation of corresponding digital certificates.

In the prior art, the digital certificate is installed by first applying a certificate application to a relevant manager, issuing the certificate after the certificate is approved by the manager to obtain a corresponding digital certificate, and then installing the digital certificate manually. However, in the above manner, a manager needs to personally review a certificate application and issue a certificate after the certificate application is passed, but the manual review manner consumes a long time, which results in a slow certificate application and review speed, and thus results in a slow overall digital certificate installation speed, and the accuracy of the manual review depends on the working experience and working capacity of the reviewer, and the accuracy of the certificate application and review is low, which results in a low overall digital installation accuracy.

In the above manner, the specific installation of the digital certificate is also manual, and when the digital certificate is installed manually, it takes a long time to fill in more information and perform more complicated operations, so that the installation speed of the whole digital certificate is further reduced, and the problems of information filling errors, operation errors and installation failure according to the installation manner corresponding to the type of the digital certificate easily occur during manual installation, so that the installation accuracy of the whole digital certificate is further reduced.

Furthermore, the digital certificate is installed at a low speed, with low accuracy and poor security, which makes the business processing difficult to be smoothly performed, thereby resulting in low efficiency of business processing.

In summary, the prior art has the problems of low digital certificate installation speed, low accuracy and poor security, so that the overall business processing efficiency is low.

Disclosure of Invention

An object of the present invention is to provide a service processing method based on a digital certificate, so as to solve the problem that the speed of installing the digital certificate is slow, the accuracy is low, and the security is poor, so that the efficiency of the overall service processing is low. Another object of the present invention is to provide a server. Still another object of the present invention is to provide a service end. It is still another object of the present invention to provide a digital certificate based transaction system. It is a further object of the present invention to provide a computer apparatus. It is a further object of this invention to provide such a readable medium. It is a further object of this invention to provide a computer program product.

In order to achieve the above object, an aspect of the present invention discloses a service processing method based on a digital certificate, the method comprising:

judging whether to automatically examine and approve the certificate application according to the service end equipment information sent by the service end and a preset automatic examination and approval list, and if so, examining and approving the certificate request information sent by the service end based on preset examination and approval conditions and the service end equipment information;

if the examination and approval are passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing based on the installed digital certificate.

Optionally, the determining whether to perform automatic certificate application approval according to the service end device information sent by the service end and a preset automatic approval list includes:

obtaining a service end equipment address and a service end equipment identifier according to the service end equipment information;

judging whether the automatic approval list has equipment record information corresponding to the service end equipment address and the service end equipment identifier;

and if so, examining and approving the certificate request information sent by the service end based on preset examination and approval conditions and the service end equipment information.

Optionally, further comprising:

when judging that the automatic approval of the certificate application is not carried out, sending the equipment information of the service end and the certificate request information sent by the service end to an approver so that the approver can carry out approval based on the equipment information of the service end and the certificate request information and return a corresponding approval result;

judging whether the examination and approval is passed or not based on the examination and approval result, and if so, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information so as to enable the service end to perform service processing based on the installed digital certificate.

Optionally, the examining and approving the certificate request information sent by the service end based on the preset examining and approving condition and the service end device information includes:

based on the service end equipment information, obtaining a service end equipment address, a service end equipment identifier and service end system information;

obtaining a certificate identifier to be obtained and a certificate type to be obtained based on the certificate request information;

judging whether the service end equipment address, the service end equipment identifier and the service end system information correspond to the certificate identifier to be acquired or the type of the certificate to be acquired according to the approval condition, and if so, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information so as to enable the service end to perform service processing based on the installed digital certificate.

Optionally, the determining, according to the approval condition, whether the service end device address, the service end device identifier, and the service end system information correspond to the identifier of the certificate to be acquired or the type of the certificate to be acquired includes:

determining a plurality of standard certificate identifications and a plurality of standard certificate types supported by the service end according to the service end equipment address, the service end equipment identification, the service end system information and the approval condition;

judging whether the standard certificate identification comprises the certificate identification to be acquired or the standard certificate type comprises the condition of the certificate type to be acquired, if so, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing based on the installed digital certificate.

Optionally, the determining a corresponding digital certificate based on the certificate request information includes:

obtaining a certificate identifier to be acquired based on the certificate request information;

and determining the corresponding digital certificate based on the certificate identifier to be acquired.

Optionally, the correspondingly installing the digital certificate to the service end based on the installation logic, the service end device information, and the certificate request information includes:

obtaining service end system information based on the service end equipment information;

obtaining service end installation configuration information based on the certificate request information;

and correspondingly installing the digital certificate to the service end based on the installation logic, the service end system information and the service end installation configuration information.

In order to achieve the above object, another aspect of the present invention discloses a service processing method based on a digital certificate, comprising:

sending service end equipment information and certificate request information to a server so that the server can judge whether to perform automatic certificate application approval according to the service end equipment information and a preset automatic approval list, and if so, performing approval on the certificate request information based on preset approval conditions and the service end equipment information; if the examination and approval are passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; correspondingly installing the digital certificate based on the installation logic, the service end equipment information and the certificate request information;

and performing service processing based on the digital certificate installed by the server.

Optionally, the performing service processing on the digital certificate installed on the basis of the server includes:

and performing corresponding service logic access and service data access by using the installed digital certificate so as to perform the service processing.

In order to achieve the above object, a further aspect of the present invention discloses a server comprising:

the examination and approval module is used for judging whether to automatically examine and approve the certificate application according to the service end equipment information sent by the service end and a preset automatic examination and approval list, and if so, examining and approving the certificate request information sent by the service end based on preset examination and approval conditions and the service end equipment information;

the installation module is used for determining a corresponding digital certificate based on the certificate request information if the approval is passed; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing based on the installed digital certificate.

In order to achieve the above object, a further aspect of the present invention discloses a service end, including:

the request sending module is used for sending service end equipment information and certificate request information to the server so that the server can judge whether to carry out automatic examination and approval of certificate application according to the service end equipment information and a preset automatic examination and approval list, and if so, the certificate request information is examined and approved based on preset examination and approval conditions and the service end equipment information; if the examination and approval is passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; correspondingly installing the digital certificate based on the installation logic, the service end equipment information and the certificate request information;

and the service processing module is used for carrying out service processing based on the digital certificate installed by the server.

In order to achieve the above object, a further aspect of the present invention discloses a service processing system based on a digital certificate, which includes a server and a service end;

the service end is used for sending service end equipment information and certificate request information to the server;

the server is used for judging whether to automatically examine and approve the certificate application according to the service end equipment information and a preset automatic examination and approval list, and if so, examining and approving the certificate request information based on preset examination and approval conditions and the service end equipment information; if the examination and approval is passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information;

and the service end is also used for carrying out service processing based on the installed digital certificate.

The invention also discloses a computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor implements the method when executing the program.

The invention also discloses a computer-readable medium, on which a computer program is stored which, when executed by a processor, implements a method as described above.

The invention also discloses a computer program product comprising a computer program which, when executed by a processor, implements the method as described above.

According to the service processing method, the server, the service end and the system based on the digital certificate, whether automatic approval of certificate application is carried out or not is judged according to service end equipment information sent by the service end and a preset automatic approval list, if yes, the certificate request information sent by the service end is approved based on the preset approval condition and the service end equipment information, the rule that the relevant authentication of service processing is mainly equipment identity can be fully considered, whether automatic approval can be carried out or not is accurately judged according to actual equipment information, the specific approval condition and the actual equipment information are used as the basis when the automatic approval can be carried out, automatic approval of certificate application is realized, dependence on manpower is greatly reduced, personnel circulation times in the approval process are greatly reduced, time consumption in the approval process is reduced, the disadvantage that the accuracy of the approval depends on the working experience and the working capacity of personnel is overcome, the probability of certificate leakage caused by manual circulation when the certificate is requested and issued is greatly reduced, the certificate application speed, the accuracy and the safety of certificate application are improved, and the overall certificate installation safety is improved; if the digital certificate passes the approval, the corresponding digital certificate is determined based on the certificate request information, so that the digital certificate expected by the corresponding service end can be automatically determined based on the certificate request information representing the service end expectation, the speed and the accuracy of determining the digital certificate are improved, and the speed and the accuracy of installing the whole digital certificate are improved; by determining the corresponding installation logic according to the type of the digital certificate, the rule that the installation mode of the digital certificate is closely related to the type of the digital certificate can be fully considered, the corresponding installation logic can be quickly and accurately determined in an automatic mode, the dependence on manpower is reduced, the problem that the installation is wrong due to the fact that the digital certificate is easily installed in a non-installation mode according to the type of the corresponding digital certificate when the digital certificate is installed manually is solved, and the speed and the accuracy of installing the whole digital certificate are improved; the digital certificate is correspondingly installed on the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing on the installed digital certificate, the rules closely related to the specific conditions of the installation process of the digital certificate and the installed equipment and the corresponding installation request expectation can be fully considered, the automatic installation of the digital certificate can be directly realized by using the determined installation logic in an automatic mode, the dependence on manpower can be reduced, the accurate installation information can be automatically filled and written in the installation process, the correct installation operation can be automatically realized, the speed and the accuracy of the installation of the whole digital certificate are greatly improved, the installed and correct digital certificate can be used in the subsequent service processing process more timely, and the service processing process can be favorably performed more smoothly. In summary, the service processing method, the server, the service end and the system based on the digital certificate provided by the invention can improve the speed, accuracy and safety of digital certificate installation, thereby improving the efficiency of overall service processing.

Drawings

In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.

FIG. 1 is a schematic diagram of a digital certificate based transaction system according to an embodiment of the present invention;

fig. 2 is a flowchart illustrating a digital certificate-based service processing method of a server according to an embodiment of the present invention;

FIG. 3 is a diagram illustrating an alternative process for determining a digital certificate according to an embodiment of the present invention;

FIG. 4 is a schematic diagram illustrating an alternative step of installing a digital certificate according to an embodiment of the present invention;

fig. 5 is a flowchart illustrating a service-side digital certificate-based service processing method according to an embodiment of the present invention;

FIG. 6 shows a block schematic diagram of a server according to an embodiment of the invention;

fig. 7 shows a module diagram of a service end according to an embodiment of the present invention;

FIG. 8 shows a schematic block diagram of a computer device suitable for use in implementing embodiments of the present invention.

Detailed Description

The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.

The terms "first," "second," "8230," "8230," and the like, as used herein, are not intended to be limited to a specific meaning or sequence, nor are they intended to limit the invention, but only to distinguish one element from another or to distinguish one element from another element.

As used herein, the terms "comprising," "including," "having," "containing," and the like are open-ended terms that mean including, but not limited to.

As used herein, "and/or" includes any and all combinations of the described items.

It should be noted that, in the technical solution of the present invention, the acquisition, storage, use, processing, etc. of the data all meet the relevant regulations of the national laws and regulations.

It should be noted that the service processing method, the server, the service end and the system based on the digital certificate disclosed in the present application can be used in the technical field of service processing, and can also be used in any field except the technical field of service processing.

The embodiment of the invention discloses a service processing system based on a digital certificate, which comprises a server 101 and a service end 102, as shown in figure 1;

the service end 102 is configured to send service end device information and certificate request information to the server 101;

the server 101 is configured to determine whether to perform automatic certificate application approval according to the service end device information and a preset automatic approval list, and if so, approve the certificate request information based on preset approval conditions and the service end device information; if the examination and approval is passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; correspondingly installing the digital certificate to the service end 102 based on the installation logic, the service end equipment information and the certificate request information;

the service end 102 is further configured to perform service processing based on the installed digital certificate.

Illustratively, the service end 102 and the server 101 may be separately provided or may be integrally provided. It should be noted that, the specific setting manner of the service end 102 and the server 101 can be determined by those skilled in the art according to practical situations, and the above description is only an example, and is not limited thereto.

Illustratively, the server 101 may access the service end 102 by remote access, so as to install the digital certificate to the service end 102. It should be noted that, the specific implementation manner for the server 101 to access the service end 102 can be determined by those skilled in the art according to practical situations, and the above description is only an example, and is not limited thereto.

According to the service processing method, the server, the service end and the system based on the digital certificate, whether automatic approval of certificate application is carried out or not is judged according to service end equipment information sent by the service end and a preset automatic approval list, if yes, the certificate request information sent by the service end is approved based on the preset approval condition and the service end equipment information, the rule that the equipment identity is the main part of the relevant authentication of service processing can be fully considered, whether automatic approval can be carried out or not is accurately judged according to the actual equipment information, the specific approval condition and the actual equipment information are used as the basis when the automatic approval can be carried out, automatic approval of certificate application is achieved, dependence on manpower is greatly reduced, the number of personnel circulation in the approval process is greatly reduced, time consumption in the approval process is reduced, the disadvantages of work experience and work capacity of personnel dependency on accuracy are overcome, the probability that the certificate is leaked due to manual circulation when the approval request and the certificate is issued is greatly reduced, the certificate application speed, the accuracy and the safety of certificate application are improved, and the overall certificate installation and safety of the certificate are improved; if the digital certificate passes the approval, the corresponding digital certificate is determined based on the certificate request information, so that the expected digital certificate of the corresponding service end can be automatically determined on the basis of the expected certificate request information of the characterization service end, the speed and the accuracy of determining the digital certificate are improved, and the speed and the accuracy of installing the whole digital certificate are improved; by determining the corresponding installation logic according to the type of the digital certificate, the rule that the installation mode of the digital certificate is closely related to the type of the digital certificate can be fully considered, the corresponding installation logic can be quickly and accurately determined in an automatic mode, the dependence on manpower is reduced, the problem that the installation is wrong due to the fact that the digital certificate is easily installed in a non-installation mode according to the type of the corresponding digital certificate when the digital certificate is installed manually is solved, and the speed and the accuracy of installing the whole digital certificate are improved; the digital certificate is correspondingly installed to the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing on the installed digital certificate, the rules that the installation process of the digital certificate is closely related to the specific situation of the installed equipment and the corresponding installation request expectation can be fully considered, the automatic installation of the digital certificate can be directly realized by using the determined installation logic in an automatic mode, the dependence on manpower can be reduced, the accurate installation information can be automatically filled and written in the installation process and the correct installation operation can be realized, the speed and the accuracy of the installation of the whole digital certificate are greatly improved, the installed and correct digital certificate can be used in the subsequent service processing process more timely, and the service processing process can be performed more smoothly. In summary, the service processing method, the server, the service end and the system based on the digital certificate provided by the invention can improve the speed, accuracy and safety of digital certificate installation, thereby improving the efficiency of overall service processing.

The following describes an implementation process of the service processing method based on the digital certificate according to the embodiment of the present invention, taking the server 101 as an execution subject. It can be understood that the execution subject of the service processing method based on the digital certificate provided by the embodiment of the present invention includes, but is not limited to, the server 101.

Based on this, the embodiment of the present invention discloses a service processing method based on a digital certificate, as shown in fig. 2, the method specifically includes the following steps:

s201: and judging whether to automatically examine and approve the certificate application according to the service end equipment information sent by the service end and a preset automatic examination and approval list, and if so, examining and approving the certificate request information sent by the service end based on preset examination and approval conditions and the service end equipment information.

S202: if the examination and approval are passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information so as to enable the service end to perform service processing based on the installed digital certificate.

For example, the type of the digital certificate in the embodiment of the present invention may specifically be, but is not limited to, a format of the digital certificate (which may be embodied, but is not limited to, as a digital certificate filename suffix) or a service function type to which the digital certificate belongs, and is preferably the format of the digital certificate. For example, the format of the digital certificate may be, but is not limited to, an DER format (binary DER encoded format), a cer format (binary format), a crt format (text format), a pem format (ASCLL (BASE 64) encoded format), and the like. It should be noted that the specific meaning of the type of digital certificate can be determined by those skilled in the art according to the actual situation, and the above description is only an example and is not limiting.

For example, the installation logic may be, but is not limited to, an installation program, installation software, an installation instruction, an installation script, or the like corresponding to the digital certificate, where specific details, versions, and the like of the installation logic may be different from one device system to another on the service end (for example, for a certain function in the installation logic, an implementation code statement of the installation logic in the Linux system may be different from an implementation code statement of the installation logic in the Windows system), but the overall functions of the installation logic corresponding to different device systems are substantially the same, where the installation logic may be an existing installation logic. It should be noted that the specific form of the installation logic can be determined by those skilled in the art according to practical situations, and the above description is only an example and is not limiting.

Illustratively, the determining the corresponding installation logic according to the type of the digital certificate includes the following steps:

when the type of the digital certificate refers to the format of the digital certificate, the installation logic applicable to the format is determined according to the format. For example, when the format is the cer format, the installation logic is an installation script suitable for installing the cer format certificate, and when the format is the crt format, the installation logic is an installation script suitable for installing the crt format certificate.

It should be noted that, for the specific implementation manner of determining the corresponding installation logic according to the type of the digital certificate, the specific implementation manner may be determined by those skilled in the art according to practical situations, and the above description is only an example, and does not limit this.

Preferably, the certificate request information, the ID of the request information, the result of the approval of the certificate request information (with or without passing), the approval manner (manual or automatic), and the installation process information (including but not limited to the identification of the installation logic, the installation time, the installation path, the installation equipment, the installation result, etc.) are stored in the corresponding circulation records or in the database.

Preferably, when the certificate request information fails to be approved, the corresponding approval failure warning information is sent to the service end.

According to the service processing method, the server, the service end and the system based on the digital certificate, whether automatic approval of certificate application is carried out or not is judged according to service end equipment information sent by the service end and a preset automatic approval list, if yes, the certificate request information sent by the service end is approved based on the preset approval condition and the service end equipment information, the rule that the relevant authentication of service processing is mainly equipment identity can be fully considered, whether automatic approval can be carried out or not is accurately judged according to actual equipment information, the specific approval condition and the actual equipment information are used as the basis when the automatic approval can be carried out, automatic approval of certificate application is realized, dependence on manpower is greatly reduced, personnel circulation times in the approval process are greatly reduced, time consumption in the approval process is reduced, the disadvantage that the accuracy of the approval depends on the working experience and the working capacity of personnel is overcome, the probability of certificate leakage caused by manual circulation when the certificate is requested and issued is greatly reduced, the certificate application speed, the accuracy and the safety of certificate application are improved, and the overall certificate installation safety is improved; if the digital certificate passes the approval, the corresponding digital certificate is determined based on the certificate request information, so that the digital certificate expected by the corresponding service end can be automatically determined based on the certificate request information representing the service end expectation, the speed and the accuracy of determining the digital certificate are improved, and the speed and the accuracy of installing the whole digital certificate are improved; by determining the corresponding installation logic according to the type of the digital certificate, the rule that the installation mode of the digital certificate is closely related to the type of the digital certificate can be fully considered, the corresponding installation logic can be quickly and accurately determined in an automatic mode, the dependence on manpower is reduced, the problem that the installation is wrong due to the fact that the digital certificate is easily installed in a non-installation mode according to the type of the corresponding digital certificate when the digital certificate is installed manually is solved, and the speed and the accuracy of installing the whole digital certificate are improved; the digital certificate is correspondingly installed to the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing on the installed digital certificate, the rules that the installation process of the digital certificate is closely related to the specific situation of the installed equipment and the corresponding installation request expectation can be fully considered, the automatic installation of the digital certificate can be directly realized by using the determined installation logic in an automatic mode, the dependence on manpower can be reduced, the accurate installation information can be automatically filled and written in the installation process and the correct installation operation can be realized, the speed and the accuracy of the installation of the whole digital certificate are greatly improved, the installed and correct digital certificate can be used in the subsequent service processing process more timely, and the service processing process can be performed more smoothly. In summary, the service processing method, the server, the service end and the system based on the digital certificate provided by the invention can improve the speed, accuracy and safety of digital certificate installation, thereby improving the efficiency of overall service processing.

In an optional embodiment, the determining, according to the service end device information sent by the service end and a preset automatic approval list, whether to perform automatic approval of the certificate application includes:

Illustratively, the obtaining of the service end device address and the service end device identifier according to the service end device information may be, but is not limited to, analyzing the service end device information to obtain the service end device information including or corresponding to the service end device address and the service end device identifier. The service end device address includes, but is not limited to, a service end device IP, a port, and the like, and the service end device identifier includes, but is not limited to, a service end login account (including, but not limited to, a user name, a password, and the like), a service end device factory number, and the like. It should be noted that, for the specific implementation manner of obtaining the address and the identifier of the service end device according to the information of the service end device, and the specific content of the address and the identifier of the service end device, which may be determined by those skilled in the art according to actual situations, the foregoing description is only an example, and does not limit this.

For example, the specific form of the automatic approval list may be, but is not limited to, a data table or list information, and the like, where the automatic approval list includes device record information of a plurality of service-side devices registered in advance, and each device record information at least includes a device address and a device identifier of a corresponding service-side device. The service end device corresponding to the device record information registered in the automatic approval list may be, but is not limited to, a service end device that is trusted with respect to a service processing process. It should be noted that the contents, forms and properties of the device record information for the automatic approval list can be determined by those skilled in the art according to practical situations, and the above description is only an example and is not limiting.

Through the steps, the specific equipment address and equipment identification can be refined according to the granularity for judging whether the certificate can be automatically approved, and the equipment address and the equipment identification can clearly represent the identity of the equipment, so that the accuracy for judging whether the certificate can be automatically approved by applying the certificate can be improved, and the accuracy for installing the whole digital certificate can be indirectly improved.

In an optional embodiment, further comprising:

when judging that the automatic examination and approval of the certificate application is not carried out, sending the equipment information of the service end and the certificate request information sent by the service end to an examining and approving person so that the examining and approving person can carry out examination and approval based on the equipment information of the service end and the certificate request information and return a corresponding examination and approval result;

For example, the sending of the service end device information and the certificate request information sent by the service end to the approver may be, but is not limited to, sending the service end device information and the certificate request information to a terminal device of the approver or displaying specific contents of the service end device information and the certificate request information to the approver. It should be noted that, for a specific implementation manner of sending the service-side device information and the certificate request information sent by the service side to the approver, a person skilled in the art may determine the implementation manner according to actual situations, and the above description is only an example, and does not limit this.

For example, the judging whether the approval is passed based on the approval result may be, but is not limited to, analyzing the approval result input or sent by the approver, so as to determine whether the approval is passed. For example, if the approval result is text information, a flag corresponding to the approval result may be extracted by using a method such as semantic analysis, and then whether the approval is passed or not may be determined. For another example, if the approval result is the corresponding option information, it may be determined whether the approval is passed based on the option flag corresponding to the option information. It should be noted that, for a specific implementation manner of determining whether the approval is passed or not based on the approval result, the skilled person may determine according to actual situations, and the above description is only an example, and does not limit this.

Through the steps, when the automatic approval is not carried out, the related information can be transferred to the approval personnel for approval, so that when the automatic approval is not carried out, the whole steps can still be continuously executed without stagnation, and the normal and smooth operation of the business processing is facilitated. Moreover, when the automatic approval is judged to be impossible, the fact that the business end equipment submitting the request is not expected trusted business end equipment relative to the business processing process may mean that the business end equipment is handed over relevant information to an approval person to carry out approval in person, and safety of the whole digital certificate installation process is facilitated, so that the situation that unexpected equipment can smoothly use the digital certificate to carry out unexpected operation is reduced, and safety of the whole business processing is improved.

In an optional embodiment, the approving the certificate request information sent by the service end based on the preset approval condition and the service end device information includes:

Illustratively, the obtaining of the service end device address, the service end device identifier and the service end system information based on the service end device information may be, but is not limited to, analyzing the service end device information to obtain the service end device information including or corresponding to the service end device address, the service end device identifier and the service end system information. The service end system information may be, but is not limited to, system information of a service system to which the service end belongs or system information of an equipment system of the service end. The system information includes, but is not limited to, a system identifier (system ID or system name, etc.), a system type, a system version, and the like. It should be noted that, the specific implementation manner of obtaining the service end device address, the service end device identifier, the service end system information and the specific content and property of the service end system information based on the service end device information may be determined by those skilled in the art according to actual situations, and the above description is only an example, and does not limit this.

For example, the obtaining of the identifier of the certificate to be obtained and the type of the certificate to be obtained based on the certificate request information may be, but is not limited to, analyzing the certificate request information, and the obtained certificate request information includes or corresponds to the identifier of the certificate to be obtained and the type of the certificate to be obtained. The identifier of the certificate to be acquired may be, but is not limited to, a file name or a serial number of the certificate to be acquired, and may be determined by selection information performed by the service end for a certificate option (for example, an option or a check box in a pull-down selection form, an option in a radio box form, and the like). It should be noted that, for the specific implementation manner of obtaining the identifier and the type of the certificate to be obtained and the property of the identifier of the certificate to be obtained based on the certificate request information, may be determined by those skilled in the art according to actual situations, and the foregoing description is only an example, and does not limit this.

Through the steps, the method can refine the granularity of the application approval basis parameters to the service end equipment address, the service end equipment identifier and the service end system information which can fully represent the equipment identity and the equipment installation environment, and the certificate identifier to be acquired and the certificate type to be acquired which fully represent the certificate characteristics, fully considers that the installation of the certificate not only confirms that the installed service end equipment is trustable relative to the certificate, but also confirms that the whole environment of the service end equipment can be compatible with the installation rule of the certificate, thereby greatly improving the approval accuracy and further being beneficial to the smooth operation of the whole digital certificate installation process.

In an optional embodiment, the determining, according to the approval condition, whether the address of the service end device, the identifier of the service end device, and the information of the service end system correspond to the identifier of the certificate to be acquired or the type of the certificate to be acquired includes:

For example, according to the service end device address, the service end device identifier, the service end system information, and the approval condition, the multiple standard certificate identifiers and the multiple standard certificate types supported by the service end are determined, and the standard certificate identifiers and the multiple standard certificate types of the multiple certificates which allow the service end to be installed and which enable the service end to be smoothly compatible with the installation process are determined for but not limited to querying in the approval condition by using the service end device address, the service end device identifier, and the service end system information. It should be noted that, for a specific implementation manner for determining multiple standard certificate identifications and multiple standard certificate types supported by the service end according to the address of the service end device, the identifier of the service end device, the information of the service end system, and the approval condition, the specific implementation manner may be determined by a person skilled in the art according to an actual situation, and the foregoing description is only an example, and does not limit this.

Through the steps, the examination and approval conditions can be refined and analyzed, the certificate identification range and the type range of the certificate which are specified in the examination and approval conditions, allow the business end to be installed and enable the business end to be compatible with the certificate in the certificate installation process are determined, the double limiting ranges of the type and the identification are more refined and integrated for examination and approval, the business end equipment corresponding to the approved request is credible relative to the digital certificate requested by the business end equipment, and the digital frame number can be smoothly installed by the business end equipment, so that the accuracy of examination and approval is greatly improved, and the smooth operation of the whole digital certificate installation process is facilitated.

In an alternative embodiment, as shown in fig. 3, the determining a corresponding digital certificate based on the certificate request information includes the following steps:

s301: and obtaining the certificate identification to be obtained based on the certificate request information.

S302: and determining the corresponding digital certificate based on the certificate identifier to be acquired.

For example, in step S301, the certificate request information may be, but is not limited to, parsed to obtain the certificate request information including or corresponding to the certificate identifier to be obtained. It should be noted that, for the specific implementation manner of step S301, it can be determined by those skilled in the art according to practical situations, and the foregoing description is only an example, and is not limited thereto.

For example, the step S302 may be, but is not limited to, performing an inquiry by using the identifier of the certificate to be acquired, and determining the digital certificate corresponding to the identifier of the certificate to be acquired. It should be noted that, for the specific implementation manner of step S302, it can be determined by those skilled in the art according to practical situations, and the foregoing description is only an example, and is not limited thereto.

Through the steps, the information according to which the digital certificate is determined can be refined to the certificate identifier which has uniqueness and can fully represent the characteristics of the digital certificate, and the accuracy and the speed of determining the digital certificate are improved by virtue of the uniqueness advantage of the identifier and the advantage of facilitating information query, so that the accuracy and the speed of installing the whole digital certificate are improved.

In an optional embodiment, as shown in fig. 4, the correspondingly installing the digital certificate to the service end based on the installation logic, the service end device information, and the certificate request information includes the following steps:

s401: and obtaining the information of the service end system based on the information of the service end equipment.

S402: and obtaining the installation configuration information of the service terminal based on the certificate request information.

S403: and correspondingly installing the digital certificate to a service end based on the installation logic, the service end system information and the service end installation configuration information.

For example, in step S401, the service end device information may be, but is not limited to, analyzed to obtain service end system information included in or corresponding to the service end device information. It should be noted that, for the specific implementation manner of step S401, it can be determined by those skilled in the art according to practical situations, and the above description is only an example, and is not limited thereto.

For example, in step S402, the certificate request information may be, but is not limited to, parsed to obtain that the certificate request information includes or corresponds to service side installation configuration information. The service end installation configuration information includes, but is not limited to, a specific path of the digital certificate installed at the service end, application information of the service application expected to be applicable, and a service address expected to be applicable. It should be noted that, the specific implementation manner of step S402 and the specific content of the service end installation configuration information may be determined by those skilled in the art according to actual situations, and the above description is only an example, and does not limit this.

For example, the step S403 may be, but is not limited to, correspondingly inputting, associating or configuring the service end system information and the service end installation configuration information into the installation logic, and executing the installation logic, so as to complete the installation of the digital certificate based on the connection with the service end. For example, in the Windows system, the service end system information and the service end installation configuration information are correspondingly configured into the corresponding instruction of the Cerutil tool for execution, so as to complete the installation of the digital certificate. It should be noted that, for the specific implementation manner of step S403, it can be determined by those skilled in the art according to practical situations, and the above description is only an example, and is not limited thereto.

Preferably, when the digital certificate is issued and installed to the service end, the certificate request information may also be transmitted back to the service end.

Preferably, after the installation process of the digital certificate is completed, installation result information (success information or failure information) is automatically formed based on the specific situation of installation, and the installation result information is sent to the service end.

Through the steps, the system information closely related to the installation process and the installation configuration information fully expressing the expected installation configuration can be analyzed and obtained, and the corresponding installation is carried out by correctly using the installation logic, so that the installation of the digital certificate is in accordance with the expected relevant configuration on the basis of successfully, quickly and accurately completing the installation process of the digital certificate, the requirement of the whole business processing is better met, and the efficiency of the business processing is improved.

The following describes an implementation process of the service processing method based on the digital certificate according to the embodiment of the present invention, taking the service end 102 as an execution subject. It can be understood that the executing body of the service processing method based on the digital certificate provided by the embodiment of the present invention includes, but is not limited to, the service end 102.

Based on this, the embodiment of the present invention discloses a service processing method based on a digital certificate, as shown in fig. 5, the method specifically includes the following steps:

s501: sending service end equipment information and certificate request information to a server so that the server can judge whether to perform automatic certificate application approval according to the service end equipment information and a preset automatic approval list, and if so, performing approval on the certificate request information based on preset approval conditions and the service end equipment information; if the examination and approval are passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate based on the installation logic, the service end equipment information and the certificate request information.

S502: and performing service processing based on the digital certificate installed by the server.

According to the service processing method, the server, the service end and the system based on the digital certificate, whether automatic approval of certificate application is carried out or not is judged according to service end equipment information sent by the service end and a preset automatic approval list, if yes, the certificate request information sent by the service end is approved based on the preset approval condition and the service end equipment information, the rule that the equipment identity is the main part of the relevant authentication of service processing can be fully considered, whether automatic approval can be carried out or not is accurately judged according to the actual equipment information, the specific approval condition and the actual equipment information are used as the basis when the automatic approval can be carried out, automatic approval of certificate application is achieved, dependence on manpower is greatly reduced, the number of personnel circulation in the approval process is greatly reduced, time consumption in the approval process is reduced, the disadvantages of work experience and work capacity of personnel dependency on accuracy are overcome, the probability that the certificate is leaked due to manual circulation when the approval request and the certificate is issued is greatly reduced, the certificate application speed, the accuracy and the safety of certificate application are improved, and the overall certificate installation and safety of the certificate are improved; if the digital certificate passes the approval, the corresponding digital certificate is determined based on the certificate request information, so that the expected digital certificate of the corresponding service end can be automatically determined on the basis of the expected certificate request information of the characterization service end, the speed and the accuracy of determining the digital certificate are improved, and the speed and the accuracy of installing the whole digital certificate are improved; by determining the corresponding installation logic according to the type of the digital certificate, the rule that the installation mode of the digital certificate is closely related to the type of the digital certificate can be fully considered, the corresponding installation logic can be quickly and accurately determined in an automatic mode, the dependence on manpower is reduced, the problem that the installation is wrong due to the fact that the digital certificate is easily installed in a non-installation mode according to the type of the corresponding digital certificate when the digital certificate is installed manually is solved, and the speed and the accuracy of installing the whole digital certificate are improved; the digital certificate is correspondingly installed on the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing on the installed digital certificate, the rules closely related to the specific conditions of the installation process of the digital certificate and the installed equipment and the corresponding installation request expectation can be fully considered, the automatic installation of the digital certificate can be directly realized by using the determined installation logic in an automatic mode, the dependence on manpower can be reduced, the accurate installation information can be automatically filled and written in the installation process, the correct installation operation can be automatically realized, the speed and the accuracy of the installation of the whole digital certificate are greatly improved, the installed and correct digital certificate can be used in the subsequent service processing process more timely, and the service processing process can be favorably performed more smoothly. In summary, the service processing method, the server, the service end and the system based on the digital certificate provided by the invention can improve the speed, accuracy and safety of digital certificate installation, thereby improving the efficiency of overall service processing.

In an optional embodiment, the performing business processing based on the server-installed digital certificate includes:

Illustratively, the access is performed by using a digital certificate, which is a conventional technical means in the field and will not be described in detail here.

Illustratively, the business logic includes, but is not limited to, services, functions, or applications for processing the business. It should be noted that, the specific form of the service logic can be determined by those skilled in the art according to practical situations, and the foregoing description is only an example and is not limiting.

Through the steps, the digital certificate can be used for performing key access operation in the service processing process, so that the service processing process can be smoothly and accurately performed.

Based on the same principle, the embodiment of the present invention discloses a server 600, as shown in fig. 6, the server 600 includes:

the approval module 601 is configured to judge whether to perform automatic approval of certificate application according to the service end device information sent by the service end and a preset automatic approval list, and if yes, approve the certificate request information sent by the service end based on preset approval conditions and the service end device information;

an installation module 602, configured to determine, if the approval is passed, a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information so as to enable the service end to perform service processing based on the installed digital certificate.

In an optional embodiment, the approval module 601 is configured to:

In an optional embodiment, the system further comprises a manual approval module, configured to:

In an optional embodiment, the approval module 601 is configured to:

judging whether the service end equipment address, the service end equipment identifier and the service end system information correspond to the certificate identifier to be acquired or the type of the certificate to be acquired according to the approval condition, and if so, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing based on the installed digital certificate.

In an optional embodiment, the approval module 601 is configured to:

judging whether the standard certificate identification comprises the certificate identification to be obtained or the standard certificate type comprises the condition of the certificate type to be obtained, if so, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing based on the installed digital certificate.

In an optional embodiment, the installation module 602 is configured to:

Based on the same principle, the embodiment of the present invention discloses a service end 700, as shown in fig. 7, the service end 700 includes:

a request sending module 701, configured to send service end device information and certificate request information to a server, so that the server determines whether to perform automatic certificate application approval according to the service end device information and a preset automatic approval list, and if so, approves the certificate request information based on preset approval conditions and the service end device information; if the examination and approval is passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; correspondingly installing the digital certificate based on the installation logic, the service end equipment information and the certificate request information;

a service processing module 702, configured to perform service processing based on the digital certificate installed by the server.

In an optional implementation manner, the service processing module 702 is configured to:

The systems, apparatuses, modules or units described in the above embodiments may be specifically implemented by a computer chip or an entity, or implemented by a product with certain functions. A typical implementation device is a computer device, which may be, for example, a personal computer, laptop computer, cellular telephone, camera phone, smart phone, personal digital assistant, media player, navigation device, email device, game console, tablet computer, wearable device, or a combination of any of these devices.

In a typical example, the computer device comprises in particular a memory, a processor and a computer program stored on the memory and executable on the processor, which when executed by the processor implements the method as described above.

Referring now to FIG. 8, shown is a schematic diagram of a computer device 800 suitable for use in implementing embodiments of the present application.

As shown in fig. 8, the computer apparatus 800 includes a Central Processing Unit (CPU) 801 which can execute various appropriate jobs and processes in accordance with a program stored in a Read Only Memory (ROM) 802 or a program loaded from a storage section 808 into a Random Access Memory (RAM) 803. In the RAM803, various programs and data necessary for the operation of the system 800 are also stored. The CPU801, ROM802, and RAM803 are connected to each other by a bus 804. An input/output (I/O) interface 805 is also connected to bus 804.

The following components are connected to the I/O interface 805: an input portion 806 including a keyboard, a mouse, and the like; an output section 807 including a signal such as a Cathode Ray Tube (CRT), a liquid crystal feedback (LCD), and a speaker; a storage portion 808 including a hard disk and the like; and a communication section 809 including a network interface card such as a LAN card, a modem, or the like. The communication section 809 performs communication processing via a network such as the internet. A drive 810 is also connected to the I/O interface 805 as necessary. A removable medium 811 such as a magnetic disk, an optical disk, a magneto-optical disk, a semiconductor memory, or the like is mounted on the drive 810 as necessary, so that the computer program read out therefrom is mounted as necessary on the storage section 808.

In particular, according to an embodiment of the present invention, the processes described above with reference to the flowcharts may be implemented as computer software programs. For example, embodiments of the invention include a computer program product comprising a computer program tangibly embodied on a machine-readable medium, the computer program comprising program code for performing the method illustrated in the flow chart. In such an embodiment, the computer program can be downloaded and installed from a network through the communication section 809 and/or installed from the removable medium 811.

Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), static Random Access Memory (SRAM), dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), read Only Memory (ROM), electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), digital Versatile Disks (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium, which can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave.

For convenience of description, the above devices are described as being divided into various units by function, respectively. Of course, the functionality of the units may be implemented in one or more software and/or hardware when implementing the present application.

The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flowchart illustrations and/or block diagrams, and combinations of flows and/or blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.

These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrases "comprising a," "8230," "8230," or "comprising" does not exclude the presence of other like elements in a process, method, article, or apparatus comprising the element.

As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and so forth) having computer-usable program code embodied therein.

The application may be described in the general context of computer-executable instructions, such as program modules, being executed by a computer. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. The application may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program modules may be located in both local and remote computer storage media including memory storage devices.

All the embodiments in the present specification are described in a progressive manner, and the same and similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from other embodiments. In particular, as for the system embodiment, since it is substantially similar to the method embodiment, the description is relatively simple, and reference may be made to the partial description of the method embodiment for relevant points.

The above description is only an example of the present application and is not intended to limit the present application. Various modifications and changes may occur to those skilled in the art. Any modification, equivalent replacement, improvement or the like made within the spirit and principle of the present application shall be included in the scope of the claims of the present application.

Claims

1. A service processing method based on digital certificate is characterized in that the method comprises the following steps:

if the examination and approval are passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information so as to enable the service end to perform service processing based on the installed digital certificate.

2. The method of claim 1, wherein the determining whether to perform automatic approval of the certificate application according to the service-side device information sent by the service side and a preset automatic approval list comprises:

judging whether the automatic approval list has equipment record information corresponding to the service end equipment address and the service end equipment identifier or not;

3. The method of claim 1, further comprising:

4. The method according to claim 1, wherein the approving the certificate request information sent by the service end based on the preset approval condition and the service end device information comprises:

judging whether the service end equipment address, the service end equipment identifier and the service end system information correspond to the certificate identifier to be acquired or the certificate type to be acquired or not according to the approval condition, and if so, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information, so that the service end performs service processing based on the installed digital certificate.

5. The method according to claim 4, wherein the determining, according to the approval condition, whether the service-side device address, the service-side device identifier, and the service-side system information correspond to the identifier of the certificate to be acquired or the type of the certificate to be acquired includes:

6. The method of claim 1, wherein determining the corresponding digital certificate based on the certificate request information comprises:

and determining the corresponding digital certificate based on the certificate identification to be acquired.

7. The method according to claim 1, wherein the correspondingly installing the digital certificate to the service end based on the installation logic, the service end device information and the certificate request information comprises:

and correspondingly installing the digital certificate to a service end based on the installation logic, the service end system information and the service end installation configuration information.

8. A service processing method based on digital certificate is characterized in that the method comprises the following steps:

9. The method of claim 8, wherein the performing business processes based on the digital certificate installed by the server comprises:

10. A server, comprising:

the installation module is used for determining a corresponding digital certificate based on the certificate request information if the examination and approval is passed; determining corresponding installation logic according to the type of the digital certificate; and correspondingly installing the digital certificate to the service end based on the installation logic, the service end equipment information and the certificate request information so as to enable the service end to perform service processing based on the installed digital certificate.

11. A service end, comprising:

the request sending module is used for sending service end equipment information and certificate request information to the server so that the server can judge whether to automatically examine and approve the certificate application according to the service end equipment information and a preset automatic examination and approval list, and if so, the certificate request information is examined and approved based on preset examination and approval conditions and the service end equipment information; if the examination and approval are passed, determining a corresponding digital certificate based on the certificate request information; determining corresponding installation logic according to the type of the digital certificate; correspondingly installing the digital certificate based on the installation logic, the service end equipment information and the certificate request information;

12. A service processing system based on digital certificate is characterized by comprising a server and a service end;

13. A computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, characterized in that the processor implements the method according to any of claims 1-9 when executing the program.

14. A computer-readable medium, on which a computer program is stored which, when being executed by a processor, carries out the method according to any one of claims 1-9.

15. A computer program product, characterized in that the computer program product comprises a computer program which, when being executed by a processor, carries out the method of any one of claims 1-9.