CN115550925A - Reliable method, device and system for electronic signature of mobile phone - Google Patents

Reliable method, device and system for electronic signature of mobile phone Download PDF

Info

Publication number
CN115550925A
CN115550925A CN202211270371.2A CN202211270371A CN115550925A CN 115550925 A CN115550925 A CN 115550925A CN 202211270371 A CN202211270371 A CN 202211270371A CN 115550925 A CN115550925 A CN 115550925A
Authority
CN
China
Prior art keywords
electronic signature
mobile phone
electronic
signature
evidence
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202211270371.2A
Other languages
Chinese (zh)
Inventor
陈超
蒋晟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Tongtong Internet Technology Co ltd
Original Assignee
Shanghai Tongtong Internet Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Tongtong Internet Technology Co ltd filed Critical Shanghai Tongtong Internet Technology Co ltd
Priority to CN202211270371.2A priority Critical patent/CN115550925A/en
Publication of CN115550925A publication Critical patent/CN115550925A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
    • H04W8/20Transfer of user or subscriber data
    • H04W8/205Transfer to or from user equipment or user record carrier
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/085Secret sharing or secret splitting, e.g. threshold schemes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Databases & Information Systems (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention discloses a method, a device and a system for reliably signing an electronic signature of a mobile phone, wherein the method comprises the following steps: issuing and storing a mobile phone digital certificate; the electronic signer electronically signs the file; and writing the electronic signature evidence information picture into a signature domain of the PDF file. The method and the system reserve judicial evidence chains in the electronic signature process, for example, the evidence chains such as short message verification, face recognition and the like are reserved with public trust and cannot be tampered, and the evidence chain information is synchronously written into the signature file when the electronic signature is carried out and can be used as the evidence of judicial activities. In addition, the digital certificate contains authorization information, thereby avoiding the abuse of the electronic signature and improving the safety of the electronic signature.

Description

Reliable method, device and system for electronic signature of mobile phone
Technical Field
The invention relates to the field of electronic signatures, in particular to a reliable method, a device and a system for electronic signature of a mobile phone.
Background
Electronic signatures, like digital certificates used by us, are used as a means of identity verification, and generally refer to all electronic forms that exist in electronic form, are attached to and logically associated with electronic documents, and can be used to identify the identity of the signer of an electronic document, ensure the integrity of the document, and represent the content of the fact that the signer agrees with the electronic document. Generally, the electronic signature is recognized from a technical point of view. Mainly refers to a security measure for authenticating the identity of a party and ensuring that the content of transaction data is not tampered by a specific technical scheme. In a broad sense, the electronic signature includes not only "asymmetric key encryption" in the general sense of us, but also computer passwords, biometric handwriting recognition, fingerprint recognition, and newly appearing eye-iris perspective recognition, face-print recognition, and the like. The electronic signature technology, which is the most mature digital signature at present, is manufactured by an asymmetric cryptographic technology of a public key and a secret key. The electronic signature is an expression form of the electronic signature, the electronic signature operation is converted into a visual effect which is the same as the paper document stamping operation by using an image processing technology, and meanwhile, the authenticity and the integrity of electronic information and the non-repudiation of a signer are guaranteed by using the electronic signature technology.
The mode of a CA lock is adopted in the past for mobile phone electronic signature, and the physical medium is relatively safe, but the CA lock needs express delivery and the like, which are relatively troublesome during epidemic situations. In addition, the evidence chain and the authorization information cannot be stored in the using process of the electronic signature, so that the safety of the electronic signature is reduced, and certain defects exist.
Therefore, a method, an apparatus and a system for reliable electronic signature of a mobile phone are needed to solve the above problems.
Disclosure of Invention
The invention aims to provide a reliable method, a reliable device and a reliable system for electronic signature of a mobile phone, so as to realize convenience and safety of electronic signature use.
In order to solve the above technical problem, a first aspect of the present invention provides a reliable method for electronic signature of a mobile phone, which includes the following steps:
issuing and storing a mobile phone digital certificate;
the electronic signer electronically signs the file; and
and writing the electronic signature evidence information picture into the signature domain of the PDF file.
Further, in the step of issuing and storing the mobile phone digital certificate, the certificate is divided into a public key a and private keys B1 and B2, and after encryption, the certificate has a key form of a + B1 '+ B2', the a + B1 'is stored at the mobile phone end, the key a + B2' is reserved in the electronic seal management platform, and the private keys B1, B2 and B1 are destroyed.
Further, in the step of electronically signing the document by the electronic signer, an intermediate key is used for assisting to complete digital signature, and after the signature is completed, the intermediate key is destroyed.
Further, the intermediate key is obtained according to the change of the public key a and the private keys B1 and B2.
Further, the method also comprises the following steps: the chain of evidence preservation process.
Further, the evidence chain preservation process comprises: and verifying through at least one mode of short messages and face/fingerprint biological identification, generating a picture of electronic signature evidence information according to a verification result, and performing electronic signature according to the picture.
Furthermore, the picture of the electronic signature evidence information adopts transparent bottom and white characters, and the picture of the electronic signature evidence information is fixed at the corner of the PDF file.
The invention also provides a reliable device for electronic signature of the mobile phone, which comprises a handheld device, wherein an SIM card is arranged in the handheld device, and a communication channel is established between the handheld device and the server.
In a third aspect of the present invention, a system for reliably signing an electronic signature of a mobile phone is further provided, where the system includes an electronic signature module, an authentication module, an electronic signature module, and an electronic program required by the above modules to operate, and the electronic program is executed according to the method in the first aspect.
Compared with the prior art, the invention at least has the following beneficial effects:
the method and the system reserve the judicial evidence chain in the electronic signature process, for example, the evidence chain with the public credibility is reserved and cannot be tampered when short message verification, face recognition and the like are carried out, and the evidence chain information is synchronously written into the signature file when the electronic signature is carried out and can be used as the evidence of the judicial. In addition, the digital certificate contains authorization information, thereby avoiding the abuse of electronic signatures and greatly improving the safety of the electronic signatures.
Drawings
FIG. 1 is a flow chart of a method for reliable electronic signature of a mobile phone according to the present invention;
FIG. 2 is a flow chart of issuing and saving a digital certificate for a mobile phone according to an embodiment of the present invention;
FIG. 3 is a schematic diagram of an electronic signature process of a mobile phone according to an embodiment of the present invention;
fig. 4 is a schematic diagram of an evidence chain preservation process according to an embodiment of the present invention.
Detailed Description
The method, apparatus and system for secure electronic signature of a mobile phone of the present invention will now be described in more detail with reference to the accompanying schematic drawings, in which preferred embodiments of the invention are shown, it being understood that one skilled in the art may modify the invention herein described while still achieving the beneficial results of the present invention. Accordingly, the following description should be construed as broadly as possible to those skilled in the art and not as limiting the invention.
The invention is described in more detail in the following paragraphs by way of example with reference to the accompanying drawings. Advantages and features of the present invention will become apparent from the following description and from the claims. It is to be noted that the drawings are in a very simplified form and are not to precise scale, which is merely for the purpose of facilitating and distinctly claiming the embodiments of the present invention.
As shown in fig. 1, an embodiment of the present invention provides a reliable method for electronic signature of a mobile phone, including the following steps:
s100, issuing and storing a mobile phone digital certificate;
s200, an electronic signer electronically signs the file;
and S300, writing the electronic signature evidence information picture into a signature domain of the PDF file.
Specifically, in step S100, as shown in fig. 2, in an example, a user applies for a certificate on an electronic seal management platform, and the certificate can be issued by a third party CA after verification is not incorrect.
In addition, in the certificate handling process, the certificate is divided into a public key A and private keys B1 and B2, and can be downloaded to a supplier mobile phone APP in a code scanning mode to generate a mobile phone device certificate C. Correspondingly, a certificate D is also generated at the server side, the certificate has a secret key form of A + B1 + B2 through a double encryption form of the certificate C and the certificate D, the A + B1 is stored at the mobile phone side, the secret key A + B2 is reserved in the electronic seal management platform, and the private keys B1, B2 and B1 are destroyed, so that the application and storage processes of the certificate in the embodiment of the invention are realized.
Then, step S200 is executed, and the electronic signer electronically signs the file.
Specifically, an electronic signer performs electronic signature on a document to be signed through a handheld device (such as a mobile phone).
Referring to fig. 3, first, after system authentication, an electronic seal list is obtained on an electronic seal management platform, and further, the validity of a certificate is verified. And triggering to select the seal and the signature when the verification is passed. When the seal is used, according to a certificate number and a file hash value, a random number and a validity period are generated on an electronic seal management platform and stored in redis, according to the generated random number and the validity period, an electronic seal two-dimensional code is further generated, then, a mobile phone end scans the code and inputs a password, and decrypts the secret key under the condition that an intermediate secret key (in detail, see a secret key forming process in fig. 3) is matched, a check password is obtained, the hash is digitally signed according to the secret key, and the intermediate secret key is destroyed after the signature is completed. Then, a query can be made according to the random number to verify whether the digital signature completes the polling.
Then, step S300 is executed to write the electronic signature evidence information picture into the signature domain of the PDF file. Thus, the PDF electronic signature is synthesized and the electronic signature is completed.
Further, in the embodiment of the invention, the evidence chain preservation process is also related.
Specifically, as shown in fig. 4, the verification may be performed through short message verification, face/fingerprint and other biometric identification methods, so as to implement digital certificate validity verification, digital certificate authorized use range verification, verification of the hash value of the electronic seal and the digital certificate, digital certificate password verification, etc., and generate a picture of electronic signature evidence information for information of the authentication result, such as a short message verification code, a mobile phone number for sending verification, sending time, etc., and perform electronic signature accordingly.
Further, the timestamp may also be invoked upon electronic signature, thereby preserving more comprehensive evidence.
The verification process and results may be written into the signature field of the signature file as a judicial proof.
The electronic signature information used by the electronic signer can be traced back through the electronic signature evidence information picture subsequently, and the traceability of the evidence chain information is realized.
In the embodiment of the invention, the electronic signature evidence information picture is written into the signature domain of the PDF file (format file), and the digital certificate is adopted for electronic signature. After the file formally carries out electronic signature, the file not only has the information of legal electronic signature and electronic signature, but also writes the related evidence chain information in the signature domain, and cannot be tampered because the file is electronically signed.
Because the evidence information of the electronic signature is generated into a picture, the picture is placed in a signature domain of the PDF file and is electronically signed, so that the picture cannot be tampered; meanwhile, after downloading through a handheld device (such as a mobile phone), the owner of the file presents the file, and the file not only has legal electronic signatures but also has all legal evidence information.
The PDF file adopts a format file, the format file format is an electronic file format with a fixed layout presentation effect, the presentation of the format file is irrelevant to equipment, and the presentation results of the layout are consistent when the PDF file is read, printed or printed on various equipment. The layout document is mainly applied to publishing, spreading and archiving the file after the file becomes text. The information security of the electronic signature evidence is effectively ensured by using the method of what you see is what you get.
In addition, the electronic signature evidence information adopts transparent bottom and white characters, is fixed at a certain corner, cannot be seen normally, and can be seen only after being selected. The electronic signature evidence information clearly shows the authorization information of the electronic signature, so that the problem of legal validity of the electronic seal is solved; the electronic signature of the mobile phone version solves the problem of safe certificate storage in the mobile phone and carries out legal electronic signature.
In an optional embodiment, the device for reliably signing the electronic signature of the mobile phone comprises a handheld device, wherein a SIM card is arranged in the handheld device, and a communication channel is established between the handheld device and a server.
It should be noted that the handheld device may be a mobile phone, and is used for performing face recognition, short message verification, and code scanning authentication operations, so as to ensure that the whole electronic signature operation is performed smoothly. In addition, the handheld device also serves as a storage end of the digital certificate.
The invention also provides a reliable system for mobile phone electronic signature, which comprises an electronic signature module, an authentication module, an electronic signature module and an electronic program required by the operation of the modules, wherein the execution method of the electronic program realizes the method for adopting the reliable mobile phone electronic signature.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.

Claims (9)

1. A reliable method for electronic signature of mobile phone is characterized by comprising the following steps:
issuing and storing a mobile phone digital certificate;
the electronic signer electronically signs the file; and
and writing the electronic signature evidence information picture into the signature domain of the PDF file.
2. The method according to claim 1, wherein in the step of issuing and storing the digital certificate of the mobile phone, the certificate is divided into a public key a and private keys B1 and B2, and after encryption, the certificate has a key form of a + B1"+ B2", stores a + B1 "to the mobile phone side, retains the keys a + B2" in the electronic seal management platform, and destroys the private keys B1, B2, and B1".
3. The method according to claim 2, wherein the step of electronically signing the document by the electronic signer includes performing digital signature with the aid of an intermediate key, and destroying the intermediate key after the signature is completed.
4. The method of claim 3, wherein the intermediate key is derived from a variation of the public key A and the private keys B1 and B2.
5. The method of securing an electronic signature of a mobile phone according to claim 1, further comprising: the chain of evidence preservation process.
6. The method of reliable mobile phone electronic signature as recited in claim 5, wherein said evidence chain preservation process comprises: and verifying through at least one mode of short messages and face/fingerprint biological identification, generating a picture of electronic signature evidence information according to a verification result, and performing electronic signature according to the picture.
7. The method as claimed in claim 6, wherein the picture of the electronic signature evidence information adopts transparent background and white characters, and the picture of the electronic signature evidence information is fixed at the corner of the PDF file.
8. A reliable electronic signature device of a mobile phone is characterized by comprising a handheld device, wherein an SIM card is arranged in the handheld device, and a communication channel is established between the handheld device and a server.
9. A system for reliable electronic signature of mobile phone, comprising an electronic signature module, an authentication module, an electronic signature module and an electronic program required by the above modules, wherein the electronic program executes the method for reliable electronic signature of mobile phone according to any one of claims 1 to 7.
CN202211270371.2A 2022-10-18 2022-10-18 Reliable method, device and system for electronic signature of mobile phone Pending CN115550925A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211270371.2A CN115550925A (en) 2022-10-18 2022-10-18 Reliable method, device and system for electronic signature of mobile phone

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211270371.2A CN115550925A (en) 2022-10-18 2022-10-18 Reliable method, device and system for electronic signature of mobile phone

Publications (1)

Publication Number Publication Date
CN115550925A true CN115550925A (en) 2022-12-30

Family

ID=84735954

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211270371.2A Pending CN115550925A (en) 2022-10-18 2022-10-18 Reliable method, device and system for electronic signature of mobile phone

Country Status (1)

Country Link
CN (1) CN115550925A (en)

Similar Documents

Publication Publication Date Title
EP2924604B1 (en) Electronic biometric (dynamic) signature references enrollment method
CN110276588B (en) Electronic signature authentication method and device and computer readable storage medium
US7178030B2 (en) Electronically signing a document
US8285991B2 (en) Electronically signing a document
US9361509B2 (en) Electronic signature authentication method and system
US20190005268A1 (en) Universal original document validation platform
JP3754565B2 (en) Electronic seal mark authentication system
US10979421B2 (en) Identity authentication using a barcode
US20110289318A1 (en) System and Method for Online Digital Signature and Verification
CN104021482A (en) Certificate false-proof verification method base on identification authentication technology
CN105635187B (en) Method and device for generating electronic file with stamp and method and device for authenticating electronic file with stamp
CN113438088A (en) Social network credit monitoring method and device based on block chain distributed identity
WO2007034255A1 (en) Method, apparatus and system for generating a digital signature linked to a biometric identifier
WO2011005869A2 (en) Method and system for generating and using biometrically secured embedded tokens in documents
CN114329634A (en) Anti-counterfeiting method for electronic signature document
US8578168B2 (en) Method and apparatus for preparing and verifying documents
KR20130011868A (en) Method for generating electronic document available at mobile devices and device of producing the same
JP2000215280A (en) Identity certification system
CN106559433B (en) Method and system for fixing electronic evidence and user identity by using digital certificate
JP2002236868A (en) Electronic seal system and recording medium for recording electronic seal program
JP2009535898A (en) Secure signature
CN115550925A (en) Reliable method, device and system for electronic signature of mobile phone
JP2003134108A (en) Electronic signature, apparatus and method for verifying electronic signature, program and recording medium
WO2023049296A2 (en) Secure signing method, device and system
TWI677842B (en) System for assisting a financial card holder in setting password for the first time and method thereof

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination