CN117056899A - Electronic certificate generation method and device - Google Patents

Electronic certificate generation method and device Download PDF

Info

Publication number
CN117056899A
CN117056899A CN202311311801.5A CN202311311801A CN117056899A CN 117056899 A CN117056899 A CN 117056899A CN 202311311801 A CN202311311801 A CN 202311311801A CN 117056899 A CN117056899 A CN 117056899A
Authority
CN
China
Prior art keywords
data
electronic certificate
standard
standardized
electronic
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202311311801.5A
Other languages
Chinese (zh)
Inventor
魏永强
雷瑞恒
罗攀峰
曾纪才
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Ctj Info Tech Co ltd
Original Assignee
Beijing Ctj Info Tech Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Ctj Info Tech Co ltd filed Critical Beijing Ctj Info Tech Co ltd
Priority to CN202311311801.5A priority Critical patent/CN117056899A/en
Publication of CN117056899A publication Critical patent/CN117056899A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/604Tools and structures for managing or administering access control systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Automation & Control Theory (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention provides a method and a device for generating an electronic certificate, which relate to the technical field of electronic certificates, and the method comprises the following steps: determining a standardized electronic voucher data format of each service data based on the service type and the service data attribute of each service data corresponding to the electronic voucher; determining a standardized electronic certificate generation flow of each service data based on the service scene of each service data; determining a generation system of the electronic certificate according to the standardized electronic certificate generation flow and data format standards, data element standards, data signature standards, data security standards and data management standards in the standardized electronic certificate data format; and inputting each business data into a generating system to obtain a standardized electronic certificate, thereby realizing the standardization of the electronic certificate, preventing the information of the electronic certificate from being tampered, forged or leaked and ensuring the authenticity of the electronic certificate based on the standardized electronic certificate data format and the generating system determined by the standardized electronic certificate generating flow.

Description

Electronic certificate generation method and device
Technical Field
The present invention relates to the field of electronic certificates, and in particular, to a method and apparatus for generating an electronic certificate, an electronic device, and a storage medium.
Background
With the popularization of electronic commerce and the acceleration of the digitizing process, electronic certificates are becoming an important component in financial management, however, there are some problems in accounting processing of electronic certificates at present. First, the data formats of electronic certificates are not uniform, and different electronic certificate data may have different fields and formats, which makes automated processing and analysis of accounting data difficult. Second, the data of the electronic voucher may be subject to errors or tampering, which can affect the accuracy and reliability of the accounting data. Therefore, a more reliable method for generating electronic certificates is needed.
Disclosure of Invention
The present invention aims to solve at least one of the technical problems in the related art to some extent.
Therefore, a first object of the present invention is to provide a method for generating an electronic certificate, which is based on a standardized electronic certificate data format and a standardized electronic certificate generation flow determining generation system, so as to realize the standardization of the electronic certificate, prevent the information of the electronic certificate from being tampered, forged or leaked, and ensure the authenticity of the electronic certificate.
A second object of the present invention is to provide an electronic certificate generating apparatus.
A third object of the present invention is to propose an electronic device.
A fourth object of the present invention is to propose a non-transitory computer readable storage medium storing computer instructions.
To achieve the above object, an embodiment of a first aspect of the present invention provides a method for generating an electronic certificate, including:
acquiring a plurality of service data corresponding to the electronic certificate, and determining a standardized electronic certificate data format of each service data based on the service type and the service data attribute of each service data, wherein the standardized electronic certificate data format comprises a data format standard, a data element standard, a data signature standard, a data security standard and a data management standard;
after determining the standardized electronic certificate data format of each service data, determining the standardized electronic certificate generation flow of each service data based on the service scene of each service data;
determining a generation system of the electronic certificate according to the standardized electronic certificate generation flow and the data format standard, the data element standard, the data signature standard, the data security standard and the data management standard;
and inputting the plurality of business data into the electronic certificate generation system to obtain standardized electronic certificates corresponding to the business data.
To achieve the above object, an embodiment of a second aspect of the present invention provides an apparatus for generating an electronic certificate, including:
the first determining module is used for obtaining a plurality of service data corresponding to the electronic certificate, and determining standardized electronic certificate data formats of the service data based on the service type and the service data attribute of the service data, wherein the standardized electronic certificate data formats comprise a data format standard, a data element standard, a data signature standard, a data security standard and a data management standard;
the second determining module is used for determining the standardized electronic certificate generation flow of each service data based on the service scene of each service data after determining the standardized electronic certificate data format of each service data;
the third determining module is used for determining a generating system of the electronic certificate according to the standardized electronic certificate generating flow and the data format standard, the data element standard, the data signature standard, the data security standard and the data management standard;
and the generation module is used for inputting a plurality of service data into the generation system of the electronic certificate so as to obtain standardized electronic certificates corresponding to the service data.
To achieve the above object, an embodiment of a third aspect of the present invention provides an electronic device, including: at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor to enable the at least one processor to perform the method of the first aspect.
To achieve the above object, an embodiment of a fourth aspect of the present invention proposes a non-transitory computer-readable storage medium storing computer instructions for causing the computer to execute the method according to the first aspect.
The method, the device, the electronic equipment and the storage medium for generating the electronic certificate provided by the embodiment of the invention determine the standardized electronic certificate data format of each service data based on the service type and the service data attribute of each service data corresponding to the electronic certificate; determining a standardized electronic certificate generation flow of each service data based on the service scene of each service data; determining a generation system of the electronic certificate according to the standardized electronic certificate generation flow and data format standards, data element standards, data signature standards, data security standards and data management standards in the standardized electronic certificate data format; and inputting each business data into a generating system to obtain a standardized electronic certificate, thereby realizing the standardization of the electronic certificate, preventing the information of the electronic certificate from being tampered, forged or leaked and ensuring the authenticity of the electronic certificate based on the standardized electronic certificate data format and the generating system determined by the standardized electronic certificate generating flow.
Additional aspects and advantages of the invention will be set forth in part in the description which follows and, in part, will be obvious from the description, or may be learned by practice of the invention.
Drawings
The foregoing and/or additional aspects and advantages of the invention will become apparent and readily appreciated from the following description of the embodiments, taken in conjunction with the accompanying drawings, in which:
fig. 1 is a flowchart of a method for generating an electronic certificate according to an embodiment of the present invention;
FIG. 2 is a flowchart illustrating another method for generating electronic certificates according to an embodiment of the present invention;
fig. 3 is a schematic structural diagram of an electronic certificate generating device according to an embodiment of the present invention.
Detailed Description
Embodiments of the present invention are described in detail below, examples of which are illustrated in the accompanying drawings, wherein like or similar reference numerals refer to like or similar elements or elements having like or similar functions throughout. The embodiments described below by referring to the drawings are illustrative and intended to explain the present invention and should not be construed as limiting the invention.
The technical scheme of the invention is to acquire, store, use, process and the like data, which all meet the relevant regulations of national laws and regulations.
The following describes a method, an apparatus, an electronic device and a storage medium for generating an electronic certificate according to an embodiment of the present invention with reference to the accompanying drawings.
Fig. 1 is a flowchart of a method for generating an electronic certificate according to an embodiment of the present invention.
As shown in fig. 1, the method comprises the steps of:
step 101, obtaining a plurality of service data corresponding to the electronic certificate, and determining a standardized electronic certificate data format of each service data based on the service type and the service data attribute of each service data, wherein the standardized electronic certificate data format comprises a data format standard, a data element standard, a data signature standard, a data security standard and a data management standard.
Optionally, the electronic certificate refers to a certificate generated, transmitted and stored in an electronic way, and the electronic certificate comprises an electronic invoice, an electronic bill, an electronic contract and the like. The standardization of the electronic certificate data format is beneficial to improving the security, reliability and interoperability of the electronic certificate, and promoting the wide application and communication of the electronic certificate.
Alternatively, the service types of the respective service data may include, but are not limited to, value-added tax electronic general invoice, value-added tax electronic special invoice, digital ticket (without railway electronic ticket, air transportation electronic ticket travel itinerary), digital ticket (railway electronic ticket), digital ticket (air transportation electronic ticket travel itinerary), financial electronic ticket, electronic non-tax payment general payment book, bank electronic receipt, and bank electronic statement, which the embodiment is not particularly limited to.
Optionally, the data signature standard specifies a file format, a data structure, and an encoding manner of the electronic certificate, and specifically, the data format standard may include basic fields of a certificate number, a date, a abstract, an accounting subject, an amount, and the like, but is not limited thereto.
Optionally, the data element standard specifies data elements contained in the electronic voucher, such as, but not limited to, invoice code, invoice date, invoice amount, and the like.
Optionally, the data signature standard specifies a signature manner and a signature algorithm of the electronic certificate so as to ensure the authenticity and legality of the electronic certificate.
Optionally, the data security standard specifies data encryption measures, data decryption measures, and a data digital signature algorithm for the electronic certificate to ensure data security for the electronic certificate.
Optionally, the data management standard specifies a data management flow, a storage manner and a backup policy of the electronic certificate, so as to ensure the data reliability and the restorability of the electronic certificate.
Therefore, the implementation of the standardized electronic certificate data format can improve the efficiency and accuracy of enterprise financial management, reduce the management cost, and simultaneously facilitate the promotion of financial digitization transformation and the realization of financial informatization. Electronic vouchers have the advantage of their security, convenience and environmental protection and energy saving. Through the data signature standard and the data security standard, the electronic certificate can ensure the secure transmission and storage of information and prevent the information from being tampered and forged. Meanwhile, the electronic certificate can be easily created, sent and received on the Internet and digital equipment, so that the transaction efficiency and convenience are greatly improved, and complicated paper flow and resource waste are avoided. However, in order to ensure the authenticity and trustworthiness of electronic certificates, standardization and normalization thereof becomes particularly important. The electronic certificate can be effectively transferred, exchanged and verified between different systems and platforms by adopting the technical means of unified data format standard, data element standard, data signature standard, data security standard, data management standard and the like, which is the basis of digital economic development and commercial transaction security.
Wherein electronic certificates are standardized and normalized (standardized electronic certificate data formats) in such a way that electronic certificates can be effectively transferred, exchanged and verified between different systems, platforms and organizations, and the following techniques are involved:
in a first aspect, the data security standard employs digital signature and encryption techniques: digital signatures are a technique to ensure the integrity and authenticity of electronic certificates. The generator signs the credential using the private key and the receiver verifies the validity of the signature using the public key. Common digital signature algorithms include RSA and DSA. Encryption techniques are used to protect sensitive information from unauthorized access during transmission and storage. The confidentiality of the data is ensured by using a combination of symmetric encryption and asymmetric encryption.
Specifically, in the case that the digital signature algorithm is RSA and the encryption technology is AES-256, one implementation procedure of the data security standard may be that a private key and a public key are generated by using the RSA algorithm, the private key is used for digital signature, and the public key is used for verifying digital signature; encrypting the electronic credential data using an AES-256 encryption algorithm; the encrypted electronic certificate data and the digital signature are combined into an electronic certificate, and an RSA algorithm is used for protecting a private key and a certificate of the digital signature; after receiving the electronic certificate, the receiver decrypts the digital signature private key and the certificate by using an RSA algorithm, and then verifies the digital signature by using an SHA-256 algorithm; if the digital signature verification is successful, the receiver decrypts the encrypted electronic certificate data by using an RSA algorithm and then verifies and checks by using a CRC32 algorithm; if the encrypted electronic certificate data and the digital signature are successfully verified, the electronic certificate is considered to be true and valid. Otherwise, there is tampering or forgery.
In a second aspect, the data management standard uses a time stamping technique for storage: the timestamp is to ensure the temporal relevance of the electronic certificate. A trusted time stamp service (such as that provided by a digital certificate authority) will record the generation time when the electronic certificate is generated and sign the time stamp to subsequently prove the generation time of the electronic certificate. The time stamp server can verify the time information of the electronic certificate, and ensure that the generation, modification or verification time of the electronic certificate is consistent with the actual time, thereby avoiding the electronic certificate from being tampered or forged. The electronic credential timestamp may determine the expiration date of the electronic credential, e.g., invalid before or after a certain point in time. In digital signing, the timestamp server can verify the identity of the signer and ensure that the electronic certificate timestamp signed by the signer is legal.
In a third aspect, metadata recording techniques are used in the data element standard: the data element record contained in the electronic voucher may be used to describe the content and attributes of the electronic voucher, such as the unique identifier of the electronic voucher, the issuing authority, the date of issuance, and the like. The data element record contained in the electronic certificate may be used to determine the authenticity and integrity of the electronic certificate, such as by verifying the authenticity and integrity of the electronic certificate via digital signature techniques. The data element record contained in the electronic voucher may be used to protect the privacy of the electronic voucher, e.g. by means of encryption techniques, the content of the electronic voucher being protected from unauthorized access. The data element record contained in the electronic voucher is typically stored at the head or tail of the electronic voucher file, encoded and stored in a specific format. These data element records may be read and parsed by a particular software tool for use in verifying electronic certificates.
In a fourth aspect, the storage means in the data management standard uses verifiable database technology: distributed storage and non-tamper-evident of electronic vouchers can be achieved using verifiable database technologies, such as blockchains. The block chain technology ensures the safety and the credibility of the data through a hash algorithm and a consensus mechanism.
In the fifth aspect, the signature mode in the data signature standard uses tamper-proof measure technology: the digital signature may ensure the integrity and authenticity of the electronic voucher content as well as the identity of the sender. Using digital signature techniques, a digital signature may be generated and attached to the electronic certificate so that the verifier can verify the authenticity and integrity of the digital signature. We can also restrict access to electronic certificates through access control. By means of passwords, rights and the like, it can be ensured that only authorized users can access the electronic certificates. This prevents unauthorized users from obtaining information of the electronic certificate. The hash algorithm may convert the data to a fixed length hash value to verify whether the data has been tampered with. In the field of electronic vouchers, hash algorithms may be used to protect the integrity of the voucher content. If the credential content is tampered with, the hash value may change so that tampering may be detected.
In the sixth aspect, the storage mode and the backup policy in the data management standard use the secure transmission and storage technology: secure transport protocols (e.g., HTTPS) are used to ensure encryption and security of credentials during transport. For storage, a secure database and file system should be selected and the data cryptographically protected against unauthorized access, such as blockchain. For some sensitive electronic credential data, the data can be stored in a secure physical location, such as an encrypted usb disk, a secure server, etc., in an offline storage manner. This may reduce the risk of electronic credential data leakage. The electronic certificates are regularly backed up, and backup data are stored in a safe place. Therefore, the electronic certificate can be prevented from being lost due to equipment failure, human misoperation and the like. Meanwhile, in order to ensure the safe transmission and storage of the electronic certificates, the system and the network are required to be subjected to security inspection and vulnerability restoration at regular intervals so as to prevent malicious attacks.
In a seventh aspect, the storage mode and the backup policy in the data management standard use a data backup and recovery technology: in the electronic certificate corresponding system, the electronic certificate data can be backed up periodically, and the electronic certificate data can be backed up to a safe place, such as a backup server, cloud storage and the like. The backup can adopt two modes of full backup and incremental backup, wherein the full backup is used for backing up all electronic credential data, and the incremental backup is used for backing up only the electronic credential data newly added since the last backup. The backup electronic credential data should be stored in a secure location, such as an encrypted USB flash disk, a secure server internal, etc. The backup electronic voucher data can be stored in multiple places if possible to ensure the security and reliability of the electronic voucher data. If the electronic credential data is accidentally lost or damaged, data recovery can be performed by backing up the electronic credential data. When the data is restored, the latest backup electronic certificate data is required to be selected and restored to the corresponding system of the electronic certificate.
In addition, an audit and monitoring mechanism can be established: an audit mechanism is established, and the generation, access and modification conditions of the electronic certificate are recorded so as to monitor the use condition of the electronic certificate data and discover potential safety problems. Checking the authenticity of the electronic certificate, and preventing falsification, forging and impersonation. And checking the accuracy of the electronic certificate, and ensuring the consistency and the accuracy of the data. And checking the legitimacy of the electronic certificate, and ensuring that the electronic certificate accords with laws and regulations and standards. And the security of the electronic certificate is checked, and data leakage, damage and malicious attack are prevented. Monitoring and alarming are carried out on the electronic certificate corresponding system, abnormal conditions are found and processed in time, and the safety and reliability of electronic certificate data are guaranteed.
The electronic certificate data is subjected to strict user authority management, so that only authorized personnel can access and operate the electronic certificate data, and internal abusing authorities and external attacks are prevented. And the user of the electronic certificate corresponding system carries out authority management so as to control the operations of accessing, modifying, deleting and the like of the electronic certificate data by the user. And carrying out electronic credential data access control on the user, and limiting the unauthorized user to access specific electronic credential data. The security and confidentiality of the electronic certificate data are ensured, and unauthorized users are prevented from accessing and revealing the data.
Step 102, after determining the standardized electronic certificate data format of each service data, determining a standardized electronic certificate generation flow of each service data based on the service scenario of each service data.
Alternatively, the service scenario of each service data may be an application field of the service data, such as medical registration, transportation trip, and market payment, but not limited thereto.
Optionally, after determining the standardized electronic certificate data format of each service data, the electronic certificate generation flow needs to be combed to ensure that the flows of electronic certificate generation, approval, archiving and the like meet the standardized requirements. This may require adjustments and optimizations to existing business processes to meet standardization requirements. According to different business scenes, the type and the purpose of the electronic certificate are determined, such as medical registration, transportation trip, market payment and the like, so that the accurate establishment of the standardized electronic certificate generation flow of each business data is realized.
Step 103, determining the generation system of the electronic certificate according to the standardized electronic certificate generation flow and the data format standard, the data element standard, the data signature standard, the data security standard and the data management standard.
Optionally, the electronic certificate generation system is developed according to the standardized electronic certificate generation flow and the data format standard, the data element standard, the data signature standard, the data security standard and the data management standard in the standardized electronic certificate data format so as to support the functions of electronic certificate generation, approval, archiving and the like. The generation system needs to be integrated with a financial system, an ERP system and the like of an enterprise to realize automatic processing. The requirements and functions of the generation system of the electronic certificate are defined, and the requirements and functions comprise links of generation, signature, encryption, transmission, storage, use and the like of the electronic certificate, and factors such as safety, reliability and practicability of the generation system. According to the requirements and functions of the electronic certificate generation system, a proper technical framework and development language are selected, such as Java, C#, python and the like.
And 104, inputting the plurality of business data into a generation system of the electronic certificate to obtain standardized electronic certificates corresponding to the business data.
Optionally, the standardized electronic certificates corresponding to the respective business data may include billing certificates, daily billing, raw material statement, product cost accounting tables, and the like. The standardized electronic certificates corresponding to the business data can automatically generate report contents, and the accuracy and consistency of the accounting data are improved.
Furthermore, the user can know the requirement and the use condition of the standardized electronic certificate by monitoring the use condition of the standardized electronic certificate, including the use amount, the use frequency, the use scene and the like, and data support is provided for improving the generation system of the electronic certificate. The reasons and the solutions of the problems are found out by analyzing the problems in the use process of the standardized electronic certificate, including the problems of inconvenient use, imperfect functions, safety and the like, and guidance is provided for improving the generation system of the electronic certificate. According to the monitoring and analysis results, the functions of the electronic certificate generation system are improved, and meanwhile, the propaganda and training of standardized electronic certificate monitoring and improvement work are required to be enhanced, so that the monitoring and improvement capability of related personnel is improved.
In some embodiments, before entering the plurality of business data into the electronic voucher generation system, the user needs to be trained to ensure that they are familiar with the method of use and flow of operation of the electronic voucher generation system. In addition, a supporting mechanism needs to be established to solve the problems encountered by the user in the use process in time. Special supporting hotlines and mailboxes are established to provide technical support and consultation services for users, and help users solve problems and difficulties encountered in generating systems using electronic certificates. Through the mode of online training and answering, more flexible and convenient support and service are provided for the user, and the user is helped to better master the use and the skill of the electronic certificate generation system.
According to the method for generating the electronic certificate, disclosed by the embodiment of the invention, the standardized electronic certificate data format of each service data is determined based on the service type and the service data attribute of each service data corresponding to the electronic certificate; determining a standardized electronic certificate generation flow of each service data based on the service scene of each service data; determining a generation system of the electronic certificate according to the standardized electronic certificate generation flow and data format standards, data element standards, data signature standards, data security standards and data management standards in the standardized electronic certificate data format; and inputting each business data into a generating system to obtain a standardized electronic certificate, thereby realizing the standardization of the electronic certificate, preventing the information of the electronic certificate from being tampered, forged or leaked and ensuring the authenticity of the electronic certificate based on the standardized electronic certificate data format and the generating system determined by the standardized electronic certificate generating flow.
For clarity of explanation of the above embodiment, fig. 2 is a flow chart of another method for generating electronic certificates according to an embodiment of the present invention.
Step 201, obtaining a plurality of service data corresponding to the electronic certificate, and determining a standardized electronic certificate data format of each service data based on the service type and the service data attribute of each service data, wherein the standardized electronic certificate data format comprises a data format standard, a data element standard, a data signature standard, a data security standard and a data management standard.
Step 202, after determining the standardized electronic certificate data format of each service data, determining a standardized electronic certificate generation flow of each service data based on the service scenario of each service data.
Step 203, determining the generation system of the electronic certificate according to the standardized electronic certificate generation flow and the data format standard, the data element standard, the data signature standard, the data security standard and the data management standard.
Step 204, inputting the plurality of service data into the electronic certificate generation system to obtain standardized electronic certificates corresponding to the service data.
It should be noted that, regarding the specific implementation of steps 201 to 204, reference may be made to the related description in the above embodiments.
Step 205, obtaining an electronic certificate digital certificate issued by the trusted authority corresponding to the electronic certificate.
Optionally, the electronic certificate digital certificate is typically issued by an authority, such as a certificate authority (Certificate Authority, CA), which may provide an authoritative electronic document for authentication over the internet for proving the authenticity and integrity of the electronic certificate. Such as the name of the certificate holder, an identification number, a mailbox address, etc.
Step 206, based on the electronic certificate digital certificate, verifying the standardized electronic certificate to determine whether the standardized electronic certificate is authentic.
Optionally, the electronic certificate digital certificate refers to a digital certificate used to verify the authenticity and integrity of the electronic certificate. The electronic certificate digital certificate can be used for verifying the authenticity of the electronic certificate, so that the electronic certificate content is ensured not to be tampered or forged. Electronic vouchers digital certificates may be used to protect the privacy of electronic vouchers, for example by using encryption techniques to protect the contents of electronic vouchers from unauthorized access.
In step 207, in the event that the standardized electronic certificate is authentic, the standardized electronic certificate is stored in the blockchain.
Optionally, after the standardized electronic certificates are stored in the blockchain, regular backup is performed so as to facilitate later inquiry, audit or recovery, and meanwhile, the standardized electronic certificates corresponding to each service data are attached with time stamps for proving the generation time of the standardized electronic certificates, so that the generation, modification or verification time of the standardized electronic certificates is ensured to be consistent with the actual time, and the standardized electronic certificates are prevented from being tampered or forged.
Optionally, technologies such as secure multiparty computing (e.g. SMPC, secureNN, etc.) can be introduced to realize secret information sharing and secure verification in a distributed environment in the blockchain, so as to prevent information of the standardized electronic certificate from being tampered, forged or revealed.
According to the method for generating the electronic certificate, disclosed by the embodiment of the invention, the standardized electronic certificate data format of each service data is determined based on the service type and the service data attribute of each service data corresponding to the electronic certificate; determining a standardized electronic certificate generation flow of each service data based on the service scene of each service data; determining a generation system of the electronic certificate according to the standardized electronic certificate generation flow and data format standards, data element standards, data signature standards, data security standards and data management standards in the standardized electronic certificate data format; inputting each service data into a generating system to obtain a standardized electronic certificate, and obtaining an electronic certificate digital certificate issued by a trusted authority corresponding to the electronic certificate; verifying the standardized electronic certificate based on the electronic certificate digital certificate to determine whether the standardized electronic certificate is authentic; in the event that the standardized electronic voucher is authentic, the standardized electronic voucher is stored in the blockchain. Therefore, based on the standardized electronic certificate data format, the standardized electronic certificate generation flow-determined generation system and the real standardized electronic certificate after the electronic certificate digital certificate is verified, the authenticity and the legality of the electronic certificate are ensured, and the credibility and the reliability of the standardized electronic certificate transaction are increased.
In order to achieve the above embodiment, the present invention further provides a device for generating an electronic certificate.
Fig. 3 is a schematic structural diagram of an electronic certificate generating device according to an embodiment of the present invention.
As shown in fig. 3, the electronic certificate generation apparatus 30 includes: a first determination module 31, a second determination module 32, a third determination module 33, and a generation module 34.
The first determining module is used for obtaining a plurality of service data corresponding to the electronic certificate, and determining standardized electronic certificate data formats of the service data based on the service type and the service data attribute of the service data, wherein the standardized electronic certificate data formats comprise a data format standard, a data element standard, a data signature standard, a data security standard and a data management standard;
the second determining module is used for determining the standardized electronic certificate generation flow of each service data based on the service scene of each service data after determining the standardized electronic certificate data format of each service data;
the third determining module is used for determining a generating system of the electronic certificate according to the standardized electronic certificate generating flow and the data format standard, the data element standard, the data signature standard, the data security standard and the data management standard;
and the generation module is used for inputting a plurality of service data into the generation system of the electronic certificate so as to obtain standardized electronic certificates corresponding to the service data.
Further, in one possible implementation of the embodiment of the present invention, wherein:
the data signature standard prescribes a file format, a data structure and a coding mode of the electronic certificate;
the data element standard specifies data elements contained in the electronic voucher;
the data signature standard prescribes a signature mode and a signature algorithm of the electronic certificate;
the data security standard prescribes data encryption measures, data decryption measures and a data digital signature algorithm of the electronic certificate;
the data management standard prescribes the data management flow, storage mode and backup strategy of the electronic certificate.
Further, in a possible implementation manner of the embodiment of the present invention, a timestamp for proving the generation time of the standardized electronic certificate is attached to the standardized electronic certificate corresponding to each service data.
Further, in a possible implementation manner of the embodiment of the present invention, the apparatus further includes:
the acquisition module is used for acquiring the electronic certificate digital certificate issued by the trusted authority corresponding to the electronic certificate;
the verification module is used for verifying the standardized electronic certificate based on the electronic certificate so as to determine whether the standardized electronic certificate is real;
and the storage module is used for storing the standardized electronic certificate in a blockchain under the condition that the standardized electronic certificate is real.
It should be noted that the foregoing explanation of the method embodiment is also applicable to the apparatus of this embodiment, and will not be repeated here.
The electronic certificate generation device of the embodiment of the invention determines the standardized electronic certificate data format of each service data based on the service type and the service data attribute of each service data corresponding to the electronic certificate; determining a standardized electronic certificate generation flow of each service data based on the service scene of each service data; determining a generation system of the electronic certificate according to the standardized electronic certificate generation flow and data format standards, data element standards, data signature standards, data security standards and data management standards in the standardized electronic certificate data format; and inputting each business data into a generating system to obtain a standardized electronic certificate, thereby realizing the standardization of the electronic certificate, preventing the information of the electronic certificate from being tampered, forged or leaked and ensuring the authenticity of the electronic certificate based on the standardized electronic certificate data format and the generating system determined by the standardized electronic certificate generating flow.
In order to achieve the above embodiment, the present invention further provides an electronic device, including:
at least one processor; and
a memory communicatively coupled to the at least one processor; wherein,
the memory stores instructions executable by the at least one processor to enable the at least one processor to perform the aforementioned method.
To achieve the above embodiments, the present invention also proposes a non-transitory computer-readable storage medium storing computer instructions for causing the computer to execute the aforementioned method.
In the description of the present specification, a description referring to terms "one embodiment," "some embodiments," "examples," "specific examples," or "some examples," etc., means that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the present invention. In this specification, schematic representations of the above terms are not necessarily directed to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples. Furthermore, the different embodiments or examples described in this specification and the features of the different embodiments or examples may be combined and combined by those skilled in the art without contradiction.
Any process or method descriptions in flow charts or otherwise described herein may be understood as representing modules, segments, or portions of code which include one or more executable instructions for implementing specific logical functions or steps of the process, and additional implementations are included within the scope of the preferred embodiment of the present invention in which functions may be executed out of order from that shown or discussed, including substantially concurrently or in reverse order from that shown or discussed, depending on the functionality involved, as would be understood by those reasonably skilled in the art of the embodiments of the present invention.
Logic and/or steps represented in the flowcharts or otherwise described herein, e.g., a ordered listing of executable instructions for implementing logical functions, can be embodied in any computer-readable medium for use by or in connection with an instruction execution system, apparatus, or device, such as a computer-based system, processor-containing system, or other system that can fetch the instructions from the instruction execution system, apparatus, or device and execute the instructions. For the purposes of this description, a "computer-readable medium" can be any means that can contain, store, communicate, propagate, or transport the program for use by or in connection with the instruction execution system, apparatus, or device. More specific examples (a non-exhaustive list) of the computer-readable medium would include the following: an electrical connection (electronic device) having one or more wires, a portable computer diskette (magnetic device), a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber device, and a portable compact disc read-only memory (CDROM). In addition, the computer readable medium may even be paper or other suitable medium on which the program is printed, as the program may be electronically captured, via, for instance, optical scanning of the paper or other medium, then compiled, interpreted or otherwise processed in a suitable manner, if necessary, and then stored in a computer memory.
It is to be understood that portions of the present invention may be implemented in hardware, software, firmware, or a combination thereof. In the above-described embodiments, the various steps or methods may be implemented in software or firmware stored in a memory and executed by a suitable instruction execution system. As with the other embodiments, if implemented in hardware, may be implemented using any one or combination of the following techniques, as is well known in the art: discrete logic circuits having logic gates for implementing logic functions on data signals, application specific integrated circuits having suitable combinational logic gates, programmable Gate Arrays (PGAs), field Programmable Gate Arrays (FPGAs), and the like.
Those of ordinary skill in the art will appreciate that all or a portion of the steps carried out in the method of the above-described embodiments may be implemented by a program to instruct related hardware, where the program may be stored in a computer readable storage medium, and where the program, when executed, includes one or a combination of the steps of the method embodiments.
In addition, each functional unit in the embodiments of the present invention may be integrated in one processing module, or each unit may exist alone physically, or two or more units may be integrated in one module. The integrated modules may be implemented in a hardware manner or in a software functional module manner. The integrated modules may also be stored in a computer readable storage medium if implemented in the form of software functional modules and sold or used as a stand-alone product.
The above-mentioned storage medium may be a read-only memory, a magnetic disk or an optical disk, or the like. While embodiments of the present invention have been shown and described above, it will be understood that the above embodiments are illustrative and not to be construed as limiting the invention, and that variations, modifications, alternatives and variations may be made to the above embodiments by one of ordinary skill in the art within the scope of the invention.

Claims (10)

1. A method of generating an electronic certificate, the method comprising:
acquiring a plurality of service data corresponding to the electronic certificate, and determining a standardized electronic certificate data format of each service data based on the service type and the service data attribute of each service data, wherein the standardized electronic certificate data format comprises a data format standard, a data element standard, a data signature standard, a data security standard and a data management standard;
after determining the standardized electronic certificate data format of each service data, determining the standardized electronic certificate generation flow of each service data based on the service scene of each service data;
determining a generation system of the electronic certificate according to the standardized electronic certificate generation flow and the data format standard, the data element standard, the data signature standard, the data security standard and the data management standard;
and inputting the plurality of business data into the electronic certificate generation system to obtain standardized electronic certificates corresponding to the business data.
2. The method according to claim 1, wherein:
the data signature standard prescribes a file format, a data structure and a coding mode of the electronic certificate;
the data element standard specifies data elements contained in the electronic voucher;
the data signature standard prescribes a signature mode and a signature algorithm of the electronic certificate;
the data security standard prescribes data encryption measures, data decryption measures and a data digital signature algorithm of the electronic certificate;
the data management standard prescribes the data management flow, storage mode and backup strategy of the electronic certificate.
3. The method of claim 1, wherein the standardized electronic certificates corresponding to the respective business data are affiliated with a timestamp that proves the time of generation of the standardized electronic certificates.
4. The method according to claim 1, wherein the method further comprises:
acquiring an electronic certificate digital certificate issued by a trusted authority corresponding to the electronic certificate;
verifying the standardized electronic certificate based on the electronic certificate to determine whether the standardized electronic certificate is authentic;
in the event that the standardized electronic voucher is authentic, the standardized electronic voucher is stored in a blockchain.
5. An apparatus for generating electronic certificates, the apparatus comprising:
the first determining module is used for obtaining a plurality of service data corresponding to the electronic certificate, and determining standardized electronic certificate data formats of the service data based on the service type and the service data attribute of the service data, wherein the standardized electronic certificate data formats comprise a data format standard, a data element standard, a data signature standard, a data security standard and a data management standard;
the second determining module is used for determining the standardized electronic certificate generation flow of each service data based on the service scene of each service data after determining the standardized electronic certificate data format of each service data;
the third determining module is used for determining a generating system of the electronic certificate according to the standardized electronic certificate generating flow and the data format standard, the data element standard, the data signature standard, the data security standard and the data management standard;
and the generation module is used for inputting a plurality of service data into the generation system of the electronic certificate so as to obtain standardized electronic certificates corresponding to the service data.
6. The apparatus according to claim 5, wherein:
the data signature standard prescribes a file format, a data structure and a coding mode of the electronic certificate;
the data element standard specifies data elements contained in the electronic voucher;
the data signature standard prescribes a signature mode and a signature algorithm of the electronic certificate;
the data security standard prescribes data encryption measures, data decryption measures and a data digital signature algorithm of the electronic certificate;
the data management standard prescribes the data management flow, storage mode and backup strategy of the electronic certificate.
7. The apparatus of claim 5, wherein the standardized electronic certificates for each business data are affiliated with a timestamp that proves the time of generation of the standardized electronic certificates.
8. The apparatus of claim 5, wherein the apparatus further comprises:
the acquisition module is used for acquiring the electronic certificate digital certificate issued by the trusted authority corresponding to the electronic certificate;
the verification module is used for verifying the standardized electronic certificate based on the electronic certificate so as to determine whether the standardized electronic certificate is real;
and the storage module is used for storing the standardized electronic certificate in a blockchain under the condition that the standardized electronic certificate is real.
9. An electronic device, comprising:
at least one processor; and
a memory communicatively coupled to the at least one processor; wherein,
the memory stores instructions executable by the at least one processor to enable the at least one processor to perform the method of any one of claims 1-4.
10. A non-transitory computer readable storage medium storing computer instructions for causing the computer to perform the method of any one of claims 1-4.
CN202311311801.5A 2023-10-11 2023-10-11 Electronic certificate generation method and device Pending CN117056899A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202311311801.5A CN117056899A (en) 2023-10-11 2023-10-11 Electronic certificate generation method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202311311801.5A CN117056899A (en) 2023-10-11 2023-10-11 Electronic certificate generation method and device

Publications (1)

Publication Number Publication Date
CN117056899A true CN117056899A (en) 2023-11-14

Family

ID=88669575

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202311311801.5A Pending CN117056899A (en) 2023-10-11 2023-10-11 Electronic certificate generation method and device

Country Status (1)

Country Link
CN (1) CN117056899A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117436905A (en) * 2023-11-27 2024-01-23 哈尔滨工程大学三亚南海创新发展基地 Method, system, equipment and storage medium for generating service certificate chain
CN118332618A (en) * 2024-06-12 2024-07-12 北京敏行通达信息技术有限公司 Digital certificate management method and system for supply chain business collaboration

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112906364A (en) * 2021-03-26 2021-06-04 建信金融科技有限责任公司 Voucher generation method and device, electronic equipment and storage medium
CN115641136A (en) * 2022-11-15 2023-01-24 交通银行股份有限公司 Certificate paperless system and method based on electronic signature
CN116501929A (en) * 2023-05-10 2023-07-28 中国建设银行股份有限公司 Electronic certificate generation method and device and electronic equipment
CN116561058A (en) * 2023-04-18 2023-08-08 乐昌市中等职业技术学校(乐昌市职业技术教育中心) Method for associating original certificates with accounting electronic files
WO2023178691A1 (en) * 2022-03-25 2023-09-28 Oppo广东移动通信有限公司 Security implementation method and apparatus, device and network element

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112906364A (en) * 2021-03-26 2021-06-04 建信金融科技有限责任公司 Voucher generation method and device, electronic equipment and storage medium
WO2023178691A1 (en) * 2022-03-25 2023-09-28 Oppo广东移动通信有限公司 Security implementation method and apparatus, device and network element
CN115641136A (en) * 2022-11-15 2023-01-24 交通银行股份有限公司 Certificate paperless system and method based on electronic signature
CN116561058A (en) * 2023-04-18 2023-08-08 乐昌市中等职业技术学校(乐昌市职业技术教育中心) Method for associating original certificates with accounting electronic files
CN116501929A (en) * 2023-05-10 2023-07-28 中国建设银行股份有限公司 Electronic certificate generation method and device and electronic equipment

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117436905A (en) * 2023-11-27 2024-01-23 哈尔滨工程大学三亚南海创新发展基地 Method, system, equipment and storage medium for generating service certificate chain
CN118332618A (en) * 2024-06-12 2024-07-12 北京敏行通达信息技术有限公司 Digital certificate management method and system for supply chain business collaboration
CN118332618B (en) * 2024-06-12 2024-09-06 北京敏行通达信息技术有限公司 Digital certificate management method and system for supply chain business collaboration

Similar Documents

Publication Publication Date Title
CN107947922B (en) Digital file management method and system based on block chain technology
CN108933667B (en) Management method and management system of public key certificate based on block chain
US20110231645A1 (en) System and method to validate and authenticate digital data
CN117056899A (en) Electronic certificate generation method and device
US20110289318A1 (en) System and Method for Online Digital Signature and Verification
KR102099861B1 (en) System and method for verifying documents using blockchain
CN111445238A (en) Electronic deposit certificate system based on block chain
KR102311462B1 (en) Block chain did-based digital evidence management system and method
CN108540447B (en) Block chain-based certificate verification method and system
CN113343313A (en) Verification report validity identification method, legal service system and readable storage medium
CN112381634A (en) Tax statistics and settlement method, device, equipment and storage medium
CN106656511A (en) Method and system for uniformly managing identity endorsement
US11301823B2 (en) System and method for electronic deposit and authentication of original electronic information objects
US9276738B2 (en) Digital tachograph
CN116720839B (en) Financial information management method based on blockchain technology and supervision system thereof
JP4628648B2 (en) Electronic data storage system and method
CN112383577A (en) Authorization method, device, system, equipment and storage medium
EP3022865B1 (en) Selective revocation of certificates
KR100837754B1 (en) Apparatus for Time and Contents Stamping for Electronic Notes and Method Thereof
CN114387137A (en) Block chain-based electronic contract signing method, device, equipment and storage medium
KR101458929B1 (en) A log black box device in online service provider server of log information authentication system using third party certification and its methods of operation.
CN114401096B (en) Block chain data uplink control method, device, equipment and storage medium
CN111414629B (en) Electronic contract signing device
CN118138254B (en) Digital currency identity authentication system based on blockchain technology
CN110232282B (en) Electronic signature method and system of fire-fighting checklist

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20231114