CN117176481A - Process safety authentication method and device for logic electronic seal - Google Patents

Abstract

The invention relates to the technical field of electronic seals, and discloses a flow security authentication method and device of a logic electronic seal, wherein the method comprises the following steps: encrypting and randomly distributing the node RGB value set to the flow authentication node set to obtain an exclusive authentication RGB value, receiving a first authentication text of a first authentication node, encrypting a reference authentication angle to obtain an encryption authentication angle, decrypting the encryption authentication angle to obtain a decryption authentication angle, performing iterative seal authentication on the first authentication text according to the decryption authentication angle and the exclusive authentication RGB value to obtain an iterative authentication text, performing iterative authentication on the iterative authentication text by using the iterative authentication node set, and performing authentication release on the iterative authentication text if the iterative authentication text completes authentication. The invention also provides a flow security authentication device of the logic electronic seal, electronic equipment and a computer readable storage medium. The invention can solve the problem of poor safety protection effect of the current electronic seal.

Description

Process safety authentication method and device for logic electronic seal

Technical Field

The present invention relates to the field of electronic seal technologies, and in particular, to a method and apparatus for process security authentication of a logic electronic seal, an electronic device, and a computer readable storage medium.

Background

In recent years, mechanized warfare is gradually evolving into information warfare based on information, and electronic information will thoroughly change modern warfare, and electronic information is playing an increasingly important role. The electronic information changes the operational efficiency of the traditional weapon platform, and with the development of computer technology, the architecture of the information processing system is continuously optimized, and the electronic information presents standardized and modularized development situation.

The electronic seal is mainly used for the function of file seal authentication in the field of informationized office work, has wide application range, comprises departments of command and control, communication transmission, internal file management and the like, and can accelerate the file processing speed and improve the working efficiency. In order to ensure the authenticity of the electronic seal and avoid the situation of tampering, the current electronic seal generally uses digital signatures and various encryption technologies to carry out the safety protection of the electronic seal, and the safety protection means by the encryption algorithm is single, so the current electronic seal has the problem of poor safety protection effect.

Disclosure of Invention

The invention provides a flow security authentication method and device for a logic electronic seal and a computer readable storage medium, and mainly aims to solve the problem that the current electronic seal has poor security protection effect.

In order to achieve the above object, the present invention provides a process security authentication method for a logical electronic seal, including:

acquiring a flow authentication node number, and splitting a preset standard RGB value into a node RGB value set according to the flow authentication node number;

encrypting the node RGB value set and randomly distributing the node RGB value set to a pre-constructed flow authentication node set to obtain an exclusive authentication RGB value corresponding to each flow authentication node;

acquiring a text to be authenticated, and receiving a logic electronic seal authenticated on the text to be authenticated by a first authentication node in a process authentication node set according to a corresponding exclusive authentication RGB value to obtain a first authentication text;

acquiring a zero degree reference standard point, calculating a reference authentication angle of a logic electronic seal in the first authentication text according to the zero degree reference standard point, and encrypting the reference authentication angle to obtain an encryption authentication angle;

identifying a second authentication node in the flow authentication node set, sending the first authentication text and the encryption authentication angle to the second authentication node, and decrypting the encryption authentication angle by using a decryption private key of the second authentication node to obtain a decryption authentication angle;

Performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text;

identifying an iteration authentication node set of the second authentication node, executing iteration authentication on the iteration authentication text by using the iteration authentication node set, and updating the iteration authentication node set and the iteration authentication text;

judging whether the iterative authentication text completes authentication or not;

if the iterative authentication text does not complete the authentication, returning to the step of identifying the iterative authentication node set of the second authentication node;

and if the iterative authentication text completes authentication, the iterative authentication text is subjected to authentication release, and the process safety authentication of the logic electronic seal is completed.

Optionally, the splitting the preset standard RGB value into the node RGB value set according to the process authentication node number includes:

determining RGB value split according to the number of the flow authentication nodes;

identifying a single quantization color value of the standard RGB values;

according to the RGB value split number, carrying out random split on the single quantized color value to obtain a single quantized split value set;

And randomly distributing the single quantitative analysis value set to the flow authentication node set to obtain the node RGB value set.

Optionally, the receiving the logical electronic seal authenticated on the text to be authenticated by the first authentication node in the process authentication node set according to the corresponding proprietary authentication RGB value, obtaining a first authentication text includes:

acquiring a logic electronic seal of the first authentication node;

constructing a seal control according to the logical electronic seal of the first authentication node by utilizing a pre-constructed digital image processing technology and an ActiveX control technology;

acquiring a random seal deflection angle, and embedding the seal control into the text to be authenticated according to the random seal deflection angle to obtain the text of the control to be authenticated;

and receiving a logic electronic seal authenticated by the user on the control text to be authenticated according to the corresponding exclusive authentication RGB value at the first authentication node to obtain a first authentication text.

Optionally, the acquiring the zero degree reference punctuation includes:

identifying a logical electronic seal in the first authentication text;

confirming an outer ring circumference of the logical electronic seal;

and identifying the zero-degree reference punctuation on the circumference of the outer ring according to a preset zero-degree punctuation confirmation method, wherein the zero-degree punctuation confirmation method refers to a method for determining the position of the zero-degree reference punctuation.

Optionally, the calculating the reference authentication angle of the logical electronic seal in the first authentication text according to the zero degree reference mark point includes:

identifying a forward punctuation on the outer circumference of the logical electronic seal in the first authentication text;

determining the outer ring circle center of the outer ring circumference of the logic electronic seal;

connecting the circle center of the outer ring with the zero-degree reference mark point to obtain a seal zero-degree mark;

connecting the forward punctuation with the center of the outer ring to obtain a seal reference marking;

and calculating the marking angle of the reference marking of the stamp according to a preset direction by taking the zero marking of the stamp as a zero scale line, so as to obtain the reference authentication angle.

Optionally, encrypting the reference authentication angle to obtain an encrypted authentication angle includes:

acquiring an encrypted public key of the second authentication node;

and carrying out public key encryption on the reference authentication angle by utilizing the encryption public key of the second authentication node to obtain an encryption authentication angle.

Optionally, the performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding proprietary authentication RGB value to obtain an iterative authentication text includes:

Acquiring the stamp shape of the logic electronic stamp;

constructing a second exclusive authentication seal according to the seal shape by utilizing the exclusive authentication RGB value corresponding to the second authentication node;

according to the logic electronic seal on the first authentication text, the second exclusive authentication seal is overlapped and normalized on the first authentication text, and a second authentication seal to be rotated is obtained;

and rotating the initial to-be-rotated second authentication seal according to the decryption authentication angle to obtain the iterative authentication text.

Optionally, the performing, according to the logical electronic seal on the first authentication text, superposition and normalization of the second exclusive authentication seal on the first authentication text to obtain a second authentication seal to be rotated includes:

taking the logic electronic seal on the first authentication text as a first exclusive authentication seal;

identifying an outer ring circumferential position of the first proprietary authentication seal;

acquiring the outer ring circumference of the second exclusive authentication seal, and superposing the second exclusive authentication seal on the first exclusive authentication seal according to the outer ring circumference and the outer ring circumference position of the second exclusive authentication seal to obtain an initial second authentication seal;

Identifying zero degree reference punctuation and forward punctuation of the initial second authentication seal;

and normalizing the forward punctuation of the initial second authentication seal to the zero-degree reference punctuation to obtain the second authentication seal to be rotated.

Optionally, the determining whether the iterative authentication text completes authentication includes:

extracting an iterative authentication seal from the iterative authentication text;

extracting single quantization splitting sum values of the iterative authentication seal;

judging whether the single quantization split sum value is equal to the single quantization color value or not;

if the single quantization split sum value is not equal to the single quantization color value, the iterative authentication text does not finish authentication;

and if the single quantization split sum value is equal to the single quantization color value, the iterative authentication text completes authentication.

In order to solve the above problems, the present invention further provides a process security authentication device for a logical electronic seal, the device comprising:

the exclusive authentication RGB value distribution module is used for acquiring the number of the flow authentication nodes and splitting the preset standard RGB value into a node RGB value set according to the number of the flow authentication nodes; encrypting the node RGB value set and randomly distributing the node RGB value set to a pre-constructed flow authentication node set to obtain an exclusive authentication RGB value corresponding to each flow authentication node;

The first authentication text authentication module is used for acquiring a text to be authenticated, receiving a logic electronic seal authenticated on the text to be authenticated by a first authentication node in the process authentication node set according to the corresponding exclusive authentication RGB value, and obtaining a first authentication text;

the reference authentication angle encryption module is used for acquiring a zero degree reference standard point, calculating a reference authentication angle of the logic electronic seal in the first authentication text according to the zero degree reference standard point, and encrypting the reference authentication angle to obtain an encryption authentication angle;

the seal iteration authentication module is used for identifying a second authentication node in the flow authentication node set, sending the first authentication text and the encryption authentication angle to the second authentication node, and decrypting the encryption authentication angle by using a decryption private key of the second authentication node to obtain a decryption authentication angle; performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text; identifying an iteration authentication node set of the second authentication node, executing iteration authentication on the iteration authentication text by using the iteration authentication node set, and updating the iteration authentication node set and the iteration authentication text; judging whether the iterative authentication text completes authentication or not; if the iterative authentication text does not complete the authentication, returning to the step of identifying the iterative authentication node set of the second authentication node;

And the text authentication release module is used for releasing the iteration authentication text by authentication if the iteration authentication text is authenticated.

In order to solve the above-mentioned problems, the present invention also provides an electronic apparatus including:

at least one processor; the method comprises the steps of,

a memory communicatively coupled to the at least one processor; wherein,

the memory stores instructions executable by the at least one processor to implement the flow security authentication method of the logical electronic seal described above.

In order to solve the above-mentioned problems, the present invention also provides a computer-readable storage medium having stored therein at least one instruction that is executed by a processor in an electronic device to implement the above-mentioned flow security authentication method of a logical electronic seal.

Compared with the background art, the method comprises the following steps: the present invention mainly realizes the authentication release of iterative authentication texts by authenticating the electronic seal with color and reference authentication angles, before performing color authentication, firstly obtains the number of flow authentication nodes, then splits the preset standard RGB value into node RGB value sets according to the number of the flow authentication nodes, finally encrypts and randomly distributes the node RGB value sets to the pre-constructed flow authentication node sets to obtain the exclusive authentication RGB value corresponding to each flow authentication node, before performing construction of reference authentication angles, firstly obtains a text to be authenticated, receives a first authentication node in the flow authentication node set according to the corresponding exclusive authentication RGB value on the text to be authenticated, and then extracts the reference authentication angles on the first authentication text, when the reference authentication angles are extracted, firstly obtains zero degree reference standard points, calculates the authentication angles of the logic electronic seal in the first authentication text according to the zero degree reference standard RGB value sets, performs encryption and decryption authentication on the first authentication angles, and then performs encryption and decryption authentication on the first authentication text according to the corresponding exclusive authentication RGB value, and then performs encryption and decryption authentication on the second authentication angles, and the first authentication text is encrypted and the second authentication angle is required, and performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text, wherein the number of the iterative authentication node sets of the second authentication node is possibly more than two, so that the iterative authentication node sets are required to be identified, the iterative authentication node sets are used for performing iterative authentication on the iterative authentication text, and the iterative authentication node sets and the iterative authentication text are updated, thereby realizing the iterative authentication function, finally judging whether the iterative authentication text is authenticated or not, returning to the step of identifying the iterative authentication node sets of the second authentication node if the iterative authentication text is not authenticated, and performing authentication release on the iterative authentication text if the iterative authentication text is authenticated. Therefore, the flow safety authentication method, the device, the electronic equipment and the computer readable storage medium of the logic electronic seal can solve the problem that the current electronic seal has poor safety protection effect.

Drawings

FIG. 1 is a flow chart of a method for authenticating flow security of a logical electronic seal according to an embodiment of the present application;

FIG. 2 is a functional block diagram of a flow security authentication device for a logical electronic seal according to an embodiment of the present application;

FIG. 3 is a schematic structural diagram of an electronic device implementing the process security authentication method of the logical electronic seal according to an embodiment of the present application;

the achievement of the objects, functional features and advantages of the present application will be further described with reference to the accompanying drawings, in conjunction with the embodiments.

Detailed Description

It should be understood that the specific embodiments described herein are for purposes of illustration only and are not intended to limit the scope of the application.

The embodiment of the application provides a flow security authentication method of a logic electronic seal. The execution subject of the flow security authentication method of the logical electronic seal includes, but is not limited to, at least one of a server, a terminal, and the like, which can be configured to execute the method provided by the embodiment of the application. In other words, the flow security authentication method of the logical electronic seal may be performed by software or hardware installed in a terminal device or a server device. The service end includes but is not limited to: a single server, a server cluster, a cloud server or a cloud server cluster, and the like.

Example 1:

referring to fig. 1, a flow chart of a method for authenticating logical electronic seal according to an embodiment of the invention is shown. In this embodiment, the flow security authentication method of the logic electronic seal includes:

s1, acquiring a flow authentication node number, and splitting a preset standard RGB value into a node RGB value set according to the flow authentication node number.

The number of nodes in the process of authentication refers to the number of nodes in the process of authentication of a file or document, for example: the process authentication node may be a process authentication node for drafting, submitting, reviewing, retuning, returning, publishing, etc. Since the color of a general electronic stamp is red, the standard RGB value may be (255, 0). The node RGB value set refers to the RGB value set after the standard RGB value is split.

In the embodiment of the present invention, splitting the preset standard RGB value into the node RGB value set according to the process authentication node number includes:

determining RGB value split according to the number of the flow authentication nodes;

identifying a single quantization color value of the standard RGB values;

according to the RGB value split number, carrying out random split on the single quantized color value to obtain a single quantized split value set;

And randomly distributing the single quantitative analysis value set to the flow authentication node set to obtain the node RGB value set.

The RGB value splitting number means the number of the standard RGB values split into node RGB values. The single quantization color value refers to a single color value in the standard RGB values, for example: when the standard RGB values may be (255, 0), the single quantized color values refer to 255,0, and 0. The single quantized split value set refers to a split value set obtained by splitting the single quantized color value, for example: when the single quantized color value is 255 and the number of flow authentication nodes is 6, the single quantized split value set may be 50, 30, 40, 37, 20, 78; when the single quantized color value is 0 and the number of flow authentication nodes is 6, the single quantized split value set is 0, 0.

S2, encrypting the node RGB value set and randomly distributing the node RGB value set to a pre-constructed flow authentication node set to obtain an exclusive authentication RGB value corresponding to each flow authentication node.

Further, the encryption manner of the node RGB value may be an existing encryption manner, and the encryption level is determined according to the security level, which is not described herein. The proprietary authentication RGB value refers to a proprietary RGB value of each flow authentication node, for example: the proprietary authentication RGB values of the drafting node may be (50,0,0), the proprietary authentication RGB values of the submitting node may be (30,0,0), the proprietary authentication RGB values of the reviewing node may be (40,0,0), the proprietary authentication RGB values of the returnating node may be (37,0,0), the proprietary authentication RGB values of the loopback node may be (20,0,0) and the proprietary authentication RGB values of the publishing node may be (78,0,0).

S3, acquiring a text to be authenticated, and receiving a logic electronic seal authenticated on the text to be authenticated by a first authentication node in the process authentication node set according to the corresponding exclusive authentication RGB value to obtain a first authentication text.

It can be understood that the logic electronic seal refers to the electronic seal which performs authentication according to the exclusive authentication RGB value of the corresponding flow authentication node and the preset random seal deflection angle. The random seal deflection angle refers to the deflection angle of the logic electronic seal and the aligned electronic seal, and in the process of manual seal, the skew of the seal may exist, so that the skew seal exists.

In the embodiment of the present invention, the obtaining, by the first authentication node in the receiving process authentication node set, a first authentication text according to a logical electronic seal authenticated on the text to be authenticated by a corresponding proprietary authentication RGB value includes:

acquiring a logic electronic seal of the first authentication node;

constructing a seal control according to the logical electronic seal of the first authentication node by utilizing a pre-constructed digital image processing technology and an ActiveX control technology;

acquiring a random seal deflection angle, and embedding the seal control into the text to be authenticated according to the random seal deflection angle to obtain the text of the control to be authenticated;

And receiving a logic electronic seal authenticated by the user on the control text to be authenticated according to the corresponding exclusive authentication RGB value at the first authentication node to obtain a first authentication text.

Further, when the logic electronic seal is embedded into the text to be authenticated, the logic electronic seal is not embedded in an odd positive way, the manual seal can be imitated, and the authentication is performed when a seal deflection angle exists in a certain range. The seal angle of deflection may range from (0 degrees to 90 degrees). The seal deflection angle refers to the angle between the vertical forward direction of the logic electronic seal and the vertical direction of the text to be authenticated.

S4, acquiring a zero degree reference standard point, calculating a reference authentication angle of the logic electronic seal in the first authentication text according to the zero degree reference standard point, and encrypting the reference authentication angle to obtain an encryption authentication angle.

It can be understood that the zero degree reference mark point refers to an intersection point of a ray, of which the center of the outer ring of the logic electronic seal points to the vertical direction of the text to be authenticated, and the circumference of the outer ring. The reference authentication angle refers to a deflection angle between the numerical forward direction of the logic electronic seal and the vertical forward direction of the text to be authenticated.

In an embodiment of the present invention, the obtaining the zero degree reference point includes:

Identifying a logical electronic seal in the first authentication text;

confirming an outer ring circumference of the logical electronic seal;

identifying zero-degree reference punctuation on the circumference of the outer ring according to a preset zero-degree punctuation confirmation method;

it can be understood that the zero degree punctuation confirmation method refers to a method for determining the position of the zero degree reference punctuation, and the zero degree reference punctuation can be obtained by taking a ray which is used as the center of an outer ring of a logic electronic seal and points to the vertical direction of the text to be authenticated, and extracting the intersection point of the ray and the circumference of the outer ring.

In the embodiment of the present invention, the calculating the reference authentication angle of the logical electronic seal in the first authentication text according to the zero degree reference mark point includes:

identifying a forward punctuation on the outer circumference of the logical electronic seal in the first authentication text;

determining the outer ring circle center of the outer ring circumference of the logic electronic seal;

connecting the circle center of the outer ring with the zero-degree reference mark point to obtain a seal zero-degree mark;

connecting the forward punctuation with the center of the outer ring to obtain a seal reference marking;

and calculating the marking angle of the reference marking of the stamp according to a preset direction by taking the zero marking of the stamp as a zero scale line, so as to obtain the reference authentication angle.

It is understood that the forward punctuation points refer to the intersection points of the ray of the outer ring circle center of the logical electronic seal, which points to the seal positive direction of the logical electronic seal, and the outer ring circle.

In detail, the encrypting the reference authentication angle to obtain an encrypted authentication angle includes:

acquiring an encrypted public key of the second authentication node;

and carrying out public key encryption on the reference authentication angle by utilizing the encryption public key of the second authentication node to obtain an encryption authentication angle.

It can be understood that the encryption method with reference to the authentication angle can be a public key cryptosystem; in this regime, user a has a pair of keys: encryption key (public key)And decryption key (private key)The two are different and no decryption key (private key) can be deduced from the encryption key (public key). If B wants to send encryption information to A, it needs to look up A's encryption key (public key) in the public directoryThe message is encrypted by it, after A receives the ciphertext, it uses its own decryption key (private key)The ciphertext is decrypted. The public key cryptosystem is made in the prior art, and is not described herein. Since the reference authentication angle is an angle value of deflection of the electronic stamp, for example: 5 ^。 Thus, an encryption effect can be achieved.

In detail, the first authentication node has an encryption public key of the second authentication node, the second authentication node has an encryption public key of the third flow authentication node, and the like, and finally each flow authentication node decrypts the forwarded encryption authentication angle by means of the own decryption private key, so that an iterative decryption function is realized.

S5, identifying a second authentication node in the flow authentication node set, sending the first authentication text and the encryption authentication angle to the second authentication node, and decrypting the encryption authentication angle by using a decryption private key of the second authentication node to obtain a decryption authentication angle.

And S6, performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text.

Further, the iterative seal authentication means that the next flow authentication node is used for continuing to authenticate the seal of the forwarded text to be authenticated, decryption is needed in the authentication process to obtain the reference authentication angle, iterative seal authentication is carried out according to the self-exclusive authentication RGB value, and then the authentication is forwarded to the next flow authentication node.

In the embodiment of the present invention, the performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding proprietary authentication RGB value to obtain an iterative authentication text includes:

acquiring the stamp shape of the logic electronic stamp;

constructing a second exclusive authentication seal according to the seal shape by utilizing the exclusive authentication RGB value corresponding to the second authentication node;

according to the logic electronic seal on the first authentication text, the second exclusive authentication seal is overlapped and normalized on the first authentication text, and a second authentication seal to be rotated is obtained;

and rotating the initial to-be-rotated second authentication seal according to the decryption authentication angle to obtain the iterative authentication text.

It can be understood that the registration and normalization means that the second exclusive authentication seal is overlapped with the outer ring circumference of the logic electronic seal (which can be called as the first exclusive authentication seal) on the first authentication text, so that only the angle difference exists between the two seals, then the second exclusive authentication seal is normalized (the positive punctuation of the second exclusive authentication seal is overlapped with the zero reference punctuation), and finally the skew angles of the two seals are controlled to be identical through the decryption authentication angle, thereby realizing superposition on RGB values.

In the embodiment of the present invention, the performing, according to the logical electronic seal on the first authentication text, the superposition and normalization of the second exclusive authentication seal on the first authentication text to obtain the second authentication seal to be rotated includes:

taking the logic electronic seal on the first authentication text as a first exclusive authentication seal;

identifying an outer ring circumferential position of the first proprietary authentication seal;

acquiring the outer ring circumference of the second exclusive authentication seal, and superposing the second exclusive authentication seal on the first exclusive authentication seal according to the outer ring circumference and the outer ring circumference position of the second exclusive authentication seal to obtain an initial second authentication seal;

identifying zero degree reference punctuation and forward punctuation of the initial second authentication seal;

and normalizing the forward punctuation of the initial second authentication seal to the zero-degree reference punctuation to obtain the second authentication seal to be rotated.

And S7, identifying an iteration authentication node set of the second authentication node, executing iteration authentication on the iteration authentication text by using the iteration authentication node set, and updating the iteration authentication node set and the iteration authentication text.

It can be understood that, because the number of the flow authentication nodes may be greater than 2, iteration authentication needs to be repeated circularly, and the iteration authentication node set and the iteration authentication text are updated in real time during the process of iteration authentication, so that the update of the authentication seal is realized.

Further, the iterative authentication node set refers to a subsequent authentication node set of the second authentication node, for example: when the second authentication node is a submitting node, the iterative authentication node set may be a review, returnal, loopback, and publish process authentication node. After the second authentication node completes the seal authentication, the subsequent node needs to continue to perform the seal authentication in an iteration manner, so that the iteration authentication node set and the iteration authentication text need to be updated continuously, for example: after the second authentication node (submitting node) completes the seal authentication, the iteration authentication node set (submitting, reviewing, approving, returning and issuing nodes) and the iteration authentication text (including the electronic seal after the electronic seal of the first authentication node and the second authentication node) of the first authentication node (drafting node) need to be updated by utilizing the iteration authentication node set (reviewing, approving, returning and issuing nodes of the submitting node) and the iteration authentication text (including the electronic seal of the first authentication node only) until the seal authentication of the final node is completed.

S8, judging whether the iterative authentication text completes authentication or not.

In the embodiment of the present invention, the determining whether the iterative authentication text completes authentication includes:

Extracting an iterative authentication seal from the iterative authentication text;

extracting single quantization splitting sum values of the iterative authentication seal;

judging whether the single quantization split sum value is equal to the single quantization color value or not;

if the single quantization split sum value is not equal to the single quantization color value, the iterative authentication text does not finish authentication;

and if the single quantization split sum value is equal to the single quantization color value, the iterative authentication text completes authentication.

It will be appreciated that when the iterative authentication text completes authentication, the RGB values of the iterative authentication stamps in the iterative authentication text should be (255, 0), which indicates that authentication is complete, and that all logical authentication stamps have completed superimposed authentication.

If the iterative authentication text does not complete the authentication, returning to the step of identifying the iterative authentication node set of the second authentication node;

and if the iterative authentication text completes authentication, executing S9, and performing authentication release on the iterative authentication text to complete flow security authentication of the logic electronic seal.

Compared with the background art, the method comprises the following steps: the present invention mainly realizes the authentication release of iterative authentication texts by authenticating the electronic seal with color and reference authentication angles, before performing color authentication, firstly obtains the number of flow authentication nodes, then splits the preset standard RGB value into node RGB value sets according to the number of the flow authentication nodes, finally encrypts and randomly distributes the node RGB value sets to the pre-constructed flow authentication node sets to obtain the exclusive authentication RGB value corresponding to each flow authentication node, before performing construction of reference authentication angles, firstly obtains a text to be authenticated, receives a first authentication node in the flow authentication node set according to the corresponding exclusive authentication RGB value on the text to be authenticated, and then extracts the reference authentication angles on the first authentication text, when the reference authentication angles are extracted, firstly obtains zero degree reference standard points, calculates the authentication angles of the logic electronic seal in the first authentication text according to the zero degree reference standard RGB value sets, performs encryption and decryption authentication on the first authentication angles, and then performs encryption and decryption authentication on the first authentication text according to the corresponding exclusive authentication RGB value, and then performs encryption and decryption authentication on the second authentication angles, and the first authentication text is encrypted and the second authentication angle is required, and performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text, wherein the number of the iterative authentication node sets of the second authentication node is possibly more than two, so that the iterative authentication node sets are required to be identified, the iterative authentication node sets are used for performing iterative authentication on the iterative authentication text, and the iterative authentication node sets and the iterative authentication text are updated, thereby realizing the iterative authentication function, finally judging whether the iterative authentication text is authenticated or not, returning to the step of identifying the iterative authentication node sets of the second authentication node if the iterative authentication text is not authenticated, and performing authentication release on the iterative authentication text if the iterative authentication text is authenticated. Therefore, the flow safety authentication method, the device, the electronic equipment and the computer readable storage medium of the logic electronic seal can solve the problem that the current electronic seal has poor safety protection effect.

Example 2:

fig. 2 is a functional block diagram of a flow security authentication device of a logic electronic seal according to an embodiment of the present invention.

The flow security authentication device 100 of the logic electronic seal of the present invention may be installed in an electronic apparatus. Depending on the implementation function, the flow security authentication device 100 of the logic electronic seal may include a proprietary authentication RGB value allocation module 101, a first authentication text authentication module 102, a reference authentication angle encryption module 103, a seal iteration authentication module 104, and a text authentication issuing module 105. The module of the invention, which may also be referred to as a unit, refers to a series of computer program segments, which are stored in the memory of the electronic device, capable of being executed by the processor of the electronic device and of performing a fixed function.

The proprietary authentication RGB value allocation module 101 is configured to obtain a flow authentication node number, and split a preset standard RGB value into a node RGB value set according to the flow authentication node number; encrypting the node RGB value set and randomly distributing the node RGB value set to a pre-constructed flow authentication node set to obtain an exclusive authentication RGB value corresponding to each flow authentication node;

the first authentication text authentication module 102 is configured to obtain a text to be authenticated, and receive a logical electronic seal authenticated by a first authentication node in the process authentication node set on the text to be authenticated according to a corresponding proprietary authentication RGB value, to obtain a first authentication text;

The reference authentication angle encryption module 103 is configured to obtain a zero degree reference standard point, calculate a reference authentication angle of a logic electronic seal in the first authentication text according to the zero degree reference standard point, and encrypt the reference authentication angle to obtain an encrypted authentication angle;

the seal iteration authentication module 104 is configured to identify a second authentication node in the set of process authentication nodes, send the first authentication text and the encryption authentication angle to the second authentication node, and decrypt the encryption authentication angle by using a decryption private key of the second authentication node to obtain a decryption authentication angle; performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text; identifying an iteration authentication node set of the second authentication node, executing iteration authentication on the iteration authentication text by using the iteration authentication node set, and updating the iteration authentication node set and the iteration authentication text; judging whether the iterative authentication text completes authentication or not; if the iterative authentication text does not complete the authentication, returning to the step of identifying the iterative authentication node set of the second authentication node;

The text authentication issuing module 105 is configured to issue the iterative authentication text for authentication if the iterative authentication text completes authentication.

In detail, the modules in the flow security authentication device 100 of the logic electronic seal in the embodiment of the present invention use the same technical means as the flow security authentication method of the logic electronic seal in fig. 1, and can produce the same technical effects, which are not described herein.

Example 3:

fig. 3 is a schematic structural diagram of an electronic device for implementing a process security authentication method for a logical electronic seal according to an embodiment of the present invention.

The electronic device 1 may comprise a processor 10, a memory 11, a bus 12 and a communication interface 13, and may further comprise a computer program, such as a flow security authentication program of a logical electronic seal, stored in the memory 11 and executable on the processor 10.

The memory 11 includes at least one type of readable storage medium, including flash memory, a mobile hard disk, a multimedia card, a card memory (e.g., SD or DX memory, etc.), a magnetic memory, a magnetic disk, an optical disk, etc. The memory 11 may in some embodiments be an internal storage unit of the electronic device 1, such as a removable hard disk of the electronic device 1. The memory 11 may in other embodiments also be an external storage device of the electronic device 1, such as a plug-in mobile hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash memory Card (Flash Card) or the like, which are provided on the electronic device 1. Further, the memory 11 may also include both an internal storage unit and an external storage device of the electronic device 1. The memory 11 may be used not only for storing application software installed in the electronic device 1 and various types of data, such as codes of a flow security authentication program of a logical electronic seal, but also for temporarily storing data that has been output or is to be output.

The processor 10 may be comprised of integrated circuits in some embodiments, for example, a single packaged integrated circuit, or may be comprised of multiple integrated circuits packaged with the same or different functions, including one or more central processing units (Central Processing unit, CPU), microprocessors, digital processing chips, graphics processors, combinations of various control chips, and the like. The processor 10 is a Control Unit (Control Unit) of the electronic device, connects respective parts of the entire electronic device using various interfaces and lines, executes or executes programs or modules (e.g., a flow security authentication program of a logical electronic seal, etc.) stored in the memory 11, and invokes data stored in the memory 11 to perform various functions of the electronic device 1 and process the data.

The bus may be a peripheral component interconnect standard (peripheral component interconnect, PCI) bus or an extended industry standard architecture (extended industry standard architecture, EISA) bus, among others. The bus may be classified as an address bus, a data bus, a control bus, etc. The bus is arranged to enable a connection communication between the memory 11 and at least one processor 10 etc.

Fig. 3 shows only an electronic device with components, it being understood by a person skilled in the art that the structure shown in fig. 3 does not constitute a limitation of the electronic device 1, and may comprise fewer or more components than shown, or may combine certain components, or may be arranged in different components.

For example, although not shown, the electronic device 1 may further include a power source (such as a battery) for supplying power to each component, and preferably, the power source may be logically connected to the at least one processor 10 through a power management device, so that functions of charge management, discharge management, power consumption management, and the like are implemented through the power management device. The power supply may also include one or more of any of a direct current or alternating current power supply, recharging device, power failure detection circuit, power converter or inverter, power status indicator, etc. The electronic device 1 may further include various sensors, bluetooth modules, wi-Fi modules, etc., which will not be described herein.

Further, the electronic device 1 may also comprise a network interface, optionally the network interface may comprise a wired interface and/or a wireless interface (e.g. WI-FI interface, bluetooth interface, etc.), typically used for establishing a communication connection between the electronic device 1 and other electronic devices.

The electronic device 1 may optionally further comprise a user interface, which may be a Display, an input unit, such as a Keyboard (Keyboard), or a standard wired interface, a wireless interface. Alternatively, in some embodiments, the display may be an LED display, a liquid crystal display, a touch-sensitive liquid crystal display, an OLED (Organic Light-Emitting Diode) touch, or the like. The display may also be referred to as a display screen or display unit, as appropriate, for displaying information processed in the electronic device 1 and for displaying a visual user interface.

It should be understood that the embodiments described are for illustrative purposes only and are not limited to this configuration in the scope of the patent application.

The process security authentication program of the logical electronic seal stored in the memory 11 in the electronic device 1 is a combination of a plurality of instructions, which when executed in the processor 10, can implement:

acquiring a flow authentication node number, and splitting a preset standard RGB value into a node RGB value set according to the flow authentication node number;

encrypting the node RGB value set and randomly distributing the node RGB value set to a pre-constructed flow authentication node set to obtain an exclusive authentication RGB value corresponding to each flow authentication node;

Acquiring a text to be authenticated, and receiving a logic electronic seal authenticated on the text to be authenticated by a first authentication node in a process authentication node set according to a corresponding exclusive authentication RGB value to obtain a first authentication text;

acquiring a zero degree reference standard point, calculating a reference authentication angle of a logic electronic seal in the first authentication text according to the zero degree reference standard point, and encrypting the reference authentication angle to obtain an encryption authentication angle;

identifying a second authentication node in the flow authentication node set, sending the first authentication text and the encryption authentication angle to the second authentication node, and decrypting the encryption authentication angle by using a decryption private key of the second authentication node to obtain a decryption authentication angle;

performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text;

identifying an iteration authentication node set of the second authentication node, executing iteration authentication on the iteration authentication text by using the iteration authentication node set, and updating the iteration authentication node set and the iteration authentication text;

Judging whether the iterative authentication text completes authentication or not;

if the iterative authentication text does not complete the authentication, returning to the step of identifying the iterative authentication node set of the second authentication node;

and if the iterative authentication text completes authentication, the iterative authentication text is subjected to authentication release, and the process safety authentication of the logic electronic seal is completed.

Specifically, the specific implementation method of the above instruction by the processor 10 may refer to descriptions of related steps in the corresponding embodiments of fig. 1 to 2, which are not repeated herein.

Further, the modules/units integrated in the electronic device 1 may be stored in a computer readable storage medium if implemented in the form of software functional units and sold or used as separate products. The computer readable storage medium may be volatile or nonvolatile. For example, the computer readable medium may include: any entity or device capable of carrying the computer program code, a recording medium, a U disk, a removable hard disk, a magnetic disk, an optical disk, a computer Memory, a Read-Only Memory (ROM).

The present invention also provides a computer readable storage medium storing a computer program which, when executed by a processor of an electronic device, can implement:

Acquiring a flow authentication node number, and splitting a preset standard RGB value into a node RGB value set according to the flow authentication node number;

encrypting the node RGB value set and randomly distributing the node RGB value set to a pre-constructed flow authentication node set to obtain an exclusive authentication RGB value corresponding to each flow authentication node;

acquiring a text to be authenticated, and receiving a logic electronic seal authenticated on the text to be authenticated by a first authentication node in a process authentication node set according to a corresponding exclusive authentication RGB value to obtain a first authentication text;

acquiring a zero degree reference standard point, calculating a reference authentication angle of a logic electronic seal in the first authentication text according to the zero degree reference standard point, and encrypting the reference authentication angle to obtain an encryption authentication angle;

identifying a second authentication node in the flow authentication node set, sending the first authentication text and the encryption authentication angle to the second authentication node, and decrypting the encryption authentication angle by using a decryption private key of the second authentication node to obtain a decryption authentication angle;

performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text;

Identifying an iteration authentication node set of the second authentication node, executing iteration authentication on the iteration authentication text by using the iteration authentication node set, and updating the iteration authentication node set and the iteration authentication text;

judging whether the iterative authentication text completes authentication or not;

if the iterative authentication text does not complete the authentication, returning to the step of identifying the iterative authentication node set of the second authentication node;

and if the iterative authentication text completes authentication, the iterative authentication text is subjected to authentication release, and the process safety authentication of the logic electronic seal is completed.

In the several embodiments provided in the present invention, it should be understood that the disclosed apparatus, device and method may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the modules is merely a logical function division, and there may be other manners of division when actually implemented.

The modules described as separate components may or may not be physically separate, and components shown as modules may or may not be physical units, may be located in one place, or may be distributed over multiple network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of this embodiment.

In addition, each functional module in the embodiments of the present invention may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The integrated units can be realized in a form of hardware or a form of hardware and a form of software functional modules.

It will be evident to those skilled in the art that the invention is not limited to the details of the foregoing illustrative embodiments, and that the present invention may be embodied in other specific forms without departing from the spirit or essential characteristics thereof.

Finally, it should be noted that the above-mentioned embodiments are merely for illustrating the technical solution of the present invention and not for limiting the same, and although the present invention has been described in detail with reference to the preferred embodiments, it should be understood by those skilled in the art that modifications and equivalents may be made to the technical solution of the present invention without departing from the spirit and scope of the technical solution of the present invention.

Claims (10)

1. A process security authentication method for a logical electronic seal, the method comprising:

acquiring a flow authentication node number, and splitting a preset standard RGB value into a node RGB value set according to the flow authentication node number;

Encrypting the node RGB value set and randomly distributing the node RGB value set to a pre-constructed flow authentication node set to obtain an exclusive authentication RGB value corresponding to each flow authentication node;

acquiring a text to be authenticated, and receiving a logic electronic seal authenticated on the text to be authenticated by a first authentication node in a process authentication node set according to a corresponding exclusive authentication RGB value to obtain a first authentication text;

acquiring a zero degree reference standard point, calculating a reference authentication angle of a logic electronic seal in the first authentication text according to the zero degree reference standard point, and encrypting the reference authentication angle to obtain an encryption authentication angle;

identifying a second authentication node in the flow authentication node set, sending the first authentication text and the encryption authentication angle to the second authentication node, and decrypting the encryption authentication angle by using a decryption private key of the second authentication node to obtain a decryption authentication angle;

performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text;

identifying an iteration authentication node set of the second authentication node, executing iteration authentication on the iteration authentication text by using the iteration authentication node set, and updating the iteration authentication node set and the iteration authentication text;

Judging whether the iterative authentication text completes authentication or not;

if the iterative authentication text does not complete the authentication, returning to the step of identifying the iterative authentication node set of the second authentication node;

and if the iterative authentication text completes authentication, the iterative authentication text is subjected to authentication release, and the process safety authentication of the logic electronic seal is completed.

2. The process security authentication method of a logical electronic seal according to claim 1, wherein splitting the preset standard RGB values into the node RGB value sets according to the process authentication node number comprises:

determining RGB value split according to the number of the flow authentication nodes;

identifying a single quantization color value of the standard RGB values;

according to the RGB value split number, carrying out random split on the single quantized color value to obtain a single quantized split value set;

and randomly distributing the single quantitative analysis value set to the flow authentication node set to obtain the node RGB value set.

3. The process security authentication method of a logic electronic seal according to claim 1, wherein the receiving the logic electronic seal authenticated on the text to be authenticated by the first authentication node in the process authentication node set according to the corresponding proprietary authentication RGB value, obtains a first authentication text, comprising:

Acquiring a logic electronic seal of the first authentication node;

constructing a seal control according to the logical electronic seal of the first authentication node by utilizing a pre-constructed digital image processing technology and an ActiveX control technology;

acquiring a random seal deflection angle, and embedding the seal control into the text to be authenticated according to the random seal deflection angle to obtain the text of the control to be authenticated;

and receiving a logic electronic seal authenticated by the user on the control text to be authenticated according to the corresponding exclusive authentication RGB value at the first authentication node to obtain a first authentication text.

4. A process security authentication method for a logical electronic seal according to claim 3, wherein the acquiring the zero degree reference mark point comprises:

identifying a logical electronic seal in the first authentication text;

confirming an outer ring circumference of the logical electronic seal;

and identifying the zero-degree reference punctuation on the circumference of the outer ring according to a zero-degree punctuation confirmation method, wherein the zero-degree punctuation confirmation method refers to a method for determining the position of the zero-degree reference punctuation.

5. The process security authentication method of a logical electronic seal according to claim 4, wherein the calculating the reference authentication angle of the logical electronic seal in the first authentication text according to the zero degree reference mark point includes:

Identifying a forward punctuation on the outer circumference of the logical electronic seal in the first authentication text;

determining the outer ring circle center of the outer ring circumference of the logic electronic seal;

connecting the circle center of the outer ring with the zero-degree reference mark point to obtain a seal zero-degree mark;

connecting the forward punctuation with the center of the outer ring to obtain a seal reference marking;

and calculating the marking angle of the reference marking of the stamp according to a preset direction by taking the zero marking of the stamp as a zero scale line, so as to obtain the reference authentication angle.

6. The process security authentication method of a logical electronic seal according to claim 1, wherein encrypting the reference authentication angle to obtain an encrypted authentication angle comprises:

acquiring an encrypted public key of the second authentication node;

and carrying out public key encryption on the reference authentication angle by utilizing the encryption public key of the second authentication node to obtain an encryption authentication angle.

7. The method for performing iterative seal authentication on the first authentication document by using the second authentication node according to the decryption authentication angle and the corresponding proprietary authentication RGB value to obtain an iterative authentication document, as set forth in claim 1, comprising:

Acquiring the stamp shape of the logic electronic stamp;

constructing a second exclusive authentication seal according to the seal shape by utilizing the exclusive authentication RGB value corresponding to the second authentication node;

according to the logic electronic seal on the first authentication text, the second exclusive authentication seal is overlapped and normalized on the first authentication text, and a second authentication seal to be rotated is obtained;

and rotating the initial to-be-rotated second authentication seal according to the decryption authentication angle to obtain the iterative authentication text.

8. The method for secure authentication of a logical electronic seal according to claim 7, wherein the step of performing coincidence normalization of the second exclusive authentication seal on the first authentication text according to the logical electronic seal on the first authentication text to obtain a second authentication seal to be rotated comprises:

taking the logic electronic seal on the first authentication text as a first exclusive authentication seal;

identifying an outer ring circumferential position of the first proprietary authentication seal;

acquiring the outer ring circumference of the second exclusive authentication seal, and superposing the second exclusive authentication seal on the first exclusive authentication seal according to the outer ring circumference and the outer ring circumference position of the second exclusive authentication seal to obtain an initial second authentication seal;

Identifying zero degree reference punctuation and forward punctuation of the initial second authentication seal;

and normalizing the forward punctuation of the initial second authentication seal to the zero-degree reference punctuation to obtain the second authentication seal to be rotated.

9. The process security authentication method of a logical electronic seal according to claim 2, wherein the judging whether the iterative authentication text completes authentication includes:

extracting an iterative authentication seal from the iterative authentication text;

extracting single quantization splitting sum values of the iterative authentication seal;

judging whether the single quantization split sum value is equal to the single quantization color value or not;

if the single quantization split sum value is not equal to the single quantization color value, the iterative authentication text does not finish authentication;

and if the single quantization split sum value is equal to the single quantization color value, the iterative authentication text completes authentication.

10. A flow security authentication device for a logical electronic seal, the device comprising:

the exclusive authentication RGB value distribution module is used for acquiring the number of the flow authentication nodes and splitting the preset standard RGB value into a node RGB value set according to the number of the flow authentication nodes; encrypting the node RGB value set and randomly distributing the node RGB value set to a pre-constructed flow authentication node set to obtain an exclusive authentication RGB value corresponding to each flow authentication node;

The first authentication text authentication module is used for acquiring a text to be authenticated, receiving a logic electronic seal authenticated on the text to be authenticated by a first authentication node in the process authentication node set according to the corresponding exclusive authentication RGB value, and obtaining a first authentication text;

the reference authentication angle encryption module is used for acquiring a zero degree reference standard point, calculating a reference authentication angle of the logic electronic seal in the first authentication text according to the zero degree reference standard point, and encrypting the reference authentication angle to obtain an encryption authentication angle;

the seal iteration authentication module is used for identifying a second authentication node in the flow authentication node set, sending the first authentication text and the encryption authentication angle to the second authentication node, and decrypting the encryption authentication angle by using a decryption private key of the second authentication node to obtain a decryption authentication angle; performing iterative seal authentication on the first authentication text by using the second authentication node according to the decryption authentication angle and the corresponding exclusive authentication RGB value to obtain an iterative authentication text; identifying an iteration authentication node set of the second authentication node, executing iteration authentication on the iteration authentication text by using the iteration authentication node set, and updating the iteration authentication node set and the iteration authentication text; judging whether the iterative authentication text completes authentication or not; if the iterative authentication text does not complete the authentication, returning to the step of identifying the iterative authentication node set of the second authentication node;

And the text authentication release module is used for releasing the iteration authentication text by authentication if the iteration authentication text is authenticated.