The manufacture method of electronic false-proof seal
1, technical field
The present invention relates to the application technology of a kind of Computer Applied Technology or ecommerce, specifically a kind of making of electronic false-proof seal and using method thereof.
2, background technology
In today of information technology develop rapidly, the propagation that network and computer make information with exchange convenient and quick.In order to improve office efficiency, increasing government organs, incorporated business adopt teleworking software platform (such as MS Office, WPS or other OA system), by the transmission of network realization official document, enjoy quick and efficient that the Internet brought.But thing followed network intrusions and attack have brought very big safety problem again, the big imagination that far exceeds people of its destructive power, and network security problem also more and more is subject to people's attention.
Electronic document is compared with the traditionally on paper document, has sizable difference.Whom is document author? whether is document author the author that document is signed really? do not have and pretended to be by other people? whether document content is the initial content of writing of author, do not have and distorted by the people beyond the author? because electronic document is very easy to duplicate and revise, the fairly simple problem of the above-mentioned script complexity that in electronic document, becomes.
Traditional method such as seal, handwritten signature etc., is helpless in the face of these problems the time.Because electronic information can very easily be revised and duplicate, traditional seal, the handwritten signature of inserting in electronic document can very easily accurately copy in another part document, therefore traditional seal, the identity that handwritten signature can't identify the author.
Along with the development of mathematics and mechanics of communication, cryptography is also full-fledged as a special subject.Digital signature based on cryptography has experienced long attack, test, demonstration, becomes safe, stable digital signature scheme.
China's promulgation Electronic Signature Law in 2005 has given electronic signature and handwritten signature equal legal status.Therefore, digital signature will obtain great development.
The pluses and minuses of existing the most close technology are: the digital signature technology of main flow is the RSA based on public key cryptography now, DSA, signature systems such as elliptic curve.These signature systems are in conjunction with CA, and technology such as digital certificate realize.These technology have enough security intensities.
But these technology are quite complicated, is a lot of binary digit with these methods to " signature " of an electronic document, the signature that same main body is done different electronic document is diverse numeral, and will use the digital certificate of signature main body during checking.
These notions are too abstract and complicated, much less to not understanding the user of computer, with regard to the most computers technical professional that gets it right, if without special study and training, also are difficult to understand its notion and application mode.If extensive use is based on the digital signature system of public key cryptography, its complexity becomes a serious obstacle.
The problem of this complexity seems particularly outstanding at home.But,, very strong for the market demand of electronic signature although there is the obstacle of technical complexity.Therefore, under this background, the domestic E-seal technology that has produced a kind of mixed style: when a document is done electronic signature, use above-mentioned signature system based on public key cryptography.Simultaneously, in document, insert the digitized image of a traditional seal or handwritten signature.Like this, make domestic consumer understand easily and acceptance, greatly reduce technology barrier.This mode just has been subjected to a lot of users once release, does not particularly understand the welcome of the domestic consumer of computer technology details.Therefore, many companies such as Founder, Kingsoft fall over each other to have released similar software.
But this E-seal can only be verified with electronic form.After printing to document on the paper, the true and false that just can't identifying file.Reason is because the assailant can accurately duplicate the digitized image of traditional seal or handwritten signature and forge out paper document.
Simultaneously, the problem that this method exists is: what really guarantee document security is invisible digital signature data, but the seal that the user sees is the digitized image of traditional seal or handwritten signature, and the user is easy to understand E-seal according to the custom of using traditional seal, the situation that this just is easy to generate misuse has influence on fail safe.Because only the digital map with this traditional seal or handwritten signature similarly is to realize fail safe.
Such as, thereby there is the people to forge the picture of this seal, and this picture (rather than digital signature) is added in the document.If the user does not add differentiation, think that easily this is a legal seal by mistake.
3, summary of the invention
The objective of the invention is to overcome the existing in actual applications deficiency of prior art, a kind of making and using method thereof of electronic false-proof seal is provided.
The present invention proposes at the problems referred to above, electronic false-proof seal is made up of traditional seal signature and digital signature, digital signature is the e-text to be signed and the key of by procuration person identity, with the string number that obtains after the Digital Signature Algorithm computing, then this string numeral is embedded in the traditional seal image, be documented in this commercial electronic document of record by the electronic false-proof seal of digital signature and the traditional seal combination some as business document: making step is as follows:
The seal holder is when adding a cover electronic false-proof seal to a electronic document, earlier this electronic document is done digital signature, method is document to be done a hash operation with sha1 or other hashing algorithm obtain eap-message digest, then this eap-message digest is carried out computing with public key algorithm, obtain a digital signature, then the traditional seal signature being carried out digitized image deals with, embedding in the image of seal signature, again the seal signature image that is added with digital signature is inserted in the electronic document at the unique digital signature of this document;
In the manufacture method of electronic false-proof seal of the present invention, digital signature is one or more the combination wherein of bar code, two-dimensional bar code, distortion and the character string through setting type.
In the manufacture method of electronic false-proof seal of the present invention, the traditional seal signature is the combination of one or both modes of official seal or handwritten signature.
The discrimination method of electronic false-proof seal:
A, with the electronic false-proof seal of bar code anti-counterfeit mark, separate the information of reading digital signature with bar-code reader;
B, be the electronic false-proof seal of anti-fake mark, manual numeric string imported computer, obtain digital signature information after the decoding with the numeric string;
C, adopt public key algorithm and seal holder's digital certificate to decode to digital signature information, obtain eap-message digest, the content of electronic document is done a hash operation obtain eap-message digest, whether unanimity can be determined the true and false that seal is signed to compare two parts of eap-message digests.
Characteristics and the effect that can produce
This method more meets people's use habit than the digital signature of simple cryptography method, is easy to domestic consumer and accepts and use.
This method is compared with the E-seal of mixed style noted earlier, and the E-seal that this method produces not only can be differentiated the true and false of electronic edition document, can also differentiate the true and false of the paper document that is generated by electronic document.
4, description of drawings
Accompanying drawing 1 is the structural representation of traditional seal;
Accompanying drawing 2 is the security stamp structural representation of the anti-counterfeit bar code digital signature of band one dimension;
Accompanying drawing 3 is the security stamp structural representation with two-dimentional anti-counterfeit bar code digital signature;
Accompanying drawing 4 is the security stamp structural representation of band shape anti-counterfeit bar code digital signature;
Accompanying drawing 5 is the security stamp structural representation of limit portion band numeric string digital signature;
Accompanying drawing 6 is the security stamp partial structurtes schematic diagram of limit portion band numeric string electronic signature.
5, embodiment
Electronic false-proof seal of the present invention is made up of universal seal signature and digital signature, digital signature is inserted in the seal signature as the part of universal seal signature, and be documented in this commercial electronic document of record by the electronic false-proof seal of digital signature and the combination of the seal signature some as business document: making step is as follows:
(1) the seal holder is when adding a cover electronic false-proof seal to a electronic document, earlier this electronic document is done digital signature, method is document to be done a hash operation with sha1 or other hashing algorithm obtain eap-message digest, then this eap-message digest is formulated a public key algorithm or digital signature, as carry out RSA, DSA or elliptic curve, then the traditional seal signature being carried out digitized image deals with, embedding in the image of seal signature, again the seal signature image that is added with digital signature is inserted in the electronic document at the unique digital signature of this document.
(2) discrimination method of text: identical for electronic document with general digital signature method, for paper document, paper document is obtained the text of electronic document by identification of OCR literal or manual method input computer;
(3) discrimination method of electronic false-proof seal:
A decodes digital signature information with the electronic false-proof seal of bar code anti-counterfeit mark with bar-code reader;
B is that the electronic false-proof seal of anti-fake mark adopts scanner with the digital watermarking;
C is that the electronic false-proof seal of anti-fake mark adopts and manual numeric string to be imported computer with the numeric string, and the public key algorithm sensing pin that provides according to the electronic false-proof seal holder is to unique digital signature information of electronic document content.
Digital signature is bar code, two-dimensional bar code, dwindle and numeric string through setting type or the digital watermarking various forms that reads with optical means in one or more combination.
When a document is added a cover E-seal, earlier to this document do digital signature (document is done a hash operation with sha1 or other hashing algorithm obtains eap-message digest, then to this eap-message digest with public key algorithm, as RSA, DSA or elliptic curve are signed).Digitized image to traditional seal deals with then, and the digital signature of this document is embedded in the seal image, again the seal image of handling is inserted document.Digital signature is embedded seal image can adopt multiple way:, dwindle and numeric string the digital watermarking that can read with optical means etc. as bar code through setting type.
Discrimination process: identical for electronic document with general digital signature method, repeat no more.
For paper document, adopt following process: paper document by OCR or manual method input computer, is obtained the e-text of document.With seal bar-code reader (program bar code) or scanner (digital watermarking scheme) or manual (numeric string scheme) input computer, and decode digital signature information, verify with the method for known certifying digital signature then.