HRP20160467A2 - System for electronic mail certification - Google Patents

System for electronic mail certification Download PDF

Info

Publication number
HRP20160467A2
HRP20160467A2 HRP20160467AA HRP20160467A HRP20160467A2 HR P20160467 A2 HRP20160467 A2 HR P20160467A2 HR P20160467A A HRP20160467A A HR P20160467AA HR P20160467 A HRP20160467 A HR P20160467A HR P20160467 A2 HRP20160467 A2 HR P20160467A2
Authority
HR
Croatia
Prior art keywords
mail
server
block
electronic mail
outgoing
Prior art date
Application number
HRP20160467AA
Other languages
Croatian (hr)
Inventor
Jan Bednář
Ivan Janoušek
Šimon Kubišta
Original Assignee
Jan Bednář
Ivan Janoušek
Šimon Kubišta
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jan Bednář, Ivan Janoušek, Šimon Kubišta filed Critical Jan Bednář
Publication of HRP20160467A2 publication Critical patent/HRP20160467A2/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/006Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols involving public key infrastructure [PKI] trust models
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3297Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving time stamps, e.g. generation of time stamps

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

Sustav za certificiranje elektroničke pošte koji podrazumijeva terminalni uređaj (1) elektroničke pošte pošiljatelja, koji se može povezati s poslužiteljem odlazne elektroničke pošte (16), koji se može povezati s poslužiteljem dolazne elektroničke pošte (13), na koji se može povezati terminalni uređaj (14) primatelja elektroničke pošte. Poslužitelj odlazne elektroničke pošte (16) može se povezati s poslužiteljem (17) kvalificiranog certifikacijskog tijela, a poslužitelj (17) kvalificiranog certifikata podrazumijeva unutarnji generator vremena (8).An e-mail certification system that involves a sender's e-mail terminal (1) that can be connected to an outgoing e-mail server (16), which can be connected to an incoming e-mail server (13), to which a terminal device ( 14) the recipient of the e-mail. The outgoing e-mail server (16) can be connected to the server (17) of the qualified certification body, and the server (17) of the qualified certificate implies an internal time generator (8).

Description

Područje izuma Field of invention

Izum se odnosi na sustav za certifikaciju elektroničke pošte (e-mail), koji obuhvaća terminalni uređaj pošiljatelja e-pošte, koji se može povezati s poslužiteljem odlazne e-pošte, koji se može priključiti na poslužitelj dolazne e-pošte, na koji se može povezati terminalni uređaj primatelja e-mail. The invention relates to an electronic mail (e-mail) certification system, which includes a terminal device of the e-mail sender, which can be connected to an outgoing e-mail server, which can be connected to an incoming e-mail server, to which connect the terminal device of the e-mail recipient.

Stanje tehnike State of the art

Trenutno stanje elektroničke komunikacije uglavnom se temelji na izvornim principima Internet interkonekcije, koji naglašavaju veliku varijabilnost mogućih sredstva za komunikaciju, ali na osnovnoj razini nije definirano da se za komunikaciju zahtijeva visok stupanj pouzdanosti III da će čak ponuditi mogućnost provjere takve obavijesti od strane jednog od tijela javne vlasti. The current state of electronic communication is mainly based on the original principles of Internet interconnection, which emphasize the great variability of the possible means of communication, but it is not defined at the basic level that communication requires a high degree of reliability III that it will even offer the possibility of verification of such notification by one of the authorities public authorities.

Poznati sustavi za elektroničke komunikacije obuhvaćaju terminalni uređaj pošiljatelja e-pošte, koji se može međusobno povezati s poslužiteljem odlazne e-pošte, koji se može priključiti na poslužitelj dolazne e-pošte, na koji se može spojiti terminalni uređaj primatelja e-mail. Known systems for electronic communications include an e-mail sender's terminal device, which can be interconnected with an outgoing e-mail server, which can be connected to an incoming e-mail server, to which an e-mail recipient's terminal device can be connected.

Poslužitelj odlazne e-pošte koristi "Simple Mail Transfer Protocol" (kratica SMTP), a poslužitelj dolazne pošte za primateljev pristup poruci koristi POP3 ili IMAP protokol. Operator usluga e-pošte isključivo radi s porukom na razini odlazne i dolazne elektroničke pošte, koji je instaliran samo na temelju općih standarda bez obzira na valjanost informacije elektroničke komunikacije u tijeku. The outgoing e-mail server uses "Simple Mail Transfer Protocol" (abbreviation SMTP), and the incoming e-mail server uses the POP3 or IMAP protocol for the recipient's access to the message. The e-mail service operator exclusively works with the message at the level of outgoing and incoming electronic mail, which is installed only on the basis of general standards, regardless of the validity of the information of the electronic communication in progress.

Informacije o sadržaju elektroničke pošte, vrijeme i status prijenosa obrađeni su i pohranjeni samo na razini lokalnog uređaja pošiljatelja i primatelja poruke e-pošte. Dnevnik operatora usluga e-pošte nije moguće pratiti u većini slučajeva I njegova valjanost uvijek može biti upitna. Information about email content, time and transmission status is processed and stored only at the level of the local device of the sender and receiver of the email message. The log of the e-mail service operator is not traceable in most cases and its validity can always be questioned.

U današnjem društvu, važnost elektroničke komunikacije je u porastu jer dolazi do pomaka od uobičajene ugovorne dokumentacije "na papiru" za Izvršenje niza zakonskih koraka prema standardnoj elektroničkoj pošti. In today's society, the importance of electronic communication is increasing as there is a shift from the usual contractual documentation "on paper" to the Execution of a series of legal steps towards standard electronic mail.

Međutim, u ovom trenutku elektronička pošta ne pruža mogućnost neupitne provjere sadržaja ili trenutka slanja. Sumnje vezane uz sadržaj ili vrijeme slanja e-pošte u tom slučaju imaju primarni utjecaj na pregovore stranaka i istodobno na pravnu sigurnost sudionika u pregovorima. However, at the moment, electronic mail does not provide the possibility of unquestionably checking the content or the moment of sending. Doubts related to the content or time of sending the e-mail in that case have a primary impact on the negotiations of the parties and at the same time on the legal security of the participants in the negotiations.

Sustav koji je trenutno dostupan za potvrđenu isporuku poruka e-pošte je na primjer informacijski sustav podatkovnih sučelja kojim upravlja Češka* Posta S.P. (Češka pošta), ali ova usluga radi potpuno odvojeno od sredstava za standardnu e-mail komunikaciju, a provodi se kroz namjenska korisnička sučelja, a njezin postotak zastupljenosti u uobičajenoj komunikaciji na minimalnoj je razini. The system currently available for confirmed delivery of e-mail messages is for example the data interface information system operated by the Czech* Posta S.P. (Czech Post), but this service works completely separately from means for standard e-mail communication, and is carried out through dedicated user interfaces, and its percentage of representation in normal communication is at a minimal level.

Sustav ne omogućava korištenje standardnih komunikacijskih e-mail klijenata, ne samo sa stajališta alata koji stvaraju takvu komunikaciju već i sa stajališta uspostavljenih protokola za datoteke pri radu s dokumentima. Udobnost sustava podatkovnih sučelja vrlo je niska u odnosu na udobnost konvencionalne komunikacije e-poštom. The system does not allow the use of standard communication e-mail clients, not only from the point of view of tools that create such communication, but also from the point of view of established protocols for files when working with documents. The comfort of data interface systems is very low compared to the comfort of conventional e-mail communication.

Stanje tehnike dodatno omogućava korištenje uslugu vremenskog pečata (definirano Zakonom br. 227/2000 o elektroničkom potpisu) kako bi točno zabilježio trenutak nastanka i sadržaj datoteke pohranjene na lokalnoj razini, na primjer na korisnikovom računalu. Međutim, vrijeme slanja poruke e-pošte potvrđeno na ovaj način nije vjerodostojno jer ovaj postupak bilježi trenutak nastanka poruke e-pošte, ali samo na temelju informacija koje se koriste od korisnika na lokalnoj postaji, odnosno na temelju prilagođenih postavki vremena na sustavu korisnikove postaje. The state of the art additionally enables the use of a time stamp service (defined by Law No. 227/2000 on electronic signatures) in order to accurately record the moment of creation and the content of a file stored locally, for example on the user's computer. However, the time of sending an e-mail message confirmed in this way is not reliable, because this procedure records the moment of the creation of the e-mail message, but only based on the information used from the user at the local station, that is, based on the adjusted time settings on the system of the user's station.

Osim toga, niti slanje se ne može provjeriti jer je moguće uputiti prigovor da takva poruka nije uručena za slanje na primjer zbog pogreške na internet vezi ili pogreške na poslužitelju usluga elektroničke komunikacije i stoga nije bila dostavljena primatelju, a takvi prigovori ne mogu se oboriti prema trenutačnom stanju tehnike. In addition, the sending cannot be verified either, since it is possible to object that such a message was not delivered for sending, for example due to an error in the Internet connection or an error on the server of the electronic communication service, and therefore was not delivered to the recipient, and such objections cannot be rebutted according to the current state of the art.

Svrha izuma je da predloži takav sustav koji omogućava certificiranje elektroničke pošte koja se uobičajeno koristi. Za potrebe ovog zahtjeva, certificiranje se odnosi na objektivnu provjeru sadržaja i vremena slanja elektroničke pošte. The purpose of the invention is to propose such a system that enables the certification of commonly used electronic mail. For the purposes of this requirement, certification refers to the objective verification of the content and time of sending electronic mail.

Opis izuma Description of the invention

Gore navedena svrha postiže se sustavom za certifikaciju elektroničke pošte koji obuhvaća terminalni uređaj za elektroničku poštu pošiljatelja, koji se može povezati s poslužiteljem odlazne elektroničke pošte, koji se može povezati s poslužiteljem dolazne elektroničke pošte, na koji se može povezati terminalni uređaj primatelja elektroničke pošte, čiji princip je prema izumu, da se poslužitelj odlazne elektroničke pošte međusobno može povezati s poslužiteljem kvalificiranog certifikacijskog tijela, a poslužitelj kvalificiranog certifikacijskog tijela obuhvaća unutarnji generator vremena. The above purpose is achieved by an electronic mail certification system comprising a sender's electronic mail terminal device, which can be connected to an outgoing electronic mail server, which can be connected to an incoming electronic mail server, to which the electronic mail receiver's terminal device can be connected, the principle of which, according to the invention, is that the outgoing e-mail server can be mutually connected to the server of the qualified certification body, and the server of the qualified certification body includes an internal time generator.

Prednost sustava prema izumu je u tome što omogućuje da se objektivno i nedvojbeno potvrđuju sadržaj i vrijeme slanja elektroničke pošte. The advantage of the system according to the invention is that it makes it possible to objectively and unequivocally confirm the content and time of sending electronic mail.

Prema poželjnoj izvedbi, od terminalnog uređaja pošiljatelja elektroničke pošte postavljen je vlastiti server pošiljatelja odlazne pošte. According to a preferred embodiment, a separate server of the sender of outgoing mail is set up from the terminal device of the sender of electronic mail.

U poželjnoj izvedbi, odlazni poslužitelj elektroničke pošte sadržava blok za obradu kontrolnog zbroja poruka e-pošte (checksum processing) i slijede redom blok za spremanje poruka s vremenskim pečatom i blok za standardno slanje obrađene poruke, pri čemu su blok za obradu kontrolnog zbroja poruka e-pošte i blok za spremanje poruka s vremenskim pečatom povezani s unutarnjim generatorom vremena poslužitelja kvalificiranog certifikacijskog tijela. U drugoj poželjnoj izvedbi, autorizacijski blok e-mail poruka postavljen je u poslužitelju odlazne elektroničke pošte prije obrade kontrolnog zbroja poruke e-pošte, blok za autorizaciju poruke e-pošte povezan je, putem baze podataka o korisnicima usluga, s bazom podataka dnevnika vremenskih pečata, koji je smješten u server kvalificiranog certifikacijskog tijela. In a preferred embodiment, the outgoing e-mail server contains a block for processing the checksum of e-mail messages (checksum processing) followed by a block for saving messages with a time stamp and a block for standard sending of the processed message, where the block for processing the checksum of messages e -mails and a block for saving messages with a time stamp connected to the internal time generator of the server of the qualified certification authority. In another preferred embodiment, the e-mail message authorization block is placed in the outgoing e-mail server prior to processing the e-mail message checksum, the e-mail message authorization block is connected, via the service user database, to the timestamp log database , which is placed in the server of the qualified certification body.

U drugoj poželjnoj izvedbi, u poslužitelju odlazne elektroničke pošte, nakon bloka za spremanje poruka s vremenskim pečatom, blok za potvrdu Integriteta poruke e-pošte i pohrana podataka poredani su jedan iza drugoga pri čemu je periferni uređaj pomoću kojega korisnik provjerava elektronički pečat međusobno povezan s unutarnjim generatorom vremena poslužitelja kvalificiranog certifikacijskog tijela. In another preferred embodiment, in the outgoing e-mail server, after the block for storing messages with a time stamp, the block for confirming the integrity of the e-mail message and the data storage are arranged one behind the other, wherein the peripheral device by which the user verifies the electronic stamp is interconnected with by the internal time generator of the server of the qualified certification body.

Periferni uređaj pomoću kojega korisnik provjerava elektronički pečat može se povezati sa terminalnim uređajem pošiljatelja i pohranu podataka. The peripheral device with which the user verifies the electronic seal can be connected to the sender's terminal device and store data.

Kratak opis crteža Brief description of the drawing

Tri primjera rasporeda (razmještaja) sustava za certifikaciju elektroničke pošte shematski su prikazani na slici. 1, 2,3 i 4. Three examples of the layout (deployment) of the electronic mail certification system are shown schematically in the figure. 1, 2, 3 and 4.

Opis preferiranih izvedbi Description of preferred embodiments

Primjer izvedbe osnovnog rasporeda sustava za certifikaciju elektroničke pošte prema izumu u skladu sa slikom 1 sastoji se od terminalnog uređaja 1 pošiljatelja elektroničke pošte, koji podrazumijeva bilo koje poznate tehničko sredstvo za slanje i primanje elektroničke pošte, na primjer mobilni telefon, tablet, računalo sa sustavom Windows, Apple Macintosh, Linux, Android operativni sustav, i tako dalje. An example of the implementation of the basic layout of the electronic mail certification system according to the invention in accordance with Figure 1 consists of the terminal device 1 of the sender of electronic mail, which includes any known technical means for sending and receiving electronic mail, for example a mobile phone, tablet, computer with Windows, Apple Macintosh, Linux, Android operating system, and so on.

Terminalni uređaj 1 pošiljatelja elektroničke pošte može se povezati s poslužiteljem 16 odlazne elektroničke pošte putem pošiljateljeve veze 2 putem Interneta (ADSL, GSM, Wi-Fi). U prikazanom izvedbenom primjeru server 16 odlazne elektroničke pošte ima sljedeće parametre: CPU E5-2603 2.4GHz, RAM 16 GB, HDD 2x 500GĐ SATA. Poslužitelj 16 odlazne elektroničke pošte koristi "Simple Mail Transfer Protocol" (skraćeno SMTP). The terminal device 1 of the sender of electronic mail can be connected to the server 16 of outgoing electronic mail via the sender's connection 2 via the Internet (ADSL, GSM, Wi-Fi). In the example shown, the outgoing e-mail server 16 has the following parameters: CPU E5-2603 2.4GHz, RAM 16 GB, HDD 2x 500 GĐ SATA. The outgoing e-mail server 16 uses "Simple Mail Transfer Protocol" (SMTP for short).

Poslužitelj 16 odlazne elektroničke pošte, preko veze primatelja 12 putem Interneta, može se povezati s poslužiteljem 13 dolazne elektroničke pošte koja ima sljedeće parametre u prikazanom primjeru izvedbe: CPU E5-2603 2.4GHz, RAM 16 GB, HDD 2x 500GB SATA. Poslužitelj 13 dolazne elektroničke pošte koristi POP3 ili IMAP protokol za primateljev pristup poruci. The server 16 of outgoing e-mail, through the connection of the recipient 12 via the Internet, can be connected to the server 13 of incoming e-mail, which has the following parameters in the shown example of performance: CPU E5-2603 2.4GHz, RAM 16 GB, HDD 2x 500GB SATA. The incoming e-mail server 13 uses the POP3 or IMAP protocol for the recipient's access to the message.

Na server 13 dolazne elektroničke pošte može se povezati terminalni uređaj 14 elektroničke pošte primatelja, koji obuhvaća, slično kao kod terminalnog uređaja 1. elektroničke pošte pošiljatelja, bilo koje poznato tehničko sredstvo za slanje i primanje elektroničke pošte, na primjer mobilni telefon, tablet, računalo sa sustavom Windows, Apple Macintosh, Linux, Android operativni sustav, i tako dalje. The terminal device 14 of the recipient's electronic mail can be connected to the server 13 of the incoming electronic mail, which includes, similarly to the terminal device 1 of the sender's electronic mail, any known technical means for sending and receiving electronic mail, for example a mobile phone, tablet, computer with Windows, Apple Macintosh, Linux, Android operating system, and so on.

Poslužitelj 16 odlazne elektroničke pošte može se povezati s poslužiteljem 17. kvalificiranih certifikata, koji obuhvaća unutarnji generator vremena 8. The outgoing email server 16 can be connected to the qualified certificate server 17, which includes an internal time generator 8.

U prikazanom izvedbenom primjeru serverom 17 kvalificiranog certifikacijskog tijela upravlja Češka Posta S.P. I ima sljedeće parametre: CPU E5-2603 2.4GHz, RAM 16 GB, HDD 2x 500GB SATA. Očito je da i drugi subjekti koji će zadovoljiti unaprijed definirane zahtjeve i dobiju odgovarajuće ovlaštenje mogu također djelovati kao tijelo kvalificirano za izdavanje certifikata. In the shown implementation example, the server 17 of the qualified certification body is managed by Češka Posta S.P. And it has the following parameters: CPU E5-2603 2.4GHz, RAM 16 GB, HDD 2x 500GB SATA. It is obvious that other entities that meet the predefined requirements and receive the appropriate authorization can also act as a body qualified to issue certificates.

Poslužitelj 16 odlazne elektroničke pošte obuhvaća blok 6 za obradu kontrolnog zbroja poruka e-pošte (ostvaren s CPU 2x E5-2620 2-OGHz, RAM 64 GB, HDD 2x 2TB SATA hardver), redom slijedi blok 7 za spremanje poruke s vremenskim pečatom (ostvaren s CPU E5-2603 2.4GHz, RAM 16 GB, HDD 2x 500GB SATA hardver) i bloka 11 standardno slanje obrađene poruke (ostvareno s CPU E5-2603 2.4GHz, RAM 16GB HDD, 2x 500GB SATA hardver). Blok 6 za obradu kontrolnog zbroja poruke e-pošte i bloka 7 za spremanje poruka s vremenskim pečatom povezani su s unutarnjim generatorom vremena 8 poslužitelja 17 kvalificiranog certifikacijskog tijela. The outgoing e-mail server 16 includes block 6 for processing the checksum of e-mail messages (realized with CPU 2x E5-2620 2-OGHz, RAM 64 GB, HDD 2x 2TB SATA hardware), followed by block 7 for saving the message with a time stamp ( realized with CPU E5-2603 2.4GHz, RAM 16 GB, HDD 2x 500GB SATA hardware) and block 11 standard sending of processed message (realized with CPU E5-2603 2.4GHz, RAM 16GB HDD, 2x 500GB SATA hardware). Block 6 for processing the checksum of the e-mail message and block 7 for saving messages with a time stamp are connected to the internal time generator 8 of the server 17 of the qualified certification authority.

Nakon slanja elektroničke pošte s bilo kojeg terminalnog uređaja 1 pošiljatelja elektroničke pošte putem korisničkog priključka 2 na poslužitelju 16. odlazne pošte, blok 6 za obradu kontrolnog zbroja e-mail izračunava kontrolnu sumu, koja se naziva hash, koji se šalje na server 17 kvalificiranog certifikacijskog tijela, gdje se na njega postavlja vremenski pečat u unutarnjem generatoru vremena 8 I poruke e-pošte s vremenskim pečatom šalju se u blok 7 za spremanje poruka s vremenskim pečatom. After sending e-mail from any terminal device 1 of the e-mail sender through the user interface 2 on the server 16 of the outgoing mail, the e-mail checksum processing block 6 calculates a checksum, which is called a hash, which is sent to the server 17 of the qualified certification body, where it is time-stamped in the internal time generator 8 And the time-stamped e-mail messages are sent to the time-stamped message storage block 7 .

Poruka e-pošte obrađena na ovaj način šalje se na server 13 dolazne elektroničke pošte preko bloka 11 standardnog slanja i preko veze primatelja 12 i poslužitelja dolazne pošte, šalje se na terminalni uređaj primatelja 14. The e-mail message processed in this way is sent to the server 13 of the incoming e-mail via the block 11 of the standard sending and via the connection of the recipient 12 and the server of the incoming mail, it is sent to the terminal device of the recipient 14.

Na temelju postavki usluge na razini bloka 7 za spremanje poruke, potvrda slanja poruke može se poslati pošiljatelju. Based on the settings of the service at the level of the block 7 for saving the message, the confirmation of sending the message can be sent to the sender.

Slijedeća varijanta primjera rasporeda elektroničkog sustava potvrđivanja pošte u skladu sa slikom 2 razlikuje se od primjera izvedbe slike 1 u tome da je u poslužitelju 16 odlazne elektroničke pošte, prije bloka 6 za obradu kontrolnog zbroja e-maila postavljen blok 3 za autorizaciju poruke (ostvareno s CPU E5-2603 2.4GHz, RAM 16 GB HDD, 2x 500GB SATA hardver), koji se, putem baze podataka korisnika usluga 4 (ostvareno s CPU E5-2603 2.4GHZ, RAM 16 GB, HDD 2x 500g SATA, sustav baze podataka MS SQ1 hardver), međusobno povezuje s bazom podataka 5 dnevnika vremenskih pečata (ostvareno s pomoću CPU E5-2603 2.4GHz, RAM 16 GB, HDD 2x 500GB SATA, sustav baze podataka MS SQL hardver) na poslužitelju 17 kvalificiranog certifikacijskog tijela. The following variant of the example layout of the electronic mail confirmation system in accordance with Figure 2 differs from the embodiment example of Figure 1 in that, in the server 16 of the outgoing electronic mail, before the block 6 for processing the e-mail checksum, the block 3 for the authorization of the message is placed (achieved with CPU E5-2603 2.4GHz, RAM 16 GB HDD, 2x 500GB SATA hardware), which, through the service user database 4 (achieved with CPU E5-2603 2.4GHZ, RAM 16 GB, HDD 2x 500g SATA, database system MS SQ1 hardware), interconnects with a database of 5 timestamp logs (achieved using CPU E5-2603 2.4GHz, RAM 16GB, HDD 2x 500GB SATA, database system MS SQL hardware) on server 17 of a qualified certification authority.

Elektronička pošta poslana je s bilo kojeg terminalnog uređaja 1 pošiljatelja elektroničke pošte putem pošiljateljeve veze 2 na poslužitelju 16 odlazne pošte pri čemu uz pomoć bloka 3 za autorizaciju poruke e-pošte, baze podataka 4 korisnika i baze podataka 5 dnevnika vremenskih pečata, provjeravaju odobrenja korisnika osobe koja traži potvrdu o elektroničkoj pošti. Daljnja obrada poruke e-pošte ista je kao u izvedbenom primjeru na slici 1 opisanoj ranije. The electronic mail is sent from any terminal device 1 of the sender of the electronic mail via the sender's connection 2 on the server 16 of the outgoing mail, whereby with the help of the block 3 for the authorization of the e-mail message, the database 4 of the user and the database 5 of the time stamp log, check the authorizations of the user of the person requesting confirmation of electronic mail. Further processing of the email message is the same as in the embodiment of Figure 1 described earlier.

Sljedeći izvedbeni primjer rasporeda elektroničkog sustava potvrđivanja pošte u skladu sa slikom 3 razlikuje se od primjera izvedbe kao na slici 1, u tome da su server 16 odlazne elektroničke pošte, postavljen nakon bloka 7 za spremanje poruka s vremenskim pečatom, blok 9 za provjeru integriteta poruke e-pošte (ostvareno s CPU E5-2603 2.4GHZ, RAM 16 GB HDD, 2x 500GB SATA hardver) i pohrana podataka 10 (ostvareno s CPU E5-2603 1.8GHz, RAM 16 GB, HDD24x WD RED RAID EDITON 3TB SATA hardver) uzastopno raspoređeni. Vanjski uređaj 15 za provjeru korisnika elektroničkog pečata (na primjer mobilni telefon, tablet, PC) međusobno su povezani s unutarnjim generatorom vremena 8 poslužitelja 17 kvalificiranog certifikacijskog tijela, dok se vanjski uređaj 15 za provjeru korisnika elektroničkog pečata može međusobno povezati i sa terminalnim uređajem 1 elektroničke pošte pošiljatelja i s pohranom podataka 10. The following embodiment example of the arrangement of the electronic mail confirmation system according to Figure 3 differs from the embodiment example as in Figure 1, in that the server 16 of the outgoing electronic mail, placed after the block 7 for storing messages with a time stamp, the block 9 for checking the integrity of the message email (achieved with CPU E5-2603 2.4GHZ, RAM 16 GB HDD, 2x 500GB SATA hardware) and data storage 10 (achieved with CPU E5-2603 1.8GHz, RAM 16 GB, HDD24x WD RED RAID EDITON 3TB SATA hardware) consecutively arranged. The external device 15 for verifying the user of the electronic seal (for example, a mobile phone, tablet, PC) is interconnected with the internal time generator 8 of the server 17 of the qualified certification body, while the external device 15 for verifying the user of the electronic seal can be interconnected with the terminal device 1 sender's e-mails and with data storage 10.

Obrada poruke e-pošte ista je kao u gore navedenom primjeru izvedbe slike 1 Dodavanje bloka 9 za provjeru integriteta poruka e-pošte i pohranu podataka 10, u kombinaciji s vanjskim uređajem 15 za provjeru korisnika elektroničkog pečata omogućava, osim funkcije opisane u odnosu na izvedbe u skladu sa slikom 1, provjeru dosljednosti pohranjenih podataka i valjanosti vremenske pečate, zajedno s cjelovitim spremanjem poruke, kao i naknadnu provjeru postupka dostave poruke na razini poslužitelja odlazne pošte 16 i poslužitelja dolazne pošte 13. Ovu provjeru može provesti i pošiljatelj poruke neovisno o operatoru poslužitelja odlazne pošte 16 pomoću vanjskog uređaja 15 za provjeru korisnika elektroničkog pečata. Pohrana podataka 10 poruke e-pošte, vremenski pečat poruke i ostali atributi koriste se za spremanje potpunog skupa podataka koji se odnose na poslane poruke, što dodatno omogućuje pristup pošiljatelju poruke i provjeru ili rad sa spremljenim porukama prema definiranim pravilima. The processing of the e-mail message is the same as in the above-mentioned example embodiment of figure 1. The addition of the block 9 for checking the integrity of the e-mail messages and the data storage 10, in combination with the external device 15 for verifying the user of the electronic seal enables, in addition to the function described in relation to the embodiments in accordance with Figure 1, a check of the consistency of the stored data and the validity of the time stamp, together with a complete saving of the message, as well as a subsequent check of the message delivery process at the level of the outgoing mail server 16 and the incoming mail server 13. This check can be carried out by the sender of the message independently of the operator of the outgoing mail server 16 using an external device 15 for verifying the user of the electronic stamp. Data storage 10 e-mail messages, message timestamp and other attributes are used to save a complete set of data related to sent messages, which additionally allows access to the sender of the message and checking or working with saved messages according to defined rules.

Sljedeća varijanta primjera rasporeda sustava za certifikaciju elektroničke pošte prema slici 4 razlikuje se od primjera izvedbe prema slici 1 u tome da pošiljatelj ima svoj server 18 pošiljateljeve odlazne pošte (ostvareno s CPU 2x E5-2620 2.0GHz, RAM 64GB HDD 2x 2TB SATA hardver). Poslužitelj 16 odlazne elektroničke pošte implementiran je kao predajni SMTP poslužitelj, koji je nadređen korisnikovom vlastitom poslužitelju 18 korisnikove odlazne pošte. The following variant of the example layout of the electronic mail certification system according to Figure 4 differs from the example embodiment according to Figure 1 in that the sender has its own server 18 of the sender's outgoing mail (realized with CPU 2x E5-2620 2.0GHz, RAM 64GB HDD 2x 2TB SATA hardware) . The server 16 of outgoing e-mail is implemented as a forward SMTP server, which is superior to the user's own server 18 of the user's outgoing mail.

Poruka se šalje iz terminalnog uređaja 1 pošiljatelja elektroničke pošte na server 16 odlazne elektroničke pošte putem korisnikovog vlastitog poslužitelja 18 korisnikove odlazne pošte. Daljnja obrada poruke e-pošte je potom ista kao u izvedbenom primjeru na slici 1 opisanom ranije. The message is sent from the terminal device 1 of the sender of electronic mail to the server 16 of outgoing electronic mail via the user's own server 18 of the user's outgoing mail. Further processing of the email message is then the same as in the embodiment in Figure 1 described earlier.

1. terminalni uređaj elektroničke pošte pošiljatelja 1. terminal device of the sender's electronic mail

2. priključak pošiljatelja 2. sender connection

3. blok za autorizaciju poruka e-pošte 3. block for authorization of e-mail messages

4- baze korisnika usluga 4- service user bases

5- baza podataka dnevnika vremenskih pečata 5- timestamp log database

6- blok za obradu kontrolnog zbroja poruke e-pošte 6- block for processing the checksum of the e-mail message

7- blok za spremanje poruka s vremenskim pečatom 8. unutarnji generator vremena 7- block for saving messages with time stamp 8. internal time generator

9- blok za provjeru integriteta poruke e-pošte 9- block for checking the integrity of the e-mail message

10- pohrana podataka 10- data storage

11- blok standardnog slanja obrađene poruke 11- block of standard sending of the processed message

12- Priključak primatelja 12- Receiver connection

13- poslužitelj dolazne elektroničke pošte 13- incoming e-mail server

14- terminalni uređaj primatelja 14- terminal device of the recipient

15- vanjski uređaj (periferni) za provjeru korisnika elektroničkih pečata 15- external device (peripheral) for checking users of electronic seals

16- poslužitelj odlazne elektroničke pošte 16- outgoing e-mail server

17- poslužitelj kvalificiranih certifikata 17- server of qualified certificates

18- pošiljateljev poslužitelj odlazne pošte 18- sender's outgoing mail server

Claims (5)

1. Sustav za certificiranje elektroničke pošte koja ima terminalni uređaj (1) pošiljatelja elektroničke pošte, koji se može međusobno povezati s poslužiteljem odlazne elektroničke pošte (16), koji se može povezati s poslužiteljem dolazne elektroničke pošte (13), na koji se može povezati terminalni uređaj (14) primatelja elektroničke pošte, naznačen time, da se poslužitelj odlazne elektroničke pošte (16) može povezati s poslužiteljem (17) kvalificiranog certifikata pri čemu poslužitelj (17) kvalificiranog certifikata obuhvaća unutarnji generator vremena (8).1. An electronic mail certification system having a terminal device (1) of an electronic mail sender, which can be interconnected with an outgoing electronic mail server (16), which can be connected to an incoming electronic mail server (13), which can be connected to the terminal device (14) of the e-mail recipient, characterized in that the outgoing e-mail server (16) can be connected to the qualified certificate server (17), wherein the qualified certificate server (17) comprises an internal time generator (8). 2. Sustav za certificiranje elektroničke pošte u skladu s patentnim zahtjevom 1, naznačen time, da je nakon terminalnog uređaja (1) pošiljatelja elektroničke pošte postavljen pošiljateljev vlastiti server (18) pošiljateljeve odlazne pošte.2. System for certification of electronic mail in accordance with patent claim 1, characterized in that after the terminal device (1) of the sender of electronic mail, the sender's own server (18) of the sender's outgoing mail is placed. 3. Sustav za certificiranje elektroničke pošte u skladu s patentnim zahtjevom 2, naznačen time, da poslužitelj odlazne elektroničke pošte (16) sadrži blok (6) za obradu kontrolnog zbroja poruke e-pošte, nakon kojega redom slijede blok (7) za spremanje poruka s vremenskim pečatom i blok (11) standardnog slanja obrađene poruke, pri čemu su blok 6 za obradu kontrolnog zbroja poruke e-pošte i bloka (7) za spremanje poruka s vremenskim pečatom povezani s unutarnjim generatorom vremena (8) poslužitelja (17) kvalificiranog certifikacijskog tijela.3. Electronic mail certification system according to patent claim 2, characterized in that the outgoing electronic mail server (16) contains a block (6) for processing the checksum of an e-mail message, followed by a block (7) for saving messages with a time stamp and a block (11) of a standard sending of a processed message, wherein a block 6 for processing a checksum of an e-mail message and a block (7) for saving messages with a time stamp are connected to the internal time generator (8) of the server (17) of the qualified certification body. 4. Sustav za certificiranje elektroničke pošte u skladu s patentnim zahtjevom 2 ili 3, naznačen time, da je blok za autorizaciju e-mail poruka (3) smješten u poslužitelj odlazne elektroničke pošte (16) ispred bloka (6) za obradu kontrolnog zbroja poruke e-pošte, blok za autorizaciju e-mail poruka (3) međusobno je povezan, putem baze podataka (4) korisnika usluga, s bazom podataka (5) dnevnika vremenskih pečata, koja je postavljena na poslužitelju (17) kvalificiranog certifikacijskog tijela.4. Electronic mail certification system according to patent claim 2 or 3, characterized in that the block for authorization of e-mail messages (3) is located in the server of outgoing electronic mail (16) in front of the block (6) for processing the checksum of the message e-mails, the block for authorization of e-mail messages (3) is interconnected, via the database (4) of the service users, with the database (5) of the log of time stamps, which is placed on the server (17) of the qualified certification body. 5. Sustav za certificiranje elektroničke pošte u skladu s patentnim zahtjevom 2 ili 3, naznačen time, da su u poslužitelju (16) odlazne elektroničke pošte, nakon bloka (7) za spremanje poruka s vremenskim pečatom, raspoređeni blok (9) za provjeru integriteta poruke e-pošte i pohrana podataka (10), dok je vanjski uređaj (15) za provjeru korisnika elektroničkog pečata povezan s unutarnjim generatorom vremena (8) poslužitelja (17) kvalificiranog certifikacijskog tijela i vanjski uređaj (15) za provjeru korisnika elektroničkog pečata međusobno se može povezati s terminalnim uređajem (1) pošiljatelja i pohranom podataka (10).5. System for certification of electronic mail in accordance with patent claim 2 or 3, characterized by the fact that in the server (16) there are outgoing electronic mails, after the block (7) for saving time-stamped messages, a distributed block (9) for verifying the integrity of the email message and data storage (10), while an external device (15) for verifying the user of the electronic stamp is connected to the internal time generator (8) of the server (17) of the qualified certification body and the external device (15) for verifying the user of the electronic seal can be mutually connected to the terminal device (1) of the sender and the data storage (10).
HRP20160467AA 2015-05-04 2016-05-03 System for electronic mail certification HRP20160467A2 (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CZ2015-31036U CZ28571U1 (en) 2015-05-04 2015-05-04 System for electronic mail certification

Publications (1)

Publication Number Publication Date
HRP20160467A2 true HRP20160467A2 (en) 2017-11-17

Family

ID=54054223

Family Applications (1)

Application Number Title Priority Date Filing Date
HRP20160467AA HRP20160467A2 (en) 2015-05-04 2016-05-03 System for electronic mail certification

Country Status (7)

Country Link
AT (1) AT16175U1 (en)
CZ (1) CZ28571U1 (en)
DE (1) DE202016102343U1 (en)
HR (1) HRP20160467A2 (en)
PL (1) PL417081A1 (en)
SI (1) SI25003A (en)
SK (1) SK8284Y1 (en)

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5022080A (en) * 1990-04-16 1991-06-04 Durst Robert T Electronic notary
US7404080B2 (en) * 2001-04-16 2008-07-22 Bjorn Markus Jakobsson Methods and apparatus for efficient computation of one-way chains in cryptographic applications
US9081987B2 (en) * 2007-03-28 2015-07-14 Ricoh Co., Ltd. Document image authenticating server

Also Published As

Publication number Publication date
SK8284Y1 (en) 2018-12-03
DE202016102343U1 (en) 2016-05-19
AT16175U1 (en) 2019-03-15
SI25003A (en) 2016-11-30
CZ28571U1 (en) 2015-08-31
SK50272016U1 (en) 2018-07-02
PL417081A1 (en) 2016-11-07

Similar Documents

Publication Publication Date Title
US20200403796A1 (en) Platform and method of certification of an electronic contract for electronic identification and trust services (eidas)
US9917801B2 (en) Method for the registration and certification of receipt of electronic mail
CN104158816A (en) Authentication method and device as well as server
CN105357110B (en) E-mail sending method, apparatus and system
US20120172067A1 (en) System and method for verifying a sender of an sms text message
CN103927679A (en) Electronic invoice signature and verification method
TWI579795B (en) Method for the certification of electronic mail delivery
KR102541399B1 (en) A method for authenticating e-mail containing a certified electronic signature on the carrier side
JP6082031B2 (en) How to prove delivery of a data message to a mobile device
US20210112051A1 (en) Platform and method of certification of an electronic notice for electronic identification and trust services (eidas)
CN104660491A (en) Mail handling method
CN105072020B (en) method and system for processing instant communication message
HRP20160467A2 (en) System for electronic mail certification
CN105991523B (en) Method for generating an electronic agreement to be authenticated by a user of a telecommunications operator
CN113661689A (en) Universal authentication qualified contract signing method
CN110086756B (en) Verification method, terminal and server
KR101740817B1 (en) Apparatus and method for monitoring web application
CN117494192A (en) File secure interaction method, device, electronic equipment and readable storage medium
JP2015222576A (en) Information processing device, e-mail browsing restriction method, computer program and information processing system
CN203243379U (en) Multifunctional mobile phone
CN110808902A (en) Data sending method, device and equipment
TW201405356A (en) Management and protection system for personal information of mobile device and method thereof
TWI464615B (en) System and Method for Controlling File Transfer
WO2019077436A1 (en) A system and method of electronically signing an electronic document or electronic transaction data
BR102015003034B1 (en) METHOD FOR PRODUCING ELECTRONIC CONTRACTS CERTIFIED BY A USER OF A TELECOMMUNICATIONS OPERATOR

Legal Events

Date Code Title Description
A1OB Publication of a patent application
OBST Application withdrawn