JP2003296192A - Electronic sign and electronic document storage system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a system usable from a browser which enables the easy sign to an electronic document and the transmitting/receiving and storage thereof between a client and a server. <P>SOLUTION: This system is constituted of a client terminal having a browser and a client electronic sign program, and a server system having a server electronic sign program and a WEB server. The WEB page of the server system includes a description for starting the client electronic sign program. The client electronic sign program starts, in cooperation with the browser, the client electronic sign program from a content data file displayed on the browser to electrically electronically sign the electronic document displayed on the browser, stores the resulting document in the client terminal, and transmits it to the server system. The server system receives the electronically signed electronic document followed by verifying and then stores it. <P>COPYRIGHT: (C)2004,JPO

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an electronic signature / electronic document storage system, and more particularly, an electronic document displayed on a browser by linking with a browser to activate a client electronic signature program from the browser in a client terminal. The present invention relates to an electronic signature / electronic document storage system in which an electronic signature can be sent to a server system, a digital document received by a server can be verified, and an electronic signature file can be stored together between a client and a server.

[0002]

2. Description of the Related Art In the case of electronic information, trouble may occur if there is no means for confirming whether the content is created based on the person's confirmation, and when the information is transmitted, If it is not possible to confirm whether it has been tampered with in the middle of communication, it is easy to anticipate that troubles due to electronic information will frequently occur due to generalization of business transactions and applications on the Internet. . A technique called "electronic signature" is known as a means for solving such a problem. As the name implies, electronic signatures sign electronic information.
It is a system that can be stamped. The electronic information provided with the electronic signature proves that the content has not been tampered with during the communication and that it has been created by the person who signed the signature. Therefore, if there is no problem with the electronic signature itself, the person who receives the information with the electronic signature can determine that the content of the applied information is correct and was transmitted by the person himself / herself. Moreover, this electronic signature is stipulated in the Electronic Signature / Authentication Law enforced on April 1, 2001 as having the same legal validity as a conventional paper stamped with a seal stamp.

[0003]

By the way, even in the case of conventional paper transaction documents and contract documents, it is usual for both parties to keep a copy of the documents in order to avoid troubles. . As a technique of adopting such a method in electronic data, for example, Japanese Patent Laid-Open No.
In 002-7288 "Non-repudiation information management method, its apparatus and program recording medium", a technology is proposed for storing transmission information or received information in a safe state so that it cannot be denied later. The electronic signature of the sender is applied to the application data, and the signed data is stored in the log storage unit and transmitted to the other party. Alternatively, Japanese Patent Laid-Open No. 2001-357
322 “Contract method and contract processing system”
When exchanging an electronic contract, a technology has been proposed to reduce damage caused to one of the parties involved in the contract due to breach of the other contract. Before exchanging a contract electronically for the provision of goods or services, one of the parties involved in the contract acquires the explanation data incorporating the explanation contents presented to the other party, performs the signature process, and then generates the contract data. However, it is a contract method in which the contract data is electronically signed by both or one of the parties.

[0004]

On the other hand, even in the case of conventional paper-based transaction documents and contract documents, it is usual for a third party to keep a copy of the document, for example, in a notary public's office to avoid troubles. It was As a technique for adopting such a method in electronic data, for example, Japanese Unexamined Patent Application Publication 2002
-49590 In the "electronic notarization system", the service receiver of the notarization service sends the notarization request electronic data digitally signed to the notarization center, and the notarization center or the approver judges the contents of the notarization request electronic data. In the above, after the digital signature is made at the notarization center for the permitted items, the service beneficiary obtains the notarized electronic data created at the notarization center, so that the service beneficiary can provide the notarization service for the electronic data. It will be enjoyed by the notarization center and the approver.

However, in electronic notarization via a third party, in addition to exchanging data with a party such as a transaction, another party is accessed only to perform notarization.
It has to be processed, which is complicated. Therefore, it cannot be used frequently for daily transactions. on the other hand,
Even when both parties store duplicates of these data, for example, by digitally signing the data between the parties, the following problems actually occurred, and complicated processing had to be performed. Therefore, it cannot be used frequently for daily transactions. Conventionally, electronic signatures can be used only by exchanging by email, and conventionally, the only known method for electronic certification is to use dedicated software or electronic mail software that supports electronic signatures. It was
When the dedicated software is used, the cost to the client increases as the number of terminals of the client increases. In addition, when using e-mail software, the e-mail system itself does not guarantee reachability. Therefore, especially in situations such as commercial transactions on the Internet, it is just a little unreliable. There was a problem.

Therefore, in the present invention, in order to solve the above-mentioned various problems and to make it available easily and easily, a digital signature is applied to the information input on a general WEB page, and further, the received information The purpose of the present invention is to provide a very versatile system that enables confirmation of signature contents. For example, in addition to an ordering system that allows electronic information such as purchase orders and order confirmations to be electronically signed by both parties to be exchanged on the Web, addition of a signed request form with groupware etc., signature addition during application work, etc. The purpose is to provide a system applicable to various ranges. Further, in the present invention, a system that can be easily introduced by a web site operator and can be used by simply writing a dedicated script on a web page having an input form after installing the server digital signature program on the server system. It is also intended to be provided.

[0008]

In order to solve the above problems, in the invention described in claim 1, at least a browser and a client digital signature program are connected to a communication means for accessing a server system. The client system comprises a client terminal, a communication means typified by the Internet, a LAN, etc., a server system including at least a digital signature program for a server, and a WEB server. The content data file displayed on the browser of the terminal is provided with an electronic document and a description for starting a client electronic signature program for electronically signing the electronic document, and the client electronic signature program is provided. In cooperation with the browser, The digital signature program for the client is started from the content data file displayed on the browser in the ant terminal, the digital document displayed on the browser is digitally signed, stored in the client terminal, and transmitted to the server system. The electronic signature / electronic document is characterized in that the server system further has a function of receiving, verifying, and storing an electronic document with an electronic signature transmitted from the client terminal. It is a storage system.

In order to solve the above-mentioned problems, a second aspect of the present invention is provided.
According to another aspect of the invention, there is provided a server system which is accessed from a client terminal including at least a browser and a client digital signature program through a communication unit, the server digital signature program and a W digital signature program.
The server system includes at least an EB server, and the server system includes a digital signature for a digital document and a digital signature for the digital signature on a content data file transmitted to the client terminal and displayed on the browser of the client terminal. The program includes a description for starting the program, cooperates with a browser, receives a digital document with a digital signature sent from the client terminal by the client digital signature program provided in the client terminal, and verifies it. The digital signature / electronic document storage system is characterized by having a storage function.

In order to solve the above-mentioned problems, a third aspect of the present invention is provided.
In the invention described in claim 1, in the invention described in claim 1 or 2, the server system further receives an electronic document with an electronic signature transmitted from a client terminal, verifies and stores the electronic document, and After the electronic signature of the server is given to the confirmation document indicating that the electronic document has been verified, the confirmation document with the electronic signature of the server is given to the client electronic signature program provided in cooperation with the browser of the client terminal. The electronic signature / electronic document storage system is characterized by transmitting the following.

Further, in order to solve the above-mentioned problems, a fourth aspect of the present invention is provided.
In the invention described in claim 1, in the invention described in claim 1 or 2, the server system further receives an electronic document with an electronic signature transmitted from a client terminal, verifies and stores the electronic document, and After the electronic signature of the server indicating that the electronic document has been verified, the electronic signature program for the client provided in cooperation with the browser of the client terminal is provided with the electronic signature of the server. It is characterized in that it is an electronic signature / electronic document storage system characterized by transmitting.

Further, in order to solve the above-mentioned problems, a fifth aspect of the present invention is provided.
In the invention described in (1), there is provided a client terminal which is connected to a communication means for accessing a server system including at least a digital signature program for a server and a WEB server, and which includes at least a browser and a digital signature program for a client. , The client digital signature program cooperates with a browser to activate the client digital signature program from the content data file displayed on the browser in the client terminal, and digitally signs the electronic document displayed on the browser. The digital signature program for the client has a function of storing the data in the client terminal and sending it to the server system. Furthermore, the digital signature program for the client sends a confirmation document or a digital document with the digital signature of the server returned from the server system. And Shin, characterized in that it comprises a function of storing as well as verification, it is characterized in that an electronic signature and electronic document storage system.

In order to solve the above-mentioned problems, a sixth aspect of the present invention is provided.
The invention according to claim 1 is the digital signature / electronic document storage system according to any one of claims 1 to 5, wherein the client digital signature program is plug-in software provided in a browser. The system is characterized by an electronic signature / electronic document storage system.

Further, in order to solve the above-mentioned problems, a seventh aspect of the present invention is provided.
In the invention described in claim 1, in the invention described in claims 1 to 6, the electronic signature made in the client terminal is
The electronic signature / electronic document storage system is characterized in that the electronic signature program reads data from an information storage medium provided in a client terminal and performs an electronic signature based on the read data. It is characterized by that.

Further, in order to solve the above-mentioned problems, the invention as set forth in claim 8
In the invention described in any one of claims 1 to 7, in the content data file which is included in the server system and is transmitted to the client terminal and displayed on the browser of the client terminal, the template and the input of the electronic document are input. A digital signature / electronic document storage system characterized by including a digital document including a form and a link or a link button for starting a digital signature program for a client that digitally signs a digital document There is.

Further, in order to solve the above-mentioned problems, a ninth aspect is provided.
In the invention described in claim 1, in the invention described in claims 1 to 8, the electronic document to be digitally signed is a quotation, purchase order, invoice, contract, or other transaction document. The system is characterized by an electronic signature and electronic document storage system for transaction documents.

Further, in order to solve the above-mentioned problems, a first aspect of the present invention is provided.
In the invention described in 0, in the inventions described in claims 1 to 8, the electronic document to be electronically signed is a approval document, a daily report, a monthly report, a report, and other internal documents. The system is characterized by an electronic signature / internal document storage system for internal documents.

Further, in order to solve the above-mentioned problems, a first aspect of the present invention is provided.
In the invention described in claim 1, in the invention described in claims 1 to 8, the electronic document to be electronically signed is an application form, a notification form, a tax return, or other official application document. The system is characterized by a digital signature / document storage system for public documents.

Further, in order to solve the above-mentioned problems, a first aspect of the present invention is provided.
In the invention described in 2, the client terminal connected to the communication means for accessing the server system, the client terminal having at least a browser and the digital signature program for the client, the communication means represented by the Internet, LAN, etc., and the server. Electronic signature program for W
Using a server system including at least an EB server, a client terminal including an electronic document from the server system and a description for activating an electronic signature program for a client that electronically signs an electronic document The process of transmitting the content data file displayed on the browser to the client terminal, and the electronic document displayed on the browser by activating the client digital signature program from the content data file displayed on the browser on the client terminal A process of electronically signing the document to a client terminal, sending it to the server system and receiving it at the server system, and a process of verifying and storing the received electronic document with the digital signature at the server system. To do The symptom is characterized by a digital signature and electronic document storage method.

[0020]

BEST MODE FOR CARRYING OUT THE INVENTION Embodiments of the present invention will be described below with reference to the drawings. FIG. 1 is a system configuration diagram showing an example of the basic configuration of the present invention. A first embodiment of the present invention includes a client terminal which is connected to a communication means for accessing a server system and includes at least a browser and a digital signature program for a client, and a communication means represented by the Internet, a LAN and the like. An electronic signature / electronic document storage system including a server electronic signature program and a server system including at least a WEB server. The second embodiment of the present invention relates to the server system described above, and the third embodiment relates to the client terminal described above. The fourth embodiment relates to an electronic signature / electronic document storage method.

FIG. 2 shows a user's client terminal,
Digital signature program for clients provided there,
It is a key map showing a basic example of data processing between a WEB server and a server system containing a WEB server electronic signature program.

A computer terminal such as a personal computer or a workstation is usually used as a user's client terminal for connecting to the server system of the present invention. In addition, the user terminal includes a wireless communication terminal such as a mobile phone equipped with a browser function capable of connecting to the Internet, a mobile information terminal, an Internet TV, a game device, a video conference system,
It includes a wide range of appliances such as home appliances that have network connection functions. The computer terminal includes control means, storage means, input means, output means, display means and the like. Further, it is usually equipped with a function of connecting to a communication means typified by the Internet or a LAN to send and receive data, and having an application program such as e-mail software and word processor and an operating system (OS) in addition to a browser. Is.

The server system is the Internet or L
Provided by being connected to communication means typified by AN,
It is accessed from the client terminal of the user connected to the communication means. Here, the communication means includes a wide range of networks such as the Internet, a network connected by a dedicated line, an intra-company LAN, an inter-company LAN, and a WAN. The form of the communication line used here broadly includes forms of wire communication and wireless communication, and also includes forms using satellite communication, Bluetooth, and the like.

The client digital signature program cooperates with a browser to activate the client digital signature program from the content data file displayed on the browser at the client terminal to convert the electronic document displayed on the browser into the electronic document. The digital signature is stored in the client terminal and transmitted to the server system. The client terminal includes at least a browser and a client digital signature program. Browser is Microsoft Internet Explo
Various browser software such as rer (trademark) and Netscape Communicator (trademark) can be used.

The client digital signature program may be an independent program, but at least it must be activated and operated in cooperation with the browser. Desirably, it is usually plug-in software launched from a browser. A desirable example is an application program of ActiveX (trademark) or a plug-in activated by Java (registered trademark) Scripts or the like from a browser.

Next, the functions of the client digital signature program will be described. The client digital signature program has two functions: a signature function using a digital certificate and a signature file verification function. In the signature function, most of the data transmission on the WEB has been to input necessary information in a form and confirm the contents and then to send to the server. However, the system of the present invention is used. By using, you can be sure that the client will get a digital signature before sending. Since the same work as "signing and stamping" in the real world will be performed and the responsibility for the input contents and the act of sending will occur, mischief may be drastically reduced. It is possible to electronically realize that a purchase order, etc. is stamped, signed and shipped.

Next, the client digital signature program has a verification function for verifying the signature content of the received signed data. Whether or not the data has been tampered with,
The expiration date of the certificate itself can be verified. If there is no problem as a result of this verification work, it means that the content has been transmitted by the sender's will and has not been tampered with, and it can be determined that there is no problem in trusting the content. It can also be used by those who are unfamiliar with digital signatures.

The client digital signature program operates by transmitting and receiving data to and from the server digital signature program, which will be described later, and by mutually responding. The user can use it simply by installing a digital certificate and a dedicated plug-in. With the dedicated browser plug-in, you can confirm the contents to be signed in the local environment and then perform the signing work. The contents of the certificate of the signed file can be confirmed on the browser. It is also possible to limit the certificate and make the server refuse to receive it.

Since it can be operated by a combination of server software and existing browser plug-in software (dedicated add-in software), an electronic signature program for the server is installed in a normal WEB server, and the WEB server WEB is implemented by a dedicated macro language. If the page is described, the dedicated add-in software is activated when the WEB page is accessed from the client terminal, the data is input to the electronic document, and is transmitted to the server. According to the request of the application of the WEB server, it is automatically called by the page that you want to apply the electronic certification. The client terminal signs the add-in software and sends it to the server. Data sent with a digital signature can be automatically verified by the server, and then signed by the server and the receipt certificate can be sent to the client. With the image of conventional purchase orders and order confirmations, complete commercial transactions can be realized using a browser. Since the data entered by the client on the WEB page can be signed, it can be used in various situations simply by devising the application on the server side.

Next, the client terminal also corresponds to an electronic signature medium such as an IC card or a USB device, and the electronic signature program reads and reads data from an information storage medium provided in these client terminals. It is also possible to make an electronic signature based on the obtained data. Various types of digital certificates can be used as the available electronic certificate, and for example, any X509 format can be used.

Next, a server system included in the system of the present invention will be described. The server system is configured to include at least a server electronic signature program and a WEB server. The server system is configured to include at least a server electronic signature program and a WEB server. The electronic signature program for the server and the WEB server may be provided by being stored in the same storage means such as a hard disk or a server device, or may be physically separate storage means or communication means such as a distributed server. It may be provided in a separate storage means that is connected via. In addition, it is desirable that the server system is provided with a storage unit such as a database that stores an electronic document file with an electronic signature.

The server system can be usually composed of an application server, a database server, an authentication server, a WEB server, other mail server if necessary, and other various devices. Each of these servers includes a form physically provided in the same device, a form physically composed of a plurality of devices, a form physically composed of a plurality of devices connected through a network, and the like. If similar functions are realized, various forms are included.

The server system comprises a WEB server that stores content data files and programs for access from client terminals. The content data includes data files displayed on the web such as HTML files and XML files, and C-H.
It includes data files such as TML files that are displayed on mobile phones and the like that can access WEB sites.
Also, it is possible to store character data files, audio data files, image data files, moving image data files, animation data files, and various other content data that are displayed or output by being inserted into these files. it can.

For the content data files such as HTML files and XML files stored in the WEB server of the server system, the content data files transmitted to the client terminal and displayed on the browser of the client terminal include the electronic document, It is provided with a description for starting a client digital signature program for digitally signing an electronic document. The following is an example of a content data file including a description for starting the client digital signature program. An HTML file including an electronic document including an electronic document template and an input form, and a link or a link button for activating an electronic signature program for a client that electronically signs the electronic document. After installing the electronic signature program for the server on the server system, WE that has input form etc.
It can be used by simply writing a special script on page B.

The content data file, the data content of the electronic document file to which the electronic signature is applied, and the data format are not particularly limited. The content of the data is, for example, electronic documents that are electronically signed are quotes, purchase orders, invoices, contracts, and other transaction documents, and it is possible to store electronic documents and electronic documents for transaction documents. It can be used as a system. It may be a transaction document between specific companies, or may be a transaction document at an online store or online financial institution. The electronic documents to be digitally signed are approval documents, daily reports, monthly reports, reports, and other internal documents, and are used as a system capable of electronically signing and storing electronic documents within the organizational unit. be able to. It may be a system in a specific company or department, a system between sales offices or branch offices, a system inside government offices, a system between different ministries, a system in a private member organization, or the like. In addition, the electronic document that is digitally signed is
Application forms, notification forms, tax returns, and other official application documents can be used as a system that can electronically sign and store electronic documents. WEB
Since the browser is used, the user can use the digital signature very easily. Depending on the content of the WEB page on the WEB server side, including the approval request with a signature by groupware and the addition of a signature when applying, The present invention can be applied to any range as shown in the above example.

The format of the data file to be digitally signed is not only HTML files, XML files, text files, etc., but also image files and moving image files that are displayed by being inserted in content data files such as HTML files. It may be an audio file or the like. It may be a presentation file, a spreadsheet program file, a PDF (trademark) file, a text file transmitted and received in a format such as WEB mail, a CSV format file, and various other data formats.

The content data file including the description for starting the client digital signature program corresponding to the digital signature is installed at the WEB site if a script for starting the digital signature program is described in the description forming the WEB page. It can be created easily, and the electronic signature program for the server can be used by simply installing it on the existing WEB server. In addition, if a dedicated macro language that can be used immediately is attached to the server's digital signature program, you can operate a site that supports digital signatures by just entering a few commands on the existing WEB page. Will be possible.

Therefore, the administrator who is already operating the WEB page does not need to prepare a new server.
Just install the server digital signature program on the existing server. After that, by adding a description such as Java (registered trademark) script to the WEB page, the function of the system of the present invention can be freely incorporated into the existing page. Various operation methods can be adopted depending on the purpose, environment, and operation form. For example, it is possible to freely issue or not issue a business or order confirmation, save the signed file received in a database, or attach it to an email without saving and send it to the person in charge.

In order to correspond to the electronic signature program for the server, the WWW server can be operated by commonly used server software such as IIS (basic function), Apache, etc. Basically, it is an environment where cgi can operate. Basic functions can be operated. The operating system (OS) for operating the electronic signature program for server is Windows (registered trademark) 95/98 / ME / NT4.0SP2 / 2
000 / XP (x86 CPU) CPU / Linux (trademark) (x86 CPU) / Sorali
It may be a commonly used one such as s (trademark) (x86, sparc).

Next, the functions of the server electronic signature program will be described. It is desirable that the digital signature program for the server has basic functions such as a function to verify the signature and a signature of the server itself, and a macro language for creating an application.
If this is used, various W
EB applications can be created. The server electronic signature program further has a function of receiving the electronic document with the electronic signature transmitted from the client terminal, verifying it, and storing it. This makes it possible to easily verify the signature created by the client digital signature program and save it as a file.

The automatic signature verification function of the received content is to automatically verify the signature content of the information transmitted from the client. It is possible to immediately inform the browser on the client side of the validity of the user and the verification results such as the creation / reception date and time of the data file, or to notify the sender and the administrator by email.

The automatic signature function using the server's own certificate can sign texts using the server certificate or the WEB master or administrator's certificate. For example, it can be used as an order confirmation. The electronic document with the electronic signature transmitted from the client terminal is received, verified and stored, and the confirmation document indicating that the electronic document has been verified is also digitally signed by the server, and then the client terminal, The confirmation document with the electronic signature of the server is sent to the electronic signature program for the client provided in cooperation with the browser.
Alternatively, after the electronic signature of the server indicating that the electronic document has been verified is given, the electronic document having the electronic signature of the server is transmitted.

It is also possible to restrict access by using a digital certificate. It is possible to set more advanced restrictions that cannot be achieved by the conventional access restrictions using IDs and passwords. It is possible to judge the contents of the electronic certificate and restrict it so that only the person who has the electronic certificate issued by the designated certificate authority can access. Furthermore, it is possible to set detailed access restrictions by providing a user database in the server system and referencing this.

An example of the basic processing flow of the present invention will be described below with reference to the drawings. 3 to 17 are screen image diagrams showing examples of display screens of the browser and the client digital signature program displayed on the client terminal according to the embodiment of the present invention. 18 and 19 are flowcharts showing an example of the basic processing flow of the present invention. The processing flow shown here is a typical example, and the present invention is not limited to this, and various applications are possible. FIG. 20 shows an example of the description of the electronic signature program for the electronic signature for the server, and FIG. 21 shows an example of the description described on the WEB page and including the electronic signature program activation script.

First, in order to use the system of the present invention, the user side acquires and installs the electronic certificate in the client terminal. The certificate may be provided in the storage means (hard disk or the like) of the client terminal main body, but may be stored in a USB key or other information storage medium and loaded into the client terminal. For the client terminal, the above-mentioned client digital certificate program such as a dedicated plug-in is downloaded and obtained by another method and set up. Also, on the server side, as described above, the electronic signature program for server and the certificate are set up, and the WEB page corresponding to the electronic signature program is created and uploaded.

Next, the processing when using the system of the present invention will be described. The client terminal connects to the communication means such as the Internet or LAN (S100) and accesses the server system (S101). An access request is made to a WEB page containing a script description of the WEB server (S102), and a content data file such as an HTML file is transmitted to the client terminal in response to the request, and is displayed by the browser of the client terminal. For example, an input form for creating or inputting an electronic document is displayed on the client terminal (S103). Here, what is shown in FIG. 3 is a conventional normal input form. In the present invention, as an example, an input form having a description such as a move button for moving to a screen for activating a digital signature, as shown in FIG. 4, is used.

Next, for example, in the case of creating a purchase order, necessary data such as order quantity, user's address, name and company name are input to an electronic document such as an input form (S104). ) Click the "Next" button to move to the next page, etc., and check the entered information (S10)
5). Here, what is shown in FIG. 5 is a conventional normal input form. In the present invention, as an example, as shown in FIG. 6, for example, an input form including a signature button for activating the electronic signature program and a hyperlink for activating the electronic signature program is used. FIG. 21 shows an example of the source of an HTML file in which such a script is described, in which the selection of the content of the electronic signature and the content of requesting the electronic signature for transmission are described. When the signature button on the WEB page is clicked (S106), the client digital signature program is activated (S10).
7), the electronic certificate selection screen of which an example is shown in FIG. 6 is displayed (S108). Click the signature button, etc.
Select the certificate to sign (FIG. 7) and sign (S10).
9). Also, the entered contents can be confirmed again in the signature. Further, as shown in FIG. 7, it is desirable to display the detailed contents of the certificate used for the signature by selecting the detailed display. FIG. 8 shows an example of a screen image of a client terminal for signature and transmission processing. By clicking a signature button or the like, an electronic signature is added to the input content and a new signature file is created.
It shows an example in which the screen is displayed with an electronic signature mark. When the send button is clicked, the signed data is sent to the server (S110).

Next, the signed digital document can be stored in the client terminal, for example, like a copy of the ordering place (S111). FIG. 9 is a screen image diagram showing an example of the saving process of the electronic signature file.
7m ”indicates that the extension is a digital signature file.

Next, the processing on the server side will be described.
In the server system, the signed data file transmitted from the client terminal is received (S11
2), the electronic signature program for the server starts (S1)
13). The electronic signature verification process is performed (S114), and an example of this process is shown in FIG. Electronic file with title,
For example, a server system that receives a purchase order for a company confirms the validity of the electronic signature. If the validity is not confirmed and the verification is NO, a message file indicating a message to that effect is generated (S20).
0), and sends it to the client terminal for display (S20).
1). If the validity is confirmed and the verification is OK (S11
5) The data file with the electronic signature is stored (S11
6) Alternatively, the person in charge in the company can be notified by sending an electronic mail.

Further, a reply data file such as an order confirmation for an order is selected or a reply data file is set in advance (S117), and the data file with the electronic signature of the server is returned to the client terminal. So that it can be set in the electronic signature program for the server. As for the data file to be returned to the client terminal, when returning a file different from the file received from the client terminal, the data file for reply message is referred to and selected (S3
00), insert the electronic signature of the server into the reply message data file (S301). All insertions can be automated. On the other hand, when returning the same file as the data file received from the client terminal, the electronic signature of the server is inserted into the data file with the electronic signature (S118), and the file is returned to the client terminal (S119). The returned data file with the electronic signature is stored in the storage means of the server (S120).

Next, the data file with the electronic signature of the server is received at the client terminal (S12).
1). For example, as shown in FIG. 11, it is also possible to adopt a method in which a screen (content data file) for notifying an order confirmation from the server is transmitted and displayed on the client terminal. In the client terminal, the data file with the signature from the server can be confirmed and the data file can be saved using the browser (S122). FIG. 12 shows a screen image diagram for saving the signed electronic document of the server. The saved file is a general-purpose digital signature file with the extension ".p7m", and its contents and signature can be confirmed at any time. As described above, FIG. 13 shows that a message indicating that the signature is not validated and the verification is NO is sent to the client terminal when the digital certificate is incomplete, as described above. The example displayed is shown. The client's digital signature program receives the message, but it is possible that the digital certificate was originally inadequate and that fraud such as falsification was performed. Therefore, as a result of verification by the server, it is preferable to notify the content of the defect by a message. As shown in FIG. 13, as an example, "Signed using the correct certificate. The text has not been tampered with." Has not been tampered with, but the certificate has expired, or
The certificate path may be broken. "," The text may have been tampered with. "," If you think that it is not signed, or you opened a file different from the signature file. If it is displayed, "the type of defect is displayed.

[0052]

As described in detail above, according to the present invention, an electronic signature is given to information entered on a general WEB page in order to make it available easily and easily.
Furthermore, it is possible to provide a very versatile system that enables confirmation of the signature content of the received information. For example, in addition to an ordering system that allows electronic information such as purchase orders and order confirmations to be electronically signed by both parties to be exchanged on the Web, addition of a signed request form with groupware etc., signature addition during application work, etc. It is possible to provide a system applicable to various ranges. Further, according to the present invention, a system that can be easily introduced by a web site operator and can be used by simply writing a dedicated script on a web page having an input form, etc. after installing the server digital signature program in the server system. Can be provided.

Furthermore, according to the present invention, the electronic signature / electronic document storage method of the present invention can be used in various systems as described above. For example, as an example of utilization, as shown in FIG. 14, an example of introduction to a page relating to commercial activities such as ordering and quotation in ordering and ordering processing. By adding it to the ordering system on the WEB, it becomes possible to make it completely paperless and add a legal guarantee. Further, as shown in an example in FIG. 15, an electronic application can be realized by using it for application processing to a public office and member registration in various application processing.
Further, as shown in FIG. 16 as an example, as utilization for services for members, for example, it can be utilized for services for its own users such as bank transfer processing, payment guidance, issuance of transfer certificate, and the like. Further, as shown in FIG. 17 as an example, it can be used as an in-house document management, such as in-company approval document management, and can be used as an electronic seal stamp.

[Brief description of drawings]

FIG. 1 is a system configuration diagram showing an example of a basic configuration of a system of the present invention.

FIG. 2 is a conceptual diagram showing a basic example of data processing between a user's client terminal and a client digital signature program, a WEB server, and a server system including the WEB server digital signature program provided therein. is there.

FIG. 3 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on a client terminal according to the embodiment of the present invention.

FIG. 4 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on a client terminal according to the embodiment of the present invention.

FIG. 5 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal in the embodiment of the present invention.

FIG. 6 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on a client terminal according to the embodiment of the present invention.

FIG. 7 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal according to the embodiment of the present invention.

FIG. 8 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal according to the embodiment of the present invention.

FIG. 9 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal according to the embodiment of the present invention.

FIG. 10 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal according to the embodiment of the present invention.

FIG. 11 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal in the embodiment of the present invention.

FIG. 12 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal in the embodiment of the present invention.

FIG. 13 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal according to the embodiment of the present invention.

FIG. 14 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on a client terminal according to the embodiment of the present invention.

FIG. 15 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal according to the embodiment of the present invention.

FIG. 16 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal according to the embodiment of the present invention.

FIG. 17 is a screen image diagram showing an example of a display screen of a browser and a client digital signature program displayed on the client terminal according to the embodiment of the present invention.

FIG. 18 is a flowchart showing an example of a basic processing flow of the present invention.

FIG. 19 is a flowchart showing an example of the basic processing flow of the present invention.

FIG. 20 shows an example of a description of an electronic signature program for a server electronic signature.

FIG. 21 shows an example of a description including a digital signature program activation script, which is described on a WEB page.

Continued front page    F-term (reference) 5B017 AA08 CA07 CA16                 5J104 AA09 MA01 PA13

Claims (12)

[Claims] 1. A client terminal which is connected to a communication means for accessing a server system, and which includes at least a browser and a digital signature program for a client, a communication means represented by the Internet, a LAN, etc., and a digital signature for a server. The server system comprises at least a program and a WEB server, and the server system includes an electronic document in a content data file transmitted to a client terminal and displayed on a browser of the client terminal, and an electronic document for the electronic document. The digital signature program for a client, which includes a description for activating a digital signature program for a client to perform signature, is linked to a browser, and is the content data file displayed on the browser in the client terminal. Start the digital signature program for the client, digitally sign the electronic document displayed on the browser, and store it in the client terminal.
An electronic device having a function of transmitting to a server system, wherein the server system further has a function of receiving an electronic document with an electronic signature transmitted from a client terminal, verifying the electronic document, and storing the electronic document. signature·
Electronic document storage system. 2. A server system, which is accessed from a client terminal including at least a browser and a digital signature program for a client through a communication means, and includes at least a digital signature program for a server and a WEB server. The server system described above, in the content data file transmitted to the client terminal and displayed on the browser of the client terminal,
An electronic document and a description for starting an electronic signature program for a client that performs an electronic signature on an electronic document are included and are transmitted from the client terminal by a client electronic signature program provided in the client terminal in cooperation with a browser. An electronic signature / electronic document storage system having a function of receiving, verifying, and storing an electronic document having an electronic signature. 3. The invention according to claim 1 or 2, wherein the server system further receives an electronic document with an electronic signature transmitted from a client terminal, verifies and stores the electronic document, and After digitally signing the server with a confirmation document showing that the electronic document has been verified,
A client terminal, characterized in that it sends a confirmation document with a digital signature of the server to the client digital signature program provided in cooperation with the browser.
Electronic signature and electronic document storage system. 4. The invention according to claim 1 or 2, wherein the server system further receives an electronic document with an electronic signature sent from a client terminal, verifies and stores the electronic document, and The electronic signature of the server indicating that the electronic document has been verified is sent, and then the electronic document signed by the server is sent to the client electronic signature program provided in cooperation with the browser of the client terminal. An electronic signature / electronic document storage system characterized by the following. 5. A digital signature program for a server and WE
A client terminal, which is connected to a communication means for accessing a server system including at least a B server, and includes at least a browser and a digital signature program for a client, wherein the digital signature program for a client cooperates with the browser. The digital signature program for the client is activated from the content data file displayed on the browser in the client terminal, the electronic document displayed in the browser is digitally signed, and the digital document is stored in the client terminal and stored in the server system. The client digital signature program further has a function of receiving, verifying, and storing the server's digitally signed confirmation document or electronic document returned from the server system. Do Electronic signature and electronic document storage system. 6. The electronic signature / electronic document storage system according to claim 1, wherein the client electronic signature program is plug-in software provided in a browser. Signature / electronic document storage system. 7. The invention according to any one of claims 1 to 6, wherein the electronic signature made in the client terminal is read out by the electronic signature program reading data from an information storage medium provided in the client terminal. An electronic signature / electronic document storage system characterized in that an electronic signature is made based on data. 8. The invention according to any one of claims 1 to 7, wherein a template of an electronic document and an input form are included in a content data file included in the server system and transmitted to a client terminal and displayed on a browser of the client terminal. An electronic signature / electronic document storage system comprising: an electronic document containing the electronic document; and a link or a link button for activating an electronic signature program for a client that electronically signs the electronic document. 9. The invention according to any one of claims 1 to 8, wherein the electronic document to be digitally signed is a quotation, a purchase order, an invoice,
An electronic signature / electronic document storage system for transaction documents, which is characterized by contracts and other transaction documents. 10. The invention according to any one of claims 1 to 8,
The electronic signature / electronic document storage system for internal documents, wherein the electronic documents to be electronically signed are approval documents, daily reports, monthly reports, reports and other internal documents. 11. The invention according to any one of claims 1 to 8,
The electronic document to be electronically signed is characterized by being an application, a notification form, a tax return, or other official application document,
Electronic signature and electronic document storage system for official documents. 12. A client terminal, which is connected to a communication means for accessing a server system, and which includes at least a browser and a digital signature program for a client, a communication means represented by the Internet, a LAN, etc., and a digital signature for a server. A description for activating an electronic document and an electronic signature program for a client that electronically signs an electronic document from the server system using the program and a server system including at least a WEB server, Processing for transmitting the content data file displayed on the browser of the client terminal to the client terminal, and activating the electronic signature program for the client from the content data file displayed on the browser on the client terminal and displaying it on the browser The electronic document is electronically signed, stored in the client terminal, transmitted to the server system, and received by the server system, and the received electronic document with the electronic signature is verified in the server system. A method of storing an electronic signature and an electronic document, which is characterized by performing a process of storing together with the electronic signature.