JP2005057417A - Electronic document exchanging system, signature decoding service system and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To enable a user to exchange business documents with highly reliable signatures without complicating the structure of a user terminal when the user creates, processes and exchanges the business documents by using a business process service system managed by an ASP. <P>SOLUTION: The business process service system 10 creates a business document such as an estimation request letter according to a processing request form a user terminal 1, and transmits a signature request including the created business document to a signature decoding service system 100. In response to this, the system 100 requests the user terminal 1 to permit the use of a secret key, gives a signature by using the secret key of the user terminal 1 if the use of the key is permitted, and returns the business document with the signature to the system 10. The system 10 transmits the business document with the signature to a transmission destination designated by the user terminal 1. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

  The present invention relates to a technique for exchanging electronic documents via a network, and in particular, an electronic document that enhances reliability when exchanging business documents using a document exchange service provided by an ASP (Application Service Provider). Regarding exchange technology.

  Conventionally, methods such as facsimile, mailing, and handing have been used for exchanging business documents. In recent years, with the development of the Internet, electronic methods have been adopted for exchanging such business documents.

  Furthermore, the last 2 to 3 years were aimed at business collaboration such as RossettaNet (http://www.rosettanet.gr.jp/), ebXML Messaging Service (http://www.oasis-open.org/) International standards for reliable document exchange are also defined, and standardization activities for business document exchange are thriving.

  In the business-to-business collaboration, it not only provides a highly reliable document exchange function, but also has a business process processing function to perform a series of document exchanges associated with document processing and transactions according to the user's industry and business type. More complex inter-company collaboration can also be realized.

  In general, the equipment required for a system for realizing such business-to-business cooperation and the cost for maintenance thereof are very large, and it is considered to be a heavy burden for small and medium users. For this reason, it is considered to operate an ASP form in which a supplier who has prepared the necessary equipment for such a system contracts with a plurality of small and medium users and provides document exchange services to member users through the network at a relatively low cost. It is done.

  In the operation of this ASP form, a user uses a business process service system on an ASP server via a simple device such as a Web browser to generate a business document, exchange a document according to a predetermined procedure, Processing, data extraction, etc.

On the other hand, in order to prevent impersonation and falsification of documents when exchanging electronic business documents, it has been conventionally performed to attach an electronic signature to an electronic document at a user terminal (see, for example, Patent Documents 1 and 2). .
JP 2000-207466 A JP 2002-99843 A

  The conventional techniques described in Patent Documents 1 and 2 described above have a problem that a means for signing a user terminal must be provided, and the configuration of the user terminal becomes complicated.

  In order to simplify the configuration of the user terminal, it may be possible to sign in the business process service system. However, in this case, the following problem occurs. In other words, the user's private key is required to perform the user's own signature. Therefore, when signing in a business process service system operated by an ASP vendor, a secret key that should be kept secret must be passed to the ASP vendor, which is not preferable in terms of security. Once the secret key is passed to the ASP vendor, the ASP vendor can sign any document with the secret key deposited by the user, which affects the reliability of the signature. Such a problem becomes particularly serious when the user contracts with a plurality of ASP vendors and the distribution range of the secret key is expanded to the user.

(Object of invention)
Therefore, an object of the present invention is to enable exchange of business documents with highly reliable authentication without complicating the configuration of the user terminal.

In order to achieve the above object, a first electronic document exchange system according to the present invention provides:
An electronic document exchange system including a business process service system and a signature decryption service system,
The business process service system is
A business processing unit for generating a business document according to a request from a member user;
A signature request including the business document generated by the business processing unit and the user ID of the member user is transmitted to the signature decryption service system, and the signature returned from the signature decryption service system in response to the signature request A document exchanging unit that transmits a business document with a tag to a destination specified by the member user,
The signature decryption service system includes:
When a signature request is sent from the business process service system, the business document in the signature request is signed using a private key specified by the user ID in the signature request, and the signed business document is It is characterized by having a request processing unit for returning to the business process service system.

In order to enable the second electronic document exchange system according to the present invention to transmit the business document generated in the business process service system in an encrypted manner, in the first electronic document exchange system,
The document exchange unit
A signature-added business document returned from the signature decryption service system is encrypted using a public key of the transmission destination and then transmitted.

The third electronic document exchange system according to the present invention is encrypted with the public key of the user terminal without passing a secret key to the operator of the business process service system or providing a decryption unit in the user terminal. In order to be able to decrypt existing business documents, in the second electronic document exchange system,
The document exchange unit
When a business document encrypted using the public key of the member user is received, a decryption request including the business document and the user ID of the member user is transmitted to the signature decryption service system,
The request processing unit
When a decryption request is sent from the business process service system, the encrypted business document in the decryption request is decrypted using a secret key specified by the user ID in the decryption request, and the decrypted business It has a configuration for returning a document to the business process service system.

In the third electronic document exchange system, the fourth electronic document exchange system according to the present invention can verify a signature attached to a business document without providing a terminal with a means for performing signature verification.
The document exchange unit
When a business document signed with a private key of the transmission source is received, the signature verification is performed using the public key of the transmission source of the business document.

The fifth electronic document exchange system according to the present invention further increases the reliability of the signature and prevents the business document encrypted by the operator of the business process service system from being decrypted. In the exchange system,
The signature decryption service system includes:
When a signature request or a decryption request is sent from the business process service system, an authentication request for permission to use the secret key is issued to a user who owns the secret key for processing the signature request or the decryption request. An approval unit for transmitting and receiving an authentication result sent from the user in response to the authentication request; and
The request processing unit
It is characterized in that the processing according to the signature request or the decryption request is performed on condition that the authentication result received by the approval unit permits the use of a secret key.

According to a sixth electronic document exchange system of the present invention, in order to make the signature reliability extremely high without increasing the number of times of communication between the user terminal and the signature decryption service system, In the electronic document exchange system,
The signature decryption service system includes:
When a signature request or decryption request is sent from the business process service system, the approval condition defined in advance by the user who owns the private key for processing the signature request or the decryption request is satisfied. A pre-approval unit that determines whether or not a rejection condition defined in advance by the user is satisfied, and
If the pre-approval unit determines that neither the approval condition nor the rejection condition is satisfied, an authentication request for requesting permission to use a secret key is transmitted to the user, and the user responds to the authentication request from the user. A sequential approval unit for receiving the authentication result sent, and
The request processing unit
When it is determined that the approval condition is satisfied by the pre-approval unit and when the authentication result received by the sequential approval unit permits the use of a secret key, the signature request or the decryption request is followed. It has the structure which performs a process.

A seventh electronic document exchange system according to the present invention enables business documents with highly reliable authentication to be exchanged without complicating the configuration of a user terminal, and is generated by a business process service system. To be able to send encrypted business documents
An electronic document exchange system including a business process service system and a signature decryption service system,
The business process service system is
A business processing unit for generating a business document according to a request from a member user;
A signature / encryption request including the business document generated by the business processing unit and the user ID of the member user is transmitted to the signature decryption service system, and the signature decryption service is responded to the signature / encryption request. A document exchange unit that transmits the encrypted and signed business document returned from the system to a destination specified by the member user,
The signature decryption service system includes:
When a signature / encryption request is sent from the business process service system, the business document in the signature / encryption request is sent using a private key specified by the user ID in the signature / encryption request. A request processing unit is provided that performs a signature, performs encryption using a public key of a destination of the business document, and returns the result to the business process service system.

In an eighth electronic document exchange system according to the present invention, in order to prevent an operator of a business process service system from decrypting an encrypted business document,
The document exchange unit
When receiving a business document encrypted with the public key of the member user and signed with the private key of the transmission source, a decryption / signature verification request including the business document and the user ID of the member user is received. Having a configuration to transmit to the signature decryption service system,
The signature decryption service system includes:
When a decryption / signature verification request is sent from the business process service system, the business document in the decryption / signature verification request is decrypted using a private key specified by the user ID in the decryption / signature verification request. The signature verification is performed using the public key of the transmission destination of the business document.

  The first effect is that business documents with highly reliable authentication can be exchanged without complicating the configuration of the user terminal. The reason for this is that signature processing using the user's private key is performed in a signature decryption service system that is separate from the business process service system operated by an ASP vendor that generates and processes business documents. Because. Even if the user uses many business process service systems, it is only necessary to store the private key only in the signature decryption service system. Compared to the case where the user's private key is stored in each business process service system. Thus, the risk of the secret key being leaked or misused can be reduced.

  The second effect is that business documents with a highly reliable signature can be exchanged. The reason is that in the signature decryption service system, when a business document is signed using the user's private key, the signature is given after the user is given permission.

  Next, embodiments of the present invention will be described in detail with reference to the drawings.

[First Embodiment]
The configuration of the first embodiment of the present invention will be described with reference to the block diagram of FIG. As shown in FIG. 1, the electronic document exchange system according to the present embodiment includes a plurality of user terminals 1 to 3, a plurality of business process service systems 10, 20, and 30, and a signature decryption service system 100. It consists of and. They are distributed on a network such as the Internet so that they can be connected to each other. Note that the number of business process service systems, signature decryption service systems, and user terminals is not limited to the number of existences in the figure.

  Business process service systems 10 and 20 are systems operated by ASP vendors, providing business document creation and processing functions to member users who have a membership contract, and a standardized common interface unit. Send and receive business documents to and from other systems.

  The business process service system 10 having such a function is realized by, for example, a computer, and includes a common interface unit 11, a business processing unit 12, a user access unit 13, a user database (user DB) 14, , And a document exchange unit 15. When the business process service system 10 is realized by a computer, the common interface unit 11, the business processing unit 12, the user access unit 13, the user DB 14, the disk on which the program for realizing the document exchange unit 15 is recorded, a semiconductor memory, etc. Prepare a recording medium. The computer reads the program recorded on the recording medium and controls the operation of the own computer, so that the common interface unit 11, the business processing unit 12, the user access unit 13, the user DB 14, the document exchange unit 15 are installed on the own computer. To realize.

  The common interface unit 11 is a standardized interface unit used for communication with other systems, and is realized by, for example, SOAP, ebXML, RossettaNet, or the like. The user access unit 13 has a function of exchanging data with the user terminals 1 to 3. The business processing unit 12 has a function of generating a business document in response to a request from the user, and a function of performing business processing based on the generated business document and the received business document. The document exchange unit 15 has a function of transmitting / receiving a business document and a function of transmitting a signature request and a decryption request to the signature decryption service system 100. The user DB 14 stores user information necessary for business processing. FIG. 2 is a diagram showing an example of the contents of the user DB 14, in which the public key and password of the member user are registered in association with the user ID of each member user who has signed a member contract. The business process service system 20 has the same configuration as the business process service system 10.

  The business process service system 30 is a system of a company that deals with member users of the user terminals 1 to 3, and has the same configuration as the business process service system 10.

  The user terminals 1 to 3 are terminals of member users who have a membership contract with the ASP supplier, and are realized by, for example, a personal computer equipped with a Web browser. On the network, various business process service systems operated by ASP vendors due to differences in business processes depending on the type of business and business category, as well as differences in regions and languages (in FIG. 1, only business process service systems 10 and 20 are illustrated. The user concludes a membership contract with an appropriate ASP vendor according to the usage.

  The signature / decryption service system 100 is a system operated by an organization that guarantees a certain level of reliability by a public certificate authority. A standardized common interface unit 101 accepts a signature / decryption request for a business document sent from the system via a network. Based on the request, the member user is asked for permission to sign or decrypt, and when the permission is obtained, the corresponding process is performed and the business document is returned to the business process service system.

  The signature decryption service system 100 having such a function is realized by, for example, a computer, and includes a common interface unit 101, a request reception unit 102, a request processing unit 103, an approval unit 104, a user DB 105, and the like. It is composed of When the signature decryption service system 100 is realized by a computer, the common interface unit 101, the request reception unit 102, the request processing unit 103, the approval unit 104, a disk recording a program for realizing the user DB 105, a record such as a semiconductor memory Prepare a medium. The computer reads the program recorded on the recording medium and controls the operation of the computer, thereby causing the common interface unit 101, the request receiving unit 102, the request processing unit 103, the approval unit 104, the user DB 105 to be executed on the computer. To realize.

  The common interface unit 101 is a standardized interface unit used for communication with other systems. The request receiving unit 102 receives a signature request or a decryption request from the business process service systems 10, 20, 30. The approval unit 104 has a function of requesting the corresponding user to use a secret key when performing processing according to the signature request or the decryption request received by the request reception unit 102. The request processing unit 103 has a function of performing signature processing or decryption processing according to the signature request or decryption request received by the request reception unit 102 and returning the processing result to the requesting business process service system. The user DB 105 stores a secret key, a contact address and a contact method for requesting permission to use the secret key for the user used when performing the signature process and the decryption process. FIG. 3 is a diagram showing an example of the contents of the user DB 105. In correspondence with the user ID of the member user, the user's private key, contact information for requesting permission to use the private key, contact method, password, Is stored.

  Next, the operation of the present embodiment will be described in detail. Here, a case where a request from an estimate request of a certain product to inventory confirmation and ordering will be described as an example.

  A member user connected to the business process service system 10 from his / her user terminal 1 transmits a processing request from a Web browser operating on the user terminal 1. This processing request includes the destination of the request for quotation (for example, information indicating the business process service system 30), items to be described in the request for quotation (product name, target price, desired number of purchases, etc.), member user ID, password, signature necessity information indicating whether signature is necessary, encryption necessity information indicating whether encryption is necessary, and the like are included.

  When the business process service system 10 receives a processing request from the user terminal 1, the quotation request processing is started (FIG. 4, P41). In this estimate request process (P41), first, the user access unit 13 accepts a process request sent from the user terminal 1, performs an authentication process based on the password included therein, and in the case of authentication OK, The processing request is passed to the business processing unit 12. The business processing unit 12 generates a request for quotation (business document) based on the processing request passed from the user access unit 13, and passes the generated request for quotation and the processing request from the user terminal 1 to the document exchange unit 15. .

  The document exchange unit 15 performs the processing shown in the flowchart of FIG. 5 when the request for quotation and the processing request are passed from the business processing unit 12. First, based on the signature necessity information in the processing request, it is determined whether or not the user requests a signature (S51). When the signature is not requested (S51 is N), the processing from S54 is performed. If the signature is requested (Y in S51), the user ID of the transmission source (user terminal 1) is extracted from the processing request (S52). Since the private key of the corresponding user is required for the signature, the signature request 600 for requesting the signature is transmitted to the signature decryption service system 100 via the common interface unit 11, and the signature is attached from the signature decryption service system 100. Wait until the request for quotation is returned (S53).

  FIG. 6 is a diagram illustrating a configuration example of the signature request 600, which includes a user ID 601, processing contents 602, and a processing target document 603. In this example, the user ID of the user terminal 1 is set as the user ID 601, “signature” is set as the processing content 602, and the request for quotation generated by the business processing unit 12 is set as the processing target document 603.

  When receiving the signature request 600 from the business process service system 10, the signature decryption service system 100 performs the processing shown in the flowchart of FIG. Upon receiving the signature request from the business process service system 10, the request receiving unit 102 passes it to the approval unit 104. The approval unit 104 searches for the corresponding user from the user DB 105 using the user ID included in the signature request 600 as a key. If the user exists, an authentication request for permission to use the secret key is transmitted to the user terminal 1 by the contact method registered in the user DB 105 at the time of the membership contract (S71). For this contact method, e-mail, instant message, telephone, fax and the like can be used. When an authentication request is sent, the user of the user terminal 1 accesses the approval unit 104 of the signature decryption service system 100, inputs the password registered in the user DB 105, confirms the content of the signature request, Approve or reject (S72).

  If approved by the user (Y in S73), the request receiving unit 102 passes the signature request 600 to the request processing unit 103, and the request processing unit 103 extracts the secret key stored by the user from the user DB 105, Using this secret key, the request for quotation included in the signature request 600 is signed (S74). Then, the quote request with the signature is returned to the requesting business process service system 10 (S76). On the other hand, if the user refuses to use the private key (N in S73), an error notification is created (S75) and returned to the requesting business process service system 10 (S76).

  When the document exchange unit 15 in the business process service system 10 receives an error notification from the signature decryption service system 10, the process ends. On the other hand, when a request for quotation with a signature is received, the processing from S54 onward in FIG. 5 is performed.

  In S54 of FIG. 5, it is determined whether encryption is required for the transmission document (quotation request form) (S54). This determination is made based on the encryption necessity information in the processing request sent from the user terminal 1. When encryption is not necessary (N in S54), the processing from S56 is performed. When encryption is required (Y in S54), the request for quotation is encrypted using the public key of the destination of the request for quotation (in this case, the business process service system 30) (S55), and the common interface The data is transmitted to the business process service system 30 via the part 11 (S56). The above is the process performed in the estimate request process (P41) of FIG.

  When an estimate request is sent, the business process service system 30 generates an estimate and returns response information including the generated estimate to the business process service system 10. At this time, the estimate may be encrypted with the public key of the user terminal 1 or may be signed using the private key of the business process service system 30. The response information includes information indicating a transmission destination (in this case, the user terminal 1), a user ID of the user terminal 1, decoding necessity information indicating whether decoding is necessary, Also included is signature verification necessity information indicating whether signature verification is necessary.

  When the business process service system 10 returns response information including an estimate from the business process service system 30, the business process service system 10 performs an estimate reception process (FIG. 4, P42). In the estimate reception process, first, the document exchange unit 15 in the business process service system 10 receives response information from the business process service system 30 via the common interface unit 11, and decrypts based on the decryption necessity information. Is determined whether or not is necessary (FIG. 8, S81). If decoding is not necessary (S81 is N), the processing from S84 is performed. On the other hand, when decryption is necessary (Y in S81), the user ID of the transmission destination (user terminal 1) is extracted from the response information (S82). Since the secret key of the corresponding user is necessary for the decryption, a decryption request is transmitted to the signature decryption service system 100, and the decryption result is sent (S83). The decryption request includes the user ID of the transmission destination user (user terminal 1), the estimate encrypted with the transmission destination user's public key, and information indicating that the processing content is “decryption”. It is.

  When the decryption request is sent from the business process service system 10, the signature decryption service system 100 performs almost the same processing as when the signature request is sent (S71 to S76 in FIG. 7). However, when a decryption request is sent, instead of performing the signature processing in S74, the estimate encrypted using the private key of the corresponding user is decrypted, and the decryption result is sent to the business process service system 10 Reply to

  When the decryption result is returned, the document exchange unit 15 determines whether signature verification is necessary based on the signature verification necessity information (S84). If it is determined that signature verification is unnecessary (N in S84), the estimate is passed to the business processing unit 12 and the process is terminated. On the other hand, when signature verification is necessary, signature verification is performed using the public key of the transmission source (business process service system 30) (S85). When the signature verification is successful (S86 is Y), the estimate is passed to the business process service system processing unit 12 and the process is terminated. On the other hand, if the verification fails (N in S86), an error notification is returned to the transmission source (S87). The above is the process performed in the estimate reception process (P42) of FIG.

  When the business processing unit 12 receives the estimate from the document exchange unit 15, the business processing unit 12 determines whether or not the estimated price described therein is equal to or less than the target price specified by the user of the user terminal 1 (see FIG. 4, P43). When the estimated price exceeds the target price (P43 is N), the process is terminated. On the contrary, if the price is below the target price, the business processing unit 12 generates an inventory confirmation and the document exchange unit 15 transmits it to the business process service system 30 of the business partner (P44). At that time, the inventory confirmation document is signed or encrypted in the same manner as when the request for quotation is transmitted.

  When the business process service system 30 receives an inventory confirmation from the business process service system 10, the business process service system 30 returns an inventory notice to the business process service system 10. At this time, the inventory notice is signed or encrypted in the same manner as when the estimate is returned.

  When the document exchange unit 15 in the business process service system 10 receives the inventory notice (P45), it issues a final confirmation notice to the user terminal 1 (P46). When the user accesses the user access unit 13 from a Web browser running on the user terminal 1 and performs final confirmation, the business processing unit 12 automatically generates a purchase order and passes through the document exchange unit 15 to the business process service. It transmits to the system 30 (P47). After that, the order confirmation sent from the business process service system 30 is transmitted to the user terminal 1 (P48).

[Second Embodiment]
Next, a second embodiment of the present invention will be described. In this embodiment, the member user registers in advance the approval conditions for approving the use of the secret key and the reject conditions for rejecting the use of the secret key in the signature decryption service system. When the above condition is satisfied, the use of the secret key is permitted or rejected without sending an authentication request to the user.

  FIG. 9 is a block diagram showing the overall configuration of the present embodiment. This embodiment is different from the first embodiment shown in FIG. 1 in that a signature decryption service system 200 is provided instead of the signature decryption service system 100.

  The signature decryption service system 200 includes a common interface unit 201, a request reception unit 202, a request processing unit 203, a sequential approval unit 204, a user DB 205, and a pre-approval unit 206. The signature decryption service system 200 is realized by, for example, a computer. When the signature decryption service system 200 is realized by a computer, the common interface unit 201, the request reception unit 202, the request processing unit 203, and the sequential approval unit 204 are realized. In addition, a disk, a semiconductor memory, and other recording media on which a program for realizing the user DB 205 and the pre-approval unit 206 is recorded are prepared. The computer reads the program recorded on the recording medium and controls the operation of the own computer, so that the common interface unit 201, the request receiving unit 202, the request processing unit 203, the sequential approval unit 204, the user are installed on the own computer. DB205 and pre-approval unit 206 are realized.

  As with the user DB 105, the user DB 205 is associated with the user ID of each member user, the user's private key used when performing signature processing and decryption processing, and the contact information for requesting permission to use the private key, The contact method is stored. Furthermore, approval / rejection conditions are registered in the user DB 205 in association with the user ID of each member user. This approval / rejection condition is to be registered in the user DB 205 by each member user using the pre-approval unit 206.

  FIG. 10 shows a configuration example of the approval / rejection condition 1000. The approval / rejection condition 1000 includes an approval condition 1001 and a rejection condition 1011. Approval condition 1001 is a supplier 1002 that automatically approves the signature / decryption process, an expiration date 1003 of the automatic approval operation, a business content 1004 that is automatically approved, and a process content that indicates which of the signature and decryption is to be approved. It is composed of 1005. The rejection condition 1011 includes a supplier 1012 that rejects the signature / decryption process, an expiration date 1013 of the automatic rejection operation, a business content 1014 that is automatically rejected, and a process content 1015 that indicates which of the signature / decryption is rejected. It consists of.

  The request processing unit 203 has the same function as the request processing unit 103 in the first embodiment.

  When a request or decryption request is sent from the business process service system 10, the request acceptance unit 202 uses the pre-approval unit 206, and the approval condition in which the request is pre-registered in the user DB 205 by the corresponding user, The function for determining whether or not the rejection condition is satisfied, and if the approval condition is satisfied, the request is passed to the request processing unit 203, and if the rejection condition is satisfied, an error notification is sent to the business process service system 10 It has a function to reply to. Further, when the pre-approval unit 206 determines that neither the approval condition nor the rejection condition is satisfied, the request reception unit 202 performs the sequential approval unit 204 (the same function as the approval unit 104 of the first embodiment). If the use is permitted by the user, the request is passed to the processing request unit 203 and is not permitted. In the case, it has a function of notifying the business process service system 10 of an error.

  Next, the operation of the present embodiment will be described. In the following, only differences from the first embodiment will be described.

  First, the operation of the signature decryption service system 200 when a signature request is sent from the business process service system 10 will be described.

  When receiving a signature request (see FIG. 6) from the business process service system 10, the request receiving unit 202 in the signature decryption service system 200 passes the request to the pre-approval unit 206. Thereby, the pre-approval unit 206 searches the user DB 205 using the user ID included in the signature request as a key, and confirms the approval / rejection condition 1000 pre-registered in association with the user ID ( FIG. 11, S111). If the signature request satisfies the approval condition 1001, the process from S115 is performed, and if the rejection condition 1011 is satisfied, the process from S116 is performed. If neither the approval condition 1001 nor the rejection condition 1011 is satisfied (including the case where the approval / rejection condition 1000 is not registered), the processing from S112 is performed.

  If neither the approval condition 1001 nor the rejection condition 1011 is satisfied, the request accepting unit 202 passes the signature request to the sequential approval unit 204, and the sequential approval unit 204 uses the secret key by a method registered in the user DB 205. An authentication request for permission is transmitted to the corresponding user terminal (referred to as user terminal 1) (S112). When the authentication request is sent, the user of the user terminal 1 accesses the sequential approval unit 204 of the signature decryption service system 200, inputs the registered password, confirms the content of the signature request, and approves or Reject (S113).

  When approved by the user of the user terminal 1 (S114 is Y), the request receiving unit 202 passes the signature request to the request processing unit 203, and the request processing unit 203 receives the secret key stored by the user from the user DB 205. Using the extracted private key, the business document included in the signature request is signed (S115), and the signed electronic document is returned to the business process service system 10 (S117). Note that the same processing is performed when it is determined in S111 that the approval condition is satisfied.

  On the other hand, when it is rejected by the user of the user terminal 1 (S114 is N), an error notification is created (S116) and returned to the business process service system 10 (S117). Note that the same processing is performed when it is determined in S111 that the rejection condition is satisfied.

  Next, the operation of the signature decryption service system 200 when a decryption request is received will be described. When a decryption request is sent from the business process service system 10, the signature decryption service system 200 performs substantially the same processing as when a signature request is sent (S111 to S117 in FIG. 11). However, when a decryption request is sent, instead of performing the signature processing in S115, the business document encrypted using the private key of the corresponding user is decrypted, and the decryption result is displayed in the business process service system 10 Reply to

[Third Embodiment]
Next, a third embodiment of the present invention will be described. This embodiment is characterized in that signature processing, signature verification processing, encryption processing, and decryption processing are all performed by a signature decryption service system.

  FIG. 12 is a block diagram showing the overall configuration of the present embodiment. FIG. 9 shows that this embodiment includes a business process service system 40 instead of the business process service system 10 and a business process service system 300 instead of the signature decryption service system 200. This is different from the second embodiment.

  The business process service system 40 includes a common interface unit 41, a business processing unit 42, a user access unit 43, a user DB 44, and a document exchange unit 45. The business process service system 40 is realized by, for example, a computer. When the business process service system 40 is realized by a computer, the common interface unit 41, the business processing unit 42, the user access unit 43, the user DB 44, A disk, a semiconductor memory, and other recording media on which a program for realizing the document exchange unit 45 is recorded are prepared. The computer reads the program recorded on this recording medium and controls the operation of its own computer, so that the common interface unit 41, business processing unit 42, user access unit 43, user DB 44, document exchange are performed on its own computer. Part 45 is realized.

  The common interface unit 41, the business processing unit 42, the user access unit 43, and the user DB 44 have the same configuration and functions as the common interface unit 11, the business processing unit 12, the user access unit 13, and the user DB 14 in the second embodiment. Have.

  The document exchange unit 45 is different from the document exchange unit 15 in the second embodiment in that not only the signature request and the decryption request but also the signature verification request and the encryption request are transmitted to the signature decryption service system 300. Yes.

  The signature decryption service system 300 includes a common interface unit 301, a request reception unit 302, a request processing unit 303, a sequential approval unit 304, a user DB 305, and a pre-approval unit 306. The signature decryption service system 300 is realized by, for example, a computer. When the signature decryption service system 300 is realized by a computer, a common interface unit 301, a request reception unit 302, a request processing unit 303, a sequential approval unit 304, a user DB 305, a disk on which a program for realizing the pre-approval unit 306 is recorded, a semiconductor memory, and other recording media are prepared. The computer reads the program recorded on the recording medium and controls the operation of the own computer, so that the common interface unit 301, the request accepting unit 302, the request processing unit 303, the sequential approval unit 304, the user are installed on the own computer. DB305 and pre-approval unit 306 are realized.

  The common interface unit 301, the sequential approval unit 304, the user DB 305, and the prior approval unit 306 have the same functions as the common interface unit 201, the sequential approval unit 204, the user DB 205, and the prior approval unit 206 in the second embodiment. Have.

  When a request for signature and a request for decryption are sent from the business process service system 40, the request reception unit 302 performs the same processing as the request reception unit 202 of the second embodiment. Further, when a signature verification request or an encryption request is sent from the business process service system 40, they are passed to the request processing unit 303.

  When a request for signature or a request for decryption is sent from the request receiving unit 302, the request processing unit 303 performs the same processing as the request processing unit 203 of the second embodiment. When a signature verification request or encryption request is sent from the business process service system 40, signature verification processing and encryption processing are performed.

  Next, the operation of the present embodiment will be described.

  First, an operation when the business process service system 40 receives a processing request from a user terminal (for example, the user terminal 1) will be described.

  When the user access unit 43 receives a processing request from the user terminal 1, the business processing unit 42 in the business process service system 40 generates a business document according to the processing request, and the generated business document and the user terminal 1 The processing request from is sent to the document exchange unit 45.

  When the business document and the processing request are passed, the document exchange unit 45 first determines whether or not the business document needs to be signed based on the signature necessity information in the processing request (FIG. 13, S131). When the signature is not necessary (S131 is N), the processing after S133 is performed, and when the signature is necessary (S131 is Y), a signature request is created (S132). A configuration example of the signature request is shown in FIG. The signature request includes a user ID 1401 (the user ID of the user terminal 1 in this example) that is a processing subject of the user document, a communication protocol ID 1042 previously determined between the signature decryption service system 300, and a processing content 1403 ( In the case of a signature request, “signature” is set) and a business document 1404 to be processed. In the case of a signature verification request, a decryption request, and an encryption request, “signature verification”, “decryption”, and “encryption” are set in the processing content 1403, respectively.

  Thereafter, based on the encryption necessity information, it is determined whether or not the business document to be transmitted needs to be encrypted (S133). When encryption is not necessary (N in S133), the processing from S135 is performed. If encryption is necessary (Y in S133), an encryption request is created (S134). At this time, if a signature request already exists, a processing request is created by adding a cryptographic request. That is, “signature, encryption” is set in the processing content 1403.

  Thereafter, it is checked whether or not a signature / encryption request exists (S135). If it does not exist (N in S135), the process from S137 is processed. If it exists (Y in S135), a signature / encryption processing request is transmitted to the signature decryption service system 300, and the result is received (S136). Finally, the business document is transmitted to a transmission destination (for example, business process service system 30) designated by the user of the user terminal 1 (S137).

  Next, the operation of the business process service system 40 when response information (including business documents such as a quotation) addressed to the user terminal 1 is received from the business process service system 30 will be described with reference to FIG.

  When the document exchange unit 45 in the business process service system 40 receives the response information addressed to the user terminal 1 from the business process service system 30, it determines whether or not the business document included therein needs to be decrypted (see FIG. 15, S151). When decryption is not necessary (N in S151), the processing from S153 is performed, and when decryption is necessary (Y in S151), a decryption request is created (S152).

  Thereafter, it is determined whether signature verification is necessary for the received business document (S153). When signature verification is not necessary (S153: N), the processing from S155 is performed. When signature verification is necessary (S153 is Y), a signature verification request is created (S154). At this time, if a decryption request already exists, a processing request is created by adding a signature verification request.

  Thereafter, it is checked whether a decryption / signature verification request exists (S155). If it does not exist (N in S155), the process is terminated. If it exists (Y in S155), a decryption / signature verification request is transmitted to the signature decryption service system 300, and the result is received (S156). Subsequently, when signature verification is requested, it is determined whether the signature verification is successful (S157). If it fails (S157 is N), an error notification is returned to the transmission source (S158). If successful (Y in S157), the process ends.

  Next, the operation of the signature decryption service system 300 will be described with reference to FIG.

  When receiving a signature verification request or encryption request from the business process service system 40 (Y in S161), the request reception unit 302 in the signature decryption service system 300 passes it to the request processing unit 303. When a signature verification request is passed, the request processing unit 303 performs signature verification processing on the business document that is included in the signature and is signed with the private key of the business process service system 30. The public key is used (S166), and the result is returned to the business process service system 40 (S168). If an encryption request is passed, the business document generated by the business processing unit 42 included in the request is encrypted with the public key of the user terminal 1 (S166), and the encrypted business document is converted into a business process. It returns to the service system 40 (S168).

  Further, when receiving a signature request or a decryption request (N in S161), the request receiving unit 302 passes the request to the pre-approval unit 306. As a result, the prior approval unit 306 searches the user DB 305 using the user ID included in the request as a key, and confirms the approval / rejection conditions registered in advance in association with the user ID (S162). . If the request satisfies the approval condition, the process from S166 is performed. If the request satisfies the rejection condition, the process from S167 is performed. If neither the approval condition nor the rejection condition is satisfied (including the case where the approval / rejection condition is not registered), the processing from S163 is performed.

  When neither the approval condition nor the rejection condition is satisfied, the request receiving unit 302 passes the signature request or the decryption request to the sequential approval unit 304, and the sequential approval unit 304 uses the method registered in the user DB 305 to An authentication request for permission to use is transmitted to the corresponding user terminal (referred to as user terminal 1) (S163). When an authentication request is sent, the user of the user terminal 1 accesses the sequential approval unit 304 of the signature decryption service system 300, inputs the registered password, and confirms the content of the signature request or decryption request. Approve or reject (S164).

  If approved by the user of the user terminal 1 (Y in S165), the request accepting unit 302 passes the signature request or decryption request to the request processing unit 203, and the request processing unit 303 receives the secret key stored by the user. Using the extracted private key from the user DB 305, the business document included in the signature request or decryption request is subjected to signature processing or decryption processing (S166), and the signed business document or decrypted business document is processed. Is returned to the business process service system 40 (S168). Note that the same processing is performed when it is determined in S162 that the approval condition is satisfied.

  On the other hand, when it is rejected by the user of the user terminal 1 (N in S165), an error notification is created (S167) and returned to the business process service system 40 (S168). Note that the same processing is performed when it is determined in S162 that the rejection condition is satisfied.

It is a block diagram which shows the example of whole structure of the 1st Embodiment of this invention. 3 is a diagram illustrating a configuration example of a user DB 14. FIG. 3 is a diagram illustrating a configuration example of a user DB 105. FIG. It is a flowchart which shows the process example of 1st Embodiment. It is a flowchart which shows the example of a process when the business process service system 10 receives the process request from a user terminal. It is a figure which shows an example of a signature request | requirement. It is a flowchart which shows the process example when the business process service system 10 receives the response information containing the business document addressed to the user terminal. 4 is a flowchart showing an example of processing of the signature decryption service system 100. It is a block diagram which shows the example of whole structure of the 2nd Embodiment of this invention. 6 is a diagram illustrating an example of an approval / rejection condition 1000. FIG. 5 is a flowchart showing an example of processing of a signature decryption service system 200. It is a block diagram which shows the whole structure of the 3rd Embodiment of this invention. 7 is a flowchart showing an example of processing when a business process service system 40 receives a processing request from a user terminal. 4 is a diagram illustrating a configuration example of a request transmitted from a business process service system 40 to a signature decryption service system 301. FIG. It is a flowchart which shows the example of a process when the business process service system 40 receives the response information containing the business document addressed to the user terminal. 5 is a flowchart showing a processing example of a signature decryption service system 300.

Explanation of symbols

1-3 ... User terminal
10, 20, 30, 40 ... Business process service system
11, 21, 31, 41 ... Common interface
12, 42 ... Business Processing Department
13, 43… User access section
14, 44 ... User DB
15, 45 ... Document Exchange Department
100, 200, 300 ... Signature decryption service system
101, 201, 301 ... Common interface
102, 202, 302 ... Request acceptance department
103, 203, 303 ... Request processing section
104 ... Approval Department
105, 205, 305 ... User DB
204, 304 ... Sequential approval section
206, 306 ... Pre-approval department

Claims (10)

An electronic document exchange system including a business process service system and a signature decryption service system,
The business process service system is
A business processing unit for generating a business document according to a request from a member user;
A signature request including the business document generated by the business processing unit and the user ID of the member user is transmitted to the signature decryption service system, and the signature returned from the signature decryption service system in response to the signature request A document exchanging unit that transmits a business document with a tag to a destination specified by the member user,
The signature decryption service system includes:
When a signature request is sent from the business process service system, the business document in the signature request is signed using a private key specified by the user ID in the signature request, and the signed business document is An electronic document exchange system comprising a request processing unit that sends a reply to a business process service system. The electronic document exchange system according to claim 1, wherein
The document exchange unit
An electronic document exchange system characterized in that a signed business document returned from the signature decryption service system is encrypted using a public key of the transmission destination and then transmitted. The electronic document exchange system according to claim 2,
The document exchange unit
When a business document encrypted using the public key of the member user is received, a decryption request including the business document and the user ID of the member user is transmitted to the signature decryption service system,
The request processing unit
When a decryption request is sent from the business process service system, the encrypted business document in the decryption request is decrypted using a secret key specified by the user ID in the decryption request, and the decrypted business An electronic document exchange system having a configuration for returning a document to the business process service system. The electronic document exchange system according to claim 3,
The document exchange unit
An electronic document exchange system having a configuration in which when a business document signed using a private key of a transmission source is received, signature verification is performed using the public key of the transmission source of the business document. The electronic document exchange system according to claim 4, wherein
The signature decryption service system includes:
When a signature request or a decryption request is sent from the business process service system, an authentication request for permission to use the secret key is issued to a user who owns the secret key for processing the signature request or the decryption request. An approval unit for transmitting and receiving an authentication result sent from the user in response to the authentication request; and
The request processing unit
An electronic document exchange system comprising: a process for performing processing according to the signature request or the decryption request on condition that the authentication result received by the approval unit permits use of a secret key. The electronic document exchange system according to claim 4, wherein
The signature decryption service system includes:
When a signature request or decryption request is sent from the business process service system, the approval condition defined in advance by the user who owns the private key for processing the signature request or the decryption request is satisfied. A pre-approval unit that determines whether or not a rejection condition defined in advance by the user is satisfied, and
When the pre-approval unit determines that neither the approval condition nor the rejection condition is satisfied, the authentication request for requesting permission to use the secret key is transmitted to the user, and the user responds to the authentication request from the user. A sequential approval unit for receiving the authentication result sent, and
The request processing unit
When it is determined that the approval condition is satisfied by the pre-approval unit and when the authentication result received by the sequential approval unit permits the use of a secret key, the signature request or the decryption request is followed. An electronic document exchange system having a configuration for performing processing. An electronic document exchange system including a business process service system and a signature decryption service system,
The business process service system is
A business processing unit for generating a business document according to a request from a member user;
A signature / encryption request including the business document generated by the business processing unit and the user ID of the member user is transmitted to the signature decryption service system, and the signature decryption service is responded to the signature / encryption request. A document exchange unit that transmits the encrypted and signed business document returned from the system to a destination specified by the member user,
The signature decryption service system includes:
When a signature / encryption request is sent from the business process service system, the business document in the signature / encryption request is sent using a private key specified by the user ID in the signature / encryption request. An electronic document exchange system comprising: a request processing unit that performs a signature, encrypts using a public key of a destination of the business document, and returns the result to the business process service system. The electronic document exchange system according to claim 7, wherein
The document exchange unit
When receiving a business document encrypted with the public key of the member user and signed with the private key of the transmission source, a decryption / signature verification request including the business document and the user ID of the member user is received. Having a configuration to transmit to the signature decryption service system,
The signature decryption service system includes:
When a decryption / signature verification request is sent from the business process service system, the business document in the decryption / signature verification request is decrypted using a private key specified by the user ID in the decryption / signature verification request. An electronic document exchange system comprising a configuration for performing signature verification using a public key of a destination of the business document.   A business processing unit that generates a business document according to a request from a member user, and a signature request including the business document generated by the business processing unit and the user ID of the member user is transmitted to the signature decryption service system, and the signature request A signature request is sent from a business process service system including a document exchange unit that sends a signed business document returned from the signature decryption service system to the destination designated by the member user. A request processing unit for signing the business document requested for signature using a secret key specified by the user ID requested for the signature and returning the signed business document to the business process service system. A signature decryption service system comprising: Computer
A business processing unit that generates a business document according to a request from a member user, and a signature request including the business document generated by the business processing unit and the user ID of the member user is transmitted to the signature decryption service system, and the signature request A signature request is sent from a business process service system including a document exchange unit that sends a signed business document returned from the signature decryption service system to the destination designated by the member user. A request processing unit for signing the business document requested for signature using a secret key specified by the user ID requested for the signature and returning the signed business document to the business process service system. A program to make it work.

Images