JP2008263568A - Time authenticating method - Google Patents

Time authenticating method Download PDF

Info

Publication number
JP2008263568A
JP2008263568A JP2007126118A JP2007126118A JP2008263568A JP 2008263568 A JP2008263568 A JP 2008263568A JP 2007126118 A JP2007126118 A JP 2007126118A JP 2007126118 A JP2007126118 A JP 2007126118A JP 2008263568 A JP2008263568 A JP 2008263568A
Authority
JP
Japan
Prior art keywords
information
specific time
processing unit
time
encrypted
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
JP2007126118A
Other languages
Japanese (ja)
Inventor
Takeshi Nakadokoro
武司 中所
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to JP2007126118A priority Critical patent/JP2008263568A/en
Publication of JP2008263568A publication Critical patent/JP2008263568A/en
Pending legal-status Critical Current

Links

Images

Abstract

<P>PROBLEM TO BE SOLVED: To provide a method for authenticating a time when handing over a computer-processable encoded document via a computer network such as the Internet. <P>SOLUTION: When handing over a computer-processable encoded document via a computer network such as the Internet, a server system for authenticating a time is provided separately from delivering-side and receiving-side two client systems, thereby authenticating the time at which contents of the document can be watched. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

本発明は,コンピュータが処理可能な符号化された文書を作成した後,ある特定の時刻になるまでは他の者に文書の内容を公開しないで,かつその特定の時刻に達した後にはその文書の暗号化されたものを有するものは復号化してその内容を見ることができるようにする場合に好適な時刻認証方法に関するものである.  The present invention does not disclose the contents of a document to others until a specific time has elapsed after creating an encoded document that can be processed by a computer. A document having an encrypted document is related to a time authentication method suitable for decrypting the document so that its contents can be viewed.

従来から,コンピュータが処理可能な符号化された文書に関しては,暗号化技術を応用して,文書の内容が改ざんされていないことや文書の送付者が特定の者であることを認証するシステムがある.この例として,非特許文献1に開示されているものがある.また,時刻認証方法に関しては,特定時刻と現在時刻の比較をサーバシステムで実施する方法がある.この例として,特許文献1に開示されているものがある.
佐々木ほか著:「インターネット時代の情報セキュリティ」,共立出版,2000年発行 特開2001−156769号公報 Conventionally, with respect to encoded documents that can be processed by a computer, there has been a system that applies encryption technology to authenticate that the content of the document has not been tampered with and that the sender of the document is a specific person. is there. An example of this is disclosed in Non-Patent Document 1. As for the time authentication method, there is a method in which the server system compares the specific time with the current time. An example of this is disclosed in Patent Document 1.
Sasaki et al., "Information Security in the Internet Age", Kyoritsu Publishing, 2000 JP 2001-156769 A

コンピュータが処理可能な符号化された文書を種々の暗号化技術を応用して受け渡すシステムでは,文書の内容が改ざんされていないことや特定の者が本人であることを認証することはできるが,時刻を認証することはできないという欠点がある.特定時刻と現在時刻の比較をサーバシステムで実施する特許(特開2001−156769)の方法では,サーバシステムの処理が複雑になり,クライアントシステムとサーバシステムとの交信方法も複雑になるという欠点がある.本発明は,このような,サーバシステムの処理やクライアントシステムの処理や両者の交信方法が複雑になるという不都合を解決することを課題とする.  In a system that delivers encoded documents that can be processed by a computer by applying various encryption technologies, it is possible to authenticate that the content of the document has not been altered or that a specific person is the person. There is a drawback that the time cannot be authenticated. In the method of the patent (Japanese Patent Laid-Open No. 2001-156769) in which the comparison between the specific time and the current time is performed in the server system, the processing of the server system is complicated and the communication method between the client system and the server system is also complicated. is there. An object of the present invention is to solve such inconvenience that the processing of the server system, the processing of the client system, and the communication method between them are complicated.

この課題を解決するための請求項1の発明は,インターネットなどのコンピュータネットワーク上での文書の受け渡しにおいて,コンピュータが処理可能な符号化された文書を作成し,暗号化した後,ある特定の時刻になるまでは他の者は暗号化された文書を復号化できないようにし,かつその特定の時刻に達した後にはその暗号化された文書を有する者は復号化してその内容を見ることができるようにする場合において,文書の暗号化に用いた共通鍵暗号方式の共通秘密鍵と指定時刻をサーバシステムの有する公開鍵暗号方式の公開鍵で暗号化したものを,暗号化された文書の送付先のクライアントシステムに送付することを特徴とする,時刻認証方法である.この方法では,暗号化された文書を渡す側のクライアントシステムはサーバシステムと交信する必要はなく,サーバシステムは文書の暗号化に用いた共通鍵暗号方式の共通秘密鍵と指定時刻を暗号化する必要がなくなる.  In order to solve this problem, the invention according to claim 1 is directed to a specific time after an encoded document that can be processed by a computer is created and encrypted in the delivery of a document on a computer network such as the Internet. Until the time is reached, no one else can decrypt the encrypted document, and after that particular time, the person with the encrypted document can decrypt it and see its contents In such a case, the encrypted document that is obtained by encrypting the common secret key of the common key cryptosystem used for encrypting the document and the public key of the public key cryptosystem possessed by the server system is sent to the encrypted document. This time authentication method is characterized by being sent to the previous client system. In this method, the client system that passes the encrypted document does not need to communicate with the server system, and the server system encrypts the common secret key and the specified time of the common key encryption method used to encrypt the document. There is no need.

本発明により,特定の時刻以降にのみ暗号化された情報を見ることができるようにする時刻認証方法において,文書の暗号化に用いた共通鍵暗号方式の共通秘密鍵と指定時刻をサーバシステムの有する公開鍵暗号方式の公開鍵で暗号化したものを,暗号化された文書の送付先のクライアントシステムに送付するようにすることにより,暗号化された文書を渡す側のクライアントシステムはサーバシステムと交信する必要はなくなり,サーバシステムは文書の暗号化に用いた共通鍵暗号方式の共通秘密鍵と指定時刻を暗号化する必要がなくなるので,暗号化された文書を渡す側のクライアントシステムとサーバシステムの処理を簡単化することができる.  According to the present invention, in a time authentication method in which encrypted information can be viewed only after a specific time, the common secret key of the common key cryptosystem used for encrypting the document and the specified time are stored in the server system. The client system that delivers the encrypted document is the server system that sends the encrypted document with the public key of the public key cryptosystem that is sent to the client system to which the encrypted document is sent. There is no need to communicate, and the server system does not need to encrypt the common secret key of the common key cryptosystem used to encrypt the document and the specified time, so the client system and server system on the side that passes the encrypted document Can be simplified.

以下,本発明の実施の形態を図面により説明する.  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

図1は,本発明による時刻認証方法の実施の形態であるコンピュータシステムの構成を示すものである.情報暗号化処理部(4)と送信情報暗号化処理部(5)と情報復号化処理部(6)を含むクライアントシステム(1)と,特定時刻復号化処理部(7)を含むサーバシステム(2)から構成される.  FIG. 1 shows the configuration of a computer system that is an embodiment of a time authentication method according to the present invention. A client system (1) including an information encryption processing unit (4), a transmission information encryption processing unit (5), and an information decryption processing unit (6), and a server system including a specific time decryption processing unit (7) ( 2).

図2は,本発明による時刻認証方法の実施の形態であるコンピュータネットワークシステムの構成を示すものである.図1に示した構成のコンピュータシステムである1つ以上のクライアントシステム(1)とサーバシステム(2)とコンピュータネットワーク(3)から構成される.  FIG. 2 shows the configuration of a computer network system which is an embodiment of the time authentication method according to the present invention. It is composed of one or more client systems (1), a server system (2), and a computer network (3) which are computer systems configured as shown in FIG.

図3は,ある特定の時刻になるまでは他の者に文書の内容を公開しないで,かつその特定の時刻に達した後にはその暗号化された文書を有するものは復号化してその内容を見ることができるようにする場合の,図2の2つのクライアントシステム(1)とサーバシステム(2)の動作の詳細なフローを示すものである.  FIG. 3 shows that the content of a document is not disclosed to others until a specific time is reached, and after the specific time is reached, the document having the encrypted document is decrypted and the content is The detailed flow of the operation of the two client systems (1) and the server system (2) in FIG.

図3に示すように,まず,クライアントシステム(1a)のステップ31において,コンピュータが処理可能な符号化された文書の情報を共通鍵暗号方式を用いて情報暗号化処理部で暗号化する.  As shown in FIG. 3, first, in step 31 of the client system (1a), the information of the encoded document that can be processed by the computer is encrypted by the information encryption processing unit using a common key encryption method.

次にクライアントシステム(1a)のステップ32において,この暗号化に用いた共通秘密鍵とある特定時刻をサーバシステムの有する公開鍵暗号方式における公開鍵を用いて送信情報暗号化処理部でいっしょに暗号化し,クライアントシステム(1b)に送付する.  Next, in step 32 of the client system (1a), the transmission information encryption processing unit encrypts the common secret key used for the encryption and a specific time with the public key in the public key encryption method of the server system. And send it to the client system (1b).

次にクライアントシステム(1b)のステップ33において,特定時刻に達した時に,ステップ32で暗号化された暗号化に用いた共通秘密鍵と特定時刻をサーバシステムに送付する.  Next, in step 33 of the client system (1b), when the specific time is reached, the common secret key and the specific time encrypted in step 32 are sent to the server system.

次にサーバシステムのステップ34において,このステップ32で暗号化されな暗号化に用いた共通秘密鍵と特定時刻をサーバシステムの有する公開鍵暗号方式における秘密鍵を用いて特定時刻復号化処理部で復号化し,特定時刻が現在時刻を過ぎていれば,特定時刻といっしょに暗号化されていた共通秘密鍵と特定時刻をクライアントシステム(1b)に送付する.もし,特定時刻が現在時刻を過ぎていなければ,特定時刻のみをクライアントシステム(1b)に送付する.  Next, in step 34 of the server system, the specific time decryption processing unit uses the secret key in the public key cryptosystem possessed by the server system using the common secret key and the specific time that were not encrypted in step 32. If it is decrypted and the specific time is past the current time, the common secret key encrypted together with the specific time and the specific time are sent to the client system (1b). If the specific time is not past the current time, only the specific time is sent to the client system (1b).

次にクライアントシステム(1b)のステップ35において,サーバシステムから共通秘密鍵が送付された場合,送付された共通秘密鍵を用いてステップ31で暗号化されていた情報を復号化する.  Next, when a common secret key is sent from the server system in step 35 of the client system (1b), the information encrypted in step 31 is decrypted using the sent common secret key.

本発明の実施の形態を示すコンピュータシステムの構成図  Configuration diagram of a computer system showing an embodiment of the present invention 1つ以上のクライアントシステムと1つのサーバシステムをコンピュータネットワークを介して接続した本発明の実施の形態を示す構成図  1 is a configuration diagram showing an embodiment of the present invention in which one or more client systems and one server system are connected via a computer network. 図2の2つのクライアントシステムと1つのサーバシステムの動作の詳細なフロー図  Detailed flow diagram of the operation of the two client systems and one server system of FIG.

符号の説明Explanation of symbols

1 クライアントシステム
2 サーバシステム
3 コンピュータネットワーク
4 情報暗号化処理部
5 送信情報暗号化処理部
6 情報復号化処理部
7 特定時刻復号化処理部DESCRIPTION OF SYMBOLS 1 Client system 2 Server system 3 Computer network 4 Information encryption process part 5 Transmission information encryption process part 6 Information decryption process part 7 Specific time decryption process part

Claims (1)

コンピュータが処理できるように符号化された情報に関して,この情報を共通鍵暗号方式で暗号化する情報暗号化処理部(4)と,この暗号化された情報を復号化するための共通秘密鍵およびある特定時刻をいっしょに公開鍵暗号方式における公開鍵で暗号化して送信する送信情報暗号化処理部(5)と,情報暗号化処理部(4)で暗号化された情報をこの共通秘密鍵を用いて復号化する情報復号化処理部(6)とを有するクライアントシステム(1)と,
この送信情報暗号化処理部(5)で暗号化された共通秘密鍵および特定時刻を受け取って公開鍵暗号方式における秘密鍵で復号化して,特定時刻を現在時刻と比較して現在時刻が特定時刻を越えている場合にのみ共通秘密鍵および特定時刻をクライアントシステム(1)へ送信する特定時刻復号化処理部(7)とを有するサーバシステム(2)とがコンピュータネットワーク(3)で接続されたシステムにおける,時刻認証方法において,
現在時刻が特定時刻を過ぎるまでは1つのクライアントシステム(1)の情報暗号化処理部(4)で暗号化された情報がこの暗号化された情報と特定時刻暗号化処理部(5)で暗号化された共通秘密鍵および特定時刻を受け取った別のクライアントシステム(1)の情報復号化処理部(6)で復号化されることがないことを保証することを特徴とする,
時刻認証方法.Regarding information encoded so that it can be processed by a computer, an information encryption processing unit (4) for encrypting this information by a common key cryptosystem, a common secret key for decrypting the encrypted information, and A transmission information encryption processing unit (5) that transmits a specific time together with a public key in the public key cryptosystem and transmits the information encrypted by the information encryption processing unit (4) with the common secret key. A client system (1) having an information decoding processing unit (6) for decoding using
The transmission information encryption processing unit (5) receives the common secret key and the specific time, decrypts it with the private key in the public key cryptosystem, compares the specific time with the current time, and the current time is the specific time. A server system (2) having a specific time decryption processing unit (7) that transmits a common secret key and a specific time to the client system (1) only when it exceeds the network is connected by a computer network (3) In the time authentication method in the system,
Until the current time passes the specific time, the information encrypted by the information encryption processing unit (4) of one client system (1) is encrypted by the encrypted information and the specific time encryption processing unit (5). It is ensured that the information is not decrypted by the information decryption processing unit (6) of another client system (1) that has received the encrypted common secret key and the specific time,
Time authentication method.
JP2007126118A 2007-04-10 2007-04-10 Time authenticating method Pending JP2008263568A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
JP2007126118A JP2008263568A (en) 2007-04-10 2007-04-10 Time authenticating method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
JP2007126118A JP2008263568A (en) 2007-04-10 2007-04-10 Time authenticating method

Publications (1)

Publication Number Publication Date
JP2008263568A true JP2008263568A (en) 2008-10-30

Family

ID=39985700

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2007126118A Pending JP2008263568A (en) 2007-04-10 2007-04-10 Time authenticating method

Country Status (1)

Country Link
JP (1) JP2008263568A (en)

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH08102735A (en) * 1994-09-30 1996-04-16 Toshiba Corp Electronic document processing method
JPH1127252A (en) * 1997-07-07 1999-01-29 Hitachi Ltd Key management system, key management device, information ciphering device, information decoder and program recording medium
JP2001022875A (en) * 1999-07-13 2001-01-26 Hitachi Ltd Electronic bidding system
JP2001156769A (en) * 1999-11-22 2001-06-08 Takeshi Nakadokoro Time authentication method
JP2001189718A (en) * 1999-12-28 2001-07-10 Eiichi Masai Method and device for preparing date-designated document, and recording medium recorded with preparation program of date-designated document
JP2002149567A (en) * 2000-11-15 2002-05-24 Fujitsu Ltd Method for opening data and hour designated mail and recording medium
JP2002344924A (en) * 2001-05-22 2002-11-29 Nippon Telegr & Teleph Corp <Ntt> Contents distribution method and its apparatus
JP2003330897A (en) * 2002-03-15 2003-11-21 Microsoft Corp Multi-casting restricted by time frame for future delivery multi-casting
JP2004112555A (en) * 2002-09-20 2004-04-08 Matsushita Electric Ind Co Ltd Download system and method therefor
JP2005051479A (en) * 2003-07-28 2005-02-24 Dainippon Printing Co Ltd Time limit encipherment/decipherment system

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH08102735A (en) * 1994-09-30 1996-04-16 Toshiba Corp Electronic document processing method
JPH1127252A (en) * 1997-07-07 1999-01-29 Hitachi Ltd Key management system, key management device, information ciphering device, information decoder and program recording medium
JP2001022875A (en) * 1999-07-13 2001-01-26 Hitachi Ltd Electronic bidding system
JP2001156769A (en) * 1999-11-22 2001-06-08 Takeshi Nakadokoro Time authentication method
JP2001189718A (en) * 1999-12-28 2001-07-10 Eiichi Masai Method and device for preparing date-designated document, and recording medium recorded with preparation program of date-designated document
JP2002149567A (en) * 2000-11-15 2002-05-24 Fujitsu Ltd Method for opening data and hour designated mail and recording medium
JP2002344924A (en) * 2001-05-22 2002-11-29 Nippon Telegr & Teleph Corp <Ntt> Contents distribution method and its apparatus
JP2003330897A (en) * 2002-03-15 2003-11-21 Microsoft Corp Multi-casting restricted by time frame for future delivery multi-casting
JP2004112555A (en) * 2002-09-20 2004-04-08 Matsushita Electric Ind Co Ltd Download system and method therefor
JP2005051479A (en) * 2003-07-28 2005-02-24 Dainippon Printing Co Ltd Time limit encipherment/decipherment system

Similar Documents

Publication Publication Date Title
CN103618607B (en) A kind of Security Data Transmission and key exchange method
US20080260147A1 (en) Method and apparatus for encrypting message for maintaining message integrity, and method and apparatus for decrypting message for maintaining message integrity
US20080046731A1 (en) Content protection system
EP3476078B1 (en) Systems and methods for authenticating communications using a single message exchange and symmetric key
TW496054B (en) Self-authentication ciphertext chaining
CN103634266B (en) A bidirectional authentication method for a server and a terminal
CN110868291B (en) Data encryption transmission method, device, system and storage medium
US20170353745A1 (en) Secure media player
CN110896401A (en) Two-dimensional code-based unidirectional data stream transmission system and method between isolated networks
JP2005245010A5 (en)
CN103036880A (en) Network information transmission method, transmission equipment and transmission system
JP2008065696A5 (en)
CN104243439A (en) File transfer processing method and system and terminals
WO2012053886A1 (en) A method and system for file encryption and decryption in a server
DE602004032313D1 (en) Data authentication method and agent based system
CN101009549B (en) Decoding device for the digital copyright management
JP2008234143A (en) Subject limited mail opening system using biometrics, method therefor, and program therefor
KR100977498B1 (en) Method for Digital Rights Management
US20020001388A1 (en) High speed copy protection method
JP2013042331A (en) Unidirectional communication system, method, and program
Burgin et al. Suite B profile for internet protocol security (IPsec)
KR20090024482A (en) Key management system for using content and method thereof
US7730298B2 (en) Method and apparatus for translating information between computers having different security management
Turner Algorithms for Asymmetric Key Package Content Type
JP4698261B2 (en) Cryptographic communication system and method, and program

Legal Events

Date Code Title Description
A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20090130

A977 Report on retrieval

Free format text: JAPANESE INTERMEDIATE CODE: A971007

Effective date: 20110713

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20110726

A02 Decision of refusal

Free format text: JAPANESE INTERMEDIATE CODE: A02

Effective date: 20111122