JP6606701B2 - Information management method and apparatus - Google Patents

Description

  The present invention relates to an information management method, and is particularly suitable for time stamp management.

Conventionally, a time stamp is pressed (issued) on an electronic file.
In addition to the date / time information at the time of issuance, this time stamp mainly includes a hash value calculated by a predetermined hash algorithm based on a file (original file) to be stamped with the time stamp. Includes the electronic signature of the (time stamp issuing authority). Hereinafter, digital data of a time stamp is also referred to as time stamp data or a time stamp token (TST) in this specification.
After the time stamp is stamped, the guarantee that the original file has not been tampered with (originality) is secured by the hash value described above. In other words, by comparing the hash value at the time of issuance of the time stamp with the hash value generated from the original file again at the time of verification, it is ensured that the content of the original file has not changed if this hash value has not changed. It was a mechanism.
As such a conventional time stamp technique, there is one described in Patent Document 1, and the technical content described in the prior art is a part of this specification.

JP 2014-42214 A JP 2012-175555 A JP 2012-028882 A

In the above conventional time stamp system, it is a hash value that guarantees that the original file has not been falsified (originality). However, if this hash value is lost, the originality cannot be verified. There was a problem that.
It is also conceivable to back up the hash value to another server, etc. In that case, the association between the original file and the hash value depends on the reliability of the database managing these data. There was a problem that it would be very unstable.
In addition, when the issued time stamp is lost, there is a problem that the fact that the original file exists at the time of issuing the time stamp (the existence fact) cannot be proved.

  The present invention has been made to solve the above-described problems, and stores at least a hash value of a time stamp in a trusted organization, and generates an original file that is a target of the time stamp and a file generated thereby. The purpose is to clarify the association with the hash value. It is also intended to store a time stamp including a hash value in a trusted organization and clarify the association between the original file that is the target of the time stamp and the time stamp.

In order to achieve the above object, an information management method according to an aspect of the present invention includes a time stamp device that issues time stamp data including a hash value based on target data requested by a user, and the issued time issues a unique storage ID to stamp data, a method performed by the connectable to information management apparatus and the storage device stores and the store ID and time stamp data, the information management apparatus, A process for receiving a storage ID issued by the storage device for time stamp data, information for specifying the target data , time stamp data, and the received storage ID are associated with each other in the storage unit of the information management device. a process of storing, the information in response to the display request, identifies the target data stored in the storage means, Times And having a Npudeta, a process of displaying the storage ID, and.

  Processing for requesting the time stamp device to issue a unique time stamp ID for the target data may be further performed.

  A time stamp ID for identifying the time stamp is further issued by the time stamp issuing device when the time stamp is issued, and the time stamp ID is sent to the storage device in accordance with the processing, and the data storage means The time stamp ID may be further stored in association with the storage ID.

Processing for generating an intermediate PDF file in which information (file name) specifying the target data is described in the text, the target data is attached, and the acquired time stamp data is stored in a signature column, and the acquired storage describes ID in the body, and a process of generating a wrapper PDF files containing time stamp data generated by the time-stamping device based on the intermediate PDF to signature field and attach the intermediate PDF file Furthermore, you may have.

An information management device according to one aspect of the present invention includes a time stamp device that issues time stamp data including a hash value based on target data requested by a user, and a unique time stamp for the issued time stamp data . An apparatus configured to issue a storage ID and connectable to a storage apparatus that stores the storage ID and the time stamp data, and means for receiving the storage ID issued by the storage apparatus for the time stamp data; , in association with the storage ID received above, storage means for storing the information and the time stamp data and the stored ID for identifying the target data, in accordance with the display request, specifying the target data stored in the storage means And display means for displaying the time stamp data and the storage ID .

Intermediate PDF file generation means for generating an intermediate PDF file in which information (file name) specifying the target data is written in the text, the target data is attached, and the acquired time stamp data is stored in a signature column ; describes a storage ID obtained above SL in the body, the wrapper PDF files containing time stamp data generated by the time-stamping device based on the intermediate PDF to signature field and attach the intermediate PDF file You may further have a packaging PDF file production | generation means to produce | generate.

A computer program according to an aspect of the present invention includes a time stamp device that issues time stamp data including a hash value based on target data requested by a user, and a unique storage for the issued time stamp data . A computer program that issues an ID and causes a computer configured to be connectable to a storage device that stores the storage ID and time stamp data to function as an information management device, and is issued to the computer by the storage device Processing for receiving the stored ID, processing for identifying the target data , time stamp data, and storing the received storage ID in the storage means of the information management device, and in response to a display request , Information for identifying the target data stored in the storage means, Wherein the stamp data, and processing for displaying the storage ID, and thereby the execution.

A process for generating an intermediate PDF file in which information for specifying the target data is described in the text, the target data is attached, and the acquired time stamp data is stored in a signature column, and the storage unit acquires the acquired the storage ID is described in the text, and generating a wrapper PDF files containing time stamp data generated by the time-stamping device based on the intermediate PDF to signature field and attach the intermediate PDF file , May be further executed.

  According to the present invention, time stamp data including a hash value (time stamp token) is stored in a trusted third party, and the association between the original file that is the target of the time stamp and the time stamp data is clarified. Can be. As a result, it is possible to ensure the proof of existence at the time of issuing the time stamp of the original file and to ensure the originality.

1 is a system schematic diagram of a first embodiment. The processing flow of 1st Embodiment. The processing flow of 2nd Embodiment. The system schematic of 3rd Embodiment. The processing flow of 3rd Embodiment. An example of the login screen of 4th Embodiment. An example of the registration screen of 4th Embodiment. An example of the screen which displays the registration result of 4th Embodiment. An example of the list display screen of 4th Embodiment. An example of the search condition designation | designated screen of 4th Embodiment. An example of the separate detailed screen of 4th Embodiment. An example of the individual verification screen of 4th Embodiment.

FIG. 1 is a diagram showing the overall configuration of the first embodiment of the present invention.
In FIG. 1, in this embodiment, a time stamp server 1, a user terminal 2, and a storage server 3 operated by a public institution are configured to be connectable via a network such as the Internet.
The time stamp server 1 performs processing for issuing time stamp data (time stamp token, TST) in response to a request from the user. This time stamp data includes not only the date and time when the time stamp was issued, but also data such as a hash value generated by a predetermined algorithm based on the original file, and in addition to this, a certificate (TSA certificate) representing the time stamp issuing organization Data).
This time stamp server 1 is held by a time stamp issuing organization.

The user terminal 2 is a computer terminal that can be connected to the Internet. The user terminal 2 may be any computer terminal that can be connected to the Internet, such as a so-called personal computer terminal or PDA (Personal Digital Assistant) terminal.
In the user terminal 2, a data storage unit 21, a time stamp acquisition unit 22, a storage ID acquisition unit 23, and an authentication processing unit 24 are realized by the CPU executing a computer program stored in a storage unit such as a hard disk. can do.
The data storage unit 21 is a storage unit that stores an original file, time stamp data, certificate data as necessary, and a storage ID issued by the storage server 3.
The time stamp acquisition unit 22 requests the time stamp server 1 to acquire time stamp data for the original file. The time stamp acquisition process is performed by the time stamp acquisition unit 22 generating a hash value from the original file based on a predetermined hash algorithm and transmitting the generated hash value to the time stamp server 1. Can do. Alternatively, the time stamp acquisition unit 22 may transmit the original file itself to the time stamp server 1 and generate a hash value on the time stamp server 1 side.
The storage ID acquisition unit 23 acquires the storage ID from the storage server 3 by transmitting at least the hash value data of the time stamp to the storage server 3 when the time stamp can be acquired, and the acquired storage ID is the data A process of storing the original file in the storage unit 21 is performed. Note that the data to be transmitted to the storage server 3 may be only a hash value or time stamp data.
The authentication processing unit 24 performs processing for requesting the storage server 3 to authenticate whether the hash value currently held by the user matches the hash value stored in the storage server 3.

The storage server 3 is a server operated by a public institution.
The storage server 3 is for storing a hash value of a time stamp.
The storage server 3 includes a management database 31, a storage ID issuing unit 32, and an authentication processing unit 33.
The management database 31 is a storage unit that associates and stores a hash value deposited from a user and a storage ID issued to the user when the hash value is deposited from the user.
The storage ID issuing unit 32 performs processing for issuing a unique storage ID associated with the hash value to the user based on a storage request for the hash value from the user.
The authentication processing unit 33 is a process for authenticating whether the hash value currently held by the user matches the hash value stored in the storage server 3 in response to an authentication request from the user who has stored the hash value.

Next, the process flow of the above-described embodiment will be described.
In FIG. 2, when the user first acquires the time stamp of the original file, the time stamp acquisition unit 22 of the user terminal 2 transmits a time stamp acquisition request to the time stamp server 1 (S1).
In response to the time stamp acquisition request, the time stamp acquisition unit 22 may generate a hash value from the original file based on a predetermined hash algorithm and transmit the hash value in advance. When the hash value is generated on the time stamp server 1 side, the original file itself may be transmitted to the time stamp server 1 at the time of the time stamp acquisition request.

  When a time stamp issuance request is made, the time stamp server 1 issues time stamp data and transmits it to the user terminal 2 (S2).

When the time stamp is issued, the storage ID acquisition unit 23 of the user terminal 2 makes a storage ID issue request to the storage server 3 (S3).
At the time of this issue request, the storage ID acquisition unit 23 transmits at least a hash value of the time stamp data to the storage server 3. Note that time stamp data may be transmitted in addition to the hash value at the time of this issuance request. Further, user information and the like may be transmitted together as necessary.

  When a storage ID issuance request is made, the storage ID issuing unit 32 of the storage server 3 issues a unique storage ID in response to the request and manages data such as a hash value received in association with the storage ID. While registering in the database 31, the issued storage ID is transmitted to the user terminal 2 (S4).

The storage ID acquisition unit 23 of the user terminal 2 stores the acquired storage ID in association with the time stamp data including the hash value in the data storage unit 21 (S5). At this time, user information such as an original file and a registrant name may be stored in association with each other.
Thereby, the issuance of the storage ID and the association at the user terminal 2 are completed.

Further, when the authentication processing is performed on the storage server 3 at a later date, the authentication processing unit 24 of the user terminal 2 transmits an authentication request to the storage server 3 (S11).
This authentication request is made by transmitting at least a storage ID and a hash value to be authenticated. Moreover, you may transmit time stamp data and the user information which specifies a user as needed.

  When an authentication request is made, the authentication processing unit 33 of the storage server 3 searches the management database 31 based on the storage ID, specifies a registered hash value, and the hash value and the hash for which the authentication request is made. The value is compared and the authentication result is transmitted to the user terminal 2 (S12), and the process ends.

  As described above, according to the above-described embodiment, the user not only stores the hash value issued by the time stamp server 1 by himself / herself but also registers it in the storage server 3 operated by a public institution for authentication. As a result, it is possible to increase the proof power by storing the hash value by an objective third party.

A second embodiment will be described with reference to FIG.
In the embodiment shown in FIG. 3, when issuing a time stamp, the time stamp server 1 issues a unique time stamp ID (TSID) (S22), and this time stamp ID (TSID) is stored as time stamp data and storage. In this example, the ID and the data are stored in association with the data storage unit 21 (S25), and the other configurations and processes are the same as those in the above-described embodiment, and thus description thereof is omitted.

  As described above, according to the second embodiment, the TSID issued by the time stamp server 1 is also linked and stored, so that a series of flows from time stamp issuance to storage can be correlated and proved.

  In the second embodiment, a time stamp ID (TSID) may be transmitted to the storage server 3 and registered in the storage server 3 in association with the storage ID.

Next, a third embodiment will be described with reference to FIG. 4 and FIG.
In the third embodiment, an original file, time stamp data, and the like are associated by a PDF file.
In this embodiment, first, the time stamp acquisition unit 22 enters “original file name” in the text of the PDF before acquiring the time stamp (S101).
In this state, the time stamp acquisition unit 22 attaches the original file to the PDF file whose original file name is described in the text to form one PDF file (S102).
In this state, a hash value is generated based on the PDF file (S103). As a result, a hash value is generated based on the contents described in the text of the PDF file and the attached original data, and therefore the hash value changes even if any of these values is changed. In other words, the content described in the text of the PDF file and the attached original data are associated with each other.
Based on the hash value, the time stamp server 1 is requested to issue a time stamp (S104). The issued time stamp data is embedded in the PDF signature area (S105). It should be noted that the signature area is an area that is unrelated to the calculation of the hash value (not the basis), and can be added later. Thus, a PDF file (referred to as “intermediate PDF file”) in which the original file, the body text describing the file name, and the time stamp data are integrated is generated.

In this state, the processes of S3 and S4 described above are performed, the hash value is transmitted to the storage server 3, and the storage ID is acquired from the storage server 3 (S106).
When the storage ID is acquired, the storage ID acquisition unit 23 describes the acquired storage ID in the text of a new PDF file (packaging PDF file) (S107).
Then, the intermediate PDF file generated previously is attached to this wrapping PDF file (S108).
Again, a hash value of this wrapping PDF file is generated and transmitted to the time stamp server to acquire time stamp data (S109) and embedded in the signature area of the wrapping PDF file (S110).
Thus, the intermediate PDF file is managed in association with the storage ID described in the text.

As described above, according to the third embodiment, since all necessary data can be stored in association with each other by the PDF file, management becomes very simple.
Further, the data of the generated wrapping PDF file may be managed as a database.

  In the third embodiment described above, the intermediate PDF file and the wrapped PDF file are not generated by the user terminal 2, but instead of the time stamp server 1 or a separately provided server (for example, a Web server having an ASP function). ).

In any of the above embodiments, the storage server 3 may store not only the hash value but also the time stamp data itself. In addition, user information and the like may be stored together.
At the same time, the user terminal 2 can store the registered time stamp data, storage ID, original file, and the like in association with each other and manage the time limit thereof.

Next, a fourth embodiment will be described with reference to FIGS. 6 to 12 mainly focusing on screen examples.
The fourth embodiment is an example in which the present invention is implemented as a time stamp management system. Since it is basically the same as in the first to third embodiments, illustrations other than the screen examples are omitted, but between the time stamp server 1 and the storage server 3 and the user terminal 2 used directly by the user, An ASP server 2A is separately provided using a Web service, and the configuration includes a function equivalent to that of the user terminal 2 in the first to third embodiments (not shown). By separating the terminal and the ASP and entrusting the main information processing function to the ASP, the system management associated with the function addition becomes easy.
In the present embodiment, the user terminal 2 transmits a TST including not only the hash value but also the hash value to the storage server 3 via the ASP server 2A. That is, in this embodiment, the data storage unit 21 is a storage unit that stores an original file, a time stamp token (TST), various certificate data as necessary, and at least a storage ID issued by the storage server 3. is there.
The time stamp acquisition unit 22 requests the time stamp server 1 to acquire a time stamp token (TST) for the original file. The time stamp acquisition process is performed by the time stamp acquisition unit 22 generating a hash value from the original file based on a predetermined hash algorithm and transmitting the generated hash value to the time stamp server 1. Can do. As a result, the time stamp can be acquired safely without leaking the original file itself.
The storage ID acquisition unit 23 acquires at least the storage ID from the storage server 3 by transmitting the TST to the storage server 3 when the TST can be acquired, and the acquired storage ID is used as the original file and the TST. In association therewith, a process of storing in the data storage unit 21 is performed.
The authentication processing unit 24 requests the storage server 3 to authenticate whether or not the TST currently stored in the user storage unit 21 in association with the target file matches the TST stored in the storage server 3. Process.

FIG. 6 is a login screen for the user to log in to the time stamp management system of this embodiment. FIG. 7 is a registration screen for registering the target file in this system, and FIG. 8 is a screen for displaying the registration result. FIG. 9 is a list display screen for displaying a list of registered files. 10 is a search condition designation screen, FIG. 11 is an individual detail screen, and FIG. 12 is an individual verification screen.
As shown in FIG. 6, the user logs in to the system by inputting the user ID and password and pressing (clicking) the login button. When the user logs in, the user can register a target file to be managed such as an original file whose time stamp is to be pressed, a time stamp certificate file whose time stamp has been stamped, and the like.

As shown in FIG. 7, the user selects the type of target file to be registered from the “input information type” column 71 using a pull-down menu or the like, and inputs the file name in the “input file” column 72. At that time, a reference button may be pressed as shown in FIG. If there is a certificate including a storage ID acquired from the storage server 3 (referred to as a storage certificate) in the “storage certificate” field 73, the file name of the storage certificate is input. In this way, the storage certificate can be managed in association with the target file in this system. In addition to the storage ID, the storage certificate includes a time stamp token stored in the storage server 3 and may include a storage date and time. Instead of the storage certificate column, only the storage ID may be registered. In the remarks column 74, remarks are input as necessary. In the search information column 75, information that is a key for searching is appropriately input.
When the registration button 76 in FIG. 7 is pressed, the time stamp management system performs registration processing corresponding to the type of the input target file, records it in the data storage unit, and also displays the registration result as shown in FIG. Is displayed on the screen. The registration number shown in FIG. 8 is uniquely assigned when target data is registered in this system, and is a number for specifying and managing the target data. The storage ID issued when a storage request is made to the storage server 3 may be displayed on the registration result display screen shown in FIG. 8 together with the registration number.

Here, “type of target file” is, for example, an original file to which a new timestamp is to be pressed, a time stamp certificate file (a PDF including the original file and the time stamp token), and described in the third embodiment. “Intermediate PDF file”, “wrapping PDF file”, and the like.
The “registration process corresponding to the type of input target file” will be described for each type of target data.
In the case where the target data is an original file for which a new time stamp is desired, an “intermediate PDF file” is created with the registration number of the original file as in the third embodiment, and the TST at this time is stored in the storage server 3 The received storage ID is stored in the data storage unit in association with the original file and managed. If necessary, a “wrapping PDF file” is created as in the third embodiment.
When the target data is a time stamp certificate file, the TST is extracted from the file, the TST is deposited in the storage server 3, at least the storage ID is received, and the received storage ID is associated with the time stamp certificate file. Stored in the data storage unit. Similarly, an “intermediate PDF file” and a “wrapping PDF file” may be created. When the target data is the “intermediate PDF file” described in the third embodiment, the TST extracted from the file is deposited in the storage server 3, and at least the storage ID is received. The received storage ID is used as the time stamp certificate. It is stored in the data storage unit in association with the file and managed. Similarly, a “wrapping PDF file” may be created.
As a result of registration, for example, when a file to be managed such as an “intermediate PDF file” or “wrapping PDF file” is created on the ASP server 2A, the user clicks a download button as shown in FIG. By pressing, these files can be downloaded from the server to the user terminal 2.

FIG. 9 is a list display screen for displaying a list of registered files. As shown in FIG. 9, a list of files registered in the present system is displayed on the list display screen. Alternatively, a list of files matching the search condition specified on the search condition specifying screen shown in FIG. 10 is displayed on the list display screen. Search conditions can also be specified in the list display screen.
When the search button in FIG. 9 is clicked, a search condition designation screen (FIG. 10) is displayed. When the detail button (D button) is clicked with the individual file check box checked, an individual detail screen (FIG. 11) is displayed. When the verification button (V button) is clicked with the individual file check box checked, an individual verification screen (FIG. 12) is displayed. When the collective verification button is clicked, a collective verification screen (not shown) is displayed.

  On the individual detail screen, as shown in FIG. 11, information (registration date / time, file name, remarks, search information) registered in the system for the target file, and the contents of the time stamp token (TST) are displayed. When the verification button is clicked, the authentication processing unit 24 acquires the TST (including the hash value) stored in the storage server 3 using the storage ID associated with the target file as a key, and the data storage unit 21. It verifies by comparing with the TST stored in association with.

  As described above, according to the present embodiment, even when a new time stamp is pressed on original data, even a time stamp certificate file with a time stamp already pressed can be treated as target data. it can. Then, the TST including the hash value can be registered in the storage server 3, and the storage ID for taking out the registered TST can be managed in association with the target data. That is, the time-stamp token including the hash value is stored in a trusted third party, and the association between the original file that is the target of the time stamp and the time stamp data can be clarified. As a result, the existence fact proof and originality guarantee at the time of issuing the time stamp of the original file can be made more reliable.

  The above-described embodiments can be applied in combination. In addition, the computer program for the user terminal of each of the above-described embodiments or the program can be stored in a recording medium (CDROM or the like) and can be distributed.

DESCRIPTION OF SYMBOLS 1 Time stamp server 2 User system 3 Storage server 21 Data storage part 22 Time stamp acquisition part 23 Storage ID acquisition part 24 Authentication processing part 31 Management database 32 Storage ID issuing part 33 Authentication processing part

Claims (7)

Based on the target data requested by the user, a time stamp device that issues time stamp data including a hash value calculated from the target data by a predetermined hash algorithm, and unique to the issued time stamp data A method performed by an information management device configured to be connectable to a storage device that issues a storage ID and stores the storage ID and time stamp data,
The information management device is
Processing for receiving a storage ID issued by the storage device for time stamp data;
Processing for associating information for identifying the target data, time stamp data, and the received storage ID in the storage means of the information management device;
In response to a display request, processing for displaying information for specifying target data stored in the storage means, time stamp data, and storage ID;
An information management method characterized by comprising: By the time-stamping device, a time stamp ID identifying the time stamp data is further issued when issuing time stamp data, and processing of transmitting together the time stamp ID to the storage device,
With respect to the upper Kiki憶means further stores the time stamps ID in association with the storage ID,
The information management method according to claim 1. Processing for generating an intermediate PDF file in which information specifying the target data is described in the text, the target data is attached, and the issued time stamp data is stored in a signature column;
The received storage ID is described in the text, the intermediate PDF file is attached, and a wrapping PDF file storing the time stamp data generated by the time stamp device based on the intermediate PDF file in the signature column is generated. Processing,
The information management method according to claim 1, further comprising: Based on the target data requested by the user, a time stamp device that issues time stamp data including a hash value calculated from the target data by a predetermined hash algorithm, and unique to the issued time stamp data A device configured to be connected to a storage device that issues a storage ID and stores the storage ID and time stamp data,
Means for receiving a storage ID issued by the storage device for time stamp data;
Storage means for storing information for identifying the target data, time stamp data, and the storage ID in association with the received storage ID;
In response to a display request, display means for displaying information for specifying target data stored in the storage means, time stamp data, and storage ID;
An information management apparatus comprising: Intermediate PDF file generation means for generating an intermediate PDF file in which information specifying the target data is described in the text, the target data is attached, and the issued time stamp data is stored in a signature column;
The received storage ID is described in the text, the intermediate PDF file is attached, and a wrapping PDF file storing the time stamp data generated by the time stamp device based on the intermediate PDF file in the signature column is generated. A wrapping PDF file generating means;
The information management device according to claim 4, further comprising: Based on the target data requested by the user, a time stamp device that issues time stamp data including a hash value calculated from the target data by a predetermined hash algorithm, and unique to the issued time stamp data A computer program that issues a storage ID and causes a computer configured to be connectable to a storage device that stores the storage ID and time stamp data to function as an information management device,
For the above computer
Processing for receiving a storage ID issued by the storage device;
A process of associating information for identifying the target data, time stamp data, and the received storage ID in a storage unit of the information management device;
In response to a display request, processing for displaying information for specifying target data stored in the storage means, time stamp data, and storage ID;
A computer program that executes Processing for generating an intermediate PDF file in which information specifying the target data is described in the text, the target data is attached, and the issued time stamp data is stored in a signature column;
The received storage ID is described in the text, the intermediate PDF file is attached, and a wrapping PDF file storing the time stamp data generated by the time stamp device based on the intermediate PDF file in the signature column is generated. Processing,
The computer program according to claim 6, further executing:

Images