JPH10111653A - Digital signature method - Google Patents
Digital signature methodInfo
- Publication number
- JPH10111653A JPH10111653A JP8299191A JP29919196A JPH10111653A JP H10111653 A JPH10111653 A JP H10111653A JP 8299191 A JP8299191 A JP 8299191A JP 29919196 A JP29919196 A JP 29919196A JP H10111653 A JPH10111653 A JP H10111653A
- Authority
- JP
- Japan
- Prior art keywords
- signature
- message
- sender
- secret key
- digital signature
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Abstract
Description
【0001】[0001]
【発明の属する技術分野】本発明は契約書等の文書の正
当性を認証するためのサインや捺印に相当するデータ通
信システムにおけるデジタル署名方法に関する。BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a digital signature method in a data communication system corresponding to a signature or a seal for authenticating the validity of a document such as a contract.
【0002】[0002]
【従来の技術】従来から送信文に送信者が署名をするデ
ジタル署名と言う技術がある。この署名の要件は、第三
者によって偽造できない、受信者によって偽造できな
い、送信者が後で送信の事実を否定できないと言う三つ
の要件である。このデジタル署名は従来は公開鍵暗号と
言う暗号でのみ可能であり、秘密鍵暗号ではこの三つの
要件をすべて満たすことはなかなか困難であった。2. Description of the Related Art Conventionally, there is a technique called a digital signature in which a sender signs a sentence. The signature requirements are three that cannot be forged by a third party, cannot be forged by the recipient, and that the sender cannot later deny the fact of transmission. Conventionally, this digital signature can be performed only by encryption called public key encryption, and it has been quite difficult for secret key encryption to satisfy all three requirements.
【0003】[0003]
【発明が解決しようとする課題】本発明の目的は、秘密
鍵暗号の技術を用いて、公開鍵暗号のデジタル署名と同
じ要件を満たす署名を可能にする方法を提供することで
ある。SUMMARY OF THE INVENTION It is an object of the present invention to provide a method using a technique of secret key cryptography, which enables a signature to meet the same requirements as a digital signature of public key cryptography.
【0004】[0004]
【課題を解決するための手段】デジタル署名を可能にす
るには、送信者が送信文を送るときに送信者だけが持っ
ていて受信者は持っていない秘密鍵で、その送信文にだ
け固有の特徴を捉えて暗号化して送信文に添えて送信す
る。その署名の有効性はその秘密鍵を、公共機関のよう
な第三者で作られた保証機関に供託しておくことによっ
て、必要なときに、保証してもらうことができる。In order to enable a digital signature, a private key that only the sender has when sending a message but not the receiver has to be unique to the message. Is captured, encrypted, and transmitted along with the transmission text. The validity of the signature can be assured, when needed, by depositing the private key with a third-party assurance body such as a public institution.
【0005】[0005]
【発明の実施の形態】図1は本発明の実施形態を示す図
で、送信者Aと受信者Bとの間でデータ通信をする例を
示している。FIG. 1 is a diagram showing an embodiment of the present invention, and shows an example in which data communication is performed between a sender A and a receiver B.
【0006】送信者Aから送信文Mを送る時に署名を行
う方法について説明する。尚、送信文Mは平文で送って
も暗号化して送っても良いものである。[0006] A description will be given of a method of signing a message M sent from the sender A. Note that the transmission text M may be transmitted as plain text or encrypted.
【0007】この署名はその署名の施された送信文Mに
ついてだけ有効であって、その他の文章には有効ではな
い。署名は送信者だけが持っていて、受信者は保有して
いない秘密鍵Ksによって、その送信文Mに固有の情
報、即ち送信文Mについてだけ意味のある文章を暗号化
して、署名文Sとして送信文Mに付加される。This signature is valid only for the transmission message M to which the signature has been applied, and is not valid for other texts. The signature is held only by the sender, and the receiver encrypts information unique to the sentence M, that is, a sentence that is meaningful only for the sentence M, using a secret key Ks that the receiver does not own. It is added to the sentence M.
【0008】署名に使う、その送信文についてだけ意味
のある情報としては、その送信文のレフェレンスナンバ
ーのようなものとか、送信文の合計字数、或いはその送
信文の総行数、或いは何行目の文章の一部或いは全部、
或いは各行の何番目の字とか、その送信文に固有のもの
の一つ或いは幾つかを組合せて作る。[0008] The information that is used only for the sentence that is significant for the signature includes information such as the reference number of the sentence, the total number of characters of the sentence, the total number of lines of the sentence, or the number of lines. Part or all of the text of the eyes,
Alternatively, it is made by combining the number of the character on each line or one or more of the characters unique to the sentence.
【0009】これらの固有の情報を指定して、送信者A
が保有している秘密鍵Ksで暗号化して送信文Mに署名
文Sとして添える。何を署名文Sとするかを予め決めて
ソフトに組み込んでおいて、送信文Mを発信するときに
それが自動的に選ばれて暗号化されて署名になるように
して置くと良い。By designating these unique information, the sender A
Is encrypted using the secret key Ks held by the user and added to the transmission message M as a signature message S. It is preferable that what is to be the signature text S is determined in advance and incorporated in the software so that when the transmission text M is transmitted, it is automatically selected and encrypted so as to become a signature.
【0010】このようにして作った署名は、その送信文
の内容を知っているものにしかできないし、また送信者
即ち署名者Aしか持っていない秘密鍵Ksで暗号化され
ているから、第三者が署名を偽造することはできない
し、また署名者Aが署名の事実を後で否認することもで
きない。The signature created in this way can be made only by those who know the contents of the sent message, and is encrypted with the secret key Ks possessed only by the sender, ie, the signer A. The three parties cannot forge the signature, and the signer A cannot later deny the fact of the signature.
【0011】受信者Bは鍵Ksを持っていないから、署
名を復号化できないので署名の意味は分からない。また
同じ理由で署名を偽造することもできない。この署名は
送信文と組になっている場合に初めて有効であって、こ
の署名だけを外して他の送信文に付けても署名の効果は
ない。従って署名を悪用される心配はない。[0011] Since the receiver B does not have the key Ks, the signature cannot be decrypted and the meaning of the signature cannot be understood. Nor can you forge a signature for the same reason. This signature is effective only when it is paired with a transmission message. Even if this signature alone is removed and attached to another transmission message, the signature has no effect. Therefore, there is no worry that the signature will be misused.
【0012】秘密鍵Ksは公的機関のような第三者保証
機関Jに供託(登録)しておく。この保証機関Jは、紛
争が起きたとかその他の理由で当事者から要請を受けた
ときに、それ応じてこの署名を復号化して、その有効性
を認証することができる。The secret key Ks is deposited (registered) with a third party assurance organization J such as a public organization. The guarantor J can decrypt this signature and authenticate its validity when requested by a party for a dispute or for any other reason.
【0013】受信者Bは、暗号化されているか否かに拘
わらず、最終的に平文を入手できれば良いのであって、
署名による本人確認は必ずしも必要ではないが、しかし
後で送信者Aが送信を否定すると困る場合は、そのよう
な否定ができないように、署名付きの送信文を要求する
と良い。そうすると図1に示すように権威ある第三者保
証機関Jによってその送信の事実を認証して貰うことが
できる。一方送信者Aは署名によって、受信者Bによる
偽造を防止できると言う安心感をもつことができる。[0013] Recipient B only needs to be able to finally obtain plaintext regardless of whether it is encrypted or not.
Identification by signature is not always necessary, but if it is not necessary for the sender A to deny the transmission later, it is preferable to request a signed transmission so that such a denial cannot be made. Then, as shown in FIG. 1, the fact of the transmission can be authenticated by an authoritative third party assurance organization J. On the other hand, the sender A can have a sense of security that the forgery by the receiver B can be prevented by the signature.
【0014】署名文Sを暗号化するのに使う暗号として
は秘密鍵暗号のDES(データ暗号化規格)暗号その他
一般の秘密鍵暗号を用いれば良い。署名を行う秘密鍵K
sを第三者保証機関Jに供託するときに、署名に使用す
る暗号の種類も供託しておく。As the encryption used for encrypting the signature sentence S, DES (data encryption standard) encryption of secret key encryption or other general secret key encryption may be used. Private key K for signing
When s is deposited with the third party assurance organization J, the type of encryption used for signature is also deposited.
【0015】送信文Mを暗号化して送る場合は送信文M
の暗号化に使用する暗号と同じ暗号を使用して署名の暗
号化をするのが合理的である。When the transmission message M is encrypted and sent, the transmission message M
It is reasonable to encrypt the signature using the same encryption as the encryption used for the encryption.
【0016】[0016]
【発明の効果】上記したように、本発明の署名はデジタ
ル署名の要件である、署名が第三者によって偽造できな
い、受信者によって偽造できない、送信者が送信の事実
を後で否定できないと言う三つの要件を満たしており、
データ通信システムに適用して本人認証の信頼性を高め
ることができる。As noted above, the signature of the present invention is a requirement of a digital signature: the signature cannot be forged by a third party, cannot be forged by the recipient, and the sender cannot deny the fact of transmission later. Meets three requirements,
The present invention can be applied to a data communication system to increase the reliability of personal authentication.
【図1】本発明の実施形態を示す図FIG. 1 shows an embodiment of the present invention.
A 送信者 B 受信者 J 第三者保証機関 M 送信文 S 署名文 Ks 秘密鍵 A Sender B Recipient J Third-party assurance institution M Sent message S Signature statement Ks Private key
Claims (2)
固有の情報を、送信者が保有し受信者が保有していない
秘密鍵で暗号化し、前記送信文に署名文として付加して
送信することを特徴とするデジタル署名方法。In a data communication system, information unique to a transmitted message is encrypted with a secret key held by a sender but not held by a receiver, and added as a signature to the transmitted message and transmitted. Characteristic digital signature method.
証機関に供託しておき、前記送信者又は受信者からの要
請に基き前記第三者保証機関が前記署名文を前記秘密鍵
で復号化して認証することを特徴とするデジタル署名方
法。2. The private key according to claim 1, which is deposited with a third party assurance institution, and the third party assurance institution converts the signature statement into the secret in response to a request from the sender or the receiver. A digital signature method characterized by decrypting with a key and performing authentication.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| JP8299191A JPH10111653A (en) | 1996-10-04 | 1996-10-04 | Digital signature method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| JP8299191A JPH10111653A (en) | 1996-10-04 | 1996-10-04 | Digital signature method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| JPH10111653A true JPH10111653A (en) | 1998-04-28 |
Family
ID=17869324
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| JP8299191A Pending JPH10111653A (en) | 1996-10-04 | 1996-10-04 | Digital signature method |
Country Status (1)
| Country | Link |
|---|---|
| JP (1) | JPH10111653A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR100293492B1 (en) * | 1998-12-24 | 2001-07-12 | 이계철 | Digital signature verification method using denial protocol |
| KR20040017488A (en) * | 2002-08-21 | 2004-02-27 | 이창우 | Method for performing signature and confirmation of Information using Public Key Cryptosystem |
| KR100638265B1 (en) * | 2000-04-28 | 2006-10-24 | 이순조 | method for secure for exchanging e-document in the internet |
-
1996
- 1996-10-04 JP JP8299191A patent/JPH10111653A/en active Pending
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR100293492B1 (en) * | 1998-12-24 | 2001-07-12 | 이계철 | Digital signature verification method using denial protocol |
| KR100638265B1 (en) * | 2000-04-28 | 2006-10-24 | 이순조 | method for secure for exchanging e-document in the internet |
| KR20040017488A (en) * | 2002-08-21 | 2004-02-27 | 이창우 | Method for performing signature and confirmation of Information using Public Key Cryptosystem |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP3982848B2 (en) | Security level control device and network communication system | |
| US7688975B2 (en) | Method and apparatus for dynamic generation of symmetric encryption keys and exchange of dynamic symmetric key infrastructure | |
| CN104662941B (en) | For the method, apparatus and system supporting key to use | |
| US20070174636A1 (en) | Methods, systems, and apparatus for encrypting e-mail | |
| JP2003229851A (en) | Assignment of user certificate/private key in token enabled public key infrastructure system | |
| JP2003503901A (en) | User information security apparatus and method in mobile communication system in Internet environment | |
| US20060095770A1 (en) | Method of establishing a secure e-mail transmission link | |
| US6910129B1 (en) | Remote authentication based on exchanging signals representing biometrics information | |
| US20030223586A1 (en) | Method and system for secure communications over a communications network | |
| US7360238B2 (en) | Method and system for authentication of a user | |
| JP4941918B2 (en) | Electronic authentication system | |
| JP3711931B2 (en) | E-mail system, processing method thereof, and program thereof | |
| CN108768958B (en) | Verification method for data integrity and source based on no leakage of verified information by third party | |
| JPH0969831A (en) | Cipher communication system | |
| JP2000183866A (en) | Method and system for cipher communication, and recording medium stored with cipher communication program | |
| JP3690237B2 (en) | Authentication method, recording medium, authentication system, terminal device, and authentication recording medium creation device | |
| JPH10111653A (en) | Digital signature method | |
| Al-Hammadi et al. | Certified exchange of electronic mail (CEEM) | |
| JP4034946B2 (en) | COMMUNICATION SYSTEM, COMMUNICATION METHOD, AND RECORDING MEDIUM | |
| KR100432611B1 (en) | System for providing service to transmit and receive document based on e-mail system and method thereof | |
| JP2002051036A (en) | Key escrow system | |
| JPH0787081A (en) | Entity registration method to key publicity center | |
| JPH1155247A (en) | Method for transmitting secret information for ensuring transmitter anonymity and device therefor and program storage medium | |
| KR100337637B1 (en) | Method for recovering a digital document encrypted | |
| JP3796528B2 (en) | Communication system for performing content certification and content certification site device |