SI25003A - System for certification of electronic mail - Google Patents

System for certification of electronic mail Download PDF

Info

Publication number
SI25003A
SI25003A SI201600122A SI201600122A SI25003A SI 25003 A SI25003 A SI 25003A SI 201600122 A SI201600122 A SI 201600122A SI 201600122 A SI201600122 A SI 201600122A SI 25003 A SI25003 A SI 25003A
Authority
SI
Slovenia
Prior art keywords
mail
server
email
block
message
Prior art date
Application number
SI201600122A
Other languages
Slovenian (sl)
Inventor
Bednar Jan
Janoušek Ivan
imon Kubišta Ĺ
Original Assignee
Bednar Jan
Janoušek Ivan
imon Kubišta Ĺ
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Bednar Jan, Janoušek Ivan, imon Kubišta Šfiled Critical Bednar Jan
Publication of SI25003A publication Critical patent/SI25003A/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/006Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols involving public key infrastructure [PKI] trust models
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3297Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving time stamps, e.g. generation of time stamps

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

Sistem za certificiranje elektronske pošte obsega terminalno napravo (1) pošiljatelja elektronske pošte, ki jo je mogoče medsebojno povezati s strežnikom za odhodno elektronsko pošto (16), ki ga je mogoče povezati s strežnikom za dohodno elektronsko pošto (13), na katerega je nato mogoče povezati terminalno napravo (14) prejemnika elektronske pošte. Strežnik za odhodno elektronsko pošto (16) je mogoče medsebojno povezati s strežnikom (17) kvalificiranega organa za certificiranje, pri čemer strežnik (17) kvalificiranega organa za certificiranje obsega notranji generator časa (8).The e-mail certification system comprises a terminal (1) of an e-mail sender that can be interconnected with an outgoing mail server (16) that can be connected to an incoming e-mail server (13), which is then it is possible to connect the terminal device (14) of the recipient of the e-mail. The outgoing mail server (16) can be interconnected with the server (17) of the qualified certification body, wherein the qualified certification authority server (17) comprises an internal clock generator (8).

Description

Sistem za certificiranje elektronske pošteEmail certification system

Področje tehnike, na katerega se izum nanašaFIELD OF THE INVENTION

Izum se nanaša na sistem za certificiranje elektronske pošte (e-pošta), ki obsega terminalno napravo pošiljatelja e-pošte, ki jo je mogoče medsebojno povezati s strežnikom za odhodno e-pošto, ki ga je mogoče povezati s strežnikom za dohodno e-pošto, na katerega je nato mogoče povezati terminalno napravo prejemnika epošte.The invention relates to an e-mail certification system (email) comprising an email sender terminal device that can be interconnected with an outgoing e-mail server that can be connected to an incoming e-mail server , which can then be connected to the recipient's terminal device.

Stanje tehnikeThe state of the art

Trenutno stanje elektronske komunikacije v glavnem temelji na izvirnih načelih internetnega povezovanja, ki poudarja visoko variabilnost možnih komunikacijskih sredstev, vendar pa na osnovni ravni ni opredeljeno za komunikacijo, ki bi zahtevalo visoko stopnjo verodostojnosti ali ki bi sploh ponujalo možnost preverjanja tovrstne komunikacije s strani enega izmed javnih organov oblasti.The current state of electronic communication is mainly based on the original principles of internet connectivity, which emphasizes the high variability of possible means of communication, but at the basic level it is not defined for communication that would require a high degree of credibility or even offer the possibility of verifying such communication by one of the public authorities.

Znani sistemi za elektronsko komunikacijo obsegajo terminalno napravo pošiljatelja e-pošte, ki jo je mogoče medsebojno povezati s strežnikom za odhodno e-pošto, ki ga je mogoče povezati s strežnikom za dohodno e-pošto, na katerega je nato mogoče povezati terminalno napravo prejemnika e-pošte.Known electronic communications systems comprise an email sender terminal device that can be interconnected with an outgoing e-mail server that can be connected to an incoming e-mail server to which the e-mail recipient terminal can then be connected -Mail.

Strežnik za odhodno e-pošto uporablja protokol „Simple Mail Transfer Protocol“ (kratica SMTP), strežnik za dohodno e-pošto pa za dostop prejemnika do sporočila uporablja protokol POP3 ali IMAP. Operater e-poštnih storitev deluje s sporočilom izključno na ravni odhodne ali dohodne elektronske pošte, ki je nameščena zgolj na osnovi splošnih standardov brez poudarka na veljavnosti informacij o izvedeni elektronski komunikaciji.The outgoing e-mail server uses the Simple Mail Transfer Protocol (SMTP), and the incoming e-mail server uses POP3 or IMAP to access the recipient. The e-mail service provider operates with a message solely at the level of outgoing or incoming e-mail, which is installed only on the basis of general standards without emphasizing on the validity of the information on the electronic communication performed.

Informacije o vsebini elektronske pošte, o času in statusu prenosa se obdelujejo in shranjujejo zgolj na ravni lokalne naprave pošiljatelja in prejemnika e-poštnega sporočila. Dnevnik operaterja e-poštnih storitev v večini primerov ni sledljiv, njegova veljavnost pa je lahko vedno vprašljiva.Information about the content of the email, the time and status of the transfer are processed and stored only at the local device level of the sender and recipient of the email. In most cases, the email operator's log is not traceable, and its validity can always be questioned.

V trenutni skupnosti, v kateri živimo, se pomen elektronskega komuniciranja povečuje, saj prihaja do premika od konvencionalne „papirnate“ pogodbene dokumentacije za izvedbo številnih pravnih korakov do standardne elektronske pošte.In the current community in which we live, the importance of electronic communication is increasing as it moves away from conventional 'paper' contract documentation to take many legal steps to standard email.

Vendar pa trenutna elektronska pošta ne predvideva možnosti nespornega preverjanja vsebine ali časa pošiljanja. Dvomi glede vsebine in časa pošiljanja epošte imajo nato glavni vpliv na pogajanja strank in hkrati na pravno varnost udeležencev v pogajanjih.However, the current e-mail does not provide for the possibility of uncontested verification of the content or the time of transmission. Doubts about the content and timing of the mailing then have a major impact on the parties' negotiations and, at the same time, on the legal certainty of the parties involved.

Sistem, ki je trenutno na razpolago za potrjeno dostavo e-poštnih sporočil je, npr. informacijski sistem podatkovnih strani, ki jih upravlja podjetje Češka pošta s.p. (Češka pošta), vendar pa se ta storitev upravlja popolnoma ločeno od sredstev standardne e-poštne komunikacije, izvaja se v okviru posebnih uporabniških vmesnikov in njen odstotek zastopanosti v skupni komunikaciji je na precej nizki oziroma manjšinski ravni. Ne omogoča uporabe standardne komunikacije e-poštnih odjemalcev, ne le z vidika generacijskih orodij tovrstne komunikacije, temveč tudi z vidika uveljavljenih datotečnih storitev za delo z dokumenti. Udobje sistema podatkovnih strani je zelo nizko v primerjavi z udobjem konvencionalne e-poštne komunikacije.The system currently available for certified email delivery is e.g. information system of data pages managed by Czech Post s.p. (Czech Post), however, this service is managed completely separately from standard email communications, is implemented within specific user interfaces and its percentage representation in joint communication is at a relatively low or minority level. It does not allow the use of standard email client communication, not only from the point of view of generational tools of this kind of communication, but also from the point of view of established file services for working with documents. The comfort of the data page system is very low compared to the convenience of conventional email communication.

Stanje tehnike nadalje omogoča uporabo storitve časovnega žiga (opredeljeno z Zakonom št. 227/2000 Coli., o elektronskem podpisu), da natančno ujame trenutek nastanka in vsebine datoteke, shranjene na lokalni ravni, npr. v uporabnikovem računalniku. Vendar pa čas pošiljanja e-poštnega sporočila, ki je potrjen na ta način, ni dokončen, saj ta postopek ujame trenutek nastanka e-poštnega sporočila, vendar zgolj na podlagi informacije, ki je uporabljena s strani uporabnikove lokalne postaje, tj. temelji na prilagodljivem sistemu časovnih nastavitev uporabnikove postaje. Obenem pošiljanja tudi ni mogoče preveriti, saj lahko pride do ugovora, da takoThe state of the art further enables the use of the timestamp service (defined by Law No. 227/2000 Coli., On electronic signature) to accurately capture the moment of creation and the contents of a file stored locally, e.g. on the user's computer. However, the timing of sending the email confirmed in this manner is inconclusive, as this process captures the moment when the email was generated, but only on the basis of information used by the user's local station, ie. is based on a flexible system of user station timing. At the same time, it cannot be verified, as there may be an objection that so

sporočilo ni bilo izročeno za pošiljanje, npr. zaradi napake v internetni povezavi ali napake na strežniku ponudnika elektronskih komunikacijskih storitev, zaradi česar sporočilo ni bilo dostavljeno prejemniku, teh ugovorov pa v trenutnem stanju tehnike ni mogoče ovreči.the message was not delivered for sending, e.g. due to an error in the Internet connection or an error on the server of the electronic communications service provider, resulting in the message not being delivered to the recipient and these objections cannot be denied in the current state of the art.

Namen izuma je predlagati takšen sistem, ki bo omogočal certificiranje elektronske pošte, ki se pogosto uporablja. Za potrebe te prijave se certificiranje nanaša na objektivno preverjanje vsebine in časa pošiljanja elektronske pošte.The purpose of the invention is to propose a system that will allow the certification of commonly used e-mail. For the purposes of this application, certification refers to an objective verification of the content and timing of the email.

Opis izumaDescription of the invention

Zgoraj navedeni namen bomo dosegli s sistemom za certificiranje elektronske pošte, ki obsega terminalno napravo pošiljatelja elektronske pošte, ki jo je mogoče medsebojno povezati s strežnikom za odhodno elektronsko pošto, ki ga je mogoče povezati s strežnikom za dohodno elektronsko pošto, s katerim je nato mogoče povezati terminalno napravo prejemnika elektronske pošte, pri čemer je po izumu princip oziroma načelo delovanja tako, da je strežnik za odhodno elektronsko pošto mogoče povezati s strežnikom kvalificiranega organa za certificiranje, pri čemer strežnik kvalificiranega organa za certificiranje obsega notranji generator časa.The aforementioned purpose will be achieved by an email certification system comprising an email sender terminal device that can be interconnected with an outgoing e-mail server that can be connected to an incoming e-mail server. connect the email recipient's terminal device, the invention or principle being operative such that the outgoing e-mail server can be connected to the QA server, the QA server comprising an internal time generator.

Prednost sistema po izumu je, da omogoča objektivno in nedvoumno potrjevanje vsebine in časa pošiljanja elektronske pošte.The advantage of the system according to the invention is that it allows for objective and unambiguous confirmation of the content and timing of the email.

Po prednostni izvedbi se na nižji ravni terminalne naprave pošiljatelja elektronske pošte uredi lasten strežnik pošiljatelja za odhodno pošto pošiljatelja.Following a preferred embodiment, a sender's own outgoing server is set up at the lower level of the sender's terminal device.

V prednostni izvedbi strežnik za odhodno elektronsko pošto obsega blok za obdelavo kontrolne vsote e-poštnega sporočila (vsote e-poštnih sporočil), čemur zaporedno sledita blok za shranjevanje sporočila s časovnim žigom in blok za standardno pošiljanje obdelanega sporočila, medtem ko sta blok za obdelavo kontrolne vsote epoštnega sporočila in blok za shranjevanje sporočila s časovnim žigom medsebojno povezana z notranjim generatorjem časa na strežniku kvalificiranega organa za certificiranje.In a preferred embodiment, the outgoing e-mail server comprises a block for processing the e-mail checksum (e-mail sums), followed sequentially by a block for storing the message with a timestamp and a block for sending the processed message standard while the processing block is email message checksums and timestamp message storage block interconnected to an internal time generator on a Qualified Certification Authority server.

V naslednji prednostni izvedbi se nahaja blok za avtorizacijo e-poštnega sporočila na strežniku za odhodno elektronsko pošto, in sicer pred blokom za obdelavo kontrolne vsote e-poštnega sporočila, pri čemer je blok za avtorizacijo e-poštnega sporočila medsebojno povezan, prek podatkovne zbirke uporabnikov storitve, s podatkovno zbirko dnevnika časovnih žigov, ki se nahaja na strežniku kvalificiranega organa za certificiranje.In another preferred embodiment, the email authorization block is located on the outgoing e-mail server in front of the e-mail checksum processing block, the email authorization block is interconnected via a user database services, with a timestamp log database located on a Qualified Certification Authority server.

V naslednji prednostni izvedbi se na strežniku za odhodno elektronsko pošto, za blokom za shranjevanje sporočila s časom žigom, zaporedno nahajata blok za preverjanje integritete e-poštnega sporočila in shranjevanje podatkov, medtem ko je periferna naprava za uporabniško preverjanje elektronskega žiga medsebojno povezana z notranjim generatorjem časa na strežniku kvalificiranega organa za certificiranje. Periferno napravo za uporabniško preverjanje elektronskega žiga je mogoče medsebojno povezati tako s terminalno napravo pošiljatelja kot s shranjevanjem podatkov.In another preferred embodiment, the outgoing e-mail server behind the timestamp message storage block is sequentially located for the email integrity check and data storage block, while the peripheral electronic stamp verification user is interconnected with an internal generator. time on a Qualified Certification Authority server. The peripheral device for user verification of the electronic seal can be interconnected with both the sender's terminal device and data storage.

Kratek opis skicA brief description of the sketches

Trije primeri ureditev sistema za certificiranje elektronske pošte so shematično prikazani na slikah 1, 2, 3 in 4.Three examples of arrangements for the e-mail certification system are shown schematically in Figures 1, 2, 3 and 4.

Opis prednostnih izvedbDescription of preferred embodiments

Primer izvedbe osnovne ureditve sistema za certificiranje elektronske pošte po izumu v skladu s sliko 1 obsega terminalno napravo 1 pošiljatelja elektronske pošte, ki lahko obsega katera koli oziroma vsa znana tehnična sredstva za pošiljanje in prejemanje elektronske pošte, npr. mobilni telefon, tablični računalnik, osebni računalnik z operacijskim sistemom Windows, Apple Macintosh, Linux, Android itd.An example implementation of the basic arrangement of the e-mail certification system of the invention according to Figure 1 comprises the terminal device 1 of the e-mail sender, which may comprise any or all known technical means for sending and receiving e-mail, e.g. mobile phone, tablet, Windows PC, Apple Macintosh, Linux, Android etc.

Terminalno napravo 1 pošiljatelja elektronske pošte je mogoče medsebojno povezati s strežnikom 16 za odhodno elektronsko pošto s pomočjo povezave 2 pošiljatelja prek interneta (ADSL, GSM, WiFi). V predstavljenem primeru izvedbe ima strežnik 16 za odhodno elektronsko pošto naslednje parametre: CPU E5-2603 2,4 GHz, RAM 16 GB, HDD 2x 500 GB SATA. Strežnik 16 za odhodno elektronsko pošto uporablja protokol „Simple Mail Transfer Protocol (skrajšano SMTP).The terminal device 1 of the email sender can be interconnected with the outgoing email server 16 via the connection of 2 senders via the Internet (ADSL, GSM, WiFi). In the embodiment shown, server 16 for outgoing e-mail has the following parameters: CPU E5-2603 2.4 GHz, RAM 16 GB, HDD 2x 500 GB SATA. Server 16 uses the Simple Mail Transfer Protocol (SMTP) for outgoing e-mail.

Strežnik 16 za odhodno elektronsko pošto je mogoče, s pomočjo povezave 12 prejemnika prek interneta, medsebojno povezati s strežnikom 13 za dohodno elektronsko pošto, ki ima v predstavljenem primeru izvedbe naslednje parametre: CPU E5-2603 2,4 GHz, RAM 16 GB, HDD 2x 500 GB SATA. Strežnik 13 za dohodno elektronsko pošto uporablja protokol POP3 ali IMAP za dostop naslovnika do sporočila.The outgoing e-mail server 16 can be interconnected to the incoming e-mail server 13 via the recipient's Internet connection 12, which has the following parameters in the exemplified embodiment: CPU E5-2603 2.4 GHz, RAM 16 GB, HDD 2x 500 GB SATA. Server 13 uses POP3 or IMAP for incoming e-mail to access the recipient of the message.

S strežnikom 13 za dohodno elektronsko pošto je mogoče povezati s terminalno napravo 14 prejemnika elektronske pošte, ki obsega, podobno kot terminalna naprava 1 pošiljatelja elektronske pošte, katera koli oziroma vsa znana tehnična sredstva za pošiljanje in prejemanje elektronske pošte, npr. mobilni telefon, tablični računalnik, osebni računalnik z operacijskim sistemom Windows, Apple Macintosh, Linux, Android itd.It is possible to connect to an incoming e-mail server 13 with an e-mail recipient terminal device 14, which comprises, like the e-mail sender terminal terminal 1, any or all known technical means for sending and receiving e-mail, e.g. mobile phone, tablet, Windows PC, Apple Macintosh, Linux, Android etc.

Strežnik 16 za odhodno elektronsko pošto je mogoče medsebojno povezati s strežnikom 17 kvalificiranega organa za certificiranje, ki obsega notranji generator časa 8. V predstavljenem primeru izvedbe strežnik 17 kvalificiranega organa za certificiranje upravlja podjetje Češka pošta s.p. in ima naslednje parametre: CPU E52603 2,4 GHz, RAM 16 GB, HDD 2x 500 GB SATA. Jasno je, da lahko tudi drugi subjekti, ki bodo izpolnjevali vnaprej določene zahteve in pridobili ustrezno dovoljenje, delujejo kot kvalificirani organ za certifikacijo.The outgoing e-mail server 16 may be interconnected with a Qualifying Certification Authority server 17 comprising an internal time generator 8. In the exemplified embodiment, the Qualified Certification Authority server 17 is operated by Czech Post s.p. and has the following parameters: CPU E52603 2.4 GHz, RAM 16 GB, HDD 2x 500 GB SATA. It is clear that other entities that will meet the pre-determined requirements and obtain the appropriate authorization may also act as a qualified certification body.

Strežnik 16 za odhodno elektronsko pošto obsega blok 6 za obdelavo kontrolne vsote e-poštnega sporočila (izvedeno z uporabo strojne opreme CPU 2x E5-2620 2,0 GHz, RAM 64 GB, HDD 2x 2 TB SATA), čemur zaporedno sledita blok 7 za shranjevanje sporočila s časovnim žigom (izvedeno z uporabo strojne opreme CPU E5-2603 2,4 GHz, RAM 16 GB, HDD 2x 500 GB SATA) in blok 11 za standardno pošiljanje obdelanega sporočila (izvedeno z uporabo strojne opreme CPU E5-2603 2,4 GHz, RAM 16 GB, HDD 2x 500 GB SATA). Blok 6 za obdelavo kontrolne vsote epoštnega sporočila in blok 7 za shranjevanje sporočila s časovnim žigom sta medsebojno povezana z notranjim generatorjem časa 8 na strežniku 17 kvalificiranega organa za certificiranje.The outgoing e-mail server 16 comprises a block 6 for processing the email checksum (executed using CPU hardware 2x E5-2620 2.0 GHz, RAM 64 GB, HDD 2x 2 TB SATA), followed sequentially by block 7 for storing the message with a timestamp (performed using CPU hardware E5-2603 2.4 GHz, RAM 16 GB, HDD 2x 500 GB SATA) and block 11 for standard sending of the processed message (performed using CPU hardware E5-2603 2, 4 GHz, RAM 16 GB, HDD 2x 500 GB SATA). Block 6 for processing the checksum of the email message and block 7 for storing the message with a timestamp are interconnected with the internal time generator 8 on the server 17 of the Qualifying Certification Authority.

Po pošiljanju elektronske pošte iz katere koli terminalne naprave 1 pošiljatelja elektronske pošte prek povezave 2 uporabnika na strežnik 16 za izhodno pošto, blok 6 za obdelavo kontrolne vsote e-poštnega sporočila izračuna kontrolno vsoto, ki se imenuje „hash“ (slo., kontrolna vsota), ki se nato pošlje na strežnik 17 kvalificiranega organa za certificiranje, kjer se v notranjem generatorju časa 8 e-poštnemu sporočilu doda časovni žig, nato pa se e-poštno sporočilo s časovnim žigom pošlje v blok 7 za shranjevanje sporočila s časovnim žigom.After sending an email from any terminal device 1 of the email sender via connection 2 of the user to the server 16 for outgoing mail, block 6 for processing the checksum of the email calculates a checksum called "hash" (slo, checksum ), which is then sent to Qualified Certification Authority server 17, where a timestamp is added to the internal time generator 8, and then the timestamp email is sent to block 7 for storing the timestamp message.

E-poštno sporočilo, ki je obdelano na tak način, se pošlje na strežnik 13 za dohodno elektronsko pošto prek bloka 11 za standardno pošiljanje in prek povezave 12 prejemnika, nato pa se pošlje s strežnika za dohodno pošto na terminalno napravo 14 prejemnika.The email processed in this way is sent to the incoming e-mail server 13 via block 11 for standard sending and via the recipient connection 12, and then sent from the incoming e-mail server to the recipient's terminal device 14.

Na osnovi nastavitve storitve se lahko pošiljatelju na stopnji bloka 7 za shranjevanje sporočila pošlje potrdilo o pošiljanju sporočila.Based on the service setting, a message confirmation message can be sent to the sender at block 7 to store the message.

Naslednji primer izvedbe ureditve sistema za certificiranje elektronske pošte v skladu s sliko 2 se razlikuje od primera izvedbe s slike 1 po tem, da se na strežniku 16 za odhodno elektronsko pošto, pred blokom 6 za obdelavo kontrolne vsote e-poštnega sporočila, nahaja blok 3 za avtorizacijo e-poštnega sporočila (izvedeno z uporabo strojne opreme CPU E5-2603 2,4 GHz, RAM 16 GB, HDD 2x 500 GB SATA), ki je, prek podatkovne zbirke uporabnikov storitve 4 (izvedeno z uporabo strojne opreme CPU E5-2603 2,4 GHz, RAM 16 GB, HDD 2x 500 GB SATA in sistema za upravljanje podatkovnih zbirk MS SQL), medsebojno povezan s podatkovno zbirko 5 dnevnika časovnih žigov (izvedeno z uporabo strojne opreme CPU E5-2603 2,4 GHz, RAM 16 GB, HDD 2x 500 GB SATA in sistema za upravljanje podatkovnih zbirk MS SQL) na strežniku 17 kvalificiranega organa za certificiranje.The following embodiment of the email certification system arrangement according to Figure 2 differs from the embodiment of Figure 1 in that block 3 is located on the outgoing e-mail server 16 before block 6 for processing the email checksum for email authorization (performed using CPU hardware E5-2603 2.4 GHz, RAM 16 GB, HDD 2x 500 GB SATA), which is through a database of service users 4 (performed using CPU hardware E5- 2603 2.4 GHz, RAM 16 GB, HDD 2x 500 GB SATA and MS SQL Database Management System) interconnected with database 5 timestamp log (executed using CPU hardware E5-2603 2.4 GHz, RAM 16 GB HDD 2x 500 GB SATA and MS SQL Database Management System) on server 17 of the Qualifying Certification Authority.

Elektronska pošta se pošlje iz katere koli terminalne naprave 1 pošiljatelja elektronske pošte prek povezave 2 pošiljatelja na strežnik 16 za izhodno pošto, pri čemer se, s pomočjo bloka 3 za avtorizacijo e-poštnega sporočila, podatkovne zbirke 4 uporabnikov storitev in podatkovne zbirke 5 dnevnika časovnih žigov, preverijo uporabniška pooblastila osebe, ki zahteva certificiranje elektronske pošte. Nadaljnja obdelava e-poštnega sporočila je enaka kot v primeru izvedbe s slike 1, ki je opisan zgoraj.The e-mail is sent from any terminal device 1 of the e-mail sender via connection 2 of the sender to the server 16 for outgoing mail, whereby, via block 3 for the authorization of the e-mail, the database of 4 service users and the database 5 of the time log stamps, verify the user credentials of the person requesting the email certification. The further processing of the email is the same as in the case of the implementation of Figure 1 described above.

Naslednji primer izvedbe ureditve sistema za certificiranje elektronske pošte v skladu s sliko 3 se razlikuje od primera izvedbe s slike 1 po tem, da se na strežniku 16 za odhodno elektronsko pošto, za blokom 7 za shranjevanje sporočila s časovnim žigom, zaporedno razporejena nahajata blok 9 za preverjanje integritete e-poštnega sporočila (izvedeno z uporabo strojne opreme CPU E5-2603 2,4 GHz, RAM 16 GB, HDD 2x 500 GB SATA) in shranjevanje podatkov 10 (izvedeno z uporabo strojne opreme CPU E5-2603 1,8 GHz, RAM 16 GB, HDD24x WD RED RAID EDITON 3 TB SATA). Periferna naprava 15 za uporabniško preverjanje elektronskega žiga (npr. mobilni telefon, tablični računalnik, osebni računalnik) je medsebojno povezana z notranjim generatorjem časa 8 na strežniku 17 kvalificiranega organa za certificiranje, medtem ko je periferna naprava 15 za uporabniško preverjanje elektronskega žiga medsebojno povezana tako s terminalno napravo 1 pošiljatelja elektronskega sporočila kot tudi s shranjevanjem podatkov 10.The following embodiment of the email certification system arrangement according to Figure 3 differs from the embodiment of Figure 1 in that block 9 is stored sequentially on block 7 for storing a timestamp message. to verify the integrity of the email (performed using 2.4 GHz CPU E5-2603 hardware, RAM 16 GB, HDD 2x 500 GB SATA) and to store data 10 (performed using 1.8 GHz CPU E5-2603 hardware , 16GB RAM, HDD24x WD RED RAID EDITON 3TB SATA). The peripheral device 15 for electronic stamp user verification (eg, mobile phone, tablet, PC) is interconnected with an internal time generator 8 on the Qualifying Certification Authority server 17, while the peripheral device 15 for electronic stamp verification is interconnected thus with the sender terminal 1 of the email message as well as storing the data 10.

Obdelava e-poštnega sporočila je enaka kot v zgoraj navedenem primeru izvedbe s slike 1. Dodatek bloka 9 za preverjanje integritete e-poštnega sporočila in shranjevanje podatkov 10 v kombinaciji s periferno napravo 15 za uporabniško preverjanje elektronskega žiga omogočajo, zraven funkcij, opisanih v zvezi z izvedbo v skladu s sliko 1, preverjanje shranjenih podatkov glede doslednosti in preverjanje veljavnosti časovnega žiga, skupaj s celotnim shranjevanjem sporočila, kakor tudi naknadno preverjanje procesa dostave sporočila na ravni strežnika 16 za odhodno pošto in strežnika 13 za dohodno pošto. To preverjanje se lahko izvede tudi s strani pošiljatelja sporočila neodvisno od upravljavca strežnika 16 za odhodno pošto s pomočjo periferne naprave 15 za uporabniško preverjanje elektronskega žiga. Shranjevanje podatkov 10 e-poštnega sporočila, časovnega žiga sporočila in drugih atributov se uporablja za shranjevanje celotnega nabora podatkov, ki so povezani s poslanim sporočilom, kar dodatno omogoča dostop pošiljatelja sporočila in preverjanje ali delo s shranjenimi sporočili v skladu z opredeljenimi pravili.The processing of the e-mail is the same as in the above-mentioned embodiment of Figure 1. The addition of block 9 for checking the integrity of the e-mail and storing data 10 in combination with the peripheral device 15 for user verification of the electronic seal allow, in addition to the functions described in connection by performing in accordance with Figure 1, checking the stored consistency data and validating the timestamp, together with the overall storage of the message, as well as the subsequent verification of the message delivery process at the level of the outgoing mail server 16 and the incoming mail server 13. This verification may also be performed by the message sender independently of the outgoing server server 16 by means of a peripheral device 15 for user electronic stamp verification. The storage of email 10 data, message timestamp and other attributes is used to store the entire data set associated with the sent message, further allowing the sender to access and check or handle the stored messages according to defined rules.

Naslednji primer izvedbe ureditve sistema za certificiranje elektronske pošte v skladu s sliko 4 se razlikuje od primera izvedbe s slike 1 po tem, da ima pošiljatelj svoj strežnik 18 za odhodno pošto pošiljatelja (izvedeno z uporabo strojne opreme CPU 2x E5-2620 2,0 GHz, RAM 64 GB, HDD 2x 2 TB SATA). Strežnik 16 za odhodno elektronsko pošto se izvaja kot relejski strežnik SMTP, ki je nadrejen uporabnikovemu lastnemu strežniku 18 za odhodno pošto uporabnika. Sporočilo se pošlje s terminalne naprave 1 pošiljatelja elektronske pošte na strežnik 16 za odhodno elektronsko pošto prek pošiljateljevega lastnega strežnika 18 za odhodno pošto pošiljatelja. Nadaljnja obdelava e-poštnega sporočila je nato enaka kot v primeru izvedbe s slike 1, ki je opisan zgoraj.The following example implementation of the email certification system arrangement according to Figure 4 differs from the embodiment of Figure 1 in that the sender has its own server 18 for the sender's outgoing mail (executed using CPU hardware 2x E5-2620 2.0 GHz , RAM 64 GB, HDD 2x 2 TB SATA). The outgoing e-mail server 16 runs as a relay SMTP server that is parent to the user's own e-mail server 18 for the user's outgoing mail. The message is sent from the terminal device 1 of the sender of the e-mail to the server 16 for outgoing e-mail via the sender's own server 18 for outgoing mail of the sender. The further processing of the email is then the same as for the embodiment of Figure 1 described above.

terminalna naprava pošiljatelja elektronske pošte povezava pošiljatelja blok za avtorizacijo e-poštnega sporočila podatkovna zbirka uporabnikov storitve podatkovna zbirka dnevnika časovnih žigov blok za obdelavo kontrolne vsote e-poštnega sporočila blok za shranjevanje sporočila s časovnim žigom notranji generator časa blok za preverjanje integritete e-poštnega sporočila shranjevanje podatkov blok za standardno pošiljanje obdelanega sporočila povezava prejemnika strežnik za dohodno elektronsko pošto terminalna naprava prejemnika periferna naprava za uporabniško preverjanje elektronskega žiga strežnik za odhodno elektronsko pošto strežnik kvalificiranega organa za certificiranje lasten strežnik pošiljatelja za odhodno pošto pošiljateljaemail sender terminal device sender link email authorization block user database services timestamp log database block to process email checksum block to store message with timestamp internal time generator block to check integrity of email message data storage block standard message processed message recipient connection incoming e-mail server recipient terminal peripheral user authentication e-mail server outgoing e-mail server qualified certification authority own sender outgoing sender server

Claims (5)

1. Sistem za certificiranje elektronske pošte, ki obsega terminalno napravo (1) pošiljatelja elektronske pošte, ki jo je mogoče medsebojno povezati s strežnikom za odhodno elektronsko pošto (16), ki ga je mogoče povezati s strežnikom za dohodno elektronsko pošto (13), na katerega je nato mogoče povezati terminalno napravo (14) prejemnika elektronske pošte, označen s tem, da je strežnik za odhodno elektronsko pošto (16) mogoče medsebojno povezati s strežnikom (17) kvalificiranega organa za certificiranje, pri čemer strežnik (17) kvalificiranega organa za certificiranje obsega notranji generator časa (8).An e-mail certification system comprising a terminal device (1) of an e-mail sender that can be interconnected with an outgoing e-mail server (16) that can be connected to an incoming e-mail server (13), to which the email recipient's terminal device (14) can then be connected, characterized in that the outgoing e-mail server (16) can be interconnected with the server (17) of the qualified certification authority, the server (17) of the qualified authority for certification includes an internal time generator (8). 2. Sistem za certificiranje elektronske pošte po zahtevku 1, označen s tem, da je za terminalno napravo (1) pošiljatelja elektronske pošte urejen pošiljateljev lastni strežnik (18) za odhodno pošto.An email certification system according to claim 1, characterized in that the sender's own terminal (1) has a sender's own outgoing server (18). 3. Sistem za certificiranje elektronske pošte po zahtevku 2, označen s tem, da strežnik za odhodno elektronsko pošto (16) obsega blok (6) za obdelavo kontrolne vsote e-poštnega sporočila, čemur zaporedno sledita blok (7) za shranjevanje sporočila s časovnim žigom in blok (11) za standardno pošiljanje obdelanega sporočila, pri čemer sta blok (6) za obdelavo kontrolne vsote e-poštnega sporočila in blok (7) za shranjevanje sporočila s časovnim žigom medsebojno povezana z notranjim generatorjem časa (8) na strežniku (17) kvalificiranega organa za certificiranje.Email certification system according to claim 2, characterized in that the outgoing e-mail server (16) comprises a block (6) for processing the checksum of the e-mail message, followed sequentially by a block (7) for storing the message with time stamps and block (11) for standard sending of the processed message, the block (6) for processing the checksum of the e-mail message and the block (7) for storing the message with a timestamp are interconnected with the internal time generator (8) on the server ( 17) a qualified certification body. 4. Sistem za certificiranje elektronske pošte po zahtevku 2 ali 3, označen s tem, da se blok za avtorizacijo e-poštnega sporočila (3) nahaja na strežniku za odhodno elektronsko pošto (16), in sicer pred blokom (6) za obdelavo kontrolne vsote epoštnega sporočila, pri čemer je blok za avtorizacijo e-poštnega sporočila (3) medsebojno povezan, prek podatkovne zbirke (4) uporabnikov storitve, s podatkovno zbirko (5) dnevnika časovnih žigov, ki se nahaja na strežniku (17) kvalificiranega organa za certificiranje.Email certification system according to claim 2 or 3, characterized in that the email authorization block (3) is located on the outgoing e-mail server (16), before the block (6) for processing the control the sum of the email message, wherein the email authorization block (3) is interconnected, via a database (4) of service users, with a timestamp log database (5) located on the Qualifying Authority server (17) certification. •· · ······ · • · · · * · * · • ··· ·· · · * · * * • ····« · · · · • « · ·· ·· · ··«• · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · · « 5. Sistem za certificiranje elektronske pošte po zahtevku 2 ali 3, označen s tem, da se na strežniku (16) za odhodno elektronsko pošto, za blokom (7) za shranjevanje sporočila s časovnim žigom, nahajata blok (9) za preverjanje integritete e-poštnega sporočila in shranjevanje podatkov (10), pri čemer je periferna naprava (15) za uporabniško preverjanje elektronskega žiga medsebojno povezana z notranjim generatorjem časa (8) na strežniku (17) kvalificiranega organa za certificiranje, pri čemer je mogoče periferno napravo (15) za uporabniško preverjanje elektronskega žiga medsebojno povezati tako s terminalno napravo (1) pošiljatelja kot s shranjevanjem podatkov (10).5. An e-mail certification system according to claim 2 or 3, characterized in that the block (9) for checking the integrity of e is located on the outgoing e-mail server, behind the block (7) for storing the timestamp message. -Mail message and data storage (10), wherein the peripheral device (15) for user verification of the electronic seal is interconnected with the internal time generator (8) on the server (17) of the qualified certification authority, the peripheral device (15) being possible ) for user authentication of the electronic seal interconnect with both the sender terminal device (1) and data storage (10).
SI201600122A 2015-05-04 2016-05-04 System for certification of electronic mail SI25003A (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CZ2015-31036U CZ28571U1 (en) 2015-05-04 2015-05-04 System for electronic mail certification

Publications (1)

Publication Number Publication Date
SI25003A true SI25003A (en) 2016-11-30

Family

ID=54054223

Family Applications (1)

Application Number Title Priority Date Filing Date
SI201600122A SI25003A (en) 2015-05-04 2016-05-04 System for certification of electronic mail

Country Status (7)

Country Link
AT (1) AT16175U1 (en)
CZ (1) CZ28571U1 (en)
DE (1) DE202016102343U1 (en)
HR (1) HRP20160467A2 (en)
PL (1) PL417081A1 (en)
SI (1) SI25003A (en)
SK (1) SK8284Y1 (en)

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5022080A (en) * 1990-04-16 1991-06-04 Durst Robert T Electronic notary
US7404080B2 (en) * 2001-04-16 2008-07-22 Bjorn Markus Jakobsson Methods and apparatus for efficient computation of one-way chains in cryptographic applications
US9081987B2 (en) * 2007-03-28 2015-07-14 Ricoh Co., Ltd. Document image authenticating server

Also Published As

Publication number Publication date
SK8284Y1 (en) 2018-12-03
DE202016102343U1 (en) 2016-05-19
HRP20160467A2 (en) 2017-11-17
AT16175U1 (en) 2019-03-15
CZ28571U1 (en) 2015-08-31
SK50272016U1 (en) 2018-07-02
PL417081A1 (en) 2016-11-07

Similar Documents

Publication Publication Date Title
US20200403796A1 (en) Platform and method of certification of an electronic contract for electronic identification and trust services (eidas)
US9397999B2 (en) Methods, devices, and computer readable storage devices for sharing sensitive content securely
CN103428298A (en) Multi-party e-mail attachment sharing management method based on Cloud storage
CN103428077B (en) A kind of method and system being safely receiving and sending mails
TW201417538A (en) Method for recording and certifying the reception of e-mail
KR102541399B1 (en) A method for authenticating e-mail containing a certified electronic signature on the carrier side
JP6082031B2 (en) How to prove delivery of a data message to a mobile device
CN103401686A (en) User Internet identity authentication system and application method thereof
US20210112051A1 (en) Platform and method of certification of an electronic notice for electronic identification and trust services (eidas)
CN104348897A (en) Integration apparatus and integration method thereof for integrating calendar system and cloud storage system
JP2007004373A5 (en)
CN104660491A (en) Mail handling method
SI25003A (en) System for certification of electronic mail
JP2016143188A (en) Method for generating authenticated electronic contract by customer of communication business company
CN113661689A (en) Universal authentication qualified contract signing method
KR20190009239A (en) Electronic document transmission server for providing a proof of delivery service through bilateral authentication and electronic document transmission method therefore
KR101638131B1 (en) Exposure privacy system using volatile URL.
TWI464602B (en) Method of sending message for application for mobile device by email and email converting server system
KR20130021118A (en) Push notification service system using html5 browser in cloud network
Kim et al. A study on a new method of sending an e-mail with an attachment using a wireless terminal
BR102015003034B1 (en) METHOD FOR PRODUCING ELECTRONIC CONTRACTS CERTIFIED BY A USER OF A TELECOMMUNICATIONS OPERATOR

Legal Events

Date Code Title Description
OO00 Grant of patent

Effective date: 20161202

KO00 Lapse of patent

Effective date: 20220131