201216111 六、發明說明: 【發明所屬之技術領域】 本發明係關於一種電子檔案時間戳記證明書及其驗證的方法, 特別係關於一種利用二維條碼以及電子數位簽章來提供一種具防 偽功能的電子檔案時間戳記證明書及其驗證的方法。 【先前技術】 在本案之前對於電子檔案的時間性證明,一般都是使用電子檔 φ 案本身所提供的時間資訊,但此時間資訊是任何人皆可以隨時更 改的,另一方面有些電子檔案雖然也可以提供作者的資訊,但卻 無法確保其資訊的正確性與完整性。而目前所採用的一般時戳技 術則是以電子檔案的方式呈現,在應用上最大的問題是無法提供 現行在紙張作業環境下的證明所需,因此我們所提出的電子檔案 時間戳記證明書是實體世界與電子檔案間最佳的作業整合界面。 【發明内容】 ^ 本發明之目的即在提供一種電子檔案時間戳記證明書,當使用 者創造一電子檔案後,為確保其智慧財產權及其與時間的關聯 性,使用者可將其創造的電子檔案送至時戳服務系統,時戳服務 系統就可依據使用者的需求來簽發電子檔案時間戳記證明書,此 證明書可以電子檔案或列印於紙張的方式存在,兩者皆可用來證 明電子檔案產生的時間與作者。此外一般商業電子交易過程中所 產生的資料,也可以透過時戳服務系統來申請一張電子檔案時間 戳記證明書,此證明書可以提供事後的舉證所需,一旦在交易過 程中有爭議發生,電子檔案時間戳記證明書將可以有效的消彌任 201216111 何紛爭。 為達成上述目的,本發明之電 驗噔^ 檔案時間戳記證明書内具有一 驗-一維條碼,此二維條碼包含 f , * , , „ 件屬性、創作者屬性以及時間 頁,再加上時戳伺服器的簽章, 證的功能。 』違到利用手機就可以直接驗 同時本發明包含以下特點及功效: L可提供電子文件產生之時間 9 辨作者的相關證明; .可直接用印表機列印,供傳統的紙張作業環境使用; .可直接使用手機或二維條碼掃打 、 娜描器進竹驗證;以及 •可應用在電子交易過程中的時間性證明。 【實施方式】 以下將透過較佳實施例來解釋本發明之電子樓案時間戮記證明 書及其驗證方法β 請參閱圖-所示,為本發明之運作架構示意圖。當使用者1〇6 建立或修改-電子棺案11G後,為確保其智慧財產權及其與時間 的關聯性,使用者106可將電子檔案j 1〇送至時戳服務系統1〇2, 時戳服務系統102就可依據使用者的需求來簽發電子檔案時間戳 記證明書112’此證明書112可以電子檔案或列印於紙張的方式存 在。 當使用者106或電子檔案使用者ι〇8欲對此證明書112做驗證 時’只需利用二維條碼的掃描器或具有讀取二維條碼的手機U4 直接讀取證明書112上的二維條碼的内容,再由手機U4或電腦 104上的驗證軟體對數位簽章進行驗證。 201216111 如圖二所示,為本發明電子檔案時間戳記證明書之示意圖,其 内容包含十一項,分別是: 第一項時戳發行機構; 第二項時間發行機構; 第三項時戳伺服器憑證發行機構; 第四項時戳伺服器憑證序號; 第五項申請人姓名; 第六項申請人憑證發行機構;201216111 VI. Description of the Invention: [Technical Field] The present invention relates to an electronic archive time stamp certificate and a method for verifying the same, and more particularly to a method for providing an anti-counterfeiting function by using a two-dimensional barcode and an electronic digital signature Electronic file time stamp certificate and its verification method. [Prior Art] Before the case, the time proof of the electronic file is generally the time information provided by the electronic file φ case itself, but this time information can be changed by anyone at any time, on the other hand, some electronic files are The author's information can also be provided, but the accuracy and completeness of the information cannot be guaranteed. The general time stamp technology currently used is presented in the form of an electronic file. The biggest problem in application is that it cannot provide the proof required in the current paper working environment. Therefore, the electronic time stamp certificate issued by us is The best job integration interface between the physical world and electronic archives. SUMMARY OF THE INVENTION The object of the present invention is to provide an electronic file time stamp certificate. When a user creates an electronic file, the user can create the electronic property to ensure its intellectual property rights and its relevance to time. The file is sent to the time stamp service system. The time stamp service system can issue an electronic file time stamp certificate according to the user's needs. The certificate can exist in electronic file or printed on paper. Both can be used to prove the electronic. The time the file was generated and the author. In addition, the information generated during the general commercial electronic transaction process can also be used to apply for an electronic file time stamp certificate through the time stamp service system. This certificate can provide the evidence required after the event. Once a dispute arises during the transaction, The electronic file time stamp certificate will be able to effectively eliminate the dispute in 201216111. In order to achieve the above object, the electrogram 噔^ file time stamp certificate of the present invention has a check-one-dimensional bar code, and the two-dimensional bar code includes f, *, , „ piece attributes, creator attributes, and time pages, plus The signature of the time stamp server, the function of the certificate. 』 In violation of the use of the mobile phone can be directly tested at the same time the present invention contains the following features and effects: L can provide the time of the generation of electronic documents 9 to identify the author's relevant evidence; Machine printing for use in traditional paper work environments; • Direct use of mobile phones or 2D barcode swipe, Natuator verification; and • Temporal proof that can be applied during electronic trading. [Embodiment] The electronic building case time stamp certificate and its verification method β of the present invention will be explained by way of a preferred embodiment. Referring to the drawings, it is a schematic diagram of the operation structure of the present invention. When the user 1〇6 is established or modified-electronic After the 11G case, in order to ensure its intellectual property rights and its relevance to time, the user 106 can send the electronic file j 1〇 to the time stamp service system 1〇2, and the time stamp service system 102 can According to the user's request, the electronic file time stamp certificate 112' is issued. The certificate 112 can exist in an electronic file or printed on the paper. When the user 106 or the electronic file user ι〇8 wants to do this certificate 112 During verification, simply use the scanner of the 2D barcode or the mobile phone U4 with the 2D barcode to directly read the contents of the 2D barcode on the certificate 112, and then verify the digital sign by the verification software on the mobile phone U4 or computer 104. As shown in FIG. 2, it is a schematic diagram of the electronic file time stamp certificate of the present invention, which contains eleven items, namely: the first time stamp issuing institution; the second time issuing institution; Item time stamp server voucher issuing authority; fourth time stamp server voucher serial number; fifth item applicant name; sixth item voucher issuing institution;
第七項申請人憑證序號; 第八項簽發時間(UTCTime); 第九項檔案雜湊值; 第十項雜湊值演算法;以及 第十一項驗證二維條碼。 其中第十一項驗證二維條碼的内容包含第一項至第十項的内 容,以及時戳伺服器對第一項至第十項的内容所做的數位簽章。 如圖三所示,為本發明電子檔案時間戳記證明書的產製流程 圖,其實施方式包括以下步驟:首先將所欲作時戳之文件進行產 生時戳要求封包301,之後進行上傳時戳要求封包302,伺服器端 就可接受時戳要求封包303,並驗證時戳要求封包304,如果成功 就準備產生回應封包305,並準備產生電子檔案時間戳記證明書 306,其中電子檔案時間戳記證明書306内含: A. 時戳發行機構; B. 時間發行機構; C. 時戳伺服器憑證發行機構; D. 時戳伺服器憑證序號; 201216111 E. 申請人姓名; F. 申請人憑證發行機構; α申請人憑證序號; Η.簽發時間(UTC Time); I. 檔案雜凑值; J. 雜凑值演算法;以及 K. 數位簽章以及驗證用二維條碼。 之後回傳時戳回應封包與電子檔案時間戳記證明書307,客戶端 利用其憑證驗證時戳回應封包308,然後就可以列印電子檔案時間 戳記證明書309。 如圖四所示,為本發明電子檔案時間戳記證明書的驗證流程 圖,首先驗證者利用手機掃瞄電子檔案時間戳記證明書的二維條 碼41,並利用驗證軟體驗證數位簽章42,如果正確則在手機上顯 示所有資料43,並驗證電子檔案時間戳記證明書上各項資料44: a. 驗證時戳發行機構; b. 驗證時間發行機構; c. 驗證時戳伺服器憑證發行機構; d_驗證時戳伺服器憑證序號; e_驗證申請人姓名; f. 驗證申請人憑證發行機構; g. 驗證申請人憑證序號; h. 驗證簽發時間(UTC Time); i·驗證檔案雜湊值;以及 j.驗證雜凑值演算法,如果一切正確則接受證明書。 201216111 上列詳細說明係針對本發明之一可行實施例之具體說明,惟該 實施例並非用以限制本發明之專利範圍,凡未脫離本發明技藝精 神所為之等效實施或變更,均應包含於本案之專利範圍中。 綜上所述,本案不但在技術思想上確屬創新,並能較習知方法 增進上述多項功效,應已充分符合新穎性及進步性之法定發明專 利要件,爰依法提出申請,懇請貴局核准本件發明專利申請案, 以勵發明,至感德便。 【圖式簡單說明】 圖一為電子檔案時間戳記證明書運作時之架構示意圖; 圖二為電子檔案時間戳記證明書之格式示意圖; 圖三為電子檔案時間戳記證明書的產生作業流程圖;以及 圖四為電子檔案時間戳記證明書的驗證作業流程圖。 【主要元件符號說明】 102:時戳伺服器 104:電腦 112:電子檔案時間戳記證明書 105:電子檔案原始創作者 110:原始電子檔案 108:驗證者(電子檔案使用者) 114:驗證用手機The seventh applicant voucher serial number; the eighth issue time (UTCTime); the ninth file hash value; the tenth hash value algorithm; and the eleventh verification two-dimensional bar code. The eleventh verifies that the content of the two-dimensional barcode contains the contents of the first item to the tenth item, and the digital signature made by the time stamp server for the contents of the first item to the tenth item. As shown in FIG. 3, it is a production flow chart of the electronic file time stamp certificate of the present invention, and the implementation manner thereof comprises the following steps: firstly, the file to be time stamped is generated to generate a time stamp request packet 301, and then the upload time stamp is performed. Require packet 302, the server end accepts the timestamp request packet 303, and verifies the timestamp request packet 304, if successful, prepares to generate the response packet 305, and prepares to generate an electronic file timestamp certificate 306, wherein the electronic file time stamp certificate The book 306 contains: A. time stamp issuing institution; B. time issuing institution; C. time stamp server voucher issuing institution; D. time stamp server voucher serial number; 201216111 E. applicant name; F. applicant voucher issuing Agency; alpha applicant voucher serial number; Η. issue time (UTC Time); I. file hash value; J. hash value algorithm; and K. digital signature and verification 2D bar code. The postback timestamp response packet and electronic file timestamp certificate 307 are then returned, and the client verifies the timestamp response packet 308 with its credentials, and then the electronic file time stamp certificate 309 can be printed. As shown in FIG. 4, which is a verification flowchart of the electronic file time stamp certificate of the present invention, first, the verifier uses the mobile phone to scan the two-dimensional barcode 41 of the electronic file time stamp certificate, and verifies the digital signature 42 by using the verification software, if Correctly display all the data on the mobile phone43, and verify the information on the electronic file time stamp certificate 44: a. verify the time stamp issuing institution; b. verify the time issuing institution; c. verify the time stamp server certificate issuing institution; d_Verify the timestamp server voucher serial number; e_Verify the applicant's name; f. Verify the applicant voucher issuing authority; g. Verify the applicant voucher serial number; h. Verify the issuing time (UTC Time); i. Verify the file hash value And j. verify the hash value algorithm and accept the certificate if everything is correct. The detailed description of the above is a detailed description of a possible embodiment of the present invention, which is not intended to limit the scope of the invention, and the equivalents or modifications of the present invention should be included. In the scope of the patent in this case. To sum up, this case is not only innovative in terms of technical thinking, but also able to enhance the above-mentioned multiple functions compared with the conventional methods. It should fully comply with the statutory invention patent requirements of novelty and progressiveness, and apply for it according to law. This invention patent application, in order to invent invention, to the sense of virtue. [Simple diagram of the diagram] Figure 1 is a schematic diagram of the structure of the electronic file time stamp certificate; Figure 2 is a schematic diagram of the format of the electronic file time stamp certificate; Figure 3 is a flow chart of the generation of the electronic file time stamp certificate; Figure 4 is a flow chart of the verification operation of the electronic file time stamp certificate. [Main component symbol description] 102: Time stamp server 104: Computer 112: Electronic file time stamp certificate 105: Original file creator 110: Original electronic file 108: Verifier (electronic file user) 114: Mobile phone for verification