TW201344487A - Digital authentication control medium and digital terminal device having network communication function - Google Patents

Digital authentication control medium and digital terminal device having network communication function Download PDF

Info

Publication number
TW201344487A
TW201344487A TW101131673A TW101131673A TW201344487A TW 201344487 A TW201344487 A TW 201344487A TW 101131673 A TW101131673 A TW 101131673A TW 101131673 A TW101131673 A TW 101131673A TW 201344487 A TW201344487 A TW 201344487A
Authority
TW
Taiwan
Prior art keywords
digital
information
file
terminal device
voucher
Prior art date
Application number
TW101131673A
Other languages
Chinese (zh)
Inventor
Hui-Chung Che
Original Assignee
Hui-Chung Che
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hui-Chung Che filed Critical Hui-Chung Che
Priority to TW101131673A priority Critical patent/TW201344487A/en
Priority to CN201310218020.1A priority patent/CN103678956A/en
Publication of TW201344487A publication Critical patent/TW201344487A/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6209Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2107File encryption

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Technology Law (AREA)
  • Multimedia (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computing Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

A digital authentication control medium comprises content picking unit, attribute generating unit, cyphering unit and data delivering unit. The picking unit picks and gets digital contents. The attribute generating unit generates terminal information for each digital content. The cyphering unit generates a content cypher by its corresponding digital content. The data delivering unit delivers out content ciphers and terminal information, and receives authentication codes. The authentication code is compiled by an authentication file, which comprising a content cipher, terminal information, external time information and external cloud storage information.

Description

數位存證控制媒體及具有網路通信功能的數位終端裝置 Digital certificate control medium and digital terminal device with network communication function

本發明係有關於數位資料傳輸與保全技術,特別是指一種數位存證控制媒體。 The invention relates to digital data transmission and preservation technology, in particular to a digital certificate storage control medium.

現今,數位內容檔案被越來越多領域所應用,但由於其容易被篡改、偽造,人們無法辨認其存在時間及其真實性、可靠性。在數位版權保護、智慧財產權保護等領域,如何證明數位內容檔案的原創性與時間性,是個必須嚴肅面對的議題。 Nowadays, digital content files are used in more and more fields, but because they are easily falsified and forged, people cannot recognize their existence time and their authenticity and reliability. In the fields of digital copyright protection and intellectual property protection, how to prove the originality and timeliness of digital content files is an issue that must be seriously faced.

目前常見的數位內容檔案保護方式,是將數位內容檔案完整上傳至伺服器,再透過伺服器將數位內容檔案加密後同時記錄上傳的時間,以證明數位內容檔案的原創性及時間性。 At present, the common digital content file protection method is to completely upload the digital content file to the server, and then encrypt the digital content file through the server and record the uploading time at the same time to prove the originality and timeliness of the digital content file.

然而,上述的應用需要將原始數位內容檔案上傳到伺服器,如果檔案較大且網路頻寬不足,則將嚴重影響上傳時間,使數位內容檔案的存證生成困難。 However, the above application needs to upload the original digital content file to the server. If the file size is large and the network bandwidth is insufficient, the uploading time will be seriously affected, and the storage of the digital content file is difficult.

此外,還有另一種保護數位內容檔案的方式,是將數位內容檔案上傳至伺服器,透過伺服器端生成一個檔案指紋,再將檔案指紋與原始數位內容檔案保存在數位終端的電腦中。 In addition, there is another way to protect the digital content file by uploading the digital content file to the server, generating an image fingerprint through the server, and then storing the file fingerprint and the original digital content file in the computer of the digital terminal.

此種應用除了前述上傳數位內容檔案需要足夠的網路頻寬之外,將檔案指紋及數位內容檔案保存在數位終端中,檔案指紋會有被篡改的可能性,因此檔案指紋無法有效且公正的證明檔案指紋及數位內容檔案的可靠性。 In addition to the above-mentioned uploading of digital content files, the application requires sufficient network bandwidth to store the file fingerprint and digital content files in the digital terminal. The file fingerprint may be tampered with, so the file fingerprint cannot be valid and fair. Prove the reliability of file fingerprints and digital content files.

為了改善上述現有技術的缺陷,本發明提供一種數位存證控制媒體,可以軟體(software)或韌體(firmware)的形態呈現,供使用在數位終端裝置中,用以對數位內容檔案進行存證,以確保數位內容檔案存在時間的可靠性及原創性,同時具有資料傳輸量少、頻寬使用量少的優點,能達到傳輸速率快與高效率的功效。 In order to improve the above-mentioned defects of the prior art, the present invention provides a digital certificate storage control medium, which can be presented in the form of software or firmware for use in a digital terminal device for depositing digital content files. In order to ensure the reliability and originality of the digital content file time, and the advantages of less data transmission and less bandwidth usage, the transmission rate can be fast and high efficiency.

本發明首先提供一種數位存證控制媒體,供使用在一個數位終端裝置中, 用以對數位內容檔案進行存證。數位存證控制媒體包括:一個數位擷取單元,擷取一個數位內容檔案;一個屬性生成單元,生成相應於數位內容檔案的終端信息,終端信息包括數位內容檔案的使用者信息與數位終端裝置位置識別信息;一個壓縮加密單元,對數位內容檔案通過壓縮加密程序,生成一個檔案金鑰;一個數據收發單元,驅動數位終端裝置將檔案金鑰及終端信息向外部發送,並驅動數位終端裝置自外部接收一個憑證識別碼,憑證識別碼係由一個憑證檔案編譯生成,憑證檔案包含檔案金鑰、終端信息與外部的一個時間信息與外部的雲存儲信息,且憑證識別碼可由外部的一個光學讀取器讀取其中的憑證檔案內容。 The invention firstly provides a digital certificate storage control medium for use in a digital terminal device, Used to deposit digital content files. The digital deposit control medium includes: a digital capture unit that captures a digital content file; an attribute generating unit that generates terminal information corresponding to the digital content file, the terminal information including user information of the digital content file and the location of the digital terminal device Identification information; a compression encryption unit for generating a file key by compressing the encryption program; a data transceiver unit driving the digital terminal device to transmit the file key and the terminal information to the outside, and driving the digital terminal device from the outside Receiving a voucher identification code, the voucher identification code is compiled and generated by a voucher file, the voucher file includes an archive key, terminal information and an external time information and external cloud storage information, and the voucher identification code can be optically read by an external one. The device reads the contents of the voucher file.

本發明同時又提出另一種數位存證控制媒體,供使用在一個數位終端裝置中,用以對數位內容檔案進行存證。數位存證控制媒體包括:一個數位擷取單元,擷取一個數位內容檔案;一個屬性生成單元,生成相應於數位內容檔案的終端信息,終端信息包括數位內容檔案的使用者信息與數位終端裝置位置識別信息;一個壓縮加密單元,對數位內容檔案通過壓縮加密程序,生成一個檔案金鑰;一個數據收發單元,驅動數位終端裝置將檔案金鑰及終端信息向外部發送,並驅動數位終端裝置自外部接收一個憑證檔案,憑證檔案包含檔案金鑰、終端信息與外部的一個時間信息與外部的一個雲存儲信息;一個識別碼編譯單元,將憑證檔案編譯生成一個憑證識別碼,憑證識別碼可由外部的一個光學讀取器讀取其中的憑證檔案內容。 The invention also proposes another digital certificate storage control medium for use in a digital terminal device for depositing digital content files. The digital deposit control medium includes: a digital capture unit that captures a digital content file; an attribute generating unit that generates terminal information corresponding to the digital content file, the terminal information including user information of the digital content file and the location of the digital terminal device Identification information; a compression encryption unit for generating a file key by compressing the encryption program; a data transceiver unit driving the digital terminal device to transmit the file key and the terminal information to the outside, and driving the digital terminal device from the outside Receiving a voucher file, the voucher file includes an archive key, terminal information and an external time information and an external cloud storage information; an identification code compiling unit compiles the voucher file to generate a voucher identification code, and the voucher identification code can be externally An optical reader reads the contents of the voucher file therein.

本發明同時又提出一種數位記憶卡,供使用於數位終端裝置,用以對數位內容檔案進行存證。數位記憶卡包含有:一個絕緣殼體,絕緣殼體具有一開口; 一個金手指裝置,設置於開口處;以及一個記憶晶片,設置於絕緣殼體內,且電性連接至金手指裝置,其中,記憶晶片設置有前述的數位存證控制媒體。 The invention also proposes a digital memory card for use in a digital terminal device for depositing digital content files. The digital memory card comprises: an insulating housing having an opening; A gold finger device is disposed at the opening; and a memory chip is disposed in the insulating housing and electrically connected to the gold finger device, wherein the memory chip is provided with the aforementioned digital certificate control medium.

本發明同時又提出一種USB記憶碟,供使用於數位終端裝置,用以對數位內容檔案進行存證。USB記憶碟包含有:一個空心座體;一個USB插頭,設置於空心座體的一側,並可向外凸出;一個記憶晶片,設置於空心座體內,且電性連接至USB插頭,其中,記憶晶片設置有前述的數位存證控制媒體。 The invention also proposes a USB memory disk for use in a digital terminal device for depositing digital content files. The USB memory disk comprises: a hollow body; a USB plug disposed on one side of the hollow body and protruding outward; a memory chip disposed in the hollow body and electrically connected to the USB plug, wherein The memory chip is provided with the aforementioned digital certificate control medium.

本發明同時又提出一種數位終端裝置,例如:智能手機、平板電腦、桌上型電腦、筆記型電腦、USB記憶卡、USB記憶碟、掃瞄器、多功能複合事務機、傳真機、電子白板、數位相機、數位錄影機、數位錄音機、行車記錄器等,其中,此數位終端裝置設置有前述的數位存證控制媒體。 The invention also proposes a digital terminal device, such as: a smart phone, a tablet computer, a desktop computer, a notebook computer, a USB memory card, a USB memory disk, a scanner, a multifunctional composite transaction machine, a fax machine, an electronic whiteboard , a digital camera, a digital video recorder, a digital sound recorder, a driving recorder, etc., wherein the digital terminal device is provided with the aforementioned digital certificate control medium.

本發明所提出的數位存證控制媒體將數位內容檔案壓縮加密生成檔案金鑰,檔案金鑰具有不可逆的保全特性,無法被還原工程破解,而且檔案小、傳輸時間短、儲存時間短,運算處理速度快。同時,由於將檔案金鑰上傳至雲端的數位存證伺服器,再結合各信息形成憑證檔案儲存在雲端的數位存證伺服器,因此可降低檔案金鑰被竄改的可能性,增加了憑證檔案的可靠度。同時,兼具保密與識別特性的憑證識別碼儲存於數位終端裝置,數位終端裝置的使用者可以適時將憑證識別碼對外公開,由外部的光學讀取器讀取其中的憑證檔案內容,以宣告其數位內容檔案已經得到第三方認證,起到人人重視智慧財產權的積極作用。 The digital certificate storage control medium proposed by the invention compresses and encrypts the digital content file to generate an archive key. The file key has irreversible security features, cannot be solved by the restoration project, and has small file, short transmission time, short storage time, and arithmetic processing. high speed. At the same time, because the file key is uploaded to the digital certificate server in the cloud, and the information is combined with the information to form the voucher file stored in the cloud digital certificate server, the possibility of the file key being falsified can be reduced, and the voucher file is added. Reliability. At the same time, the voucher identification code with both confidentiality and identification characteristics is stored in the digital terminal device, and the user of the digital terminal device can disclose the voucher identification code to the outside, and the external optical reader reads the contents of the voucher file to announce Its digital content files have been certified by third parties, which plays an active role in the importance of intellectual property rights.

由於本發明主要係揭露一種數位存證控制媒體,用以對數位內容檔案進行存證,其中所提及之數位內容檔案的格式、結構、種類等,已為相關技術領域具有通常知識者所能明瞭,故以下文中之說明,不再作完整描述。同時,以下文 中所對照之圖式,係表達與本發明特徵有關之結構示意,並未亦不需要依據實際尺寸與形狀完整繪製,合先敘明。 The present invention mainly discloses a digital certificate storage control medium for depositing digital content files, wherein the format, structure, and type of the digital content files mentioned have been available to those skilled in the related art. It is clear that the description below will not be fully described. At the same time, the following The drawings in reference have been shown to be structurally related to the features of the present invention, and are not required to be completely drawn according to the actual size and shape.

本發明中,數位內容檔案可以是各種格式的靜態數位文檔,例如Word檔、EXCEL檔、PPT檔、設計圖、數位照片/圖片等,也可以是動態數位文檔,例如數位錄影、數位錄音、數位動畫等,更可以是軟體、程式等。 In the present invention, the digital content file may be a static digital document in various formats, such as a Word file, an EXCEL file, a PPT file, a design drawing, a digital photo/picture, or a dynamic digital document, such as a digital video, a digital recording, and a digital position. Animation, etc., can be software, programs, etc.

本發明的數位存證控制媒體,供使用在一個數位內容整合式存證設備(300)的數位終端裝置(310)中,用以對數位內容檔案(15)進行存證。數位內容整合式存證設備(300)如圖1所示,包括多個數位終端裝置(310)、至少一個數位存證伺服器(320)、以及連接數位終端裝置(310)與數位存證伺服器(320)的網路裝置(390)。為便於說明,以下僅以一個數位終端裝置(310)對應一個數位存證伺服器(320)的實施例進行解說,但並不以此為限。本發明之內容亦適用於多個數位終端裝置(310)對應一個數位存證伺服器(320)的實施方式;同時亦適用於多個數位終端裝置(310)對應一個伺服器組成的實施方式,其中此伺服器組成包含同步運作且互相備份的數個數位存證伺服器(320)。 The digital certificate storage control medium of the present invention is used in a digital terminal device (310) of a digital content integrated storage device (300) for depositing a digital content file (15). The digital content integrated storage device (300), as shown in FIG. 1, includes a plurality of digital terminal devices (310), at least one digital certificate server (320), and a digital terminal device (310) and a digital certificate server. The network device (390) of the device (320). For ease of explanation, the following is only an example of a digital terminal device (310) corresponding to a digital certificate server (320), but is not limited thereto. The content of the present invention is also applicable to an embodiment in which a plurality of digital terminal devices (310) correspond to one digital certificate server (320); and is also applicable to an embodiment in which a plurality of digital terminal devices (310) correspond to one server. The server consists of a number of digital certificate servers (320) that operate synchronously and back up each other.

請參考圖2,本發明所提出的第一較佳實施例,為一種數位存證控制媒體(501),其包括:一個數位擷取單元(510)、一個屬性生成單元(520)、一個壓縮加密單元(530)、以及一個數據收發單元(541)。 Referring to FIG. 2, a first preferred embodiment of the present invention is a digital certificate control medium (501), which includes: a digital capture unit (510), an attribute generation unit (520), and a compression. An encryption unit (530), and a data transceiving unit (541).

數位擷取單元(510)是用以擷取一個數位內容檔案(15),此數位內容檔案可以是數位終端裝置(310)內已存在的數位內容檔案(15),也可以是通過數位終端裝置(310)的數位相機、錄音機等即時取得生成的數位內容檔案(15)。屬性生成單元(520)是用以生成相應於數位內容檔案(15)的終端信息(410),終端信息(410)包括數位內容檔案(15)的使用者信息(411)與數位終端裝置位置識別信息(412)。壓縮加密單元(530)是用以對數位內容檔案(15)進行壓縮加密程序而生成一個檔案金鑰(151)。數據收發單元(541)是用以驅動數位終端裝置(310)將檔案金鑰(151)及終端信息(410)向外部發送,並驅動數位終端裝置(310)自外部接收一個憑證識別碼(162)。憑證識別碼(162)係由一個憑證檔案(16)編譯生成,憑證檔案 (16)包含檔案金鑰(151)、終端信息(410)與外部的一個時間信息(420)與外部的雲存儲信息(430),且憑證識別碼(162)可由外部的一個光學讀取器讀取其中的憑證檔案(16)內容。 The digital capture unit (510) is configured to retrieve a digital content file (15), which may be a digital content file (15) existing in the digital terminal device (310), or may be through a digital terminal device. The digital camera (recorder) of (310) immediately acquires the generated digital content file (15). The attribute generating unit (520) is configured to generate terminal information (410) corresponding to the digital content file (15), and the terminal information (410) includes user information (411) of the digital content file (15) and digital terminal device location identification. Information (412). The compression encryption unit (530) is configured to generate a file key (151) by performing a compression encryption process on the digital content file (15). The data transceiver unit (541) is configured to drive the digital terminal device (310) to transmit the file key (151) and the terminal information (410) to the outside, and drive the digital terminal device (310) to receive a voucher identification code from the outside (162). ). The voucher identification code (162) is compiled and generated by a voucher file (16), and the voucher file is generated. (16) comprising an archive key (151), terminal information (410) and an external time information (420) and external cloud storage information (430), and the voucher identification code (162) may be externally an optical reader Read the contents of the voucher file (16).

上述數位存證控制媒體(501),是使用在數位內容整合式存證設備(300)的數位終端裝置(310)中,用以對數位內容檔案(15)進行存證。數位內容整合式存證設備(300)如圖1所示,包括多個數位終端裝置(310)、至少一個數位存證伺服器(320)、以及連接數位終端裝置(310)與數位存證伺服器(320)的網路裝置(390)。整個存證步驟可以由下列步驟說明: The digital certificate storage medium (501) is used in a digital terminal device (310) of the digital content integrated certificate storage device (300) for depositing a digital content file (15). The digital content integrated storage device (300), as shown in FIG. 1, includes a plurality of digital terminal devices (310), at least one digital certificate server (320), and a digital terminal device (310) and a digital certificate server. The network device (390) of the device (320). The entire depositing step can be illustrated by the following steps:

(a)在數位終端裝置(310)提供數位內容檔案(15)。 (a) A digital content file (15) is provided at the digital terminal device (310).

(b)在數位終端裝置(310)生成相應於數位內容檔案(15)的終端信息(410)。 (b) The terminal information (410) corresponding to the digital content file (15) is generated at the digital terminal device (310).

(c)在數位終端裝置(310)對數位內容檔案(15)通過壓縮加密程序,生成檔案金鑰(151)。 (c) The digital content file (15) is generated by the digital terminal device (310) by compressing the encryption program to generate an archive key (151).

(d)通過網路裝置(390)將檔案金鑰(151)及終端信息(410)發送至數位存證伺服器(320)。 (d) The file key (151) and the terminal information (410) are transmitted to the digital certificate server (320) via the network device (390).

(e)在數位存證伺服器(320)生成相應於檔案金鑰(151)的時間信息(420)與雲存儲信息(430),時間信息(420)是數位存證伺服器(320)接收到檔案金鑰(151)後的時間,包含第一時間信息(421)及/或第二時間信息(422),第一時間信息(421)是數位存證伺服器(320)的本地時間,第二時間信息(422)是數位終端裝置(310)與數位存證伺服器(320)以外的第三方所提供給數位存證伺服器(320)的時間;雲存儲信息(430)則是數位存證伺服器(320)根據預先設定的規則而對檔案金鑰(151)加載的備註說明信息。 (e) The digital certificate server (320) generates time information (420) corresponding to the file key (151) and cloud storage information (430), and the time information (420) is received by the digital certificate server (320). The time after the file key (151) includes the first time information (421) and/or the second time information (422), and the first time information (421) is the local time of the digital certificate server (320). The second time information (422) is the time provided by the third party other than the digital terminal device (310) and the digital certificate server (320) to the digital certificate server (320); the cloud storage information (430) is the digit The deposit server (320) remarks the information loaded on the archive key (151) according to a preset rule.

(f)在數位存證伺服器(320)將終端信息(410)、時間信息(420)與雲存儲信息(430)加載至檔案金鑰(151)以形成憑證檔案(16)。 (f) The digital certificate server (320) loads the terminal information (410), the time information (420), and the cloud storage information (430) to the archive key (151) to form a voucher file (16).

(g)在數位存證伺服器(320)將憑證檔案(16)編譯生成一個憑證識別碼(162);以及 (g) compiling the voucher file (16) at the digital voucher server (320) to generate a voucher identification code (162);

(h)通過網路裝置(390)將憑證識別碼(162)發送至數位終端裝置(310)。 (h) The credential identification code (162) is transmitted to the digital terminal device (310) via the network device (390).

在圖2中,壓縮加密單元(530)的壓縮加密程序對數位內容檔案(15)進行壓縮加密生成唯一對應的檔案金鑰(151)。特別的是,只要數位內容檔案(15)的內容不相同,檔案金鑰(151)的內容就不會相同,且同一個數位內容檔案(15),不管經過多久,其壓縮加密生成所得到的檔案金鑰(151)會永遠相同。在一種實施方式中,檔案金鑰(151)是指藉由散列演算法對數位內容檔案(15)進行壓縮加密生成所生成的編碼資料。這種編碼資料的檔案大小遠小於數位內容檔案(15)的檔案大小,例如採用MD5演算法對數位內容檔案(15)進行檔案金鑰(151)壓縮加密生成,得到的檔案金鑰(151)是128位元的資料。藉此,通過網路裝置(390)上傳128位元的檔案金鑰(151)到數位存證伺服器(320)所使用的時間遠小於直接上傳數位內容檔案(15)的時間,進而解決了上傳數位內容檔案(15)費時的問題。此外,採用如MD5等散列演算法,可以得到與數位內容檔案(15)唯一對應的檔案金鑰(151),進而可以證明數位內容檔案(15)的唯一性。也就是說,如果數位內容檔案(15)有任何修改,那麼藉由散列演算法對數位內容檔案(15)壓縮加密生成所得到的檔案金鑰(151)將發生變化,即,修改前的數位內容檔案(15)壓縮加密生成的檔案金鑰(151)不同於修改後的數位內容檔案(15)壓縮加密生成的檔案金鑰(151)。且將數位內容檔案(15)壓縮加密生成檔案金鑰(151)是一個非可逆程序,無法透過任何還原工程對檔案金鑰(151)反推出數位內容檔案(15)的內容,從而確保數位內容檔案(15)不會洩漏。需注意的是,採用MD5演算法進行檔案金鑰(151)壓縮加密生成只是本發明的一種實施例,除了MD5演算法以外,還可以採用如MD4、SHA-1、SHA-225、SHA-256、SHA-384、SHA-512等散列演算法來生成檔案金鑰(151)。 In Figure 2, the compression encryption program of the compression encryption unit (530) compresses and encrypts the digital content file (15) to generate a unique corresponding file key (151). In particular, as long as the content of the digital content file (15) is different, the content of the file key (151) will not be the same, and the same digital content file (15), no matter how long, the compression encryption generated. The file key (151) will always be the same. In one embodiment, the archive key (151) refers to the encoded data generated by compression and encryption of the digital content file (15) by a hash algorithm. The file size of the encoded data is much smaller than the file size of the digital content file (15). For example, the MD5 algorithm is used to perform file key (151) compression and encryption on the digital content file (15), and the obtained file key (151) is obtained. It is 128-bit information. Thereby, the time for uploading the 128-bit file key (151) to the digital certificate server (320) through the network device (390) is much shorter than the time for directly uploading the digital content file (15), thereby solving the problem. Uploading a digital content file (15) is a time consuming issue. In addition, by using a hash algorithm such as MD5, an archive key (151) uniquely corresponding to the digital content file (15) can be obtained, thereby further demonstrating the uniqueness of the digital content file (15). That is to say, if there is any modification of the digital content file (15), the file key (151) obtained by the hash algorithm for the digital content file (15) compression and encryption generation will change, that is, before the modification. The digital content file (15) compresses the encrypted generated file key (151) differently from the modified digital content file (15) and compresses the encrypted generated file key (151). And the digital content file (15) is compressed and encrypted to generate the file key (151) is a non-reversible program, and the content of the digital content file (15) cannot be reversed by the file key (151) through any restoration project, thereby ensuring the digital content. The file (15) will not leak. It should be noted that the file key (151) compression and encryption generation using the MD5 algorithm is only one embodiment of the present invention. In addition to the MD5 algorithm, MD4, SHA-1, SHA-225, and SHA-256 may also be used. Hash algorithms such as SHA-384 and SHA-512 are used to generate the archive key (151).

較佳地,憑證識別碼(162)為二維條碼(QR Code),但並不以此為限。憑證識別碼(162)的用意是讓數位終端裝置(310)的使用者可以將憑證識別碼(162)公開發佈給其他人,其他人(或是數位終端裝置(310)的使用者本人)只要通過光學讀取器掃描此憑證識別碼(162),便能夠閱讀憑證檔案(16)的內容,得知數位終端裝置(310)的使用者,已經把數位內容檔案(15)在特定時間與特定地點取得檔 案金鑰(151)做第三方存證,因此數位內容檔案(15)必須經過合理的授權使用,不得隨意盜用。藉此,提高智慧財產的保護與運作效率。 Preferably, the voucher identification code (162) is a QR Code, but is not limited thereto. The purpose of the voucher identification code (162) is to allow the user of the digital terminal device (310) to publicly distribute the voucher identification code (162) to other persons, as well as others (or the user of the digital terminal device (310)) as long as By scanning the voucher identification code (162) by the optical reader, the contents of the voucher file (16) can be read, and the user of the digital terminal device (310) has learned that the digital content file (15) has been specified at a specific time. Location file The case key (151) is used for third-party deposit, so the digital content file (15) must be used with reasonable authorization and must not be stolen. In this way, improve the protection and operational efficiency of intellectual property.

請參考圖3,本發明所提出的第二較佳實施例,為另一種數位存證控制媒體,供使用在一個數位終端裝置(310)中。數位存證控制媒體(501)包括:一個數位擷取單元(510)、一個屬性生成單元(520)、一個壓縮加密單元(530)、一個數據收發單元(542)、以及一個識別碼編譯單元(550)。 Referring to FIG. 3, a second preferred embodiment of the present invention is another digital certificate storage medium for use in a digital terminal device (310). The digital certificate control medium (501) includes: a digital capture unit (510), an attribute generation unit (520), a compression encryption unit (530), a data transceiving unit (542), and an identification code compiling unit ( 550).

數位擷取單元(510)是用以擷取一個數位內容檔案(15)。屬性生成單元(520)是用以生成相應於數位內容檔案(15)的終端信息(410),終端信息(410)包括數位內容檔案(15)的使用者信息(411)與數位終端裝置位置識別信息(412)。壓縮加密單元(530)是用以對數位內容檔案(15)通過壓縮加密程序,生成一個檔案金鑰(151)。數據收發單元(542)是用以驅動數位終端裝置(310)將檔案金鑰(151)及終端信息(410)向外部發送,並驅動數位終端裝置(310)自外部接收一個憑證檔案(16),憑證檔案(16)包含檔案金鑰(151)、終端信息(410)與外部的一個時間信息(420)與外部的一個雲存儲信息(430)。識別碼編譯單元(550)是用以將憑證檔案(16)編譯生成一個憑證識別碼(162),憑證識別碼(162)可由外部的一個光學讀取器讀取其中的憑證檔案(16)內容。 The digital capture unit (510) is used to retrieve a digital content file (15). The attribute generating unit (520) is configured to generate terminal information (410) corresponding to the digital content file (15), and the terminal information (410) includes user information (411) of the digital content file (15) and digital terminal device location identification. Information (412). The compressed encryption unit (530) is configured to generate an archive key (151) by compressing the encryption program through the digital content file (15). The data transceiver unit (542) is configured to drive the digital terminal device (310) to transmit the file key (151) and the terminal information (410) to the outside, and drive the digital terminal device (310) to receive a voucher file from the outside (16). The voucher file (16) includes an archive key (151), terminal information (410) and an external time information (420) and an external cloud storage information (430). The identification code compiling unit (550) is configured to compile the voucher file (16) to generate a voucher identification code (162), and the voucher identification code (162) can be read by an external optical reader (16). .

第二實施例相較於第一實施例的主要差別在於:第二實施例的數據收發單元(542)接收的是憑證檔案(16),且第二實施例更增加一個識別碼編譯單元(550),將憑證檔案(16)編譯生成一個憑證識別碼(162);但第一實施例中並不具備識別碼編譯單元(550),而數據收發單元(541)接收的是憑證識別碼(162)。 The main difference between the second embodiment and the first embodiment is that the data transceiving unit (542) of the second embodiment receives the voucher file (16), and the second embodiment further adds an identification code compiling unit (550). The certificate file (16) is compiled to generate a voucher identification code (162); however, the first embodiment does not have the identification code compiling unit (550), and the data transceiving unit (541) receives the voucher identification code (162). ).

請參考圖4,終端信息(410)包括數位內容檔案(15)的使用者信息(411)與數位終端裝置位置識別信息(412)。 Referring to FIG. 4, the terminal information (410) includes user information (411) and digital terminal device location identification information (412) of the digital content file (15).

一種實施方式中,終端信息(410)中的使用者信息(411)可以由數位終端裝置(310)提供。使用者信息(411)可以是數位終端裝置(310)的使用者登錄數位存證伺服器(320)時所使用的身分信息(4111)、或是使用者對數位內容檔案(15)的備註說明信息(4112)。其中,使用者的身分信息(4111)可以是使用者帳戶暱稱、或 是使用者的證件號(例如:身分證號、駕照號、社會保險號),更以用者帳戶暱稱與使用者證件號兩者同時具備為佳。 In one embodiment, the user information (411) in the terminal information (410) may be provided by the digital terminal device (310). The user information (411) may be the identity information (4111) used by the user of the digital terminal device (310) to log in to the digital certificate server (320), or the remarks of the user's digital content file (15). Information (4112). The user identity information (4111) may be a user account nickname, or It is the user's ID number (for example: identity card number, driver's license number, social security number), and it is better to have both the user account nickname and the user ID number.

一種實施方式中,數位終端裝置位置識別信息(412)包含地理信息(4121)、或機器信息(4122)、或兩者兼備。此地理信息(4121)可以由數位終端裝置(310)提供。例如:在附加有GPS定位功能的行動裝置(如附加有GPS定位功能的智慧型手機等)之情況下,數位終端裝置(310)的地理信息(4121)可以由行動裝置的GPS模組提供。再者,數位終端裝置(310)的地理信息(4121)可以由數位終端裝置(310)發送後,再由數位存證伺服器(320)進行判讀。例如:在數位終端裝置(310)是電腦的情況下,數位存證伺服器(320)可以根據終端發送的IP位址來判斷數位終端裝置(310)的數位終端裝置位置識別信息(412),如此,檔案金鑰(151)與數位終端裝置(310)的數位終端裝置位置識別信息(412)相結合能夠證明檔案金鑰(151)上傳的地理位置,進而有助於證明檔案金鑰(151)所對應的數位內容檔案(15)的上傳地理位置。另一種實施方式中,數位終端裝置位置識別信息(412)包含機器信息(4122),機器信息(4122)為數位終端裝置(310)的裝置身分碼,通過對數位終端裝置(310)的裝置身分碼進行辨認,也可以知道數位終端裝置(310)的位置。 In one embodiment, the digital terminal device location identification information (412) includes geographic information (4121), or machine information (4122), or both. This geographic information (4121) can be provided by the digital terminal device (310). For example, in the case of a mobile device to which a GPS positioning function is attached (such as a smart phone with a GPS positioning function, etc.), the geographic information (4121) of the digital terminal device (310) can be provided by the GPS module of the mobile device. Furthermore, the geographic information (4121) of the digital terminal device (310) can be transmitted by the digital terminal device (310) and then interpreted by the digital certificate server (320). For example, in the case where the digital terminal device (310) is a computer, the digital certificate server (320) can determine the digital terminal device location identification information (412) of the digital terminal device (310) according to the IP address transmitted by the terminal. Thus, the archive key (151) in combination with the digital terminal device location identification information (412) of the digital terminal device (310) can prove the geographic location uploaded by the archive key (151), thereby contributing to the certification of the archive key (151). ) The uploaded geographic location of the corresponding digital content file (15). In another embodiment, the digital terminal device location identification information (412) includes machine information (4122), the device information (4122) is the device identity code of the digital terminal device (310), and the device identity through the digital terminal device (310) The code is recognized, and the position of the digital terminal device (310) can also be known.

請繼續參考圖4,一種實施方式中,時間信息(420)包含第一時間信息(421)、或第一時間信息(422)、或兩者兼備。第一時間信息(421)是數位存證伺服器(320)接收到上傳的檔案金鑰(151)之本地時間,可用於證明檔案金鑰(151)的存在時間。由於檔案金鑰(151)是唯一對應於數位內容檔案(15),因此時間信息(420)能夠證明與上傳的檔案金鑰(151)唯一對應的數位內容檔案(15)之特定時間存在的事實。 With continued reference to FIG. 4, in one embodiment, the time information (420) includes first time information (421), or first time information (422), or both. The first time information (421) is the local time at which the digital certificate server (320) receives the uploaded file key (151) and can be used to prove the existence time of the file key (151). Since the archive key (151) is uniquely corresponding to the digital content file (15), the time information (420) can prove the fact that the digital content file (15) uniquely corresponding to the uploaded archive key (151) exists at a specific time. .

第二時間信息(422)可以由數位終端裝置(310)及數位存證伺服器(320)以外的第三方提供給數位存證伺服器(320)。例如,數位存證伺服器(320)可以與國家授權的時間驗證機構或者其他可提供標準時間(例如格林威治時間、中原標準時間)的機構建立連接,由可提供標準時間的機構向數位存證伺服器(320)提供標準 的時間信息(420)或進行數位存證伺服器(320)的時間校正,如此讓時間信息(420)更加準確和更具可靠性。 The second time information (422) may be provided to the digital certificate server (320) by a third party other than the digital terminal device (310) and the digital certificate server (320). For example, the digital certificate server (320) can establish a connection with a state-authorized time verification authority or other organization that can provide standard time (eg, Greenwich Mean Time, Central Plains Standard Time), and is stored in a digital location by a mechanism that provides standard time. Certificate server (320) provides standards The time information (420) or the time correction of the digital certificate server (320) makes the time information (420) more accurate and more reliable.

在第一實施例與第二實施例中的一種衍生實施例中,數據收發單元(541、542)進一步驅動數位終端裝置(310)將數位內容檔案(15)向外部發送至數位存證伺服器(320)。此主要目的是基於雲端存儲的考量,使用者將數位內容檔案(15)上傳至數位存證伺服器(320),如此可以在數位存證伺服器(320)上對數位內容檔案(15)進行儲存和備份。更進一步,數位內容檔案(15)在儲存至數位內容伺服資料庫(325)的過程中,可以再經過一個加密保全的程序,使數位內容檔案(15)有更好的保密安全性,起到一個雲端保險箱的作用。 In a derivative embodiment of the first embodiment and the second embodiment, the data transceiving unit (541, 542) further drives the digital terminal device (310) to externally transmit the digital content file (15) to the digital certificate server. (320). The main purpose is based on the consideration of cloud storage. The user uploads the digital content file (15) to the digital certificate server (320), so that the digital content file (15) can be performed on the digital certificate server (320). Save and backup. Further, the digital content file (15) can be stored in the digital content servo database (325), and can be subjected to an encryption and preservation program to make the digital content file (15) have better security and security. The role of a cloud safe.

此衍生實施例可以選擇性的實施,在網路傳輸速度足夠時,數位終端裝置(310)將數位內容檔案(15)上傳至數位存證伺服器(320)儲存,可達到備份的功能,當然,當網路傳輸速度不足時,可選擇不上傳數位內容檔案(15),此一步驟並不影響檔案金鑰(151)的生成。 The derivative embodiment can be selectively implemented. When the network transmission speed is sufficient, the digital terminal device (310) uploads the digital content file (15) to the digital certificate storage server (320) for storage, thereby achieving the backup function. When the network transmission speed is insufficient, you can choose not to upload the digital content file (15). This step does not affect the generation of the file key (151).

本發明所提供的數位終端裝置(310)可以進一步設置數位攝像/錄像頭(未圖示),藉由攝像而取得數位照片而作為數位內容檔案(15),也可以藉由錄影而取得視頻而作為數位內容檔案(15)。本發明所提供的數位終端裝置(310)可以進一步設置數位錄音裝置(未圖示),藉由錄音而取得數位音頻而作為數位內容檔案(15)。 The digital terminal device (310) provided by the present invention may further provide a digital camera/video head (not shown), and obtain a digital photo by imaging to be used as a digital content file (15), or may acquire a video by video recording. As a digital content file (15). The digital terminal device (310) provided by the present invention may further be provided with a digital recording device (not shown) for acquiring digital audio as a digital content file (15) by recording.

另一方面,儲存在數位終端裝置(310)的數位內容檔案(15),可以是藉由上述的數位攝像/錄像頭、數位錄音裝置取得的數位內容檔案;也可以是通過拷貝;有線/無線的網路傳輸(例如藍芽、或網路分享、電子郵件等)由其他裝置取得的數位內容檔案;也可以是通過數位終端裝置(310)內部設置的辦公軟件(例如:MS OFFICE WORD、MS OFFICE EXCEL、MS OFFICE POWERPOINT、MS FRONTPAGE、MS OUTLOOK)所產生的數位內容檔案(15);也可以是通過數位終端裝置(310)內部設置的專業/專用軟體(例如:PRO-E、SOLID WORKS、AUTOCAD、會計專用軟體等)所產生的數位內容檔案;也可以是通過網路瀏覽 器在瀏覽畫面時擷取的網路畫面檔案等。 On the other hand, the digital content file (15) stored in the digital terminal device (310) may be a digital content file obtained by the above-mentioned digital camera/video head or digital recording device; or may be copied; wired/wireless Network transmission (such as Bluetooth, or network sharing, e-mail, etc.) digital content files obtained by other devices; or office software set by digital terminal device (310) (for example: MS OFFICE WORD, MS) A digital content file (15) generated by OFFICE EXCEL, MS OFFICE POWERPOINT, MS FRONTPAGE, MS OUTLOOK); or a professional/dedicated software (such as PRO-E, SOLID WORKS, which is set by the digital terminal device (310)). Digital content files generated by AUTOCAD, accounting software, etc.) The network screen file captured by the browser while browsing the screen.

請參考圖5,本發明所提出的第三較佳實施例,為一種具有數位存證控制媒體的數位記憶卡(700),可供使用於數位終端裝置(310),用以對數位內容檔案(15)進行存證。數位記憶卡(700)包含有:一個絕緣殼體(710),絕緣殼體(710)具有一開口(711);一個金手指裝置(720),設置於開口(711)處;以及一個記憶晶片(730),設置於絕緣殼體(710)內,且電性連接至金手指裝置(720),記憶晶片(730)設置有前述第一較佳實施例與第二較佳實施例所述的數位存證控制媒體(501、502)。 Referring to FIG. 5, a third preferred embodiment of the present invention is a digital memory card (700) having a digital certificate storage medium, which is usable for a digital terminal device (310) for a digital content file. (15) Carry out the deposit. The digital memory card (700) includes: an insulative housing (710) having an opening (711); a gold finger device (720) disposed at the opening (711); and a memory chip (730), disposed in the insulating housing (710), and electrically connected to the gold finger device (720), the memory chip (730) is provided with the first preferred embodiment and the second preferred embodiment Digital deposit control media (501, 502).

一種實施方式中,本實施例所提出的數位記憶卡(700)的記憶晶片(730)進一步可以設置無線網路通訊裝置,供數位存證控制媒體的數據收發單元(541、542)接收與發送信息。 In one embodiment, the memory chip (730) of the digital memory card (700) proposed in this embodiment may further be configured with a wireless network communication device for receiving and transmitting data transceiver units (541, 542) of the digital certificate storage medium. information.

請參考圖6,本發明所提出的第四較佳實施例,為另一種具有數位存證控制媒體的USB記憶碟(900),可供使用於數位終端裝置(310),用以對數位內容檔案(15)進行存證。USB記憶碟(900)包含有:一個空心座體(910);一個USB插頭(920),設置於空心座體(910)的一側,並可向外凸出;一個記憶晶片(940),設置於空心座體(910)內,且電性連接至USB插頭(920),其中記憶晶片(940)設置有前述第一較佳實施例與第二較佳實施例所述的數位存證控制媒體(501、502)。 Referring to FIG. 6, a fourth preferred embodiment of the present invention is another USB memory (900) having a digital certificate storage medium, which is usable for a digital terminal device (310) for digital content. The file (15) is deposited. The USB memory (900) includes: a hollow body (910); a USB plug (920) disposed on one side of the hollow body (910) and protruding outward; a memory chip (940), The utility model is disposed in the hollow body (910) and electrically connected to the USB plug (920), wherein the memory chip (940) is provided with the digital deposit control described in the first preferred embodiment and the second preferred embodiment. Media (501, 502).

一種實施方式中,本實施例所提出的USB記憶碟(900),可以進一步設置無線網路通訊裝置,供數位存證控制媒體的數據收發單元(541、542)可以接收與發送信息。 In one embodiment, the USB memory disk (900) proposed in this embodiment may further be provided with a wireless network communication device, and the data transceiver unit (541, 542) for the digital certificate storage medium may receive and transmit information.

本發明進一步提出第五較佳實施例,為一種具有網路通信功能的數位終端裝置(310),用以對數位內容檔案(15)進行存證。此數位存證終端(310)設置有網路通訊裝置(未圖示)及前述第一較佳實施例與第二較佳實施例所述的數位存證控 制媒體(501、502)。而且此數位終端裝置,可以是智能手機、平板電腦、桌上型電腦、筆記型電腦、USB記憶卡、USB記憶碟、掃瞄器、多功能複合事務機、傳真機、電子白板、數位相機、數位錄影機、數位錄音機、行車記錄器等任一種數位裝置。 The present invention further provides a fifth preferred embodiment, which is a digital terminal device (310) having a network communication function for depositing a digital content file (15). The digital certificate terminal (310) is provided with a network communication device (not shown) and the digital certificate control described in the first preferred embodiment and the second preferred embodiment. Media (501, 502). Moreover, the digital terminal device can be a smart phone, a tablet computer, a desktop computer, a notebook computer, a USB memory card, a USB memory disk, a scanner, a multi-function composite transaction machine, a fax machine, an electronic whiteboard, a digital camera, Any digital device such as a digital video recorder, a digital sound recorder, and a driving recorder.

如此,根據本發明所實施的數位存證控制媒體(300),供使用於數位終端裝置,藉由將數位內容檔案(15)壓縮加密生成檔案金鑰(151),可降低檔案的大小,進而降低上傳數位內容檔案(15)所需的時間。此外,更進一步將各屬性信息加載至檔案金鑰(151)所形成的憑證檔案(16)保存在數位存證伺服器(320)中可以證明數位內容檔案(15)在特定時間已存在的事實,並且確保憑證檔案(16)存在時間的可靠性。更進一步說明,由於憑證檔案(16)優先儲存在於數位存證伺服器(320)中,因此可以避免憑證檔案(16)中的資料被篡改,進而確保憑證檔案(16)的公正效力。 Thus, the digital certificate control medium (300) implemented in accordance with the present invention is used for a digital terminal device to reduce the size of a file by compressing and encrypting a digital content file (15) to generate an archive key (151). Reduce the time required to upload a digital content file (15). In addition, the credential file (16) formed by loading the attribute information into the archive key (151) is further stored in the digital certificate server (320) to prove the fact that the digital content file (15) already exists at a specific time. And ensure the reliability of the voucher file (16) time. Further, since the voucher file (16) is preferentially stored in the digital certificate server (320), the data in the voucher file (16) can be prevented from being tampered, thereby ensuring the fairness of the voucher file (16).

再者,必須提醒的是,根據TRIZ理論(Theoria Resheneyva Isobretatelskehuh Zadach,創新問題解決理論)之TRIZ之父:Genrich Altshuller曾經提出的五級創新理論,從第一級創新到第五級創新其中創新等級越高者,創新程度越大,而跨領域知識的轉用為第四級創新,屬於高度創新。本發明通過壓縮加密程序產生檔案金鑰使用的是“密碼學原理”,國際專利分類號為G09C,體現的具體裝置為“用於傳輸保密數位資訊之裝置”,國際專利分類號為H04L9/00,提供的人、時、地、事/物的第三方公正憑證功能又屬於“保險印鑑”的領域,國際專利分類號為G09F。因此,本發明實整合了多種不同技術與不同行業,為跨領域的整合型技術,具有高度新穎性與進步性。 Furthermore, it must be reminded that according to TRIZ theory (Theoria Resheneyva Isobretatelskehuh Zadach, the theory of innovative problem solving), the father of TRIZ: Genrich Altshuller has proposed a five-level innovation theory, from the first level of innovation to the fifth level of innovation. The higher the degree, the greater the degree of innovation, and the shifting of cross-domain knowledge to the fourth level of innovation is highly innovative. The invention uses the compression encryption program to generate the file key using the "cryptographic principle", the international patent classification number is G09C, and the specific device embodied is "the device for transmitting the confidential digital information", and the international patent classification number is H04L9/00. The third-party fair voucher function of the person, time, place, and thing/object provided is also in the field of “insurance seal”, and the international patent classification number is G09F. Therefore, the present invention integrates a plurality of different technologies and different industries, and is a cross-domain integrated technology, which is highly novel and progressive.

以上所述僅為本發明之較佳實施方式及其實施例,並非用以限定本發明之權利範圍;同時以上的描述,對於相關技術領域之專門人士應可明瞭及實施,因此其他未脫離本發明所揭示.之精神下所完成的等效改變或修飾,均應包含在申請專利範圍中。 The above description is only the preferred embodiment of the present invention and its embodiments, and is not intended to limit the scope of the present invention. The above description should be understood and implemented by those skilled in the relevant art, so that the other Equivalent changes or modifications made in the spirit of the invention are intended to be included in the scope of the patent application.

(300)‧‧‧數位內容整合式存證設備 (300) ‧‧‧Digital content integrated depository equipment

(310)‧‧‧數位終端裝置 (310)‧‧‧Digital terminal devices

(320)‧‧‧數位存證伺服器 (320) ‧‧‧ digital certificate server

(390)‧‧‧網路裝置 (390)‧‧‧Network devices

(501)、(502)‧‧‧數位存證控制媒體 (501), (502) ‧ ‧ digital license control media

(510)‧‧‧數位擷取單元 (510) ‧ ‧ digital capture unit

(520)‧‧‧屬性生成單元 (520) ‧‧‧ attribute generation unit

(530)‧‧‧壓縮加密單元 (530)‧‧‧Compressed encryption unit

(541)、(542)‧‧‧數據收發單元 (541), (542)‧‧‧ Data Transceiver Unit

(15)‧‧‧數位內容檔案 (15) ‧ ‧ digital content files

(151)‧‧‧檔案金鑰 (151) ‧ ‧ file key

(162)‧‧‧憑證識別碼 (162)‧‧‧Voucher ID

(16)‧‧‧憑證檔案 (16)‧‧‧Voucher file

(410)‧‧‧終端信息 (410) ‧ ‧ terminal information

(411)‧‧‧使用者信息 (411)‧‧‧ User Information

(4111)‧‧‧身分信息 (4111) ‧ ‧ Identity Information

(4112)‧‧‧備註說明信息 (4112) ‧‧‧Remarks information

(412)‧‧‧數位終端裝置位置識別信息 (412)‧‧‧Digital terminal device location identification information

(4121)‧‧‧地理信息 (4121) ‧ ‧ Geographic Information

(4122)‧‧‧機器信息 (4122)‧‧‧ Machine Information

(420)‧‧‧時間信息 (420) ‧ ‧ time information

(430)‧‧‧雲存儲信息 (430) ‧‧‧Cloud Storage Information

(700)‧‧‧數位記憶卡 (700)‧‧‧Digital Memory Card

(710)‧‧‧絕緣殼體 (710)‧‧‧Insulated housing

(711)‧‧‧開口 (711) ‧ ‧ openings

(720)‧‧‧金手指裝置 (720)‧‧‧Gold finger device

(730)、(940)‧‧‧記憶晶片 (730), (940) ‧ ‧ memory chips

(900)‧‧‧USB記憶碟 (900)‧‧‧USB Memory

(910)‧‧‧空心座體 (910)‧‧‧ Hollow seat

(920)‧‧‧USB插頭 (920)‧‧‧USB plug

圖1為一種數位內容整合式存證設備的示意圖。 FIG. 1 is a schematic diagram of a digital content integrated storage device.

圖2為本發明提出之數位終端裝置裝置之第一較佳實施例示意圖。 2 is a schematic diagram of a first preferred embodiment of a digital terminal device device according to the present invention.

圖3為本發明提出之數位終端裝置裝置之第二較佳實施例示意圖。 FIG. 3 is a schematic diagram of a second preferred embodiment of the digital terminal device device according to the present invention.

圖4為本發明提出之終端信息、使用者信息、數位終端裝置位置識別信息、時間信息的示意圖。 4 is a schematic diagram of terminal information, user information, digital terminal device location identification information, and time information proposed by the present invention.

圖5為本發明提出之第三較佳實施例示意圖。 Figure 5 is a schematic view of a third preferred embodiment of the present invention.

圖6為本發明提出之第四較佳實施例示意圖。 Figure 6 is a schematic view of a fourth preferred embodiment of the present invention.

(501)‧‧‧數位存證控制媒體 (501) ‧ ‧ digital deposit control media

(510)‧‧‧數位擷取單元 (510) ‧ ‧ digital capture unit

(520)‧‧‧屬性生成單元 (520) ‧‧‧ attribute generation unit

(530)‧‧‧壓縮加密單元 (530)‧‧‧Compressed encryption unit

(541))‧‧‧數據收發單元 (541)) ‧‧‧Data Transceiver Unit

(15)‧‧‧數位內容檔案 (15) ‧ ‧ digital content files

(151)‧‧‧檔案金鑰 (151) ‧ ‧ file key

(162)‧‧‧憑證識別碼 (162)‧‧‧Voucher ID

(16)‧‧‧憑證檔案 (16)‧‧‧Voucher file

(410)‧‧‧終端信息 (410) ‧ ‧ terminal information

(420)‧‧‧時間信息 (420) ‧ ‧ time information

(430)‧‧‧雲存儲信息 (430) ‧‧‧Cloud Storage Information

Claims (10)

一種數位存證控制媒體(501),供使用在一個數位終端裝置(310)中,該數位存證控制媒體(501)包括:一個數位擷取單元(510),擷取一個數位內容檔案(15);一個屬性生成單元(520),生成相應於該數位內容檔案(15)的終端信息(410),該終端信息(410)包括該數位內容檔案(15)的使用者信息(411)與數位終端裝置位置識別信息(412);一個壓縮加密單元(530),對該數位內容檔案(15)通過壓縮加密程序,生成一個檔案金鑰(151);一個數據收發單元(541),驅動該數位終端裝置(310)將該檔案金鑰(151)及該終端信息(410)向外部發送,並驅動該數位終端裝置(310)自外部接收一個憑證識別碼(162),該憑證識別碼(162)係由一個憑證檔案(16)編譯生成,該憑證檔案(16)包含該檔案金鑰(151)、該終端信息(410)與外部的一個時間信息(420)與外部的雲存儲信息(430),且該憑證識別碼(162)可由外部的一個光學讀取器讀取其中的憑證檔案(16)內容。 A digital certificate control medium (501) for use in a digital terminal device (310), the digital certificate control medium (501) comprising: a digital capture unit (510) for capturing a digital content file (15) An attribute generating unit (520) generates terminal information (410) corresponding to the digital content file (15), the terminal information (410) including user information (411) and digits of the digital content file (15) Terminal device location identification information (412); a compression encryption unit (530) that generates an archive key (151) by compressing the encryption program (15); a data transceiving unit (541) that drives the digit The terminal device (310) transmits the file key (151) and the terminal information (410) to the outside, and drives the digital terminal device (310) to receive a voucher identification code (162) from the outside, the voucher identification code (162). ) is compiled and generated by a credential file (16) containing the archive key (151), the terminal information (410) and an external time information (420) and external cloud storage information (430). ), and the voucher identification code (162) can be read by an external optical The device reads the contents of the voucher file (16). 一種數位存證控制媒體(502),供使用在一個數位終端裝置(310)中,該數位存證控制媒體(502)包括:一個數位擷取單元(510),擷取一個數位內容檔案(15);一個屬性生成單元(520),生成相應於該數位內容檔案(15)的終端信息(410),該終端信息(410)包括該數位內容檔案(15)的使用者信息(411)與數位終端裝置位置識別信息(412);一個壓縮加密單元(530),對該數位內容檔案(15)通過壓縮加密程序,生成一個檔案金鑰(151);一個數據收發單元(542),驅動該數位終端裝置(310)將該檔案金鑰(151)及該終端信息(410)向外部發送,並驅動該數位終端裝置(310)自外部接收一個憑證檔案(16),該憑證檔案(16)包含該檔案金鑰(151)、該終端信息(410)與外部的一個時間信息(420)與外部的一個雲存儲信息(430); 一個識別碼編譯單元(550),將該憑證檔案(16)編譯生成一個憑證識別碼(162),該憑證識別碼(162)可由外部的一個光學讀取器讀取其中的憑證檔案(16)內容。 A digital certificate control medium (502) for use in a digital terminal device (310), the digital certificate control medium (502) comprising: a digital capture unit (510) for capturing a digital content file (15) An attribute generating unit (520) generates terminal information (410) corresponding to the digital content file (15), the terminal information (410) including user information (411) and digits of the digital content file (15) Terminal device location identification information (412); a compression encryption unit (530) that generates an archive key (151) by compressing the encryption program (15); a data transceiving unit (542) that drives the digit The terminal device (310) transmits the file key (151) and the terminal information (410) to the outside, and drives the digital terminal device (310) to receive a voucher file (16) from the outside, the voucher file (16) containing The archive key (151), the terminal information (410) and an external time information (420) and an external cloud storage information (430); An identification code compiling unit (550) compiles the voucher file (16) to generate a voucher identification code (162), which can be read by an external optical reader (16). content. 根據申請專利範圍第1或第2項的數位存證控制媒體,其中,該數據收發單元(541,542)進一步驅動該數位終端裝置(310)將該數位內容檔案(15)向外部發送。 According to the digital certificate storage medium of claim 1 or 2, the data transceiving unit (541, 542) further drives the digital terminal device (310) to transmit the digital content file (15) to the outside. 根據申請專利範圍第1或第2項的數位存證控制媒體,其中,該數位終端裝置位置識別信息(412)包含地理信息(4121)及/或機器信息(4122),該地理信息(4121)為該數位終端裝置(310)的地理位置。 The digital deposit control medium according to claim 1 or 2 of the patent application, wherein the digital terminal device location identification information (412) includes geographic information (4121) and/or machine information (4122), the geographic information (4121) Is the geographic location of the digital terminal device (310). 據申請專利範圍第1或第2項的數位存證控制媒體,其中,該機器信息(4122)為該數位終端裝置(310)的裝置身分碼。 According to the digital certificate storage medium of claim 1 or 2, the machine information (4122) is the device identity code of the digital terminal device (310). 根據申請專利範圍第1或第2項的數位存證控制媒體,其中,該使用者信息(411)包含該數位存證控制媒體使用者的身分信息(4111)。 According to the digital certificate storage medium of claim 1 or 2, the user information (411) includes the identity information of the digital certificate control media user (4111). 根據申請專利範圍第1或第2項的數位存證控制媒體,其中,該使用者信息(411)包含數位存證控制媒體使用者對數位內容檔案(15)的備註說明信息(4112)。 According to the digital certificate storage medium of claim 1 or 2, the user information (411) includes remark information (4112) of the digital certificate file (15) by the digital certificate control media user. 根據申請專利範圍第1或第2項的數位存證控制媒體,其中,該雲存儲信息(430)是儲存該檔案金鑰(151)的外部的一個數位存證伺服器(320)對於該檔案金鑰(151)的備註說明信息。 According to the digital certificate storage medium of claim 1 or 2, the cloud storage information (430) is a digital certificate server (320) storing the file key (151) for the file. Remarks for the key (151). 根據申請專利範圍第1或第2項的數位存證控制媒體,其中,該憑證識別碼(162)為二維條碼。 The digital deposit control medium according to the first or second aspect of the patent application scope, wherein the voucher identification code (162) is a two-dimensional bar code. 一種具有網路通信功能的數位終端裝置,選自於由智能手機、平板電腦、桌上型電腦、筆記型電腦、USB記憶卡、USB記憶碟、掃瞄器、多功能複合事務機、傳真機、電子白板、數位相機、數位錄影機、數位錄音機及行車記錄器等所構成的群組,該數位終端裝置設置有網路通訊裝置及專利申請範圍第1至第9項其中任一項的數位存證控制媒體。 A digital terminal device with network communication function selected from the group consisting of a smart phone, a tablet computer, a desktop computer, a notebook computer, a USB memory card, a USB memory disk, a scanner, a multifunctional composite transaction machine, a fax machine a group consisting of an electronic whiteboard, a digital camera, a digital video recorder, a digital sound recorder, and a driving recorder, the digital terminal device being provided with a network communication device and a digit of any one of the patent application scopes 1 to 9. Deposit control media.
TW101131673A 2012-04-16 2012-08-31 Digital authentication control medium and digital terminal device having network communication function TW201344487A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
TW101131673A TW201344487A (en) 2012-04-16 2012-08-31 Digital authentication control medium and digital terminal device having network communication function
CN201310218020.1A CN103678956A (en) 2012-04-16 2013-06-03 Digital certificate storing control medium and digital terminal device with network communication function

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
TW101207029 2012-04-16
TW101131673A TW201344487A (en) 2012-04-16 2012-08-31 Digital authentication control medium and digital terminal device having network communication function

Publications (1)

Publication Number Publication Date
TW201344487A true TW201344487A (en) 2013-11-01

Family

ID=49990225

Family Applications (1)

Application Number Title Priority Date Filing Date
TW101131673A TW201344487A (en) 2012-04-16 2012-08-31 Digital authentication control medium and digital terminal device having network communication function

Country Status (2)

Country Link
CN (1) CN103678956A (en)
TW (1) TW201344487A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10192277B2 (en) 2015-07-14 2019-01-29 Axon Enterprise, Inc. Systems and methods for generating an audit trail for auditable devices

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110263003A (en) * 2016-07-21 2019-09-20 北京源创云网络科技有限公司 Item file deposits card method and terminal device
US10218699B2 (en) * 2016-07-22 2019-02-26 Rockwell Automation Technologies, Inc. Systems and methods for adding a non-inherent component to a device key of a networked device

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1114164C (en) * 1999-12-27 2003-07-09 英业达集团(上海)电子技术有限公司 Down loading and enciphering method for Internet electronic reading
CN1464688A (en) * 2002-06-25 2003-12-31 赖育成 Network resource management system
CN1251116C (en) * 2003-01-08 2006-04-12 英华达(南京)科技有限公司 Electronic document copyright protection method and in mobile communication system
CN102542405A (en) * 2011-12-14 2012-07-04 金峰顺泰知识产权有限公司 Digital archive storage and identification method and system

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10192277B2 (en) 2015-07-14 2019-01-29 Axon Enterprise, Inc. Systems and methods for generating an audit trail for auditable devices
TWI649673B (en) * 2015-07-14 2019-02-01 Axon Enterprise, Inc. System, device and method for auditing operation of device
US10848717B2 (en) 2015-07-14 2020-11-24 Axon Enterprise, Inc. Systems and methods for generating an audit trail for auditable devices

Also Published As

Publication number Publication date
CN103678956A (en) 2014-03-26

Similar Documents

Publication Publication Date Title
US11611553B2 (en) Online identity verification platform and process
FR3079323A1 (en) METHOD AND SYSTEM FOR ACCESSING ANONYMIZED DATA
US9165147B2 (en) Apparatus and method for generating digital images
WO2011157242A2 (en) Method and device for file protection
WO2019233951A1 (en) A software application and a computer server for authenticating the identity of a digital content creator and the integrity of the creator's published content
CN103310164A (en) Verification method of electronic seal pattern and verification method of file containing electronic seal
US9240982B2 (en) Method for associating an image-forming device, a mobile device, and a user
CN111626731A (en) Contract signing identity authentication and signature system based on block chain technology
CN109005196A (en) Data transmission method, data decryption method, device and electronic equipment
TW201344487A (en) Digital authentication control medium and digital terminal device having network communication function
TWI505132B (en) Certification method and electronic device
JP7449341B2 (en) Encrypted multimedia information management method
US20230388107A1 (en) System and method for encrypted multimedia information management
TW201344486A (en) Digital content security control medium, digital memory card, USB disk, and digital authentication terminal
CN106980807B (en) Identity card safety application system
TW201342869A (en) Digital content cloud storage and authentication method
KR101727582B1 (en) Evidence system and method to determine whether digital file is forged or falsified by using smart phone
Bexheti et al. Securely Storing and Sharing Memory Cues in Memory Augmentation Systems: A Practical Approach
KR101467402B1 (en) Method for managing fax data received through network and apparatus using the same
JP2013157777A (en) Information processing system and information processing method
TWI840837B (en) Management system for encrypted multimedia information and implementation method thereof
TW201342111A (en) Digital content authentication and security method
TW201342081A (en) Digital content cloud storage and authentication method
TW201342105A (en) Digital content authentication method
US20240184904A1 (en) Method and System for Managing at Least One Unique Data Record