TWI704794B - System and implement method for signing and verifying contract in a block chain network - Google Patents

System and implement method for signing and verifying contract in a block chain network Download PDF

Info

Publication number
TWI704794B
TWI704794B TW108111107A TW108111107A TWI704794B TW I704794 B TWI704794 B TW I704794B TW 108111107 A TW108111107 A TW 108111107A TW 108111107 A TW108111107 A TW 108111107A TW I704794 B TWI704794 B TW I704794B
Authority
TW
Taiwan
Prior art keywords
hash
sign
module
hash value
contract
Prior art date
Application number
TW108111107A
Other languages
Chinese (zh)
Other versions
TW202037109A (en
Inventor
黃敬博
謝宜達
Original Assignee
區塊科技股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 區塊科技股份有限公司 filed Critical 區塊科技股份有限公司
Priority to TW108111107A priority Critical patent/TWI704794B/en
Priority to CN202010228941.6A priority patent/CN111756543A/en
Application granted granted Critical
Publication of TWI704794B publication Critical patent/TWI704794B/en
Publication of TW202037109A publication Critical patent/TW202037109A/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3297Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving time stamps, e.g. generation of time stamps
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

一種基於區塊鏈的合約簽核與驗證系統及其實施方法,系統包括一雜湊模組、一加密模組及一驗證模組,其中,雜湊模組可對一電子合約簽核前後的合約內文與屬性資訊,分別執行雜湊演算,而計算出對應的一原始雜湊值與一簽核雜湊值;加密模組可對各簽核雜湊值以簽核端的私鑰進行數位簽章,而產生加密後的簽核雜湊值,而原始雜湊值、及加密後的簽核雜湊值皆被發佈至一區塊鏈網路;藉此,可使簽核前後的電子合約與其簽核過程皆具有不可否認性、不可偽造、不可逆等特性,且驗證模組更可對使用者所上傳的電子合約,進行驗證以確認合約的真偽。A blockchain-based contract signing and verification system and its implementation method. The system includes a hash module, an encryption module, and a verification module. The hash module can verify an electronic contract before and after signing an electronic contract. The text and attribute information respectively perform hash calculations to calculate a corresponding original hash value and a sign-off hash value; the encryption module can digitally sign each sign-off hash value with the private key of the sign-off end to generate encryption After signing the hash value, the original hash value and the encrypted signing hash value are published to a blockchain network; thereby, the electronic contract before and after the signing and its signing process are undeniable Features such as flexibility, unforgeability, and irreversibility, and the verification module can also verify the electronic contract uploaded by the user to confirm the authenticity of the contract.

Description

基於區塊鏈的合約簽核與驗證系統及其實施方法Block chain-based contract signing and verification system and its implementation method

本發明涉及網際網路技術領域,尤指一種應用區塊鏈技術(Blockchain),使簽核前後的電子合約與其簽核過程(Electronic Contracts)均具有不可否認性、不可偽造、不可逆改等特性,並可驗證合約真偽的「基於區塊鏈的合約簽核與驗證系統及其實施方法」。 The present invention relates to the field of Internet technology, in particular to an application of blockchain technology (Blockchain), so that the electronic contracts before and after signing and the signing process (Electronic Contracts) have the characteristics of non-repudiation, non-forgeability, and irreversible modification, etc. "Blockchain-based contract signing and verification system and its implementation method" that can verify the authenticity of the contract.

目前合約簽核主要透過雜湊演算法與公鑰密碼演算法對一電子合約進行加密與解密而實現,其中,雜湊演算法(hash function)主要依據一電子合約生成一簽核雜湊值(hash value),而公鑰密碼演算法(public-key cryptography)主要供發送端以自己的私鑰(private key)進行簽名,以基於該簽核雜湊值生成一電子簽核值(即加密後的簽核雜湊值),藉此,接收端得以發送端的公鑰(public key)進行解密,以驗證該電子簽核值確實是發送端所簽發的。 At present, contract signing is mainly realized by encrypting and decrypting an electronic contract through a hash algorithm and a public key cryptographic algorithm. Among them, the hash function is mainly based on an electronic contract to generate a hash value. , And public-key cryptography is mainly used by the sender to sign with its own private key to generate an electronic sign-off value based on the sign-off hash value (that is, the encrypted sign-off hash Value), whereby the receiving end can decrypt the public key of the sending end to verify that the electronic sign-off value is indeed issued by the sending end.

然而,在以上的習知合約簽核技術中,簽核前後的電子合約,因必須存放於一個中心化的第三方機構,以證明合約當事人雙方確實有對該電子合約完成簽核,但如此一來,若該第三方機構遭到有心人士入侵,則簽核前後的合約內容即可能遭到不當竄改,進而影響當事人雙方對第三方機構的信任;而相關的習知技術可參見中華民國發明專利公告案第TWI388184號「線上仿真簽名系統及方法」、中華民國發明專利公告案第TWI392321號「電子文檔數位簽核系統及方法」、美國發明專利公開案第US20080052519A1號「System and method for signing a contract electronically」等前案所揭。 However, in the above conventional contract signing technology, the electronic contract before and after the signing must be stored in a centralized third-party organization to prove that both parties to the contract have indeed completed the signing of the electronic contract. In the future, if the third-party organization is invaded by a person with intent, the content of the contract before and after the signing may be improperly tampered with, which will affect the trust of both parties to the third-party organization; and related known technologies can be found in the invention patents Announcement No. TWI388184 “Online Simulation Signature System and Method”, Republic of China Invention Patent Announcement No. TWI392321 “Electronic Document Digital Signing System and Method”, US Invention Patent Publication No. US20080052519A1 “System and method for signing a contract electronically" and other previous cases.

綜上可知,對於如何有效防止合約被不當竄改、隱藏或銷毀、如何確保合約的資料完整性、如何確保合約資料與其簽核過程的不可否認性與資料不可逆而言,目前的合約簽核技術仍有待改良。 In summary, in terms of how to effectively prevent the contract from being improperly altered, concealed or destroyed, how to ensure the integrity of the contract data, and how to ensure the non-repudiation and irreversibility of the contract data and its signing process, the current contract signing technology is still Needs to be improved.

有鑑於上述問題,本發明提供一種可讓合約具備資料完整性、不可否認性與資料不可逆改的特性、可防止合約內容被不當竄改、可提高合約簽核過程之可追溯性(Traceability)的「基於區塊鏈的合約簽核與驗證系統及其實施方法」。 In view of the above problems, the present invention provides a data integrity, non-repudiation, and data irreversible change characteristics of the contract, can prevent the content of the contract from being improperly modified, and can improve the traceability of the contract signing process (Traceability). Blockchain-based contract signing and verification system and its implementation method".

為達上述目的,本發明提供一種基於區塊鏈的合約簽核與驗證系統及其實施方法,系統主要包含:一處理模組、一通訊模組、一雜湊模組、一簽核模組及一加密模組,其中,雜湊模組供以對一電子合約的一內文資訊與一屬性資訊執行一雜湊演算,以計算出對應的一原始雜湊值;簽核模組供一簽核端裝置對電子合約進行一簽核作業,以生成一已簽核電子合約,簽核模組亦供一第二簽核端裝置對已簽核電子合約進行簽核作業,以生成一第二已簽核電子合約;雜湊模組亦供以對已簽核電子合約的內文資訊及屬性資訊皆執行一第二雜湊演算,以分別計算出對應的一簽核雜湊值,雜湊模組亦供以對第二已簽核電子合約的內文與屬性資訊執行第二雜湊演算,以分別計算出對應的一第二簽核雜湊值;加密模組供以對各簽核雜湊值以簽核端裝置的私鑰進行數位簽章(Digital Signature),而產生加密後的簽核雜湊值,加密模組亦供以對各第二簽核雜湊值以第二簽核端裝置的私鑰進行數位簽章,而分別產生加密後的第二簽核雜湊值;通訊模組則供以將各原始雜湊值、加密後的各簽核雜湊值以及加密後的各第二簽核雜湊值,發佈至一區塊鏈網路。 To achieve the above objective, the present invention provides a blockchain-based contract signing and verification system and its implementation method. The system mainly includes: a processing module, a communication module, a hash module, a sign-off module, and An encryption module, where the hash module is used to perform a hash calculation on a content information and an attribute information of an electronic contract to calculate a corresponding original hash value; the sign-off module is used for a sign-off end device Perform a sign-off operation on the electronic contract to generate a signed electronic contract. The sign-off module also allows a second sign-off end device to sign-off the signed electronic contract to generate a second signed electronic contract. Electronic contract; the hash module is also used to perform a second hash calculation on the content and attribute information of the signed electronic contract to calculate the corresponding hash value of the signature. The hash module also provides 2. Perform the second hash calculation on the content and attribute information of the signed electronic contract to calculate the corresponding second sign hash value; the encryption module is used to verify the private value of each sign device. The key is digitally signed (Digital Signature), and an encrypted sign-off hash value is generated. The encryption module is also used to digitally sign each second sign-off hash value with the private key of the second sign-off end device, and Generate encrypted second sign-off hash values; the communication module is used to publish each original hash value, each encrypted sign-off hash value, and each encrypted second sign-off hash value to a blockchain network.

本發明於一實施例中,若簽核端裝置執行簽核模組後,未於電子合約的簽核區產生一電子手寫簽名(例如產生”AAA”的電子手寫簽名),則不允許一第二簽核端裝置進行簽核作業(例如產生”BBB”的電子手寫簽名),而生成 一第二已簽核電子合約,且雜湊模組亦可對電子手寫簽名皆執行雜湊演算,以分別計算出一手寫簽名雜湊值後,發佈至區塊鏈網路。 In one embodiment of the present invention, if the sign-off end device does not generate an electronic handwritten signature in the sign-off area of the electronic contract after the sign-off module is executed (for example, an "AAA" electronic handwritten signature) is not allowed The second sign-off end device performs sign-off operations (such as generating an electronic handwritten signature of "BBB"), and A second signed electronic contract, and the hash module can also perform hash calculations on electronic handwritten signatures to calculate a handwritten signature hash value and publish it to the blockchain network.

本發明於一實施例中,雜湊模組亦可對簽核端裝置、第二簽核端裝置所發送的至少一生物特徵參數皆執行雜湊演算,以產生至少一生物特徵雜湊值,且關聯於簽核端裝置、第二簽核端裝置的生物特徵雜湊值皆可被發佈至區塊鏈網路。 In one embodiment of the present invention, the hash module can also perform hash calculation on at least one biometric parameter sent by the signer end device and the second signer end device to generate at least one biometric hash value, which is associated with Both the sign-off end device and the biometric hash value of the second sign-off end device can be published to the blockchain network.

承上,本發明所提供的合約簽核與驗證技術據以實施後,由於上述的雜湊值與加密後的雜湊值,皆可被發佈至可信度較高且去中心化的區塊鏈網路,且合約簽核的時間戳記在區塊鏈的紀錄中將無法竄改,故本案系統可達成讓電子合約的資料與簽核過程均不可逆改、難以被偽造與竄改,更不可被簽核端所否認的有益功效。 In summary, after the contract signing and verification technology provided by the present invention is implemented, due to the above hash value and the encrypted hash value, both can be published to a highly reliable and decentralized blockchain network And the time stamp of contract signing will not be tampered with in the record of the blockchain. Therefore, the system in this case can achieve irreversible modification of the electronic contract data and the signing process, difficult to be forged and tampered, and not to be signed. The beneficial effect denied.

為使 貴審查委員得以清楚了解本發明之目的、技術特徵及其實施後之功效,茲以下列說明搭配圖示進行說明,敬請參閱。 In order for your reviewer to have a clear understanding of the purpose, technical features and effects of the present invention after implementation, the following descriptions and illustrations are used for explanation, please refer to them.

10:基於區塊鏈的合約簽核與驗證系統 10: Blockchain-based contract signing and verification system

101:處理模組 101: Processing Module

102:通訊模組 102: Communication module

103:雜湊模組 103: Hash Module

104:簽核模組 104: Sign-off module

105:加密模組 105: encryption module

106:資料庫 106: database

107:驗證模組 107: Verification Module

20:簽核端裝置 20: Sign-off device

20’:第二簽核端裝置 20’: The second sign-off device

30:網路 30: Internet

40:區塊鏈網路 40: Blockchain network

50:驗證需求端裝置 50: Verify the demand side device

D1:電子合約 D1: Electronic contract

Hash(D1):原始雜湊值 Hash(D1): Original hash value

D2:已簽核電子合約 D2: Electronic contract has been signed

Hash(D2):簽核雜湊值 Hash(D2): sign-off hash value

En(Hash(D2)):加密後的簽核雜湊值 En(Hash(D2)): The signed hash value after encryption

Hash(D2,Biometrics):生物特徵雜湊值 Hash (D2, Biometrics): biometric hash value

D3:第二已簽核電子合約 D3: The second signed electronic contract

Hash(D3):第二簽核雜湊值 Hash(D3): hash value of the second sign

En(Hash(D3)):加密後的第二簽核雜湊值 En(Hash(D3)): The second sign-off hash value after encryption

Hash(D3,Biometrics):第二生物特徵雜湊值 Hash (D3, Biometrics): the second biometric hash value

D4:待驗證電子合約 D4: Electronic contract to be verified

Hash(D4):待驗證雜湊值 Hash(D4): hash value to be verified

S:基於區塊鏈的合約簽核與驗證系統的實施方法 S: Implementation method of contract signing and verification system based on blockchain

S1:接收簽核前的電子合約 S1: Receive the electronic contract before signing

S2:依據合約內文與屬性執行雜湊演算 S2: Perform hash calculation based on contract content and attributes

S3:接收已簽核的電子合約 S3: Receive the signed electronic contract

S4:依據合約內文與屬性執行第二雜湊演算 S4: Perform the second hash calculation based on the content and attributes of the contract

S5:對簽核雜湊值進行加密 S5: Encrypt the sign-off hash value

S6:發佈至區塊鏈網路 S6: Publish to the blockchain network

第1圖,為本發明之系統架構圖。 Figure 1 is a system architecture diagram of the present invention.

第2圖,為本發明之系統實施流程圖。 Figure 2 is a flowchart of the system implementation of the present invention.

第3圖,為本發明之資訊流示意圖(一)。 Figure 3 is a schematic diagram (1) of the information flow of the present invention.

第4圖,為本發明之資訊流示意圖(一)。 Figure 4 is a schematic diagram (1) of the information flow of the present invention.

第5圖,為本發明之另一實施例(一)之資訊流示意圖(一)。 Figure 5 is a schematic diagram (1) of the information flow of another embodiment (1) of the present invention.

第6圖,為本發明之另一實施例(一)之資訊流示意圖(二)。 Figure 6 is a schematic diagram (2) of the information flow of another embodiment (1) of the present invention.

第7圖,為本發明之另一實施例(二)之系統架構圖。 Figure 7 is a system architecture diagram of another embodiment (2) of the present invention.

第8圖,為本發明之另一實施例(二)之資訊流示意圖。 Figure 8 is a schematic diagram of the information flow of another embodiment (2) of the present invention.

第9圖,為本發明之另一實施例(三)之資訊流示意圖。 Figure 9 is a schematic diagram of the information flow of another embodiment (3) of the present invention.

請參閱「第1圖」,其為本發明之系統架構圖,本發明揭露一種基於區塊鏈的合約簽核與驗證系統10,供一簽核端裝置20透過一網路30建立資訊連結,系統包含:一處理模組101,一通訊模組102、一雜湊模組103、一簽核模組104及一加密模組105則分別耦接於處理模組101。 Please refer to "Figure 1", which is a system architecture diagram of the present invention. The present invention discloses a blockchain-based contract signing and verification system 10 for an approving end device 20 to establish an information link through a network 30. The system includes: a processing module 101, a communication module 102, a hash module 103, a sign-off module 104 and an encryption module 105 are respectively coupled to the processing module 101.

(1)處理模組101可運行基於區塊鏈的合約簽核與驗證系統10及控制上述各模組之執行,並具備邏輯運算、暫存運算結果、保存執行指令位置等功能,其可為一中央處理器(CPU)。 (1) The processing module 101 can run the blockchain-based contract signing and verification system 10 and control the execution of the above modules, and has functions such as logical operations, temporary storage of operation results, and storage of execution instruction positions. It can be A central processing unit (CPU).

(2)通訊模組102可與簽核端裝置20建立通訊連線,其中,網路30可為公眾或私人網路,如無線網路(例如3G、4G LTE、Wi-Fi)、有線網路、區域網路(LAN)、廣域網路(WA)等,惟並不以此為限。 (2) The communication module 102 can establish a communication connection with the sign-off end device 20. The network 30 can be a public or private network, such as a wireless network (for example, 3G, 4G LTE, Wi-Fi), and a wired network. Road, local area network (LAN), wide area network (WA), etc., but not limited to this.

(3)雜湊模組103可對一電子合約的一內文資訊與一屬性資訊執行一雜湊演算,以計算出對應的一原始雜湊值,其中,上述電子合約的內文與屬性資訊,其皆屬於一種明文(Cleartext)。 (3) The hash module 103 can perform a hash calculation on a content information and an attribute information of an electronic contract to calculate a corresponding original hash value. The content and attribute information of the above electronic contract are both Belongs to a clear text (Cleartext).

(4)簽核模組104可讓簽核端裝置20對電子合約進行一簽核作業,以生成一已簽核電子合約;其中,簽核模組104進行簽核作業的形式,可指於電子合約的一簽核區產生一電子簽名圖章或一電子手寫簽名。 (4) The sign-off module 104 can allow the sign-off end device 20 to perform a sign-off operation on the electronic contract to generate a signed electronic contract; among them, the form of the sign-off operation performed by the sign-off module 104 can refer to A sign-off area of the electronic contract generates an electronic signature stamp or an electronic handwritten signature.

(5)雜湊模組103亦可對已簽核電子合約的內文資訊與屬性資訊執行一第二雜湊演算,以計算出對應的一簽核雜湊值。 (5) The hash module 103 can also perform a second hash calculation on the content information and attribute information of the signed electronic contract to calculate a corresponding sign hash value.

(6)加密模組105可對各簽核雜湊值以簽核端裝置20的私鑰進行數位簽章,即執行一加密演算法(encryption algorithm),而產生加密後的簽核雜湊值,其皆屬於一種密文(Ciphertext)。 (6) The encryption module 105 can digitally sign each sign-off hash value with the private key of the sign-off end device 20, that is, execute an encryption algorithm to generate an encrypted sign-off hash value. All belong to a ciphertext (Ciphertext).

(7)資料庫106可儲存電子合約的內文資訊與屬性資訊、電子合約的原始雜湊值、已簽核電子合約的內文資訊與屬性資訊(明文)、已簽核電子合約的簽核雜湊值、及已簽核電子合約之加密後的簽核雜湊值。 (7) The database 106 can store the content information and attribute information of the electronic contract, the original hash value of the electronic contract, the content information and attribute information (plain text) of the signed electronic contract, and the signed hash of the signed electronic contract Value, and the signed hash value of the signed electronic contract after encryption.

(8)通訊模組102亦可將電子合約的原始雜湊值、已簽核電子合約之加密後的簽核雜湊值,均發佈至一區塊鏈網路40。 (8) The communication module 102 can also publish the original hash value of the electronic contract and the signed hash value of the signed electronic contract to a blockchain network 40.

其中,上述的屬性資訊可為簽核端裝置20的一使用者帳號、一簽核人名稱、一簽核時間、一簽核地點、一檔案修改時間、一檔案大小、一字元數、一行數、一段落數、一頁數、一檔案建立時間、一檔案編輯時間、一註解資訊之其中一種或其組合,但不以此為限。 Among them, the above-mentioned attribute information may be a user account of the approving terminal device 20, a name of an approver, an approving time, an approving location, a file modification time, a file size, a number of characters, and one line. One or a combination of number, paragraph number, page number, file creation time, file editing time, and annotation information, but not limited to this.

其中,上述的雜湊演算可為SHA-0、SHA-1、SHA-2、SHA-3、MD5、BLAKE2等單向散列演算法,但不以此為限。 Among them, the above-mentioned hash calculation can be one-way hash algorithms such as SHA-0, SHA-1, SHA-2, SHA-3, MD5, BLAKE2, but not limited to this.

其中,上述的加密演算法可為RSA、ECC、ElGamal、Rabin等公鑰密碼演算法,但不以此為限。 Among them, the aforementioned encryption algorithm may be RSA, ECC, ElGamal, Rabin, etc. public key cryptographic algorithms, but it is not limited to this.

其中,上述電子合約的格式可為PDF、DOC或XLS格式,但不以此為限。 Among them, the format of the above electronic contract can be PDF, DOC or XLS format, but it is not limited to this.

其中,上述的簽核端裝置20可為一工作站、一個人電腦、一筆記型電腦、一智慧型手機等裝置,但不以此為限。 The above-mentioned sign-off device 20 can be a workstation, a personal computer, a notebook computer, a smart phone, etc., but is not limited to this.

其中,基於區塊鏈的合約簽核與驗證系統10得以網路服務(web service)作為與網路30之溝通介面。 Among them, the blockchain-based contract signing and verification system 10 uses a web service as a communication interface with the network 30.

請參閱「第2圖」,其為本發明之系統實施流程圖,並請搭配參閱「第3圖」~「第4圖」之資訊流示意圖、及「第1圖」,本發明揭露一種基於區塊鏈的合約簽核與驗證系統的實施方法S,包含以下步驟: Please refer to "Figure 2", which is the flow chart of the system implementation of the present invention. Please also refer to the information flow diagrams of "Figure 3" ~ "Figure 4" and "Figure 1". The present invention discloses a system based on The implementation method S of the blockchain contract signing and verification system includes the following steps:

(1)接收簽核前的電子合約(步驟S1):一通訊模組102透過一網路30將一電子合約D1發送至一簽核端裝置20; (1) Receive an electronic contract before signing (step S1): a communication module 102 sends an electronic contract D1 to an approving terminal device 20 through a network 30;

(2)依據合約內文與屬性執行雜湊演算(步驟S2):一雜湊模組103對電子合約D1的一內文資訊與一屬性資訊分別執行一雜湊演算,以計算出對應的原始雜湊值Hash(D1),且其可分別為對應於內文資訊的雜湊值Hash(D1,Content)及對應於屬性資訊的雜湊值Hash(D1,Attribute),即如「第4圖」所示; (2) Perform a hash calculation based on the content and attributes of the contract (step S2): a hash module 103 performs a hash calculation on a content information and an attribute information of the electronic contract D1 to calculate the corresponding original hash value Hash (D1), and it can be the hash value Hash(D1,Content) corresponding to the content information and the hash value Hash(D1,Attribute) corresponding to the attribute information, as shown in "Figure 4";

(3)接收已簽核的電子合約(步驟S3):通訊模組102從簽核端裝置20接收其完成簽核的一已簽核電子合約D2,另,本實施例於較佳情況下,本步驟執行時,已簽核電子合約D2的形式,為簽核端裝置20執行一簽核模組104後,於電子合約D1的一簽核區產生一電子簽名圖章或一電子手寫簽名,即如「第4圖」所示的「AAA」,並可儲存至資料庫106。 (3) Receive a signed electronic contract (step S3): The communication module 102 receives an signed electronic contract D2 from the sign-off end device 20, which has been signed. In addition, in this embodiment, in a better case, When this step is executed, the form of the signed electronic contract D2 is that after the sign-off end device 20 executes a sign-off module 104, an electronic signature stamp or an electronic handwritten signature is generated in an sign-off area of the electronic contract D1, namely Such as "AAA" shown in "Figure 4", and can be stored in the database 106.

(4)依據合約內文與屬性執行第二雜湊演算(步驟S4):一雜湊模組103對已簽核電子合約D2的內文資訊與屬性資訊執行一第二雜湊演算,以計算出對應的簽核雜湊值Hash(D2),且其可分別為對應於內文資訊的雜湊值Hash(D2,Content)與對應於屬性資訊的雜湊值Hash(D2,Attribute),即如「第4圖」所示; (4) Perform a second hash calculation based on the content and attributes of the contract (step S4): A hash module 103 performs a second hash calculation on the content and attribute information of the signed electronic contract D2 to calculate the corresponding Sign the hash value Hash(D2), and it can be the hash value Hash(D2,Content) corresponding to the content information and the hash value Hash(D2,Attribute) corresponding to the attribute information, as shown in "Figure 4" Shown

(5)對簽核雜湊值進行加密(步驟S5):一加密模組105對各簽核雜湊值Hash(D2)以簽核端裝置20的私鑰進行數位簽章,而產生加密後的簽核雜湊值En(Hash(D2)),且其可分別為對應於內文資訊的已加密雜湊值En(Hash(D2,Content))與對應於屬性資訊的已加密 雜湊值En(Hash(D2,Attribute)),即如「第4圖」所示; (5) Encrypt the sign-off hash value (step S5): an encryption module 105 digitally signs each sign-off hash value Hash (D2) with the private key of the sign-off end device 20, and generates an encrypted signature The kernel hash value En(Hash(D2)), and it can be respectively the encrypted hash value En(Hash(D2,Content)) corresponding to the content information and the encrypted hash value En(Hash(D2) corresponding to the attribute information ,Attribute)), as shown in "Figure 4";

(6)發佈至區塊鏈網路(步驟S6):通訊模組102將電子合約D1的各原始雜湊值Hash(D1)、已簽核電子合約D2之加密後的各簽核雜湊值En(Hash(D2)),發佈至一區塊鏈網路40的N個網路節點,即「第4圖」所示的「上鏈」。 (6) Publish to the blockchain network (step S6): The communication module 102 converts the original hash value Hash(D1) of the electronic contract D1 and the signed hash value En( Hash(D2)), published to the N network nodes of a blockchain network 40, that is, "on the chain" shown in "Figure 4".

請參閱「第5圖」~「第6圖」之本發明之另一實施例(一)之資訊流示意圖,並請搭配參閱「第1圖」,本實施例與「第1圖」至「第4圖」所示的技術類同,主要差異在於: Please refer to "Figure 5" ~ "Figure 6" for a schematic diagram of the information flow of another embodiment (1) of the present invention, and please refer to "Figure 1" in conjunction with this embodiment and "Figure 1" to " The technologies shown in Figure 4 are similar, but the main differences are:

(1)步驟S4執行時(依據合約內文與屬性執行第二雜湊演算),雜湊模組103更可提取一第二簽核端裝置20’所完成簽核的一第二已簽核電子合約D3,再對第二已簽核電子合約D3的內文資訊與屬性資訊執行第二雜湊演算,以計算出對應的一第二簽核雜湊值Hash(D3),其可為分別對應於內文資訊的雜湊值Hash(D3,Content)與對應於屬性資訊的雜湊值Hash(D3,Attribute)。 (1) When step S4 is executed (execute the second hash calculation based on the contract content and attributes), the hash module 103 can also extract a second signed electronic contract that has been signed by a second signer device 20' D3. Perform a second hash calculation on the content information and attribute information of the second signed electronic contract D3 to calculate a corresponding second signed hash value Hash(D3), which can be respectively corresponding to the content The hash value Hash (D3, Content) of the information and the hash value Hash (D3, Attribute) corresponding to the attribute information.

(2)步驟S5執行時(對簽核雜湊值進行加密),加密模組105更可對各第二簽核雜湊值Hash(D3)以第二簽核端裝置20’的私鑰進行數位簽章,以產生加密後的第二簽核雜湊值En(Hash(D3)),其可為分別對應於內文資訊的 已加密雜湊值En(Hash(D3,Content))與對應於屬性資訊的已加密雜湊值En(Hash(D3,Attribute))。 (2) When step S5 is executed (encrypting the sign-off hash value), the encryption module 105 can further digitally sign each second sign-off hash value Hash (D3) with the private key of the second sign-off end device 20' Chapter, to generate the encrypted second sign-off hash value En(Hash(D3)), which can be the encrypted hash value En(Hash(D3,Content)) corresponding to the content information and the attribute information Encrypted hash value En(Hash(D3,Attribute)).

(3)承上,步驟S6執行時(發佈至區塊鏈網路),通訊模組102亦可將加密後的各第二簽核雜湊值En(Hash(D3))發佈至區塊鏈網路40。 (3) Continuing, when step S6 is executed (published to the blockchain network), the communication module 102 can also publish the encrypted second sign-off hash value En(Hash(D3)) to the blockchain network Road 40.

另,本實施例於較佳情況下,步驟S4執行前(依據合約內文與屬性執行第二雜湊演算),若簽核端裝置20執行簽核模組104後,未於電子合約D1的簽核區產生一電子手寫簽名,即如「第6圖」所示的「AAA」,則處理模組101不允許第二簽核端裝置20’使用簽核模組104,於已簽核電子合約D2的一第二簽核區進行簽核作業,即不允許於已簽核電子合約D2的一第二簽核區產生另一電子手寫簽名,而產生第二已簽核電子合約D2,並儲存至資料庫106,即如「第6圖」所示的「BBB」,另,雜湊模組103亦可對簽核端裝置20的電子手寫簽名、第二簽核端裝置20’的電子手寫簽名執行雜湊演算,以計算出一手寫簽名雜湊值,且前述的各手寫簽名雜湊值可由通訊模組102發佈至區塊鏈網路40,藉此,由於各手寫簽名雜湊值可被儲存於區塊鏈網路40,故簽核端裝置20及第二簽核端裝置20’將更無法否認電子合約係由其所簽核。 In addition, in this embodiment, in a preferred case, before step S4 is executed (the second hash calculation is performed according to the contract content and attributes), if the sign-off end device 20 executes the sign-off module 104, the electronic contract D1 is not signed If the verification area generates an electronic handwritten signature, that is, "AAA" as shown in "Figure 6", the processing module 101 does not allow the second sign-off end device 20' to use the sign-off module 104 when the electronic contract has been signed A second sign-off area of D2 performs the sign-off operation, that is, it is not allowed to generate another electronic handwritten signature in a second sign-off area of the signed electronic contract D2, and the second signed electronic contract D2 is generated and stored To the database 106, that is, "BBB" as shown in "Figure 6". In addition, the hash module 103 can also perform the electronic handwritten signature of the signer device 20 and the electronic handwritten signature of the second signer device 20' Perform hash calculation to calculate a handwritten signature hash value, and each of the aforementioned handwritten signature hash values can be issued to the blockchain network 40 by the communication module 102, whereby each handwritten signature hash value can be stored in the block The chain network 40, therefore, the signer device 20 and the second signer device 20' will not deny that the electronic contract is signed by them.

請參閱「第7圖」,其為本發明之另一實施例(二)之系統架構圖,並請搭配參閱「第1圖」,本實施例與「第 5圖~第6圖」所示實施例之技術類同,主要差異在於,本發明所揭露之基於區塊鏈的合約簽核與驗證系統10,其更可包括耦接於處理模組101的一驗證模組107,請繼續參閱「第8圖」,其為本發明之另一實施例(二)之資訊流示意圖,本實施例據以實施時,驗證模組107可將通訊模組102從一驗證需求端裝置50所接收的一待驗證電子合約D4,作為一輸入參數,並使處理模組101驅動雜湊模組103對待驗證電子合約D4的內文資訊與屬性資訊分別執行雜湊演算,以產生一待驗證雜湊值Hash(D4),且其可為分別對應於內文資訊的雜湊值Hash(D4,Content)與對應於屬性資訊的雜湊值Hash(D4,Attribute),其後,驗證模組107可對儲存於區塊鏈網路40之加密後的各第二簽核雜湊值En(Hash(D3)),依據第二簽核端裝置20’的公鑰(由第二簽核端裝置20’所發出)進行解密,以解密出對應的第二簽核雜湊值Hash(D3),其後,驗證模組107將待驗證雜湊值Hash(D4)與第二簽核雜湊值Hash(D3)進行比較,即可驗證待驗證電子合約D4是否確實由第二簽核端裝置20’所簽核,同時可驗證待驗證電子合約D4的合約內容相較於第二已簽核電子合約D3,是否有遭到不當竄改。 Please refer to "Figure 7", which is a system architecture diagram of another embodiment (2) of the present invention, and please refer to "Figure 1" together. The technologies of the embodiments shown in Figures 5 to 6 are the same. The main difference is that the blockchain-based contract signing and verification system 10 disclosed in the present invention may further include a processing module 101 A verification module 107, please continue to refer to "Figure 8", which is a schematic diagram of the information flow of another embodiment (2) of the present invention. When this embodiment is implemented, the verification module 107 can connect the communication module 102 A to-be-verified electronic contract D4 received from a verification request-side device 50 is used as an input parameter, and the processing module 101 drives the hash module 103 to perform hash calculations on the content information and attribute information of the electronic contract D4 to be verified respectively. To generate a hash value Hash(D4) to be verified, and it can be a hash value Hash(D4,Content) corresponding to the content information and a hash value Hash(D4,Attribute) corresponding to the attribute information, and then verify The module 107 can perform encryption on each second sign-off hash value En(Hash(D3)) stored in the blockchain network 40 according to the public key of the second sign-off end device 20' (by the second sign-off Sent by the end device 20') perform decryption to decrypt the corresponding second sign-off hash value Hash (D3), and then, the verification module 107 will verify the hash value Hash (D4) and the second sign-off hash value Hash (D3) For comparison, it can be verified whether the electronic contract D4 to be verified is actually signed by the second signatory terminal device 20', and the contract content of the electronic contract to be verified D4 can be verified compared to the second signed electronic contract D3, is there any improper tampering?

另,本實施例亦可適用於「第1圖~第4圖」所示的實施例,本實施例據以實施時,當雜湊模組103產生待驗證雜湊值Hash(D4)後,驗證模組107可對儲存於區塊鏈網路40之加密後的各簽核雜湊值En(Hash(D2)),依據簽 核端裝置20的公鑰進行解密,以解密出對應的簽核雜湊值Hash(D2),其後,驗證模組107將待驗證雜湊值Hash(D4)與簽核雜湊值Hash(D2)進行比較,即可驗證待驗證電子合約D4是否確實由簽核端裝置20所簽核,同時可驗證待驗證電子合約D4的合約內容相較於已簽核電子合約D2,是否有遭到不當竄改。 In addition, this embodiment can also be applied to the embodiment shown in "Figures 1 to 4". When this embodiment is implemented according to this embodiment, after the hash module 103 generates the hash value Hash (D4) to be verified, the verification module The group 107 can perform the encrypted hash value En(Hash(D2)) stored in the blockchain network 40 according to the signature The public key of the core device 20 decrypts to decrypt the corresponding sign-off hash value Hash(D2), and then, the verification module 107 performs the verification of the hash value Hash(D4) and the sign-off hash value Hash(D2) By comparison, it can be verified whether the electronic contract D4 to be verified is actually signed by the approving end device 20, and it can be verified whether the contract content of the electronic contract D4 to be verified is improperly tampered with compared to the signed electronic contract D2.

請參閱「第9圖」,其為本發明之另一實施例(三)之資訊流示意圖,並請搭配參閱「第1圖」,本實施例與「第5圖~第6圖」所示實施例之技術類同,主要差異在於,本發明之基於區塊鏈的合約簽核與驗證系統10的資料庫106,更可儲存簽核端裝置20與第二簽核端裝置20所發送的至少一生物特徵參數,故本實施例據以實施時,雜湊模組103可對關聯於已簽核電子合約D2、及簽核端裝置20的生物特徵參數執行雜湊演算,以產生一生物特徵雜湊值Hash(D2,Biometrics),且生物特徵雜湊值Hash(D2,Biometrics)可由通訊模組102發佈至區塊鏈網路40,藉此,由於生物特徵雜湊值Hash(D2,Biometrics)可和加密後的簽核雜湊值En(Hash(D2))一同被儲存於區塊鏈網路40,故簽核端裝置20將更無法否認已簽核電子合約D2係由其所簽核。 Please refer to "Figure 9", which is a schematic diagram of the information flow of another embodiment (3) of the present invention. Please also refer to "Figure 1" for this embodiment and "Figures 5 to 6". The embodiments are similar in technology, and the main difference is that the database 106 of the blockchain-based contract signing and verification system 10 of the present invention can also store the data sent by the signer device 20 and the second signer device 20 At least one biometric parameter. Therefore, when this embodiment is implemented, the hash module 103 can perform a hash calculation on the biometric parameters associated with the signed electronic contract D2 and the approving terminal device 20 to generate a biometric hash The value Hash (D2, Biometrics), and the biometric hash value Hash (D2, Biometrics) can be issued to the blockchain network 40 by the communication module 102, whereby the biometric hash value Hash (D2, Biometrics) can be encrypted The later sign-off hash value En(Hash(D2)) is also stored in the blockchain network 40, so the sign-off end device 20 cannot deny that the signed electronic contract D2 was signed by it.

承上,請繼續參閱「第9圖」,同樣地,本實施例據以實施時,雜湊模組103亦可對關聯於已簽核電子合約 D3、及第二簽核端裝置20’的生物特徵參數執行雜湊演算,以產生一第二生物特徵雜湊值Hash(D3,Biometrics),且第二生物特徵雜湊值Hash(D3,Biometrics)也可被通訊模組102發佈至區塊鏈網路40,藉此,由於第二生物特徵雜湊值Hash(D3,Biometrics)可和加密後的第二簽核雜湊值En(Hash(D3))一同被儲存於區塊鏈網路40,故第二簽核端裝置20’將更無法否認第二已簽核電子合約D3係由其所簽核。 In continuation, please continue to refer to "Figure 9". Similarly, when this embodiment is implemented, the hash module 103 can also be associated with the signed electronic contract D3, and the biometric parameters of the second approving terminal device 20' perform hash calculation to generate a second biometric hash value Hash (D3, Biometrics), and the second biometric hash value Hash (D3, Biometrics) can also be used It is published by the communication module 102 to the blockchain network 40, whereby the second biometric hash value Hash(D3, Biometrics) can be combined with the encrypted second sign-off hash value En(Hash(D3)) It is stored in the blockchain network 40, so the second approving end device 20' cannot deny that the second signed electronic contract D3 was signed by it.

其中,上述的生物特徵參數可為一指紋影像、一臉部影像、一虹膜影像等影像的原始資料,但不以此為限。 Among them, the above-mentioned biometric parameter can be the original data of a fingerprint image, a face image, an iris image, etc., but is not limited to this.

綜上可知,本案所揭的合約簽核與驗證技術據以實施後,從尚未被簽核的電子合約開始,到已被簽核端裝置、或第二簽核端裝置完成簽核的電子合約的所有簽核過程,均可記錄在具有去中心化特性的區塊鏈網路,而不會固定保存在某一方的手上,使合約當事人雙方在法律上更加平等,同時能確保電子合約的內容均不會被竄改、隱藏或銷毀,同時讓儲存於區塊鏈的電子合約與其簽核過程皆具備不可否認及不可逆改的特性。 In summary, after the contract signing and verification technology disclosed in this case is implemented, it starts from the electronic contract that has not yet been signed to the electronic contract that has been signed by the sign-off end device or the second sign-off end device. All the sign-off process of the contract can be recorded in the blockchain network with decentralized characteristics, and will not be stored in the hands of one party, so that the parties to the contract are more legally equal, while ensuring the electronic contract The content will not be tampered with, concealed or destroyed. At the same time, the electronic contract stored on the blockchain and its signing process are both undeniable and irreversible.

以上所述者,僅為本發明之較佳之實施例而已,並非用以限定本發明實施之範圍;任何熟習此技藝者,在 不脫離本發明之精神與範圍下所作之均等變化與修飾,皆應涵蓋於本發明之專利範圍內。 The above are only the preferred embodiments of the present invention, and are not intended to limit the scope of implementation of the present invention; anyone who is familiar with this technique, Equal changes and modifications made without departing from the spirit and scope of the present invention should all be covered by the patent scope of the present invention.

綜上所述,本發明係具有「產業利用性」、「新穎性」與「進步性」等專利要件;申請人爰依專利法之規定,向 鈞局提起發明專利之申請。 In summary, the present invention has patent requirements such as "industrial applicability", "novelty" and "advancedness"; the applicant filed an application for a patent for invention with the Bureau in accordance with the provisions of the Patent Law.

10:基於區塊鏈的合約簽核與驗證系統 10: Blockchain-based contract signing and verification system

101:處理模組 101: Processing Module

102:通訊模組 102: Communication module

103:雜湊模組 103: Hash Module

104:簽核模組 104: Sign-off module

105:加密模組 105: encryption module

106:資料庫 106: database

20:簽核端裝置 20: Sign-off device

30:網路 30: Internet

40:區塊鏈網路 40: Blockchain network

Claims (8)

一種基於區塊鏈的合約簽核與驗證系統,包含:一處理模組,一通訊模組、一雜湊模組、一簽核模組及一加密模組分別耦接於該處理模組,該處理模組供以控制上述各模組;該雜湊模組供以對一電子合約的一內文資訊與一屬性資訊執行一雜湊演算,以計算出對應的一原始雜湊值;該簽核模組供一簽核端裝置對該電子合約進行一簽核作業,以生成一已簽核電子合約,該簽核模組亦供一第二簽核端裝置對該已簽核電子合約進行該簽核作業,以生成一第二已簽核電子合約;該雜湊模組亦供以對該已簽核電子合約的該內文資訊與該屬性資訊執行一第二雜湊演算,以計算出對應的一簽核雜湊值,該雜湊模組亦供以對該第二已簽核電子合約的該內文資訊與該屬性資訊執行該第二雜湊演算,以分別計算出對應的一第二簽核雜湊值;該加密模組供以對各該簽核雜湊值以該簽核端裝置的私鑰進行數位簽章,而產生加密後的該簽核雜湊值;該加密模組亦供以對各該第二簽核雜湊值以該第二簽核端裝置的私鑰進行數位簽章,而分別產生加密後的該第二簽核雜湊值;以及 該通訊模組供以將各該原始雜湊值、加密後的各該簽核雜湊值以及加密後的各該第二簽核雜湊值,發佈至一區塊鏈網路。 A blockchain-based contract signing and verification system, comprising: a processing module, a communication module, a hash module, a signing module and an encryption module are respectively coupled to the processing module, the The processing module is used to control the above-mentioned modules; the hash module is used to perform a hash calculation on a content information and an attribute information of an electronic contract to calculate a corresponding original hash value; the sign-off module For a sign-off end device to perform a sign-off operation on the electronic contract to generate an signed electronic contract, the sign-off module is also used by a second sign-off end device to sign the signed electronic contract Operation to generate a second signed electronic contract; the hash module is also used to perform a second hash calculation on the content and attribute information of the signed electronic contract to calculate the corresponding one To verify the hash value, the hash module is also used to perform the second hash calculation on the content information and the attribute information of the second signed electronic contract to calculate a corresponding second sign hash value; The encryption module is used to digitally sign each of the sign-off hash values with the private key of the sign-off end device to generate the encrypted sign-off hash value; the encryption module is also used to verify each second The sign-off hash value is digitally signed with the private key of the second sign-off end device to generate the encrypted second sign-off hash value; and The communication module is used for publishing each original hash value, each encrypted signoff hash value, and each encrypted second signoff hash value to a blockchain network. 如請求項1的基於區塊鏈的合約簽核與驗證系統,其中,若該簽核端裝置未於該電子合約產生一電子手寫簽名,則不允許該第二簽核端裝置使用該簽核模組進行該簽核作業,且該雜湊模組亦供以對該電子手寫簽名執行該雜湊演算,以計算一手寫簽名雜湊值,該手寫簽名雜湊值係供以發佈至該區塊鏈網路。 For example, the blockchain-based contract sign-off and verification system of claim 1, wherein if the sign-off end device does not generate an electronic handwritten signature in the electronic contract, the second sign-off end device is not allowed to use the sign-off The module performs the sign-off operation, and the hash module is also used to perform the hash calculation on the electronic handwritten signature to calculate a handwritten signature hash value, and the handwritten signature hash value is for publishing to the blockchain network . 如請求項1的基於區塊鏈的合約簽核與驗證系統,其中,該雜湊模組亦供以對該簽核端裝置、或該第二簽核端裝置所發送的至少一生物特徵參數執行該雜湊演算,以產生至少一生物特徵雜湊值,且關聯於該簽核端裝置、或該第二簽核端裝置的該生物特徵雜湊值係供以發佈至該區塊鏈網路。 For example, the blockchain-based contract signing and verification system of claim 1, wherein the hash module is also used to execute at least one biometric parameter sent by the signer device or the second signer device The hash calculation generates at least one biometric hash value, and the biometric hash value associated with the sign-off end device or the second sign-off end device is for publishing to the blockchain network. 如請求項1的基於區塊鏈的合約簽核與驗證系統,更包括耦接於該處理模組的一驗證模組,該驗證模組供以輸入該通訊模組從一驗證需求端裝置所接收的一待驗證電子合約,使該雜湊模組對該待驗證電子合約的內文與屬性資訊分別執行雜湊演算,以分別產生對應於內文與屬性資訊的一待驗證雜湊值,該驗證模組亦供以對儲存 於該區塊鏈網路之加密後的各該第二簽核雜湊值進行解密,以進一步將該待驗證雜湊值與解密後的該第二簽核雜湊值進行比較,以驗證該待驗證電子合約是否確實由該第二簽核端裝置所簽核,以及驗證該待驗證電子合約的合約內容,相較於儲存於該區塊鏈網路的該第二已簽核電子合約,是否遭到竄改。 For example, the blockchain-based contract signing and verification system of claim 1, further includes a verification module coupled to the processing module, and the verification module is used to input the communication module from a verification request-side device A received electronic contract to be verified causes the hash module to perform hash calculations on the content and attribute information of the electronic contract to be verified to respectively generate a hash value to be verified corresponding to the content and attribute information. The verification module Group is also available for storage Each of the encrypted second sign-off hash values of the blockchain network is decrypted to further compare the to-be-verified hash value with the decrypted second sign-off hash value to verify the to-be-verified electronic Whether the contract is actually signed by the second signatory end device, and whether the contract content of the electronic contract to be verified is verified compared to the second signed electronic contract stored in the blockchain network. Tamper. 一種基於區塊鏈的合約簽核與驗證系統的實施方法,包括:一依據合約內文與屬性執行雜湊演算步驟:一雜湊模組對該電子合約的一內文資訊與一屬性資訊執行一雜湊演算,以計算出對應的一原始雜湊值;一依據合約內文與屬性執行第二雜湊演算步驟:該雜湊模組提取一簽核端裝置所完成簽核的一已簽核電子合約,再對該已簽核電子合約的該內文資訊與該屬性資訊執行一第二雜湊演算,以計算出對應的一簽核雜湊值,該雜湊模組更提取一第二簽核端裝置對該已簽核電子合約進行簽核後的一第二已簽核電子合約,再對該第二已簽核電子合約的該內文資訊與該屬性資訊執行該第二雜湊演算,以計算出對應的一第二簽核雜湊值;一對簽核雜湊值進行加密步驟:一加密模組對各該簽核雜湊值以該簽核端裝置的私鑰進行數位簽章,而產生加密後的該簽核雜湊值,該加密模組亦對各該第二簽核雜湊 值以該第二簽核端裝置的私鑰進行數位簽章,以分別產生加密後的該第二簽核雜湊值;以及一發佈至區塊鏈網路步驟:一通訊模組將各該原始雜湊值、加密後的各該簽核雜湊值以及各該第二簽核雜湊值,發佈至一區塊鏈網路。 A method for implementing a blockchain-based contract signing and verification system includes: a hash calculation step based on the content and attributes of the contract: a hash module performs a hash on a content information and an attribute information of the electronic contract Calculation to calculate the corresponding original hash value; one executes the second hash calculation step according to the content and attributes of the contract: the hash module extracts a signed electronic contract that has been signed by the sign-off end device, and then The content information and the attribute information of the signed electronic contract perform a second hash calculation to calculate a corresponding sign-off hash value, and the hash module further extracts a second sign-off end device for the signed A second signed electronic contract after the signed electronic contract is verified, and then the second hash calculation is performed on the content information and the attribute information of the second signed electronic contract to calculate the corresponding one Two sign-off hash values; a pair of sign-off hash values are encrypted. Steps: an encryption module digitally signs each sign-off hash value with the private key of the sign-off end device to generate the encrypted sign-off hash Value, the encryption module also hashes each of the second signatories The value is digitally signed with the private key of the second sign-off end device to generate the encrypted second sign-off hash value; and a step of publishing to the blockchain network: a communication module sends each original The hash value, the encrypted hash value of each signature, and the hash value of each second signature are published to a blockchain network. 如請求項5的基於區塊鏈的合約簽核與驗證系統的實施方法,其中,該依據合約內文與屬性執行第二雜湊演算步驟執行前,若該簽核端裝置未於該電子合約產生一電子手寫簽名,則不允許該第二簽核端裝置執行簽核作業而產生該第二已簽核電子合約,且該雜湊模組可對該電子手寫簽名執行該雜湊演算,以計算一手寫簽名雜湊值,該手寫簽名雜湊值於該發佈至區塊鏈網路步驟執行時被發佈至該區塊鏈網路。 For example, the implementation method of the blockchain-based contract signing and verification system of claim 5, wherein, before the execution of the second hash calculation step according to the content and attributes of the contract, if the sign-off end device is not generated in the electronic contract An electronic handwritten signature does not allow the second approving end device to perform an approving operation to generate the second signed electronic contract, and the hash module can perform the hash calculation on the electronic handwritten signature to calculate a handwritten signature Signature hash value, the handwritten signature hash value is published to the blockchain network when the step of publishing to the blockchain network is executed. 如請求項5的基於區塊鏈的合約簽核與驗證系統的實施方法,其中,該依據合約內文與屬性執行第二雜湊演算步驟執行時,該雜湊模組更對該簽核端裝置、或該第二簽核端裝置所發送的至少一生物特徵參數執行該雜湊演算,以產生至少一生物特徵雜湊值,且關聯於該簽核端裝置、或該第二簽核端裝置的該生物特徵雜湊值,係於該發佈至區塊鏈網路步驟執行時,被發佈至該區塊鏈網路。 For example, the implementation method of the blockchain-based contract signing and verification system of claim 5, wherein, when the second hash calculation step is executed according to the content and attributes of the contract, the hash module further performs the verification end device, Or the at least one biometric parameter sent by the second signer end device performs the hash calculation to generate at least one biometric hash value, which is associated with the signer end device or the biological feature of the second signer end device The feature hash value is released to the blockchain network when the step of publishing to the blockchain network is executed. 如請求項5的基於區塊鏈的合約簽核與驗證系統的實施方法,一驗證模組使該雜湊模組對一待驗證電子合約的內文與屬性資訊分別執行雜湊演算,以分別產生對應於內文與屬性資訊的一待驗證雜湊值,該驗證模組亦對儲存於該區塊鏈網路之加密後的各該第二簽核雜湊值進行解密,進一步將該待驗證雜湊值與解密後的該第二簽核雜湊值進行比較,以驗證該待驗證電子合約是否確實由該第二簽核端裝置所簽核,以及驗證該待驗證電子合約的合約內容,相較於儲存於該區塊鏈網路的該第二已簽核電子合約,是否遭到竄改。For example, in the implementation method of the blockchain-based contract signing and verification system of claim 5, a verification module causes the hash module to perform hash calculations on the content and attribute information of an electronic contract to be verified to respectively generate corresponding For a hash value to be verified in the text and attribute information, the verification module also decrypts each encrypted second sign-off hash value stored in the blockchain network, and further the hash value to be verified is combined with The decrypted second sign-off hash value is compared to verify whether the electronic contract to be verified is actually signed by the second sign-off end device, and to verify that the contract content of the electronic contract to be verified is compared to stored in Whether the second signed electronic contract of the blockchain network has been tampered with.
TW108111107A 2019-03-29 2019-03-29 System and implement method for signing and verifying contract in a block chain network TWI704794B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
TW108111107A TWI704794B (en) 2019-03-29 2019-03-29 System and implement method for signing and verifying contract in a block chain network
CN202010228941.6A CN111756543A (en) 2019-03-29 2020-03-27 Contract signing and verifying system based on block chain and implementation method thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW108111107A TWI704794B (en) 2019-03-29 2019-03-29 System and implement method for signing and verifying contract in a block chain network

Publications (2)

Publication Number Publication Date
TWI704794B true TWI704794B (en) 2020-09-11
TW202037109A TW202037109A (en) 2020-10-01

Family

ID=72673164

Family Applications (1)

Application Number Title Priority Date Filing Date
TW108111107A TWI704794B (en) 2019-03-29 2019-03-29 System and implement method for signing and verifying contract in a block chain network

Country Status (2)

Country Link
CN (1) CN111756543A (en)
TW (1) TWI704794B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI745103B (en) * 2020-09-28 2021-11-01 尚承科技股份有限公司 System and method for safely transmitting electronic information

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101930825B1 (en) * 2017-01-23 2018-12-19 주식회사 데일리인텔리전스 System and method for authenticating users and synchronizing blocks using a block-chain network
US20190005470A1 (en) * 2015-10-16 2019-01-03 Coinplug, Inc. Accredited certificate issuance system based on block chain and accredited certificate issuance method based on block chain using same, and accredited certificate authentication system based on block chain and accredited certificate authentication method based on block chain using same
US20190013931A1 (en) * 2015-09-11 2019-01-10 Aware, Inc. Biometric verification of a blockchain database transaction contributor

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103679436B (en) * 2013-12-17 2018-08-14 重庆邮电大学 A kind of electronic contract security system and method based on biological information identification
CN107209821B (en) * 2014-08-18 2018-08-14 巴拉兹·奇克 Method and authentication method for being digitally signed to electronic document
CN105591750B (en) * 2015-10-30 2018-12-25 中国银联股份有限公司 The generation method that signs electronically and system
CN106485168A (en) * 2016-10-17 2017-03-08 成都知道创宇信息技术有限公司 A kind of method whether being modified using MD5 value checking contract documents
CN106570681A (en) * 2016-10-28 2017-04-19 山东明和软件有限公司 Anti-tampering private fund electronic contract signing system and method based on block chain
US10541818B2 (en) * 2017-04-19 2020-01-21 International Business Machines Corporation Decentralized biometric signing of digital contracts
CN108833115B (en) * 2018-06-15 2021-01-26 中山大学 Multi-party fair PDF (Portable document Format) contract signing method based on block chain
CN108898389B (en) * 2018-06-26 2021-05-18 创新先进技术有限公司 Content verification method and device based on block chain and electronic equipment
CN109035024A (en) * 2018-08-15 2018-12-18 杭州链汇通区块链科技有限公司 Method, system and the storage medium of electronic signature

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20190013931A1 (en) * 2015-09-11 2019-01-10 Aware, Inc. Biometric verification of a blockchain database transaction contributor
US20190005470A1 (en) * 2015-10-16 2019-01-03 Coinplug, Inc. Accredited certificate issuance system based on block chain and accredited certificate issuance method based on block chain using same, and accredited certificate authentication system based on block chain and accredited certificate authentication method based on block chain using same
KR101930825B1 (en) * 2017-01-23 2018-12-19 주식회사 데일리인텔리전스 System and method for authenticating users and synchronizing blocks using a block-chain network

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI745103B (en) * 2020-09-28 2021-11-01 尚承科技股份有限公司 System and method for safely transmitting electronic information

Also Published As

Publication number Publication date
TW202037109A (en) 2020-10-01
CN111756543A (en) 2020-10-09

Similar Documents

Publication Publication Date Title
WO2019233204A1 (en) Method, apparatus and system for key management, storage medium, and computer device
US8635442B2 (en) System and method for long-term digital signature verification utilizing light weight digital signatures
WO2020024993A1 (en) Method and system for generating public-private key pair
JP4593533B2 (en) System and method for updating keys used for public key cryptography
KR101658501B1 (en) Digital signature service system based on hash function and method thereof
JP2020528224A (en) Secure execution of smart contract operations in a reliable execution environment
CA2838322C (en) Secure implicit certificate chaining
US9614681B2 (en) Private electronic signature service for electronic documents
CN110601848B (en) Appointment information processing method, device and system based on block chain and electronic equipment
CN109104271B (en) Digital signature method, device and system
WO2015161689A1 (en) Data processing method based on negotiation key
CN101163001B (en) Electronic seal production system and method
CN106355104A (en) Electronic signature method for realizing original privacy protection based on sandbox technology
CN101594226A (en) The data guard method and the system that are used for file transfer
CN106375092A (en) Digital certificate signature method for privacy protection
CN113824564A (en) Online signing method and system based on block chain
JP7367230B2 (en) privacy signature
CN110826109A (en) Penetrating signature method suitable for PDF document
CN110569672A (en) efficient credible electronic signature system and method based on mobile equipment
CN109978543B (en) Contract signing method and device, electronic equipment and storage medium
CN111340485A (en) Configuration method of digital certificate for alliance block chain, terminal and root certificate server
TWM582272U (en) Contract signing and verification system based on blockchain
TWI704794B (en) System and implement method for signing and verifying contract in a block chain network
CN109586917B (en) Anti-quantum-computation signature method and system based on asymmetric key pool
CN116069856A (en) Data integrity verification method and system based on blockchain