TWI704794B - System and implement method for signing and verifying contract in a block chain network - Google Patents
System and implement method for signing and verifying contract in a block chain network Download PDFInfo
- Publication number
- TWI704794B TWI704794B TW108111107A TW108111107A TWI704794B TW I704794 B TWI704794 B TW I704794B TW 108111107 A TW108111107 A TW 108111107A TW 108111107 A TW108111107 A TW 108111107A TW I704794 B TWI704794 B TW I704794B
- Authority
- TW
- Taiwan
- Prior art keywords
- hash
- sign
- module
- hash value
- contract
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3297—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving time stamps, e.g. generation of time stamps
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/50—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Storage Device Security (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
一種基於區塊鏈的合約簽核與驗證系統及其實施方法,系統包括一雜湊模組、一加密模組及一驗證模組,其中,雜湊模組可對一電子合約簽核前後的合約內文與屬性資訊,分別執行雜湊演算,而計算出對應的一原始雜湊值與一簽核雜湊值;加密模組可對各簽核雜湊值以簽核端的私鑰進行數位簽章,而產生加密後的簽核雜湊值,而原始雜湊值、及加密後的簽核雜湊值皆被發佈至一區塊鏈網路;藉此,可使簽核前後的電子合約與其簽核過程皆具有不可否認性、不可偽造、不可逆等特性,且驗證模組更可對使用者所上傳的電子合約,進行驗證以確認合約的真偽。A blockchain-based contract signing and verification system and its implementation method. The system includes a hash module, an encryption module, and a verification module. The hash module can verify an electronic contract before and after signing an electronic contract. The text and attribute information respectively perform hash calculations to calculate a corresponding original hash value and a sign-off hash value; the encryption module can digitally sign each sign-off hash value with the private key of the sign-off end to generate encryption After signing the hash value, the original hash value and the encrypted signing hash value are published to a blockchain network; thereby, the electronic contract before and after the signing and its signing process are undeniable Features such as flexibility, unforgeability, and irreversibility, and the verification module can also verify the electronic contract uploaded by the user to confirm the authenticity of the contract.
Description
本發明涉及網際網路技術領域,尤指一種應用區塊鏈技術(Blockchain),使簽核前後的電子合約與其簽核過程(Electronic Contracts)均具有不可否認性、不可偽造、不可逆改等特性,並可驗證合約真偽的「基於區塊鏈的合約簽核與驗證系統及其實施方法」。 The present invention relates to the field of Internet technology, in particular to an application of blockchain technology (Blockchain), so that the electronic contracts before and after signing and the signing process (Electronic Contracts) have the characteristics of non-repudiation, non-forgeability, and irreversible modification, etc. "Blockchain-based contract signing and verification system and its implementation method" that can verify the authenticity of the contract.
目前合約簽核主要透過雜湊演算法與公鑰密碼演算法對一電子合約進行加密與解密而實現,其中,雜湊演算法(hash function)主要依據一電子合約生成一簽核雜湊值(hash value),而公鑰密碼演算法(public-key cryptography)主要供發送端以自己的私鑰(private key)進行簽名,以基於該簽核雜湊值生成一電子簽核值(即加密後的簽核雜湊值),藉此,接收端得以發送端的公鑰(public key)進行解密,以驗證該電子簽核值確實是發送端所簽發的。 At present, contract signing is mainly realized by encrypting and decrypting an electronic contract through a hash algorithm and a public key cryptographic algorithm. Among them, the hash function is mainly based on an electronic contract to generate a hash value. , And public-key cryptography is mainly used by the sender to sign with its own private key to generate an electronic sign-off value based on the sign-off hash value (that is, the encrypted sign-off hash Value), whereby the receiving end can decrypt the public key of the sending end to verify that the electronic sign-off value is indeed issued by the sending end.
然而,在以上的習知合約簽核技術中,簽核前後的電子合約,因必須存放於一個中心化的第三方機構,以證明合約當事人雙方確實有對該電子合約完成簽核,但如此一來,若該第三方機構遭到有心人士入侵,則簽核前後的合約內容即可能遭到不當竄改,進而影響當事人雙方對第三方機構的信任;而相關的習知技術可參見中華民國發明專利公告案第TWI388184號「線上仿真簽名系統及方法」、中華民國發明專利公告案第TWI392321號「電子文檔數位簽核系統及方法」、美國發明專利公開案第US20080052519A1號「System and method for signing a contract electronically」等前案所揭。 However, in the above conventional contract signing technology, the electronic contract before and after the signing must be stored in a centralized third-party organization to prove that both parties to the contract have indeed completed the signing of the electronic contract. In the future, if the third-party organization is invaded by a person with intent, the content of the contract before and after the signing may be improperly tampered with, which will affect the trust of both parties to the third-party organization; and related known technologies can be found in the invention patents Announcement No. TWI388184 “Online Simulation Signature System and Method”, Republic of China Invention Patent Announcement No. TWI392321 “Electronic Document Digital Signing System and Method”, US Invention Patent Publication No. US20080052519A1 “System and method for signing a contract electronically" and other previous cases.
綜上可知,對於如何有效防止合約被不當竄改、隱藏或銷毀、如何確保合約的資料完整性、如何確保合約資料與其簽核過程的不可否認性與資料不可逆而言,目前的合約簽核技術仍有待改良。 In summary, in terms of how to effectively prevent the contract from being improperly altered, concealed or destroyed, how to ensure the integrity of the contract data, and how to ensure the non-repudiation and irreversibility of the contract data and its signing process, the current contract signing technology is still Needs to be improved.
有鑑於上述問題,本發明提供一種可讓合約具備資料完整性、不可否認性與資料不可逆改的特性、可防止合約內容被不當竄改、可提高合約簽核過程之可追溯性(Traceability)的「基於區塊鏈的合約簽核與驗證系統及其實施方法」。 In view of the above problems, the present invention provides a data integrity, non-repudiation, and data irreversible change characteristics of the contract, can prevent the content of the contract from being improperly modified, and can improve the traceability of the contract signing process (Traceability). Blockchain-based contract signing and verification system and its implementation method".
為達上述目的,本發明提供一種基於區塊鏈的合約簽核與驗證系統及其實施方法,系統主要包含:一處理模組、一通訊模組、一雜湊模組、一簽核模組及一加密模組,其中,雜湊模組供以對一電子合約的一內文資訊與一屬性資訊執行一雜湊演算,以計算出對應的一原始雜湊值;簽核模組供一簽核端裝置對電子合約進行一簽核作業,以生成一已簽核電子合約,簽核模組亦供一第二簽核端裝置對已簽核電子合約進行簽核作業,以生成一第二已簽核電子合約;雜湊模組亦供以對已簽核電子合約的內文資訊及屬性資訊皆執行一第二雜湊演算,以分別計算出對應的一簽核雜湊值,雜湊模組亦供以對第二已簽核電子合約的內文與屬性資訊執行第二雜湊演算,以分別計算出對應的一第二簽核雜湊值;加密模組供以對各簽核雜湊值以簽核端裝置的私鑰進行數位簽章(Digital Signature),而產生加密後的簽核雜湊值,加密模組亦供以對各第二簽核雜湊值以第二簽核端裝置的私鑰進行數位簽章,而分別產生加密後的第二簽核雜湊值;通訊模組則供以將各原始雜湊值、加密後的各簽核雜湊值以及加密後的各第二簽核雜湊值,發佈至一區塊鏈網路。 To achieve the above objective, the present invention provides a blockchain-based contract signing and verification system and its implementation method. The system mainly includes: a processing module, a communication module, a hash module, a sign-off module, and An encryption module, where the hash module is used to perform a hash calculation on a content information and an attribute information of an electronic contract to calculate a corresponding original hash value; the sign-off module is used for a sign-off end device Perform a sign-off operation on the electronic contract to generate a signed electronic contract. The sign-off module also allows a second sign-off end device to sign-off the signed electronic contract to generate a second signed electronic contract. Electronic contract; the hash module is also used to perform a second hash calculation on the content and attribute information of the signed electronic contract to calculate the corresponding hash value of the signature. The hash module also provides 2. Perform the second hash calculation on the content and attribute information of the signed electronic contract to calculate the corresponding second sign hash value; the encryption module is used to verify the private value of each sign device. The key is digitally signed (Digital Signature), and an encrypted sign-off hash value is generated. The encryption module is also used to digitally sign each second sign-off hash value with the private key of the second sign-off end device, and Generate encrypted second sign-off hash values; the communication module is used to publish each original hash value, each encrypted sign-off hash value, and each encrypted second sign-off hash value to a blockchain network.
本發明於一實施例中,若簽核端裝置執行簽核模組後,未於電子合約的簽核區產生一電子手寫簽名(例如產生”AAA”的電子手寫簽名),則不允許一第二簽核端裝置進行簽核作業(例如產生”BBB”的電子手寫簽名),而生成 一第二已簽核電子合約,且雜湊模組亦可對電子手寫簽名皆執行雜湊演算,以分別計算出一手寫簽名雜湊值後,發佈至區塊鏈網路。 In one embodiment of the present invention, if the sign-off end device does not generate an electronic handwritten signature in the sign-off area of the electronic contract after the sign-off module is executed (for example, an "AAA" electronic handwritten signature) is not allowed The second sign-off end device performs sign-off operations (such as generating an electronic handwritten signature of "BBB"), and A second signed electronic contract, and the hash module can also perform hash calculations on electronic handwritten signatures to calculate a handwritten signature hash value and publish it to the blockchain network.
本發明於一實施例中,雜湊模組亦可對簽核端裝置、第二簽核端裝置所發送的至少一生物特徵參數皆執行雜湊演算,以產生至少一生物特徵雜湊值,且關聯於簽核端裝置、第二簽核端裝置的生物特徵雜湊值皆可被發佈至區塊鏈網路。 In one embodiment of the present invention, the hash module can also perform hash calculation on at least one biometric parameter sent by the signer end device and the second signer end device to generate at least one biometric hash value, which is associated with Both the sign-off end device and the biometric hash value of the second sign-off end device can be published to the blockchain network.
承上,本發明所提供的合約簽核與驗證技術據以實施後,由於上述的雜湊值與加密後的雜湊值,皆可被發佈至可信度較高且去中心化的區塊鏈網路,且合約簽核的時間戳記在區塊鏈的紀錄中將無法竄改,故本案系統可達成讓電子合約的資料與簽核過程均不可逆改、難以被偽造與竄改,更不可被簽核端所否認的有益功效。 In summary, after the contract signing and verification technology provided by the present invention is implemented, due to the above hash value and the encrypted hash value, both can be published to a highly reliable and decentralized blockchain network And the time stamp of contract signing will not be tampered with in the record of the blockchain. Therefore, the system in this case can achieve irreversible modification of the electronic contract data and the signing process, difficult to be forged and tampered, and not to be signed. The beneficial effect denied.
為使 貴審查委員得以清楚了解本發明之目的、技術特徵及其實施後之功效,茲以下列說明搭配圖示進行說明,敬請參閱。 In order for your reviewer to have a clear understanding of the purpose, technical features and effects of the present invention after implementation, the following descriptions and illustrations are used for explanation, please refer to them.
10:基於區塊鏈的合約簽核與驗證系統 10: Blockchain-based contract signing and verification system
101:處理模組 101: Processing Module
102:通訊模組 102: Communication module
103:雜湊模組 103: Hash Module
104:簽核模組 104: Sign-off module
105:加密模組 105: encryption module
106:資料庫 106: database
107:驗證模組 107: Verification Module
20:簽核端裝置 20: Sign-off device
20’:第二簽核端裝置 20’: The second sign-off device
30:網路 30: Internet
40:區塊鏈網路 40: Blockchain network
50:驗證需求端裝置 50: Verify the demand side device
D1:電子合約 D1: Electronic contract
Hash(D1):原始雜湊值 Hash(D1): Original hash value
D2:已簽核電子合約 D2: Electronic contract has been signed
Hash(D2):簽核雜湊值 Hash(D2): sign-off hash value
En(Hash(D2)):加密後的簽核雜湊值 En(Hash(D2)): The signed hash value after encryption
Hash(D2,Biometrics):生物特徵雜湊值 Hash (D2, Biometrics): biometric hash value
D3:第二已簽核電子合約 D3: The second signed electronic contract
Hash(D3):第二簽核雜湊值 Hash(D3): hash value of the second sign
En(Hash(D3)):加密後的第二簽核雜湊值 En(Hash(D3)): The second sign-off hash value after encryption
Hash(D3,Biometrics):第二生物特徵雜湊值 Hash (D3, Biometrics): the second biometric hash value
D4:待驗證電子合約 D4: Electronic contract to be verified
Hash(D4):待驗證雜湊值 Hash(D4): hash value to be verified
S:基於區塊鏈的合約簽核與驗證系統的實施方法 S: Implementation method of contract signing and verification system based on blockchain
S1:接收簽核前的電子合約 S1: Receive the electronic contract before signing
S2:依據合約內文與屬性執行雜湊演算 S2: Perform hash calculation based on contract content and attributes
S3:接收已簽核的電子合約 S3: Receive the signed electronic contract
S4:依據合約內文與屬性執行第二雜湊演算 S4: Perform the second hash calculation based on the content and attributes of the contract
S5:對簽核雜湊值進行加密 S5: Encrypt the sign-off hash value
S6:發佈至區塊鏈網路 S6: Publish to the blockchain network
第1圖,為本發明之系統架構圖。 Figure 1 is a system architecture diagram of the present invention.
第2圖,為本發明之系統實施流程圖。 Figure 2 is a flowchart of the system implementation of the present invention.
第3圖,為本發明之資訊流示意圖(一)。 Figure 3 is a schematic diagram (1) of the information flow of the present invention.
第4圖,為本發明之資訊流示意圖(一)。 Figure 4 is a schematic diagram (1) of the information flow of the present invention.
第5圖,為本發明之另一實施例(一)之資訊流示意圖(一)。 Figure 5 is a schematic diagram (1) of the information flow of another embodiment (1) of the present invention.
第6圖,為本發明之另一實施例(一)之資訊流示意圖(二)。 Figure 6 is a schematic diagram (2) of the information flow of another embodiment (1) of the present invention.
第7圖,為本發明之另一實施例(二)之系統架構圖。 Figure 7 is a system architecture diagram of another embodiment (2) of the present invention.
第8圖,為本發明之另一實施例(二)之資訊流示意圖。 Figure 8 is a schematic diagram of the information flow of another embodiment (2) of the present invention.
第9圖,為本發明之另一實施例(三)之資訊流示意圖。 Figure 9 is a schematic diagram of the information flow of another embodiment (3) of the present invention.
請參閱「第1圖」,其為本發明之系統架構圖,本發明揭露一種基於區塊鏈的合約簽核與驗證系統10,供一簽核端裝置20透過一網路30建立資訊連結,系統包含:一處理模組101,一通訊模組102、一雜湊模組103、一簽核模組104及一加密模組105則分別耦接於處理模組101。
Please refer to "Figure 1", which is a system architecture diagram of the present invention. The present invention discloses a blockchain-based contract signing and
(1)處理模組101可運行基於區塊鏈的合約簽核與驗證系統10及控制上述各模組之執行,並具備邏輯運算、暫存運算結果、保存執行指令位置等功能,其可為一中央處理器(CPU)。
(1) The
(2)通訊模組102可與簽核端裝置20建立通訊連線,其中,網路30可為公眾或私人網路,如無線網路(例如3G、4G
LTE、Wi-Fi)、有線網路、區域網路(LAN)、廣域網路(WA)等,惟並不以此為限。
(2) The
(3)雜湊模組103可對一電子合約的一內文資訊與一屬性資訊執行一雜湊演算,以計算出對應的一原始雜湊值,其中,上述電子合約的內文與屬性資訊,其皆屬於一種明文(Cleartext)。
(3) The
(4)簽核模組104可讓簽核端裝置20對電子合約進行一簽核作業,以生成一已簽核電子合約;其中,簽核模組104進行簽核作業的形式,可指於電子合約的一簽核區產生一電子簽名圖章或一電子手寫簽名。
(4) The sign-off
(5)雜湊模組103亦可對已簽核電子合約的內文資訊與屬性資訊執行一第二雜湊演算,以計算出對應的一簽核雜湊值。
(5) The
(6)加密模組105可對各簽核雜湊值以簽核端裝置20的私鑰進行數位簽章,即執行一加密演算法(encryption algorithm),而產生加密後的簽核雜湊值,其皆屬於一種密文(Ciphertext)。
(6) The
(7)資料庫106可儲存電子合約的內文資訊與屬性資訊、電子合約的原始雜湊值、已簽核電子合約的內文資訊與屬性資訊(明文)、已簽核電子合約的簽核雜湊值、及已簽核電子合約之加密後的簽核雜湊值。
(7) The
(8)通訊模組102亦可將電子合約的原始雜湊值、已簽核電子合約之加密後的簽核雜湊值,均發佈至一區塊鏈網路40。
(8) The
其中,上述的屬性資訊可為簽核端裝置20的一使用者帳號、一簽核人名稱、一簽核時間、一簽核地點、一檔案修改時間、一檔案大小、一字元數、一行數、一段落數、一頁數、一檔案建立時間、一檔案編輯時間、一註解資訊之其中一種或其組合,但不以此為限。
Among them, the above-mentioned attribute information may be a user account of the approving
其中,上述的雜湊演算可為SHA-0、SHA-1、SHA-2、SHA-3、MD5、BLAKE2等單向散列演算法,但不以此為限。 Among them, the above-mentioned hash calculation can be one-way hash algorithms such as SHA-0, SHA-1, SHA-2, SHA-3, MD5, BLAKE2, but not limited to this.
其中,上述的加密演算法可為RSA、ECC、ElGamal、Rabin等公鑰密碼演算法,但不以此為限。 Among them, the aforementioned encryption algorithm may be RSA, ECC, ElGamal, Rabin, etc. public key cryptographic algorithms, but it is not limited to this.
其中,上述電子合約的格式可為PDF、DOC或XLS格式,但不以此為限。 Among them, the format of the above electronic contract can be PDF, DOC or XLS format, but it is not limited to this.
其中,上述的簽核端裝置20可為一工作站、一個人電腦、一筆記型電腦、一智慧型手機等裝置,但不以此為限。
The above-mentioned sign-off
其中,基於區塊鏈的合約簽核與驗證系統10得以網路服務(web service)作為與網路30之溝通介面。
Among them, the blockchain-based contract signing and
請參閱「第2圖」,其為本發明之系統實施流程圖,並請搭配參閱「第3圖」~「第4圖」之資訊流示意圖、及「第1圖」,本發明揭露一種基於區塊鏈的合約簽核與驗證系統的實施方法S,包含以下步驟: Please refer to "Figure 2", which is the flow chart of the system implementation of the present invention. Please also refer to the information flow diagrams of "Figure 3" ~ "Figure 4" and "Figure 1". The present invention discloses a system based on The implementation method S of the blockchain contract signing and verification system includes the following steps:
(1)接收簽核前的電子合約(步驟S1):一通訊模組102透過一網路30將一電子合約D1發送至一簽核端裝置20;
(1) Receive an electronic contract before signing (step S1): a
(2)依據合約內文與屬性執行雜湊演算(步驟S2):一雜湊模組103對電子合約D1的一內文資訊與一屬性資訊分別執行一雜湊演算,以計算出對應的原始雜湊值Hash(D1),且其可分別為對應於內文資訊的雜湊值Hash(D1,Content)及對應於屬性資訊的雜湊值Hash(D1,Attribute),即如「第4圖」所示;
(2) Perform a hash calculation based on the content and attributes of the contract (step S2): a
(3)接收已簽核的電子合約(步驟S3):通訊模組102從簽核端裝置20接收其完成簽核的一已簽核電子合約D2,另,本實施例於較佳情況下,本步驟執行時,已簽核電子合約D2的形式,為簽核端裝置20執行一簽核模組104後,於電子合約D1的一簽核區產生一電子簽名圖章或一電子手寫簽名,即如「第4圖」所示的「AAA」,並可儲存至資料庫106。
(3) Receive a signed electronic contract (step S3): The
(4)依據合約內文與屬性執行第二雜湊演算(步驟S4):一雜湊模組103對已簽核電子合約D2的內文資訊與屬性資訊執行一第二雜湊演算,以計算出對應的簽核雜湊值Hash(D2),且其可分別為對應於內文資訊的雜湊值Hash(D2,Content)與對應於屬性資訊的雜湊值Hash(D2,Attribute),即如「第4圖」所示;
(4) Perform a second hash calculation based on the content and attributes of the contract (step S4): A
(5)對簽核雜湊值進行加密(步驟S5):一加密模組105對各簽核雜湊值Hash(D2)以簽核端裝置20的私鑰進行數位簽章,而產生加密後的簽核雜湊值En(Hash(D2)),且其可分別為對應於內文資訊的已加密雜湊值En(Hash(D2,Content))與對應於屬性資訊的已加密
雜湊值En(Hash(D2,Attribute)),即如「第4圖」所示;
(5) Encrypt the sign-off hash value (step S5): an
(6)發佈至區塊鏈網路(步驟S6):通訊模組102將電子合約D1的各原始雜湊值Hash(D1)、已簽核電子合約D2之加密後的各簽核雜湊值En(Hash(D2)),發佈至一區塊鏈網路40的N個網路節點,即「第4圖」所示的「上鏈」。
(6) Publish to the blockchain network (step S6): The
請參閱「第5圖」~「第6圖」之本發明之另一實施例(一)之資訊流示意圖,並請搭配參閱「第1圖」,本實施例與「第1圖」至「第4圖」所示的技術類同,主要差異在於: Please refer to "Figure 5" ~ "Figure 6" for a schematic diagram of the information flow of another embodiment (1) of the present invention, and please refer to "Figure 1" in conjunction with this embodiment and "Figure 1" to " The technologies shown in Figure 4 are similar, but the main differences are:
(1)步驟S4執行時(依據合約內文與屬性執行第二雜湊演算),雜湊模組103更可提取一第二簽核端裝置20’所完成簽核的一第二已簽核電子合約D3,再對第二已簽核電子合約D3的內文資訊與屬性資訊執行第二雜湊演算,以計算出對應的一第二簽核雜湊值Hash(D3),其可為分別對應於內文資訊的雜湊值Hash(D3,Content)與對應於屬性資訊的雜湊值Hash(D3,Attribute)。
(1) When step S4 is executed (execute the second hash calculation based on the contract content and attributes), the
(2)步驟S5執行時(對簽核雜湊值進行加密),加密模組105更可對各第二簽核雜湊值Hash(D3)以第二簽核端裝置20’的私鑰進行數位簽章,以產生加密後的第二簽核雜湊值En(Hash(D3)),其可為分別對應於內文資訊的
已加密雜湊值En(Hash(D3,Content))與對應於屬性資訊的已加密雜湊值En(Hash(D3,Attribute))。
(2) When step S5 is executed (encrypting the sign-off hash value), the
(3)承上,步驟S6執行時(發佈至區塊鏈網路),通訊模組102亦可將加密後的各第二簽核雜湊值En(Hash(D3))發佈至區塊鏈網路40。
(3) Continuing, when step S6 is executed (published to the blockchain network), the
另,本實施例於較佳情況下,步驟S4執行前(依據合約內文與屬性執行第二雜湊演算),若簽核端裝置20執行簽核模組104後,未於電子合約D1的簽核區產生一電子手寫簽名,即如「第6圖」所示的「AAA」,則處理模組101不允許第二簽核端裝置20’使用簽核模組104,於已簽核電子合約D2的一第二簽核區進行簽核作業,即不允許於已簽核電子合約D2的一第二簽核區產生另一電子手寫簽名,而產生第二已簽核電子合約D2,並儲存至資料庫106,即如「第6圖」所示的「BBB」,另,雜湊模組103亦可對簽核端裝置20的電子手寫簽名、第二簽核端裝置20’的電子手寫簽名執行雜湊演算,以計算出一手寫簽名雜湊值,且前述的各手寫簽名雜湊值可由通訊模組102發佈至區塊鏈網路40,藉此,由於各手寫簽名雜湊值可被儲存於區塊鏈網路40,故簽核端裝置20及第二簽核端裝置20’將更無法否認電子合約係由其所簽核。
In addition, in this embodiment, in a preferred case, before step S4 is executed (the second hash calculation is performed according to the contract content and attributes), if the sign-off
請參閱「第7圖」,其為本發明之另一實施例(二)之系統架構圖,並請搭配參閱「第1圖」,本實施例與「第
5圖~第6圖」所示實施例之技術類同,主要差異在於,本發明所揭露之基於區塊鏈的合約簽核與驗證系統10,其更可包括耦接於處理模組101的一驗證模組107,請繼續參閱「第8圖」,其為本發明之另一實施例(二)之資訊流示意圖,本實施例據以實施時,驗證模組107可將通訊模組102從一驗證需求端裝置50所接收的一待驗證電子合約D4,作為一輸入參數,並使處理模組101驅動雜湊模組103對待驗證電子合約D4的內文資訊與屬性資訊分別執行雜湊演算,以產生一待驗證雜湊值Hash(D4),且其可為分別對應於內文資訊的雜湊值Hash(D4,Content)與對應於屬性資訊的雜湊值Hash(D4,Attribute),其後,驗證模組107可對儲存於區塊鏈網路40之加密後的各第二簽核雜湊值En(Hash(D3)),依據第二簽核端裝置20’的公鑰(由第二簽核端裝置20’所發出)進行解密,以解密出對應的第二簽核雜湊值Hash(D3),其後,驗證模組107將待驗證雜湊值Hash(D4)與第二簽核雜湊值Hash(D3)進行比較,即可驗證待驗證電子合約D4是否確實由第二簽核端裝置20’所簽核,同時可驗證待驗證電子合約D4的合約內容相較於第二已簽核電子合約D3,是否有遭到不當竄改。
Please refer to "Figure 7", which is a system architecture diagram of another embodiment (2) of the present invention, and please refer to "Figure 1" together.
The technologies of the embodiments shown in Figures 5 to 6 are the same. The main difference is that the blockchain-based contract signing and
另,本實施例亦可適用於「第1圖~第4圖」所示的實施例,本實施例據以實施時,當雜湊模組103產生待驗證雜湊值Hash(D4)後,驗證模組107可對儲存於區塊鏈網路40之加密後的各簽核雜湊值En(Hash(D2)),依據簽
核端裝置20的公鑰進行解密,以解密出對應的簽核雜湊值Hash(D2),其後,驗證模組107將待驗證雜湊值Hash(D4)與簽核雜湊值Hash(D2)進行比較,即可驗證待驗證電子合約D4是否確實由簽核端裝置20所簽核,同時可驗證待驗證電子合約D4的合約內容相較於已簽核電子合約D2,是否有遭到不當竄改。
In addition, this embodiment can also be applied to the embodiment shown in "Figures 1 to 4". When this embodiment is implemented according to this embodiment, after the
請參閱「第9圖」,其為本發明之另一實施例(三)之資訊流示意圖,並請搭配參閱「第1圖」,本實施例與「第5圖~第6圖」所示實施例之技術類同,主要差異在於,本發明之基於區塊鏈的合約簽核與驗證系統10的資料庫106,更可儲存簽核端裝置20與第二簽核端裝置20所發送的至少一生物特徵參數,故本實施例據以實施時,雜湊模組103可對關聯於已簽核電子合約D2、及簽核端裝置20的生物特徵參數執行雜湊演算,以產生一生物特徵雜湊值Hash(D2,Biometrics),且生物特徵雜湊值Hash(D2,Biometrics)可由通訊模組102發佈至區塊鏈網路40,藉此,由於生物特徵雜湊值Hash(D2,Biometrics)可和加密後的簽核雜湊值En(Hash(D2))一同被儲存於區塊鏈網路40,故簽核端裝置20將更無法否認已簽核電子合約D2係由其所簽核。
Please refer to "Figure 9", which is a schematic diagram of the information flow of another embodiment (3) of the present invention. Please also refer to "Figure 1" for this embodiment and "Figures 5 to 6". The embodiments are similar in technology, and the main difference is that the
承上,請繼續參閱「第9圖」,同樣地,本實施例據以實施時,雜湊模組103亦可對關聯於已簽核電子合約
D3、及第二簽核端裝置20’的生物特徵參數執行雜湊演算,以產生一第二生物特徵雜湊值Hash(D3,Biometrics),且第二生物特徵雜湊值Hash(D3,Biometrics)也可被通訊模組102發佈至區塊鏈網路40,藉此,由於第二生物特徵雜湊值Hash(D3,Biometrics)可和加密後的第二簽核雜湊值En(Hash(D3))一同被儲存於區塊鏈網路40,故第二簽核端裝置20’將更無法否認第二已簽核電子合約D3係由其所簽核。
In continuation, please continue to refer to "Figure 9". Similarly, when this embodiment is implemented, the
其中,上述的生物特徵參數可為一指紋影像、一臉部影像、一虹膜影像等影像的原始資料,但不以此為限。 Among them, the above-mentioned biometric parameter can be the original data of a fingerprint image, a face image, an iris image, etc., but is not limited to this.
綜上可知,本案所揭的合約簽核與驗證技術據以實施後,從尚未被簽核的電子合約開始,到已被簽核端裝置、或第二簽核端裝置完成簽核的電子合約的所有簽核過程,均可記錄在具有去中心化特性的區塊鏈網路,而不會固定保存在某一方的手上,使合約當事人雙方在法律上更加平等,同時能確保電子合約的內容均不會被竄改、隱藏或銷毀,同時讓儲存於區塊鏈的電子合約與其簽核過程皆具備不可否認及不可逆改的特性。 In summary, after the contract signing and verification technology disclosed in this case is implemented, it starts from the electronic contract that has not yet been signed to the electronic contract that has been signed by the sign-off end device or the second sign-off end device. All the sign-off process of the contract can be recorded in the blockchain network with decentralized characteristics, and will not be stored in the hands of one party, so that the parties to the contract are more legally equal, while ensuring the electronic contract The content will not be tampered with, concealed or destroyed. At the same time, the electronic contract stored on the blockchain and its signing process are both undeniable and irreversible.
以上所述者,僅為本發明之較佳之實施例而已,並非用以限定本發明實施之範圍;任何熟習此技藝者,在 不脫離本發明之精神與範圍下所作之均等變化與修飾,皆應涵蓋於本發明之專利範圍內。 The above are only the preferred embodiments of the present invention, and are not intended to limit the scope of implementation of the present invention; anyone who is familiar with this technique, Equal changes and modifications made without departing from the spirit and scope of the present invention should all be covered by the patent scope of the present invention.
綜上所述,本發明係具有「產業利用性」、「新穎性」與「進步性」等專利要件;申請人爰依專利法之規定,向 鈞局提起發明專利之申請。 In summary, the present invention has patent requirements such as "industrial applicability", "novelty" and "advancedness"; the applicant filed an application for a patent for invention with the Bureau in accordance with the provisions of the Patent Law.
10:基於區塊鏈的合約簽核與驗證系統 10: Blockchain-based contract signing and verification system
101:處理模組 101: Processing Module
102:通訊模組 102: Communication module
103:雜湊模組 103: Hash Module
104:簽核模組 104: Sign-off module
105:加密模組 105: encryption module
106:資料庫 106: database
20:簽核端裝置 20: Sign-off device
30:網路 30: Internet
40:區塊鏈網路 40: Blockchain network
Claims (8)
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW108111107A TWI704794B (en) | 2019-03-29 | 2019-03-29 | System and implement method for signing and verifying contract in a block chain network |
CN202010228941.6A CN111756543A (en) | 2019-03-29 | 2020-03-27 | Contract signing and verifying system based on block chain and implementation method thereof |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW108111107A TWI704794B (en) | 2019-03-29 | 2019-03-29 | System and implement method for signing and verifying contract in a block chain network |
Publications (2)
Publication Number | Publication Date |
---|---|
TWI704794B true TWI704794B (en) | 2020-09-11 |
TW202037109A TW202037109A (en) | 2020-10-01 |
Family
ID=72673164
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
TW108111107A TWI704794B (en) | 2019-03-29 | 2019-03-29 | System and implement method for signing and verifying contract in a block chain network |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN111756543A (en) |
TW (1) | TWI704794B (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
TWI745103B (en) * | 2020-09-28 | 2021-11-01 | 尚承科技股份有限公司 | System and method for safely transmitting electronic information |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101930825B1 (en) * | 2017-01-23 | 2018-12-19 | 주식회사 데일리인텔리전스 | System and method for authenticating users and synchronizing blocks using a block-chain network |
US20190005470A1 (en) * | 2015-10-16 | 2019-01-03 | Coinplug, Inc. | Accredited certificate issuance system based on block chain and accredited certificate issuance method based on block chain using same, and accredited certificate authentication system based on block chain and accredited certificate authentication method based on block chain using same |
US20190013931A1 (en) * | 2015-09-11 | 2019-01-10 | Aware, Inc. | Biometric verification of a blockchain database transaction contributor |
Family Cites Families (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103679436B (en) * | 2013-12-17 | 2018-08-14 | 重庆邮电大学 | A kind of electronic contract security system and method based on biological information identification |
CN107209821B (en) * | 2014-08-18 | 2018-08-14 | 巴拉兹·奇克 | Method and authentication method for being digitally signed to electronic document |
CN105591750B (en) * | 2015-10-30 | 2018-12-25 | 中国银联股份有限公司 | The generation method that signs electronically and system |
CN106485168A (en) * | 2016-10-17 | 2017-03-08 | 成都知道创宇信息技术有限公司 | A kind of method whether being modified using MD5 value checking contract documents |
CN106570681A (en) * | 2016-10-28 | 2017-04-19 | 山东明和软件有限公司 | Anti-tampering private fund electronic contract signing system and method based on block chain |
US10541818B2 (en) * | 2017-04-19 | 2020-01-21 | International Business Machines Corporation | Decentralized biometric signing of digital contracts |
CN108833115B (en) * | 2018-06-15 | 2021-01-26 | 中山大学 | Multi-party fair PDF (Portable document Format) contract signing method based on block chain |
CN108898389B (en) * | 2018-06-26 | 2021-05-18 | 创新先进技术有限公司 | Content verification method and device based on block chain and electronic equipment |
CN109035024A (en) * | 2018-08-15 | 2018-12-18 | 杭州链汇通区块链科技有限公司 | Method, system and the storage medium of electronic signature |
-
2019
- 2019-03-29 TW TW108111107A patent/TWI704794B/en active
-
2020
- 2020-03-27 CN CN202010228941.6A patent/CN111756543A/en active Pending
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20190013931A1 (en) * | 2015-09-11 | 2019-01-10 | Aware, Inc. | Biometric verification of a blockchain database transaction contributor |
US20190005470A1 (en) * | 2015-10-16 | 2019-01-03 | Coinplug, Inc. | Accredited certificate issuance system based on block chain and accredited certificate issuance method based on block chain using same, and accredited certificate authentication system based on block chain and accredited certificate authentication method based on block chain using same |
KR101930825B1 (en) * | 2017-01-23 | 2018-12-19 | 주식회사 데일리인텔리전스 | System and method for authenticating users and synchronizing blocks using a block-chain network |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
TWI745103B (en) * | 2020-09-28 | 2021-11-01 | 尚承科技股份有限公司 | System and method for safely transmitting electronic information |
Also Published As
Publication number | Publication date |
---|---|
TW202037109A (en) | 2020-10-01 |
CN111756543A (en) | 2020-10-09 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2019233204A1 (en) | Method, apparatus and system for key management, storage medium, and computer device | |
US8635442B2 (en) | System and method for long-term digital signature verification utilizing light weight digital signatures | |
WO2020024993A1 (en) | Method and system for generating public-private key pair | |
JP4593533B2 (en) | System and method for updating keys used for public key cryptography | |
KR101658501B1 (en) | Digital signature service system based on hash function and method thereof | |
JP2020528224A (en) | Secure execution of smart contract operations in a reliable execution environment | |
CA2838322C (en) | Secure implicit certificate chaining | |
US9614681B2 (en) | Private electronic signature service for electronic documents | |
CN110601848B (en) | Appointment information processing method, device and system based on block chain and electronic equipment | |
CN109104271B (en) | Digital signature method, device and system | |
WO2015161689A1 (en) | Data processing method based on negotiation key | |
CN101163001B (en) | Electronic seal production system and method | |
CN106355104A (en) | Electronic signature method for realizing original privacy protection based on sandbox technology | |
CN101594226A (en) | The data guard method and the system that are used for file transfer | |
CN106375092A (en) | Digital certificate signature method for privacy protection | |
CN113824564A (en) | Online signing method and system based on block chain | |
JP7367230B2 (en) | privacy signature | |
CN110826109A (en) | Penetrating signature method suitable for PDF document | |
CN110569672A (en) | efficient credible electronic signature system and method based on mobile equipment | |
CN109978543B (en) | Contract signing method and device, electronic equipment and storage medium | |
CN111340485A (en) | Configuration method of digital certificate for alliance block chain, terminal and root certificate server | |
TWM582272U (en) | Contract signing and verification system based on blockchain | |
TWI704794B (en) | System and implement method for signing and verifying contract in a block chain network | |
CN109586917B (en) | Anti-quantum-computation signature method and system based on asymmetric key pool | |
CN116069856A (en) | Data integrity verification method and system based on blockchain |