UA73244C2 - Method for protecting documents presented on paper data carriers (method "atlas-krystal") - Google Patents

Abstract

The present invention relates to methods for marking and authenticating documents. The proposed method for protecting documents presented on paper data carriers consists in forming control data, which are at least based on a portion of the information presented in the document, as several unique digital data modules, confirming the control data by a digital electronic subscription, converting the digital data into the document bar code that is applied to the document, converting the bar code into digital data and isolating the electronic subscription and control data when reading the document, verifying the information presented in the document by comparing the isolates electronic subscription and control data with the electronic subscription and control data corresponding to the document.The method is distinctive by that, for the purpose to enhance the reliability of protection information against forgery, additional operations are performed for forming the additional bar code that defines the identification data of the document, which is also applied to the document, including the identification data of the document, the registration number of the pass key for the electronic subscription, and identification data of the owner of the electronic subscription in the control data, isolating the registration number of the pass key and the identification data of the owner of the electronic subscription when reading the document, and using the isolated data for determining the pass key and authenticating the electronic subscription.

Description

Description of the invention

The invention relates to a method of marking and verifying documents and can be used to protect information from falsification in notarial, consignment, title-setting, executive documents and securities.

A known method of hidden marking of an object by applying to it an individual digital or alphanumeric label containing information about the object, followed by reading this information and comparing it with records in the computer database or in a special registration log (KO 2107945). 70 According to another method of identification of registered products (KO 2106689), each product is physically marked during the manufacturing process, product parameters and their individual numbers are memorized in the database, and during verification, references from the database are requested, they are compared with the product parameters and their identification is determined legal status.

The disadvantages of these methods are the need to request information from a computer database or a special 72 registration log, as well as a low degree of protection against forgery.

A method of protecting securities against forgery is also known (KO 2088971). It includes applying a security code to the banknote by scanning the microstructure of the banknote material, determining the banknote identifier vector to be protected, protecting it with an electronic digital signature (hereinafter referred to as electronic digital signature), encoding and printing the code on the banknote.

The disadvantage of this analogue is the complexity of implementation, due to the need for the issuer to publish a list of individual characteristics, an algorithm for forming the EDS and a public key for its verification for the use of this information in the identification of bills.

The method of identifying the authenticity of the controlled object (KO 2132569) involves the formation of information about the object in digital form and the application of the EDS of the marker. Then the received information from the digital form is converted into a barcode and applied to a stamp (label) fixed on the object. With (3) identification, the barcode is read, converted into a digital form, information about the object and the EDS are extracted, the authenticity of the EDS is checked and the received information about the object is compared with the database of real objects, based on the results of which the authenticity of the EDS is established of the object

Applying a bar code on a stamp (label) containing electronically verified information about the object increases the degree of protection of the stamp against forgery and ensures the convenience of reading the information during its hardware verification. However, this method makes it possible to assess authenticity indirectly, relying only on information about individual characteristics of the object (its type or unique number, the name of the manufacturer, the date of production, etc.), and not on the inextricable connection between the protected object , information in the barcode. Therefore, the described method does not ensure high reliability of confirming the authenticity of information on a paper medium. in

The closest analogue of the claimed invention is a method of confirming the authenticity of information according to

EA 002518. In this way, control information is formed in a digital form, it is signed with a digital signature, the received information is converted from a digital form into a barcode, it is applied to the object, and when it is read, the barcode is converted into a digital form, a digital signature is extracted from it and control information, the authenticity of the EDS and information on the object is checked, and a paper medium (document) with text information printed on it is used as an object, and at least part of the text is used as control information

From" information, and additionally convert the public key of the EDS verification into a barcode, which is also applied to the document for subsequent verification of the authenticity of the EDS.

However, this method does not provide sufficient protection of information on a paper document against falsification. 42 Thus, the inclusion of a public EDS verification key in a barcode makes it possible to enter falsified information into the document, apply EDS using a false (non-certified) signature key, and include in the bar code the corresponding public EDS verification key, which can be used during verification will confirm the authenticity of the EDS and, therefore, will not make it possible to expose falsification of information. In addition, in the prototype method, information and a barcode are applied to a paper medium (form) that has not been taken into account in advance, which excludes a reliable "drive" 20 confirmation of its number during document verification. And, finally, subjective errors of the operator (executor of the document) when entering the registration mark of the form into the bar code are not excluded.

T» Indeed, the algorithm for forming and verifying the authenticity of EDS is standardized and published. Its implementation by means of software is not significantly difficult for various types of fraudsters. Therefore, the use of only certified cryptographic means of creating and verifying EDS cannot by itself ensure a high degree of protection of documents and securities against falsification.

GF) Further, document blanks are, as a rule, produced (printed) in advance in the form of forms that are accounted for and protected from repetition (copying) on special equipment at points remote from the executors of the documents. It is clear that during the production and delivery of forms to executors theft, falsification and unauthorized duplication of forms with subsequent production of falsified documents are not excluded.

Therefore, the invention is based on the task of creating such a significantly more reliable method of protecting information on a paper document from falsification, which, in particular, would exclude the replacement of EDS keys, would allow to confirm EDS and determine the owner of its key, and practically exclude the production of documents on stolen or forged forms. because This problem is solved by the fact that in the "Atlas-Crystal" method of protecting information on a paper document, which is based on the fact that the control information is digitally signed by the EDS, the received information from the digital form is converted into a barcode, which is applied to the document, when reading, the barcode is converted into a digital form, the EDS and control information are extracted from it, the EDS is checked for authenticity and, if it is genuine, the control information from the barcode is visually compared with the information printed on the document, and based on the results of the comparison, a conclusion is drawn about authenticity information on the document, and at least that part of the document information is used as control information, which is M non-repeating fragments, where M-1,2,3..., according to the invention, the barcode with control information is considered as the main barcode , the registration mark of the form is converted into an auxiliary barcode, which is read, converted into digital form and also applied to the form, to the glass of control information additionally include the registration mark of the form, the unique registration number of the EDS key certificate and the name of the body that issued the certificate of such a key, and when reading the main barcode, the unique registration number of the EDS key certificate and the name of the body that issued the certificate of such a key are highlighted, and determine the public key of the EDS to verify the authenticity of the EDS.

Thanks to this set of essential features, the security of information on a paper document against falsification is significantly increased. Indeed, entering the unique registration number of the EDS key certificate and the name of the authority that issued the certificate of such a key into the main barcode makes it possible to unambiguously establish the owner of the EDS closed key certificate when checking the document and to obtain the corresponding EDS public key from him. Confirming the authenticity of the EDS practically guarantees the reliability of the control information contained in the main barcode, identifies the person who signed the document and excludes the possibility of substitution and falsification of the EDS keys. Entering the registration mark of the form into the control information unambiguously links the information of the document with the previously taken into account form and does not allow unauthorized execution (duplication) of the document on other forms. And, finally, putting an auxiliary barcode on the document with the registration mark of the form increases its protection against twisting and forgery, and reading the registration mark with a scanner eliminates the influence of a subjective factor when entering this mark into the control information. and)

The first additional difference is that as M non-repeating fragments, where M-1,2,3..., fragments of texts or images in the form of logos, drawings, trademarks, etc. are used. This additionally increases the effectiveness of the protection of control information printed on paper media against falsification.

The second additional difference is that a linear barcode is used as an auxiliary barcode. -

This significantly simplifies its automatic reading and conversion into digital form, eliminates subjective errors of the operator when entering the registration mark of the form and allows the use of relatively cheap linear code scanners. and)

Next, the essence of the invention is explained by a detailed description and examples of implementation of the claimed method with references to the drawings, which are shown in:

Fig. 1 - the appearance of a form of a fuel coupon with a linear bar code;

Fig. 2 - the appearance of the fuel coupon.

The proposed method, in a generalized form, is carried out as follows. "

Blank blanks are taken into account during production by placing a unique alphanumeric mark (number) on each of them, which is then duplicated in an auxiliary bar code for application to the document. For ease of application and reading, a linear barcode of one of the EAM-8, EAM-13, EAM-128 types can be used as an auxiliary;" etc.

In the process of document preparation, control information is formed, which contains: at least part of the document information in the form of M most important non-repeating fragments - I of the document, where M-1,2,3...; unique registration mark (number) of the form; o unique EDS key certificate number; to the name of the authority that issued the EDS key certificate.

At least one, and mostly several alphanumeric and/or pictorial fragments, including logos, drawings, trademarks, etc., are used as the most important features of the document in the control information. The number and volume of fragments depend on the type and size of the document, the importance of the data applied to it, and the desired level of their protection. In the extreme case, all the information applied to the document is used.

The account label of the form is entered into the control information in digital form by reading the auxiliary bar code and converting it into digital form with a suitable scanner (for example, a manual laser scanner (F) RZS OptiskZsap 6000 of the company RZS IPS., USA, if a linear bar is selected as an auxiliary - type code EAM-8, EAM-13, and EAM-128, etc.).

The unique number of the EDS key certificate and the name of the authority that issued such a certificate are obtained from the EDS key certificate issued by an official body (confirmation center) in electronic form and signed by its EDS or on paper. In accordance with the Federal Law of the Russian Federation of 2002 Mo1-F3 "On Electronic Digital Signature", the EDS key certificate contains a unique registration number, for example, recorded in the sixteen-year system "б1РЕ Е502 0000 0000 0010" with a volume of 10-16 bytes, the name of the center that confirms the issuance of the key certificate EDS, for example "AMPazMMUuU" with a volume of 7 bytes. These data are sufficient for the 65-digit selection of the necessary certificate from the list that the operator has, or in the computer's memory on another medium (diskette, smart card, etc.), or for making a request to the confirmation center for the provision of an EDS key certificate.

The confirmation center guarantees the authenticity of the EDS key certificate as a whole, as well as the public key

EDS of the owner of the EDS key included in it. The inclusion in the control information of the unique number of the EDS key certificate and the name of the authority that issued such a certificate ensures their reliability and provides the only valid public signature key needed to verify the authenticity of the EDS.

Then the generated control information is digitally signed by the EDS, which is formed according to a standard cryptographic algorithm, for example, according to GOST R 34.10-2001 using a closed signature key. For this purpose, for example, the certified software tool for cryptographic protection of 7/0 information "Crypto-Pro" jointly developed by Sgurio-Rgo and the scientific and technical center "Atlas" (Moscow) or the library module SturiopAgeMaiY is suitable.

The control information signed by the EDS is converted into a basic barcode, for example, into a two-dimensional barcode ROEA417, which is applied (printed) to the document by a laser printer, for example, type HP I azepeia 1100 of the NEUM'ETT RASKAKO company or a special barcode printer of the Oaya Mach Tigap 6200 type. For the formation of a two-dimensional barcode of the ROB417 type in the volume of 1500...200O0kbytes, which is sufficient to display the required amount of data, as in the prototype, the software module Apeh Tooiv og ROB417 ("Aph 417") is suitable version 1.61 of Apeh Tespoiodiez Ips., Sapada.

In some cases, for documents on several pages, the information on each page is protected in the same way as described.

Documents marked in this way enter the economic circulation.

When checking the authenticity of a document with a scanner, in particular, in the morning! RZOOBYAU of the company Zutboi! Ips., USA for a two-dimensional barcode type ROB417 read the main barcode, convert it into a digital form and extract control information and EDS.

Based on the control information, namely the unique number of the EDS key and the name of the authority that issued the certificate of such a key, the public key of the EDS verification is determined. To do this, select the required EDS key certificate from the list known to the user, or send it via communication channels, in particular via i)

INTERNET, request for the provision of such a certificate to the relevant official body, for example, to the confirmation center. A public key is extracted from the received certificate and used to confirm the authenticity of the EDS. The reliability and legal validity of the received EDS key certificate is officially guaranteed by the corresponding EDS of the confirmation center. -

The authenticity of the EDS is checked using a personal computer and a standard algorithm for checking the data

EDS, for example according to GOST R 34.10-2001, using the public key of EDS verification.

If the EDS is genuine, then the control information from the main barcode is displayed on the monitor screen or printed on a paper medium, visually compared with the information contained in the document and, as a result of the comparison, a conclusion is drawn about the authenticity of the document.

If the EDS is not genuine, then the control information is not compared with the information in the document and a conclusion about the authenticity of the document is not made, and its further verification is carried out by other, in particular, forensic methods beyond the stated method. "

The effectiveness of the method can be illustrated by the example of protection of fuel coupons, the blanks of which perform 3 pt") using typographic, holographic and physico-chemical methods of protection (Fig. 1). . Means of typographic protection can be guilloche composition, iris roll, flexographic printing, etc. with microtexts and offset printing.

To protect against copying, a holographic security element with a hidden image is pressed onto each fuel coupon form. -I Physico-chemical protection has the form of a hidden ASVR tag, which is made of high-resolution anti-Stokes compound (KO 20770072), invisible to the human eye under normal lighting and glows when IR-irradiated by a low-power source, and also a hidden UV- labels glowing in UV rays. These marks are located in the upper and lower left corners of the form (Fig. 1).

The account label of the fuel coupon form is printed in the usual alphanumeric form and in an auxiliary (linear) barcode. і» Forms of fuel coupons (Fig. 1) are sent to the fuel company, where the necessary information is applied to them in the usual alphanumeric form and control information is formed, which is digitally signed by the EDS and converted into a basic (two-dimensional) barcode РОБ417. For example, in one of the possible versions of the fuel coupon (Fig. 2), the following pieces of protected information are used: type of fuel, refueling volume in liters, validity period of the coupon, unique number of the EDS key certificate and the name of the issuing fuel company

F) coupon. In addition, the control information protected by EDS includes the registration mark of the form, extracted from the auxiliary barcode.

The fuel company sells coupons to automotive companies and other consumers. At a gas station, a scanner reads the main bar code, converts it into a digital form, extracts EDS and control information. The public key for checking the EDS is determined by the unique registration number of the EDS key certificate and the name of the fuel company (as a confirmation center). After confirming the authenticity of the EDS and visually comparing the elements of the control information (type of fuel, filling volume in liters and validity period of the coupon) with the information indicated on the fuel coupon in 65 alphanumeric form, the gas station operator releases the appropriate amount of fuel to the client. Twisting or falsification of any one character of the protected information, as well as the main (two-dimensional) bar code on the fuel ticket will be detected after the gas station operator reads the information from the two-dimensional bar code, checks the authenticity of the EDS and the information in alphanumeric form.

The use of the invention increases the security of information on paper documents against falsification.

Testing the method at one of the fuel companies in St. Petersburg proved its effectiveness in protecting fuel coupons. 70 NO! | Kk

She and "ny and Velo sov o ss

Area | and vn

And we pcrotenst Text! "YAN t s - y | 5. y ni anti pa dit she shchi et t.

Nh! 5. / s sho vyshe she nya what. r. and ; Go)

She No | bug yu, still pi | Kk

Why don't I sing ANY MORE -

SHE hi ov SHY « i Es, Ko y sf ek, a Y t N y zo M kovki: ne) s KO, zebra what t. ! ! sia ELE KK Kol AY x - Sha osi sons. 60,000 Vey horse nequly dk tires - I MEDI niky k schi still r rrchadny Kk.

Po) sho pshennenny shi zo She She YN ime)

Claims (2)

The formula of the invention 1. The method of protecting information on a paper document "Atlas-Crystal", which is based on the fact that the control information in digital form is signed with an electronic digital signature (ESD), the information obtained from the digital form is converted into a barcode, which is applied to the document, when by reading, they convert the barcode into a digital form, extract the EDS and control information from it, check the authenticity of the EDS and, if it is genuine, visually compare the control information from the barcode with the information printed on the document, and based on the results of the comparison, they draw a conclusion about authenticity of information printed on the document, and at least that part of the document information is used as control information, which is M non-repeating fragments, where M-1, 2, 3..., which differs in that the barcode with control information is considered as the main bar code, the registration mark of the form is converted into an auxiliary bar code, which is read, converted into a digital form and also applied and the form, the control information additionally includes the registration label of the form, the unique registration number of the EDS key certificate and the name of the body that issued the certificate of such a key, and when reading the main barcode, the unique registration number of the EDS key certificate and the name of the body that issued the certificate are highlighted such 7/0 Key, and determine the public key of the EDS to verify the authenticity of the EDS. 2. The method according to claim 71, which differs in that fragments of texts or images in the form of logos, drawings, trademarks, etc. are used as M non-repeating fragments, where M-1, 2, 3.... C. The method according to claim 1 or 2, which differs in that a linear barcode is used as an auxiliary barcode. 0. и и и 0. Official Bulletin "Industrial Property". Book 1 "Inventions, useful models, topographies of integrated microcircuits", 2005, M 6, 15.06.2005. State Department of Intellectual Property of the Ministry of Education and Science of Ukraine. s schi 6) « « s (ze) and - - and? -i (95) ime) sh» s» ime) 60 b5