WO2017063470A1 - Method, device and system for verifying consistency of electronic data and certificate verification platform - Google Patents

Method, device and system for verifying consistency of electronic data and certificate verification platform Download PDF

Info

Publication number
WO2017063470A1
WO2017063470A1 PCT/CN2016/098615 CN2016098615W WO2017063470A1 WO 2017063470 A1 WO2017063470 A1 WO 2017063470A1 CN 2016098615 W CN2016098615 W CN 2016098615W WO 2017063470 A1 WO2017063470 A1 WO 2017063470A1
Authority
WO
WIPO (PCT)
Prior art keywords
verification
certificate
electronic data
platform
data
Prior art date
Application number
PCT/CN2016/098615
Other languages
French (fr)
Chinese (zh)
Inventor
鹿毅忠
Original Assignee
北京源创云网络科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 北京源创云网络科技有限公司 filed Critical 北京源创云网络科技有限公司
Publication of WO2017063470A1 publication Critical patent/WO2017063470A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2107File encryption

Definitions

  • the invention relates to the technical field of electronic data information fixed-line storage and verification, and relates to the field of third-party electronic certificate storage and consistency verification, in particular to an electronic data consistency verification method, device, system and verification verification platform.
  • Electronic data especially for innovative creative electronic data, such as technical documents, software code, design materials, audio and video works, etc.
  • the concept of invention and creation is generally recorded in electronic form, and the problem is that if these innovative ideas Electronic data cannot be stored legally. Once leaked, it is difficult to prove its original history and original results as the network spreads quickly and has a wide range.
  • the protection of electronic data is basically by encrypting or watermarking electronic works, but this method can only protect the work itself to a certain degree of tamper protection, and it is difficult to prove its original timeliness and attribution. difficult.
  • the relevant laws of China have the following provisions on the original form of electronic data: it can reliably guarantee that the content remains intact and has not been changed since the final formation.
  • electronic data stored by a neutral third-party cloud is more powerful than the electronic data saved by the parties.
  • the question that arises is how to protect the electronic data of the deposited certificate in the circulation link.
  • the rights of the electronic data owner are clarified; or, when the user purchases an electronic data product, how to check the ownership of the electronic data product and the like.
  • Taobao has many electronic data products such as software code and picture material. Because the source information of these electronic data products is not clear, it is impossible to return the benefits of selling these non-certified electronic data products to the owner of the electronic data. , seriously affecting the legal authority of intellectual property protection, therefore, there is a need for a platform that allows users to obtain original electronic data from trusted third parties.
  • Certificate protection can also provide verification of the consistency of electronic data and its deposit information, which can prove the historical and fruitful of electronic data, protect the interests of electronic data owners, and ensure the electronic data in the circulation of buyers and sellers The legality of transactions and the legal authority to protect intellectual property rights of electronic data.
  • the invention provides an electronic data consistency verification method, device, system and verification verification platform, which can provide a credible time certification certificate for electronic data and provide flexible and reliable verification protection for electronic data in the circulation link. Effectively guarantee the interests of electronic data owners, ensure the legality of the transaction of electronic data in the circulation of buyers and sellers, and establish the legal authority of electronic data intellectual property protection.
  • the invention provides an electronic data consistency verification method, comprising:
  • the electronic data is allowed to continue to be traded.
  • the verification related information is the electronic data; correspondingly, the sending, according to the verification related information, a verification request for performing verification of the verification of the electronic information on the electronic data to the certificate verification platform, including:
  • the first data string is data information uniquely corresponding to the electronic data
  • the verification related information is the electronic data and the certificate number of the electronic data; correspondingly, the transmitting the information about the electronic data to the certificate verification platform according to the verification related information Validation request for consistency verification, including:
  • the verification related information is a trusted time stamp of the electronic data and the electronic data; correspondingly, the transmitting, according to the verification related information, transmitting, to the certificate verification platform, performing consistency of the deposit information on the electronic data Verified verification request, including:
  • the sending, to the certificate verification platform, a first verification request includes: after the first data string, correspondingly, receiving the verification response fed back by the certificate verification platform, and Determining, according to the verification response, whether the electronic data has been protected by the deposit verification platform, including:
  • the first verification response fed back by the certificate verification platform; if the first verification response is a response message that the certificate information is not found, determining that the electronic data is not protected by the certificate on the certificate verification platform; If the first verification response is a response message for checking the deposit information, determining that the electronic data has been stored and protected on the certificate verification platform;
  • the second verification response includes a second data string; generating a first data string according to the electronic data; and the second data string and the first The data strings are compared, if they are consistent, it is determined that the electronic data has been stored and protected on the certificate verification platform; if not, it is determined that the electronic data is not protected by the certificate verification platform;
  • the second data string is data information uniquely corresponding to the stored electronic data;
  • the method further includes:
  • the method further includes:
  • the method further includes:
  • the sending to the certificate verification platform, a verification request for performing verification of the certificate information consistency of the electronic data, including:
  • An authentication request with CA authentication information is sent to the certificate verification platform to provide authentication to the certificate verification platform.
  • the invention also provides an electronic data consistency verification method, comprising:
  • Verifying whether the electronic data has been verified according to the verification related information and feeding back a verification response to the e-commerce platform.
  • the verification related information includes a first data string; the first data string is data information uniquely corresponding to the electronic data; and correspondingly, the verification related information is Whether the electronic data has been verified for verification, and the verification response is fed back to the e-commerce platform, including:
  • the verification related information includes a certificate number of the electronic data; correspondingly, the verification of the electronic data according to the verification related information is verified, and the verification is performed to the e-commerce platform.
  • Response including:
  • the certificate includes: second data string information that uniquely identifies the electronic data; wherein the e-commerce platform compares the first data string with the second data string to determine that the electronic data has been verified on a certificate verification platform protection;
  • the verification related information includes a trusted timestamp of the electronic data and the first data string; and correspondingly, the verification, according to the verification related information, whether the electronic data has been verified, and
  • the e-commerce platform feedback verification response includes: comparing whether the first data string is stored in the verification certificate database; if not, the feedback does not find the third verification response of the deposit information; if yes, finding and Determining a certificate time corresponding to the first data string, and generating a unique second data string according to the first data string and the certificate time; decrypting the trusted timestamp to obtain a third data string; And if the second data string and the third data string completely match, the third verification response of the certificate information is fed back to the e-commerce platform.
  • the method further includes:
  • a certificate number obtaining request includes: identifier information of the first verification response of the check-up information that is fed back to the e-commerce platform;
  • the feeding back the verification response to the e-commerce platform includes:
  • a verification response with CA authentication information is fed back to provide authentication to the e-commerce platform.
  • the invention also provides an electronic data consistency verification device, comprising:
  • a monitoring module for monitoring transaction information on the e-commerce platform
  • control module configured to: when the monitoring module monitors, the transaction information relates to electronic data Suspend the transaction process during the transaction;
  • An obtaining module configured to obtain verification related information corresponding to the electronic data
  • a sending module configured to send, according to the verification related information acquired by the acquiring module, a verification request for performing verification of the certificate information consistency on the electronic data to the certificate verification platform;
  • a receiving module configured to receive a verification response fed back by the certificate verification platform, and determine, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform;
  • the control module is further configured to allow the electronic data to continue to be traded when the receiving module determines that the electronic data has been stored and protected by the certificate verification platform.
  • the sending module includes: a data string generating submodule and a sending submodule;
  • a data string generation submodule configured to generate a first data string according to the electronic data; the first data string is data information uniquely corresponding to the electronic data;
  • the verification related information acquired by the obtaining module is the electronic data, correspondingly,
  • the sending submodule is configured to send a first verification request to the certificate verification platform, where the first verification request includes: the first data string generated by the data string generation submodule;
  • the verification related information acquired by the obtaining module is the electronic data and the certificate number of the electronic data, correspondingly,
  • the sending submodule is configured to send a second verification request to the certificate verification platform, where the second verification request includes a certificate number of the electronic data;
  • the verification related information acquired by the acquiring module is the trusted time stamp of the electronic data and the electronic data, correspondingly,
  • the sending submodule is configured to send a third verification request to the certificate verification platform, where the third verification request includes a trusted timestamp of the electronic data and the first data generated by the data string generation submodule string.
  • the receiving module includes:
  • a receiving submodule configured to receive a first verification response fed back by the verification verification platform
  • a determining submodule configured to: when the first verification response is a response message that does not find the deposit information, determine that the electronic data is not protected by the deposit verification platform; When the verification response is a response message for checking the deposit information, determining that the electronic data has been stored and protected on the certificate verification platform;
  • the receiving submodule is further configured to receive a second verification response fed back by the verification verification platform; the second verification response includes a second data string;
  • a comparison submodule configured to compare the second data string received by the receiving submodule with the first data string generated by the data string generating submodule
  • the determining submodule is further configured to determine, according to a result obtained by comparing the second data string with the first data string, by the comparison submodule, whether the electronic data is verified in the deposit verification
  • the platform performs certificate protection; if it is consistent, it is determined that the electronic data has been stored and protected on the certificate verification platform; if not, it is determined that the electronic data is not protected by the certificate on the certificate verification platform;
  • the second data string is data information uniquely corresponding to the stored electronic data;
  • the receiving submodule is further configured to receive a third verification response fed back by the verification verification platform;
  • the determining submodule is further configured to: when the third verification response is a response message that does not find the deposit information, determine that the electronic data is not protected by the deposit verification platform;
  • the third verification response is that when the response message of the deposit information is found, it is determined that the electronic data has been protected by the deposit verification platform.
  • the sending module is further configured to send the certificate of the certificate number of the electronic data to the certificate verification platform, where the acquisition request includes: identifier information of the first verification response;
  • the receiving module is further configured to receive a certificate number corresponding to the electronic data fed back by the certificate verification platform;
  • the sending module is further configured to send the certificate number to the counterparty corresponding to the electronic data transaction.
  • the device further includes:
  • a storage module configured to store, by the determining submodule, the determination result that the electronic data has been protected by the certificate verification platform and the first data string generated by the data string generation submodule ;
  • the comparison submodule is further configured to compare whether the first data string has been stored in the local database
  • the obtaining module is further configured to: after the comparison sub-module is compared, find that the local database exists When the first data string is stored, the determination result is obtained from the storage module.
  • the sending module is specifically configured to send an authentication request with CA authentication information to the certificate verification platform to provide identity verification to the certificate verification platform.
  • the invention also provides a deposit verification platform, comprising:
  • a receiving module configured to receive an authentication request sent by the e-commerce platform, where the verification request includes verification related information for performing verification of the verification information of the deposit information on the electronic data involved in the ongoing electronic data transaction of the e-commerce platform;
  • a verification module configured to verify, according to the verification related information, whether the electronic data has been verified
  • a feedback module configured to feed back a verification response to the e-commerce platform.
  • the verification related information includes a first data string, and the first data string is data information uniquely corresponding to the electronic data; correspondingly,
  • the verification module is specifically configured to compare whether the first data string is already stored in the certificate database
  • the feedback module is specifically configured to: when the verification module obtains the verification result that the first data string is not stored, the first verification response that does not find the deposit information is fed back; When the verification result of the first data string is described, the first verification response of the deposit certificate information is fed back;
  • the verification related information includes a certificate number of the electronic data, correspondingly,
  • the verification module is specifically configured to search for a certificate of deposit corresponding to the certificate number of the certificate;
  • the feedback module is specifically configured to: when the verification module performs the search, if the certificate of the certificate corresponding to the certificate number is not found, the second verification response that does not find the certificate information is fed back; After the module performs the search and obtains the certificate of deposit corresponding to the certificate number, the certificate is displayed to the e-commerce platform; the certificate includes: second data that uniquely identifies the electronic data of the certificate. String information; wherein the e-commerce platform compares the first data string with the second data string to determine that the electronic data has been stored and protected;
  • the verification related information includes a trusted timestamp of the electronic data and the first data string, correspondingly,
  • the verification module is specifically configured to compare whether the first data string is already stored in the certificate database
  • the feedback module is specifically configured to: when the verification module obtains the verification result that the first data string is not stored, the third verification response that does not find the deposit information is fed back; When the verification result of the first data string is described, the certificate time corresponding to the first data string is found, and a unique second data string is generated according to the first data string and the certificate time; The trusted timestamp is decrypted to obtain a third data string; if the second data string and the third data string are completely matched, the third verification response of the stored information is fed back to the e-commerce platform.
  • the receiving module is further configured to receive a certificate of the certificate number obtained by the e-commerce platform, where the request for obtaining includes: the first of the check-up information that is fed back to the e-commerce platform Verify the identification information of the response;
  • the feedback module is further configured to obtain a certificate number corresponding to the electronic data according to the identifier information of the first verification response, and send the certificate number to the e-commerce platform.
  • the feedback module is specifically configured to feed back a verification response with CA authentication information to provide identity verification to the e-commerce platform.
  • the invention also provides an electronic data consistency verification system, comprising:
  • the electronic data consistency verification device provided by the invention; and the verification verification platform provided by the invention.
  • the electronic data consistency verification method, device, system and verification verification platform monitor the transaction information on the e-commerce platform, and when the transaction information relates to the electronic data transaction, suspend the transaction process and obtain verification corresponding to the electronic data.
  • the information is sent to the certificate verification platform to send a verification request for the verification of the certificate information of the electronic data to the certificate verification platform; receiving the verification response fed back by the certificate verification platform, and determining whether the electronic data of the e-commerce platform is based on the verification response Consistent with the electronic data that has been deposited by the certificate verification platform; if the consistency verification is passed, the electronic data is allowed to continue to be traded. This protects the original interests of electronic data deposit holders on electronic data, guarantees the legality of transactions between buyers and sellers, and establishes the legal authority of electronic data intellectual property protection.
  • FIG. 1 is a flowchart of an electronic data consistency verification method according to an exemplary embodiment
  • FIGS. 2 to 4 are flowcharts showing an electronic data consistency verification method according to another exemplary embodiment
  • FIG. 5 is a flowchart of another electronic data consistency verification method according to an exemplary embodiment
  • 6-8 are flowcharts of another electronic data consistency verification method according to another exemplary embodiment.
  • FIG. 9 is a schematic structural diagram of an electronic data consistency verification apparatus according to an exemplary embodiment.
  • FIG. 10 is a schematic structural diagram of an electronic data consistency verification apparatus according to another exemplary embodiment.
  • FIG. 11 is a schematic structural diagram of a certificate verification platform according to an exemplary embodiment
  • FIG. 12 is a schematic structural diagram of an electronic data consistency verification system according to an exemplary embodiment.
  • FIG. 1 is a flowchart of an electronic data consistency verification method according to an exemplary embodiment.
  • the electronic data consistency verification method provided in this embodiment is suitable for performing consistency check on electronic data items appearing in an electronic data transaction and electronic data stored in a certificate verification platform to ensure electronic data.
  • the source of the goods is legal, thereby ensuring that the electronic data transaction is legal, while also protecting the interests of the electronic data owner and establishing intellectual property rights.
  • the legal authority of protection is provided.
  • the electronic data consistency verification method provided in this embodiment may be implemented based on an electronic data consistency verification system, and the system includes an e-commerce platform and an inventory verification platform having an electronic data consistency verification device, and the method of the embodiment may pass the e-commerce
  • the electronic data consistency verification device on the platform side is executed, and specifically includes the following steps:
  • Step A101 Monitor transaction information on the e-commerce platform.
  • the transaction information relates to the electronic data transaction, suspend the transaction process and obtain verification related information corresponding to the electronic data.
  • the e-commerce platform is provided with a device or an application for performing consistency verification on the electronic data, and the device for performing the consistency verification monitors the transaction information on the e-commerce platform according to the preset monitoring program, and once the transaction content is found In the case of transactions involving electronic data, the transaction is suspended to verify the consistency of the deposit information in the electronic data in the transaction, and the transaction is allowed to continue after the verification is passed.
  • electronic data can be any format of electronic data, plain text, pictures, audio and video, software code, etc., common electronic data transactions, such as Taobao online sales of software code, picture material and other electronic data products, if not clear
  • the source information of these electronic data commodities is likely to cause the buyer to purchase and use the electronic data of the intellectual property rights of others, causing infringement, and the e-commerce platform that sells these infringing electronic data commodities also has an unshirkable regulatory responsibility. Therefore, the e-commerce platform It is necessary to conduct a consistency check of the deposit information on transactions involving electronic data to ensure the interests of both buyers and sellers and to ensure the legal authority of intellectual property protection.
  • Step A102 Send, according to the verification related information, a verification request for performing verification of the certificate information consistency of the electronic data to the certificate verification platform.
  • the certificate verification platform may be a trusted third party verification verification platform, in which the content of the electronic data itself is stored, and/or a data string uniquely corresponding to the electronic data is stored, and the unique corresponding data string generation process
  • the hash value of the electronic data may be obtained according to a preset hash algorithm, such as a Message Digest Algorithm (MD5) or a Secure Hash Algorithm (SHA). Corresponding data string.
  • MD5 Message Digest Algorithm
  • SHA Secure Hash Algorithm
  • Step A103 Receive a verification response fed back by the certificate verification platform, and determine, according to the verification response, whether the electronic data has been protected by the certificate on the certificate verification platform.
  • Step A104 If the electronic data has been protected by the deposit verification platform, the electronic data is allowed to continue to be traded.
  • the e-commerce platform does not allow the seller to continue to sell the electronic data commodity to realize the intellectual property protection of the electronic data commodity.
  • the electronic data consistency verification method provided by the embodiment, by monitoring the transaction information on the e-commerce platform, when the transaction information relates to the electronic data transaction, suspending the transaction process and obtaining verification related information corresponding to the electronic data; according to the verification related information, Sending a verification request for the verification of the certificate information of the electronic data to the certificate verification platform; receiving the verification response fed back by the certificate verification platform, and determining whether the electronic data of the e-commerce platform and the certificate verification platform have been verified according to the verification response
  • the electronic data is consistent; if the consistency verification is passed, the electronic data is allowed to continue to trade. This protects the original interests of electronic data deposit holders on electronic data, guarantees the legality of transactions between buyers and sellers, and establishes the legal authority of electronic data intellectual property protection.
  • FIG. 2 to 4 are flowcharts showing an electronic data consistency verification method according to another exemplary embodiment. As shown in FIG. 2 to FIG. 4, on the basis of the above embodiments, there are three ways to verify whether the electronic data and the certificate information are consistently verified in the certificate verification platform:
  • the first verification method is: verifying that the related information is electronic data; correspondingly, in step A102, according to the verification related information, sending the verification request verification related information for verifying the verification of the electronic data to the certificate verification platform, which may specifically include (as shown in picture 2):
  • Step A201 Generate a first data string according to the electronic data.
  • the first data string is data information uniquely corresponding to the electronic data.
  • Step A202 Send a first verification request to the certificate verification platform, where the first verification request includes: a first data string.
  • the certificate verification platform may only store the first data string uniquely corresponding to the electronic data, or may include both the electronic data itself and the first data string generated based on the electronic data.
  • the results produced in the creative process do not want to be obtained by third parties, but at the same time, they hope that their creative results can be authenticated by the trusted third party for original attribution and original time.
  • the method of depositing only the first data string uniquely corresponding to the electronic data may be sent; the first data string is generated based on the electronic data and uniquely corresponding to the electronic data, which makes the third-party certificate verification platform unable to Get the substance of the original electronic data, but A first data string that is fully equivalent to the electronic data can be obtained.
  • the generation of the first data string may be generated by an e-commerce platform installed by an algorithm generator provided by the certificate verification platform, or may be generated by an e-commerce platform setting an algorithm module conforming to an international standard.
  • the e-commerce platform can also send the obtained electronic data to the certificate verification platform, and the platform generates a first data string based on the electronic data and compares it with the data string of the stored certificate to verify whether the electronic data is available. Deposit information.
  • step A103 receiving the verification response fed back by the certificate verification platform, and determining, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform, Specifically, it may include:
  • Step A203 Receive a first verification response fed back by the certificate verification platform. If the first verification response is a response message that the certificate information is not found, step A204 is performed; if the first verification response is a response message for checking the certificate information, step A205 is performed.
  • Step A204 Determine that the electronic data is not protected by the certificate in the certificate verification platform.
  • Step A205 Determine that the electronic data has been stored and protected on the certificate verification platform.
  • the certificate verification platform according to the first data string information in the first verification request has a first data string stored in the certificate database, and if not, the electronic data is uncertified electronic data, and the feedback is The response message of the deposit information is not found to the e-commerce platform, and the e-commerce platform has the formal responsibility of ensuring the source of the electronic data commodities circulating on the platform. Therefore, according to the feedback information of the third-party trusted certificate verification platform, When it is determined that the electronic data is not protected by the certificate verification platform, the transaction of the electronic data commodity not protected by the certificate is terminated.
  • the second verification method verifying that the relevant information is the electronic data and the certificate number of the electronic data; correspondingly, in step A102, according to the verification related information, the verification of the consistency verification of the electronic information is performed on the electronic verification data platform.
  • the request may specifically include (as shown in Figure 3):
  • Step A301 Send a second verification request to the certificate verification platform, where the second verification request includes a certificate number of the electronic data.
  • the electronic data that has been deposited may carry the certificate number of the certificate that proves its historical and fruitful performance, and the corresponding certificate of deposit is checked on the certificate verification platform according to the certificate number, and then according to the certificate shown in the certificate of deposit. The information determines whether the certificate of deposit is consistent with the electronic data.
  • step A103 receiving the verification response fed back by the certificate verification platform, and determining, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform, Specifically, it may include:
  • Step A302 Receive a second verification response fed back by the certificate verification platform, where the second verification response includes a second data string.
  • the second data string is data information uniquely corresponding to the stored electronic data.
  • the certificate verification platform finds the corresponding certificate of deposit according to the certificate number of the certificate in the second verification request sent by the e-commerce platform, and displays the certificate of the certificate to the e-commerce platform.
  • the certificate may contain the unique identifier.
  • the second data string information of the electronic data of the certificate is data information uniquely corresponding to the stored electronic data.
  • Step A303 Generate a first data string according to the electronic data.
  • step A304 the second data string is compared with the first data string. If they are consistent, step A305 is performed; if not, step A306 is performed.
  • Step A305 Determine that the electronic data has been stored and protected on the certificate verification platform.
  • Step A306 Determine that the electronic data is not protected by the certificate in the certificate verification platform.
  • the e-commerce platform determines whether the electronic data corresponding to the first data string and the electronic data corresponding to the second data string on the certificate certificate have a corresponding relationship by comparing the first data string with the second data string. Therefore, it is determined whether the source of the electronic data on the e-commerce platform side is legal.
  • the third verification method verifying that the relevant information is the electronic data and the trusted time stamp of the electronic data; correspondingly, in step A102, according to the verification related information, the verification of the consistency verification of the electronic information is performed on the electronic verification data platform.
  • the request may specifically include (as shown in Figure 4):
  • Step A401 Generate a first data string according to the electronic data.
  • the first data string is data information uniquely corresponding to the electronic data.
  • Step A402 Send a third verification request to the certificate verification platform, where the third verification request includes: a trusted timestamp of the electronic data and the first data string.
  • the trusted timestamp is data information that proves the time of authentication of the electronic data, and carries the identity information of the certificate verification platform.
  • the certificate verification platform sends a unique corresponding first data string generated based on the electronic data to be stored to the trusted time issuing device when the electronic data is stored, and the trusted time issuing device receives the first data string. Time to issue trusted time information, and the certificate verification platform then sends the trusted time information issued by the device based on the first data string and the trusted time (when the certificate is issued) And generating a unique corresponding second data string, and digitally signing the second data string by using a private key of the certificate verification platform to obtain the trusted time stamp.
  • the second data string can be restored, and the second data string includes the first data string and the certificate time information uniquely corresponding to the stored electronic data. Therefore, the first data string included in the third verification request is used to enable the certificate verification platform to find the corresponding certificate time according to the first data string, and then generate the first according to the first data string and the found certificate time.
  • the third data string compares the second data string obtained by decrypting the trusted time stamp with the third data string. If the data string is consistent, the trusted time stamp and the electronic data to be verified are in a corresponding relationship, and the verification is passed.
  • step A103 receives the verification response fed back by the certificate verification platform, and determines, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform. Specifically, it may include:
  • Step A403 Receive a third verification response fed back by the certificate verification platform. If the third verification response is a response message that the certificate information is not found, step A404 is performed; if the third verification response is a response message for checking the certificate information, step A405 is performed.
  • Step A404 Determine that the electronic data is not protected by the certificate in the certificate verification platform.
  • Step A405 Determine that the electronic data has been stored and protected on the certificate verification platform.
  • the certificate verification platform After receiving the third verification request sent by the e-commerce platform, the certificate verification platform first compares whether the first data string is stored in the certificate database according to the first data string, and if the first data string is not stored in the certificate database And feeding back to the e-commerce platform a third verification response message that the certificate information is not found, if the first data string is stored in the certificate database, the certificate time corresponding to the first data string is found, according to the first data string and the storage The certificate time generates a unique corresponding second data string; the trusted time stamp is decrypted to obtain a third data string; if the second data string and the third data string completely match, the trusted time stamp and the e-commerce platform are obtained.
  • the third verification response message of the stored information is fed back to the e-commerce platform. If the second data string does not match the third data string, the third verification response message that the certificate information is not found is fed back to the e-commerce platform.
  • This method is compared with the first method (verification based on the first data string only), and an additional trusted timestamp is required. The trusted timestamp is issued by a legally trusted third-party certificate verification platform. Therefore, this verification method is more standardized and more secure and authoritative.
  • the following steps can also be included:
  • the certificate verification certificate may be requested to obtain the certificate number, so that the transaction party (the seller and/or the buyer) can view the certificate number. Certificate of deposit of electronic data goods. For example, after purchasing the electronic data commodity, the buyer can find the certificate of the electronic data commodity according to the certificate number to confirm the purchase of the electronic data commodity protected by the certificate. The seller can also check according to the certificate number to ensure the regularity of the electronic data products that he sells.
  • the method may further include:
  • the determination result that the electronic data has been protected by the certificate verification platform is stored corresponding to the first data string.
  • step A201 After the first data string is generated according to the electronic data in step A201, step A303, and step A401, the following steps may be further included:
  • the verification process is accelerated, so that the electronic data that has been verified and verified can be quickly traded.
  • step A102 the verification request verification information related to the certificate verification of the electronic data is sent to the certificate verification platform according to the verification related information, which may specifically include:
  • An authentication request with CA authentication information is sent to the certificate verification platform to provide authentication to the certificate verification platform.
  • the e-commerce platform can perform entity authentication through a digital certificate certification authority, such as a CA credible authentication institution, before obtaining electronic data and certificate information consistency verification, and obtain a digital certificate issued by the CA to realize digital signature of the transmitted information, thereby indicating The identity of the e-commerce platform that sent the verification request, And to ensure that the verification request has not been tampered with during the transmission.
  • a digital certificate certification authority such as a CA credible authentication institution
  • FIG. 5 is a flowchart of another electronic data consistency verification method according to an exemplary embodiment.
  • the electronic data consistency verification method provided in this embodiment may be specifically implemented by a certificate verification platform, and may be implemented in conjunction with an electronic data consistency verification method applied to an e-commerce platform. The description of the embodiments will not be repeated here.
  • Step B101 Receive an authentication request sent by an e-commerce platform.
  • the verification request includes verification related information for verifying the consistency of the deposit information of the electronic data involved in the ongoing electronic data transaction of the e-commerce platform.
  • Step B102 Verify whether the electronic data has been verified according to the verification related information, and feed back the verification response to the e-commerce platform.
  • the electronic data consistency verification method receives the verification request sent by the e-commerce platform, and the verification request includes the verification of the verification of the deposit information of the electronic data involved in the ongoing electronic data transaction of the e-commerce platform. Verify relevant information. Then, according to the verification related information, the electronic data is verified to be verified, and the verification response is fed back to the e-commerce platform.
  • This provides an authoritative and credible verification channel for electronic data products circulating on the e-commerce platform, protects the original interests of electronic data owners, ensures the legality of transactions between buyers and sellers, and establishes laws for the protection of electronic data intellectual property rights. authoritative.
  • FIG. 6-8 are flowcharts of another electronic data consistency verification method according to another exemplary embodiment. As shown in FIG. 6 to FIG. 8 , based on the foregoing embodiment, further, according to different verification related information sent by the e-commerce platform, the method may include the following verification manner:
  • the first verification mode includes the first data string; the first data string is the data information uniquely corresponding to the electronic data; correspondingly, in step B102, the electronic data is verified according to the verification related information, and
  • the feedback response to the e-commerce platform can be specifically included (as shown in Figure 6):
  • Step B201 Align whether the first data string is stored in the certificate database. If the first data string is not stored in the certificate database, step B202 is performed; if the first data string is stored in the certificate database, step B203 is performed.
  • step B202 the first verification response of the deposit information is not found.
  • Step B203 feedback to find the first verification response of the deposit information.
  • the verification related information includes the certificate number of the electronic data; correspondingly, in step B102, the electronic data is verified according to the verification related information, and the verification response is fed back to the e-commerce platform, which may specifically include (As shown in Figure 7):
  • Step B301 Search for a certificate of deposit corresponding to the certificate number of the certificate, if the certificate of the certificate corresponding to the certificate number is not found, perform step B302; if the certificate of the certificate corresponding to the certificate number is found, perform the step B303.
  • Step B302 feedback that the second verification response of the deposit information is not found.
  • Step B303 displaying a certificate of deposit to the e-commerce platform.
  • the certificate of deposit includes: second data string information that uniquely identifies the electronic data. So that the e-commerce platform compares the first data string with the second data string to determine that the electronic data has been stored and protected on the certificate verification platform.
  • the first data string is data information uniquely corresponding to the electronic data generated by the e-commerce platform according to the electronic data.
  • the second data string is the unique data information corresponding to the electronic data information proved by the certificate of deposit. If the two data strings are consistent, the certificate can be proved to correspond to the electronic data obtained by the e-commerce platform, and the verification is passed. .
  • the third verification method includes the trusted time stamp of the electronic data and the first data string; correspondingly, in step B102, the electronic data is verified according to the verification related information, and the verification is performed to the e-commerce platform.
  • the response may specifically include (as shown in Figure 8):
  • Step B401 Align whether the first data string is stored in the certificate database; if the first data string is not stored in the certificate database, step B402 is performed; if the first data string is stored in the certificate database, step B403 is performed.
  • Step B402 The third verification response that the certificate information is not found is fed back.
  • Step B403 Find a time of deposit corresponding to the first data string.
  • Step B404 Generate a unique second data string according to the first data string and the certificate time.
  • Step B405 Decrypt the trusted timestamp to obtain a third data string.
  • Step B406 If the second data string and the third data string are completely matched, the third verification response of the deposit information is fed back to the e-commerce platform.
  • the method may further include the following steps: receiving a certificate of the certificate number obtained by the e-commerce platform, where the request for obtaining includes: identifying information of the first verification response of the certificate information that is fed back to the e-commerce platform; Identification information of the first verification response, corresponding to the electronic data The certificate number is issued and the certificate number is sent to the e-commerce platform.
  • the e-commerce platform After receiving the certificate number, the e-commerce platform can send it to the counterparty corresponding to the electronic data transaction.
  • the transaction party may include the seller and/or the buyer, so that after purchasing the electronic data commodity, the buyer can check the certificate of the electronic data commodity according to the certificate number to confirm the purchase of the electronic data commodity protected by the deposit certificate.
  • the seller can also check according to the certificate number to ensure the regularity of the electronic data products that he sells.
  • the verification verification platform feeds back the verification response to the e-commerce platform, which may include:
  • a verification response with CA authentication information is fed back to the e-commerce platform to provide authentication to the e-commerce platform.
  • FIG. 9 is a schematic structural diagram of an electronic data consistency verification apparatus according to an exemplary embodiment. As shown in FIG. 9 , the electronic data consistency verification apparatus 91 provided in this embodiment may specifically implement various steps of the electronic data consistency verification method applied to the e-commerce platform, and the specific implementation process is not described herein again.
  • the electronic data consistency verification device 91 provided in this embodiment specifically includes:
  • the monitoring module 11 is configured to monitor transaction information on the e-commerce platform.
  • the control module 12 is configured to suspend the transaction process when the monitoring module monitors that the transaction information relates to the electronic data transaction.
  • the obtaining module 13 is configured to obtain verification related information corresponding to the electronic data.
  • the sending module 14 is configured to send, according to the verification related information acquired by the obtaining module 13, a verification request for performing verification of the certificate information consistency of the electronic data to the certificate verification platform.
  • the receiving module 15 is configured to receive the verification response fed back by the certificate verification platform, and determine, according to the verification response, whether the electronic data has been protected by the certificate verification platform.
  • the control module 12 is further configured to allow the electronic data to continue to be traded when the receiving module 15 determines that the electronic data has been protected by the certificate verification platform.
  • FIG. 10 is a schematic structural diagram of an electronic data consistency verification apparatus according to another exemplary embodiment.
  • the sending module 14 in the electronic data consistency verification device 91 provided in this embodiment specifically includes: a data string generating sub-module 141 and a transmitting sub-module 142.
  • the data string generation sub-module 141 is configured to generate a first data string according to the electronic data.
  • the first data string is data information uniquely corresponding to the electronic data.
  • the verification related information acquired by the obtaining module 13 is electronic data, correspondingly,
  • the sending sub-module 142 is configured to send a first verification request to the certificate verification platform, where the first verification request includes: the first data string generated by the data string generation sub-module 141.
  • the verification related information acquired by the obtaining module 13 is the electronic data and the certificate number of the electronic data, correspondingly,
  • the sending submodule 142 is configured to send a second verification request to the certificate verification platform, where the second verification request includes a certificate number of the electronic data.
  • the verification related information acquired by the obtaining module 13 is a trusted time stamp of the electronic data and the electronic data, correspondingly,
  • the sending sub-module 142 is configured to send a third verification request to the certificate verification platform, where the third verification request includes a trusted timestamp of the electronic data and a first data string generated by the data string generation sub-module 141.
  • the receiving module 15 specifically includes:
  • the receiving submodule 151 is configured to receive a first verification response fed back by the verification verification platform.
  • the determining sub-module 152 is configured to: when the first verification response is a response message that does not find the deposit information, determine that the electronic data is not protected by the certificate verification platform; and when the first verification response is to check the deposit information When responding to the message, it is determined that the electronic data has been protected by the certificate on the certificate verification platform.
  • the receiving submodule 151 is further configured to receive a second verification response fed back by the certificate verification platform; and the second verification response includes the second data string.
  • the receiving module 15 further includes:
  • the comparison sub-module 153 is configured to compare the second data string received by the receiving sub-module 151 with the first data string generated by the data string generating sub-module 141.
  • the determining sub-module 152 is further configured to determine, according to the result obtained by comparing the second data string with the first data string, by the comparison sub-module 153, whether the electronic data has been protected by the certificate in the certificate verification platform; The electronic data has been protected by the certificate in the certificate verification platform; if it is inconsistent, it is determined that the electronic data is not protected by the certificate verification platform; the second data string is the data information uniquely corresponding to the stored electronic data.
  • the receiving submodule 151 is further configured to receive a third verification response fed back by the verification verification platform.
  • the determining sub-module 152 is further configured to: when the third verification response is a response message that the certificate information is not found, determine that the electronic data is not protected by the certificate verification platform; and when the third verification response is When the response message of the deposit information is obtained, it is determined that the electronic data has been protected by the certificate on the certificate verification platform.
  • the sending module 14 is further configured to send a certificate of certificate number acquisition request of the electronic data to the certificate verification platform, where the acquisition request includes: identifier information of the first verification response.
  • the receiving module 15 is further configured to receive a certificate number corresponding to the electronic data fed back by the certificate verification platform.
  • the sending module 14 is further configured to send the certificate number to the counterparty corresponding to the electronic data transaction.
  • the device may further include:
  • the storage module 16 is configured to store the determination result that the electronic data determined by the determining sub-module 152 has been subjected to the certificate protection in the certificate verification platform, and the first data string generated by the data string generation sub-module.
  • the comparison sub-module 153 is also used to compare whether the first data string has been stored in the local database.
  • the obtaining module 13 is further configured to: when the comparison sub-module 153 compares, find that the first data string is stored in the local database, and obtain the determination result from the storage module 16.
  • the sending module 14 is specifically configured to send an authentication request with the CA authentication information to the certificate verification platform to provide identity verification to the certificate verification platform.
  • FIG. 11 is a schematic structural diagram of a certificate verification platform according to an exemplary embodiment. As shown in FIG. 11 , the certificate verification platform 92 provided in this embodiment can implement various steps of the electronic data consistency verification method applied to the certificate verification platform, and the specific implementation process is not described herein.
  • the certificate verification platform 92 provided in this embodiment specifically includes:
  • the receiving module 21 is configured to receive an authentication request sent by the e-commerce platform, where the verification request includes verification related information for verifying the consistency of the deposit information of the electronic data involved in the ongoing electronic data transaction of the e-commerce platform.
  • the verification module 22 is configured to verify whether the electronic data has been verified according to the verification related information.
  • the feedback module 23 is configured to feed back the verification response to the e-commerce platform.
  • the certificate verification platform 92 provided in this embodiment may further include:
  • the verification related information includes a first data string, and the first data string is data information uniquely corresponding to the electronic data.
  • the verification module 22 is specifically configured to compare whether the first data string has been stored in the certificate database.
  • the feedback module 23 is specifically configured to: when the verification module 22 compares and obtains the verification result that the first data string is not stored, the first verification response that does not find the deposit information is fed back; when the first data string is stored When the result is verified, the feedback checks the first verification response of the deposit information.
  • the verification module 22 is specifically configured to search for a certificate of deposit corresponding to the certificate number.
  • the feedback module 23 is specifically configured to: when the verification module 22 performs the search, if the certificate of the certificate corresponding to the certificate number is not found, the second verification response that does not find the certificate information is fed back; when the verification module searches, it is found. And displaying the certificate of deposit with the certificate of the certificate of the certificate, wherein the certificate of deposit includes: a second string of data that uniquely identifies the electronic data of the certificate; The data string and the second data string determine that the electronic data has been protected by the certificate.
  • the verification related information includes a trusted timestamp of the electronic data and the first data string.
  • the verification module 22 is specifically configured to compare whether the first data string has been stored in the certificate database.
  • the feedback module 23 is specifically configured to: when the verification module 22 compares and obtains the verification result that the first data string is not stored, the third verification response that does not find the deposit information is fed back; when the first data string is stored When verifying the result, finding a deposit time corresponding to the first data string, and generating a unique second data string according to the first data string and the certificate time; decrypting the trusted time stamp to obtain a third data string; The second data string and the third data string are completely matched, and the third verification response of the deposit information is fed back to the e-commerce platform.
  • the receiving module 21 is further configured to receive a certificate number obtaining request sent by the e-commerce platform, where the obtaining request includes: identifier information of the first verification response of the check-up information that is fed back to the e-commerce platform.
  • the feedback module 23 is further configured to obtain the certificate number of the certificate corresponding to the electronic data according to the identifier information of the first verification response, and send the certificate number to the e-commerce platform.
  • the feedback module 23 is specifically configured to feed back a verification response with CA authentication information. To provide authentication to the e-commerce platform.
  • FIG. 12 is a schematic structural diagram of an electronic data consistency verification system according to an exemplary embodiment.
  • the electronic data consistency verification system provided in this embodiment includes the electronic data consistency verification device 91 provided by any embodiment of the present invention, and the certificate verification platform 92 provided by any embodiment of the present invention.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Health & Medical Sciences (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Bioethics (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Storage Device Security (AREA)

Abstract

A method, device and system for verifying consistency of electronic data and a certificate verification platform. The method comprises: monitoring transaction information on an e-commerce platform, and when the transaction information is related to an electronic data transaction, suspending the transaction process and acquiring verification-related information corresponding to the electronic data; on the basis of the verification-related information, transmitting to the certificate verification platform a verification request for verifying the consistency of certified information with electronic data; receiving a verification response fed back by the certificate verification platform, and determining whether the electronic data at the e-commerce platform end is consistent with the electronic data certified at the certificate verification platform; and if the consistency verification is successful, enabling the transaction of electronic data to continue. The present invention protects the profits from original creation of the electronic data possessed by the owner of the electronic data certificate, guarantees the legality of the transaction for both buyers and sellers, and provides legal authority to the intellectual property protection of electronic data.

Description

电子数据一致性验证方法、装置、系统及存证验证平台Electronic data consistency verification method, device, system and certificate verification platform 技术领域Technical field
本发明涉及电子数据信息固话存储及验证技术领域,涉及第三方对电子数据进行存证和一致性验证领域,尤其涉及一种电子数据一致性验证方法、装置、系统及存证验证平台。The invention relates to the technical field of electronic data information fixed-line storage and verification, and relates to the field of third-party electronic certificate storage and consistency verification, in particular to an electronic data consistency verification method, device, system and verification verification platform.
背景技术Background technique
随着互联网技术的普及,网络已经慢慢成为了数据传递、传播的重要途径。With the popularity of Internet technology, the network has gradually become an important way of data transmission and dissemination.
电子数据尤其对于创新创意的电子数据,例如:技术文档、软件代码、设计素材、音视频作品等,其发明创造的构思一般都以电子形式记录,随之而来的问题是,若这些创新创意电子数据不能被具有法律效力地存储下来,一旦泄露,随着网络的传播速度快、范围广,则很难证明其原创的历史、原创的成果。Electronic data, especially for innovative creative electronic data, such as technical documents, software code, design materials, audio and video works, etc., the concept of invention and creation is generally recorded in electronic form, and the problem is that if these innovative ideas Electronic data cannot be stored legally. Once leaked, it is difficult to prove its original history and original results as the network spreads quickly and has a wide range.
目前对于电子数据的保护基本都是通过给电子作品加密或打上水印的方式,但这种方式仅能对作品本身进行一定程度的防篡改保护,很难证明其原创的时间性及归属性,维权艰难。我国相关法律对电子数据的原件形式有如下规定:能够可靠地保证自最终形成时起,内容保持完整、未被更改。通常一般情况下,由中立的第三方云端保存的电子数据,其证明力大于当事人保存的电子数据。At present, the protection of electronic data is basically by encrypting or watermarking electronic works, but this method can only protect the work itself to a certain degree of tamper protection, and it is difficult to prove its original timeliness and attribution. difficult. The relevant laws of China have the following provisions on the original form of electronic data: it can reliably guarantee that the content remains intact and has not been changed since the final formation. Generally, electronic data stored by a neutral third-party cloud is more powerful than the electronic data saved by the parties.
电子数据的发明人或所有人将其原创的电子数据在第三方存证验证平台上进行存证之后,随着而来的问题是,如何在流通环节中对已存证的电子数据进行保护,明确该电子数据归属者的权益;或者,当用户购买到某一电子数据商品时,如何查验该电子数据商品的归属权等种种问题。例如,淘宝网上有许多软件代码、图片素材等电子数据商品,由于不清楚这些电子数据商品的来源信息,而无法将售卖这些非存证保护的电子数据商品的利益返回给电子数据的所有人,严重影响了知识产权保护的法律权威性,因此,亟需一种平台可以使用户的原创电子数据获得可信第三方的存 证保护,并且还可以提供电子数据与其存证信息一致性的验证,既可以证明电子数据的历史性和成果性,又可以保护电子数据所有人的利益,保证电子数据在流通环节中买卖双方的交易合法性,树立电子数据知识产权保护的法律权威性。After the inventor or owner of the electronic data has verified the original electronic data on the third-party certificate verification platform, the question that arises is how to protect the electronic data of the deposited certificate in the circulation link. The rights of the electronic data owner are clarified; or, when the user purchases an electronic data product, how to check the ownership of the electronic data product and the like. For example, Taobao has many electronic data products such as software code and picture material. Because the source information of these electronic data products is not clear, it is impossible to return the benefits of selling these non-certified electronic data products to the owner of the electronic data. , seriously affecting the legal authority of intellectual property protection, therefore, there is a need for a platform that allows users to obtain original electronic data from trusted third parties. Certificate protection, and can also provide verification of the consistency of electronic data and its deposit information, which can prove the historical and fruitful of electronic data, protect the interests of electronic data owners, and ensure the electronic data in the circulation of buyers and sellers The legality of transactions and the legal authority to protect intellectual property rights of electronic data.
发明内容Summary of the invention
本发明提供一种电子数据一致性验证方法、装置、系统及存证验证平台,可以为电子数据提供可信的存证时间证明,并且为流通环节中的电子数据提供灵活且可靠的验证保护,有效保证电子数据所有人的利益,保证电子数据在流通环节中买卖双方的交易合法性,树立电子数据知识产权保护的法律权威性。The invention provides an electronic data consistency verification method, device, system and verification verification platform, which can provide a credible time certification certificate for electronic data and provide flexible and reliable verification protection for electronic data in the circulation link. Effectively guarantee the interests of electronic data owners, ensure the legality of the transaction of electronic data in the circulation of buyers and sellers, and establish the legal authority of electronic data intellectual property protection.
本发明提供一种电子数据一致性验证方法,包括:The invention provides an electronic data consistency verification method, comprising:
监控电商平台上的交易信息,当所述交易信息涉及电子数据交易时,暂停交易过程并获取所述电子数据对应的验证相关信息;Monitoring transaction information on the e-commerce platform, and when the transaction information relates to the electronic data transaction, suspending the transaction process and obtaining verification related information corresponding to the electronic data;
根据所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求;And sending, to the certificate verification platform, a verification request for performing verification of the certificate information consistency on the electronic data according to the verification related information;
接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保护;Receiving a verification response fed back by the certificate verification platform, and determining, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform;
若所述电子数据已在所述存证验证平台进行存证保护,则允许所述电子数据继续交易。If the electronic data has been certificate-protected on the certificate verification platform, the electronic data is allowed to continue to be traded.
进一步地,所述验证相关信息为所述电子数据;相应的,所述根据所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求,包括:Further, the verification related information is the electronic data; correspondingly, the sending, according to the verification related information, a verification request for performing verification of the verification of the electronic information on the electronic data to the certificate verification platform, including:
根据所述电子数据,生成第一数据串;所述第一数据串是与所述电子数据唯一对应的数据信息;Generating, according to the electronic data, a first data string; the first data string is data information uniquely corresponding to the electronic data;
向存证验证平台发送第一验证请求,所述第一验证请求包含:所述第一数据串;Sending a first verification request to the certificate verification platform, where the first verification request includes: the first data string;
或者,所述验证相关信息为所述电子数据以及所述电子数据的存证证书编号;相应的,所述根据所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求,包括: Or the verification related information is the electronic data and the certificate number of the electronic data; correspondingly, the transmitting the information about the electronic data to the certificate verification platform according to the verification related information Validation request for consistency verification, including:
向存证验证平台发送第二验证请求,所述第二验证请求包含所述电子数据的存证证书编号;Sending a second verification request to the certificate verification platform, where the second verification request includes a certificate number of the electronic data;
或者,or,
所述验证相关信息为所述电子数据以及所述电子数据的可信时间戳;相应的,所述根据所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求,包括:The verification related information is a trusted time stamp of the electronic data and the electronic data; correspondingly, the transmitting, according to the verification related information, transmitting, to the certificate verification platform, performing consistency of the deposit information on the electronic data Verified verification request, including:
根据所述电子数据,生成所述第一数据串,向存证验证平台发送第三验证请求,所述第三验证请求包含所述电子数据的可信时间戳及所述第一数据串。And generating, according to the electronic data, the first data string, and sending a third verification request to the certificate verification platform, where the third verification request includes a trusted timestamp of the electronic data and the first data string.
进一步地,所述向存证验证平台发送第一验证请求,所述第一验证请求包含:所述第一数据串之后,相应的,所述接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保护,包括:Further, the sending, to the certificate verification platform, a first verification request, where the first verification request includes: after the first data string, correspondingly, receiving the verification response fed back by the certificate verification platform, and Determining, according to the verification response, whether the electronic data has been protected by the deposit verification platform, including:
接收所述存证验证平台反馈的第一验证响应;若所述第一验证响应为未查到存证信息的响应消息,确定所述电子数据未在所述存证验证平台进行存证保护;若所述第一验证响应为查到存证信息的响应消息,确定所述电子数据已在所述存证验证平台进行存证保护;Receiving the first verification response fed back by the certificate verification platform; if the first verification response is a response message that the certificate information is not found, determining that the electronic data is not protected by the certificate on the certificate verification platform; If the first verification response is a response message for checking the deposit information, determining that the electronic data has been stored and protected on the certificate verification platform;
所述向存证验证平台发送第二验证请求,所述第二验证请求包含所述电子数据的存证证书编号之后,相应的,所述接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保护,包括:Transmitting, to the certificate verification platform, a second verification request, where the second verification request includes the certificate number of the electronic data, and correspondingly, receiving the verification response fed back by the certificate verification platform, and according to The verification response determines whether the electronic data has been certificate-protected on the verification verification platform, including:
接收所述存证验证平台反馈的第二验证响应;所述第二验证响应包含第二数据串;根据所述电子数据,生成第一数据串;将所述第二数据串与所述第一数据串进行比对,若一致,确定所述电子数据已在所述存证验证平台进行存证保护;若不一致,确定所述电子数据未在所述存证验证平台进行存证保护;所述第二数据串是与存证电子数据唯一对应的数据信息;Receiving a second verification response fed back by the verification verification platform; the second verification response includes a second data string; generating a first data string according to the electronic data; and the second data string and the first The data strings are compared, if they are consistent, it is determined that the electronic data has been stored and protected on the certificate verification platform; if not, it is determined that the electronic data is not protected by the certificate verification platform; The second data string is data information uniquely corresponding to the stored electronic data;
所述向存证验证平台发送第三验证请求,所述第三验证请求包含所述电子数据的可信时间戳及所述第一数据串之后,相应的,所述接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保护,包括: Transmitting, to the certificate verification platform, a third verification request, where the third verification request includes the trusted timestamp of the electronic data and the first data string, and correspondingly, the receiving the verification verification platform And verifying the response of the feedback, and determining, according to the verification response, whether the electronic data has been protected by the deposit verification platform, including:
接收所述存证验证平台反馈的第三验证响应;若所述第三验证响应为未查到存证信息的响应消息,确定所述电子数据未在所述存证验证平台进行存证保护;若所述第三验证响应为查到存证信息的响应消息,确定所述电子数据已在所述存证验证平台进行存证保护。Receiving a third verification response fed back by the verification verification platform; if the third verification response is a response message that does not find the deposit information, determining that the electronic data is not protected by the deposit verification on the verification verification platform; If the third verification response is a response message for checking the deposit information, it is determined that the electronic data has been protected by the deposit verification platform.
进一步地,所述若所述第一验证响应为查到存证信息的响应消息,确定所述电子数据已在所述存证验证平台进行存证保护之后,还包括:Further, if the first verification response is a response message for checking the deposit information, determining that the electronic data has been protected by the certificate verification platform, the method further includes:
向所述存证验证平台发送所述电子数据的存证证书编号获取请求,所述获取请求包含:所述第一验证响应的标识信息;Transmitting, by the certificate verification platform, the certificate number obtaining request of the electronic data, where the obtaining request includes: identifier information of the first verification response;
接收所述存证验证平台反馈的所述电子数据对应的存证证书编号;Receiving a certificate number corresponding to the electronic data fed back by the certificate verification platform;
将所述存证证书编号发送给所述电子数据交易对应的交易方。Sending the certificate number to the counterparty corresponding to the electronic data transaction.
进一步地,所述确定所述电子数据已在所述存证验证平台进行存证保护之后,还包括:Further, after the determining that the electronic data has been protected by the deposit verification platform, the method further includes:
将所述电子数据已在所述存证验证平台进行存证保护的确定结果与所述第一数据串对应存储;And determining, by the electronic data, the determination result of the certificate protection in the certificate verification platform, corresponding to the first data string;
相应的,所述根据所述电子数据,生成第一数据串之后,还包括:Correspondingly, after the generating the first data string according to the electronic data, the method further includes:
比对本地数据库中是否已存储所述第一数据串,若存在,获取与所述第一数据串对应的所述电子数据已在所述存证验证平台进行存证保护的确定结果。Aligning whether the first data string has been stored in the local database, and if so, obtaining a determination result that the electronic data corresponding to the first data string has been subjected to certificate protection in the certificate verification platform.
进一步地,所述向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求,包括:Further, the sending, to the certificate verification platform, a verification request for performing verification of the certificate information consistency of the electronic data, including:
向存证验证平台发送带有CA认证信息的验证请求,以向所述存证验证平台提供身份验证。An authentication request with CA authentication information is sent to the certificate verification platform to provide authentication to the certificate verification platform.
本发明还提供一种电子数据一致性验证方法,包括:The invention also provides an electronic data consistency verification method, comprising:
接收电商平台发送的验证请求,所述验证请求中包含对所述电商平台正在进行的电子数据交易中所涉及的电子数据进行存证信息一致性验证的验证相关信息;Receiving a verification request sent by the e-commerce platform, where the verification request includes verification related information for verifying the consistency of the deposit information of the electronic data involved in the ongoing electronic data transaction of the e-commerce platform;
根据所述验证相关信息对所述电子数据是否已存证进行验证,并向所述电商平台反馈验证响应。Verifying whether the electronic data has been verified according to the verification related information, and feeding back a verification response to the e-commerce platform.
进一步地,所述验证相关信息包含第一数据串;所述第一数据串是与电子数据唯一对应的数据信息;相应的,所述根据所述验证相关信息对 所述电子数据是否已存证进行验证,并向所述电商平台反馈验证响应,包括:Further, the verification related information includes a first data string; the first data string is data information uniquely corresponding to the electronic data; and correspondingly, the verification related information is Whether the electronic data has been verified for verification, and the verification response is fed back to the e-commerce platform, including:
比对存证数据库中是否已存储有所述第一数据串;若没有,反馈未查到存证信息的第一验证响应;若有,反馈查到存证信息的第一验证响应;Aligning whether the first data string is stored in the certificate database; if not, the feedback does not find the first verification response of the certificate information; if yes, the first verification response of the certificate information is fed back;
或者,所述验证相关信息包含所述电子数据的存证证书编号;相应的,所述根据所述验证相关信息对所述电子数据是否已存证进行验证,并向所述电商平台反馈验证响应,包括:Or the verification related information includes a certificate number of the electronic data; correspondingly, the verification of the electronic data according to the verification related information is verified, and the verification is performed to the e-commerce platform. Response, including:
查找与所述存证证书编号对应的存证证书,若没有,反馈未查到存证信息的第二验证响应;若有,向所述电商平台显示所述存证证书,所述存证证书包含:唯一标识电子数据的第二数据串信息;以使所述电商平台比对所述第一数据串与所述第二数据串确定所述电子数据已在存证验证平台进行存证保护;Searching for a certificate of deposit corresponding to the certificate number, if not, not reporting a second verification response of the certificate information; if yes, displaying the certificate of deposit to the e-commerce platform, the certificate The certificate includes: second data string information that uniquely identifies the electronic data; wherein the e-commerce platform compares the first data string with the second data string to determine that the electronic data has been verified on a certificate verification platform protection;
或者,所述验证相关信息包含所述电子数据的可信时间戳及所述第一数据串;相应的,所述根据所述验证相关信息对所述电子数据是否已存证进行验证,并向所述电商平台反馈验证响应,包括:比对存证数据库中是否已存储有所述第一数据串;若没有,反馈未查到存证信息的第三验证响应;若有,找到与所述第一数据串对应的存证时间,并根据所述第一数据串和所述存证时间生成唯一对应的第二数据串;对所述可信时间戳进行解密,得到第三数据串;若所述第二数据串与所述第三数据串完全匹配,向所述电商平台反馈查到存证信息的第三验证响应。Or the verification related information includes a trusted timestamp of the electronic data and the first data string; and correspondingly, the verification, according to the verification related information, whether the electronic data has been verified, and The e-commerce platform feedback verification response includes: comparing whether the first data string is stored in the verification certificate database; if not, the feedback does not find the third verification response of the deposit information; if yes, finding and Determining a certificate time corresponding to the first data string, and generating a unique second data string according to the first data string and the certificate time; decrypting the trusted timestamp to obtain a third data string; And if the second data string and the third data string completely match, the third verification response of the certificate information is fed back to the e-commerce platform.
进一步地,所述方法还包括:Further, the method further includes:
接收所述电商平台发送的存证证书编号获取请求,所述获取请求包含:向所述电商平台反馈的所述查到存证信息的第一验证响应的标识信息;And receiving, by the e-commerce platform, a certificate number obtaining request, where the obtaining request includes: identifier information of the first verification response of the check-up information that is fed back to the e-commerce platform;
根据所述第一验证响应的标识信息,获取所述电子数据对应的存证证书编号,并向所述电商平台发送所述存证证书编号。Obtaining, according to the identifier information of the first verification response, a certificate number corresponding to the electronic data, and sending the certificate number to the e-commerce platform.
进一步地,所述向所述电商平台反馈验证响应,包括:Further, the feeding back the verification response to the e-commerce platform includes:
反馈带有CA认证信息的验证响应,以向所述电商平台提供身份验证。A verification response with CA authentication information is fed back to provide authentication to the e-commerce platform.
本发明还提供一种电子数据一致性验证装置,包括:The invention also provides an electronic data consistency verification device, comprising:
监控模块,用于监控电商平台上的交易信息;a monitoring module for monitoring transaction information on the e-commerce platform;
控制模块,用于当所述监控模块监控到所述交易信息涉及电子数据 交易时,暂停交易过程;a control module, configured to: when the monitoring module monitors, the transaction information relates to electronic data Suspend the transaction process during the transaction;
获取模块,用于获取所述电子数据对应的验证相关信息;An obtaining module, configured to obtain verification related information corresponding to the electronic data;
发送模块,用于根据所述获取模块获取到的所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求;a sending module, configured to send, according to the verification related information acquired by the acquiring module, a verification request for performing verification of the certificate information consistency on the electronic data to the certificate verification platform;
接收模块,用于接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保护;a receiving module, configured to receive a verification response fed back by the certificate verification platform, and determine, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform;
所述控制模块,还用于当所述接收模块确定所述电子数据已在所述存证验证平台进行存证保护时,允许所述电子数据继续交易。The control module is further configured to allow the electronic data to continue to be traded when the receiving module determines that the electronic data has been stored and protected by the certificate verification platform.
进一步地,所述发送模块包括:数据串生成子模块、发送子模块;Further, the sending module includes: a data string generating submodule and a sending submodule;
数据串生成子模块,用于根据电子数据,生成第一数据串;所述第一数据串是与所述电子数据唯一对应的数据信息;a data string generation submodule, configured to generate a first data string according to the electronic data; the first data string is data information uniquely corresponding to the electronic data;
所述获取模块获取到的所述验证相关信息为所述电子数据,相应的,The verification related information acquired by the obtaining module is the electronic data, correspondingly,
所述发送子模块,用于向存证验证平台发送第一验证请求,所述第一验证请求包含:所述数据串生成子模块生成的所述第一数据串;The sending submodule is configured to send a first verification request to the certificate verification platform, where the first verification request includes: the first data string generated by the data string generation submodule;
或者,所述获取模块获取到的所述验证相关信息为所述电子数据以及所述电子数据的存证证书编号,相应的,Or the verification related information acquired by the obtaining module is the electronic data and the certificate number of the electronic data, correspondingly,
所述发送子模块,用于向存证验证平台发送第二验证请求,所述第二验证请求包含所述电子数据的存证证书编号;The sending submodule is configured to send a second verification request to the certificate verification platform, where the second verification request includes a certificate number of the electronic data;
或者,所述获取模块获取到的所述验证相关信息为所述电子数据以及所述电子数据的可信时间戳,相应的,Or the verification related information acquired by the acquiring module is the trusted time stamp of the electronic data and the electronic data, correspondingly,
所述发送子模块,用于向存证验证平台发送第三验证请求,所述第三验证请求包含所述电子数据的可信时间戳及所述数据串生成子模块生成的所述第一数据串。The sending submodule is configured to send a third verification request to the certificate verification platform, where the third verification request includes a trusted timestamp of the electronic data and the first data generated by the data string generation submodule string.
进一步地,所述接收模块包括:Further, the receiving module includes:
接收子模块,用于接收所述存证验证平台反馈的第一验证响应;a receiving submodule, configured to receive a first verification response fed back by the verification verification platform;
确定子模块,用于当所述第一验证响应为未查到存证信息的响应消息时,确定所述电子数据未在所述存证验证平台进行存证保护;当所述第一 验证响应为查到存证信息的响应消息时,确定所述电子数据已在所述存证验证平台进行存证保护;a determining submodule, configured to: when the first verification response is a response message that does not find the deposit information, determine that the electronic data is not protected by the deposit verification platform; When the verification response is a response message for checking the deposit information, determining that the electronic data has been stored and protected on the certificate verification platform;
所述接收子模块,还用于接收所述存证验证平台反馈的第二验证响应;所述第二验证响应包含第二数据串;The receiving submodule is further configured to receive a second verification response fed back by the verification verification platform; the second verification response includes a second data string;
比对子模块,用于将所述接收子模块接收到的所述第二数据串与所述数据串生成子模块生成的所述第一数据串进行比对;And a comparison submodule, configured to compare the second data string received by the receiving submodule with the first data string generated by the data string generating submodule;
所述确定子模块,还用于根据所述比对子模块对所述第二数据串与所述第一数据串进行比对得到的结果,确定所述电子数据是否已在所述存证验证平台进行存证保护;若一致,确定所述电子数据已在所述存证验证平台进行存证保护;若不一致,确定所述电子数据未在所述存证验证平台进行存证保护;所述第二数据串是与存证电子数据唯一对应的数据信息;The determining submodule is further configured to determine, according to a result obtained by comparing the second data string with the first data string, by the comparison submodule, whether the electronic data is verified in the deposit verification The platform performs certificate protection; if it is consistent, it is determined that the electronic data has been stored and protected on the certificate verification platform; if not, it is determined that the electronic data is not protected by the certificate on the certificate verification platform; The second data string is data information uniquely corresponding to the stored electronic data;
所述接收子模块,还用于接收所述存证验证平台反馈的第三验证响应;The receiving submodule is further configured to receive a third verification response fed back by the verification verification platform;
所述确定子模块,还用于当所述第三验证响应为未查到存证信息的响应消息时,确定所述电子数据未在所述存证验证平台进行存证保护;当所述第三验证响应为查到存证信息的响应消息时,确定所述电子数据已在所述存证验证平台进行存证保护。The determining submodule is further configured to: when the third verification response is a response message that does not find the deposit information, determine that the electronic data is not protected by the deposit verification platform; The third verification response is that when the response message of the deposit information is found, it is determined that the electronic data has been protected by the deposit verification platform.
进一步地,所述发送模块,还用于向所述存证验证平台发送所述电子数据的存证证书编号获取请求,所述获取请求包含:所述第一验证响应的标识信息;Further, the sending module is further configured to send the certificate of the certificate number of the electronic data to the certificate verification platform, where the acquisition request includes: identifier information of the first verification response;
所述接收模块,还用于接收所述存证验证平台反馈的所述电子数据对应的存证证书编号;The receiving module is further configured to receive a certificate number corresponding to the electronic data fed back by the certificate verification platform;
所述发送模块,还用于将所述存证证书编号发送给所述电子数据交易对应的交易方。The sending module is further configured to send the certificate number to the counterparty corresponding to the electronic data transaction.
进一步地,所述装置还包括:Further, the device further includes:
存储模块,用于将所述确定子模块确定的所述电子数据已在所述存证验证平台进行存证保护的确定结果与所述数据串生成子模块生成的所述第一数据串对应存储;a storage module, configured to store, by the determining submodule, the determination result that the electronic data has been protected by the certificate verification platform and the first data string generated by the data string generation submodule ;
所述比对子模块,还用于比对本地数据库中是否已存储所述第一数据串;The comparison submodule is further configured to compare whether the first data string has been stored in the local database;
所述获取模块,还用于当所述比对子模块比对后发现本地数据库中已存 储所述第一数据串时,从所述存储模块中获取所述确定结果。The obtaining module is further configured to: after the comparison sub-module is compared, find that the local database exists When the first data string is stored, the determination result is obtained from the storage module.
进一步地,所述发送模块,具体用于向存证验证平台发送带有CA认证信息的验证请求,以向所述存证验证平台提供身份验证。Further, the sending module is specifically configured to send an authentication request with CA authentication information to the certificate verification platform to provide identity verification to the certificate verification platform.
本发明还提供一种存证验证平台,包括:The invention also provides a deposit verification platform, comprising:
接收模块,用于接收电商平台发送的验证请求,所述验证请求中包含对所述电商平台正在进行的电子数据交易中所涉及的电子数据进行存证信息一致性验证的验证相关信息;a receiving module, configured to receive an authentication request sent by the e-commerce platform, where the verification request includes verification related information for performing verification of the verification information of the deposit information on the electronic data involved in the ongoing electronic data transaction of the e-commerce platform;
验证模块,用于根据所述验证相关信息对所述电子数据是否已存证进行验证;a verification module, configured to verify, according to the verification related information, whether the electronic data has been verified;
反馈模块,用于向所述电商平台反馈验证响应。a feedback module, configured to feed back a verification response to the e-commerce platform.
进一步地,所述验证相关信息包含第一数据串,所述第一数据串是与电子数据唯一对应的数据信息;相应的,Further, the verification related information includes a first data string, and the first data string is data information uniquely corresponding to the electronic data; correspondingly,
所述验证模块,具体用于比对存证数据库中是否已存储有所述第一数据串;The verification module is specifically configured to compare whether the first data string is already stored in the certificate database;
所述反馈模块,具体用于当所述验证模块进行比对后得到未存储有所述第一数据串的验证结果时,反馈未查到存证信息的第一验证响应;当得到存储有所述第一数据串的验证结果时,反馈查到存证信息的第一验证响应;The feedback module is specifically configured to: when the verification module obtains the verification result that the first data string is not stored, the first verification response that does not find the deposit information is fed back; When the verification result of the first data string is described, the first verification response of the deposit certificate information is fed back;
或者,所述验证相关信息包含所述电子数据的存证证书编号,相应的,Or the verification related information includes a certificate number of the electronic data, correspondingly,
所述验证模块,具体用于查找与所述存证证书编号对应的存证证书;The verification module is specifically configured to search for a certificate of deposit corresponding to the certificate number of the certificate;
所述反馈模块,具体用于当所述验证模块进行查找后得到未找到与所述存证证书编号对应的存证证书时,反馈未查到存证信息的第二验证响应;当所述验证模块进行查找后得到找到与所述存证证书编号对应的存证证书时,向所述电商平台显示所述存证证书;所述存证证书包含:唯一标识存证电子数据的第二数据串信息;以使所述电商平台比对所述第一数据串与所述第二数据串确定所述电子数据已存证保护;The feedback module is specifically configured to: when the verification module performs the search, if the certificate of the certificate corresponding to the certificate number is not found, the second verification response that does not find the certificate information is fed back; After the module performs the search and obtains the certificate of deposit corresponding to the certificate number, the certificate is displayed to the e-commerce platform; the certificate includes: second data that uniquely identifies the electronic data of the certificate. String information; wherein the e-commerce platform compares the first data string with the second data string to determine that the electronic data has been stored and protected;
或者,所述验证相关信息包含所述电子数据的可信时间戳及所述第一数据串,相应的,Or the verification related information includes a trusted timestamp of the electronic data and the first data string, correspondingly,
所述验证模块,具体用于比对存证数据库中是否已存储有所述第一数据串; The verification module is specifically configured to compare whether the first data string is already stored in the certificate database;
所述反馈模块,具体用于当所述验证模块进行比对后得到未存储有所述第一数据串的验证结果时,反馈未查到存证信息的第三验证响应;当得到存储有所述第一数据串的验证结果时,找到与所述第一数据串对应的存证时间,并根据所述第一数据串和所述存证时间生成唯一对应的第二数据串;对所述可信时间戳进行解密,得到第三数据串;若所述第二数据串与所述第三数据串完全匹配,向所述电商平台反馈查到存证信息的第三验证响应。The feedback module is specifically configured to: when the verification module obtains the verification result that the first data string is not stored, the third verification response that does not find the deposit information is fed back; When the verification result of the first data string is described, the certificate time corresponding to the first data string is found, and a unique second data string is generated according to the first data string and the certificate time; The trusted timestamp is decrypted to obtain a third data string; if the second data string and the third data string are completely matched, the third verification response of the stored information is fed back to the e-commerce platform.
进一步地,所述接收模块,还用于接收所述电商平台发送的存证证书编号获取请求,所述获取请求包含:向所述电商平台反馈的所述查到存证信息的第一验证响应的标识信息;Further, the receiving module is further configured to receive a certificate of the certificate number obtained by the e-commerce platform, where the request for obtaining includes: the first of the check-up information that is fed back to the e-commerce platform Verify the identification information of the response;
所述反馈模块,还用于根据所述第一验证响应的标识信息,获取所述电子数据对应的存证证书编号,并向所述电商平台发送所述存证证书编号。The feedback module is further configured to obtain a certificate number corresponding to the electronic data according to the identifier information of the first verification response, and send the certificate number to the e-commerce platform.
进一步地,所述反馈模块,具体用于反馈带有CA认证信息的验证响应,以向所述电商平台提供身份验证。Further, the feedback module is specifically configured to feed back a verification response with CA authentication information to provide identity verification to the e-commerce platform.
本发明还提供一种电子数据一致性验证系统,包括:The invention also provides an electronic data consistency verification system, comprising:
本发明提供的电子数据一致性验证装置;以及本发明提供的存证验证平台。The electronic data consistency verification device provided by the invention; and the verification verification platform provided by the invention.
本发明提供的电子数据一致性验证方法、装置、系统及存证验证平台,通过监控电商平台上的交易信息,当交易信息涉及电子数据交易时,暂停交易过程并获取电子数据对应的验证相关信息;根据该验证相关信息,向存证验证平台发送对电子数据进行存证信息一致性验证的验证请求;接收存证验证平台反馈的验证响应,并根据验证响应确定电商平台端的电子数据是否与存证验证平台已存证的电子数据具有一致性;若一致性验证通过,则允许电子数据继续交易。从而保护了电子数据存证所有人对电子数据所持有的原创利益,保证买卖双方的交易合法性,树立了电子数据知识产权保护的法律权威性。The electronic data consistency verification method, device, system and verification verification platform provided by the invention monitor the transaction information on the e-commerce platform, and when the transaction information relates to the electronic data transaction, suspend the transaction process and obtain verification corresponding to the electronic data. The information is sent to the certificate verification platform to send a verification request for the verification of the certificate information of the electronic data to the certificate verification platform; receiving the verification response fed back by the certificate verification platform, and determining whether the electronic data of the e-commerce platform is based on the verification response Consistent with the electronic data that has been deposited by the certificate verification platform; if the consistency verification is passed, the electronic data is allowed to continue to be traded. This protects the original interests of electronic data deposit holders on electronic data, guarantees the legality of transactions between buyers and sellers, and establishes the legal authority of electronic data intellectual property protection.
附图说明DRAWINGS
为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作一简单地介绍,显而易见地,下面描述中的附图是本发明的一些实施例,对于本领域普通技术 人员来讲,在不付出创造性劳动性的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, a brief description of the drawings used in the embodiments or the prior art description will be briefly described below. Obviously, the drawings in the following description Are some embodiments of the invention, common to the art In terms of personnel, other drawings can be obtained based on these drawings without giving any creative labor.
图1是根据一示例性实施例示出的一种电子数据一致性验证方法的流程图;FIG. 1 is a flowchart of an electronic data consistency verification method according to an exemplary embodiment;
图2~图4是根据另一示例性实施例示出的一种电子数据一致性验证方法的流程图;2 to 4 are flowcharts showing an electronic data consistency verification method according to another exemplary embodiment;
图5是根据一示例性实施例示出的另一种电子数据一致性验证方法的流程图;FIG. 5 is a flowchart of another electronic data consistency verification method according to an exemplary embodiment;
图6~图8是根据另一示例性实施例示出的另一种电子数据一致性验证方法的流程图。6-8 are flowcharts of another electronic data consistency verification method according to another exemplary embodiment.
图9是根据一示例性实施例示出的一种电子数据一致性验证装置的结构示意图;FIG. 9 is a schematic structural diagram of an electronic data consistency verification apparatus according to an exemplary embodiment;
图10是根据另一示例性实施例示出的一种电子数据一致性验证装置的结构示意图;FIG. 10 is a schematic structural diagram of an electronic data consistency verification apparatus according to another exemplary embodiment;
图11是根据一示例性实施例示出的一种存证验证平台的结构示意图;FIG. 11 is a schematic structural diagram of a certificate verification platform according to an exemplary embodiment;
图12是根据一示例性实施例示出的一种电子数据一致性验证系统的结构示意图。FIG. 12 is a schematic structural diagram of an electronic data consistency verification system according to an exemplary embodiment.
具体实施方式detailed description
为使本发明实施例的目的、技术方案和优点更加清楚,下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The technical solutions in the embodiments of the present invention will be clearly and completely described in conjunction with the drawings in the embodiments of the present invention. It is a partial embodiment of the invention, and not all of the embodiments. All other embodiments obtained by those skilled in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
图1是根据一示例性实施例示出的一种电子数据一致性验证方法的流程图。如图1所示,本实施例提供的电子数据一致性验证方法适用于对电子数据交易中出现的电子数据商品进行与存证验证平台已存证的电子数据进行一致性查验,以保证电子数据商品的来源合法,进而保证该电子数据交易合法,同时还可以保护电子数据所有人的利益,树立知识产权 保护的法律权威性。本实施例提供的电子数据一致性验证方法可以基于电子数据一致性验证系统实现,该系统包括具有电子数据一致性验证装置的电商平台、存证验证平台,本实施例的方法可以通过电商平台端的电子数据一致性验证装置来执行,具体包括如下步骤:FIG. 1 is a flowchart of an electronic data consistency verification method according to an exemplary embodiment. As shown in FIG. 1 , the electronic data consistency verification method provided in this embodiment is suitable for performing consistency check on electronic data items appearing in an electronic data transaction and electronic data stored in a certificate verification platform to ensure electronic data. The source of the goods is legal, thereby ensuring that the electronic data transaction is legal, while also protecting the interests of the electronic data owner and establishing intellectual property rights. The legal authority of protection. The electronic data consistency verification method provided in this embodiment may be implemented based on an electronic data consistency verification system, and the system includes an e-commerce platform and an inventory verification platform having an electronic data consistency verification device, and the method of the embodiment may pass the e-commerce The electronic data consistency verification device on the platform side is executed, and specifically includes the following steps:
步骤A101、监控电商平台上的交易信息,当交易信息涉及电子数据交易时,暂停交易过程并获取电子数据对应的验证相关信息。Step A101: Monitor transaction information on the e-commerce platform. When the transaction information relates to the electronic data transaction, suspend the transaction process and obtain verification related information corresponding to the electronic data.
具体地,电商平台上设置有对电子数据进行一致性验证的装置或应用程序,该进行一致性验证的装置根据预设的监控程序对电商平台上的交易信息进行监控,一旦发现交易内容涉及电子数据的交易,暂停该交易,以对该交易中的电子数据进行存证信息一致性验证,验证通过后允许交易的继续进行。其中,电子数据可以为任何格式的电子数据,纯文本、图片、音视频、软件代码等等,常见的电子数据交易例如,淘宝网上销售的软件代码、图片素材等电子数据商品,若不清楚这些电子数据商品的来源信息,易造成买方购买并使用他人知识产权的电子数据,造成侵权,而作为销售这些侵权电子数据商品的电商平台也负有不可推卸的监管责任,因此,电商平台需要对涉及电子数据的交易进行存证信息一致性查验,以保证买卖双方的利益,保证知识产权保护的法律权威性。Specifically, the e-commerce platform is provided with a device or an application for performing consistency verification on the electronic data, and the device for performing the consistency verification monitors the transaction information on the e-commerce platform according to the preset monitoring program, and once the transaction content is found In the case of transactions involving electronic data, the transaction is suspended to verify the consistency of the deposit information in the electronic data in the transaction, and the transaction is allowed to continue after the verification is passed. Among them, electronic data can be any format of electronic data, plain text, pictures, audio and video, software code, etc., common electronic data transactions, such as Taobao online sales of software code, picture material and other electronic data products, if not clear The source information of these electronic data commodities is likely to cause the buyer to purchase and use the electronic data of the intellectual property rights of others, causing infringement, and the e-commerce platform that sells these infringing electronic data commodities also has an unshirkable regulatory responsibility. Therefore, the e-commerce platform It is necessary to conduct a consistency check of the deposit information on transactions involving electronic data to ensure the interests of both buyers and sellers and to ensure the legal authority of intellectual property protection.
步骤A102、根据验证相关信息,向存证验证平台发送对电子数据进行存证信息一致性验证的验证请求。Step A102: Send, according to the verification related information, a verification request for performing verification of the certificate information consistency of the electronic data to the certificate verification platform.
存证验证平台可以为可信第三方的存证验证平台,其内存储有电子数据自身的内容,和/或存储有与该电子数据唯一对应的数据串,该唯一对应的数据串的生成过程可以根据预设哈希算法,如信息摘要算法第五版(Message Digest Algorithm,简称MD5)或者安全散列算法(Secure Hash Algorithm,简称SHA)等,得到该电子数据的哈希值,即该唯一对应的数据串。The certificate verification platform may be a trusted third party verification verification platform, in which the content of the electronic data itself is stored, and/or a data string uniquely corresponding to the electronic data is stored, and the unique corresponding data string generation process The hash value of the electronic data, that is, the unique value, may be obtained according to a preset hash algorithm, such as a Message Digest Algorithm (MD5) or a Secure Hash Algorithm (SHA). Corresponding data string.
步骤A103、接收存证验证平台反馈的验证响应,并根据验证响应确定电子数据是否已在存证验证平台进行存证保护。Step A103: Receive a verification response fed back by the certificate verification platform, and determine, according to the verification response, whether the electronic data has been protected by the certificate on the certificate verification platform.
步骤A104、若电子数据已在存证验证平台进行存证保护,则允许电子数据继续交易。 Step A104: If the electronic data has been protected by the deposit verification platform, the electronic data is allowed to continue to be traded.
若存证验证平台没有查到与交易中的电子数据一致的存证信息,则电商平台不允许卖家继续销售该电子数据商品,以实现对电子数据商品的知识产权保护。If the certificate verification platform does not find the deposit information that is consistent with the electronic data in the transaction, the e-commerce platform does not allow the seller to continue to sell the electronic data commodity to realize the intellectual property protection of the electronic data commodity.
本实施例提供的电子数据一致性验证方法,通过监控电商平台上的交易信息,当交易信息涉及电子数据交易时,暂停交易过程并获取电子数据对应的验证相关信息;根据该验证相关信息,向存证验证平台发送对电子数据进行存证信息一致性验证的验证请求;接收存证验证平台反馈的验证响应,并根据验证响应确定电商平台端的电子数据是否与存证验证平台已存证的电子数据具有一致性;若一致性验证通过,则允许电子数据继续交易。从而保护了电子数据存证所有人对电子数据所持有的原创利益,保证买卖双方的交易合法性,树立了电子数据知识产权保护的法律权威性。The electronic data consistency verification method provided by the embodiment, by monitoring the transaction information on the e-commerce platform, when the transaction information relates to the electronic data transaction, suspending the transaction process and obtaining verification related information corresponding to the electronic data; according to the verification related information, Sending a verification request for the verification of the certificate information of the electronic data to the certificate verification platform; receiving the verification response fed back by the certificate verification platform, and determining whether the electronic data of the e-commerce platform and the certificate verification platform have been verified according to the verification response The electronic data is consistent; if the consistency verification is passed, the electronic data is allowed to continue to trade. This protects the original interests of electronic data deposit holders on electronic data, guarantees the legality of transactions between buyers and sellers, and establishes the legal authority of electronic data intellectual property protection.
验证相关信息Verify relevant information
图2~图4是根据另一示例性实施例示出的一种电子数据一致性验证方法的流程图。如图2~图4所示,在上述实施例的基础上,进一步地,在存证验证平台进行电子数据与其存证信息是否一致验证的方式可以有以下三种:2 to 4 are flowcharts showing an electronic data consistency verification method according to another exemplary embodiment. As shown in FIG. 2 to FIG. 4, on the basis of the above embodiments, there are three ways to verify whether the electronic data and the certificate information are consistently verified in the certificate verification platform:
第一种验证方式:验证相关信息为电子数据;相应的,步骤A102、根据验证相关信息,向存证验证平台发送对电子数据进行存证信息一致性验证的验证请求验证相关信息,具体可以包括(如图2所示):The first verification method is: verifying that the related information is electronic data; correspondingly, in step A102, according to the verification related information, sending the verification request verification related information for verifying the verification of the electronic data to the certificate verification platform, which may specifically include (as shown in picture 2):
步骤A201、根据电子数据,生成第一数据串。Step A201: Generate a first data string according to the electronic data.
其中,第一数据串是与电子数据唯一对应的数据信息。The first data string is data information uniquely corresponding to the electronic data.
步骤A202、向存证验证平台发送第一验证请求,第一验证请求包含:第一数据串。Step A202: Send a first verification request to the certificate verification platform, where the first verification request includes: a first data string.
对于存证验证平台来说,其可以仅存储有与电子数据唯一对应的第一数据串,也可以既包含电子数据本身,又包含基于该电子数据生成的第一数据串。通常对于电子数据的拥有者来说,其在创作过程中产生的成果,不希望被第三方获取到,但同时又希望其创作成果能够由可信的第三方进行原创归属及原创时间的鉴证,则可以采取仅发送与电子数据唯一对应的第一数据串的存证方式;第一数据串是基于电子数据生成的,且与该电子数据唯一对应,这就使得第三方的存证验证平台无法获得原创电子数据的实质内容,但 可以获得与该电子数据完全等价的第一数据串。从而为创作者的创作成果提供存证及后续的验证服务,保护其原创利益。此外,在验证环节中,第一数据串的生成可以由电商平台安装由存证验证平台提供的算法生成器生成,也可以由电商平台自行设置符合国际标准的算法模块生成。当然,电商平台也可以将获取到的电子数据发送给存证验证平台,由平台基于该电子数据生成第一数据串并与其内已存证的数据串进行比对,验证电子数据是否已具备存证信息。For the certificate verification platform, it may only store the first data string uniquely corresponding to the electronic data, or may include both the electronic data itself and the first data string generated based on the electronic data. Usually for the owner of electronic data, the results produced in the creative process do not want to be obtained by third parties, but at the same time, they hope that their creative results can be authenticated by the trusted third party for original attribution and original time. Then, the method of depositing only the first data string uniquely corresponding to the electronic data may be sent; the first data string is generated based on the electronic data and uniquely corresponding to the electronic data, which makes the third-party certificate verification platform unable to Get the substance of the original electronic data, but A first data string that is fully equivalent to the electronic data can be obtained. In this way, the creator's creation results are provided with evidence and subsequent verification services to protect their original interests. In addition, in the verification process, the generation of the first data string may be generated by an e-commerce platform installed by an algorithm generator provided by the certificate verification platform, or may be generated by an e-commerce platform setting an algorithm module conforming to an international standard. Of course, the e-commerce platform can also send the obtained electronic data to the certificate verification platform, and the platform generates a first data string based on the electronic data and compares it with the data string of the stored certificate to verify whether the electronic data is available. Deposit information.
进一步地,向存证验证平台发送第一验证请求之后,相应的,步骤A103、接收存证验证平台反馈的验证响应,并根据验证响应确定电子数据是否已在存证验证平台进行存证保护,具体可以包括:Further, after sending the first verification request to the certificate verification platform, correspondingly, step A103, receiving the verification response fed back by the certificate verification platform, and determining, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform, Specifically, it may include:
步骤A203、接收存证验证平台反馈的第一验证响应。若第一验证响应为未查到存证信息的响应消息,执行步骤A204;若第一验证响应为查到存证信息的响应消息,执行步骤A205。Step A203: Receive a first verification response fed back by the certificate verification platform. If the first verification response is a response message that the certificate information is not found, step A204 is performed; if the first verification response is a response message for checking the certificate information, step A205 is performed.
步骤A204、确定电子数据未在存证验证平台进行存证保护。Step A204: Determine that the electronic data is not protected by the certificate in the certificate verification platform.
步骤A205、确定电子数据已在存证验证平台进行存证保护。Step A205: Determine that the electronic data has been stored and protected on the certificate verification platform.
存证验证平台根据第一验证请求中的第一数据串信息,比对其存证数据库中是否已存储有第一数据串,若没有,说明该电子数据是未存证的电子数据,则反馈未查到存证信息的响应消息给电商平台,电商平台负有保证其平台上流通的电子数据商品的来源正规的职责,因此,根据第三方可信存证验证平台的反馈信息,当确定电子数据未在存证验证平台进行存证保护时,终止未受到存证保护的电子数据商品的交易。The certificate verification platform according to the first data string information in the first verification request has a first data string stored in the certificate database, and if not, the electronic data is uncertified electronic data, and the feedback is The response message of the deposit information is not found to the e-commerce platform, and the e-commerce platform has the formal responsibility of ensuring the source of the electronic data commodities circulating on the platform. Therefore, according to the feedback information of the third-party trusted certificate verification platform, When it is determined that the electronic data is not protected by the certificate verification platform, the transaction of the electronic data commodity not protected by the certificate is terminated.
第二种验证方式:验证相关信息为电子数据以及电子数据的存证证书编号;相应的,步骤A102、根据验证相关信息,向存证验证平台发送对电子数据进行存证信息一致性验证的验证请求,具体可以包括(如图3所示):The second verification method: verifying that the relevant information is the electronic data and the certificate number of the electronic data; correspondingly, in step A102, according to the verification related information, the verification of the consistency verification of the electronic information is performed on the electronic verification data platform. The request may specifically include (as shown in Figure 3):
步骤A301、向存证验证平台发送第二验证请求,第二验证请求包含电子数据的存证证书编号。Step A301: Send a second verification request to the certificate verification platform, where the second verification request includes a certificate number of the electronic data.
已存证的电子数据,其自身可以携带有证明其历史性和成果性的存证证书编号,根据该证书编号在存证验证平台上查验对应的存证证书,再根据存证证书中显示的信息确定存证证书与该电子数据是否一致。 The electronic data that has been deposited may carry the certificate number of the certificate that proves its historical and fruitful performance, and the corresponding certificate of deposit is checked on the certificate verification platform according to the certificate number, and then according to the certificate shown in the certificate of deposit. The information determines whether the certificate of deposit is consistent with the electronic data.
进一步地,向存证验证平台发送第二验证请求之后,相应的,步骤A103、接收存证验证平台反馈的验证响应,并根据验证响应确定电子数据是否已在存证验证平台进行存证保护,具体可以包括:Further, after sending the second verification request to the certificate verification platform, correspondingly, step A103, receiving the verification response fed back by the certificate verification platform, and determining, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform, Specifically, it may include:
步骤A302、接收存证验证平台反馈的第二验证响应,第二验证响应包含第二数据串。Step A302: Receive a second verification response fed back by the certificate verification platform, where the second verification response includes a second data string.
第二数据串是与存证电子数据唯一对应的数据信息。存证验证平台根据电商平台发送的第二验证请求中的存证证书编号,找到与之对应的存证证书,向电商平台显示该存证证书,存证证书中可以包含唯一标识已经存证的电子数据的第二数据串信息。The second data string is data information uniquely corresponding to the stored electronic data. The certificate verification platform finds the corresponding certificate of deposit according to the certificate number of the certificate in the second verification request sent by the e-commerce platform, and displays the certificate of the certificate to the e-commerce platform. The certificate may contain the unique identifier. The second data string information of the electronic data of the certificate.
步骤A303、根据电子数据,生成第一数据串。Step A303: Generate a first data string according to the electronic data.
步骤A304、将第二数据串与第一数据串进行比对,若一致,执行步骤A305;若不一致,执行步骤A306。In step A304, the second data string is compared with the first data string. If they are consistent, step A305 is performed; if not, step A306 is performed.
步骤A305、确定电子数据已在存证验证平台进行存证保护。Step A305: Determine that the electronic data has been stored and protected on the certificate verification platform.
步骤A306、确定电子数据未在存证验证平台进行存证保护。Step A306: Determine that the electronic data is not protected by the certificate in the certificate verification platform.
电商平台通过比对第一数据串与第二数据串是否一致,可以确定第一数据串对应的电子数据是否与存证证书上第二数据串对应的已存证的电子数据存在对应关系,从而确定电商平台侧的电子数据来源是否合法。The e-commerce platform determines whether the electronic data corresponding to the first data string and the electronic data corresponding to the second data string on the certificate certificate have a corresponding relationship by comparing the first data string with the second data string. Therefore, it is determined whether the source of the electronic data on the e-commerce platform side is legal.
第三种验证方式:验证相关信息为电子数据以及电子数据的可信时间戳;相应的,步骤A102、根据验证相关信息,向存证验证平台发送对电子数据进行存证信息一致性验证的验证请求,具体可以包括(如图4所示):The third verification method: verifying that the relevant information is the electronic data and the trusted time stamp of the electronic data; correspondingly, in step A102, according to the verification related information, the verification of the consistency verification of the electronic information is performed on the electronic verification data platform. The request may specifically include (as shown in Figure 4):
步骤A401、根据电子数据,生成第一数据串。Step A401: Generate a first data string according to the electronic data.
其中,第一数据串是与电子数据唯一对应的数据信息。The first data string is data information uniquely corresponding to the electronic data.
步骤A402、向存证验证平台发送第三验证请求,第三验证请求包含:电子数据的可信时间戳及第一数据串。Step A402: Send a third verification request to the certificate verification platform, where the third verification request includes: a trusted timestamp of the electronic data and the first data string.
其中,可信时间戳是证明电子数据可信存证时间的数据信息,其携带有存证验证平台的身份信息。存证验证平台在对电子数据进行存证时,向可信时间签发设备发送基于该待存证的电子数据生成的唯一对应的第一数据串,可信时间签发设备基于接收到第一数据串的时间签发可信时间信息,存证验证平台再基于第一数据串、可信时间签发设备签发的可信时间信息(存证时 间)生成唯一对应的第二数据串,并采用存证验证平台的私钥对该第二数据串进行数字签名后得到该可信时间戳。因此,通过对可信时间戳进行解密,可以还原第二数据串,第二数据串中包含有与存证电子数据唯一对应的第一数据串和存证时间信息。因此,第三验证请求中所包含的第一数据串,用于使存证验证平台根据第一数据串找到其所对应的存证时间,再根据第一数据串和找到的存证时间生成第三数据串,将对可信时间戳进行解密得到的第二数据串和第三数据串进行比较,若一致,则说明可信时间戳和待验证的电子数据是对应的关系,则验证通过。The trusted timestamp is data information that proves the time of authentication of the electronic data, and carries the identity information of the certificate verification platform. The certificate verification platform sends a unique corresponding first data string generated based on the electronic data to be stored to the trusted time issuing device when the electronic data is stored, and the trusted time issuing device receives the first data string. Time to issue trusted time information, and the certificate verification platform then sends the trusted time information issued by the device based on the first data string and the trusted time (when the certificate is issued) And generating a unique corresponding second data string, and digitally signing the second data string by using a private key of the certificate verification platform to obtain the trusted time stamp. Therefore, by decrypting the trusted timestamp, the second data string can be restored, and the second data string includes the first data string and the certificate time information uniquely corresponding to the stored electronic data. Therefore, the first data string included in the third verification request is used to enable the certificate verification platform to find the corresponding certificate time according to the first data string, and then generate the first according to the first data string and the found certificate time. The third data string compares the second data string obtained by decrypting the trusted time stamp with the third data string. If the data string is consistent, the trusted time stamp and the electronic data to be verified are in a corresponding relationship, and the verification is passed.
进一步地,向存证验证平台发送第三验证请求之后,相应的,步骤A103、接收存证验证平台反馈的验证响应,并根据验证响应确定电子数据是否已在存证验证平台进行存证保护,具体可以包括:Further, after the third verification request is sent to the certificate verification platform, correspondingly, step A103 receives the verification response fed back by the certificate verification platform, and determines, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform. Specifically, it may include:
步骤A403、接收存证验证平台反馈的第三验证响应。若第三验证响应为未查到存证信息的响应消息,执行步骤A404;若第三验证响应为查到存证信息的响应消息,执行步骤A405。Step A403: Receive a third verification response fed back by the certificate verification platform. If the third verification response is a response message that the certificate information is not found, step A404 is performed; if the third verification response is a response message for checking the certificate information, step A405 is performed.
步骤A404、确定电子数据未在存证验证平台进行存证保护。Step A404: Determine that the electronic data is not protected by the certificate in the certificate verification platform.
步骤A405、确定电子数据已在存证验证平台进行存证保护。Step A405: Determine that the electronic data has been stored and protected on the certificate verification platform.
存证验证平台接收到电商平台发送的第三验证请求后,首先根据第一数据串,比对存证数据库中是否已存储有第一数据串,若存证数据库中未存储第一数据串,向电商平台反馈未查到存证信息的第三验证响应消息,若存证数据库中已存储第一数据串,找到与第一数据串对应的存证时间,根据第一数据串和存证时间生成唯一对应的第二数据串;再对可信时间戳进行解密,得到第三数据串;若第二数据串与第三数据串完全匹配,则证明可信时间戳与电商平台获取到的电子数据的存证信息是对应匹配的,则向电商平台反馈查到存证信息的第三验证响应消息。若第二数据串与第三数据串不匹配,则向电商平台反馈未查到存证信息的第三验证响应消息。这种方式与第一种方式(仅根据第一数据串进行验证)相比较,需要额外提供可信的时间戳,可信的时间戳是由具有法律公信力的第三方存证验证平台出具的,因此这种验证方式更加规范化,且更具有保障性、权威性。After receiving the third verification request sent by the e-commerce platform, the certificate verification platform first compares whether the first data string is stored in the certificate database according to the first data string, and if the first data string is not stored in the certificate database And feeding back to the e-commerce platform a third verification response message that the certificate information is not found, if the first data string is stored in the certificate database, the certificate time corresponding to the first data string is found, according to the first data string and the storage The certificate time generates a unique corresponding second data string; the trusted time stamp is decrypted to obtain a third data string; if the second data string and the third data string completely match, the trusted time stamp and the e-commerce platform are obtained. If the stored information of the obtained electronic data is correspondingly matched, the third verification response message of the stored information is fed back to the e-commerce platform. If the second data string does not match the third data string, the third verification response message that the certificate information is not found is fed back to the e-commerce platform. This method is compared with the first method (verification based on the first data string only), and an additional trusted timestamp is required. The trusted timestamp is issued by a legally trusted third-party certificate verification platform. Therefore, this verification method is more standardized and more secure and authoritative.
进一步地,在接收存证验证平台反馈的第一验证响应,若第一验证响应为查到存证信息的响应消息,确定电子数据已在存证验证平台进行存 证保护之后,还可以包括如下步骤:Further, after receiving the first verification response fed back by the certificate verification platform, if the first verification response is a response message for checking the deposit information, it is determined that the electronic data has been stored in the certificate verification platform. After the certificate is protected, the following steps can also be included:
向存证验证平台发送电子数据的存证证书编号获取请求,获取请求包含:第一验证响应的标识信息;Sending a certificate of the certificate number of the electronic data to the certificate verification platform, where the acquisition request includes: identification information of the first verification response;
接收存证验证平台反馈的电子数据对应的存证证书编号;Receiving a certificate number corresponding to the electronic data fed back by the certificate verification platform;
将存证证书编号发送给电子数据交易对应的交易方。Send the certificate number to the counterparty corresponding to the electronic data transaction.
具体的,对于没有附带有存证证书编号的已存证的电子数据商品,可以向存证验证平台请求获取存证证书编号,以方便交易方(卖方和/或买方)通过存证证书编号查看电子数据商品的存证证书。例如,买方在购买到电子数据商品后可以根据该证书编号查到该电子数据商品的存证证书,以确认购买到受到存证保护的电子数据商品。卖方也可以根据该证书编号进行查验,以保证自己所卖电子数据商品的正规性。Specifically, for the electronic data commodity without the certificate of the certificate number, the certificate verification certificate may be requested to obtain the certificate number, so that the transaction party (the seller and/or the buyer) can view the certificate number. Certificate of deposit of electronic data goods. For example, after purchasing the electronic data commodity, the buyer can find the certificate of the electronic data commodity according to the certificate number to confirm the purchase of the electronic data commodity protected by the certificate. The seller can also check according to the certificate number to ensure the regularity of the electronic data products that he sells.
进一步地,在上述步骤A205、步骤A305、步骤A405、确定电子数据已在存证验证平台进行存证保护之后,还可以包括:Further, after the step A205, the step A305, the step A405, and the determining that the electronic data has been protected by the certificate verification platform, the method may further include:
将电子数据已在存证验证平台进行存证保护的确定结果与第一数据串对应存储。The determination result that the electronic data has been protected by the certificate verification platform is stored corresponding to the first data string.
相应的,在步骤A201、步骤A303、步骤A401、根据电子数据,生成第一数据串之后,还可以包括如下步骤:Correspondingly, after the first data string is generated according to the electronic data in step A201, step A303, and step A401, the following steps may be further included:
比对本地数据库中是否已存储该第一数据串,若存在,获取与第一数据串对应的电子数据已在存证验证平台进行存证保护的确定结果;若不存在,执行对电子数据进行存证信息一致性验证的步骤。Aligning whether the first data string is stored in the local database, and if so, obtaining the determination result that the electronic data corresponding to the first data string has been protected by the certificate verification platform; if not, performing the electronic data execution The steps to verify the consistency of the deposit information.
通过将电子数据已存证的确定结果与第一数据串对应存储,加快验证流程,使已经被验证过、已存证的电子数据可以被快速地交易。By storing the determined result of the electronic data stored in the first data string, the verification process is accelerated, so that the electronic data that has been verified and verified can be quickly traded.
进一步地,步骤A102、根据验证相关信息,向存证验证平台发送对电子数据进行存证信息一致性验证的验证请求验证相关信息,具体可以包括:Further, in step A102, the verification request verification information related to the certificate verification of the electronic data is sent to the certificate verification platform according to the verification related information, which may specifically include:
向存证验证平台发送带有CA认证信息的验证请求,以向存证验证平台提供身份验证。An authentication request with CA authentication information is sent to the certificate verification platform to provide authentication to the certificate verification platform.
电商平台在进行电子数据与存证信息一致性验证之前可以通过数字证书认证机构,如CA可信鉴定机构进行实体认证,得到CA颁发的数字证书以实现对所发送信息的数字签名,从而表明发送该验证请求的电商平台的身份, 且保证该验证请求在传输过程中未被篡改。The e-commerce platform can perform entity authentication through a digital certificate certification authority, such as a CA credible authentication institution, before obtaining electronic data and certificate information consistency verification, and obtain a digital certificate issued by the CA to realize digital signature of the transmitted information, thereby indicating The identity of the e-commerce platform that sent the verification request, And to ensure that the verification request has not been tampered with during the transmission.
图5是根据一示例性实施例示出的另一种电子数据一致性验证方法的流程图。如图5所示,本实施例提供的电子数据一致性验证方法具体可以通过存证验证平台来执行,可与应用于电商平台端的电子数据一致性验证方法配合实现,其具体实现过程参照上述实施例的描述,在此不再赘述。FIG. 5 is a flowchart of another electronic data consistency verification method according to an exemplary embodiment. As shown in FIG. 5, the electronic data consistency verification method provided in this embodiment may be specifically implemented by a certificate verification platform, and may be implemented in conjunction with an electronic data consistency verification method applied to an e-commerce platform. The description of the embodiments will not be repeated here.
本实施例提供的电子数据一致性验证方法,具体包括:The electronic data consistency verification method provided in this embodiment specifically includes:
步骤B101、接收电商平台发送的验证请求。Step B101: Receive an authentication request sent by an e-commerce platform.
验证请求中包含对电商平台正在进行的电子数据交易中所涉及的电子数据进行存证信息一致性验证的验证相关信息。The verification request includes verification related information for verifying the consistency of the deposit information of the electronic data involved in the ongoing electronic data transaction of the e-commerce platform.
步骤B102、根据验证相关信息对电子数据是否已存证进行验证,并向电商平台反馈验证响应。Step B102: Verify whether the electronic data has been verified according to the verification related information, and feed back the verification response to the e-commerce platform.
本实施例提供的电子数据一致性验证方法,通过接收电商平台发送的验证请求,验证请求中包含对电商平台正在进行的电子数据交易中所涉及的电子数据进行存证信息一致性验证的验证相关信息。再根据验证相关信息对电子数据是否已存证进行验证,并向电商平台反馈验证响应。从而为在电商平台上流通的电子数据商品提供了权威的、可信的验证通道,保护了电子数据所有人的原创利益,保证买卖双方的交易合法性,树立了电子数据知识产权保护的法律权威性。The electronic data consistency verification method provided by the embodiment receives the verification request sent by the e-commerce platform, and the verification request includes the verification of the verification of the deposit information of the electronic data involved in the ongoing electronic data transaction of the e-commerce platform. Verify relevant information. Then, according to the verification related information, the electronic data is verified to be verified, and the verification response is fed back to the e-commerce platform. This provides an authoritative and credible verification channel for electronic data products circulating on the e-commerce platform, protects the original interests of electronic data owners, ensures the legality of transactions between buyers and sellers, and establishes laws for the protection of electronic data intellectual property rights. authoritative.
图6~图8是根据另一示例性实施例示出的另一种电子数据一致性验证方法的流程图。如图6~图8所示,在上述实施例的基础上,进一步地,根据电商平台发送的验证相关信息的不同,该方法可以包括如下验证方式:6-8 are flowcharts of another electronic data consistency verification method according to another exemplary embodiment. As shown in FIG. 6 to FIG. 8 , based on the foregoing embodiment, further, according to different verification related information sent by the e-commerce platform, the method may include the following verification manner:
第一种验证方式:验证相关信息包含第一数据串;第一数据串是与电子数据唯一对应的数据信息;相应的,步骤B102、根据验证相关信息对电子数据是否已存证进行验证,并向电商平台反馈验证响应,具体可以包括(如图6所示):The first verification mode: the verification related information includes the first data string; the first data string is the data information uniquely corresponding to the electronic data; correspondingly, in step B102, the electronic data is verified according to the verification related information, and The feedback response to the e-commerce platform can be specifically included (as shown in Figure 6):
步骤B201、比对存证数据库中是否已存储有第一数据串。若存证数据库中未存储第一数据串,执行步骤B202;若存证数据库中已存储第一数据串,执行步骤B203。Step B201: Align whether the first data string is stored in the certificate database. If the first data string is not stored in the certificate database, step B202 is performed; if the first data string is stored in the certificate database, step B203 is performed.
步骤B202、反馈未查到存证信息的第一验证响应。 In step B202, the first verification response of the deposit information is not found.
步骤B203、反馈查到存证信息的第一验证响应。Step B203: feedback to find the first verification response of the deposit information.
第二种验证方式:验证相关信息包含电子数据的存证证书编号;相应的,步骤B102、根据验证相关信息对电子数据是否已存证进行验证,并向电商平台反馈验证响应,具体可以包括(如图7所示):The second verification method: the verification related information includes the certificate number of the electronic data; correspondingly, in step B102, the electronic data is verified according to the verification related information, and the verification response is fed back to the e-commerce platform, which may specifically include (As shown in Figure 7):
步骤B301、查找与存证证书编号对应的存证证书,若没有找到与该存证证书编号对应的存证证书,执行步骤B302;若找到与该存证证书编号对应的存证证书,执行步骤B303。Step B301: Search for a certificate of deposit corresponding to the certificate number of the certificate, if the certificate of the certificate corresponding to the certificate number is not found, perform step B302; if the certificate of the certificate corresponding to the certificate number is found, perform the step B303.
步骤B302、反馈未查到存证信息的第二验证响应。Step B302: feedback that the second verification response of the deposit information is not found.
步骤B303、向电商平台显示存证证书。Step B303, displaying a certificate of deposit to the e-commerce platform.
其中,存证证书包含:唯一标识电子数据的第二数据串信息。以使电商平台比对第一数据串与第二数据串确定电子数据已在存证验证平台进行存证保护。第一数据串是电商平台根据电子数据,生成的与电子数据唯一对应的数据信息。第二数据串是存证证书所证明的电子数据信息所对应的唯一数据信息,若两个数据串一致,则可以证明该存证证书与电商平台获取到的电子数据是对应的,验证通过。The certificate of deposit includes: second data string information that uniquely identifies the electronic data. So that the e-commerce platform compares the first data string with the second data string to determine that the electronic data has been stored and protected on the certificate verification platform. The first data string is data information uniquely corresponding to the electronic data generated by the e-commerce platform according to the electronic data. The second data string is the unique data information corresponding to the electronic data information proved by the certificate of deposit. If the two data strings are consistent, the certificate can be proved to correspond to the electronic data obtained by the e-commerce platform, and the verification is passed. .
第三种验证方式:验证相关信息包含电子数据的可信时间戳及第一数据串;相应的,步骤B102、根据验证相关信息对电子数据是否已存证进行验证,并向电商平台反馈验证响应,具体可以包括(如图8所示):The third verification method: the verification related information includes the trusted time stamp of the electronic data and the first data string; correspondingly, in step B102, the electronic data is verified according to the verification related information, and the verification is performed to the e-commerce platform. The response may specifically include (as shown in Figure 8):
步骤B401、比对存证数据库中是否已存储有第一数据串;若存证数据库中未存储第一数据串,执行步骤B402;若存证数据库中已存储第一数据串,执行步骤B403。Step B401: Align whether the first data string is stored in the certificate database; if the first data string is not stored in the certificate database, step B402 is performed; if the first data string is stored in the certificate database, step B403 is performed.
步骤B402、反馈未查到存证信息的第三验证响应。Step B402: The third verification response that the certificate information is not found is fed back.
步骤B403、找到与第一数据串对应的存证时间。Step B403: Find a time of deposit corresponding to the first data string.
步骤B404、根据第一数据串和存证时间生成唯一对应的第二数据串。Step B404: Generate a unique second data string according to the first data string and the certificate time.
步骤B405、对可信时间戳进行解密,得到第三数据串。Step B405: Decrypt the trusted timestamp to obtain a third data string.
步骤B406、若第二数据串与第三数据串完全匹配,向电商平台反馈查到存证信息的第三验证响应。Step B406: If the second data string and the third data string are completely matched, the third verification response of the deposit information is fed back to the e-commerce platform.
进一步地,该方法还可以包括如下步骤:接收电商平台发送的存证证书编号获取请求,获取请求包含:向电商平台反馈的查到存证信息的第一验证响应的标识信息;根据该第一验证响应的标识信息,获取电子数据对应的 存证证书编号,并向电商平台发送存证证书编号。Further, the method may further include the following steps: receiving a certificate of the certificate number obtained by the e-commerce platform, where the request for obtaining includes: identifying information of the first verification response of the certificate information that is fed back to the e-commerce platform; Identification information of the first verification response, corresponding to the electronic data The certificate number is issued and the certificate number is sent to the e-commerce platform.
电商平台接收到该存证证书编号后,可以将其发送给电子数据交易对应的交易方。交易方可以包括卖方和/或买方,以使买方在购买到电子数据商品后可以根据该证书编号查到该电子数据商品的存证证书,以确认购买到受存证保护的电子数据商品。卖方也可以根据该证书编号进行查验,以保证自己所卖电子数据商品的正规性。After receiving the certificate number, the e-commerce platform can send it to the counterparty corresponding to the electronic data transaction. The transaction party may include the seller and/or the buyer, so that after purchasing the electronic data commodity, the buyer can check the certificate of the electronic data commodity according to the certificate number to confirm the purchase of the electronic data commodity protected by the deposit certificate. The seller can also check according to the certificate number to ensure the regularity of the electronic data products that he sells.
进一步地,存证验证平台向电商平台反馈验证响应,可以包括:Further, the verification verification platform feeds back the verification response to the e-commerce platform, which may include:
向电商平台反馈带有CA认证信息的验证响应,以向电商平台提供身份验证。A verification response with CA authentication information is fed back to the e-commerce platform to provide authentication to the e-commerce platform.
图9是根据一示例性实施例示出的一种电子数据一致性验证装置的结构示意图。如图9所示,本实施例提供的电子数据一致性验证装置91具体可以实现应用于电商平台端的电子数据一致性验证方法的各个步骤,其具体实现过程在此不再赘述。FIG. 9 is a schematic structural diagram of an electronic data consistency verification apparatus according to an exemplary embodiment. As shown in FIG. 9 , the electronic data consistency verification apparatus 91 provided in this embodiment may specifically implement various steps of the electronic data consistency verification method applied to the e-commerce platform, and the specific implementation process is not described herein again.
本实施例提供的电子数据一致性验证装置91,具体包括:The electronic data consistency verification device 91 provided in this embodiment specifically includes:
监控模块11,用于监控电商平台上的交易信息。The monitoring module 11 is configured to monitor transaction information on the e-commerce platform.
控制模块12,用于当监控模块监控到交易信息涉及电子数据交易时,暂停交易过程。The control module 12 is configured to suspend the transaction process when the monitoring module monitors that the transaction information relates to the electronic data transaction.
获取模块13,用于获取电子数据对应的验证相关信息。The obtaining module 13 is configured to obtain verification related information corresponding to the electronic data.
发送模块14,用于根据获取模块13获取到的验证相关信息,向存证验证平台发送对电子数据进行存证信息一致性验证的验证请求。The sending module 14 is configured to send, according to the verification related information acquired by the obtaining module 13, a verification request for performing verification of the certificate information consistency of the electronic data to the certificate verification platform.
接收模块15,用于接收存证验证平台反馈的验证响应,并根据验证响应确定电子数据是否已在存证验证平台进行存证保护。The receiving module 15 is configured to receive the verification response fed back by the certificate verification platform, and determine, according to the verification response, whether the electronic data has been protected by the certificate verification platform.
其中,控制模块12,还用于当接收模块15确定电子数据已在存证验证平台进行存证保护时,允许电子数据继续交易。The control module 12 is further configured to allow the electronic data to continue to be traded when the receiving module 15 determines that the electronic data has been protected by the certificate verification platform.
图10是根据另一示例性实施例示出的一种电子数据一致性验证装置的结构示意图。如图10所示,在上述实施例的基础上,本实施例提供的电子数据一致性验证装置91中的发送模块14具体包括:数据串生成子模块141、发送子模块142。FIG. 10 is a schematic structural diagram of an electronic data consistency verification apparatus according to another exemplary embodiment. As shown in FIG. 10, on the basis of the foregoing embodiment, the sending module 14 in the electronic data consistency verification device 91 provided in this embodiment specifically includes: a data string generating sub-module 141 and a transmitting sub-module 142.
其中,数据串生成子模块141,用于根据电子数据,生成第一数据串。其中,第一数据串是与电子数据唯一对应的数据信息。 The data string generation sub-module 141 is configured to generate a first data string according to the electronic data. The first data string is data information uniquely corresponding to the electronic data.
获取模块13获取到的验证相关信息为电子数据,相应的,The verification related information acquired by the obtaining module 13 is electronic data, correspondingly,
发送子模块142,用于向存证验证平台发送第一验证请求,第一验证请求包含:数据串生成子模块141生成的第一数据串。The sending sub-module 142 is configured to send a first verification request to the certificate verification platform, where the first verification request includes: the first data string generated by the data string generation sub-module 141.
获取模块13获取到的验证相关信息为电子数据以及电子数据的存证证书编号,相应的,The verification related information acquired by the obtaining module 13 is the electronic data and the certificate number of the electronic data, correspondingly,
发送子模块142,用于向存证验证平台发送第二验证请求,第二验证请求包含电子数据的存证证书编号。The sending submodule 142 is configured to send a second verification request to the certificate verification platform, where the second verification request includes a certificate number of the electronic data.
获取模块13获取到的验证相关信息为电子数据以及电子数据的可信时间戳,相应的,The verification related information acquired by the obtaining module 13 is a trusted time stamp of the electronic data and the electronic data, correspondingly,
发送子模块142,用于向存证验证平台发送第三验证请求,第三验证请求包含电子数据的可信时间戳及数据串生成子模块141生成的第一数据串。The sending sub-module 142 is configured to send a third verification request to the certificate verification platform, where the third verification request includes a trusted timestamp of the electronic data and a first data string generated by the data string generation sub-module 141.
进一步地,接收模块15具体包括:Further, the receiving module 15 specifically includes:
接收子模块151,用于接收存证验证平台反馈的第一验证响应。The receiving submodule 151 is configured to receive a first verification response fed back by the verification verification platform.
确定子模块152,用于当第一验证响应为未查到存证信息的响应消息时,确定电子数据未在存证验证平台进行存证保护;当第一验证响应为查到存证信息的响应消息时,确定电子数据已在存证验证平台进行存证保护。The determining sub-module 152 is configured to: when the first verification response is a response message that does not find the deposit information, determine that the electronic data is not protected by the certificate verification platform; and when the first verification response is to check the deposit information When responding to the message, it is determined that the electronic data has been protected by the certificate on the certificate verification platform.
接收子模块151,还用于接收存证验证平台反馈的第二验证响应;第二验证响应包含第二数据串。The receiving submodule 151 is further configured to receive a second verification response fed back by the certificate verification platform; and the second verification response includes the second data string.
接收模块15还包括:The receiving module 15 further includes:
比对子模块153,用于将接收子模块151接收到的第二数据串与数据串生成子模块141生成的第一数据串进行比对。The comparison sub-module 153 is configured to compare the second data string received by the receiving sub-module 151 with the first data string generated by the data string generating sub-module 141.
确定子模块152,还用于根据比对子模块153对第二数据串与第一数据串进行比对得到的结果,确定电子数据是否已在存证验证平台进行存证保护;若一致,确定电子数据已在存证验证平台进行存证保护;若不一致,确定电子数据未在存证验证平台进行存证保护;第二数据串是与存证电子数据唯一对应的数据信息。The determining sub-module 152 is further configured to determine, according to the result obtained by comparing the second data string with the first data string, by the comparison sub-module 153, whether the electronic data has been protected by the certificate in the certificate verification platform; The electronic data has been protected by the certificate in the certificate verification platform; if it is inconsistent, it is determined that the electronic data is not protected by the certificate verification platform; the second data string is the data information uniquely corresponding to the stored electronic data.
接收子模块151,还用于接收存证验证平台反馈的第三验证响应。The receiving submodule 151 is further configured to receive a third verification response fed back by the verification verification platform.
确定子模块152,还用于当第三验证响应为未查到存证信息的响应消息时,确定电子数据未在存证验证平台进行存证保护;当第三验证响应为查 到存证信息的响应消息时,确定电子数据已在存证验证平台进行存证保护。The determining sub-module 152 is further configured to: when the third verification response is a response message that the certificate information is not found, determine that the electronic data is not protected by the certificate verification platform; and when the third verification response is When the response message of the deposit information is obtained, it is determined that the electronic data has been protected by the certificate on the certificate verification platform.
进一步地,发送模块14,还用于向存证验证平台发送电子数据的存证证书编号获取请求,其中,获取请求包含:第一验证响应的标识信息。Further, the sending module 14 is further configured to send a certificate of certificate number acquisition request of the electronic data to the certificate verification platform, where the acquisition request includes: identifier information of the first verification response.
接收模块15,还用于接收存证验证平台反馈的电子数据对应的存证证书编号。The receiving module 15 is further configured to receive a certificate number corresponding to the electronic data fed back by the certificate verification platform.
发送模块14,还用于将存证证书编号发送给电子数据交易对应的交易方。The sending module 14 is further configured to send the certificate number to the counterparty corresponding to the electronic data transaction.
进一步地,该装置还可以包括:Further, the device may further include:
存储模块16,用于将确定子模块152确定的电子数据已在存证验证平台进行存证保护的确定结果与数据串生成子模块生成的第一数据串对应存储。The storage module 16 is configured to store the determination result that the electronic data determined by the determining sub-module 152 has been subjected to the certificate protection in the certificate verification platform, and the first data string generated by the data string generation sub-module.
比对子模块153,还用于比对本地数据库中是否已存储第一数据串。The comparison sub-module 153 is also used to compare whether the first data string has been stored in the local database.
获取模块13,还用于当比对子模块153比对后发现本地数据库中已存储第一数据串时,从存储模块16中获取确定结果。The obtaining module 13 is further configured to: when the comparison sub-module 153 compares, find that the first data string is stored in the local database, and obtain the determination result from the storage module 16.
进一步地,发送模块14,具体用于向存证验证平台发送带有CA认证信息的验证请求,以向存证验证平台提供身份验证。Further, the sending module 14 is specifically configured to send an authentication request with the CA authentication information to the certificate verification platform to provide identity verification to the certificate verification platform.
图11是根据一示例性实施例示出的一种存证验证平台的结构示意图。如图11所示,本实施例提供的存证验证平台92具体可以实现应用于存证验证平台的电子数据一致性验证方法的各个步骤,其具体实现过程在此不再赘述。FIG. 11 is a schematic structural diagram of a certificate verification platform according to an exemplary embodiment. As shown in FIG. 11 , the certificate verification platform 92 provided in this embodiment can implement various steps of the electronic data consistency verification method applied to the certificate verification platform, and the specific implementation process is not described herein.
本实施例提供的存证验证平台92,具体包括:The certificate verification platform 92 provided in this embodiment specifically includes:
接收模块21,用于接收电商平台发送的验证请求,验证请求中包含对电商平台正在进行的电子数据交易中所涉及的电子数据进行存证信息一致性验证的验证相关信息。The receiving module 21 is configured to receive an authentication request sent by the e-commerce platform, where the verification request includes verification related information for verifying the consistency of the deposit information of the electronic data involved in the ongoing electronic data transaction of the e-commerce platform.
验证模块22,用于根据验证相关信息对电子数据是否已存证进行验证。The verification module 22 is configured to verify whether the electronic data has been verified according to the verification related information.
反馈模块23,用于向电商平台反馈验证响应。The feedback module 23 is configured to feed back the verification response to the e-commerce platform.
在上述实施例的基础上,本实施例提供的存证验证平台92还可以包括: Based on the foregoing embodiment, the certificate verification platform 92 provided in this embodiment may further include:
验证相关信息包含第一数据串,第一数据串是与电子数据唯一对应的数据信息。The verification related information includes a first data string, and the first data string is data information uniquely corresponding to the electronic data.
相应的,验证模块22,具体用于比对存证数据库中是否已存储有第一数据串。Correspondingly, the verification module 22 is specifically configured to compare whether the first data string has been stored in the certificate database.
反馈模块23,具体用于当验证模块22进行比对后得到未存储有第一数据串的验证结果时,反馈未查到存证信息的第一验证响应;当得到存储有第一数据串的验证结果时,反馈查到存证信息的第一验证响应。The feedback module 23 is specifically configured to: when the verification module 22 compares and obtains the verification result that the first data string is not stored, the first verification response that does not find the deposit information is fed back; when the first data string is stored When the result is verified, the feedback checks the first verification response of the deposit information.
或者,验证相关信息包含电子数据的存证证书编号,Or, verify that the relevant information contains the certificate number of the electronic data.
相应的,验证模块22,具体用于查找与存证证书编号对应的存证证书。Correspondingly, the verification module 22 is specifically configured to search for a certificate of deposit corresponding to the certificate number.
反馈模块23,具体用于当验证模块22进行查找后得到未找到与存证证书编号对应的存证证书时,反馈未查到存证信息的第二验证响应;当验证模块进行查找后得到找到与存证证书编号对应的存证证书时,向电商平台显示存证证书;其中,存证证书包含:唯一标识存证电子数据的第二数据串信息;以使电商平台比对第一数据串与第二数据串确定电子数据已存证保护。The feedback module 23 is specifically configured to: when the verification module 22 performs the search, if the certificate of the certificate corresponding to the certificate number is not found, the second verification response that does not find the certificate information is fed back; when the verification module searches, it is found. And displaying the certificate of deposit with the certificate of the certificate of the certificate, wherein the certificate of deposit includes: a second string of data that uniquely identifies the electronic data of the certificate; The data string and the second data string determine that the electronic data has been protected by the certificate.
或者,验证相关信息包含电子数据的可信时间戳及第一数据串,Alternatively, the verification related information includes a trusted timestamp of the electronic data and the first data string.
相应的,验证模块22,具体用于比对存证数据库中是否已存储有第一数据串。Correspondingly, the verification module 22 is specifically configured to compare whether the first data string has been stored in the certificate database.
反馈模块23,具体用于当验证模块22进行比对后得到未存储有第一数据串的验证结果时,反馈未查到存证信息的第三验证响应;当得到存储有第一数据串的验证结果时,找到与第一数据串对应的存证时间,并根据第一数据串和存证时间生成唯一对应的第二数据串;对可信时间戳进行解密,得到第三数据串;若第二数据串与第三数据串完全匹配,向电商平台反馈查到存证信息的第三验证响应。The feedback module 23 is specifically configured to: when the verification module 22 compares and obtains the verification result that the first data string is not stored, the third verification response that does not find the deposit information is fed back; when the first data string is stored When verifying the result, finding a deposit time corresponding to the first data string, and generating a unique second data string according to the first data string and the certificate time; decrypting the trusted time stamp to obtain a third data string; The second data string and the third data string are completely matched, and the third verification response of the deposit information is fed back to the e-commerce platform.
进一步地,接收模块21,还用于接收电商平台发送的存证证书编号获取请求,获取请求包含:向电商平台反馈的查到存证信息的第一验证响应的标识信息。Further, the receiving module 21 is further configured to receive a certificate number obtaining request sent by the e-commerce platform, where the obtaining request includes: identifier information of the first verification response of the check-up information that is fed back to the e-commerce platform.
反馈模块23,还用于根据第一验证响应的标识信息,获取电子数据对应的存证证书编号,并向电商平台发送存证证书编号。The feedback module 23 is further configured to obtain the certificate number of the certificate corresponding to the electronic data according to the identifier information of the first verification response, and send the certificate number to the e-commerce platform.
进一步地,反馈模块23,具体用于反馈带有CA认证信息的验证响应, 以向电商平台提供身份验证。Further, the feedback module 23 is specifically configured to feed back a verification response with CA authentication information. To provide authentication to the e-commerce platform.
图12是根据一示例性实施例示出的一种电子数据一致性验证系统的结构示意图。如图12所示,本实施例提供的电子数据一致性验证系统包括本发明任意实施例提供的电子数据一致性验证装置91,以及本发明任意实施例提供的存证验证平台92。FIG. 12 is a schematic structural diagram of an electronic data consistency verification system according to an exemplary embodiment. As shown in FIG. 12, the electronic data consistency verification system provided in this embodiment includes the electronic data consistency verification device 91 provided by any embodiment of the present invention, and the certificate verification platform 92 provided by any embodiment of the present invention.
最后应说明的是:以上各实施例仅用以说明本发明的技术方案,而非对其限制;尽管参照前述各实施例对本发明进行了详细的说明,本领域的普通技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分或者全部技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本发明各实施例技术方案的范围。 Finally, it should be noted that the above embodiments are merely illustrative of the technical solutions of the present invention, and are not intended to be limiting; although the present invention has been described in detail with reference to the foregoing embodiments, those skilled in the art will understand that The technical solutions described in the foregoing embodiments may be modified, or some or all of the technical features may be equivalently replaced; and the modifications or substitutions do not deviate from the technical solutions of the embodiments of the present invention. range.

Claims (21)

  1. 一种电子数据一致性验证方法,其特征在于,包括:An electronic data consistency verification method, comprising:
    监控电商平台上的交易信息,当所述交易信息涉及电子数据交易时,暂停交易过程并获取所述电子数据对应的验证相关信息;Monitoring transaction information on the e-commerce platform, and when the transaction information relates to the electronic data transaction, suspending the transaction process and obtaining verification related information corresponding to the electronic data;
    根据所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求;And sending, to the certificate verification platform, a verification request for performing verification of the certificate information consistency on the electronic data according to the verification related information;
    接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保护;Receiving a verification response fed back by the certificate verification platform, and determining, according to the verification response, whether the electronic data has been stored and protected on the certificate verification platform;
    若所述电子数据已在所述存证验证平台进行存证保护,则允许所述电子数据继续交易。If the electronic data has been certificate-protected on the certificate verification platform, the electronic data is allowed to continue to be traded.
  2. 根据权利要求1所述的方法,其特征在于,The method of claim 1 wherein
    所述验证相关信息为所述电子数据;相应的,所述根据所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求,包括:The verification related information is the electronic data; correspondingly, the sending, according to the verification related information, a verification request for performing verification of the certificate information consistency of the electronic data to the certificate verification platform, including:
    根据所述电子数据,生成第一数据串;所述第一数据串是与所述电子数据唯一对应的数据信息;Generating, according to the electronic data, a first data string; the first data string is data information uniquely corresponding to the electronic data;
    向存证验证平台发送第一验证请求,所述第一验证请求包含:所述第一数据串;Sending a first verification request to the certificate verification platform, where the first verification request includes: the first data string;
    或者,所述验证相关信息为所述电子数据以及所述电子数据的存证证书编号;相应的,所述根据所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求,包括:Or the verification related information is the electronic data and the certificate number of the electronic data; correspondingly, the transmitting the information about the electronic data to the certificate verification platform according to the verification related information Validation request for consistency verification, including:
    向存证验证平台发送第二验证请求,所述第二验证请求包含所述电子数据的存证证书编号;Sending a second verification request to the certificate verification platform, where the second verification request includes a certificate number of the electronic data;
    或者,or,
    所述验证相关信息为所述电子数据以及所述电子数据的可信时间戳;相应的,所述根据所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求,包括:The verification related information is a trusted time stamp of the electronic data and the electronic data; correspondingly, the transmitting, according to the verification related information, transmitting, to the certificate verification platform, performing consistency of the deposit information on the electronic data Verified verification request, including:
    根据所述电子数据,生成所述第一数据串,向存证验证平台发送第三验证请求,所述第三验证请求包含所述电子数据的可信时间戳及所述第一数据串。 And generating, according to the electronic data, the first data string, and sending a third verification request to the certificate verification platform, where the third verification request includes a trusted timestamp of the electronic data and the first data string.
  3. 根据权利要求2所述的方法,其特征在于,所述向存证验证平台发送第一验证请求,所述第一验证请求包含:所述第一数据串之后,相应的,所述接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保护,包括:The method according to claim 2, wherein the sending the first verification request to the certificate verification platform, the first verification request comprises: after the first data string, correspondingly, the receiving the And verifying, by the verification verification platform, the verification response, and determining, according to the verification response, whether the electronic data has been protected by the certificate verification platform, including:
    接收所述存证验证平台反馈的第一验证响应;若所述第一验证响应为未查到存证信息的响应消息,确定所述电子数据未在所述存证验证平台进行存证保护;若所述第一验证响应为查到存证信息的响应消息,确定所述电子数据已在所述存证验证平台进行存证保护;Receiving the first verification response fed back by the certificate verification platform; if the first verification response is a response message that the certificate information is not found, determining that the electronic data is not protected by the certificate on the certificate verification platform; If the first verification response is a response message for checking the deposit information, determining that the electronic data has been stored and protected on the certificate verification platform;
    所述向存证验证平台发送第二验证请求,所述第二验证请求包含所述电子数据的存证证书编号之后,相应的,所述接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保护,包括:Transmitting, to the certificate verification platform, a second verification request, where the second verification request includes the certificate number of the electronic data, and correspondingly, receiving the verification response fed back by the certificate verification platform, and according to The verification response determines whether the electronic data has been certificate-protected on the verification verification platform, including:
    接收所述存证验证平台反馈的第二验证响应;所述第二验证响应包含第二数据串;根据所述电子数据,生成第一数据串;将所述第二数据串与所述第一数据串进行比对,若一致,确定所述电子数据已在所述存证验证平台进行存证保护;若不一致,确定所述电子数据未在所述存证验证平台进行存证保护;所述第二数据串是与存证电子数据唯一对应的数据信息;Receiving a second verification response fed back by the verification verification platform; the second verification response includes a second data string; generating a first data string according to the electronic data; and the second data string and the first The data strings are compared, if they are consistent, it is determined that the electronic data has been stored and protected on the certificate verification platform; if not, it is determined that the electronic data is not protected by the certificate verification platform; The second data string is data information uniquely corresponding to the stored electronic data;
    所述向存证验证平台发送第三验证请求,所述第三验证请求包含所述电子数据的可信时间戳及所述第一数据串之后,相应的,所述接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保护,包括:Transmitting, to the certificate verification platform, a third verification request, where the third verification request includes the trusted timestamp of the electronic data and the first data string, and correspondingly, the receiving the verification verification platform And verifying the response of the feedback, and determining, according to the verification response, whether the electronic data has been protected by the deposit verification platform, including:
    接收所述存证验证平台反馈的第三验证响应;若所述第三验证响应为未查到存证信息的响应消息,确定所述电子数据未在所述存证验证平台进行存证保护;若所述第三验证响应为查到存证信息的响应消息,确定所述电子数据已在所述存证验证平台进行存证保护。Receiving a third verification response fed back by the verification verification platform; if the third verification response is a response message that does not find the deposit information, determining that the electronic data is not protected by the deposit verification on the verification verification platform; If the third verification response is a response message for checking the deposit information, it is determined that the electronic data has been protected by the deposit verification platform.
  4. 根据权利要求3所述的方法,其特征在于,所述若所述第一验证响应为查到存证信息的响应消息,确定所述电子数据已在所述存证验证平台进行存证保护之后,还包括:The method according to claim 3, wherein if the first verification response is a response message for checking the deposit information, determining that the electronic data has been protected by the deposit verification platform ,Also includes:
    向所述存证验证平台发送所述电子数据的存证证书编号获取请求,所述获取请求包含:所述第一验证响应的标识信息; Transmitting, by the certificate verification platform, the certificate number obtaining request of the electronic data, where the obtaining request includes: identifier information of the first verification response;
    接收所述存证验证平台反馈的所述电子数据对应的存证证书编号;Receiving a certificate number corresponding to the electronic data fed back by the certificate verification platform;
    将所述存证证书编号发送给所述电子数据交易对应的交易方。Sending the certificate number to the counterparty corresponding to the electronic data transaction.
  5. 根据权利要求3所述的方法,其特征在于,所述确定所述电子数据已在所述存证验证平台进行存证保护之后,还包括:The method according to claim 3, wherein the determining that the electronic data has been protected by the certificate verification platform further comprises:
    将所述电子数据已在所述存证验证平台进行存证保护的确定结果与所述第一数据串对应存储;And determining, by the electronic data, the determination result of the certificate protection in the certificate verification platform, corresponding to the first data string;
    相应的,所述根据所述电子数据,生成第一数据串之后,还包括:Correspondingly, after the generating the first data string according to the electronic data, the method further includes:
    比对本地数据库中是否已存储所述第一数据串,若存在,获取与所述第一数据串对应的所述电子数据已在所述存证验证平台进行存证保护的确定结果。Aligning whether the first data string has been stored in the local database, and if so, obtaining a determination result that the electronic data corresponding to the first data string has been subjected to certificate protection in the certificate verification platform.
  6. 根据权利要求1所述的方法,其特征在于,所述向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求,包括:The method according to claim 1, wherein the sending, to the certificate verification platform, a verification request for performing verification of the certificate information consistency of the electronic data comprises:
    向存证验证平台发送带有CA认证信息的验证请求,以向所述存证验证平台提供身份验证。An authentication request with CA authentication information is sent to the certificate verification platform to provide authentication to the certificate verification platform.
  7. 一种电子数据一致性验证方法,其特征在于,包括:An electronic data consistency verification method, comprising:
    接收电商平台发送的验证请求,所述验证请求中包含对所述电商平台正在进行的电子数据交易中所涉及的电子数据进行存证信息一致性验证的验证相关信息;Receiving a verification request sent by the e-commerce platform, where the verification request includes verification related information for verifying the consistency of the deposit information of the electronic data involved in the ongoing electronic data transaction of the e-commerce platform;
    根据所述验证相关信息对所述电子数据是否已存证进行验证,并向所述电商平台反馈验证响应。Verifying whether the electronic data has been verified according to the verification related information, and feeding back a verification response to the e-commerce platform.
  8. 根据权利要求7所述的方法,其特征在于,所述验证相关信息包含第一数据串;所述第一数据串是与电子数据唯一对应的数据信息;相应的,所述根据所述验证相关信息对所述电子数据是否已存证进行验证,并向所述电商平台反馈验证响应,包括:The method according to claim 7, wherein the verification related information comprises a first data string; the first data string is data information uniquely corresponding to the electronic data; and correspondingly, the verification is related according to the verification The information verifies whether the electronic data has been verified, and feeds back a verification response to the e-commerce platform, including:
    比对存证数据库中是否已存储有所述第一数据串;若没有,反馈未查到存证信息的第一验证响应;若有,反馈查到存证信息的第一验证响应;Aligning whether the first data string is stored in the certificate database; if not, the feedback does not find the first verification response of the certificate information; if yes, the first verification response of the certificate information is fed back;
    或者,所述验证相关信息包含所述电子数据的存证证书编号;相应的,所述根据所述验证相关信息对所述电子数据是否已存证进行验证,并向所述电商平台反馈验证响应,包括:Or the verification related information includes a certificate number of the electronic data; correspondingly, the verification of the electronic data according to the verification related information is verified, and the verification is performed to the e-commerce platform. Response, including:
    查找与所述存证证书编号对应的存证证书,若没有,反馈未查到存证信 息的第二验证响应;若有,向所述电商平台显示所述存证证书,所述存证证书包含:唯一标识电子数据的第二数据串信息;以使所述电商平台比对所述第一数据串与所述第二数据串确定所述电子数据已在存证验证平台进行存证保护;Find the certificate of deposit corresponding to the certificate number, if not, the feedback does not find the certificate a second verification response of the interest; if present, displaying the certificate of deposit to the e-commerce platform, the certificate of deposit comprising: second data string information uniquely identifying electronic data; to compare the e-commerce platform The first data string and the second data string determine that the electronic data has been stored and protected on a certificate verification platform;
    或者,所述验证相关信息包含所述电子数据的可信时间戳及所述第一数据串;相应的,所述根据所述验证相关信息对所述电子数据是否已存证进行验证,并向所述电商平台反馈验证响应,包括:比对存证数据库中是否已存储有所述第一数据串;若没有,反馈未查到存证信息的第三验证响应;若有,找到与所述第一数据串对应的存证时间,并根据所述第一数据串和所述存证时间生成唯一对应的第二数据串;对所述可信时间戳进行解密,得到第三数据串;若所述第二数据串与所述第三数据串完全匹配,向所述电商平台反馈查到存证信息的第三验证响应。Or the verification related information includes a trusted timestamp of the electronic data and the first data string; and correspondingly, the verification, according to the verification related information, whether the electronic data has been verified, and The e-commerce platform feedback verification response includes: comparing whether the first data string is stored in the verification certificate database; if not, the feedback does not find the third verification response of the deposit information; if yes, finding and Determining a certificate time corresponding to the first data string, and generating a unique second data string according to the first data string and the certificate time; decrypting the trusted timestamp to obtain a third data string; And if the second data string and the third data string completely match, the third verification response of the certificate information is fed back to the e-commerce platform.
  9. 根据权利要求8所述的方法,其特征在于,所述方法还包括:The method of claim 8 further comprising:
    接收所述电商平台发送的存证证书编号获取请求,所述获取请求包含:向所述电商平台反馈的所述查到存证信息的第一验证响应的标识信息;And receiving, by the e-commerce platform, a certificate number obtaining request, where the obtaining request includes: identifier information of the first verification response of the check-up information that is fed back to the e-commerce platform;
    根据所述第一验证响应的标识信息,获取所述电子数据对应的存证证书编号,并向所述电商平台发送所述存证证书编号。Obtaining, according to the identifier information of the first verification response, a certificate number corresponding to the electronic data, and sending the certificate number to the e-commerce platform.
  10. 根据权利要求7所述的方法,其特征在于,所述向所述电商平台反馈验证响应,包括:The method according to claim 7, wherein the feeding back the verification response to the e-commerce platform comprises:
    反馈带有CA认证信息的验证响应,以向所述电商平台提供身份验证。A verification response with CA authentication information is fed back to provide authentication to the e-commerce platform.
  11. 一种电子数据一致性验证装置,其特征在于,包括:An electronic data consistency verification device, comprising:
    监控模块,用于监控电商平台上的交易信息;a monitoring module for monitoring transaction information on the e-commerce platform;
    控制模块,用于当所述监控模块监控到所述交易信息涉及电子数据交易时,暂停交易过程;a control module, configured to suspend the transaction process when the monitoring module monitors that the transaction information relates to an electronic data transaction;
    获取模块,用于获取所述电子数据对应的验证相关信息;An obtaining module, configured to obtain verification related information corresponding to the electronic data;
    发送模块,用于根据所述获取模块获取到的所述验证相关信息,向存证验证平台发送对所述电子数据进行存证信息一致性验证的验证请求;a sending module, configured to send, according to the verification related information acquired by the acquiring module, a verification request for performing verification of the certificate information consistency on the electronic data to the certificate verification platform;
    接收模块,用于接收所述存证验证平台反馈的验证响应,并根据所述验证响应确定所述电子数据是否已在所述存证验证平台进行存证保 护;a receiving module, configured to receive a verification response fed back by the certificate verification platform, and determine, according to the verification response, whether the electronic data has been stored in the certificate verification platform Protect
    所述控制模块,还用于当所述接收模块确定所述电子数据已在所述存证验证平台进行存证保护时,允许所述电子数据继续交易。The control module is further configured to allow the electronic data to continue to be traded when the receiving module determines that the electronic data has been stored and protected by the certificate verification platform.
  12. 根据权利要求11所述的装置,其特征在于,所述发送模块包括:数据串生成子模块、发送子模块;The apparatus according to claim 11, wherein the sending module comprises: a data string generating submodule and a sending submodule;
    数据串生成子模块,用于根据电子数据,生成第一数据串;所述第一数据串是与所述电子数据唯一对应的数据信息;a data string generation submodule, configured to generate a first data string according to the electronic data; the first data string is data information uniquely corresponding to the electronic data;
    所述获取模块获取到的所述验证相关信息为所述电子数据,相应的,The verification related information acquired by the obtaining module is the electronic data, correspondingly,
    所述发送子模块,用于向存证验证平台发送第一验证请求,所述第一验证请求包含:所述数据串生成子模块生成的所述第一数据串;The sending submodule is configured to send a first verification request to the certificate verification platform, where the first verification request includes: the first data string generated by the data string generation submodule;
    或者,所述获取模块获取到的所述验证相关信息为所述电子数据以及所述电子数据的存证证书编号,相应的,Or the verification related information acquired by the obtaining module is the electronic data and the certificate number of the electronic data, correspondingly,
    所述发送子模块,用于向存证验证平台发送第二验证请求,所述第二验证请求包含所述电子数据的存证证书编号;The sending submodule is configured to send a second verification request to the certificate verification platform, where the second verification request includes a certificate number of the electronic data;
    或者,所述获取模块获取到的所述验证相关信息为所述电子数据以及所述电子数据的可信时间戳,相应的,Or the verification related information acquired by the acquiring module is the trusted time stamp of the electronic data and the electronic data, correspondingly,
    所述发送子模块,用于向存证验证平台发送第三验证请求,所述第三验证请求包含所述电子数据的可信时间戳及所述数据串生成子模块生成的所述第一数据串。The sending submodule is configured to send a third verification request to the certificate verification platform, where the third verification request includes a trusted timestamp of the electronic data and the first data generated by the data string generation submodule string.
  13. 根据权利要求12所述的装置,其特征在于,所述接收模块包括:The device according to claim 12, wherein the receiving module comprises:
    接收子模块,用于接收所述存证验证平台反馈的第一验证响应;a receiving submodule, configured to receive a first verification response fed back by the verification verification platform;
    确定子模块,用于当所述第一验证响应为未查到存证信息的响应消息时,确定所述电子数据未在所述存证验证平台进行存证保护;当所述第一验证响应为查到存证信息的响应消息时,确定所述电子数据已在所述存证验证平台进行存证保护;a determining submodule, configured to: when the first verification response is a response message that does not find the deposit information, determine that the electronic data is not protected by the deposit verification platform; when the first verification response In order to find the response message of the deposit information, it is determined that the electronic data has been stored and protected on the certificate verification platform;
    所述接收子模块,还用于接收所述存证验证平台反馈的第二验证响应;所述第二验证响应包含第二数据串;The receiving submodule is further configured to receive a second verification response fed back by the verification verification platform; the second verification response includes a second data string;
    比对子模块,用于将所述接收子模块接收到的所述第二数据串与所述数据串生成子模块生成的所述第一数据串进行比对; And a comparison submodule, configured to compare the second data string received by the receiving submodule with the first data string generated by the data string generating submodule;
    所述确定子模块,还用于根据所述比对子模块对所述第二数据串与所述第一数据串进行比对得到的结果,确定所述电子数据是否已在所述存证验证平台进行存证保护;若一致,确定所述电子数据已在所述存证验证平台进行存证保护;若不一致,确定所述电子数据未在所述存证验证平台进行存证保护;所述第二数据串是与存证电子数据唯一对应的数据信息;The determining submodule is further configured to determine, according to a result obtained by comparing the second data string with the first data string, by the comparison submodule, whether the electronic data is verified in the deposit verification The platform performs certificate protection; if it is consistent, it is determined that the electronic data has been stored and protected on the certificate verification platform; if not, it is determined that the electronic data is not protected by the certificate on the certificate verification platform; The second data string is data information uniquely corresponding to the stored electronic data;
    所述接收子模块,还用于接收所述存证验证平台反馈的第三验证响应;The receiving submodule is further configured to receive a third verification response fed back by the verification verification platform;
    所述确定子模块,还用于当所述第三验证响应为未查到存证信息的响应消息时,确定所述电子数据未在所述存证验证平台进行存证保护;当所述第三验证响应为查到存证信息的响应消息时,确定所述电子数据已在所述存证验证平台进行存证保护。The determining submodule is further configured to: when the third verification response is a response message that does not find the deposit information, determine that the electronic data is not protected by the deposit verification platform; The third verification response is that when the response message of the deposit information is found, it is determined that the electronic data has been protected by the deposit verification platform.
  14. 根据权利要求13所述的装置,其特征在于,The device of claim 13 wherein:
    所述发送模块,还用于向所述存证验证平台发送所述电子数据的存证证书编号获取请求,所述获取请求包含:所述第一验证响应的标识信息;The sending module is further configured to send the certificate of the certificate number of the electronic data to the certificate verification platform, where the obtaining request includes: identifier information of the first verification response;
    所述接收模块,还用于接收所述存证验证平台反馈的所述电子数据对应的存证证书编号;The receiving module is further configured to receive a certificate number corresponding to the electronic data fed back by the certificate verification platform;
    所述发送模块,还用于将所述存证证书编号发送给所述电子数据交易对应的交易方。The sending module is further configured to send the certificate number to the counterparty corresponding to the electronic data transaction.
  15. 根据权利要求13所述的装置,其特征在于,所述装置还包括:The device according to claim 13, wherein the device further comprises:
    存储模块,用于将所述确定子模块确定的所述电子数据已在所述存证验证平台进行存证保护的确定结果与所述数据串生成子模块生成的所述第一数据串对应存储;a storage module, configured to store, by the determining submodule, the determination result that the electronic data has been protected by the certificate verification platform and the first data string generated by the data string generation submodule ;
    所述比对子模块,还用于比对本地数据库中是否已存储所述第一数据串;The comparison submodule is further configured to compare whether the first data string has been stored in the local database;
    所述获取模块,还用于当所述比对子模块比对后发现本地数据库中已存储所述第一数据串时,从所述存储模块中获取所述确定结果。The obtaining module is further configured to: when the comparing sub-module is compared, find that the first data string is stored in the local database, and obtain the determining result from the storage module.
  16. 根据权利要求11所述的装置,其特征在于,The device of claim 11 wherein:
    所述发送模块,具体用于向存证验证平台发送带有CA认证信息的验证请求,以向所述存证验证平台提供身份验证。The sending module is specifically configured to send an authentication request with CA authentication information to the certificate verification platform to provide identity verification to the certificate verification platform.
  17. 一种存证验证平台,其特征在于,包括:A certificate verification platform, comprising:
    接收模块,用于接收电商平台发送的验证请求,所述验证请求中包 含对所述电商平台正在进行的电子数据交易中所涉及的电子数据进行存证信息一致性验证的验证相关信息;a receiving module, configured to receive an authentication request sent by an e-commerce platform, where the verification request is included The verification related information for verifying the consistency of the deposit information of the electronic data involved in the ongoing electronic data transaction of the e-commerce platform;
    验证模块,用于根据所述验证相关信息对所述电子数据是否已存证进行验证;a verification module, configured to verify, according to the verification related information, whether the electronic data has been verified;
    反馈模块,用于向所述电商平台反馈验证响应。a feedback module, configured to feed back a verification response to the e-commerce platform.
  18. 根据权利要求17所述的平台,其特征在于,The platform of claim 17 wherein:
    所述验证相关信息包含第一数据串,所述第一数据串是与电子数据唯一对应的数据信息;相应的,The verification related information includes a first data string, and the first data string is data information uniquely corresponding to the electronic data; correspondingly,
    所述验证模块,具体用于比对存证数据库中是否已存储有所述第一数据串;The verification module is specifically configured to compare whether the first data string is already stored in the certificate database;
    所述反馈模块,具体用于当所述验证模块进行比对后得到未存储有所述第一数据串的验证结果时,反馈未查到存证信息的第一验证响应;当得到存储有所述第一数据串的验证结果时,反馈查到存证信息的第一验证响应;The feedback module is specifically configured to: when the verification module obtains the verification result that the first data string is not stored, the first verification response that does not find the deposit information is fed back; When the verification result of the first data string is described, the first verification response of the deposit certificate information is fed back;
    或者,所述验证相关信息包含所述电子数据的存证证书编号,相应的,Or the verification related information includes a certificate number of the electronic data, correspondingly,
    所述验证模块,具体用于查找与所述存证证书编号对应的存证证书;The verification module is specifically configured to search for a certificate of deposit corresponding to the certificate number of the certificate;
    所述反馈模块,具体用于当所述验证模块进行查找后得到未找到与所述存证证书编号对应的存证证书时,反馈未查到存证信息的第二验证响应;当所述验证模块进行查找后得到找到与所述存证证书编号对应的存证证书时,向所述电商平台显示所述存证证书;所述存证证书包含:唯一标识存证电子数据的第二数据串信息;以使所述电商平台比对所述第一数据串与所述第二数据串确定所述电子数据已存证保护;The feedback module is specifically configured to: when the verification module performs the search, if the certificate of the certificate corresponding to the certificate number is not found, the second verification response that does not find the certificate information is fed back; After the module performs the search and obtains the certificate of deposit corresponding to the certificate number, the certificate is displayed to the e-commerce platform; the certificate includes: second data that uniquely identifies the electronic data of the certificate. String information; wherein the e-commerce platform compares the first data string with the second data string to determine that the electronic data has been stored and protected;
    或者,所述验证相关信息包含所述电子数据的可信时间戳及所述第一数据串,相应的,Or the verification related information includes a trusted timestamp of the electronic data and the first data string, correspondingly,
    所述验证模块,具体用于比对存证数据库中是否已存储有所述第一数据串;The verification module is specifically configured to compare whether the first data string is already stored in the certificate database;
    所述反馈模块,具体用于当所述验证模块进行比对后得到未存储有所述第一数据串的验证结果时,反馈未查到存证信息的第三验证响应;当得到存储有所述第一数据串的验证结果时,找到与所述第一数据串对应的存证时间,并根据所述第一数据串和所述存证时间生成唯一对应的第二数据串;对 所述可信时间戳进行解密,得到第三数据串;若所述第二数据串与所述第三数据串完全匹配,向所述电商平台反馈查到存证信息的第三验证响应。The feedback module is specifically configured to: when the verification module obtains the verification result that the first data string is not stored, the third verification response that does not find the deposit information is fed back; When the verification result of the first data string is described, the certificate time corresponding to the first data string is found, and a unique second data string is generated according to the first data string and the certificate time; The trusted timestamp is decrypted to obtain a third data string; if the second data string and the third data string are completely matched, the third verification response of the certificate information is fed back to the e-commerce platform.
  19. 根据权利要求18所述的平台,其特征在于,A platform according to claim 18, wherein
    所述接收模块,还用于接收所述电商平台发送的存证证书编号获取请求,所述获取请求包含:向所述电商平台反馈的所述查到存证信息的第一验证响应的标识信息;The receiving module is further configured to receive a certificate number obtaining request sent by the e-commerce platform, where the obtaining request includes: the first verification response of the check-up information that is fed back to the e-commerce platform Identification information;
    所述反馈模块,还用于根据所述第一验证响应的标识信息,获取所述电子数据对应的存证证书编号,并向所述电商平台发送所述存证证书编号。The feedback module is further configured to obtain a certificate number corresponding to the electronic data according to the identifier information of the first verification response, and send the certificate number to the e-commerce platform.
  20. 根据权利要求17所述的平台,其特征在于,The platform of claim 17 wherein:
    所述反馈模块,具体用于反馈带有CA认证信息的验证响应,以向所述电商平台提供身份验证。The feedback module is specifically configured to feed back a verification response with CA authentication information to provide identity verification to the e-commerce platform.
  21. 一种电子数据一致性验证系统,其特征在于,包括:An electronic data consistency verification system, comprising:
    如权利要求11-16任一项所述的电子数据一致性验证装置;以及如权利要求17-20任一项所述的存证验证平台。 The electronic data consistency verification apparatus according to any one of claims 11 to 16; and the certificate verification platform according to any one of claims 17 to 20.
PCT/CN2016/098615 2015-10-16 2016-09-09 Method, device and system for verifying consistency of electronic data and certificate verification platform WO2017063470A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510673400.3A CN105260675B (en) 2015-10-16 2015-10-16 Electronic data consistency verification method, device, system and deposit card verification platform
CN201510673400.3 2015-10-16

Publications (1)

Publication Number Publication Date
WO2017063470A1 true WO2017063470A1 (en) 2017-04-20

Family

ID=55100359

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/098615 WO2017063470A1 (en) 2015-10-16 2016-09-09 Method, device and system for verifying consistency of electronic data and certificate verification platform

Country Status (2)

Country Link
CN (1) CN105260675B (en)
WO (1) WO2017063470A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110764998A (en) * 2019-09-06 2020-02-07 平安健康保险股份有限公司 Data comparison method, device and equipment based on Django framework and storage medium
CN112131599A (en) * 2020-09-15 2020-12-25 北京海益同展信息科技有限公司 Method, device, equipment and computer readable medium for checking data
US11263632B2 (en) * 2020-08-31 2022-03-01 Alipay (Hangzhou) Information Technology Co., Ltd. Information sharing methods, apparatuses, and devices

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105260675B (en) * 2015-10-16 2017-03-15 北京源创云网络科技有限公司 Electronic data consistency verification method, device, system and deposit card verification platform
CN105956923B (en) * 2016-04-20 2022-04-29 上海如鸽投资有限公司 Asset transaction system and digital authentication and transaction method of assets
CN110263003A (en) * 2016-07-21 2019-09-20 北京源创云网络科技有限公司 Item file deposits card method and terminal device
CN107784544B (en) * 2016-08-30 2021-08-17 阿里巴巴集团控股有限公司 Information comparison method and equipment
CN106548091A (en) * 2016-10-14 2017-03-29 北京爱接力科技发展有限公司 A kind of data deposit card, the method and device of checking
CN107835163B (en) * 2017-10-25 2020-12-22 杭州怀星科技有限公司 Online data circulation third party certificate storage and data right tracing method and device
CN110378079B (en) * 2018-04-13 2023-07-04 胡小凡 Information processing, protecting and selling method and device based on original works
CN109214145A (en) * 2018-08-03 2019-01-15 上海小渔数据科技有限公司 Transaction processing method and device for software development
CN109598149B (en) * 2018-11-20 2020-04-07 阿里巴巴集团控股有限公司 Service processing method and device
CN111865568B (en) * 2019-04-29 2022-10-04 华控清交信息科技(北京)有限公司 Data transmission oriented certificate storing method, transmission method and system
CN110958276B (en) * 2020-02-24 2020-05-12 常州唯实智能物联创新中心有限公司 Trusted acquisition and logging method and device based on digital identity of intelligent Internet of things equipment

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101567073A (en) * 2008-04-24 2009-10-28 李东声 Method, device and system for realizing batch electronic transaction
CN102223374A (en) * 2011-06-22 2011-10-19 熊志海 Third-party authentication security protection system and third-party authentication security protection method based on online security protection of electronic evidence
US8260673B2 (en) * 2003-05-09 2012-09-04 International Business Machines Corporation Method, system and computer program product for selective data disclosure and contract negotiation in an E-marketplace based on predetermined preferences
CN102663649A (en) * 2012-05-18 2012-09-12 苏州工业园区凌志软件有限公司 Financial derivative transaction system
CN103714456A (en) * 2014-01-06 2014-04-09 同济大学 Software behavior monitor and verification system
CN104270359A (en) * 2014-09-25 2015-01-07 同济大学 Credibility certification system and method for network transaction
CN105260675A (en) * 2015-10-16 2016-01-20 北京源创云网络科技有限公司 Electronic data consistency verification method, apparatus and system, and depository receipt verification platform

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8260673B2 (en) * 2003-05-09 2012-09-04 International Business Machines Corporation Method, system and computer program product for selective data disclosure and contract negotiation in an E-marketplace based on predetermined preferences
CN101567073A (en) * 2008-04-24 2009-10-28 李东声 Method, device and system for realizing batch electronic transaction
CN102223374A (en) * 2011-06-22 2011-10-19 熊志海 Third-party authentication security protection system and third-party authentication security protection method based on online security protection of electronic evidence
CN102663649A (en) * 2012-05-18 2012-09-12 苏州工业园区凌志软件有限公司 Financial derivative transaction system
CN103714456A (en) * 2014-01-06 2014-04-09 同济大学 Software behavior monitor and verification system
CN104270359A (en) * 2014-09-25 2015-01-07 同济大学 Credibility certification system and method for network transaction
CN105260675A (en) * 2015-10-16 2016-01-20 北京源创云网络科技有限公司 Electronic data consistency verification method, apparatus and system, and depository receipt verification platform

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110764998A (en) * 2019-09-06 2020-02-07 平安健康保险股份有限公司 Data comparison method, device and equipment based on Django framework and storage medium
CN110764998B (en) * 2019-09-06 2024-04-02 平安健康保险股份有限公司 Data comparison method, device, equipment and storage medium based on Django framework
US11263632B2 (en) * 2020-08-31 2022-03-01 Alipay (Hangzhou) Information Technology Co., Ltd. Information sharing methods, apparatuses, and devices
CN112131599A (en) * 2020-09-15 2020-12-25 北京海益同展信息科技有限公司 Method, device, equipment and computer readable medium for checking data

Also Published As

Publication number Publication date
CN105260675B (en) 2017-03-15
CN105260675A (en) 2016-01-20

Similar Documents

Publication Publication Date Title
WO2017063470A1 (en) Method, device and system for verifying consistency of electronic data and certificate verification platform
CN106230784B (en) Equipment verification method and device
CN109274652B (en) Identity information verification system, method and device and computer storage medium
CN112383611B (en) File evidence storing method and system based on block chain and server
US20100312810A1 (en) Secure identification of music files
JP2008541206A (en) Network commerce
US8474052B2 (en) User-administered license state verification
JP2005269158A (en) Electronic signature guarantee system, method, program, and apparatus
WO2019196834A1 (en) Blockchain platform-based autonomous and supervisable digital identity authentication system
JP2007072608A (en) Device information transmission program, service control program, device information transmission apparatus, service control device, and method for transmitting device information
KR102037606B1 (en) Genuine product certification system and method using product identification code
JP5399400B2 (en) Digital content counting system and method
US11258601B1 (en) Systems and methods for distributed digital rights management with decentralized key management
WO2016165215A1 (en) Method and apparatus for loading code signing on applications
US8880433B2 (en) Dynamic authentication of mark use
US9397828B1 (en) Embedding keys in hardware
CN109446752B (en) Copyright file management method, system, device and storage medium
CN110879876B (en) System and method for issuing certificates
CN107315552B (en) Method and system for realizing digital copyright protection of printer
US20140230068A1 (en) System and method for packaging and authenticating a software product
JP2011165221A (en) Equipment information transmitting method, equipment information transmitting device, equipment information transmitting program
CN112948894A (en) Block chain-based anti-counterfeiting method, device, equipment and medium for tally inspection report
JP2002251492A (en) Apparatus, method and system for electronic transaction
US20180137549A1 (en) Non-repudiation in drm
CN115168811B (en) Software anti-cracking method and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16854852

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16854852

Country of ref document: EP

Kind code of ref document: A1