WO2021120579A1 - Method for securely reporting data, and apparatus and computer-readable storage medium - Google Patents

Method for securely reporting data, and apparatus and computer-readable storage medium Download PDF

Info

Publication number
WO2021120579A1
WO2021120579A1 PCT/CN2020/099067 CN2020099067W WO2021120579A1 WO 2021120579 A1 WO2021120579 A1 WO 2021120579A1 CN 2020099067 W CN2020099067 W CN 2020099067W WO 2021120579 A1 WO2021120579 A1 WO 2021120579A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
data security
security reporting
user
reporting system
Prior art date
Application number
PCT/CN2020/099067
Other languages
French (fr)
Chinese (zh)
Inventor
张文伟
Original Assignee
平安国际智慧城市科技股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 平安国际智慧城市科技股份有限公司 filed Critical 平安国际智慧城市科技股份有限公司
Publication of WO2021120579A1 publication Critical patent/WO2021120579A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • H04L9/3255Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures using group based signatures, e.g. ring or threshold signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/42Anonymization, e.g. involving pseudonyms

Definitions

  • This application relates to the field of data processing, and in particular to a method, device and computer-readable storage medium for data security reporting.
  • the inventor realizes that the data security reporting system (such as the reporting system) has the problem of information leakage of the reporter (or called the reporter).
  • the general system can directly see the basic information of the reporter. Reporters who do not know the information easily will have some scruples.
  • this application provides a data security reporting method, device, and computer-readable storage medium, the main purpose of which is to effectively ensure the security of the whistleblower, and to ensure the real name and authenticity of the whistleblower.
  • the present application provides a data security reporting method, and the data security reporting method includes:
  • This application provides a data security reporting method, which is applied to an electronic device, and the data security reporting method includes:
  • the present application also provides an electronic device, the electronic device includes a memory and a processor, the memory stores a data security reporting program that can run on the processor, and the data security reporting program is used by the processor. The following steps are implemented during execution:
  • the present application also provides a computer-readable storage medium having a data security reporting program stored on the computer-readable storage medium, and the data security reporting program can be executed by one or more processors to implement the following steps:
  • This application also provides a data security reporting device, the data security reporting device includes:
  • the sending module is used to send the user's registration information to the data security reporting system, and send the report information of the group signature operation to the data security reporting system, so that the data security reporting system can pass the group signature verification operation to the data security reporting system. Verifying the validity of the signature of the reported information;
  • An obtaining module configured to obtain a certificate issued by the data security reporting system based on the registration information
  • the registration module is used to obtain the current image information of the user, perform real-name registration based on the current image information and the registration information, and treat the user who has completed the real-name registration as a member of the group signature of the data security reporting system ;
  • the receiving module is configured to: receive the report information input by the user, and receive the verification result fed back by the data security reporting system;
  • the signature module is used to perform a group signature operation on the reported information based on the group signature technology.
  • the data security reporting method, device, and computer-readable storage medium provided in this application use group signature technology to sign and verify reported information. Since group signature members require real names when registering, and group signature operations on reported information are anonymous operations. This can effectively ensure the real name of the report and at the same time ensure the concealment of the reporter.
  • FIG. 1 is a schematic flowchart of a data security reporting method provided by an embodiment of this application
  • FIG. 2 is a schematic diagram of the internal structure of an electronic device provided by an embodiment of the application.
  • FIG. 3 is a schematic diagram of modules based on a data security reporting program in an electronic device provided by an embodiment of the application.
  • This application provides a data security reporting method.
  • FIG. 1 it is a schematic flowchart of a data security reporting method provided by an embodiment of this application.
  • the method may be executed by a device, and the device may be implemented by software and/or hardware.
  • the device is an intelligent terminal.
  • the data security reporting method includes:
  • S102 Obtain a certificate issued by the data security reporting system based on the registration information
  • S103 Acquire current image information of the user, perform real-name registration based on the current image information and the registration information, and use the real-name registered user as a member of the group signature of the data security reporting system;
  • S104 Receive report information input by the user
  • S105 Perform a group signature operation on the reported information based on the group signature technology
  • S106 Send the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
  • the main purpose of the data security reporting method provided in this embodiment is to be able to effectively ensure the safety of the reporter, and to ensure the real name and authenticity of the reporter.
  • the data security reporting system is an anonymous reporting system.
  • the method further includes:
  • the step of performing a group signature operation on the report information based on the group signature technology includes:
  • a group signature is a digital signature scheme that includes the following processes:
  • Signature A probabilistic algorithm, when a message and the private key of a group member are input, the signature of the message is output.
  • Verification A probabilistic algorithm, when a bad message and a private key of a group member are input, the signature of the message is output.
  • Open An algorithm that confirms the legal identity of the signer under the condition of a given signature and group private key.
  • group signature The basic meaning of group signature is to sign digitally in the name of the group.
  • Group members include an administrator and several group members. Any group member has its own private key and group public key, and can sign on behalf of the group. When there is a dispute over the signature result, the administrator can track the identity of the group membership of the signature, thereby realizing effective accountability.
  • Group signature has the following characteristics:
  • the recipient can verify the validity of the signature and can determine whether the signature is from a specific group, but does not know which member of the group signed it;
  • the signature can be made public, and the identity of the signing member can be confirmed by the administrator.
  • Group signature can be regarded as a general "group member anonymous identity authentication", that is, a member can prove which group he belongs to, but does not reveal his identity. Its security requirements include:
  • Unforgeability the group signature cannot be forged by anyone other than the group members
  • Anonymity Signed group members cannot be identified by anyone other than the administrator
  • Anti-collusion attack Group members cannot forge the signatures of other group members in total.
  • the registration information includes the ID information of the user, and the step of obtaining the current image information of the user and performing real-name registration based on the current image information and the registration information includes:
  • real-name registration is performed based on the current image information and the registration information.
  • the step of receiving the verification result fed back by the data security reporting system includes:
  • the data security reporting system When the data security reporting system successfully verifies the validity of the signature of the report information, it receives a verification result that the signature verification of the report information passes.
  • the data security reporting method further includes opening an interface of the data security reporting system on the electronic device to receive the registration information.
  • the report information includes information of the reported person, and the information of the reported person includes the name of the reported person, the name of the unit, the address of the unit, and the current position.
  • the data security reporting method proposed in this embodiment uses group signature technology to sign and verify reported information. Since group signature members need real names when registering, and group signature operations on reported information are anonymous operations, this can effectively ensure the real name of the report. At the same time, it can ensure the concealment of the whistleblower; and when a malicious report occurs, the system can locate the identity of the malicious whistleblower through the group of signature operations of "open", and assist in judicial investigations.
  • the application also provides an electronic device 1.
  • FIG. 2 it is a schematic diagram of the internal structure of an electronic device provided by an embodiment of this application.
  • the electronic device 1 may be a computer, a smart terminal or a server.
  • the electronic device 1 at least includes a memory 11, a processor 13, a communication bus 15, and a network interface 17.
  • the electronic device 1 is an intelligent terminal.
  • the memory 11 includes at least one type of readable storage medium, and the readable storage medium includes flash memory, hard disk, multimedia card, card-type memory (for example, SD or DX memory, etc.), magnetic memory, magnetic disk, optical disk, and the like.
  • the memory 11 may be an internal storage unit of the electronic device, such as a hard disk of the electronic device.
  • the memory 11 may also be an external storage device of the electronic device, for example, a plug-in hard disk equipped on the electronic device, a smart memory card (Smart Media Card, SMC), Secure Digital (SD) card, Flash Card, etc.
  • the memory 11 may also include both an internal storage unit of an electronic device and an external storage device.
  • the memory 11 can be used not only to store application software and various data installed in the electronic device 1, such as the code of the data security reporting program 111, etc., but also to temporarily store data that has been output or will be output.
  • the processor 13 may be a central processing unit (Central Processing Unit) in some embodiments.
  • Central Processing Unit CPU
  • controller a controller
  • microcontroller a microprocessor or other data processing chips are used to run program codes or process data stored in the memory 11.
  • the communication bus 15 is used to realize the connection and communication between these components.
  • the network interface 17 may optionally include a standard wired interface and a wireless interface (such as a WI-FI interface), and is generally used to establish a communication connection between the electronic device 1 and other electronic devices.
  • a standard wired interface and a wireless interface such as a WI-FI interface
  • the electronic device 1 may further include a user interface.
  • the user interface may include a display (Display) and an input unit such as a keyboard (Keyboard).
  • the optional user interface may also include a standard wired interface and a wireless interface.
  • the display may be an LED display, a liquid crystal display, a touch-sensitive liquid crystal display, and an OLED (Organic Light-Emitting Diode, organic light-emitting diode) touch device, etc.
  • the display can also be appropriately called a display screen or a display unit, which is used to display information processed in the electronic device and to display a visualized user interface.
  • FIG. 2 only shows the electronic device 1 with components 11-17. Those skilled in the art can understand that the structure shown in FIG. 2 does not constitute a limitation on the electronic device, and may include fewer or more components than shown in the figure. Component, or combination of some components, or different component arrangements.
  • a data security reporting program 111 is stored in the memory 11; when the processor 13 executes the data security reporting program 111 stored in the memory 11, the following steps are implemented:
  • the main purpose of the electronic device 1 provided in this embodiment is to effectively ensure the safety of the reporter, and to ensure the authenticity and authenticity of the reporter.
  • the step of performing a group signature operation on the report information based on the group signature technology includes:
  • a group signature is a digital signature scheme that includes the following processes:
  • Signature A probabilistic algorithm, when a message and the private key of a group member are input, the signature of the message is output.
  • Verification A probabilistic algorithm, when a bad message and a private key of a group member are input, the signature of the message is output.
  • Open An algorithm that confirms the legal identity of the signer under the condition of a given signature and group private key.
  • group signature The basic meaning of group signature is to sign digitally in the name of the group.
  • Group members include an administrator and several group members. Any group member has its own private key and group public key, and can sign on behalf of the group. When there is a dispute over the result of the signature, the administrator can track the identity of the group membership of the signature, thereby realizing effective accountability.
  • Group signature has the following characteristics:
  • the recipient can verify the validity of the signature and can determine whether the signature is from a specific group, but does not know which member of the group signed it;
  • the signature can be made public, and the identity of the signing member can be confirmed by the administrator.
  • Group signature can be regarded as a general "group member anonymous identity authentication", that is, a member can prove which group he belongs to, but does not reveal his identity. Its security requirements include:
  • Unforgeability the group signature cannot be forged by anyone other than the group members
  • Anonymity Signed group members cannot be identified by anyone other than the administrator
  • Anti-collusion attack Group members cannot forge the signatures of other group members in total.
  • the registration information includes the identity document information of the user, and the step of acquiring the current image information of the user and performing real-name registration based on the current image information and the registration information includes:
  • real-name registration is performed based on the current image information and the registration information.
  • the step of receiving the verification result fed back by the data security reporting system includes:
  • the data security reporting system When the data security reporting system successfully verifies the validity of the signature of the reported information, it receives verification feedback information that the signature of the reported information is verified.
  • the processor 13 executes the data security reporting program 111 stored in the memory 11, the following steps are implemented: opening the interface interface of the data security reporting system on the electronic device In order to receive the registration information.
  • the report information includes information of the reported person, and the information of the reported person includes the name of the reported person, the name of the unit, the address of the unit, and the current position.
  • an embodiment of the present application also proposes a computer-readable storage medium that stores a data security reporting program 111 on the computer-readable storage medium, and the data security reporting program 111 can be executed by one or more processors to To achieve the following operations:
  • the data security reporting program 111 may also be divided into one or more modules, and the one or more modules are stored in the memory 11 and run by one or more processors (this The embodiment is executed by the processor 13) to complete the application.
  • the module referred to in the application refers to a series of computer program instruction segments capable of completing specific functions, and is used to describe the execution process of the data security reporting program in the electronic device.
  • FIG. 3 a schematic diagram of the program modules of the data security reporting program 111 in an embodiment of the electronic device of this application.
  • the data security reporting program 111 can be divided into a sending module 10, an acquiring module 20, The registration module 30, the receiving module 40, and the signature module 50, exemplarily:
  • the sending module 10 is used to send the user's registration information to the data security reporting system
  • the obtaining module 20 is configured to obtain a certificate issued by the data security reporting system based on the registration information;
  • the registration module 30 is configured to obtain the current image information of the user and complete the real-name registration in combination with the registration information, so that the user becomes a member of the group signature of the data security reporting system;
  • the receiving module 40 is configured to receive report information input by the user
  • the signature module 50 is configured to perform a group signature operation on the reported information based on group signature technology
  • the sending module 10 is also used to send the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the signature validity of the report information through the group signature verification operation;
  • the receiving module 40 is also used to receive the verification feedback information returned by the data security reporting system.
  • the functions or operation steps implemented by the program modules such as the sending module 10, the acquiring module 20, the registering module 30, the receiving module 40, and the signature module 50 are substantially the same as those in the above-mentioned embodiment, and will not be repeated here.
  • the technical solution of this application essentially or the part that contributes to the existing technology can be embodied in the form of a software product, and the computer software product is stored in a storage medium (such as ROM/RAM) as described above. , Magnetic disk, optical disk), including several instructions to make a terminal device (can be a mobile phone, a computer, a server, or a network device, etc.) execute the method described in each embodiment of the present application.
  • the computer-readable storage medium may be non-volatile or volatile.

Abstract

The present application relates to big data. Disclosed are a method for securely reporting data, and an apparatus and a computer-readable storage medium. The method for securely reporting data comprises: sending registration information of a user to a secure data reporting system; acquiring a certificate signed and issued by the secure data reporting system on the basis of the registration information; acquiring current image information of the user, performing real-name registration on the basis of the current image information and the registration information, and taking the user which completes the real-name registration as a member of a group signature of the secure data reporting system; receiving reporting information input by the user; performing a group signature operation on the reporting information on the basis of group signature technology; sending the reporting information which is subjected to the group signature operation to the secure data reporting system, such that the secure data reporting system verifies the signature validity of the reporting information by means of a signature verification operation on the group signature; and receiving a verification result fed back by the secure data reporting system.

Description

数据安全上报方法、装置及计算机可读存储介质Data security reporting method, device and computer readable storage medium
本申请要求于2019年12月18日提交中国专利局、申请号为201911321927.4、发明名称为“数据安全上报方法、装置及计算机可读存储介质”的中国专利申请的优先权,其全部内容通过引用结合在申请中。This application claims the priority of a Chinese patent application filed with the Chinese Patent Office on December 18, 2019, the application number is 201911321927.4, and the invention title is "Data security reporting method, device and computer-readable storage medium", the entire content of which is incorporated by reference Incorporate in the application.
技术领域Technical field
本申请涉及数据处理领域,尤其涉及一种数据安全上报方法、装置及计算机可读存储介质。This application relates to the field of data processing, and in particular to a method, device and computer-readable storage medium for data security reporting.
背景技术Background technique
在现实生活中,发明人意识到数据安全上报系统(例如举报系统)存在上报人(或者叫举报人)信息泄露的问题,一般的系统可以直接看到上报人的基本信息,这样对于想保护个人信息不被轻易知道的上报人来说,会有所顾忌。In real life, the inventor realizes that the data security reporting system (such as the reporting system) has the problem of information leakage of the reporter (or called the reporter). The general system can directly see the basic information of the reporter. Reporters who do not know the information easily will have some scruples.
技术问题technical problem
如何解决上报信息的来源真实性及保护上报人的个人信息不被轻易获取,是当下急需解决的一个问题。有鉴于此,本申请提供一种数据安全上报方法、装置及计算机可读存储介质,其主要目的在于能够有效保证举报人的安全性,又能确保举报人的实名性与真实性。How to solve the authenticity of the source of the reported information and protect the personal information of the reporter from being easily obtained is a problem that needs to be solved urgently. In view of this, this application provides a data security reporting method, device, and computer-readable storage medium, the main purpose of which is to effectively ensure the security of the whistleblower, and to ensure the real name and authenticity of the whistleblower.
技术解决方案Technical solutions
为实现上述目的,本申请提供一种数据安全上报方法,所述数据安全上报方法包括:To achieve the above objective, the present application provides a data security reporting method, and the data security reporting method includes:
本申请提供一种数据安全上报方法,应用于电子装置中,所述数据安全上报方法包括:This application provides a data security reporting method, which is applied to an electronic device, and the data security reporting method includes:
发送用户的注册信息至数据安全上报系统;Send the user's registration information to the data security reporting system;
获取所述数据安全上报系统基于所述注册信息签发的证书;Obtaining a certificate issued by the data security reporting system based on the registration information;
获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;Acquiring the current image information of the user, performing real-name registration based on the current image information and the registration information, and setting the user who has completed the real-name registration as a member of the group signature of the data security reporting system;
接收所述用户输入的举报信息;Receiving the report information input by the user;
基于群签名技术对所述举报信息进行群签名操作;Perform a group signature operation on the reported information based on the group signature technology;
发送被群签名操作的举报信息至所述数据安全上报系统,以便所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;Sending the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
接收所述数据安全上报系统反馈的验证结果。Receiving the verification result fed back by the data security reporting system.
本申请还提供一种电子装置,所述电子装置包括存储器和处理器,所述存储器上存储有可在所述处理器上运行的数据安全上报程序,所述数据安全上报程序被所述处理器执行时实现如下步骤:The present application also provides an electronic device, the electronic device includes a memory and a processor, the memory stores a data security reporting program that can run on the processor, and the data security reporting program is used by the processor. The following steps are implemented during execution:
发送用户的注册信息至数据安全上报系统;Send the user's registration information to the data security reporting system;
获取所述数据安全上报系统基于所述注册信息签发的证书;Obtaining a certificate issued by the data security reporting system based on the registration information;
获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;Acquiring the current image information of the user, performing real-name registration based on the current image information and the registration information, and making the user who has completed the real-name registration as a member of the group signature of the data security reporting system;
接收所述用户输入的举报信息;Receiving the report information input by the user;
基于群签名技术对所述举报信息进行群签名操作;Perform a group signature operation on the reported information based on the group signature technology;
发送被群签名操作的举报信息至所述数据安全上报系统,以便所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;Sending the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
接收由所述数据安全上报系统反馈的验证结果。Receiving the verification result fed back by the data security reporting system.
本申请还提供一种计算机可读存储介质,所述计算机可读存储介质上存储有数据安全上报程序,所述数据安全上报程序可被一个或者多个处理器执行,以实现如下步骤:The present application also provides a computer-readable storage medium having a data security reporting program stored on the computer-readable storage medium, and the data security reporting program can be executed by one or more processors to implement the following steps:
发送用户的注册信息至数据安全上报系统;Send the user's registration information to the data security reporting system;
获取所述数据安全上报系统基于所述注册信息签发的证书;Obtaining a certificate issued by the data security reporting system based on the registration information;
获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;Acquiring the current image information of the user, performing real-name registration based on the current image information and the registration information, and setting the user who has completed the real-name registration as a member of the group signature of the data security reporting system;
接收所述用户输入的举报信息;Receiving the report information input by the user;
基于群签名技术对所述举报信息进行群签名操作;Perform a group signature operation on the reported information based on the group signature technology;
发送被群签名操作的举报信息至所述数据安全上报系统,以便在所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;Sending the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
接收所述数据安全上报系统反馈的验证结果。Receiving the verification result fed back by the data security reporting system.
本申请还提供一种数据安全上报装置,所述数据安全上报装置包括:This application also provides a data security reporting device, the data security reporting device includes:
发送模块,用于:发送用户的注册信息至数据安全上报系统,以及发送被群签名操作的举报信息至所述数据安全上报系统,以便在所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;The sending module is used to send the user's registration information to the data security reporting system, and send the report information of the group signature operation to the data security reporting system, so that the data security reporting system can pass the group signature verification operation to the data security reporting system. Verifying the validity of the signature of the reported information;
获取模块,用于:获取所述数据安全上报系统基于所述注册信息签发的证书;An obtaining module, configured to obtain a certificate issued by the data security reporting system based on the registration information;
注册模块,用于:获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;The registration module is used to obtain the current image information of the user, perform real-name registration based on the current image information and the registration information, and treat the user who has completed the real-name registration as a member of the group signature of the data security reporting system ;
接收模块,用于:接收所述用户输入的举报信息,以及接收所述数据安全上报系统反馈的验证结果;The receiving module is configured to: receive the report information input by the user, and receive the verification result fed back by the data security reporting system;
签名模块,用于:基于群签名技术对所述举报信息进行群签名操作。The signature module is used to perform a group signature operation on the reported information based on the group signature technology.
有益效果Beneficial effect
本申请提供的数据安全上报方法、装置及计算机可读存储介质通过群签名技术对举报信息进行签名及验证,由于群签名成员注册时需要实名,且在对举报信息进行群签名操作是匿名操作,这样能够有效保证举报的实名性,同时可以保证举报人的隐匿性。The data security reporting method, device, and computer-readable storage medium provided in this application use group signature technology to sign and verify reported information. Since group signature members require real names when registering, and group signature operations on reported information are anonymous operations. This can effectively ensure the real name of the report and at the same time ensure the concealment of the reporter.
附图说明Description of the drawings
图1为本申请一实施例提供的数据安全上报方法的流程示意图;FIG. 1 is a schematic flowchart of a data security reporting method provided by an embodiment of this application;
图2为本申请一实施例提供的电子装置的内部结构示意图;2 is a schematic diagram of the internal structure of an electronic device provided by an embodiment of the application;
图3为本申请一实施例提供的电子装置中基于数据安全上报程序的模块示意图。FIG. 3 is a schematic diagram of modules based on a data security reporting program in an electronic device provided by an embodiment of the application.
本申请目的的实现、功能特点及优点将结合实施例,参照附图做进一步说明。The realization, functional characteristics, and advantages of the purpose of this application will be further described in conjunction with the embodiments and with reference to the accompanying drawings.
本发明的最佳实施方式The best mode of the present invention
为了使本申请的目的、技术方案及优点更加清楚明白,以下结合附图及实施例,对本申请进行进一步详细说明。应当理解,此处所描述的具体实施例仅用以解释本申请,并不用于限定本申请。基于本申请中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本申请保护的范围。In order to make the purpose, technical solutions, and advantages of this application clearer and clearer, the following further describes the application in detail with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the application, and are not used to limit the application. Based on the embodiments in this application, all other embodiments obtained by those of ordinary skill in the art without creative work shall fall within the protection scope of this application.
本申请提供一种数据安全上报方法。参照图1所示,为本申请一实施例提供的数据安全上报方法的流程示意图。该方法可以由一个装置执行,该装置可以由软件和/或硬件实现,本实施例中,所述装置为智能终端。This application provides a data security reporting method. Referring to FIG. 1, it is a schematic flowchart of a data security reporting method provided by an embodiment of this application. The method may be executed by a device, and the device may be implemented by software and/or hardware. In this embodiment, the device is an intelligent terminal.
在本实施例中,所述数据安全上报方法包括:In this embodiment, the data security reporting method includes:
S101,发送用户的注册信息至数据安全上报系统;S101, send the user's registration information to the data security reporting system;
S102,获取所述数据安全上报系统基于所述注册信息签发的证书;S102: Obtain a certificate issued by the data security reporting system based on the registration information;
S103,获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将实名注册的所述用户作为所述数据安全上报系统的群签名的成员;S103: Acquire current image information of the user, perform real-name registration based on the current image information and the registration information, and use the real-name registered user as a member of the group signature of the data security reporting system;
S104,接收所述用户输入的举报信息;S104: Receive report information input by the user;
S105,基于群签名技术对所述举报信息进行群签名操作;S105: Perform a group signature operation on the reported information based on the group signature technology;
S106,发送被群签名操作的举报信息至所述数据安全上报系统,以便所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性验证;S106: Send the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
S107,接收所述数据安全上报系统反馈的验证结果。S107: Receive a verification result fed back by the data security reporting system.
本实施例提供的数据安全上报方法的主要目的在于能够有效保证举报人的安全性,又能确保举报人的实名性与真实性。The main purpose of the data security reporting method provided in this embodiment is to be able to effectively ensure the safety of the reporter, and to ensure the real name and authenticity of the reporter.
在本实施例中,所述数据安全上报系统为匿名举报系统。In this embodiment, the data security reporting system is an anonymous reporting system.
在所述接收所述用户输入的举报信息的步骤之前,所述方法还包括:Before the step of receiving the report information input by the user, the method further includes:
对所述用户分发群成员的私钥。Distribute group members' private keys to the users.
所述基于群签名技术对所述举报信息进行群签名操作的步骤包括:The step of performing a group signature operation on the report information based on the group signature technology includes:
利用所述用户的群成员的私钥对所述举报信息进行签名。Sign the report information by using the private key of the user's group member.
一个群签名是一个包含下面过程的数字签名方案:A group signature is a digital signature scheme that includes the following processes:
(1)创建:一个用以产生群公钥和私钥的概率多项式时间算法。(1) Creation: A probabilistic polynomial time algorithm to generate group public and private keys.
(2)加入:一个用户和群管理员之间的用户成为群管理员的交互式协议。执行该协议可以产生群员的私钥和成员证书,并使群管理员得到群成员的私有密钥。(2) Join: An interactive agreement between a user and a group administrator to become a group administrator. The implementation of this protocol can generate the private key and member certificate of the group member, and enable the group administrator to obtain the private key of the group member.
(3)签名:一个概率算法,当输入一个消息和一个群成员的私钥后,输出对消息的签名。(3) Signature: A probabilistic algorithm, when a message and the private key of a group member are input, the signature of the message is output.
(4)验证:一个概率算法,当输入一个坏消息和一个群成员的私钥后,输出对消息的签名。(4) Verification: A probabilistic algorithm, when a bad message and a private key of a group member are input, the signature of the message is output.
(5)打开:一个在给定一个签名及群私钥的条件下确认签名人的合法身份的算法。(5) Open: An algorithm that confirms the legal identity of the signer under the condition of a given signature and group private key.
群签名的基本含义是以群组的名义进行数字签名。群组成员包括一个管理员与若干群成员,任意群成员有自己的私钥与群组公钥,均可代表群进行签名。而当对签名结果产生争执时,管理员可追踪签名的群成员身份,由此实现有效的追责。群签名有以下特点:The basic meaning of group signature is to sign digitally in the name of the group. Group members include an administrator and several group members. Any group member has its own private key and group public key, and can sign on behalf of the group. When there is a dispute over the signature result, the administrator can track the identity of the group membership of the signature, thereby realizing effective accountability. Group signature has the following characteristics:
只有群成员可签署消息;Only group members can sign messages;
接收者可验证签名的有效性,就能判断签名是不是来自某特定的群组,但却不知道是群组中的哪个成员签署的;The recipient can verify the validity of the signature and can determine whether the signature is from a specific group, but does not know which member of the group signed it;
若有必要(发生争执时),签名可公开,签名成员的身份可由管理员进行确认。If necessary (in the event of a dispute), the signature can be made public, and the identity of the signing member can be confirmed by the administrator.
群签名可看成一种一般的“群成员匿名身份认证”,即成员可以证明他属于哪个群组,但却不泄露其身份。其安全需求包括:Group signature can be regarded as a general "group member anonymous identity authentication", that is, a member can prove which group he belongs to, but does not reveal his identity. Its security requirements include:
不可伪造性:群签名不可被群成员以外的所有人伪造;Unforgeability: the group signature cannot be forged by anyone other than the group members;
匿名性:签名的群成员不可被管理员外的人识别;Anonymity: Signed group members cannot be identified by anyone other than the administrator;
可追踪性:管理员可有效追踪签名的群成员;Traceability: The administrator can effectively track the signed group members;
抗合谋攻击:群成员合计不可伪造其他群成员的签名。Anti-collusion attack: Group members cannot forge the signatures of other group members in total.
所述注册信息包括所述用户的身份证件信息,所述获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册的步骤包括:The registration information includes the ID information of the user, and the step of obtaining the current image information of the user and performing real-name registration based on the current image information and the registration information includes:
通过所述电子装置的图像抓取元件抓取所述用户的当前图像,获得所述当前图像信息;Capture the current image of the user through the image capture element of the electronic device to obtain the current image information;
在确定所述当前图像信息与所述用户的身份证件信息匹配的情况下,基于所述当前图像信息和所述注册信息进行实名注册。In a case where it is determined that the current image information matches the user's identity document information, real-name registration is performed based on the current image information and the registration information.
所述接收所述数据安全上报系统反馈的验证结果的步骤包括:The step of receiving the verification result fed back by the data security reporting system includes:
当所述数据安全上报系统对所述举报信息的签名有效性验证失败时,接收到所述举报信息签名验证错误的验证结果;When the data security reporting system fails to verify the validity of the signature of the reported information, receiving a verification result that the signature of the reported information is incorrect;
当所述数据安全上报系统对所述举报信息的签名有效性验证成功时,接收到所述举报信息签名验证通过的验证结果。When the data security reporting system successfully verifies the validity of the signature of the report information, it receives a verification result that the signature verification of the report information passes.
在所述发送用户的注册信息至数据安全上报系统的步骤之前所述数据安全上报方法还包括开启所述电子装置上的数据安全上报系统的接口界面,以便接收所述注册信息。Before the step of sending the user's registration information to the data security reporting system, the data security reporting method further includes opening an interface of the data security reporting system on the electronic device to receive the registration information.
所述举报信息包括被举报人信息,所述被举报人信息包括被举报人姓名、单位名称、单位地址、现任职务。The report information includes information of the reported person, and the information of the reported person includes the name of the reported person, the name of the unit, the address of the unit, and the current position.
本实施例提出的数据安全上报方法通过群签名技术对举报信息进行签名及验证,由于群签名成员注册时需要实名,且对举报信息进行群签名操作是匿名操作,这样能够有效保证举报的实名性,同时可以保证举报人的隐匿性;且当出现恶意举报等行为时,系统能够通过『打开』这一群签名操作对恶意举报者的身份进行定位,协助司法调查。The data security reporting method proposed in this embodiment uses group signature technology to sign and verify reported information. Since group signature members need real names when registering, and group signature operations on reported information are anonymous operations, this can effectively ensure the real name of the report. At the same time, it can ensure the concealment of the whistleblower; and when a malicious report occurs, the system can locate the identity of the malicious whistleblower through the group of signature operations of "open", and assist in judicial investigations.
本发明的实施方式Embodiments of the present invention
需要说明的是,在本申请中涉及“第一”、“第二”等的描述仅用于描述目的,而不能理解为指示或暗示其相对重要性或者隐含指明所指示的技术特征的数量。由此,限定有“第一”、“第二”的特征可以明示或者隐含地包括至少一个该特征。另外,各个实施例之间的技术方案可以相互结合,但是必须是以本领域普通技术人员能够实现为基础,当技术方案的结合出现相互矛盾或无法实现时应当认为这种技术方案的结合不存在,也不在本申请要求的保护范围之内。It should be noted that the descriptions related to "first", "second", etc. in this application are only for descriptive purposes, and cannot be understood as indicating or implying their relative importance or implicitly indicating the number of indicated technical features . Therefore, the features defined with "first" and "second" may explicitly or implicitly include at least one of the features. In addition, the technical solutions between the various embodiments can be combined with each other, but it must be based on what can be achieved by a person of ordinary skill in the art. When the combination of technical solutions is contradictory or cannot be achieved, it should be considered that such a combination of technical solutions does not exist. , Is not within the scope of protection required by this application.
本申请还提供一种电子装置1。参照图2所示,为本申请一实施例提供的电子装置的内部结构示意图。The application also provides an electronic device 1. Referring to FIG. 2, it is a schematic diagram of the internal structure of an electronic device provided by an embodiment of this application.
在本实施例中,电子装置1可以是电脑、智能终端或服务器。所述电子装置1至少包括存储器11、处理器13,通信总线15,以及网络接口17。在本实施例中,所述电子装置1为智能终端。In this embodiment, the electronic device 1 may be a computer, a smart terminal or a server. The electronic device 1 at least includes a memory 11, a processor 13, a communication bus 15, and a network interface 17. In this embodiment, the electronic device 1 is an intelligent terminal.
其中,存储器11至少包括一种类型的可读存储介质,所述可读存储介质包括闪存、硬盘、多媒体卡、卡型存储器(例如,SD或DX存储器等)、磁性存储器、磁盘、光盘等。存储器11在一些实施例中可以是电子装置的内部存储单元,例如所述电子装置的硬盘。存储器11在另一些实施例中也可以是电子装置的外部存储设备,例如电子装置上配备的插接式硬盘,智能存储卡(Smart Media Card, SMC),安全数字(Secure Digital, SD)卡,闪存卡(Flash Card)等。进一步地,存储器11还可以既包括电子装置的内部存储单元也包括外部存储设备。存储器11不仅可以用于存储安装于电子装置1的应用软件及各类数据,例如数据安全上报程序111的代码等,还可以用于暂时地存储已经输出或者将要输出的数据。The memory 11 includes at least one type of readable storage medium, and the readable storage medium includes flash memory, hard disk, multimedia card, card-type memory (for example, SD or DX memory, etc.), magnetic memory, magnetic disk, optical disk, and the like. In some embodiments, the memory 11 may be an internal storage unit of the electronic device, such as a hard disk of the electronic device. In some other embodiments, the memory 11 may also be an external storage device of the electronic device, for example, a plug-in hard disk equipped on the electronic device, a smart memory card (Smart Media Card, SMC), Secure Digital (SD) card, Flash Card, etc. Further, the memory 11 may also include both an internal storage unit of an electronic device and an external storage device. The memory 11 can be used not only to store application software and various data installed in the electronic device 1, such as the code of the data security reporting program 111, etc., but also to temporarily store data that has been output or will be output.
处理器13在一些实施例中可以是一中央处理器(Central Processing Unit, CPU)、控制器、微控制器、微处理器或其他数据处理芯片,用于运行存储器11中存储的程序代码或处理数据。The processor 13 may be a central processing unit (Central Processing Unit) in some embodiments. Processing Unit (CPU), a controller, a microcontroller, a microprocessor or other data processing chips are used to run program codes or process data stored in the memory 11.
通信总线15用于实现这些组件之间的连接通信。The communication bus 15 is used to realize the connection and communication between these components.
网络接口17可选的可以包括标准的有线接口、无线接口(如WI-FI接口),通常用于在电子装置1与其他电子设备之间建立通信连接。The network interface 17 may optionally include a standard wired interface and a wireless interface (such as a WI-FI interface), and is generally used to establish a communication connection between the electronic device 1 and other electronic devices.
可选地,电子装置1还可以包括用户接口,用户接口可以包括显示器(Display)、输入单元比如键盘(Keyboard),可选的用户接口还可以包括标准的有线接口、无线接口。可选地,在一些实施例中,显示器可以是LED显示器、液晶显示器、触控式液晶显示器以及OLED(Organic Light-Emitting Diode,有机发光二极管)触摸器等。其中,显示器也可以适当的称为显示屏或显示单元,用于显示在电子装置中处理的信息以及用于显示可视化的用户界面。Optionally, the electronic device 1 may further include a user interface. The user interface may include a display (Display) and an input unit such as a keyboard (Keyboard). The optional user interface may also include a standard wired interface and a wireless interface. Optionally, in some embodiments, the display may be an LED display, a liquid crystal display, a touch-sensitive liquid crystal display, and an OLED (Organic Light-Emitting Diode, organic light-emitting diode) touch device, etc. Among them, the display can also be appropriately called a display screen or a display unit, which is used to display information processed in the electronic device and to display a visualized user interface.
图2仅示出了具有组件11~17的电子装置1,本领域技术人员可以理解的是,图2示出的结构并不构成对电子装置的限定,可以包括比图示更少或者更多的部件,或者组合某些部件,或者不同的部件布置。FIG. 2 only shows the electronic device 1 with components 11-17. Those skilled in the art can understand that the structure shown in FIG. 2 does not constitute a limitation on the electronic device, and may include fewer or more components than shown in the figure. Component, or combination of some components, or different component arrangements.
在图2所示的电子装置1的实施例中,存储器11中存储有数据安全上报程序111;处理器13执行存储器11中存储的数据安全上报程序111时实现如下步骤:In the embodiment of the electronic device 1 shown in FIG. 2, a data security reporting program 111 is stored in the memory 11; when the processor 13 executes the data security reporting program 111 stored in the memory 11, the following steps are implemented:
发送用户的注册信息至数据安全上报系统;Send the user's registration information to the data security reporting system;
获取所述数据安全上报系统基于所述注册信息签发的证书;Obtaining a certificate issued by the data security reporting system based on the registration information;
获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;Acquiring the current image information of the user, performing real-name registration based on the current image information and the registration information, and making the user who has completed the real-name registration as a member of the group signature of the data security reporting system;
接收所述用户输入的举报信息;Receiving the report information input by the user;
基于群签名技术对所述举报信息进行群签名操作;Perform a group signature operation on the reported information based on the group signature technology;
发送被群签名操作的举报信息至所述数据安全上报系统,以便所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;Sending the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
接收所述数据安全上报系统反馈的验证结果。Receiving the verification result fed back by the data security reporting system.
本实施例提供的电子装置1的主要目的在于能够有效保证举报人的安全性,又能确保举报人的实名性与真实性。The main purpose of the electronic device 1 provided in this embodiment is to effectively ensure the safety of the reporter, and to ensure the authenticity and authenticity of the reporter.
在所述接收所述用户输入的举报信息的步骤之前,处理器13执行存储器11中存储的数据安全上报程序111时还实现如下步骤:Before the step of receiving the report information input by the user, when the processor 13 executes the data security report program 111 stored in the memory 11, the following steps are further implemented:
对所述用户分发群成员的私钥。Distribute group members' private keys to the users.
所述基于群签名技术对所述举报信息进行群签名操作的步骤包括:The step of performing a group signature operation on the report information based on the group signature technology includes:
利用所述用户的群成员的私钥对所述举报信息进行签名。Sign the report information by using the private key of the user's group member.
一个群签名是一个包含下面过程的数字签名方案:A group signature is a digital signature scheme that includes the following processes:
(1)创建:一个用以产生群公钥和私钥的概率多项式时间算法。(1) Creation: A probabilistic polynomial time algorithm to generate group public and private keys.
(2)加入:一个用户和群管理员之间的用户成为群管理员的交互式协议。执行该协议可以产生群员的私钥和成员证书,并使群管理员得到群成员的私有密钥。(2) Join: An interactive agreement between a user and a group administrator to become a group administrator. The implementation of this protocol can generate the private key and member certificate of the group member, and enable the group administrator to obtain the private key of the group member.
(3)签名:一个概率算法,当输入一个消息和一个群成员的私钥后,输出对消息的签名。(3) Signature: A probabilistic algorithm, when a message and the private key of a group member are input, the signature of the message is output.
(4)验证:一个概率算法,当输入一个坏消息和一个群成员的私钥后,输出对消息的签名。(4) Verification: A probabilistic algorithm, when a bad message and a private key of a group member are input, the signature of the message is output.
(5)打开:一个在给定一个签名及群私钥的条件下确认签名人的合法身份的算法。(5) Open: An algorithm that confirms the legal identity of the signer under the condition of a given signature and group private key.
群签名的基本含义是以群组的名义进行数字签名。群组成员包括一个管理员与若干群成员,任意群成员有自己的私钥与群组公钥,均可代表群进行签名。而当对签名结果产生争执时,管理员可追踪签名的群成员身份,由此实现有效的追责。群签名有以下特点:The basic meaning of group signature is to sign digitally in the name of the group. Group members include an administrator and several group members. Any group member has its own private key and group public key, and can sign on behalf of the group. When there is a dispute over the result of the signature, the administrator can track the identity of the group membership of the signature, thereby realizing effective accountability. Group signature has the following characteristics:
只有群成员可签署消息;Only group members can sign messages;
接收者可验证签名的有效性,就能判断签名是不是来自某特定的群组,但却不知道是群组中的哪个成员签署的;The recipient can verify the validity of the signature and can determine whether the signature is from a specific group, but does not know which member of the group signed it;
若有必要(发生争执时),签名可公开,签名成员的身份可由管理员进行确认。If necessary (in the event of a dispute), the signature can be made public, and the identity of the signing member can be confirmed by the administrator.
群签名可看成一种一般的“群成员匿名身份认证”,即成员可以证明他属于哪个群组,但却不泄露其身份。其安全需求包括:Group signature can be regarded as a general "group member anonymous identity authentication", that is, a member can prove which group he belongs to, but does not reveal his identity. Its security requirements include:
不可伪造性:群签名不可被群成员以外的所有人伪造;Unforgeability: the group signature cannot be forged by anyone other than the group members;
匿名性:签名的群成员不可被管理员外的人识别;Anonymity: Signed group members cannot be identified by anyone other than the administrator;
可追踪性:管理员可有效追踪签名的群成员;Traceability: The administrator can effectively track the signed group members;
抗合谋攻击:群成员合计不可伪造其他群成员的签名。Anti-collusion attack: Group members cannot forge the signatures of other group members in total.
所述注册信息包括所述用户的身份证件信息,所述获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册的步骤包括:The registration information includes the identity document information of the user, and the step of acquiring the current image information of the user and performing real-name registration based on the current image information and the registration information includes:
通过所述电子装置的图像抓取元件抓取所述用户的当前图像,获得所述当前图像信息;Capture the current image of the user through the image capture element of the electronic device to obtain the current image information;
在确定所述当前图像信息与所述用户的身份证件信息匹配的情况下,基于所述当前图像信息和所述注册信息进行实名注册。In a case where it is determined that the current image information matches the user's identity document information, real-name registration is performed based on the current image information and the registration information.
所述接收所述数据安全上报系统反馈的验证结果的步骤包括:The step of receiving the verification result fed back by the data security reporting system includes:
当所述数据安全上报系统对所述举报信息的签名有效性进行验证失败时,接收到所述举报信息签名验证错误的验证结果;When the data security reporting system fails to verify the validity of the signature of the reported information, receiving a verification result that the signature of the reported information is incorrect;
当所述数据安全上报系统对所述举报信息的签名有效性验证成功时,接收到所述举报信息签名验证通过的验证反馈信息。When the data security reporting system successfully verifies the validity of the signature of the reported information, it receives verification feedback information that the signature of the reported information is verified.
在所述发送用户的注册信息至数据安全上报系统的步骤之前,处理器13执行存储器11中存储的数据安全上报程序111时实现如下步骤:开启所述电子装置上的数据安全上报系统的接口界面,以便接收所述注册信息。Before the step of sending the user's registration information to the data security reporting system, when the processor 13 executes the data security reporting program 111 stored in the memory 11, the following steps are implemented: opening the interface interface of the data security reporting system on the electronic device In order to receive the registration information.
所述举报信息包括被举报人信息,所述被举报人信息包括被举报人姓名、单位名称、单位地址、现任职务。The report information includes information of the reported person, and the information of the reported person includes the name of the reported person, the name of the unit, the address of the unit, and the current position.
此外,本申请实施例还提出一种计算机可读存储介质,所述计算机可读存储介质上存储有数据安全上报程序111,所述数据安全上报程序111可被一个或多个处理器执行,以实现如下操作:In addition, an embodiment of the present application also proposes a computer-readable storage medium that stores a data security reporting program 111 on the computer-readable storage medium, and the data security reporting program 111 can be executed by one or more processors to To achieve the following operations:
发送用户的注册信息至数据安全上报系统;Send the user's registration information to the data security reporting system;
获取所述数据安全上报系统基于所述注册信息签发的证书;Obtaining a certificate issued by the data security reporting system based on the registration information;
获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;Acquiring the current image information of the user, performing real-name registration based on the current image information and the registration information, and making the user who has completed the real-name registration as a member of the group signature of the data security reporting system;
接收所述用户输入的举报信息;Receiving the report information input by the user;
基于群签名技术对所述举报信息进行群签名操作;Perform a group signature operation on the reported information based on the group signature technology;
发送被群签名操作的举报信息至所述数据安全上报系统,以便所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;Sending the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
接收所述数据安全上报系统反馈的验证结果。Receiving the verification result fed back by the data security reporting system.
本申请计算机可读存储介质具体实施方式与上述电子装置和方法各实施例基本相同,在此不作累述。The specific implementation of the computer-readable storage medium of the present application is basically the same as the above-mentioned embodiments of the electronic device and method, and will not be repeated here.
可选地,在其他实施例中,所述数据安全上报程序111还可以被分割为一个或者多个模块,一个或者多个模块被存储于存储器11中,并由一个或多个处理器(本实施例为处理器13)所执行以完成本申请,本申请所称的模块是指能够完成特定功能的一系列计算机程序指令段,用于描述数据安全上报程序在电子装置中的执行过程。Optionally, in other embodiments, the data security reporting program 111 may also be divided into one or more modules, and the one or more modules are stored in the memory 11 and run by one or more processors (this The embodiment is executed by the processor 13) to complete the application. The module referred to in the application refers to a series of computer program instruction segments capable of completing specific functions, and is used to describe the execution process of the data security reporting program in the electronic device.
例如,参照图3所示,为本申请电子装置一实施例中的数据安全上报程序111的程序模块示意图,该实施例中,数据安全上报程序111可以被分割为发送模块10、获取模块20、注册模块30、接收模块40、签名模块50,示例性地:For example, referring to FIG. 3, a schematic diagram of the program modules of the data security reporting program 111 in an embodiment of the electronic device of this application. In this embodiment, the data security reporting program 111 can be divided into a sending module 10, an acquiring module 20, The registration module 30, the receiving module 40, and the signature module 50, exemplarily:
所述发送模块10,用于发送用户的注册信息至数据安全上报系统;The sending module 10 is used to send the user's registration information to the data security reporting system;
所述获取模块20,用于获取所述数据安全上报系统基于所述注册信息签发的证书;The obtaining module 20 is configured to obtain a certificate issued by the data security reporting system based on the registration information;
所述注册模块30,用于获取所述用户的当前图像信息并结合所述注册信息而完成实名注册,从而使所述用户成为所述数据安全上报系统的群签名的成员;The registration module 30 is configured to obtain the current image information of the user and complete the real-name registration in combination with the registration information, so that the user becomes a member of the group signature of the data security reporting system;
所述接收模块40,用于接收所述用户输入的举报信息;The receiving module 40 is configured to receive report information input by the user;
所述签名模块50,用于基于群签名技术对所述举报信息进行群签名操作;The signature module 50 is configured to perform a group signature operation on the reported information based on group signature technology;
所述发送模块10,还用于发送被群签名操作的举报信息至所述数据安全上报系统,以便所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性验证;The sending module 10 is also used to send the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the signature validity of the report information through the group signature verification operation;
所述接收模块40,还用于接收由所述数据安全上报系统返回的验证反馈信息。The receiving module 40 is also used to receive the verification feedback information returned by the data security reporting system.
所述发送模块10、获取模块20、注册模块30、接收模块40、签名模块50等程序模块被执行时所实现的功能或操作步骤与上述实施例大体相同,在此不再赘述。The functions or operation steps implemented by the program modules such as the sending module 10, the acquiring module 20, the registering module 30, the receiving module 40, and the signature module 50 are substantially the same as those in the above-mentioned embodiment, and will not be repeated here.
需要说明的是,上述本申请实施例序号仅仅为了描述,不代表实施例的优劣。并且本文中的术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、装置、物品或者方法不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、装置、物品或者方法所固有的要素。在没有更多限制的情况下,由语句“包括一个……”限定的要素,并不排除在包括该要素的过程、装置、物品或者方法中还存在另外的相同要素。It should be noted that the serial numbers of the foregoing embodiments of the present application are only for description, and do not represent the advantages and disadvantages of the embodiments. And the terms "include", "include" or any other variants thereof in this article are intended to cover non-exclusive inclusion, so that a process, device, article or method including a series of elements not only includes those elements, but also includes those elements that are not explicitly included. The other elements listed may also include elements inherent to the process, device, article, or method. Without more restrictions, the element defined by the sentence "including a..." does not exclude the existence of other identical elements in the process, device, article, or method that includes the element.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到上述实施例方法可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件,但很多情况下前者是更佳的实施方式。基于这样的理解,本申请的技术方案本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品存储在如上所述的一个存储介质(如ROM/RAM、磁碟、光盘)中,包括若干指令用以使得一台终端设备(可以是手机,计算机,服务器,或者网络设备等)执行本申请各个实施例所述的方法。所述计算机可读存储介质可以是非易失性,也可以是易失性。Through the description of the above embodiments, those skilled in the art can clearly understand that the method of the above embodiments can be implemented by means of software plus the necessary general hardware platform. Of course, it can also be implemented by hardware, but in many cases the former is better.的实施方式。 Based on this understanding, the technical solution of this application essentially or the part that contributes to the existing technology can be embodied in the form of a software product, and the computer software product is stored in a storage medium (such as ROM/RAM) as described above. , Magnetic disk, optical disk), including several instructions to make a terminal device (can be a mobile phone, a computer, a server, or a network device, etc.) execute the method described in each embodiment of the present application. The computer-readable storage medium may be non-volatile or volatile.
以上仅为本申请的优选实施例,并非因此限制本申请的专利范围,凡是利用本申请说明书及附图内容所作的等效结构或等效流程变换,或直接或间接运用在其他相关的技术领域,均同理包括在本申请的专利保护范围内。The above are only the preferred embodiments of the application, and do not limit the scope of the patent for this application. Any equivalent structure or equivalent process transformation made using the content of the description and drawings of the application, or directly or indirectly applied to other related technical fields , The same reason is included in the scope of patent protection of this application.

Claims (20)

  1. 一种数据安全上报方法,应用于电子装置中,所述数据安全上报方法包括:A data security reporting method, applied to an electronic device, the data security reporting method includes:
    发送用户的注册信息至数据安全上报系统;Send the user's registration information to the data security reporting system;
    获取所述数据安全上报系统基于所述注册信息签发的证书;Obtaining a certificate issued by the data security reporting system based on the registration information;
    获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;Acquiring the current image information of the user, performing real-name registration based on the current image information and the registration information, and making the user who has completed the real-name registration as a member of the group signature of the data security reporting system;
    接收所述用户输入的举报信息;Receiving the report information input by the user;
    基于群签名技术对所述举报信息进行群签名操作;Perform a group signature operation on the reported information based on the group signature technology;
    发送被群签名操作的举报信息至所述数据安全上报系统,以便在所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;Sending the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
    接收所述数据安全上报系统反馈的验证结果。Receiving the verification result fed back by the data security reporting system.
  2. 如权利要求1所述的数据安全上报方法,其中,在所述接收所述用户输入的举报信息的步骤之前,所述方法还包括:The data security reporting method according to claim 1, wherein, before the step of receiving the report information input by the user, the method further comprises:
    对所述用户分发群成员的私钥。Distribute group members' private keys to the users.
  3. 如权利要求2所述的数据安全上报方法,其中,所述基于群签名技术对所述举报信息进行群签名操作的步骤包括:The data security reporting method according to claim 2, wherein the step of performing a group signature operation on the reported information based on the group signature technology comprises:
    利用所述用户的群成员的私钥对所述举报信息进行签名。Sign the report information by using the private key of the user's group member.
  4. 如权利要求1所述的数据安全上报方法,其中,所述注册信息包括所述用户的身份证件信息,所述获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册的步骤包括:The data security reporting method according to claim 1, wherein the registration information includes the user’s identity document information, and the acquisition of the current image information of the user is performed based on the current image information and the registration information. The steps of real-name registration include:
    通过所述电子装置的图像抓取元件抓取所述用户的当前图像,获得所述当前图像信息;Capture the current image of the user through the image capture element of the electronic device to obtain the current image information;
    在确定所述当前图像信息与所述用户的身份证件信息匹配的情况下,基于所述当前图像信息和所述注册信息进行实名注册。In a case where it is determined that the current image information matches the user's identity document information, real-name registration is performed based on the current image information and the registration information.
  5. 如权利要求1所述的数据安全上报方法,其中,所述接收所述数据安全上报系统反馈的验证结果的步骤包括:The data security reporting method according to claim 1, wherein the step of receiving the verification result fed back by the data security reporting system comprises:
    当所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性验证失败时,接收到所述举报信息签名验证错误的验证结果;When the data security reporting system fails to verify the validity of the signature of the reported information through the group signature verification operation, receiving the verification result that the reported information signature verification is incorrect;
    当所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性验证成功时,接收到所述举报信息签名验证通过的验证结果。When the data security reporting system successfully verifies the signature validity of the reported information through the group signature verification operation, it receives the verification result that the reported information has passed the signature verification.
  6. 如权利要求1所述的数据安全上报方法,其中,在所述发送用户的注册信息至数据安全上报系统的步骤之前,所述方法还包括:The data security reporting method according to claim 1, wherein, before the step of sending the user's registration information to the data security reporting system, the method further comprises:
    开启所述电子装置上的数据安全上报系统的接口界面,以便接收所述注册信息。Turn on the interface interface of the data security reporting system on the electronic device to receive the registration information.
  7. 一种电子装置,其中,所述电子装置包括存储器和处理器,所述存储器上存储有可在所述处理器上运行的数据安全上报程序,所述数据安全上报程序被所述处理器执行时实现如下步骤:An electronic device, wherein the electronic device includes a memory and a processor, the memory stores a data security reporting program that can run on the processor, and when the data security reporting program is executed by the processor To achieve the following steps:
    发送用户的注册信息至数据安全上报系统;Send the user's registration information to the data security reporting system;
    获取所述数据安全上报系统基于所述注册信息签发的证书;Obtaining a certificate issued by the data security reporting system based on the registration information;
    获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;Acquiring the current image information of the user, performing real-name registration based on the current image information and the registration information, and making the user who has completed the real-name registration as a member of the group signature of the data security reporting system;
    接收所述用户输入的举报信息;Receiving the report information input by the user;
    基于群签名技术对所述举报信息进行群签名操作;Perform a group signature operation on the reported information based on the group signature technology;
    发送被群签名操作的举报信息至所述数据安全上报系统,以便所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;Sending the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
    接收由所述数据安全上报系统反馈的验证结果。Receiving the verification result fed back by the data security reporting system.
  8. 如权利要求7所述的电子装置,其中,在所述接收所述用户输入的举报信息的步骤之前,还包括:8. The electronic device according to claim 7, wherein before the step of receiving the report information input by the user, the method further comprises:
    对所述用户分发群成员的私钥。Distribute group members' private keys to the users.
  9. 如权利要求8所述的电子装置,其中,所述基于群签名技术对所述举报信息进行群签名操作的步骤包括:8. The electronic device of claim 8, wherein the step of performing a group signature operation on the report information based on the group signature technology comprises:
    利用所述用户的群成员的私钥对所述举报信息进行签名。Sign the report information by using the private key of the user's group member.
  10. 如权利要求7所述的电子装置,其中,所述注册信息包括所述用户的身份证件信息,所述获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册的步骤包括:The electronic device according to claim 7, wherein the registration information includes the user’s ID information, the acquisition of the current image information of the user, and the real-name registration based on the current image information and the registration information The steps include:
    通过所述电子装置的图像抓取元件抓取所述用户的当前图像,获得所述当前图像信息;Capture the current image of the user through the image capture element of the electronic device to obtain the current image information;
    在确定所述当前图像信息与所述用户的身份证件信息匹配的情况下,基于所述当前图像信息和所述注册信息进行实名注册。In a case where it is determined that the current image information matches the user's identity document information, real-name registration is performed based on the current image information and the registration information.
  11. 如权利要求7所述的电子装置,其中,所述接收所述数据安全上报系统反馈的验证结果的步骤包括:8. The electronic device according to claim 7, wherein the step of receiving the verification result fed back by the data security reporting system comprises:
    当所述数据安全上报系统对所述举报信息的签名有效性验证失败时,接收到所述举报信息签名验证错误的验证结果;When the data security reporting system fails to verify the validity of the signature of the reported information, receiving a verification result that the signature of the reported information is incorrect;
    当所述数据安全上报系统对所述举报信息的签名有效性验证成功时,接收到所述举报信息签名验证通过的验证结果。When the data security reporting system successfully verifies the validity of the signature of the report information, it receives a verification result that the signature verification of the report information passes.
  12. 如权利要求7所述的电子装置,其中,在所述发送用户的注册信息至数据安全上报系统的步骤之前,还包括:8. The electronic device according to claim 7, wherein before the step of sending the user's registration information to the data security reporting system, the method further comprises:
    开启所述电子装置上的数据安全上报系统的接口界面,以便接收所述注册信息。Turn on the interface interface of the data security reporting system on the electronic device to receive the registration information.
  13. 一种计算机可读存储介质,其中,所述计算机可读存储介质上存储有数据安全上报程序,所述数据安全上报程序可被一个或者多个处理器执行,以实现如下步骤:A computer-readable storage medium, wherein a data security reporting program is stored on the computer-readable storage medium, and the data security reporting program can be executed by one or more processors to implement the following steps:
    发送用户的注册信息至数据安全上报系统;Send the user's registration information to the data security reporting system;
    获取所述数据安全上报系统基于所述注册信息签发的证书;Obtaining a certificate issued by the data security reporting system based on the registration information;
    获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;Acquiring the current image information of the user, performing real-name registration based on the current image information and the registration information, and making the user who has completed the real-name registration as a member of the group signature of the data security reporting system;
    接收所述用户输入的举报信息;Receiving the report information input by the user;
    基于群签名技术对所述举报信息进行群签名操作;Perform a group signature operation on the reported information based on the group signature technology;
    发送被群签名操作的举报信息至所述数据安全上报系统,以便在所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;Sending the report information of the group signature operation to the data security reporting system, so that the data security reporting system verifies the validity of the signature of the report information through the group signature verification operation;
    接收所述数据安全上报系统反馈的验证结果。Receiving the verification result fed back by the data security reporting system.
  14. 如权利要求13所述的计算机可读存储介质,其中,在所述接收所述用户输入的举报信息的步骤之前,还包括:The computer-readable storage medium of claim 13, wherein before the step of receiving the report information input by the user, the method further comprises:
    对所述用户分发群成员的私钥。Distribute group members' private keys to the users.
  15. 如权利要求14所述的计算机可读存储介质,其中,所述基于群签名技术对所述举报信息进行群签名操作的步骤包括:15. The computer-readable storage medium of claim 14, wherein the step of performing a group signature operation on the report information based on a group signature technology comprises:
    利用所述用户的群成员的私钥对所述举报信息进行签名。Sign the report information by using the private key of the user's group member.
  16. 如权利要求13所述的计算机可读存储介质,其中,所述注册信息包括所述用户的身份证件信息,所述获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册的步骤包括:The computer-readable storage medium according to claim 13, wherein the registration information includes the user's identity document information, and the obtaining of the current image information of the user is based on the current image information and the registration information The steps for real-name registration include:
    通过所述电子装置的图像抓取元件抓取所述用户的当前图像,获得所述当前图像信息;Capture the current image of the user through the image capture element of the electronic device to obtain the current image information;
    在确定所述当前图像信息与所述用户的身份证件信息匹配的情况下,基于所述当前图像信息和所述注册信息进行实名注册。In a case where it is determined that the current image information matches the user's identity document information, real-name registration is performed based on the current image information and the registration information.
  17. 如权利要求13所述的计算机可读存储介质,其中,所述接收所述数据安全上报系统反馈的验证结果的步骤包括:15. The computer-readable storage medium of claim 13, wherein the step of receiving the verification result fed back by the data security reporting system comprises:
    当所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性验证失败时,接收到所述举报信息签名验证错误的验证结果;When the data security reporting system fails to verify the validity of the signature of the reported information through the group signature verification operation, receiving the verification result that the reported information signature verification is incorrect;
    当所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性验证成功时,接收到所述举报信息签名验证通过的验证结果。When the data security reporting system successfully verifies the signature validity of the reported information through the group signature verification operation, it receives the verification result that the reported information has passed the signature verification.
  18. 如权利要求13所述的计算机可读存储介质,其中,在所述发送用户的注册信息至数据安全上报系统的步骤之前,还包括:The computer-readable storage medium of claim 13, wherein before the step of sending the user's registration information to the data security reporting system, the method further comprises:
    开启所述电子装置上的数据安全上报系统的接口界面,以便接收所述注册信息。Turn on the interface interface of the data security reporting system on the electronic device to receive the registration information.
  19. 一种数据安全上报装置,其中,所述数据安全上报装置包括:A data security reporting device, wherein the data security reporting device includes:
    发送模块,用于:发送用户的注册信息至数据安全上报系统,以及发送被群签名操作的举报信息至所述数据安全上报系统,以便在所述数据安全上报系统通过群签名的验签操作对所述举报信息的签名有效性进行验证;The sending module is used to send the user's registration information to the data security reporting system, and send the report information of the group signature operation to the data security reporting system, so that the data security reporting system can pass the group signature verification operation to the data security reporting system. Verifying the validity of the signature of the reported information;
    获取模块,用于:获取所述数据安全上报系统基于所述注册信息签发的证书;An obtaining module, configured to obtain a certificate issued by the data security reporting system based on the registration information;
    注册模块,用于:获取所述用户的当前图像信息,基于所述当前图像信息和所述注册信息进行实名注册,将完成实名注册的所述用户作为所述数据安全上报系统的群签名的成员;The registration module is used to obtain the current image information of the user, perform real-name registration based on the current image information and the registration information, and treat the user who has completed the real-name registration as a member of the group signature of the data security reporting system ;
    接收模块,用于:接收所述用户输入的举报信息,以及接收所述数据安全上报系统反馈的验证结果;The receiving module is configured to: receive the report information input by the user, and receive the verification result fed back by the data security reporting system;
    签名模块,用于:基于群签名技术对所述举报信息进行群签名操作。The signature module is used to perform a group signature operation on the reported information based on the group signature technology.
  20. 如权利要求19所述的数据安全上报装置,其中,所述接收所述数据安全上报系统反馈的验证结果的步骤包括:The data security reporting device according to claim 19, wherein the step of receiving the verification result fed back by the data security reporting system comprises:
    当所述数据安全上报系统对所述举报信息的签名有效性验证失败时,接收到所述举报信息签名验证错误的验证结果;When the data security reporting system fails to verify the validity of the signature of the reported information, receiving a verification result that the signature of the reported information is incorrect;
    当所述数据安全上报系统对所述举报信息的签名有效性验证成功时,接收到所述举报信息签名验证通过的验证结果。When the data security reporting system successfully verifies the validity of the signature of the report information, it receives a verification result that the signature verification of the report information passes.
PCT/CN2020/099067 2019-12-18 2020-06-30 Method for securely reporting data, and apparatus and computer-readable storage medium WO2021120579A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201911321927.4A CN111064578B (en) 2019-12-18 2019-12-18 Data security reporting method and device and computer readable storage medium
CN201911321927.4 2019-12-18

Publications (1)

Publication Number Publication Date
WO2021120579A1 true WO2021120579A1 (en) 2021-06-24

Family

ID=70300922

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2020/099067 WO2021120579A1 (en) 2019-12-18 2020-06-30 Method for securely reporting data, and apparatus and computer-readable storage medium

Country Status (2)

Country Link
CN (1) CN111064578B (en)
WO (1) WO2021120579A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111064578B (en) * 2019-12-18 2021-10-22 平安国际智慧城市科技股份有限公司 Data security reporting method and device and computer readable storage medium
CN114338014B (en) * 2022-01-04 2023-03-24 内蒙古汉尔信息科技有限公司 Safety reporting method, device and system for environmental supervision and law enforcement

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080091941A1 (en) * 2004-09-03 2008-04-17 Nec Corporation Group Signature System, Member Status Judging Device, Group Signature Method And Member Status Judging Program
CN106981016A (en) * 2017-03-30 2017-07-25 广东微模式软件股份有限公司 A kind of remote self-help real name buys the method and system of phonecard
CN107609417A (en) * 2017-08-29 2018-01-19 北京航空航天大学 For the anonymous message transmission system and method audited and followed the trail of
CN108551435A (en) * 2018-03-12 2018-09-18 北京航空航天大学 A kind of Verifiable Encryptosystem group signature method with anonymity
CN111064578A (en) * 2019-12-18 2020-04-24 平安国际智慧城市科技股份有限公司 Data security reporting method and device and computer readable storage medium

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100122080A1 (en) * 2008-11-11 2010-05-13 Electronics And Telecommunications Research Institute Pseudonym certificate process system by splitting authority
CN103117858B (en) * 2013-01-22 2015-10-21 河海大学 A kind of possess the Schnorr ring signatures method of specifying defeasibility
CN103618995B (en) * 2013-12-04 2017-01-18 西安电子科技大学 Position privacy protection method based on dynamic pseudonyms
CN106789077A (en) * 2016-12-29 2017-05-31 北京握奇智能科技有限公司 A kind of real name identification method and system
CN107749836B (en) * 2017-09-15 2020-07-31 江苏大学 Mobile sensing system and mobile sensing method for user privacy protection and data reliability
CN110428351B (en) * 2019-07-29 2022-04-08 电子科技大学 Semi-distributed vehicle violation reporting method based on block chain

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080091941A1 (en) * 2004-09-03 2008-04-17 Nec Corporation Group Signature System, Member Status Judging Device, Group Signature Method And Member Status Judging Program
CN106981016A (en) * 2017-03-30 2017-07-25 广东微模式软件股份有限公司 A kind of remote self-help real name buys the method and system of phonecard
CN107609417A (en) * 2017-08-29 2018-01-19 北京航空航天大学 For the anonymous message transmission system and method audited and followed the trail of
CN108551435A (en) * 2018-03-12 2018-09-18 北京航空航天大学 A kind of Verifiable Encryptosystem group signature method with anonymity
CN111064578A (en) * 2019-12-18 2020-04-24 平安国际智慧城市科技股份有限公司 Data security reporting method and device and computer readable storage medium

Also Published As

Publication number Publication date
CN111064578B (en) 2021-10-22
CN111064578A (en) 2020-04-24

Similar Documents

Publication Publication Date Title
US20180091499A1 (en) Generation and validation of derived credentials
CN106301782B (en) Electronic contract signing method and system
WO2021068619A1 (en) Certificate authentication management method, apparatus and device, and computer-readable storage medium
US20080016357A1 (en) Method of securing a digital signature
EP1622301A2 (en) Methods and system for providing a public key fingerprint list in a PK system
CN101631022B (en) Signing method and system thereof
CN112801663B (en) Blockchain certification method, device, system, equipment and medium
WO2021120579A1 (en) Method for securely reporting data, and apparatus and computer-readable storage medium
WO2021218334A1 (en) Method, system, and apparatus for managing expired digital certificate, and storage medium
WO2020173019A1 (en) Access certificate verification method and device, computer equipment and storage medium
CN110445771A (en) Intersection record evidence collecting method, device, medium and server based on block chain
CN112989309A (en) Login method, authentication method and system based on multi-party authorization and computing equipment
CN112187471A (en) Data copying method, system and medium based on block chain and intelligent contract
CN111541657A (en) Block chain-based safety position verification method
CN114003925A (en) Signature combined online declaration method and system based on block chain
US20220230177A1 (en) Identity verification and service provision platform and method
US11575667B1 (en) System and method for secure communications
JP7066863B2 (en) Electronic signature method and equipment
CN108763965A (en) Method, apparatus, equipment and the medium that electronic contract data are saved from damage
US9882891B2 (en) Identity verification
US10447688B1 (en) System for secure communications
JP2003258787A (en) Electronic certificate, method, apparatus and program for issuing and verifying electronic certificate, and recording medium for program
CN111327423A (en) Examination and approval device and method based on ordered multiple signatures and readable storage medium
US7827599B2 (en) Self-service provisioning of digital certificates
WO2018152597A1 (en) A computer system and a computer implemented method for generating a digital certificate for identification data associated with an entity

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20901057

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 14/10/2022)

122 Ep: pct application non-entry in european phase

Ref document number: 20901057

Country of ref document: EP

Kind code of ref document: A1