CN102497367B - Method and system for delivering electronic document in certifiable delivery process - Google Patents
Method and system for delivering electronic document in certifiable delivery process Download PDFInfo
- Publication number
- CN102497367B CN102497367B CN201110408619.2A CN201110408619A CN102497367B CN 102497367 B CN102497367 B CN 102497367B CN 201110408619 A CN201110408619 A CN 201110408619A CN 102497367 B CN102497367 B CN 102497367B
- Authority
- CN
- China
- Prior art keywords
- electronic document
- user
- certificate
- service end
- electronic
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a method and a system for delivering an electronic document in a certifiable delivery process. The delivery process comprises the steps of: establishing an electronic document delivery authorization relation between a sending user and a server side; delivering an electronic document; and certifying an electronic document delivery process: issuing a special delivery process certificate to the sending user by the server side according the requirement of the sending user, wherein the delivery process certificate comprises a delivered electronic document and a Hash value thereof, an electronic document registration certificate and a delivery certificate, and the delivery process certificate can demonstrate that the delivery of the electronic document is completed by the sending user. The method and the system not only can be used for delivering the specific electronic document reliably, but also can be used for providing proof of the authenticity, the completeness as well as the delivery process of the electronic document so as to demonstrate that an organization or an individual fulfills the legal obligation of delivering the specific electronic document, so that the requirement of an important electronic document delivery occasion on demonstrating an electronic document sending and receiving fact is met.
Description
Technical field
The present invention relates to the technology of sending to of electronic document, originally send to sending to process safety reliably and can obtaining valid certificates of technology, be particularly suitable for sending to of important electronic document, belong to network information transmission, exchange and information security field.
Background technology
The electronic document transmitting system that sends electronic document by the network such as the Internet occurs already, and the basic technology of these systems is nothing more than being: between the dispensing device of electronic document and receiving system, server is set; When this server is received from the electronic data of dispensing device, send the notice of receiving from the electronic data of dispensing device to receiving system, receiving system is downloaded electronic document from server.Again, by worldwide universal based on SMTP(Simple Mail Transfer Protocol) e-mail system, continue and can communicate between the information equipment on internet.As confirming that the technology that has really sent electronic document on network has the MDN(Message Disposition Notification of e-mail system).
Above-mentioned technology can meet the requirement that electronic document that significance level is lower is sent to.But, along with the mitigation of progress and the regulation by Law of IT technology, now allowed by sending contract, transaction details book and the important electronic document of litigate letter on the Internet.The electronic document of these kinds not only needs to ensure its sending and receiving safely and reliably, and sometimes also needs to prove the detailed process of electronic document sending and receiving.Mostly technology is in the past that the daily record of being delivered letters and being collected mail by foundation proves the fact of electronic document sending and receiving, but what generally take due to daily record is form expressly, lack reliable safety measure, therefore likely suffer wrongful distorting, so daily record is also unreliable as the evidence that proves the electronic document sending and receiving fact.Therefore, send to the demand of proof of occasion to the electronic document sending and receiving fact for meeting important electronic document, be necessary to develop one and send to the evincible electronic document sending and receiving of process new technology.
Summary of the invention
For prior art above shortcomings, the object of this invention is to provide a kind of process of sending to provable and send to the reliable electronic document of process safety and send to method and the corresponding system of sending to.
Technical scheme of the present invention is achieved in that
One is sent to the evincible electronic document of process and is sent to method, originally the basis of sending to method be set up formed by service end and client send to service system, send user and receive user and register and login the sending and receiving that can carry out electronic document after client; This method is sent to process:
(1) transmission user and service end are set up electronic document and are sent to clientage--and send user, by client, electronic document is sent to service end, service end is calculated this electronic document cryptographic Hash and cryptographic Hash is sent to electronic third-party data file proves server, by proving that server generates the electronic document certificate of registration and returns to service end, is together taken care of electronic document and the corresponding certificate of registration by service end; Then service end generates and sends to entrust certificate notice transmission user;
(2) electronic document is sent to--and service end generates electronic document and delivers electronic notification book and send to reception user, the electronic document that receiving user proves and receive with network identity is delivered electronic notification book and is collected electronic document, and service end after reception user receives this electronic document, generates the certificate of delivery and notice sends user and reception user;
(3) electronic document is sent to process proves--according to the request that sends user, service end is provided the special process of sending to certificate to sending user, the process certificate of sending to comprises electronic document that this is sent to and cryptographic Hash thereof, the electronic document certificate of registration, the certificate of delivery, has completed sending to of this electronic document by sending to the provable transmission of process certificate user.
Described (1) step concrete steps are,
1.1) sending user is filled in the electronic document relevant information that need to send to and is submitted to electronic document to service end by client;
1.2) service end is stored described electronic document;
1.3) this electronic document relevant information and electronic document are generated cryptographic Hash by service end, prove this cryptographic Hash of server stores by electronic third-party data file, build forward secrecy daily record or use electronic data document to prove service, it is registered state that while service end is upgraded this electronic document state;
1.4) service end generates sending to entrust certificate and returning to sending user of having electronic stamp and free label;
1.5) service end is upgraded this electronic document state for commission status.
Described (2) step concrete steps are,
2.1) service end sends electronic document delivery electronic notification book to receiving user, and electronic document is delivered in electronic notification book and comprised and send the electronic document relevant information that user fills in, and subsidiary electronic document secure ID;
2.2) reception user fills in by client electronic document relevant information, the submission electronic document preparing to receive and delivers subsidiary electronic document secure ID in electronic notification book;
2.3) service end is verified the relevant information that receives user's submission, by verifying that rear reception user just can read or download described electronic document, receive user and read or download complete or click receiving flag, show that described electronic document Delivered receives user;
2.4) to upgrade this electronic document state be Delivered state to service end;
2.5) service end sends electronic document Delivered certificate to sending user and receiving user by client.
Described (3) step is sent to process and is proved that concrete steps are,
3.1) send user and fill in and need to send to electronic document relevant information (as electronic document title, theme, classification, recipient), the secure ID that process proves by client, and submit to the process of sending to prove request;
3.2) service end receives that the process of sending to that sends user's submission proves after request, relevant information to be verified;
3.3) send user by after verifying, as the request that sends user's submission is without certificate (electronic document is sent to entrust certificate, the electronic document certificate of delivery), obtain security log information, or prove the authenticity of document checking in service based on electronic data document, turn 3.5);
3.4) if user request is for sending to process and prove and having certificate, a content of authentication certificate;
3.5) generate and send to process certificate and return to sending user.
This electronic document is sent to method and is also comprised electronic document status poll, that electronic document is divided into is registered, notify, three kinds of states of Delivered, user is with network identity proof and inquire about electronic document state with the authority of service end agreement in advance, and electronic document status poll starts according to the request that receives user or transmission user; Concrete steps are:
S61: receive user or send user and fill in inquired about electronic document relevant information, secure ID submit Query request by client;
S62: service end is verified described information;
S63: after checking, service end shows the state information of this electronic document by client.
Described step 2.1) comprise the steps:
R11: service end sends electronic document delivery notice message to reception user, shows to have electronic document to need to receive; Notification message adds the secure ID while collecting, and tells reception user the valid expiration date that this notification message has;
R12: upgrade electronic document state for notify status.
One is sent to the evincible electronic document of process and is sent to system, native system comprises the communication channel of service end, client and connection, service end proves that with third party independently server is connected, according to the request of service end, prove that by third party server provides the process of sending to prove service to service end.Described communication channel is that the internet, applications of encrypting connects, special VPN passage or the special interface channel of setting up.
Described client functionality module comprises:
User management module Uc, realizes customer management information typing and user's ID authentication information typing;
Electronic document is sent to commit module Bc, for filling in electronic document basic format information, submits the electronic document that sends user to, and store electrons document is sent to entrust certificate;
Electronic document is sent to module Vc, submits to user's needs to access the electronic document format information obtaining, the secure ID of notification message, and electronic document is browsed or downloaded, the store electrons document certificate of delivery;
Electronic document status poll module Qc, the electronic document part format information of submitting to user's needs to inquire about, electronic document is divided into be entrusted, has notified and three kinds of states of Delivered;
Electronic document is sent to process and is proved module Pc, submits user rs authentication request, electronic document part format information or related credentials (electronic document is sent to entrust certificate, the electronic document certificate of delivery) to;
Encryption and decryption and communication module Ec, be encrypted sending data from the level of application service, carry out data input and data output, and be decrypted receiving after data, realize the secret exchange of information between client and service end, guarantee that user uses electronic data document to prove that the process of service is not illegally monitored.
Described service end functional module comprises:
User management module Ua, for realizing registration, the registration of user profile, agreement method for authenticating user identity and satellite information thereof, and other realize the management function of service;
Electronic document is sent to commit module Ba, receive the electronic document that user submits to, generate electronic document cryptographic Hash, joining day label, safe storage related data, the electronic document that set up forward secrecy, can not distort is delivered security log, joining day label, and the electronic document that generates having electronic stamp is entrusted the certificate of delivery;
Electronic document is sent to module Va, and system automatically generates electronic document and delivers electronic notification book notice reception user; Network identity proof and electronic notification book that authentication of users is submitted to, system generates the certificate of delivery and notifies both sides after reception user receives this electronic document;
Electronic document status poll module Qa: electronic document be divided into entrust, notify, three kinds of states of Delivered, receive user's inquiry request, the network identity that authentication of users is submitted to proves and electronic notification book relevant information, inquires about and shows electronic document state according to the authority of making an appointment;
Electronic document is sent to process and is proved module Pa, entrusts the certificate of registration, the electronic document certificate of delivery by electronic document, or security log, or third-party authentication conclusion is confirmed the information such as electronic document content, electronic document delivery time started, the time of sending to;
Encryption and decryption and communication module Ea, be encrypted sending data from the level of application service, carry out data input and data output, and be decrypted receiving after data, realize the secret exchange of information between client and service end, guarantee that the process that user uses electronic document to send to service is not illegally monitored;
Auxiliary administration module Ma: for realizing rights management and data safety management function;
Certificate signature and authentication module Da, realize signature to certificate relevant information cryptographic Hash, uses service provider's private key to be encrypted, and with service provider's PKI, cryptographic Hash value in certificate is decrypted and calls hash function and relevant information is generated to cryptographic Hash compare.
The present invention not only can send to specific electronic document reliably, can also witness to the authenticity of electronic document, integrality and the process of sending to thereof, prove that certain focal pointe has fulfiled the legal obligation that specific electron document is sent on time, send to the demand of proof of occasion to the electronic document sending and receiving fact to meet important electronic document.And the present invention also provides electronic document to send to process query, to help user to understand at any time the state of sending to of electronic document.
Brief description of the drawings
Fig. 1 is the system architecture diagram of system of the present invention.
Fig. 2 is the functional block diagram of system of the present invention.
Fig. 3 is the system service flow chart of system of the present invention.
Fig. 4 be system of the present invention send to Delegation Server flow chart.
Fig. 5 be system of the present invention send to service procedure figure.
Fig. 6 is the electronic document status poll flow chart of system of the present invention.
Fig. 7 is that the process of sending to of system of the present invention proves flow chart.
Embodiment
Below in conjunction with accompanying drawing, the present invention is described in detail.
Electronic document of the present invention is sent to method and is transmitted electronic document by network means, safe storage electronic document in special time period, the electronic document that proves certain user's submission with electronic data authenticity of document identity means is at a time entrusted and is sent to, certain existence from a certain moment, content is not tampered afterwards, at a time sends to recipient.This method is by providing following several service to realize: (1) electronic document is sent to Delegation Server (comprise registration, entrust).Electronic document is sent to safely native system service end by user, system service end calculates electronic document cryptographic Hash, cryptographic Hash is sent to electronic third-party data file and proves server, receive the electronic document certificate of registration that proves that server returns, service end is together taken care of electronic document and its certificate of registration.System is sent to entrust certificate and is notified delegate user completing after above-mentioned task to generate.Can determine the moment of electronic document delivery, the moment that original paper exists by sending to Delegation Server, give electronic data document original paper secure identity identification number; (2) electronic document is sent to--service end generate electronic document deliver electronic notification book and by general, extensive network channel is notified recipient easily, the electronic document that receiving user proves and receive with network identity is delivered electronic notification book and is collected electronic document, and service end after reception user receives this electronic document, generates the certificate of delivery and notice sends user and reception user; (3) electronic document status poll service, that electronic document is divided into is registered, notify, three kinds of states of Delivered, user prove with network identity and in advance with the authority inquiry electronic document state of service side's (system) agreement; Electronic document status poll starts according to the request that receives user or transmission user; (4) electronic document is sent to process proves--according to the request that sends user, service end is provided the special process of sending to certificate to sending user, the process certificate of sending to comprises electronic document that this is sent to and cryptographic Hash thereof, the electronic document certificate of registration, the certificate of delivery, complete sending to of this electronic document by sending to the provable transmission of process certificate user, provide special certificate, there is evidential function.
The present invention relates generally to the main body that sends user, service provider, three aspects of reception user, add-on third party service provider if desired.Service provider provides electronic document to send to that Delegation Server, electronic document are sent to service, electronic document inquiry service, electronic document is sent to process proves service to user.System architecture of the present invention as shown in Figure 1, be appreciated that the entirety of the service of the invention provides according to this figure, system comprises client, the service end (proving server system, cloud platform, group system etc.) that client software or program library are installed and the reliable communication channel that is connected both.The transmission user of electronic document and accept user and register, log in and accept related service by client.Service end is carried out operation and management by service provider, and service end is also connected with third-party server.Reliable communication channel N can be that the internet, applications of encrypting connects, special VPN passage or the special interface channel of setting up according to the needs of business.
The present invention sends to system service functions as shown in Figure 2, can understand service system from the angle of function according to this figure.
User management module U, for realizing registration, the registration of user profile, agreement method for authenticating user identity and necessary satellite information thereof, and other realize the management function of service, mainly comprise the submodules such as user registers, user's renewal, the management of user's service agreement, authenticating user identification, user authority management, provide personalized user service according to different classes of user and specific demand; The transmission transmit leg of a electronic document comprises service subscription (identity), delivers online, off-line notice (status poll) three phases, and recipient comprises service subscription (identity), off-line notice, receives three phases online;
Electronic document is sent to commit module B, receive the electronic document that user submits to, generate electronic document cryptographic Hash, joining day label, safe storage related data, the electronic document that set up forward secrecy, can not distort is delivered security log, joining day label, the electronic document that generates having electronic stamp is entrusted the certificate of delivery, mainly comprises the submodules such as safe storage, security log, certificates constructing;
Electronic document is sent to module V, and system generates electronic document and delivers electronic notification book, by general, extensive network channel is notified recipient easily, as means such as Email, SMS, instant communication messages.User is with collecting electronic document with network identity proof and the electronic notification book of service side's agreement, and system is being sent to this electronic document (receiving user receives) rear generation certificate of delivery and notifying both sides.Mainly comprise that notice generation, message informing, electronic document browse or download, notify the submodule such as receipt, certificate of delivery generation;
Electronic document status poll module Q: electronic document be divided into entrust, notify, three kinds of states of Delivered, intermediateness also can be notified sender according to user's service agreement, the authority inquiry electronic document state that user proves with network identity and makes an appointment; Mainly comprise electronic document status poll; The submodules such as electronic document status visualization.
Electronic document is sent to process and is proved module P, entrust the certificate of registration, electronic document certificate of service by electronic document, or security log, or the validation of information electronic document content of the aspect such as third-party authentication conclusion, electronic document are delivered the information such as time started, the time of sending to.Mainly comprise the submodules such as certification authentication, security log be visual.
Encryption and decryption and communication module E, be encrypted sending data from the level of application service, carry out data input and data output, and be decrypted receiving after data, realize the secret exchange of information between client and service end, guarantee that user uses electronic data document to prove that the process of service is not illegally monitored, mainly comprises data encryption module, data deciphering module, data transmission blocks, data reception module;
Auxiliary administration module M: rights management, data safety management etc.
Other modules mainly contain hash function computing, certificate signature, certification authentication module, certificate relevant information cryptographic Hash is realized to signature, use service provider's private key to be encrypted, with service provider's PKI, cryptographic Hash value in certificate is decrypted and calls hash function and relevant information is generated to cryptographic Hash compare.
Electronic document of the present invention is sent to flow process as shown in Figure 3, and concrete steps are as follows:
S1: user's registration, submit relevant evidential material to, fill in associated user's data, consult both sides' service contract, realized by user management module; User can upgrade materials for registration where necessary; The S2 that also can directly enter as registered in user;
S2: according to service contract, user downloads and install FTP client FTP (below all user's operation interactive system or instrument being referred to as to client except special explanation needs) from service end; As being ready to client, can directly enter S3;
S3: user login, service end is confirmed user identity, then can turn respectively S4, S5, S6, S7 use respective service;
S4: use electronic document to send to Delegation Server, as user needs the S8 that turns out of service, otherwise repeat S4;
S5: use electronic document to send to service, as user needs the S8 that turns out of service, otherwise turn S5;
S6: use electronic document status poll service, as user needs the S8 that turns out of service, otherwise turn S6;
S7: use electronic document to send to process and prove service, as user needs the S8 that turns out of service, otherwise turn S7;
S8: exit service.
In step S2, the functional module of client deployment comprises:
User management module Uc, realizes certain customers' management information typing, user's ID authentication information is obtained or typing;
Electronic document is sent to commit module Bc, fills in electronic document basic format information, submits user's electronic document to, and store electrons document is sent to entrust certificate if desired;
Electronic document is sent to module Vc, submits to user's needs to access the electronic document format information obtaining, the secure ID of notification message, and electronic document is browsed or downloaded, if desired the store electrons document certificate of delivery;
Electronic document status poll module Qc, submits to the electronic document part format information of user's needs inquiry, electronic document to be divided into entrust, notifies, three kinds of states of Delivered;
Electronic document is sent to process and is proved module Pc, submits user rs authentication request, electronic document part format information or related credentials to;
Encryption and decryption and communication module Ec, be encrypted sending data from the level of application service, carry out data input and data output, and be decrypted receiving after data, realize the secret exchange of information between client and service end, guarantee that user uses electronic data document to prove that the process of service is not illegally monitored, mainly comprises data encryption module, data deciphering module, data transmission blocks, data reception module;
The functional module that in step S2, service end A disposes has:
User management module Ua, for realizing registration, the registration of user profile, agreement method for authenticating user identity and necessary satellite information thereof, and the management function of other realization services, mainly comprise the submodules such as user registers, user's renewal, the management of user's service agreement, authenticating user identification;
Electronic document is sent to commit module Ba, receive the electronic document that user submits to, generate electronic document cryptographic Hash, joining day label, safe storage related data, the electronic document that set up forward secrecy, can not distort is delivered security log, joining day label, the electronic document that generates having electronic stamp is entrusted the certificate of delivery, mainly comprises the submodules such as safe storage, security log, certificates constructing;
Electronic document is sent to module Va, and system automatically generates electronic document and delivers electronic notification book, by general, extensive network channel is notified recipient easily, as means such as Email, SMS, instant communication messages.Network identity proof and electronic notification book that authentication of users is submitted to, system is being sent to this electronic document (receiving user receives) rear generation certificate of delivery and is notifying both sides.Mainly comprise that notice generation, message informing, electronic document browse or download, notify the submodule such as receipt, certificate of delivery generation;
Electronic document status poll module Qa: electronic document be divided into entrust, notify, three kinds of states of Delivered, intermediateness also can be notified sender according to user's service agreement; Receive user inquiry request, the network identity that authentication of users is submitted to proves and electronic notification book relevant information, inquires about and shows electronic document state according to the authority of making an appointment; Mainly comprise electronic document status poll; The submodules such as electronic document status visualization.The transmission transmit leg of a electronic document comprises service subscription (identity), delivers online, off-line notice (status poll) three phases, and recipient comprises service subscription (identity), off-line notice, receives three phases online
Electronic document is sent to process and is proved module Pa, entrust the certificate of registration, electronic document certificate of service by electronic document, or security log, or the validation of information electronic document content of the aspect such as third-party authentication conclusion, electronic document are delivered the information such as time started, the time of sending to.Mainly comprise the submodules such as certification authentication, security log be visual.
Encryption and decryption and communication module Ea, be encrypted sending data from the level of application service, carry out data input and data output, and be decrypted receiving after data, realize the secret exchange of information between client and service end, guarantee that the process that user uses electronic document to send to service is not illegally monitored, mainly comprise data encryption module, data deciphering module, data transmission blocks, data reception module;
Auxiliary administration module Ma: rights management, data safety management etc.
Certificate signature and authentication module Da, certificate relevant information cryptographic Hash is realized to signature, use service provider's private key to be encrypted, with service provider's PKI, cryptographic Hash value in certificate is decrypted and calls hash function and relevant information is generated to cryptographic Hash compare, mainly comprise the submodule such as certificate signature, signature deciphering;
Other modules mainly contain hash function computing, certificate signature, certification authentication module, certificate relevant information cryptographic Hash is realized to signature, use service provider's private key to be encrypted, with service provider's PKI, cryptographic Hash value in certificate is decrypted and calls hash function and relevant information is generated to cryptographic Hash compare.
Meanwhile, electronic document of the present invention is sent to method and also has the function of the aspects such as auxiliary or management of internal operation, mainly contains:
R1: electronic document is delivered message informing;
R2: rights management, each user has the clear and definite rights management rule that authorizes, the user who only obtains a certain electronic document express authorization according to system convention could inquire about, collect this electronic document, and the irrelevant user of electronic document cannot know any information therewith; Whether collect in time electronic document etc. according to service contract and carry out user profile evaluation according to receiving user, for Permission Constraints;
R3: only implement by format information, document state and authorization rule when user inquires about, can not check document content.
Further, described function R1 comprises the steps:
R11: service end sends electronic document delivery notice message to recipient, shows to have electronic document to need to receive; The transmission of notification message is used the mode of arranging in user's service agreement in advance, allows to select various existing, general channels easily, as Email, SMS, instant message etc.
R12: upgrade electronic document state for notify status;
R13: notification message adds the secure ID while collecting, and notification message has the information such as valid expiration date;
Further, in described step S4, electronic document is sent to Delegation Server as shown in Figure 4, mainly comprises the steps:
S41: user is filled in electronic document format information, submitted to electronic document to service end by client;
S42: service end safe storage electronic document;
S43: this electronic document relevant information and electronic document are generated cryptographic Hash by service end, prove this cryptographic Hash of server stores by electronic third-party data file, build forward secrecy daily record or use electronic data document to prove service, it is registered state that while service end is upgraded this electronic document state;
S44: according to user's service agreement, joining day label, the electronic document that generates having electronic stamp is sent to entrust certificate;
S45: return electron document is sent to entrust certificate to client (user);
S46: upgrade electronic document state for commission status;
Further, in described step S5, electronic document is sent to service as shown in Figure 5, comprises the steps:
S51: service end sends electronic document delivery electronic notification book to receiving user, and electronic document is delivered in electronic notification book and comprised and send the electronic document relevant information that user fills in, and subsidiary electronic document secure ID;
S52: reception user fills in by client electronic document relevant information, the submission electronic document preparing to receive and delivers subsidiary electronic document secure ID in electronic notification book;
S53: service end is verified the relevant information that receives user's submission, the information such as secure ID, valid expiration date of checking notification message, and point out user; The notification message that resends as expired in notification message, uses other secure ID instead; By verifying that rear reception user just can read or download described electronic document, receive user and read or download complete or click receiving flag, show that described electronic document Delivered receives user;
S54: it is Delivered state that service end is upgraded this electronic document state;
S55: service end sends electronic document Delivered certificate to sending user and receiving user by client.
Further, in described step S6, use electronic document status poll to serve as shown in Figure 6, comprise the steps:
S61: user fills in inquired about portions of electronics document related pattern information (electronic document title, theme, classification, recipient), secure ID submit Query request by client;
S62: the information such as the secure ID of service end checking notification message;
S63: inquire about this electronic document state
S64: the state that shows this electronic document;
S65: return;
Further, in described step S7, use electronic document to send to process and prove service as shown in Figure 7, comprise the steps:
S71: user fills in inquired about portions of electronics document related pattern information (electronic document title, theme, classification, recipient), secure ID, proof request by client;
S72: the information such as the secure ID of service end checking notification message;
S73: if user request is for sending to process proof and without certificate, obtain security log information, or prove the authenticity of document checking in service based on electronic data document, deliver time started, the time of sending to etc. according to these results verification electronic document contents, electronic document, turn S75;
S74: if user's request is for sending to process proof and having certificate, the content of authentication certificate, compare according to the cryptographic Hash of system storage, also can require to obtain security log information according to the particular content of request, or prove the authenticity of document checking in service based on electronic data document, deliver the information such as time started, the time of sending to according to these results verification electronic document contents, electronic document;
S75: generate and send to accordingly process certificate, return and send to process certificate to user;
S76: return;
Further, in described step S41, user fills in electronic document format information by client and comprises:
Electronic document title, theme, classification, recipient etc.; Under the condition of protection privacy of user, user can inquire-receive people (user).When concrete enforcement, user is divided into open and protection two classes, open user can be inquired by other users, can accept the electronic document that other any users deliver, and protection user receives only the message that subscriber sends, and can not be inquired about by other users.Concrete steps are click query function under given querying condition time, to show corresponding user's inventory.After accepting commission, electronic document format information comprises electronic document numbering, title, theme, classification, sender, recipient, checking Hash, date of shipping and time.
Further, forward secrecy daily record described in described step S43:
Adopt Hash chain and encryption safe mechanism to set up a kind of safe daily record system, realize strange land (under different server, different controling mechanism at once) storage, calculate from a certain moment, daily record before can not be tampered;
Further, described in described step S43, electronic data document proves service:
Adopt third-party proof service, electronic document format information and electronic document are generated to cryptographic Hash and be stored on third-party server, and third-party server takes evincible security mechanism, ensured that cryptographic Hash can not be tampered.
The above embodiment of the present invention is to be only explanation example of the present invention, and is not the restriction to embodiments of the present invention.For those of ordinary skill in the field, can also make on the basis of the above description other multi-form variation and variations.Here cannot give exhaustive to all execution modes.Everyly belong to apparent variation or the still row in protection scope of the present invention of variation that technical scheme of the present invention amplifies out.
Claims (5)
1. send to the evincible electronic document of process and send to method for one kind, originally the basis of sending to method is to set up the service system of sending to being made up of service end and client, service end proves that with third party independently server is connected, according to the request of service end, prove that by third party server provides the process of sending to prove service to service end;
Client functionality module comprises:
User management module Uc, realizes customer management information typing and user's ID authentication information typing;
Electronic document is sent to commit module Bc, for filling in electronic document basic format information, submits the electronic document that sends user to, and store electrons document is sent to entrust certificate;
Electronic document is sent to module Vc, submits to user's needs to access the electronic document format information obtaining, the secure ID of notification message, and electronic document is browsed or downloaded, the store electrons document certificate of delivery;
Electronic document status poll module Qc, the electronic document part format information of submitting to user's needs to inquire about, electronic document is divided into be entrusted, has notified and three kinds of states of Delivered;
Electronic document is sent to process and is proved module Pc, submits user rs authentication request, electronic document part format information to or sends to entrust certificate and the certificate of delivery;
Encryption and decryption and communication module Ec, be encrypted sending data from the level of application service, carry out data input and data output, and be decrypted receiving after data, realize the secret exchange of information between client and service end, guarantee that user uses electronic data document to prove that the process of service is not illegally monitored;
Service end functional module comprises:
User management module Ua, for realizing registration, the registration of user profile, agreement method for authenticating user identity and satellite information thereof, and other realize the management function of service;
Electronic document is sent to commit module Ba, receive the electronic document that user submits to, generate electronic document cryptographic Hash, joining day label, safe storage related data, the electronic document that set up forward secrecy, can not distort is delivered security log, joining day label, and the electronic document that generates having electronic stamp is entrusted the certificate of delivery;
Electronic document is sent to module Va, and system automatically generates electronic document and delivers electronic notification book notice reception user; Network identity proof and electronic notification book that authentication of users is submitted to, system generates the certificate of delivery and notifies both sides after reception user receives this electronic document;
Electronic document status poll module Qa: electronic document be divided into entrust, notify, three kinds of states of Delivered, receive user's inquiry request, the network identity that authentication of users is submitted to proves and electronic notification book relevant information, inquires about and shows electronic document state according to the authority of making an appointment;
Electronic document is sent to process and is proved module Pa, entrusts the certificate of registration, the electronic document certificate of delivery by electronic document, or security log, or third-party authentication conclusion is confirmed electronic document content, electronic document delivery time started, sent to temporal information;
Encryption and decryption and communication module Ea, be encrypted sending data from the level of application service, carry out data input and data output, and be decrypted receiving after data, realize the secret exchange of information between client and service end, guarantee that the process that user uses electronic document to send to service is not illegally monitored;
Auxiliary administration module Ma: for realizing rights management and data safety management function;
Certificate signature and authentication module Da, realize signature to certificate relevant information cryptographic Hash, uses service provider's private key to be encrypted, and with service provider's PKI, cryptographic Hash value in certificate is decrypted and calls hash function and relevant information is generated to cryptographic Hash compare;
Send user and receive user and register and login the sending and receiving that can carry out electronic document after client,
It is characterized in that: this method is sent to process and is:
(1) transmission user and service end are set up electronic document and are sent to clientage: send user, by client, electronic document is sent to service end, service end is calculated this electronic document cryptographic Hash and cryptographic Hash is sent to electronic third-party data file proves server, by proving that server generates the electronic document certificate of registration and returns to service end, is together taken care of electronic document and the corresponding certificate of registration by service end; Then service end generates and sends to entrust certificate notice transmission user;
(2) electronic document is sent to: service end generates electronic document and delivers electronic notification book and send to reception user, the electronic document that receiving user proves and receive with network identity is delivered electronic notification book and is collected electronic document, and service end after reception user receives this electronic document, generates the certificate of delivery and notice sends user and reception user;
(3) electronic document is sent to process proves: according to the request that sends user, service end is provided the special process of sending to certificate to sending user, the process certificate of sending to comprises electronic document that this is sent to and cryptographic Hash thereof, the electronic document certificate of registration, the certificate of delivery, has completed sending to of this electronic document by sending to the provable transmission of process certificate user;
Described (1) step concrete steps are,
1.1) sending user is filled in the electronic document relevant information that need to send to and is submitted to electronic document to service end by client;
1.2) service end is stored described electronic document;
1.3) this electronic document relevant information and electronic document are generated cryptographic Hash by service end, prove this cryptographic Hash of server stores by electronic third-party data file, build forward secrecy daily record or use electronic data document to prove service, it is registered state that while service end is upgraded this electronic document state; Described forward secrecy daily record adopts Hash chain and encryption safe mechanism to set up a kind of safe daily record system, realizes storage at once under strange land different server, different controling mechanism, calculates from a certain moment, and daily record before can not be tampered;
1.4) service end generates sending to entrust certificate and returning to sending user of having electronic stamp and free label;
1.5) service end is upgraded this electronic document state for commission status.
2. electronic document according to claim 1 is sent to method, it is characterized in that: described (2) step concrete steps are,
2.1) service end sends electronic document delivery electronic notification book to receiving user, and electronic document is delivered in electronic notification book and comprised and send the electronic document relevant information that user fills in, and subsidiary electronic document secure ID;
2.2) reception user fills in by client electronic document relevant information, the submission electronic document preparing to receive and delivers subsidiary electronic document secure ID in electronic notification book;
2.3) service end is verified the relevant information that receives user's submission, by verifying that rear reception user just can read or download described electronic document, receive user and read or download complete or click receiving flag, show that described electronic document Delivered receives user;
2.4) to upgrade this electronic document state be Delivered state to service end;
2.5) service end sends electronic document Delivered certificate to sending user and receiving user by client.
3. electronic document according to claim 1 is sent to method, it is characterized in that: described (3) step is sent to process and proved that concrete steps are,
3.1) send user and fill in and need to send to electronic document relevant information, the secure ID that process proves by client, and submit to the process of sending to prove request;
3.2) service end receives that the process of sending to that sends user's submission proves after request, relevant information to be verified;
3.3) send user by checking after, the request that user submits to as sent, without sending to entrust certificate and the certificate of delivery, is obtained security log information, or is proved the authenticity of document checking in service based on electronic data document, turns 3.5);
3.4) if user request is for sending to process and prove and having the entrust certificate of sending to and the certificate of delivery, a content of authentication certificate;
3.5) generate and send to process certificate and return to sending user.
4. electronic document according to claim 1 is sent to method, it is characterized in that: this electronic document is sent to method and also comprised electronic document status poll, that electronic document is divided into is registered, notify, three kinds of states of Delivered, user is with network identity proof and inquire about electronic document state with the authority of service end agreement in advance, and electronic document status poll starts according to the request that receives user or transmission user; Concrete steps are:
S61: receive user or send user and fill in inquired about electronic document relevant information, secure ID submit Query request by client;
S62: service end is verified inquired about electronic document relevant information and secure ID;
S63: after checking, service end shows the state information of this electronic document by client.
5. electronic document according to claim 2 is sent to method, it is characterized in that: described step 2.1) comprise the steps:
R11: service end sends electronic document delivery notice message to reception user, shows to have electronic document to need to receive; Notification message adds the secure ID while collecting, and tells reception user the valid expiration date that this notification message has;
R12: upgrade electronic document state for notify status.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110408619.2A CN102497367B (en) | 2011-12-09 | 2011-12-09 | Method and system for delivering electronic document in certifiable delivery process |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110408619.2A CN102497367B (en) | 2011-12-09 | 2011-12-09 | Method and system for delivering electronic document in certifiable delivery process |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102497367A CN102497367A (en) | 2012-06-13 |
| CN102497367B true CN102497367B (en) | 2014-07-30 |
Family
ID=46189153
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110408619.2A Expired - Fee Related CN102497367B (en) | 2011-12-09 | 2011-12-09 | Method and system for delivering electronic document in certifiable delivery process |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102497367B (en) |
Families Citing this family (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102811226A (en) * | 2012-08-29 | 2012-12-05 | 金宏中天(北京)科技有限公司 | Service and receipt method of electronic document |
| CN103903123A (en) * | 2012-12-26 | 2014-07-02 | 北京华宇信息技术有限公司 | Electronic delivery system capable of confirming judicial documents received by addressee and method thereof |
| CN103235919A (en) * | 2013-04-19 | 2013-08-07 | 新疆君盾信息技术有限公司 | Method and business system for delivering litigation documents safely |
| PT3188435T (en) * | 2015-12-28 | 2020-01-22 | Lleidanetworks Serveis Telematics Sa | Method for certifying an electronic mail comprising a trusted digital signature by a telecommunications operator |
| CN107730221A (en) * | 2017-11-30 | 2018-02-23 | 上海宝冶集团有限公司 | A kind of information of building project coupling management method based on information exchange platform |
| CN110415147B (en) * | 2019-07-18 | 2022-07-19 | 恒锋信息科技股份有限公司 | Method and system for online delivery of legal documents |
| CN115002208A (en) * | 2022-05-27 | 2022-09-02 | 琢创网络科技(上海)有限公司 | High-reliability multi-layer digital delivery method |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102143176A (en) * | 2011-03-28 | 2011-08-03 | 河北华烨冀科信息技术有限责任公司 | Remote evidence obtaining system during trail in court |
| CN102215109A (en) * | 2011-08-15 | 2011-10-12 | 天津大学 | Method for dynamically storing and validating digital evidences based on computer forensics |
| CN102223374A (en) * | 2011-06-22 | 2011-10-19 | 熊志海 | Third-party authentication security protection system and third-party authentication security protection method based on online security protection of electronic evidence |
| CN102238191A (en) * | 2011-08-02 | 2011-11-09 | 熊志海 | Court electronic document server, court electronic document service client, court electronic document service system and court electronic document service method |
-
2011
- 2011-12-09 CN CN201110408619.2A patent/CN102497367B/en not_active Expired - Fee Related
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102143176A (en) * | 2011-03-28 | 2011-08-03 | 河北华烨冀科信息技术有限责任公司 | Remote evidence obtaining system during trail in court |
| CN102223374A (en) * | 2011-06-22 | 2011-10-19 | 熊志海 | Third-party authentication security protection system and third-party authentication security protection method based on online security protection of electronic evidence |
| CN102238191A (en) * | 2011-08-02 | 2011-11-09 | 熊志海 | Court electronic document server, court electronic document service client, court electronic document service system and court electronic document service method |
| CN102215109A (en) * | 2011-08-15 | 2011-10-12 | 天津大学 | Method for dynamically storing and validating digital evidences based on computer forensics |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102497367A (en) | 2012-06-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102497367B (en) | Method and system for delivering electronic document in certifiable delivery process | |
| CN101207482B (en) | System and method for implementation of single login | |
| KR100501095B1 (en) | Terminal communication system | |
| JP5204090B2 (en) | Communication network, e-mail registration server, network device, method, and computer program | |
| CN101350717B (en) | Method and system for logging on third party server through instant communication software | |
| Kim et al. | Design of secure decentralized car-sharing system using blockchain | |
| CN111292041B (en) | Electronic contract generation method, device, equipment and storage medium | |
| US8261080B2 (en) | System and method for managing digital certificates on a remote device | |
| US6938154B1 (en) | System, method and article of manufacture for a cryptographic key infrastructure for networked devices | |
| CN109450843B (en) | SSL certificate management method and system based on block chain | |
| KR102083313B1 (en) | Method for the registration and certification of receipt of electronic mail | |
| JP2011521484A (en) | Signature method and apparatus | |
| CN111865988B (en) | Certificate-free key management method, system and terminal based on block chain | |
| CN104125230A (en) | Short message authentication service system and authentication method | |
| CA2862557A1 (en) | Method for certifying the sending of electronic mail | |
| KR102462411B1 (en) | Platform and method for authenticating electronic announcements for electronic identification and authentication services (EDS) | |
| JP2015508916A (en) | How to prove delivery of a data message to a mobile device | |
| Isaac et al. | Anonymous payment in a client centric model for digital ecosystems | |
| JP4663315B2 (en) | Authentication system, authentication information delegation method and security device in the same system | |
| CN115174277A (en) | Data communication and file exchange method based on block chain | |
| JP2006157336A (en) | Method of transmitting and receiving secret information and program | |
| Pejaś et al. | Authentication protocol for software and hardware components in distributed electronic signature creation system | |
| WO2022202719A1 (en) | Information intermediary system and information intermediary method | |
| Papastergiou et al. | A Secure Mobile Framework for m-services | |
| JP2002123789A (en) | Electronic form distribution system and electronic document presentation system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C41 | Transfer of patent application or patent right or utility model | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20160127 Address after: Shenyang, Liaoning Province, Yuhong District, good fortune Town, good fortune village Patentee after: SHENYANG YUANMENG TECHNOLOGY CO., LTD. Address before: 400015, 12 floor, universal building, 9 Temple Road, Yuzhong District, Chongqing Patentee before: Chongqing Jundun Technology Co.,Ltd. |
|
| TR01 | Transfer of patent right |
Effective date of registration: 20171018 Address after: 126 -1, 110000, Xijiang North Street, Yuhong District, Liaoning, Shenyang Patentee after: Shenyang King farmers Technology Co., Ltd. Address before: Shenyang Town, Yuhong District, fortune town Patentee before: SHENYANG YUANMENG TECHNOLOGY CO., LTD. |
|
| TR01 | Transfer of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20140730 Termination date: 20181209 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |