CN120342664A - Electronic bill processing method, device and electronic equipment - Google Patents
Electronic bill processing method, device and electronic equipmentInfo
- Publication number
- CN120342664A CN120342664A CN202510385132.9A CN202510385132A CN120342664A CN 120342664 A CN120342664 A CN 120342664A CN 202510385132 A CN202510385132 A CN 202510385132A CN 120342664 A CN120342664 A CN 120342664A
- Authority
- CN
- China
- Prior art keywords
- bill
- target
- electronic bill
- electronic
- digital identity
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a processing method and device of an electronic bill and electronic equipment. The method comprises the steps of receiving a verifiable certificate submitted by a bill receiver by a bill issuing party, verifying the validity of the verifiable certificate to obtain a verification result, and generating an initial electronic bill under the condition that the verification result indicates that the verifiable certificate is valid, wherein the initial electronic bill comprises an unencrypted electronic bill, encrypting and signing the initial electronic bill by using a distributed digital identity authentication strategy to obtain a target electronic bill, and the distributed digital identity authentication strategy is a decentralised digital identity identification strategy. The invention solves the technical problems that the encryption of the electronic bill depends on a centralized third party mechanism and the security is low in the related technology.
Description
Technical Field
The invention relates to the field of data security, in particular to a method and a device for processing an electronic bill and electronic equipment.
Background
With the widespread use of electronic notes, the security problem during their transport is also becoming increasingly pronounced. In the related art, the electronic bill transmission mode mainly depends on a centralized identity authentication and data encryption mechanism. In this mode, all data and information needs to be processed and stored by one or more centralized servers, increasing the risk of data leakage, for example, once a centralized server is attacked or maliciously invaded, the electronic ticket data stored therein may be at risk of being stolen, tampered with or misused.
In addition, the electronic bill transmission mode in the related art also faces the difficulties of identity authentication and data integrity verification, for example, how to ensure the true credibility of the identities of a sender and a receiver in the transmission process of the electronic bill and ensure that the electronic bill is not tampered or damaged in the transmission process are key to ensuring the legal effectiveness and credibility of the electronic bill, but in the related art, the identity authentication and data encryption mechanism generally depends on a centralized authority or a third party authentication service, which not only increases the complexity and cost of data transmission, but also is easily influenced by single-point faults, thereby reducing the reliability and stability of the whole system.
In view of the above problems, no effective solution has been proposed at present.
Disclosure of Invention
The embodiment of the invention provides a processing method and device of an electronic bill and electronic equipment, which at least solve the technical problems that encryption of the electronic bill depends on a centralized third party mechanism and the security is low in the related technology.
According to one aspect of the embodiment of the invention, a processing method of an electronic bill is provided, which comprises the steps that a bill issuer receives a verifiable certificate submitted by a bill receiver and verifies the validity of the verifiable certificate to obtain a verification result, and an initial electronic bill is generated under the condition that the verification result indicates that the verifiable certificate is valid, wherein the initial electronic bill comprises an unencrypted electronic bill, and the initial electronic bill is encrypted and signed by using a distributed digital identity authentication policy to obtain a target electronic bill, and the distributed digital identity authentication policy is a decentralised digital identity identification policy.
Further, the initial electronic bill is encrypted and signed by utilizing a distributed digital identity authentication strategy to obtain a target electronic bill, the target electronic bill comprises a public key of a bill receiver, which is queried from a target distributed platform, wherein the target distributed platform comprises a distributed platform for managing target digital identity data, the target digital identity data comprises a public key of an issuer of any electronic bill and a public key of a receiver of any electronic bill, the initial electronic bill is encrypted based on the public key of the bill receiver to obtain an encrypted initial electronic bill, and the encrypted initial electronic bill is signed based on a private key of the bill issuer to obtain the target electronic bill.
Further, the target digital identity data further comprises a plurality of target documents, wherein the public key of the issuer of any electronic bill and the public key of the receiver of any electronic bill are recorded in one of the target documents, and the inquiry of the public key of the bill receiver from the target distributed platform comprises the inquiry of the target document associated with the bill receiver from the target distributed platform and the inquiry of the public key of the bill receiver in the target document.
Further, after encrypting and signing the initial electronic bill by using a distributed digital identity authentication strategy to obtain a target electronic bill, determining a transmission strategy, wherein the transmission strategy comprises a transmission strategy for transmitting the target electronic bill, uploading the target electronic bill to a target storage platform and generating an access identifier and transmitting the access identifier to the bill receiver under the condition that the transmission strategy is a storage type transmission strategy, and the target storage platform comprises at least one of an interstellar file system and a blockchain network, wherein the access identifier is used for accessing the target electronic bill stored in the target storage platform, and transmitting the target electronic bill to the bill receiver under the condition that the transmission strategy is a point-to-point transmission strategy.
According to another aspect of the embodiment of the invention, a processing method of an electronic bill is provided, which comprises the steps that a bill receiving party submits a verifiable certificate to a bill issuing party, wherein the bill issuing party is used for verifying the validity of the verifiable certificate to obtain a verification result, an initial electronic bill is generated under the condition that the verification result indicates that the verifiable certificate is valid, and the initial electronic bill is encrypted and signed by utilizing a distributed digital identity authentication strategy to obtain a target electronic bill, the initial electronic bill comprises an unencrypted electronic bill, the target electronic bill is obtained, and the target electronic bill is verified and decrypted by utilizing the distributed digital identity authentication strategy to obtain the initial electronic bill.
Further, the target electronic bill is checked and decrypted by utilizing the distributed digital identity authentication strategy to obtain the initial electronic bill, the method comprises the steps of inquiring a public key of the bill issuer from a target distributed platform, wherein the target distributed platform comprises a platform for managing target digital identity data, the target digital identity data comprises a public key of any electronic bill issuer and a public key of any electronic bill receiver, checking the target electronic bill based on the public key of the bill issuer to obtain the checked target electronic bill, and decrypting the checked target electronic bill based on a private key of the bill receiver to obtain the initial electronic bill.
Further, acquiring the target electronic bill comprises acquiring the target electronic bill from a target storage platform based on the access identifier under the condition that the bill receiver receives the access identifier, wherein the target storage platform comprises at least one of an interstellar file system and a blockchain network, and the access identifier comprises an identifier for accessing the target electronic bill in the target storage platform.
According to another aspect of the embodiment of the invention, the processing device of the electronic bill further comprises a first processing unit and a generating unit, wherein the first processing unit is used for receiving a verifiable certificate submitted by a bill receiver by a bill issuing party, verifying the validity of the verifiable certificate to obtain a verification result, and generating an initial electronic bill under the condition that the verification result indicates that the verifiable certificate is valid, the initial electronic bill comprises an unencrypted electronic bill, and the encrypting unit is used for encrypting and signing the initial electronic bill by using a distributed digital identity authentication strategy to obtain a target electronic bill, and the distributed digital identity authentication strategy is a decentralised digital identity identification strategy.
The encryption unit further comprises a first inquiry subunit, an encryption subunit and a signature subunit, wherein the first inquiry subunit is used for inquiring the public key of the bill receiver from a target distributed platform, the target distributed platform comprises a distributed platform for managing target digital identity data, the target digital identity data comprises a public key of an issuer of any electronic bill and a public key of a receiver of any electronic bill, the encryption subunit is used for encrypting the initial electronic bill based on the public key of the bill receiver to obtain the encrypted initial electronic bill, and the signature subunit is used for signing the encrypted initial electronic bill based on the private key of the bill issuer to obtain the target electronic bill.
Further, the target digital identity data further comprises a plurality of target documents, wherein the public key of the issuer of any electronic bill and the public key of the receiver of any electronic bill are recorded in one of the target documents, and the inquiring subunit comprises a processing module, which is used for inquiring the target document associated with the bill receiver from the target distributed platform and inquiring the public key of the bill receiver in the target document.
The electronic bill processing device further comprises a determining unit, a first transmission unit and a second transmission unit, wherein the determining unit is used for determining a transmission strategy after encrypting and signing the initial electronic bill by using a distributed digital identity authentication strategy to obtain a target electronic bill, the transmission strategy comprises a transmission strategy used for transmitting the target electronic bill, the first transmission unit is used for uploading the target electronic bill to a target storage platform and generating an access identifier and transmitting the access identifier to the bill receiver under the condition that the transmission strategy is a storage type transmission strategy, the target storage platform comprises at least one of an interstellar file system and a blockchain network, the access identifier is used for accessing the target electronic bill stored in the target storage platform, and the second transmission unit is used for transmitting the target electronic bill to the bill receiver under the condition that the transmission strategy is a point-to-point transmission strategy.
According to another aspect of the embodiment of the invention, a processing device of an electronic bill is provided, which comprises a submitting unit and a second processing unit, wherein the submitting unit is used for submitting a verifiable certificate to a bill issuing party, the bill issuing party is used for verifying the validity of the verifiable certificate to obtain a verification result, an initial electronic bill is generated and encrypted and signed by utilizing a distributed digital identity authentication strategy under the condition that the verification result indicates that the verifiable certificate is valid, and a target electronic bill is obtained, the initial electronic bill comprises an unencrypted electronic bill, and the second processing unit is used for acquiring the target electronic bill and verifying and decrypting the target electronic bill by utilizing the distributed digital identity authentication strategy to obtain the initial electronic bill.
The second processing unit further comprises a second inquiring subunit, a decrypting subunit and a decrypting subunit, wherein the second inquiring subunit is used for inquiring the public key of the bill issuer from a target distributed platform, the target distributed platform comprises a platform for managing target digital identity data, the target digital identity data comprises the public key of any electronic bill issuer and the public key of any electronic bill receiver, the verifying subunit is used for conducting signature verification on the target electronic bill based on the public key of the bill issuer to obtain a signed target electronic bill, and the decrypting subunit is used for decrypting the signed target electronic bill based on the private key of the bill receiver to obtain the initial electronic bill.
Further, the second processing unit comprises an acquisition subunit, wherein the acquisition subunit is used for acquiring the target electronic bill from a target storage platform based on the access identifier when the bill receiver receives the access identifier, the target storage platform comprises at least one of an interstellar file system and a blockchain network, and the access identifier comprises an identifier for accessing the target electronic bill in the target storage platform.
According to another aspect of the embodiment of the invention, there is also provided an electronic device, including a processor, and a memory for storing executable instructions of the processor, wherein the processor is configured to execute the processing method of the electronic bill according to any one of the above through executing the executable instructions.
According to another aspect of the embodiment of the present invention, there is also provided a computer readable storage medium, in which a computer program is stored, where the computer readable storage medium is controlled to execute the method for processing an electronic ticket according to any one of the above steps when the computer program is run.
The method comprises the steps of receiving a verifiable certificate submitted by a bill receiver by a bill issuer, verifying the validity of the verifiable certificate to obtain a verification result, and generating an initial electronic bill under the condition that the verification result indicates that the verifiable certificate is valid, wherein the initial electronic bill comprises an unencrypted electronic bill, encrypting and signing the initial electronic bill by using a distributed digital identity authentication strategy to obtain a target electronic bill, and the distributed digital identity authentication strategy is a decentralised digital identity identification strategy. And further, the technical problems that the encryption of the electronic bill depends on a centralized third party mechanism and the security is low in the related technology are solved. In the invention, the original electronic bill is encrypted and signed based on the decentralized distributed digital identity authentication strategy, so that the situation that the encryption of the electronic bill in the related technology depends on a centralized third party mechanism and the risk of data leakage is high is avoided, and the technical effect of improving the safety of the electronic bill is realized.
Drawings
The accompanying drawings, which are included to provide a further understanding of the application and are incorporated in and constitute a part of this specification, illustrate embodiments of the application and together with the description serve to explain the application and do not constitute a limitation on the application. In the drawings:
FIG. 1 is a flow chart of an alternative method of processing an electronic ticket according to an embodiment of the invention;
FIG. 2 is a flow chart of another alternative method of processing an electronic ticket according to an embodiment of the invention;
FIG. 3 is a schematic diagram of an alternative electronic ticket processing system in accordance with an embodiment of the invention;
FIG. 4 is a process flow diagram of an alternative electronic ticket processing system in accordance with an embodiment of the invention;
FIG. 5 is a schematic diagram of an alternative electronic ticket processing apparatus in accordance with an embodiment of the invention;
FIG. 6 is a schematic diagram of an alternative electronic ticket processing apparatus according to an embodiment of the invention;
Fig. 7 is a schematic diagram of an electronic device according to an embodiment of the invention.
Detailed Description
In order that those skilled in the art will better understand the present invention, a technical solution in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in which it is apparent that the described embodiments are only some embodiments of the present invention, not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the present invention without making any inventive effort, shall fall within the scope of the present invention.
It should be noted that the terms "first," "second," and the like in the description and the claims of the present invention and the above figures are used for distinguishing between similar objects and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used may be interchanged where appropriate such that the embodiments of the invention described herein may be implemented in sequences other than those illustrated or otherwise described herein. Furthermore, the terms "comprises," "comprising," and "having," and any variations thereof, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed but may include other steps or elements not expressly listed or inherent to such process, method, article, or apparatus.
For convenience of description, some terms related to the present invention are explained below.
The distributed digital identity refers to storing the identity information of the user on a blockchain or a public content storage platform, and protecting the privacy and safety of the user through an encryption algorithm. Each user has a unique digital identity, and can be used in different applications and networks to realize cross-platform and cross-application identity verification and management. The core component includes a distributed digital identity identifier (DID) and Verifiable Credentials (VC).
The distributed digital identity identifier, abbreviated as DID, uniquely identifies a user's data identity, which corresponds to a DID Document.
The verifiable certificate is called VC for short, and is a digital certificate issued by an authority and used for recording information such as an issuer, validity period, proven attribute and the like. The data is rendered invisible using a "zero knowledge proof" technique.
The block chain is a decentralized distributed account book technology, has the characteristics of non-falsification, transparency and safety, and forms a chain data structure by packing data into blocks, thereby ensuring the safety and consistency of the data.
The digital signature is an identity verification technology based on a public key cryptosystem, and allows a sender of information to encrypt data by using a private key of the sender to generate a section of specific data string, namely a digital signature, so as to ensure the source authenticity and the integrity of the information and prevent the information from being tampered in the transmission process.
The DID Resolver is a software and/or hardware component, takes DID as input and generates a DID document meeting the requirement as output to execute the DID resolving function.
DID documents, which may contain the DID holder's public key, service endpoint, identification, and other descriptive information. Through the DID resolution, the public key of the DID holder may be obtained to encrypt data or verify signatures, the service endpoint may be obtained to establish communications, and other identification information may be checked to confirm the legitimacy and qualification of the DID holder.
DID Domain-DID Domain name to provide globally unique human-readable aliases for DIDs, typically using a Domain name naming convention. The corresponding DID can be queried through DID DOMAIN.
It should be noted that, the user information (including but not limited to user equipment information, user personal information, etc.), collected information and data (including but not limited to data for analysis, stored data, displayed data, etc.) related to the present application are all information and data authorized by the user or fully authorized by each party, and the related data are collected, stored, used, processed, transmitted, provided, disclosed, applied, etc. in compliance with the related laws and regulations and standards of the related region, necessary security measures are taken, no prejudice to the public order is made, and corresponding operation entries are provided for the user to select authorization or rejection.
Example 1
According to an embodiment of the present invention, there is provided an alternative method embodiment of a method of processing an electronic ticket, it being noted that the steps shown in the flowchart of the figures may be performed in a computer system such as a set of computer executable instructions, and that although a logical order is shown in the flowchart, in some cases the steps shown or described may be performed in an order different from that shown or described herein.
Fig. 1 is a flowchart of an alternative method for processing an electronic ticket according to an embodiment of the present invention, as shown in fig. 1, the method includes the steps of:
Step S101, the bill issuer receives the verifiable certificate submitted by the bill receiver and verifies the validity of the verifiable certificate to obtain a verification result.
The bill issuer may be an object bill issuer that issues an electronic bill and may include, but is not limited to, a system associated with an electronic bill in an airline, and the bill receiver may be a device that requests an electronic bill from the bill issuer. The verifiable credential submitted by the bill receiver can be a Verifiable Credential (VC) issued for the bill receiver by using a distributed digital identity platform (in this embodiment, may be simply referred to as a target distributed platform) for verifying the identity of the bill receiver, and in this embodiment, the verifiable credential of the bill receiver can also be verified by using the distributed digital identity platform to obtain a verification result.
Verifying the validity of the verifiable credential may include, but is not limited to, (1) identity verification, checking identity information contained in the VC to confirm whether the bill recipient is a legitimate user, is eligible to receive an electronic bill, (2) VC integrity verification, using digital signatures in the VC to perform integrity checks to ensure that the VC is not tampered with or damaged during transmission, (3) VC origin verification, the bill issuer will verify the issuing authority of the VC, confirm whether it is a legitimate, trusted issuer, and whether the VC is within a validity period, etc., (4) attribute verification, checking attribute information in the VC, confirming whether the recipient meets certain specific conditions or criteria (e.g., credit rating, account status, etc.).
In step S102, in the case that the verification result indicates that the verifiable certificate is valid, an initial electronic bill is generated, wherein the initial electronic bill comprises an unencrypted electronic bill.
The types of the initial electronic bill may include, but are not limited to, electronic bills (e.g., electronic travel slips, electronic tickets, etc.) issued by airlines, and electronic bills issued by other institutions, which are not limited herein.
Under the condition that the verification result indicates that the verifiable certificate is valid, the bill issuer can issue an electronic bill to obtain an initial electronic bill, for example, electronic bill contents can be generated according to a preset business rule to obtain the initial electronic bill, specifically, firstly, data information necessary for the initial electronic bill to be generated can be collected, and then, based on the collected data information, the initial electronic bill is generated according to the business rule.
Step S103, encrypting and signing the initial electronic bill by using a distributed digital identity authentication strategy to obtain a target electronic bill, wherein the distributed digital identity authentication strategy is a decentralised digital identity identification strategy.
In order to improve the security of the electronic bill during the transmission process, the secure transmission of the electronic bill may be implemented by using distributed digital identity technologies (Decentralized Identifiers, DIDs) (i.e., distributed digital identity authentication policies) in this embodiment. DIDs are a de-centralized digital identification technology that allows entities (e.g., individuals, organizations, or devices, etc.) to own and control their own digital identities without relying on centralized authorities. Through the DID document, the entity can disclose the public key, authentication information and other service endpoints, so that secure communication and data exchange can be performed under the condition of not revealing the private key, and through the decentralised identity verification and data encryption mechanism, the risk of data revealing can be effectively reduced, and the efficiency and the credibility of data transmission can be improved.
In this embodiment, the initial electronic ticket may be encrypted and signed by using a distributed digital identity authentication policy to obtain a target electronic ticket, for example, a public key of a ticket receiver may be queried from a distributed digital identity platform (abbreviated as a target distributed platform), the initial electronic ticket is encrypted by using the public key of the ticket receiver, and the encrypted initial electronic ticket is signed by using a private key local to the ticket issuer to obtain the target electronic ticket.
It should be noted that, in this embodiment, the public key of the bill receiver and the public key of the bill issuer may be stored in the target distributed platform, while the private key of the bill receiver may be recorded only locally of the bill receiver, and the private key of the bill issuer may also be recorded only locally of the bill issuer, so as to avoid the private key being transmitted on the network, and the situation of low data security exists.
In this embodiment, through the above steps, the original electronic ticket is encrypted and signed based on the decentralized distributed digital identity authentication policy, so that the situation that the encryption of the electronic ticket in the related art depends on a centralized third party mechanism and the risk of data leakage is high is avoided, and the technical effect of improving the security of the electronic ticket is achieved. And further, the technical problems that the encryption of the electronic bill depends on a centralized third party mechanism and the security is low in the related technology are solved.
The method comprises the steps of obtaining a target electronic bill by encrypting and signing an initial electronic bill by using a distributed digital identity authentication strategy, wherein the target electronic bill comprises a distributed platform for inquiring public keys of bill receivers from a target distributed platform, the target distributed platform comprises a distributed platform for managing target digital identity data, the target digital identity data comprises public keys of openers of any electronic bill and public keys of receivers of any electronic bill, the initial electronic bill is encrypted based on the public keys of bill receivers to obtain the encrypted initial electronic bill, and the encrypted initial electronic bill is signed based on private keys of the openers of the bills to obtain the target electronic bill.
The target distributed platform can be responsible for storing and managing DID documents (recorded with public keys), VC and other distributed identity data (corresponding to target digital identity data), and provides services such as DID inquiry, VC verification and the like. The service content provided in the embodiment can include, but is not limited to, (1) providing services such as DID registration, updating, inquiring and the like for an electronic bill issuer and a receiver (bill receiver), (2) storing and managing Verifiable Certificates (VCs), supporting operations such as issuing and verifying VCs and the like, and (3) providing implementation of encryption, signature and verification algorithms based on DID, and ensuring security of data transmission and storage.
The target digital identity data of the bill issuing party and the bill receiving party are managed by using the target distributed platform, the purpose of carrying out distributed management on the identity data of the bill issuing party and the bill receiving party is achieved, the effect of owning and controlling own digital identity under the condition of not depending on a centralized authority is achieved, an entity can disclose service endpoints such as public keys and authentication information of the entity through DID documents, and private keys are stored locally, so that safe communication and data exchange are carried out under the condition of not revealing the private keys, and the risk of data leakage is effectively reduced.
In this embodiment, the public key of the bill receiver may be queried from the target distributed platform, after the public key of the bill receiver is queried, the public key of the bill receiver may be used to encrypt the initial electronic bill, so as to ensure confidentiality of data in the transmission process, and then the initial electronic bill encrypted by the private key of the bill issuer may be used to sign, so as to obtain the target electronic bill, so as to ensure integrity and source authenticity of the data.
Optionally, the target digital identity data further comprises a plurality of target documents, wherein the public key of the issuer of any electronic bill and the public key of the receiver of any electronic bill are recorded in one target document, and the public key of the bill receiver is queried from the target distributed platform, including querying the target document associated with the bill receiver from the target distributed platform and querying the public key of the bill receiver in the target document.
In this embodiment, the public key in the DID document (corresponding to the target document) of the bill receiver is used to encrypt the electronic bill, and the private key of the bill issuer is used to sign the encrypted data, and if the public key of the bill receiver is obtained, the DID document of the bill receiver can be queried through the DID domain name of the bill receiver, so as to obtain the public key/certificate information.
Optionally, after encrypting and signing the initial electronic bill by using the distributed digital identity authentication strategy to obtain the target electronic bill, determining a transmission strategy, wherein the transmission strategy comprises a transmission strategy for transmitting the target electronic bill, uploading the target electronic bill to a target storage platform and generating an access identifier and transmitting the access identifier to a bill receiver under the condition that the transmission strategy is a storage type transmission strategy, and the target storage platform comprises at least one of a star file system and a blockchain network, wherein the access identifier is used for accessing the target electronic bill stored in the target storage platform, and transmitting the target electronic bill to the bill receiver under the condition that the transmission strategy is a point-to-point transmission strategy.
For example, the encrypted and signed electronic ticket data is transmitted from the issuer to the recipient of the electronic ticket, and alternative modes of transmission may include, but are not limited to, point-to-point transmission (corresponding to a point-to-point transmission policy), indirect transmission based on public network storage. Specifically, the method comprises the following steps:
(1) Depending on the configuration or user selection, it is decided whether to use a point-to-point transmission mode or a transmission mode based on public network storage.
(2) In the peer-to-peer transmission mode, the encrypted and signed electronic bill data (corresponding to the target electronic bill) can be directly transmitted to the bill receiver through the network.
(3) Under the transmission mode (corresponding to storage type transmission) based on public network storage, uploading the encrypted and signed electronic bill data to a target storage platform, wherein the target storage platform can be a public network storage device such as an interstellar file system, a blockchain network and the like, can also be a storage system for high-performance distributed object storage, can also be other distributed file systems, can generate a unique access identifier (for example, a hash value of the data of the target electronic bill) and send the unique access identifier to a attribution party (corresponding to a bill receiver), and can carry out distributed storage on the target electronic bill, so that the loss of the target electronic bill can be avoided.
The electronic bill is ensured to be unable to be changed once being generated by utilizing the non-tamper property of the blockchain or the distributed account book technology, so that the credibility of the data is enhanced.
In the embodiment, by adopting the distributed digital identity technology and the decentralization design, the risks of single-point failure and centralized data storage are avoided, and even if part of nodes are attacked, the whole system can still normally operate, so that the data security is greatly improved. The confidentiality, the integrity and the authenticity of the electronic bill in the transmission process are ensured by utilizing public key encryption and private key signature technology, and the data is effectively prevented from being stolen or tampered. Through the use of Verifiable Credentials (VC), the strong authentication of the user identity is realized, only legal users can participate in the issuing and receiving processes of the electronic bill, and the safety, efficiency, credibility, digital transformation, flexibility and expandability of the electronic bill generation and transmission processes are improved.
Example two
According to an embodiment of the present invention, there is provided an alternative method embodiment of a method of processing an electronic ticket, it being noted that the steps shown in the flowchart of the figures may be performed in a computer system such as a set of computer executable instructions, and that although a logical order is shown in the flowchart, in some cases the steps shown or described may be performed in an order different from that shown or described herein.
Fig. 2 is a flowchart of another alternative method for processing an electronic ticket according to an embodiment of the present invention, as shown in fig. 2, the method including the steps of:
Step S201, submitting a verifiable certificate to a bill issuing party by a bill receiving party, wherein the bill issuing party is used for verifying the validity of the verifiable certificate to obtain a verification result, generating an initial electronic bill under the condition that the verification result indicates that the verifiable certificate is valid, and encrypting and signing the initial electronic bill by using a distributed digital identity authentication strategy to obtain a target electronic bill, wherein the initial electronic bill comprises an unencrypted electronic bill.
The bill receiver can initiate a request for issuing an electronic bill to the bill issuer, and the request can carry verifiable credentials of the bill receiver.
The ticket issuer can receive the VC (verifiable certificate) submitted by the ticket receiver, inquires the DID document corresponding to the receiver from the distributed digital identity service platform, confirms and verifies the validity of the VC, if the VC passes verification, generates an initial electronic ticket of electronic ticket content according to a preset service rule, inquires the DID document of the ticket receiver through the DID domain name of the ticket receiver, acquires public key/certificate information, encrypts the initial electronic ticket by using the acquired public key of the ticket receiver, ensures confidentiality of data in a transmission process, and can digitally sign the encrypted initial electronic ticket by using the private key of the ticket issuer so as to ensure the integrity and source authenticity of the data, thereby obtaining the target electronic ticket.
Step S202, obtaining a target electronic bill, and utilizing a distributed digital identity authentication strategy to check and decrypt the target electronic bill to obtain an initial electronic bill.
The bill receiver can receive the encrypted and signed electronic bill data (i.e. the target electronic bill) from the bill issuer, decrypt and verify the signature, and ensure the authenticity and integrity of the data, so as to obtain the original electronic bill content (corresponding to the initial electronic bill).
Through the steps, in the embodiment, the original electronic bill is encrypted and signed based on the decentralised distributed digital identity authentication strategy, and the electronic bill after encryption and signature is checked and decrypted by using the decentralised distributed digital identity authentication strategy, so that the situation that encryption and decryption of the electronic bill in the related technology depend on a centralized third party mechanism and the risk of data leakage is high is avoided, and the technical effect of improving the safety of the electronic bill is realized. And further, the technical problems that encryption and decryption of the electronic bill in the related technology depend on a centralized third party mechanism and the security is low are solved.
Optionally, signing and decrypting the target electronic bill by using a distributed digital identity authentication strategy to obtain an initial electronic bill, wherein the target distributed platform comprises a platform for managing target digital identity data, the target digital identity data comprises a public key of any electronic bill opener and a public key of any electronic bill receiver, signing is carried out on the target electronic bill based on the public key of the bill opener to obtain the signed target electronic bill, and decrypting the signed target electronic bill based on the private key of the bill receiver to obtain the initial electronic bill.
In this embodiment, an encrypted and signed electronic ticket data packet (including a target electronic ticket) sent by a ticket issuer may be queried/received, then a DID document thereof may be queried by a DID domain name of the ticket issuer, a public key of the ticket issuer may be obtained for signature verification, then the public key of the ticket issuer may be used to verify the signature in the target electronic ticket, confirm that the data is not tampered and comes from a legitimate ticket issuer, and if the signature verification passes, the encrypted electronic ticket data (corresponding to the target electronic ticket after verification) may be decrypted by using a private key of the ticket issuer, so as to obtain an original electronic ticket content, thereby obtaining an initial electronic ticket.
Optionally, acquiring the target electronic bill comprises acquiring the target electronic bill from a target storage platform based on the access identifier under the condition that the bill receiver receives the access identifier, wherein the target storage platform comprises at least one of an interstellar file system and a blockchain network, and the access identifier comprises an identifier for accessing the target electronic bill in the target storage platform.
The target storage platform can include, but is not limited to, a star file system, a blockchain network and other public network storage devices, a storage system for storing high-performance distributed objects, other distributed file systems,
For example, in a case where the transmission of the target electronic ticket is based on a public network storage transmission mode (corresponding to storage type transmission), the target electronic ticket may be queried from the target storage platform according to an access identification (e.g., a hash value of the content of the target electronic ticket).
In an alternative way, in a point-to-point transmission mode of the target electronic bill, the bill receiver can directly receive the target electronic bill sent by the bill issuer.
In the embodiment, by adopting the distributed digital identity technology and the decentralization design, the risks of single-point failure and centralized data storage are avoided, and even if part of nodes are attacked, the whole system can still normally operate, so that the data security is greatly improved. The confidentiality, the integrity and the authenticity of the electronic bill in the transmission process are ensured by utilizing public key encryption and private key signature technology, and the data is effectively prevented from being stolen or tampered. Through the use of Verifiable Credentials (VC), the strong authentication of the user identity is realized, only legal users can participate in the issuing and receiving processes of the electronic bill, and the safety, efficiency, credibility, digital transformation, flexibility and expandability of the electronic bill generation and transmission processes are improved.
Example III
The third embodiment of the invention provides an optional electronic bill processing system, which can be used for executing the electronic bill processing methods provided in the first and second embodiments. Fig. 3 is a schematic diagram of an alternative electronic bill processing system according to an embodiment of the present invention, and as shown in fig. 3, the processing system mainly includes an issuer (corresponding to a bill issuer), a receiver (corresponding to a bill receiver), a storage platform (corresponding to a target storage platform), and a distributed digital identity service platform (corresponding to a target distributed platform), and is specifically as follows:
1. Electronic bill issuing:
the electronic ticket issuer (i.e., the ticket issuer) is responsible for receiving Verifiable Credentials (VC) from the electronic ticket home party (the ticket recipient), verifying their authenticity, and generating an electronic ticket therefrom. The electronic bill issuing flow is as follows:
(1) And receiving the VC submitted by the electronic bill receiver, inquiring the DID document corresponding to the bill receiver from the distributed digital identity service platform, and confirming and verifying the validity of the VC.
(2) And if the VC passes the verification, generating the electronic bill content according to the business rule.
(3) And preprocessing the generated electronic bill data to prepare for subsequent encryption and signature operation.
The electronic bill needs to be preprocessed (i.e. encrypted and signed) before being transmitted in public network, and the aim is to ensure confidentiality and integrity of electronic bill data in the process of storing and transmitting through encryption and signature.
Encrypting the electronic bill by using a public key in the DID document of the bill receiver, and signing the encrypted data by using a private key of the bill issuer, wherein the specific flow is as follows:
(1) The public key/certificate information is obtained by querying its DID document through its DID domain name (e.g., the unique identifier defined by the recipient in its DID document).
(2) And encrypting the electronic bill data by using the obtained public key to ensure confidentiality of the data in the transmission process.
(3) And carrying out digital signature on the encrypted electronic bill data by using the private key of the issuer so as to ensure the integrity and the source authenticity of the data.
2. Electronic bill transmission:
The encrypted and signed electronic bill data (corresponding to the target electronic bill) is transmitted from the bill issuing party to the receiving party of the electronic bill, and various transmission modes are selected, for example, point-to-point transmission and indirect transmission based on public network storage equipment, and the specific flow comprises the following steps:
(1) Depending on the configuration or user selection, it is decided whether to use a point-to-point transmission mode or a transmission mode based on public network storage.
(2) In the point-to-point transmission mode, the encrypted and signed electronic bill data is directly sent to a receiver through a network.
(3) In a transmission mode based on public network storage, the encrypted and signed electronic bill data is uploaded to a storage platform, for example, a star file system (IPFS), a blockchain network and other public network storage platforms, and a unique access identifier (such as a hash value) is generated and sent to a attribution party (bill receiving party).
3. And (3) verifying an electronic bill:
and the electronic bill data which is encrypted and signed from the bill issuer is received, decryption and signature verification are carried out, and the authenticity and the integrity of the data are ensured. The specific flow comprises the following steps:
(1) And the bill receiver receives the encrypted and signed electronic bill data packet sent by the bill issuer.
(2) And inquiring the DID document of the bill issuing party through the DID domain name of the bill issuing party, and acquiring public key information for signature verification.
(3) And verifying the signature by using the obtained public key to confirm that the data is not tampered and is from a legal bill issuer.
(4) And if the signature verification is passed, decrypting the encrypted electronic bill data by using the private key of the signature verification, and obtaining the original electronic bill content.
4. Distributed digital identity service platform (corresponding to the target distributed platform):
As a supporting platform of the whole system, the system can be used for storing and managing DID documents, VC and other distributed identity data and providing DID inquiry, VC verification and other core services. In the embodiment, the platform can be used for (1) providing services such as DID registration, updating, inquiring and the like for an electronic bill issuer and a receiver, (2) storing and managing Verifiable Certificates (VCs), supporting operations such as issuing, verifying and the like of the VCs, and (3) providing realization of encryption, signature and verification algorithms based on the DIDs, and ensuring the security of data transmission and storage.
Through the embodiment, the whole process of digitizing, safeguarding and high-efficiency of the electronic bill from issuing to transmitting to verifying is realized, and the problems of safety, efficiency and credibility in the electronic bill system in the related technology are effectively solved.
5. Storage platform (corresponding to target storage platform):
the electronic bill data storage service is provided, and both the bill issuing party and the bill receiving party can directly access the electronic bill data storage service. Storage systems such as IPFS anonymous file systems, blockchains, or distributed file systems may be used.
FIG. 4 is a process flow diagram of an alternative electronic ticket processing system according to an embodiment of the invention, and the process flow of the system is described below in conjunction with FIG. 4, and the specific flow is explained as follows:
(1) The electronic bill recipient (corresponding to the recipient in fig. 4) may submit an identification VC to the issuer, proving its true identity.
(2) The ticket issuer (corresponding to the issuer in fig. 4) verifies the authenticity of the VC and if so, generates an electronic ticket.
(3) The bill issuing party inquires the DID document of the bill receiving party through the DID domain name of the bill receiving party, acquires a public key/certificate, and encrypts the electronic bill by using the public key.
(4) The bill issuing party signs the encrypted electronic bill data by using the private key of the bill issuing party, so that confidentiality, integrity and authenticity of the data are ensured.
(5) The bill issuer can select a network point-to-point transmission mode to directly transmit the encrypted electronic bill data and the signature to a receiver.
(6) Or the bill issuing party stores the packaged electronic bill in a public network storage device (such as an interstellar file system and a blockchain network), generates a unique access identifier and sends the unique access identifier to the attribution party. The recipient uses the access identification (corresponding to TOKEN in fig. 4) to obtain the encrypted electronic ticket data and signature from the public network storage device.
(7) The receiver receives the packed data and decompresses it.
(8) And inquiring the DID document of the issuer through the DID domain name of the issuer, acquiring a public key/certificate, and verifying the signature.
(9) If the signature verification is passed, the attribution (namely the receiver) uses the private key of the attribution to decrypt the encrypted data, and the original data of the electronic bill is obtained.
The processing system of the electronic bill provided in the embodiment can be used for issuing and transmitting the electronic bill based on the distributed digital identity technology, and has the following advantages compared with the issuing and transmitting modes of the electronic bill in the related technology:
The method comprises the steps of (1) adopting a distributed digital identity technology and a decentralization design to avoid single-point faults and risks of centralized data storage, ensuring that the whole system can still operate normally even if part of nodes are attacked, greatly improving data security, (2) utilizing public key encryption and private key signature technology to ensure confidentiality, integrity and authenticity of electronic bills in a transmission process, effectively preventing data from being stolen or tampered, (3) realizing strong authentication of user identity through the use of Verifiable Credentials (VC), ensuring that only legal users can participate in the process of issuing and receiving the electronic bills, and (4) utilizing the block chain or the non-tamper modification of the distributed account technology to ensure that the contents of the electronic bills cannot be changed once generated, thereby enhancing the credibility of the data.
The processing system of the electronic bill provided by the embodiment has obvious advantages in the aspects of safety, efficiency, credibility, digital transformation, flexibility, expandability and the like compared with the mode of issuing and transmitting the electronic bill in the related technology.
Example IV
The fourth embodiment of the invention provides an optional electronic bill processing device, wherein each implementation unit in the processing device corresponds to each implementation step in implementation one.
Fig. 5 is a schematic diagram of an alternative electronic bill processing apparatus according to an embodiment of the present invention, as shown in fig. 5, including a first processing unit 51, a generating unit 52, and an encrypting unit 53.
The first processing unit 51 is configured to receive a verifiable certificate submitted by a bill receiver, and verify the validity of the verifiable certificate, so as to obtain a verification result.
And a generation unit 52 for generating an initial electronic ticket in case the verification result indicates that the verifiable document is valid, wherein the initial electronic ticket comprises an unencrypted electronic ticket.
The encrypting unit 53 is configured to encrypt and sign the initial electronic ticket by using a distributed digital identity authentication policy, to obtain a target electronic ticket, where the distributed digital identity authentication policy is a decentralised digital identity identification policy.
In the device processing of an electronic bill provided in the fourth embodiment of the present invention, the first processing unit 51 may receive a verifiable certificate submitted by a bill issuing party through a bill issuing party, verify the validity of the verifiable certificate to obtain a verification result, and generate an initial electronic bill through the generating unit 52 under the condition that the verification result indicates that the verifiable certificate is valid, where the initial electronic bill includes an unencrypted electronic bill, and encrypts and signs the initial electronic bill through the encrypting unit 53 by using a distributed digital identity authentication policy to obtain a target electronic bill, where the distributed digital identity authentication policy is a decentralised digital identity authentication policy, so as to solve the technical problem that encryption of the electronic bill in the related art depends on a centralized third party mechanism and has low security. In the embodiment, the original electronic bill is encrypted and signed based on the decentralized distributed digital identity authentication strategy, so that the situation that the encryption of the electronic bill in the related technology depends on a centralized third party mechanism and the risk of data leakage is high is avoided, and the technical effect of improving the safety of the electronic bill is realized.
Optionally, in the device processing of the electronic bill provided by the fourth embodiment of the invention, the encryption unit comprises a first query subunit, a signature subunit and a signature subunit, wherein the first query subunit is used for querying a public key of a bill receiver from a target distributed platform, the target distributed platform comprises a distributed platform for managing target digital identity data, the target digital identity data comprises a public key of an issuer of any electronic bill and a public key of a receiver of any electronic bill, the encryption subunit is used for encrypting an initial electronic bill based on the public key of the bill receiver to obtain the encrypted initial electronic bill, and the signature subunit is used for signing the encrypted initial electronic bill based on the private key of the bill issuer to obtain the target electronic bill.
Optionally, in the device processing of the electronic bill provided in the fourth embodiment of the present invention, the target digital identity data further includes a plurality of target documents, a public key of an issuer of any electronic bill and a public key of a receiver of any electronic bill are recorded in one of the target documents, and the querying subunit includes a processing module, configured to query, from the target distributed platform, the target document associated with the bill receiver, and query, in the target document, the public key of the bill receiver.
Optionally, in the device for processing an electronic ticket provided in the fourth embodiment of the present invention, the device for processing an electronic ticket further includes a determining unit, configured to determine a transmission policy after encrypting and signing an initial electronic ticket by using a distributed digital identity authentication policy to obtain a target electronic ticket, where the transmission policy includes a transmission policy for transmitting the target electronic ticket, and a first transmission unit, configured to upload the target electronic ticket to a target storage platform and generate an access identifier and transmit the access identifier to a ticket receiver if the transmission policy is a storage type transmission policy, where the target storage platform includes at least one of an interstellar file system and a blockchain network, the access identifier is used to access the target electronic ticket stored in the target storage platform, and a second transmission unit, configured to transmit the target electronic ticket to the ticket receiver if the transmission policy is a point-to-point transmission policy.
The processing device of the electronic bill may further include a processor and a memory, wherein the first processing unit 51, the generating unit 52, the encrypting unit 53, and the like are stored in the memory as program units, and the processor executes the program units stored in the memory to realize corresponding functions.
The processor includes a kernel, and the kernel fetches a corresponding program unit from the memory. The kernel can be provided with one or more than one, the original electronic bill is encrypted and signed based on the decentralized distributed digital identity authentication strategy by adjusting kernel parameters, the situation that the encryption of the electronic bill in the related technology depends on a centralized third party mechanism and the risk of data leakage is high is avoided, and therefore the technical effect of improving the safety of the electronic bill is achieved.
The memory may include volatile memory in a computer-readable medium, random Access Memory (RAM) and/or nonvolatile memory, such as Read Only Memory (ROM) or flash memory (flash RAM), which includes at least one memory chip.
Example five
The fifth embodiment of the invention provides another optional electronic bill processing device, and each implementation unit in the processing device corresponds to each implementation step in implementation two.
Fig. 6 is a schematic view of an alternative electronic ticket processing apparatus according to an embodiment of the present invention, as shown in fig. 6, including a submitting unit 61 and a second processing unit 62.
The submitting unit 61 is configured to submit a verifiable certificate to a bill issuer, where the bill issuer is configured to verify the validity of the verifiable certificate to obtain a verification result, generate an initial electronic bill when the verification result indicates that the verifiable certificate is valid, and encrypt and sign the initial electronic bill by using a distributed digital identity authentication policy to obtain a target electronic bill, where the initial electronic bill includes an unencrypted electronic bill;
the second processing unit 62 is configured to obtain a target electronic ticket, and perform signature verification and decryption on the target electronic ticket by using a distributed digital identity authentication policy, so as to obtain an initial electronic ticket.
In the processing device for electronic bill provided in the fifth embodiment of the present invention, the submitting unit 61 may submit the verifiable certificate to the bill issuer through the bill receiving direction, where the bill issuer is configured to verify the validity of the verifiable certificate to obtain a verification result, generate an initial electronic bill and encrypt and sign the initial electronic bill by using the distributed digital identity authentication policy to obtain a target electronic bill, where the initial electronic bill includes an unencrypted electronic bill, obtain the target electronic bill by using the second processing unit 62, and verify and decrypt the target electronic bill by using the distributed digital identity authentication policy to obtain the initial electronic bill, thereby solving the technical problem that encryption and decryption of the electronic bill in the related art depend on a centralized third party mechanism and the security is low. In this embodiment, the original electronic bill is encrypted and signed based on the decentralized distributed digital identity authentication policy, and the encrypted and signed electronic bill is checked and decrypted by using the decentralized distributed digital identity authentication policy, so that the situation that encryption and decryption of the electronic bill in the related art depend on a centralized third party mechanism and the risk of data leakage is high is avoided, and the technical effect of improving the security of the electronic bill is realized.
Optionally, in the electronic bill processing device provided in the fifth embodiment of the present invention, the second processing unit includes a second querying subunit, configured to query a public key of a bill issuer from a target distributed platform, where the target distributed platform includes a platform for managing target digital identity data, and the target digital identity data includes a public key of any electronic bill issuer and a public key of any electronic bill receiver, a verification subunit, configured to verify a target electronic bill based on the public key of the bill issuer to obtain a verified target electronic bill, and a decryption subunit, configured to decrypt the verified target electronic bill based on a private key of the bill receiver to obtain an initial electronic bill.
Optionally, in the processing device for electronic notes provided in the fifth embodiment of the present invention, the second processing unit includes an obtaining subunit, configured to obtain, when the note receiving party receives the access identifier, the target electronic note from the target storage platform based on the access identifier, where the target storage platform includes at least one of an interplanetary file system and a blockchain network, and the access identifier includes an identifier for accessing the target electronic note in the target storage platform.
The processing device of the electronic bill may further include a processor and a memory, wherein the submitting unit 61 and the second processing unit 62 and the like are stored in the memory as program units, and the processor executes the program units stored in the memory to realize corresponding functions.
The processor includes a kernel, and the kernel fetches a corresponding program unit from the memory. The kernel can be provided with one or more than one, the original electronic bill is encrypted and signed based on the decentralized distributed digital identity authentication strategy by adjusting kernel parameters, the encrypted and signed electronic bill is checked and decrypted by utilizing the decentralized distributed digital identity authentication strategy, the situation that the encryption and decryption of the electronic bill in the related technology depend on a centralized third party mechanism and the risk of data leakage is high is avoided, and therefore the technical effect of improving the safety of the electronic bill is achieved.
The memory may include volatile memory in a computer-readable medium, random Access Memory (RAM) and/or nonvolatile memory, such as Read Only Memory (ROM) or flash memory (flash RAM), which includes at least one memory chip.
According to another aspect of the embodiment of the invention, there is also provided an electronic device, including a processor, and a memory for storing executable instructions of the processor, wherein the processor is configured to execute the processing method of the electronic bill according to any one of the above through executing the executable instructions.
According to another aspect of the embodiment of the present invention, there is also provided a computer readable storage medium, in which a computer program is stored, where the computer readable storage medium is controlled to execute the method for processing an electronic ticket according to any one of the above steps when the computer program is run.
Fig. 7 is a schematic diagram of an electronic device according to an embodiment of the present invention, and as shown in fig. 7, an embodiment of the present invention provides an electronic device 70, where the electronic device includes a processor, a memory, and a program stored on the memory and executable on the processor, and the processor implements a method for processing an electronic ticket according to any of the foregoing when executing the program.
The foregoing embodiment numbers of the present invention are merely for the purpose of description, and do not represent the advantages or disadvantages of the embodiments.
In the foregoing embodiments of the present invention, the descriptions of the embodiments are emphasized, and for a portion of this disclosure that is not described in detail in this embodiment, reference is made to the related descriptions of other embodiments.
In the several embodiments provided in the present application, it should be understood that the disclosed technology may be implemented in other manners. The above-described embodiments of the apparatus are merely exemplary, and the division of the units, for example, may be a logic function division, and may be implemented in another manner, for example, a plurality of units or components may be combined or may be integrated into another system, or some features may be omitted, or not performed. Alternatively, the coupling or direct coupling or communication connection shown or discussed with each other may be through some interfaces, units or modules, or may be in electrical or other forms.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
In addition, each functional unit in the embodiments of the present invention may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The integrated units may be implemented in hardware or in software functional units.
The integrated units, if implemented in the form of software functional units and sold or used as stand-alone products, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied essentially or in part or all of the technical solution or in part in the form of a software product stored in a storage medium, including instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to perform all or part of the steps of the method according to the embodiments of the present invention. The storage medium includes a U disk, a Read-Only Memory (ROM), a random access Memory (RAM, random Access Memory), a removable hard disk, a magnetic disk, or an optical disk, etc. which can store the program code.
The foregoing is merely a preferred embodiment of the present invention and it should be noted that modifications and adaptations to those skilled in the art may be made without departing from the principles of the present invention, which are intended to be comprehended within the scope of the present invention.
Claims (10)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202510385132.9A CN120342664A (en) | 2025-03-28 | 2025-03-28 | Electronic bill processing method, device and electronic equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202510385132.9A CN120342664A (en) | 2025-03-28 | 2025-03-28 | Electronic bill processing method, device and electronic equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN120342664A true CN120342664A (en) | 2025-07-18 |
Family
ID=96368127
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202510385132.9A Pending CN120342664A (en) | 2025-03-28 | 2025-03-28 | Electronic bill processing method, device and electronic equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN120342664A (en) |
-
2025
- 2025-03-28 CN CN202510385132.9A patent/CN120342664A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108830600B (en) | Block chain-based electronic invoice system and implementation method | |
| JP7181539B2 (en) | METHOD AND APPARATUS FOR MANAGING USER IDENTIFICATION AND AUTHENTICATION DATA | |
| US7475250B2 (en) | Assignment of user certificates/private keys in token enabled public key infrastructure system | |
| KR100962399B1 (en) | Anonymous public key infrastructure provision method and service provision method using same | |
| US5745574A (en) | Security infrastructure for electronic transactions | |
| US5774552A (en) | Method and apparatus for retrieving X.509 certificates from an X.500 directory | |
| US7624269B2 (en) | Secure messaging system with derived keys | |
| US6189096B1 (en) | User authentification using a virtual private key | |
| US7206936B2 (en) | Revocation and updating of tokens in a public key infrastructure system | |
| CN101421968B (en) | Authentication system for networked computer applications | |
| CA2357792C (en) | Method and device for performing secure transactions | |
| JP2019506103A (en) | How to manage trusted identities | |
| CN109450843B (en) | A blockchain-based SSL certificate management method and system | |
| US20020073310A1 (en) | Method and system for a secure binding of a revoked X.509 certificate to its corresponding certificate revocation list | |
| CA2795745A1 (en) | Cryptographic document processing in a network | |
| JP2005502269A (en) | Method and apparatus for creating a digital certificate | |
| Hsu et al. | Intranet security framework based on short-lived certificates | |
| JP6533542B2 (en) | Secret key replication system, terminal and secret key replication method | |
| CN114079645A (en) | Method and device for registering services | |
| US20020144120A1 (en) | Method and apparatus for constructing digital certificates | |
| CN117716666A (en) | Method for providing autonomous identity cloud services to users, cloud service method, cloud server, autonomous identity method | |
| CN116318637A (en) | Method and system for secure network access communication of equipment | |
| CN120342664A (en) | Electronic bill processing method, device and electronic equipment | |
| CN119250816A (en) | Security register, transaction unit, electronic token transaction system, and search service method | |
| CN114996770A (en) | Identity recognition method based on host management system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |