JP2007281770A - Electronic document verification system and verification program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an electronic document verification system and a verification program capable of verifying an electronic signature and a time stamp at a high speed even when a size of electronic data being an application object of the electronic signature and the time stamp is increased. <P>SOLUTION: The electronic document verification system comprises a server apparatus 120 connected to a communication network 150 and a plurality of client apparatuses 100a to 100d, wherein the client apparatus receiving a verification request of the electronic signature/the time stamp from a user makes communication with the server apparatus to execute the verification of the electronic signature/the time stamp, and each client apparatus includes: a means for analyzing verification object data; a means 108 for acquiring a state of resources of the client apparatuses and the server apparatus; a means 106 for referencing optimum verification method definition information 116 to particularize an optimum verification method; and a means 110 for executing the verification of the electronic signature/the time stamp by the particularized optimum verification method. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to an electronic document verification system and a verification program, and more particularly, to an electronic document verification system and a verification program for verifying authentication information such as an electronic signature and a time stamp associated with electronic document data (electronic data).

  As part of the e-Government, the e-Document Act was enforced in April 2005, and under certain requirements, electronic data scanned from paper can be regarded as equivalent to the original. One of the requirements is a measure for ensuring the authenticity of the paper. Specifically, the measure includes the use of an electronic signature or a time stamp. With the support of such a legal system, it is expected that electronic data to which authentication information such as electronic signatures and time stamps are added will increase in the future.

  Electronic data to which an electronic signature or a time stamp is attached is meaningless if it is stored without processing, and is used and processed. At that time, it is necessary to confirm the authenticity and existence time of the electronic data guaranteed by the electronic signature or the time stamp, and for this purpose, verification of the electronic signature and the time stamp is required.

  A well-known method for verifying a digital signature and a time stamp is described in, for example, international standards such as Non-Patent Documents 1, 2, and 3. For example, in the case of a CMS-based electronic signature based on a public key infrastructure (PKI) and a time stamp using PKI technology, the verification is performed according to the following procedure.

  That is, the verification of the electronic signature is as follows. Whether the signer's public key certificate included in the electronic signature has expired? Has it expired? Has it been tampered with? 1. Confirming the validity of the public key certificate 2. a procedure for verifying the signature value of the electronic signature by using the signer's public key included in the public key certificate whose validity is confirmed, and confirming whether or not the signature is the signer's own signature; The hash value of the electronic signature target data is obtained, compared with the corresponding hash value included in the electronic signature, and the procedure for checking whether the electronic signature target data is not falsified is performed.

  The time stamp verification is as follows. Whether the time stamp authority's public key certificate included in the time stamp has expired? Has it expired? Has it been tampered with? 1. Confirming the validity of the public key certificate 2. a procedure for verifying a signature value of an electronic signature using a public key of a time stamp authority included in a public key certificate whose validity has been confirmed, and confirming whether the signature is a signature of the time stamp authority; The hash value of the time stamp target data is obtained, compared with the corresponding hash value included in the time stamp, and the three procedures of checking whether the time stamp target data has been tampered with are performed.

  When verifying electronic signatures and time stamps based on PKI technology, it is necessary to handle public key cryptography and complex PKI models, which is a relatively expensive process, that is, a process that requires a large computational capability. . In addition, when the size of data to be digitally signed or time stamped becomes large, a large memory capacity and CPU capability are required for efficient processing.

  In the future, as electronic applications become more widespread due to the progress of electronic government, large-capacity electronic data scanned from paper documents and the like will be transmitted via a communication network. At this time, the reception system side needs to verify the electronic signature and the time stamp for such large-size electronic data at high speed.

As a conventional technique related to a method for speeding up the verification as described above, for example, a technique described in Patent Document 1 is known. This prior art is intended to increase the processing speed from the viewpoint of load distribution, and in a network-based system composed of a client device and a server device, the client device and the server device distribute a plurality of processes. The process is executed efficiently. In this prior art, the load distribution module provided in the server device compares the client processing capability read from the client device with the server processing capability of the server device, and performs more processing to the higher processing capability. It is to distribute.
JP 2003-58519 A R. Housley and three others, "Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile, [online], April 2002, [Search January 20, 2006], Internet <URL: http://www.ietf.org/rfc/rfc3280.txt> R. Housley, "Cryptographic Message Syntax (CMS)", [online], July 2004, [searched January 20, 2006], Internet <URL: http://www.ietf.org/rfc/rfc3852. txt> ISO / IEC 18014-2: 2002, 2002

  However, since the conventional technique disclosed in Patent Document 1 described above does not consider the influence of the size of input data necessary for processing, it prevents performance degradation due to time required to transfer the input data over the network. Has the problem of being unable to. For example, when the network bandwidth is small, even if the client capability is low, it may be possible to perform the processing at a higher speed by performing verification on the client side.

  In addition, there is no limit on the size of electronic data that is the target of an electronic signature or time stamp, due to technical standards for the electronic signature or time stamp. In addition, the NTA Circular on Electronic Preservation of National Tax Related Documents published in accordance with the e-Document Law specifies that the data subject to time stamps is data consisting of electronic data and electronic signatures. One time stamp may be applied to all the electronic data. This indicates that it is necessary to handle electronic data of a relatively large size in time stamp verification. Under such circumstances, if the client processing capability and the server processing capability are simply compared using the above-described conventional technology, and processing is simply distributed to the higher processing capability, there is a possibility that processing cannot be performed at high speed. Will cause the problem.

  An object of the present invention is to provide an electronic document verification system capable of verifying an electronic signature and a time stamp at high speed even when the size of electronic data to which the electronic signature and the time stamp are applied increases. And providing a verification program.

  According to the present invention, the object is to provide a client device that is composed of at least one server device connected to a communication network and at least one client device, and receives a digital signature / time stamp verification request from a user. An electronic document verification system that performs communication with a server device and executes verification of an electronic signature / time stamp, wherein the client device analyzes data to be verified, a client device, and a server device Means for acquiring a resource state, means for referring to the optimum verification method definition information, specifying an optimum verification method, and means for executing verification of an electronic signature / time stamp by the identified optimum verification method Is achieved.

  The object is composed of at least one server device connected to a communication network, at least one client device, and at least one data management server device. A client device that has received a request communicates with a server device to perform electronic signature / time stamp verification, wherein the client device analyzes data to be verified; and The means for acquiring the resource status of the client device and the server device, the means for specifying the optimum verification method with reference to the optimum verification information definition information published by the data management server device, and the identified optimum verification method, And means for performing verification of the electronic signature and time stamp.

  Further, the object is that the client device, which is composed of at least one server device connected to the communication network and at least one client device and receives a request for verification of the electronic signature / time stamp from the user, is the server device. An electronic document verification program for performing verification of an electronic signature and a time stamp by performing communication with each other, the step of analyzing verification target data, and the step of acquiring the resource state of the client device and the server device This is achieved by referring to the optimum verification method definition information, specifying the optimum verification method, and performing the step of verifying the electronic signature / time stamp by the identified optimum verification method.

  Furthermore, the object is configured by at least one server device connected to a communication network, at least one client device, and at least one data management server device, and the user verifies the electronic signature and time stamp. An electronic document verification program in which a client device that has received a request communicates with a server device to perform verification of an electronic signature and a time stamp, the step of analyzing data to be verified, the client device and the server The step of acquiring the resource state of the device, the step of identifying the optimum verification method with reference to the optimum verification information definition information published by the data management server device, and the electronic signature / time by the identified optimum verification method Performing the step of verifying the stamp.

  According to the present invention, the client device can select and determine the optimum verification method according to the size of the input data to which the electronic signature and the time stamp are applied, so that the verification can be performed. Verification with the stamp can be performed at high speed.

  Embodiments of an electronic document verification system and a verification program according to the present invention will be described below in detail with reference to the drawings.

  FIG. 1 is a block diagram showing the configuration of an electronic document verification system according to the first embodiment of the present invention. In FIG. 1, 100 (100a to 100d) is a client device, 102 and 122 are request reception units, 104 is a verification simulation unit, 106 is a verification method determination processing unit, 108 is a resource monitoring unit, and 110 is signature / time stamp verification. Processing unit, 112 is verification data model information, 114 is verification type information, 116 is optimal verification method definition information, 118 is verification performance measurement information, 120 is a server device, 124 is a resource monitoring unit, and 126 is a signature / time stamp verification process , 130 is a certificate authority (CA), 132 is a time stamp authority (TSA), and 150 is a communication network.

  The electronic document verification system shown in FIG. 1 is configured by connecting a plurality of client devices 100 (100a to 100d), a server device 120, a certificate authority device 130, and a time stamp authority device 132 to a communication network 150. In FIG. 1, only one server device 120, certificate authority device 130, and time stamp authority device 132 are shown. However, a plurality of these devices may be provided, and the client device 100 Although four devices are shown, a larger number of client devices 100 may be provided or only one client device 100 may be provided.

  In the above description, the certificate authority device 130 is a device that issues a public key certificate used for an electronic signature and a time stamp and also publishes revocation information of the public key certificate necessary for verification of the public key certificate. . The time stamp station device 132 is a device that provides a time stamp service. The server apparatus 120 is an apparatus that provides the client apparatus 100 with an electronic document verification service indicating verification of an electronic signature and a time stamp. The client device 100 receives a user operation and executes verification of the electronic document. In addition, the client device 100 can request the server device 120 to perform part or all of the verification. In the client device 100, the communication address of the server device 120 that is a communication partner is registered in advance. The client device 100 and the server device 120 mutually authenticate each other using SSL (Secure Sockets Layer) and perform encrypted communication. In addition, the client device 100 and the server device 120 perform time synchronization using NTP (Network Time Protocol).

  The client apparatus 100 includes a request receiving unit 102, a verification simulating unit 104, a verification method determination processing unit 106, a resource monitoring unit 108, and a signature / time stamp verification unit 110.

  The request receiving unit 102 receives a request for verification of the electronic signature and the time stamp from the user, requests a part or all of the verification service from the server apparatus 120, and receives the verification result. The verification simulation unit 104 executes a verification method for a predetermined number of patterns in order to confirm the performance of verification of the electronic signature and the time stamp. Then, the verification simulating unit 104 stores the obtained verification performance measurement result as verification performance actual measurement information 118, and creates optimal verification method definition information 116 that defines an optimal verification method. The verification method determination process 106 determines the optimal verification method for the verification request data input by the user with reference to the verification data model information 112, the verification type information 114, and the optimal verification method definition information 116. The resource monitoring unit 108 periodically monitors resource state information such as the CPU load of the client device 100. The signature / time stamp verification processing unit 110 executes verification of the signature and the time stamp, and stores the execution result as verification performance actual measurement information 118.

  The server device 120 includes a request reception unit 122, a resource monitoring unit 124, and a signature / time stamp verification processing unit 126.

  The request reception unit 122 receives a verification request from the client device 100 and transmits a verification result executed in the server device 120 to the client device 100. The resource monitoring unit 124 periodically monitors resource state information such as the CPU load of the server device 120. Also, the signature / time stamp verification processing unit 126 executes verification of the signature and the time stamp.

  The communication network 150 uses a network realized by a communication network such as a public network, the Internet, ISDN, a dedicated line, a wired network such as a LAN, or a wireless network using a mobile communication base station or a communication artificial satellite. be able to.

  The specific processing contents of the processing units provided in the client device 100 and the server device 120 will be described later in conjunction with other drawings.

  FIG. 2 is a block diagram illustrating an example of the hardware configuration of the client device 100 and the server device 120. In FIG. 2, 200 is an internal communication line, 202 is a CPU, 204 is a RAM, 206 is an external storage device, 208 is an HSM, 210 is a communication interface, 212 is an input device, 214 is an output device, 216 is an external media interface, 218 Is a storage medium.

  The client device 100 and the server device 120 include a CPU 202 that is a central processing unit, an input device 212 such as a keyboard and a mouse, an external storage device 206 such as a hard disk, a RAM 204 that is a storage device such as a semiconductor memory, a CRT display, a liquid crystal display, and a printer. The storage device 218 such as a magneto-optical medium, the external media interface 216 for reading and writing the storage medium 218 such as a magneto-optical medium, the communication interface 210 for communication, and the storage of security information such as a secret key used for encryption processing and encryption processing are executed. An HSM 208 that is a hardware security module is connected by an internal communication line 200 such as a bus. The client device 100 and the server device 120 having such a configuration can be realized using a general-purpose personal computer. Of course, the present invention is not limited to a personal computer, and any computer (information processing apparatus) provided with an input device, an output device, and a communication device for a user can be used.

  In addition, each apparatus which comprises an electronic document verification system connects and communicates with a communication destination using the address of the other apparatus used as the communication destination other party preset in the apparatus.

  In each apparatus, addresses of a plurality of other apparatuses that provide the same function may be registered. For example, when the addresses of one or more server devices 120 are registered in one client device 100, the communication destination of the client device 100 is selected, for example, in a round robin manner.

  Each function and each processing unit of each of the above-described devices is implemented by loading each CPU 202 into a program RAM 204 stored in the external storage device 206 and executing it. In addition, each program may be stored in advance in the external storage device 206, or a storage medium 218 such as a removable FD, CD-ROM, or DVD that can be used by the apparatus as necessary, or a communication medium. The communication network 150 may be introduced from other devices via a carrier wave or digital signal propagating on the communication network 150.

  Hereinafter, specific processing contents of each processing unit of the client device 100 and the server device 120 will be described.

  FIG. 3 is a flowchart for explaining the processing operation of the electronic document verification processing in the client apparatus 100, which will be described next.

(1) When the processing starts, the client device 100 first receives an electronic document verification request from the user. The process of accepting the electronic document verification request is executed by providing the user with a GUI as will be described later with reference to FIG. 4 and allowing the user to perform a necessary operation (steps 300 and 302).

(2) Next, the client device 100 refers to the verification data model information 112 and the verification type definition information 114, and specifies the verification target data type and the verification specification of the electronic signature and time stamp. Specific examples of the verification data model information 112 and the verification type definition information 114 will be described later with reference to FIGS. Here, the size information of the electronic data to be verified is also acquired (step 304).

(3) Next, when the verification specification of the electronic signature and the time stamp is confirmed in the process of step 304, the client apparatus 100 acquires the processing load state between the client apparatus 100 and the server apparatus 120 in step 306. The processing load state is, for example, a load state of resources constituting the device such as a CPU usage rate, a memory usage rate, and a disk access load. The client device 100 makes an inquiry to the server device 120 in order to grasp the processing load state of the server device 120. As will be described later with reference to FIG. 7, this inquiry is made by transmitting resource status request data to the server device 120 and receiving resource status response data from the server device 120 (step 306).

(4) Next, the client device 100 can identify the verification method by referring to the optimal verification method definition information 116, specifying the optimal verification method depending on whether or not the optimal verification method is defined. It is determined whether or not. A specific example of the optimum verification method definition information 116 will be described later with reference to FIG. 9 (step 308).

(5) If the optimal verification method definition information 116 is not defined in the optimal verification method definition information 116 in the determination in step 308, the client device 100 cannot specify the optimal verification method, and therefore executes a verification simulation. To do. That is, the client device 100 tries all the verification types assumed in the verification target data in order. Specifically, the client apparatus 100 executes the verification contents performed by the client apparatus 100, transmits a verification simulation request to the server apparatus 120, causes the server apparatus 120 to execute verification processing, and performs a verification result as an execution result. Receive. Details of the simulation request data and the verification result data exchanged will be described later with reference to FIG. By this processing, verification of the verification target data requested by the user can be obtained simultaneously with the simulation. When executing the verification simulation, a screen indicating a character string indicating that the verification simulation is being performed may be displayed to the user operating the client device 100 (step 318).

(6) When the verification simulation in the process of step 318 is completed, the client device 100 stores the verification simulation result as verification performance actual measurement information 118. Details of the verification performance actual measurement information 118 will be described later with reference to FIG. 8 (step 320).

(7) Next, the client device 100 verifies the verification time from among the verification target data model, the electronic data size, the client CPU load, the server CPU load, and the communication time among the verification performance actual measurement information 118. The optimal verification method definition information 116 that defines the verification type having the smallest value as the optimal verification method is created or updated. Note that the electronic data size, the CPU load of the client, and the CPU load of the server being the same means, for example, that these values are included in a predetermined threshold range (step 322).

(8) Next, the client apparatus 100 creates a verification result, presents the verification result to the user who operates the client apparatus 100, and ends the process when the optimal verification method definition information is not defined. (Step 316).

(9) If the optimal verification method definition information is defined in the optimal verification method definition information 116 in the determination in step 308, the client apparatus 100 selects the optimal verification type from the optimal verification method definition information and performs verification. Execute. Specifically, the client device 100 executes the verification content performed by the client device 100 and transmits a verification request including the verification content performed by the server device 120 to the server device 120 to cause the server device 120 to execute verification processing. The verification result that is the execution result is received. Details of the simulation request data and the verification result data exchanged will be described later with reference to FIG. 7 (step 312).

(10) After that, the client apparatus 100 stores the verification performance actual measurement value as the verification performance actual measurement information 114, creates a verification result, and presents the verification result to the user who operates the client apparatus 100, and performs the optimal verification. The process when the method definition information is defined is terminated (steps 314 and 316).

  Note that the client device 100 may periodically inspect the verification performance actual measurement information 114 and execute a verification simulation again when a certain condition is met. For example, when the difference between the verification time assumed by the verification type adopted as the optimal verification method and the actual verification time exceeds a certain threshold, the client CPU load, server CPU load, and electronic data size conditions in the actual measurement value A verification simulation may be executed below to update the optimal verification method definition information.

  FIG. 4 is a view showing an example of a GUI screen provided to the user in the process of accepting the electronic document verification request in the process of step 302. The field 402, field 406, and field 410 in the screen example 400 shown in FIG. 4 display the electronic data file name, electronic signature file name, and time stamp file name selected by the user, respectively. A button 404, a button 408, and a button 412 are buttons for calling functions for referring to the electronic data file, the electronic signature file, and the time stamp file from the file system, respectively. A field 414 is a list for selecting an electronic document model indicating an electronic signature and time stamp specifications for the electronic data. A button 416 is a button for starting execution of the electronic signature / time stamp verification process.

  FIG. 5 is a diagram illustrating an example of a data table indicating the verification data model information 112. The data table indicating the verification data model information 112 shown in FIG. 5 shows a digital signature and time stamp verification model defined for each verification target data model. The electronic document model specified by the user indicates the data model to be verified in the table field 502. For example, if the data model to be verified is doc1, the signature PKI model indicated by the table field 504 is a bridge type CA (certificate authority) model called GPKI (government certification infrastructure). The signature format model in the table field 506 indicates CMS (Cryptographic Message Syntax) indicated in the RFC3852 standard, and the signature target model in the table field 508 indicates the entire PDF data described in ISO 19005-1. Further, the time stamp format model in the table field 510 and the time stamp target model in the table field 512 are respectively compliant with the RFC 3161 standard and the National Tax Agency notification indicating the requirements for time stamp granting related to electronic storage of national tax related documents. It is shown that.

  FIG. 6 is a diagram illustrating an example of a data table indicating the verification type information 114. The data table indicating the verification type information 114 illustrated in FIG. 6 is a definition of the verification type in the verification target data model. The verification type defines a combination of whether or not a verification item that is a verification component of an electronic signature and a time stamp is executed by a client device or a server device. All possible combinations are defined as verification types. For example, in the table row 650, a verification type v1 of doc1 is defined as a verification target model. Table fields 606 to 618 define that these verification items are executed by the server apparatus. Specific verification items include, for example, verification of the signer's public key certificate validity (verification item 1), verification of the signer's signature value (verification item 2), and verification of the correspondence between the signature target data and the signature data ( Verification item 3), validity of public key certificate of time stamp authority (verification item 4), verification of signature value of time stamp (verification item 5), verification of correspondence between time stamp target data and time stamp (validation item 6) ), Time stamp token verification using a time stamp station (verification item 7), and the like.

  The verification items may differ depending on the verification target data model. For example, the verification target data model doc2 of the table row 652 is a time stamp method that is unique to the PKI technology because of the MAC method of ISO / IEC 18014-2 that does not use the PKI technology, as can be seen from FIG. The verification of the public key certificate of the station (verification item 4) and the verification of the signature value of the time stamp (verification item 5) are undefined.

  FIG. 7 is a diagram illustrating a configuration example of a transmission / reception message exchanged between the client device 100 and the server device 120.

  FIG. 7A shows resource status request data 700 for inquiring about the processing load status of the server in the processing of the step of FIG. 3, and this resource status request data 700 includes a field 702 indicating the type of data, A time 704 at which the client apparatus 100 transmits a request is stored. FIG. 7B shows resource status response data 710 returned from the server device 120 in response to the inquiry. The resource status response data 710 includes a field 712 indicating the type of data, and the server device 120 has resource status request data. 714, the time 716 when the server device 120 transmitted the resource status response data, the time when the server device received the resource status request data, or the CPU of the server device with an average time width around that time A load state 718 is stored. The CPU load state 718 can include not only the CPU load state but also various resource load states as described above. By such an inquiry, the client device 100 can know information on resource loads including the CPU load of the server device 120 and the processing time in the server device. Also, the communication time between the client device 100 and the server device 120 can be estimated.

  FIG. 7C shows verification request data 720 transmitted from the client apparatus 100 to the server apparatus 120 in the process of step 312 of FIG. The verification request data 720 stores a field 722 indicating a verification request identifier and a field 724 indicating verification target data. The verification target data here is input data necessary for verification items to be executed by the server device 120. For example, if the verification target data model is doc1 and the verification item to be executed by the server device 120 is only the public key certificate, only the public key certificate is stored in the verification target data field 724. If the verification target data model is doc1 and all of the verification items to be executed by the server apparatus 120, data including electronic data, electronic signature data, and time stamp data is stored. Further, the verification request data 720 transmitted from the client device 100 stores a field 726 indicating the time when the client device 100 transmits the request.

  When the server apparatus 120 finishes executing the verification, the server apparatus 120 transmits verification response data 730 as illustrated in FIG. 7D to the client apparatus 100 as a verification result. The verification response data 730 includes a data type, that is, a field 732 indicating the verification response identifier, a field 734 indicating the verification result data, a field 736 indicating the time when the server apparatus 120 received the verification request data, and the server apparatus 120 receiving the verification response. A field 738 indicating a data transmission time and a field 740 indicating the load state of the server CPU having an average time width centered on the time point when the server apparatus 120 receives the verification simulation request or the time point is stored.

  FIG. 7E shows verification simulation request data 750 transmitted from the client apparatus 100 to the server apparatus 120 in the process of step 318 in FIG. The verification simulation request data 750 stores a field 752 indicating a simulation identifier and a field 754 indicating verification target data. The verification target data here is input data necessary for verification items to be executed by the server device 120. For example, if the verification target data model is doc1 and the verification item to be executed by the server device 120 is only the public key certificate, only the public key certificate is stored in the verification target data field 754. If the verification target data model is doc1 and all of the verification items to be executed by the server apparatus 120, data including electronic data, electronic signature data, and time stamp data is stored. At this time, when several verification types are executed, the resource load (for example, CPU load) of the client device 100 and the server device 120 is executed under the same condition.

  The verification simulation request data 750 transmitted from the client device 100 stores a field 756 indicating the time when the client device 100 transmits a request and a field 758 indicating the server load state to be maintained by the server device 120. The server device 120 reads the value in the field 758 and executes the verification process while keeping the load state of the server CPU in the designated state. Similarly, during execution of the verification simulation, the client apparatus 100 also executes the verification process while keeping the load state of the client CPU specified. As a method of keeping the load state of the CPU at a predetermined load state, for example, a method of not accepting other processing or generating a dummy processing may be used.

  Each time the execution of one verification type is completed, the server apparatus 120 transmits a verification simulation response 760 as illustrated in FIG. 7F to the client apparatus 100 as a verification result. The verification simulation response data 760 includes a field 762 indicating the type of data, a field 764 indicating the verification result data, a field 766 indicating the time when the server apparatus 120 receives the verification simulation request data, and the server apparatus 120 transmits the verification simulation response data. And a field 770 indicating the load state of the server CPU having an average time width centered on the time point when the server apparatus 120 receives the verification simulation request or the time point.

  FIG. 8 is a diagram showing an example of a data table showing an example of verification performance actual measurement information. In the example of the verification performance actual measurement information 118 shown in FIG. 8, a table field 802 and a table field 804 indicate a verification target data model and a verification type, respectively. A table field 806 indicates the size of the electronic data to be verified, and the table field 808 and the table field 810 indicate the CPU load of the client device 100 and the server device 120. Information related to the verification performance is described in table fields 812, 814, 816, and 818. The round trip communication time between the client device 100 and the server device 120, the verification time of the electronic signature and the time stamp (client), respectively. The communication time is included in the longer one of the verification time in the device 100 and the verification time in the server device 120), the verification time in the client device 100, and the verification time in the server device 120.

  FIG. 9 is a diagram showing an example of a data table showing an example of the optimum verification method definition information 116. In the example of the optimum verification method definition information 116 illustrated in FIG. 9, the table field 902 indicates a verification target model, and the table field 904 indicates an assumed communication time (unit: second) between the client device 100 and the server device 120. ). The table fields 906 to 910 are parameter conditions for determining the optimum verification method. For example, the verification data size 906 indicates the condition of the size (unit: bytes) of the electronic data to be verified, and the client CPU load 908 and the server CPU load 910 are respectively the CPU load (unit:%) of the client device 100. ) And CPU load (unit:%) conditions of the server apparatus 120. A table field 912 indicates an optimal verification type when these conditions are met, and a table field 914 indicates an estimation of a verification time (unit: seconds) based on an actual measurement value. In the example of FIG. 9, the communication time condition, the verification data size condition, the client CPU condition, and the server CPU condition are shown as range conditions. For example, in the processing of steps 320 and 322 in FIG. 3, these values obtained from the verification performance record information 118 can be regarded as the upper limit of the range condition.

  FIG. 10 is a block diagram showing a configuration of an electronic document verification system according to the second embodiment of the present invention. In FIG. 10, 1020 is a data management server, 1022 is optimum verification method definition information, and other symbols are the same as those in FIG.

  The electronic document verification system according to the second embodiment of the present invention shown in FIG. 10 newly connects the data management server device 1020 to the network 150 in contrast to the first embodiment of the present invention shown in FIG. Configured. The data management server 1020 stores optimum verification method definition information 1022. Further, the client device 100 does not include a verification simulation unit. One client device 100 shown in FIG. 10 periodically transmits the optimum verification method definition information 116 to the data management server device 1020. The data management server apparatus 1020 stores the received optimum verification method definition information 116 as optimum verification method definition information 1022 and allows any client apparatus 100 connected to the network 150 to browse. By doing in this way, the client apparatus 100 does not need to be provided with a verification simulation part and optimal verification method definition information.

It is a block diagram which shows the structure of the electronic document verification system by the 1st Embodiment of this invention. It is a block diagram which shows the example of the hardware constitutions of a client apparatus and a server apparatus. It is a flowchart explaining the processing operation | movement of the verification process of the electronic document in a client apparatus. FIG. 4 is a diagram illustrating an example of a GUI screen provided to a user in a process of receiving an electronic document verification request in the process of step 302 of FIG. 3. It is a figure which shows the example of the data table which shows verification data model information. It is a figure which shows the example of the data table which shows verification type information. It is a figure which shows the structural example of the transmission / reception message exchanged between a client apparatus and a server apparatus. It is a figure which shows the example of the data table which shows the example of verification performance measurement information. It is a figure which shows the example of the data table which shows the example of optimal verification method definition information. It is a block diagram which shows the structure of the electronic document verification system by the 2nd Embodiment of this invention.

Explanation of symbols

100 (100a to 100d) Client device 102, 122 Request reception unit 104 Verification simulation unit 106 Verification method determination processing unit 108 Resource monitoring unit 110 Signature / time stamp verification processing unit 112 Verification data model information 114 Verification type information 116, 1022 Optimal Verification method definition information 118 Verification performance measurement information 120 Server device 124 Resource monitoring unit 126 Signature / time stamp verification processing unit 130 Certificate Authority device (CA)
132 Time Stamp Authority (TSA)
150 Communication Network 200 Internal Communication Line 202 CPU
204 RAM
206 External storage device 208 HSM
210 Communication Interface 212 Input Device 214 Output Device 216 External Media Interface 218 Storage Medium 1020 Data Management Server

Claims (14)

The client device, which is composed of at least one server device connected to the communication network and at least one client device, receives a digital signature / time stamp verification request from a user, and communicates with the server device. An electronic document verification system for performing electronic signature / time stamp verification
The client device includes means for analyzing data to be verified, means for acquiring resource states of the client device and the server device, and means for specifying an optimal verification method by referring to optimal verification method definition information. An electronic document verification system characterized by   When the means for specifying the optimal verification method cannot specify the optimal verification method, a verification simulation is executed between the client device and the server device, and the optimal verification method is determined from the result of the verification simulation. The electronic document verification system according to claim 1, wherein the electronic document verification system is defined. The client device, which is composed of at least one server device connected to the communication network and at least one client device, receives a digital signature / time stamp verification request from a user, and communicates with the server device. An electronic document verification system for performing electronic signature / time stamp verification
The client device has identified means for analyzing data to be verified, means for acquiring resource states of the client device and the server device, means for identifying an optimum verification method by referring to optimum verification method definition information, and An electronic document verification system comprising: means for performing verification of an electronic signature / time stamp by an optimal verification method.   The optimal verification method definition information is information that defines whether a client device or a server device executes individual verification items that are components of verification contents of an electronic signature / time stamp. Item 9. The electronic document verification system according to Item 1.   2. The electronic document verification system according to claim 1, wherein the means for analyzing the verification target data acquires the size of the electronic data to be verified when the verification target data is analyzed.   The means for analyzing data to be verified specifies a PKI model of an electronic signature and a time stamp, a format model, and a data model to which the electronic signature and the time stamp are applied when analyzing the data to be verified. The electronic document verification system according to claim 1.   The electronic document verification system according to claim 1, wherein the resource information acquired by the client device is load information of resources constituting each of the client device and the server device.   3. The electronic document verification system according to claim 2, wherein the verification simulation executes all combinations of verification items performed by the client device and the server device.   The optimal verification method definition information includes a verification target data model, a communication time, a verification target electronic data size condition, a client resource load information condition, and a server resource load information condition. The electronic document verification system described. A client device comprising at least one server device connected to a communication network, at least one client device, and at least one data management server device, and accepting an electronic signature / time stamp verification request from a user Is an electronic document verification system that performs communication with a server device and performs verification of an electronic signature and a time stamp,
The client device refers to the means for analyzing the verification target data, the means for acquiring the resource status of the client device and the server device, and the optimum verification information definition information published by the data management server device. An electronic document verification system comprising: means for specifying; and means for executing verification of an electronic signature and a time stamp by the specified optimal verification method. The client device, which is composed of at least one server device connected to the communication network and at least one client device, receives a digital signature / time stamp verification request from a user, and communicates with the server device. An electronic document verification program that performs electronic signature and time stamp verification,
A step of analyzing data to be verified, a step of acquiring resource states of the client device and the server device, and a step of specifying an optimal verification method by referring to the optimal verification method definition information. Electronic document verification program.   In the step of specifying the optimal verification method, if the optimal verification method cannot be specified, a step of executing a verification simulation between the client device and the server device, and an optimal verification from the result of the verification simulation 12. The electronic document verification program according to claim 11, wherein the step of defining a method is executed. The client device, which is composed of at least one server device connected to the communication network and at least one client device, receives a digital signature / time stamp verification request from a user, and communicates with the server device. An electronic document verification program that performs electronic signature and time stamp verification,
A step of analyzing data to be verified, a step of acquiring resource states of the client device and the server device, a step of identifying an optimal verification method by referring to the optimal verification method definition information, and a specified optimal verification method And a step of verifying an electronic signature and a time stamp. A client device comprising at least one server device connected to a communication network, at least one client device, and at least one data management server device, and accepting an electronic signature / time stamp verification request from a user Is an electronic document verification program that performs communication with a server device and executes verification of an electronic signature and a time stamp,
A step of analyzing data to be verified, a step of acquiring resource states of the client device and the server device, a step of specifying an optimal verification method with reference to optimal verification information definition information published by the data management server device, and And a step of verifying an electronic signature and a time stamp by the identified optimal verification method.

Images