[go: up one dir, main page]

TWI690192B - System and method for providing signature objects in order to produce signature documents in order - Google Patents

System and method for providing signature objects in order to produce signature documents in order Download PDF

Info

Publication number
TWI690192B
TWI690192B TW108101522A TW108101522A TWI690192B TW I690192 B TWI690192 B TW I690192B TW 108101522 A TW108101522 A TW 108101522A TW 108101522 A TW108101522 A TW 108101522A TW I690192 B TWI690192 B TW I690192B
Authority
TW
Taiwan
Prior art keywords
signature
document
server
file
signing
Prior art date
Application number
TW108101522A
Other languages
Chinese (zh)
Other versions
TW202029691A (en
Inventor
王國河
鍾紀嵐
連子清
Original Assignee
臺灣網路認證股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 臺灣網路認證股份有限公司 filed Critical 臺灣網路認證股份有限公司
Priority to TW108101522A priority Critical patent/TWI690192B/en
Application granted granted Critical
Publication of TWI690192B publication Critical patent/TWI690192B/en
Publication of TW202029691A publication Critical patent/TW202029691A/en

Links

Images

Landscapes

  • Storage Device Security (AREA)

Abstract

A system for providing signature entities to sign an electronic document in order for generating a signed document and a method thereof are provided. By defining a signature sequence based on a category of an original document and generating a target document included the original document and the signature sequence by a document server, providing signature entities to sign the target document according to the order on the signature sequence for generating a signed document by a signature server, and transmitting the signed document from the signature server to at least one of the signature entities, the system and the method can make sure electronic document will not be replaced, and can achieve the effect of stamping in electronic document.

Description

依順序提供簽章對象簽章以產生簽章文件之系統及方法System and method for providing signature objects in order to produce signature documents in order

一種文件簽章系統及其方法,特別係指一種依順序提供簽章對象簽章以產生簽章文件之系統及方法。A document signature system and method, in particular, a system and method for providing signature objects in order to produce signature documents in sequence.

由於保存列印於紙本上的文件需要合適的環境,否則紙本容易遭到汙損,而除了環境的因素之外,紙本文件也需要空間來保存,因此,紙本文件的保存需要一定的成本。The preservation of documents printed on paper requires a suitable environment, otherwise the paper is susceptible to contamination, and in addition to environmental factors, paper documents also require space to be saved, so the preservation of paper documents needs certain the cost of.

而隨著資訊處理技術與通信技術的快速發展,由於電子文件不容易因為環境因素而遭到破壞,且幾乎不需要保存空間,這造成紙本文件逐漸轉變為電子文件的趨勢。不過,相對的,電子文件比紙本文件容易被竊取、篡改、或偽造,也就是說電子文件的安全性也較紙本文件來得低。With the rapid development of information processing technology and communication technology, electronic files are not easy to be damaged due to environmental factors, and almost no storage space is required, which results in the trend of paper files gradually becoming electronic files. However, in contrast, electronic documents are easier to steal, tamper with, or forge than paper documents, which means that electronic documents are also less secure than paper documents.

也因此,目前對於竊取電子文件的防範,可藉由加解密技術將電子文件加密而確保電子文件的安全性,而對於偽造或篡改電子文件的防範,則可利用數位簽章技術而保證電子文件的正確性。Therefore, at present, for the prevention of theft of electronic files, encryption and decryption technology can be used to encrypt electronic files to ensure the security of electronic files, and for the prevention of forgery or tampering of electronic files, digital signature technology can be used to ensure electronic files Correctness.

不過,在某些情況下,電子文件可能在被簽章之前就已被替換,例如使用者操作客戶端連線到電子文件提供者所提供之伺服器時,由於使用者可能無法以肉眼確認進行簽章作業之電子文件的內容,因此,有心人士可以讓使用者所瀏覽的文件內容與被簽章之電子文件的內容有所出入,造成使用者的損失。However, in some cases, the electronic document may have been replaced before being signed. For example, when the user operates the client to connect to the server provided by the electronic document provider, the user may not be able to confirm the process with the naked eye. The content of the electronic file of the signature operation, therefore, the intentional person can allow the content of the file viewed by the user to be different from the content of the electronic file being signed, causing loss to the user.

綜上所述,可知先前技術中長期以來一直存在電子文件可能在簽章前就被替換的問題,因此有必要提出改進的技術手段,來解決此一問題。In summary, it can be seen that in the prior art, there has been a long-standing problem that electronic files may be replaced before the signature, so it is necessary to propose improved technical means to solve this problem.

有鑒於先前技術存在電子文件可能在簽章前就被替換的問題,本發明遂揭露一種依順序提供簽章對象簽章以產生簽章文件之系統及方法,其中:In view of the problem that the electronic file may be replaced before the signature in the prior art, the present invention discloses a system and method for sequentially providing the signature object signature to generate the signature file, in which:

本發明所揭露之依順序提供簽章對象簽章以產生簽章文件之系統,至少包含:客戶端,用以提供內容參數;文件主機,用以取得原始文件,並依據原始文件之類別定義簽章順序,及用以產生包含簽章順序及原始文件之目標文件,並產生與目標文件對應之文件識別資料,其中,原始文件包含內容參數;簽章伺服器,用以接收文件主機所傳送之目標文件及文件識別資料,及用以依據簽章順序依序提供多個簽章對象對電子文件簽章以產生簽章文件,並傳送簽章文件至客戶端,其中,簽章對象包含客戶端及簽章伺服器,簽章文件包含簽章對象所產生之記載文件識別資料之可視化資料,且簽章順序所表示之第一個簽章對象對電子文件簽章時,電子文件為目標文件,簽章順序所表示之非第一個簽章對象對電子文件簽章時,電子文件為簽章順序所表示之前一個簽章對象進行簽章後所產生之作業文件;存查伺服器,用以接收並儲存簽章伺服器所傳送之簽章文件。The system disclosed in the present invention for providing signature objects in order to produce signature files in sequence includes at least: a client for providing content parameters; a file host for obtaining original documents and defining signatures according to the category of the original documents Chapter sequence, and used to generate the target document including the signature sequence and the original document, and generate document identification data corresponding to the target document, where the original document contains content parameters; the signature server is used to receive the document host Target document and document identification data, and used to provide multiple signature objects in sequence according to the signature sequence to sign the electronic file to generate a signature file, and send the signature file to the client, where the signature object includes the client And the signing server, the signing document contains the visual data of the document identification data generated by the signing object, and the first signing object indicated in the signing order signs the electronic document, the electronic document is the target document, When the non-first signing object indicated in the signing order signs the electronic document, the electronic file is the operation document generated after the signing order indicates the signing order before the signing object; the checking server is used to receive And save the signature document sent by the signature server.

本發明所揭露之依順序提供簽章對象簽章以產生簽章文件之方法,其步驟至少包括:文件主機取得原始文件,原始文件包含客戶端所提供之內容參數;文件主機依據原始文件之類別定義簽章順序;文件主機產生包含簽章順序及原始文件之目標文件,並產生與目標文件對應之文件識別資料,及傳送目標文件及文件識別資料至簽章伺服器;簽章伺服器依據簽章順序依序提供多個簽章對象對電子文件簽章以產生簽章文件,其中,簽章對象包含至少一個客戶端及簽章伺服器,簽章文件包含簽章對象所產生之記載文件識別資料之可視化資料,且簽章順序所表示之第一個簽章對象對電子文件簽章時,電子文件為目標文件,簽章順序所表示之非第一個簽章對象對電子文件簽章時,電子文件為簽章順序所表示之前一個簽章對象進行簽章後所產生之作業文件;簽章伺服器傳送簽章文件至存查伺服器儲存,並傳送簽章文件至客戶端。The method disclosed in the present invention for providing signature object signatures in sequence to generate signature files, the steps at least include: the file host obtains the original file, the original file contains the content parameters provided by the client; the file host depends on the type of the original file Define the signature sequence; the document host generates a target document containing the signature sequence and the original document, and generates document identification data corresponding to the target document, and sends the target document and document identification data to the signature server; the signature server is based on the signature Chapter order provides multiple signature objects to sign electronic documents to generate signature files. The signature object includes at least one client and signature server, and the signature file includes the identification of the document generated by the signature object When data is visualized, and the first signing object indicated in the signing order signs the electronic file, the electronic file is the target file, and the signing order indicates that the non-first signing object signs the electronic file. , The electronic document is the operation document generated after the previous signing object indicates the signature in the order of signature; the signature server sends the signature document to the storage server for storage, and sends the signature document to the client.

本發明所揭露之系統與方法如上,與先前技術之間的差異在於本發明透過文件主機依據所取得之原始文件的類別定義簽章順序並產生包含原始文件與簽章順序的目標文件,簽章伺服器依據簽章順序依序將包含目標文件的電子文件提供給簽章對象簽章以產生簽章文件後,將簽章文件傳送給簽章對象的使用者或擁有者保存,藉以解決先前技術所存在的問題,並可以達成在電子文件中提供近似印鑑的技術功效。The system and method disclosed by the present invention are as above, and the difference between the present technology and the prior art is that the present invention defines the signature order according to the category of the original document obtained by the document host and generates a target document including the original document and the signature order. The server sequentially provides the electronic file containing the target document to the signature object for signature in accordance with the signature sequence to generate the signature document, and then sends the signature document to the user or owner of the signature object for storage to solve the prior art The existing problems can achieve the technical effect of providing approximate seals in electronic files.

以下將配合圖式及實施例來詳細說明本發明之特徵與實施方式,內容足以使任何熟習相關技藝者能夠輕易地充分理解本發明解決技術問題所應用的技術手段並據以實施,藉此實現本發明可達成的功效。The following will describe the features and implementations of the present invention in detail with reference to the drawings and examples. The content is sufficient for any person skilled in the relevant arts to easily fully understand and implement the technical means applied to solve the technical problems of the present invention and implement accordingly, thereby realizing The achievable effect of the invention.

本發明可以由簽章伺服器控制待簽章之電子文件依據簽章順序在簽章對象之間傳遞,並限制只能由特定的計算設備或應用程式才能對電子文件簽章,藉以確保待簽章之電子文件不會被計算設備或應用程式的使用者修改,同時保證待簽章之電子文件不會被文件提供者替換。另外,本發明也可以提供客戶端確認所持有之簽章文件中的文件內容是否與原件內容相符。The invention can control the electronic document to be signed to be transferred between the signing objects according to the order of signing by the signing server, and restricts that the electronic document can only be signed by a specific computing device or application to ensure the signing The electronic documents of the chapter will not be modified by users of the computing device or application, and at the same time, the electronic documents to be signed will not be replaced by the document provider. In addition, the present invention can also provide a client to confirm whether the content of the file in the signed signature file matches the original content.

本發明所提之簽章順序可以記錄簽章對象的先後次序,其中,簽章對象為需要對電子文件簽章的計算設備及/或應用程式,且簽章對象是以相對應的對象識別資料表示。The signing sequence mentioned in the present invention can record the order of signing objects, where the signing objects are computing devices and/or applications that need to sign electronic files, and the signing objects are corresponding object identification data Said.

本發明所提之計算設備包含但不限於一個或多個處理器、一個或多個記憶體模組、以及連接不同元件(包括記憶體模組和處理器)的匯流排等元件。透過所包含之多個元件,計算設備可以載入並執行作業系統,使作業系統在計算設備上運行。例如:個人電腦、筆記型電腦、手機、平板、智慧手錶、導航裝置、數位相機、電視、投影機、電子書閱讀器、多媒體撥放器、電視遊樂器、電子字典、車用電腦等,但本發明並不以此為限。The computing device mentioned in the present invention includes but is not limited to one or more processors, one or more memory modules, and a bus that connects different components (including memory modules and processors). Through the included multiple components, the computing device can load and execute the operating system, so that the operating system runs on the computing device. For example: personal computers, notebook computers, mobile phones, tablets, smart watches, navigation devices, digital cameras, TVs, projectors, e-book readers, multimedia players, TV games, electronic dictionaries, car computers, etc., but The invention is not limited to this.

本發明所提之計算設備的匯流排可以包含一種或多個類型,例如包含資料匯流排(data bus)、位址匯流排(address bus)、控制匯流排(control bus)、擴充功能匯流排(expansion bus)、及/或局域匯流排(local bus)等類型的匯流排。計算設備的匯流排包括但不限於並列的工業標準架構(ISA)匯流排、周邊元件互連(PCI)匯流排、視頻電子標準協會(VESA)局域匯流排、以及串列的通用序列匯流排(USB)、快速周邊元件互連(PCI-E)匯流排等。The bus of the computing device mentioned in the present invention may include one or more types, for example, including a data bus, an address bus, a control bus, and an extended function bus ( Expansion bus), and/or local bus (local bus) and other types of bus. Computing equipment buses include but are not limited to parallel industrial standard architecture (ISA) buses, peripheral component interconnect (PCI) buses, video electronics standards association (VESA) local buses, and serial universal serial buses (USB), fast peripheral component interconnect (PCI-E) bus, etc.

本發明所提之計算設備的處理器與匯流排耦接。處理器包含暫存器(Register)組或暫存器空間,暫存器組或暫存器空間可以完全的被設置在處理晶片上,或全部或部分被設置在處理晶片外並經由專用電氣連接及/或經由匯流排耦接至處理器。處理器可為處理單元、微處理器或任何合適的處理元件。若計算設備為多處理器設備,也就是計算設備包含多個處理器,則計算設備所包含的處理器都相同或類似,且透過匯流排耦接與通訊。The processor of the computing device mentioned in the present invention is coupled to the bus. The processor includes a register group or register space. The register group or register space can be completely set on the processing wafer, or all or part of it can be set outside the processing wafer and connected via a dedicated electrical connection. And/or coupled to the processor via a bus. The processor may be a processing unit, a microprocessor, or any suitable processing element. If the computing device is a multi-processor device, that is, the computing device includes multiple processors, the processors included in the computing device are all the same or similar, and are coupled and communicated through the bus.

計算設備的處理器可以與晶片組耦接或透過匯流排與晶片組電性連接。晶片組是由一個或多個積體電路(IC)組成,包含記憶體控制器以及周邊輸出入(I/O)控制器,也就是說,記憶體控制器以及周邊輸出入控制器可以包含在一個積體電路內,也可以使用兩個或更多的積體電路實現。晶片組通常提供了輸出入和記憶體管理功能、以及提供多個通用及/或專用暫存器、計時器等,其中,上述之通用及/或專用暫存器與計時器可以讓耦接或電性連接至晶片組的一個或多個處理器存取或使用。The processor of the computing device may be coupled to the chipset or electrically connected to the chipset through the bus. The chipset is composed of one or more integrated circuits (ICs), including a memory controller and peripheral I/O controller, that is, the memory controller and peripheral I/O controller can be included in Within an integrated circuit, two or more integrated circuits can also be used. The chipset usually provides I/O and memory management functions, and provides multiple general-purpose and/or dedicated registers, timers, etc. Among them, the above-mentioned general-purpose and/or dedicated registers and timers can be coupled or One or more processors electrically connected to the chipset are accessed or used.

計算設備的處理器也可以透過記憶體控制器存取安裝於計算設備上的記憶體模組和大容量儲存區中的資料。上述之記憶體模組包含任何類型的揮發性記憶體(volatile memory)及/或非揮發性(non-volatile memory, NVRAM)記憶體,例如靜態隨機存取記憶體(SRAM)、動態隨機存取記憶體(DRAM)、快閃記憶體(Flash)、唯讀記憶體(ROM)等。上述之大容量儲存區可以包含任何類型的儲存裝置或儲存媒體,例如,硬碟機、光碟、磁帶機、隨身碟(快閃記憶體)、固態硬碟(Solid State Disk, SSD)、或任何其他儲存裝置等。也就是說,記憶體控制器可以存取靜態隨機存取記憶體、動態隨機存取記憶體、快閃記憶體、硬碟機、固態硬碟中的資料。The processor of the computing device can also access the data in the memory module and the mass storage area installed on the computing device through the memory controller. The above memory module includes any type of volatile memory (volatile memory) and/or non-volatile (non-volatile memory, NVRAM) memory, such as static random access memory (SRAM), dynamic random access Memory (DRAM), flash memory (Flash), read-only memory (ROM), etc. The above-mentioned mass storage area may include any type of storage device or storage medium, for example, hard disk drive, optical disc, tape drive, flash drive (flash memory), solid state drive (Solid State Disk, SSD), or any Other storage devices, etc. In other words, the memory controller can access data in static random access memory, dynamic random access memory, flash memory, hard drives, and solid state drives.

計算設備的處理器也可以透過周邊輸出入控制器經由周邊輸出入匯流排與周邊輸出裝置、周邊輸入裝置、通訊介面、以及GPS接收器等周邊裝置或介面通訊。周邊輸入裝置可以是任何類型的輸入裝置,例如鍵盤、滑鼠、軌跡球、觸控板、搖桿等,周邊輸出裝置可以是任何類型的輸出裝置,例如顯示器、印表機等,周邊輸入裝置與周邊輸出裝置也可以是同一裝置,例如觸控螢幕等。通訊介面可以包含無線通訊介面及/或有線通訊介面,無線通訊介面可以包含支援Wi-Fi、Zigbee等無線區域網路、藍牙、紅外線、近場通訊(NFC)、3G/4G/5G等行動通訊網路或其他無線資料傳輸協定的介面,有線通訊介面可為乙太網路設備、非同步傳輸模式(ATM)設備、DSL數據機、纜線(Cable)數據機等。處理器可以週期性地輪詢(polling)各種周邊裝置與介面,使得計算設備能夠進行資料的輸入與輸出,也能夠與具有上述描述之元件的另一個計算設備進行通訊。The processor of the computing device can also communicate with peripheral devices such as peripheral output devices, peripheral input devices, communication interfaces, and GPS receivers through peripheral I/O busses through peripheral I/O controllers. The peripheral input device can be any type of input device, such as a keyboard, mouse, trackball, trackpad, joystick, etc. The peripheral output device can be any type of output device, such as a display, printer, etc., peripheral input device It can also be the same device as the peripheral output device, such as a touch screen. The communication interface may include a wireless communication interface and/or a wired communication interface. The wireless communication interface may include a wireless communication network supporting Wi-Fi, Zigbee, etc., Bluetooth, infrared, near field communication (NFC), 3G/4G/5G and other mobile communication networks The interface of wireless communication or other wireless data transmission protocol, wired communication interface can be Ethernet equipment, asynchronous transmission mode (ATM) equipment, DSL modem, cable modem, etc. The processor can periodically poll various peripheral devices and interfaces so that the computing device can input and output data, and can also communicate with another computing device having the components described above.

以下先以「第1圖」本發明所提之依順序提供簽章對象簽章以產生簽章文件之系統架構圖來說明本發明的系統運作。如「第1圖」所示,本發明之系統含有文件主機120、簽章伺服器130、客戶端150、存查伺服器160,以及可附加的公證伺服器170。其中,文件主機120、簽章伺服器130、客戶端150、存查伺服器160、及公證伺服器170均為計算設備,且在實務上,文件主機120、簽章伺服器130、以及存查伺服器160所提供的功能可以任意分散到多個不同的計算設備或組合在相同的計算設備中。In the following, the system architecture diagram of providing the signature object signature in order to generate the signature file in order according to the invention provided by the "Figure 1" of the present invention will be described first to illustrate the system operation of the present invention. As shown in "Figure 1", the system of the present invention includes a document host 120, a signature server 130, a client 150, an inspection server 160, and a notarization server 170 that can be attached. Among them, the document host 120, the signature server 130, the client 150, the inspection server 160, and the notary server 170 are all computing devices, and in practice, the document host 120, the signature server 130, and the inspection server The functions provided by 160 can be arbitrarily distributed to multiple different computing devices or combined in the same computing device.

文件主機120可以與簽章伺服器130連接,在部分的實施例中,文件主機120也可以與存查伺服器160連接。文件主機120可以傳送資料或訊號給簽章伺服器130及存查伺服器160,也可以接收存查伺服器160所傳送的資料或訊號。其中,文件主機120可以透過通訊介面使用有線網路或無線網路與簽章伺服器130、及存查伺服器160連接,本發明沒有特別的限制。The file host 120 may be connected to the signature server 130. In some embodiments, the file host 120 may also be connected to the inventory server 160. The document host 120 can send data or signals to the signature server 130 and the check server 160, and can also receive data or signals sent by the check server 160. The document host 120 can be connected to the signature server 130 and the search server 160 through a communication interface using a wired network or a wireless network, and the invention is not particularly limited.

文件主機120負責接收服務伺服器400所提供的原始文件,並負責依據所取得之原始文件的類別決定簽章對象,並定義各簽章對象的簽章順序。本發明所提之簽章對象包含客戶端150以及簽章伺服器130,在部分的實施例中,簽章對象還可以包含公證伺服器170。The document host 120 is responsible for receiving the original documents provided by the service server 400, and is responsible for determining the signature object according to the type of the obtained original document, and defining the signature sequence of each signature object. The signature object mentioned in the present invention includes the client 150 and the signature server 130. In some embodiments, the signature object may further include the notary server 170.

文件主機120也負責產生目標文件以及與目標文件對應的文件識別資料,其中,文件主機所產生的目標文件包含所定義之簽章順序以及取得自服務伺服器400之原始文件;本發明所提之文件識別資料可以由任意數量的文字、字母、數字、與符號任意排列產生,一般而言,文件識別資料為唯一值,也就是說目標文件所對應之文件識別資料通常不會重複。The file host 120 is also responsible for generating the target file and the file identification data corresponding to the target file, wherein the target file generated by the file host contains the defined signature sequence and the original file obtained from the service server 400; The file identification data can be generated by arbitrarily arranging any number of words, letters, numbers, and symbols. Generally speaking, the file identification data is a unique value, which means that the file identification data corresponding to the target file is usually not repeated.

文件主機120可以接收服務伺服器400所傳送的存取參數,並可以依據所接收到之存取參數設定所產生之目標文件的存取權限,也可以將所設定之存取權限傳送至存查伺服器160儲存。文件主機120所設定之存取權限可以是可存取之身分的權限,例如不限任何人可存取目標文件或限制僅特定人可存取目標文件;也可以是可存取之次數的權限,例如限制每日或每小時等單位時間內可存取的次數等。但本發明所提之存取權限並不以上述為限,凡可以用來限制存取目標文件的條件都可以作為存取權限在本發明中被使用,透過存取權限來可以降低使用者之敏感資料被曝光的可能性。The document host 120 can receive the access parameters sent by the service server 400, and can set the access authority of the generated target document according to the received access parameters, or can send the set access authority to the search server Device 160 stores. The access authority set by the file host 120 may be an accessible identity authority, for example, no one can access the target document or only a specific person can access the target document; , Such as limiting the number of accesses per unit time such as daily or hourly. However, the access rights mentioned in the present invention are not limited to the above, and any conditions that can be used to limit access to the target file can be used as access rights in the present invention. The possibility of sensitive information being exposed.

在部分的實施例中,文件主機120可以儲存所產生的目標文件,也可以儲存存查伺服器160所傳來的簽章文件。文件主機120也可以將所產生的存取權限傳送至存查伺服器160儲存。In some embodiments, the document host 120 may store the generated target document or the signature document transmitted from the search server 160. The file host 120 may also send the generated access authority to the search server 160 for storage.

簽章伺服器130可以與客戶端150、文件主機120、存查伺服器160、以及公證伺服器170連接。簽章伺服器130可以傳送資料或訊號給客戶端150、文件主機120、存查伺服器160、以及公證伺服器170,也可以接收客戶端150、文件主機120、存查伺服器160、以及公證伺服器170所傳送的資料或訊號。其中,簽章伺服器130可以透過通訊介面使用有線網路或無線網路與客戶端150、文件主機120、存查伺服器160、以及公證伺服器170連接,本發明沒有特別的限制。The signing server 130 may be connected to the client 150, the document host 120, the checking server 160, and the notary server 170. The signature server 130 can send data or signals to the client 150, the document host 120, the search server 160, and the notary server 170, and can also receive the client 150, the document host 120, the search server 160, and the notary server 170 The data or signal transmitted. The signature server 130 can be connected to the client 150, the document host 120, the search server 160, and the notary server 170 through a communication interface using a wired network or a wireless network, and the invention is not particularly limited.

簽章伺服器130負責接收文件主機120所傳送的目標文件以及與目標文件對應的文件識別資料。簽章伺服器130也負責依據目標文件中所記錄的簽章順序,將電子文件依序提供簽章順序所表示之各個簽章對象,使得各個簽章對象對電子文件簽章以產生新的電子文件。其中,簽章對象所產生之新的電子文件包含簽章對象所簽章之電子文件以及簽章所產生的簽章資料。值得一提的,當簽章對象為簽章伺服器130自身時,簽章伺服器130可以對電子文件簽章,藉以產生新的電子文件。The signature server 130 is responsible for receiving the target file transmitted by the file host 120 and the file identification data corresponding to the target file. The signature server 130 is also responsible for providing the electronic documents in sequence with each signature object represented in the signature sequence according to the signature sequence recorded in the target document, so that each signature object signs the electronic file to generate a new electronic signature file. Among them, the new electronic file generated by the signature object includes the electronic file signed by the signature object and the signature data generated by the signature. It is worth mentioning that when the signing object is the signing server 130 itself, the signing server 130 can sign the electronic document to generate a new electronic document.

需要說明的是,在本發明中,若對電子文件簽章之簽章對象為簽章順序所表示之第一個簽章對象時,被簽章的電子文件為文件主機120提供給簽章伺服器130的目標文件,被產生之新的電子文件在本發明被稱為「作業文件」;若簽章對象為簽章順序所表示之最後一個簽章對象時,被簽章的電子文件為簽章順序中排列在簽章對象之前的另一個簽章對象進行簽章後所產生之作業文件,被產生之新的電子文件在本發明中被稱為「簽章文件」;而若簽章對象不是簽章順序所表示之第一個簽章對象,也不是最後一個簽章對象時,被簽章的電子文件為簽章順序中排列在簽章對象之前的另一個簽章對象進行簽章後所產生之作業文件,被產生之新的電子文件也同樣是新的作業文件。例如,簽章順序記錄的三個簽章對象,順序分別為第一裝置、第二裝置、以及第三裝置,則簽章伺服器130可以先將目標文件提供給第一裝置簽章以產生第一作業文件,接著,簽章伺服器130可以再將第一作業文件提供給第二裝置簽章以產生第二作業文件,最後,簽章伺服器130可以將第二作業文件提供給第三裝置以產生簽章文件。It should be noted that, in the present invention, if the signing object for signing an electronic file is the first signing object indicated in the signing order, the signed electronic file is provided by the file host 120 to the signing servo The target file of the device 130, the new electronic file generated is called "operation file" in the present invention; if the signing object is the last signing object indicated in the signing order, the signed electronic file is the signing In the order of chapters, the working document generated after another signing object arranged before the signing object is signed, the new electronic file generated is called "signing document" in the present invention; and if the signing object When it is not the first signing object indicated in the signing order or the last signing object, the electronic file to be signed is another signing object arranged before the signing object in the signing sequence after signing The generated operation file and the new electronic file generated are also new operation files. For example, if the three signature objects recorded in the signature sequence are the first device, the second device, and the third device, respectively, the signature server 130 may first provide the target file to the first device to generate the signature An operation document, and then, the signature server 130 may provide the first operation document to the second device for signature to generate the second operation document, and finally, the signature server 130 may provide the second operation document to the third device To produce a signature document.

另外,當簽章對象不是簽章順序所表示的第一個簽章對象時,簽章對象還可以在進行簽章前,先確認作業文件是否經過變造,排列在簽章順序之前的簽章對象的簽章是否確實完成。例如,簽章順序記錄的三個簽章對象,順序分別為第一裝置、第二裝置、以及第三裝置時,第二裝置可以確認所接收到的作業文件是否經過變造,並確認所接收到之作業文件中是否包含第一裝置的簽章;第三裝置可以確認所接收到的作業文件是否經過變造,並確認所接收到之作業文件中是否包含第一裝置與第二裝置的簽章。In addition, when the signing object is not the first signing object indicated in the signing order, the signing object can also confirm whether the operation file has been altered before signing, and arrange the signing before the signing order Whether the signature of the subject is indeed completed. For example, when the three signature objects recorded in the signature sequence are the first device, the second device, and the third device, the second device can confirm whether the received job file has been altered and confirm the received Whether the received operation file contains the signature of the first device; the third device can confirm whether the received operation file has been altered, and confirm whether the received operation file contains the signature of the first device and the second device chapter.

在部分的實施例中,簽章伺服器130也可以將文件主機120所產生的文件識別資料傳送給簽章對象,使得簽章對象可以在對電子文件簽章前或簽章後產生可視化資料,並可以將所產生之可視化資料加入簽章對象所產生之新的電子文件中。本發明所提之可視化資料為可以記載接收自簽章伺服器130之文件識別資料的資料,例如,圖形或條碼等,但本發明並不以此為限。可視化資料甚至可以嵌入與簽章對象對應的圖示、記號、標誌、商標等可以表示簽章對象的圖形。In some embodiments, the signature server 130 can also send the document identification data generated by the document host 120 to the signature object, so that the signature object can generate visual data before or after the electronic document is signed, And the generated visual data can be added to the new electronic file generated by the signature object. The visualization data mentioned in the present invention is data that can record the document identification data received from the signature server 130, for example, graphics or barcodes, but the present invention is not limited to this. The visual data can even be embedded with graphics, symbols, signs, trademarks, etc. corresponding to the signature object, which can represent the signature object.

簽章伺服器130也負責將簽章文件傳送到客戶端150以及存查伺服器160。The signature server 130 is also responsible for transmitting the signature file to the client 150 and the check server 160.

在部分的實施例中,簽章伺服器130也可以加密文件主機120所產生的文件識別資料。In some embodiments, the signature server 130 may also encrypt the document identification data generated by the document host 120.

客戶端150可以是專用於本發明的特定計算設備,也可以是安裝於一般計算設備中與本發明相容的應用程式,或可以是包含與本發明相容之特定電路的一般計算設備。The client 150 may be a specific computing device dedicated to the present invention, may also be an application program installed in a general computing device compatible with the present invention, or may be a general computing device containing a specific circuit compatible with the present invention.

客戶端150可以與簽章伺服器130、存查伺服器160、公證伺服器170連接,並可以傳送資料或訊號給簽章伺服器130、存查伺服器160、及公證伺服器170,也可以接收簽章伺服器130、存查伺服器160、及公證伺服器170所傳送的資料或訊號。其中,客戶端150可以透過通訊介面使用有線網路或無線網路與簽章伺服器130、存查伺服器160、及公證伺服器170連接,本發明沒有特別的限制。The client 150 can be connected to the signature server 130, the registration server 160, and the notary server 170, and can send data or signals to the signature server 130, the registration server 160, and the notary server 170, and can also receive signatures The data or signals transmitted by the chapter server 130, the search server 160, and the notary server 170. The client 150 can be connected to the signature server 130, the search server 160, and the notary server 170 through a communication interface using a wired network or a wireless network, and the invention is not particularly limited.

客戶端150可以提供內容參數,也可以提供存取參數。在部分的實施例中,客戶端150可以透過服務伺服器400確認文件內容,並傳送內容參數(以及存取參數)至服務伺服器400,使得服務伺服器400產生包含客戶端150所提供之內容參數的原始文件,並將所產生的原始文件(以及存取參數)傳送給文件主機120。The client 150 may provide content parameters, and may also provide access parameters. In some embodiments, the client 150 can confirm the content of the document through the service server 400 and send the content parameters (and access parameters) to the service server 400, so that the service server 400 generates content including the content provided by the client 150 The original file of the parameter, and send the generated original file (and the access parameter) to the file host 120.

客戶端150也負責接收簽章伺服器130所傳送的電子文件,並負責對所接收到的電子文件簽章,藉以產生新的電子文件。客戶端150也負責將所產生之新的電子文件傳回簽章伺服器130。The client 150 is also responsible for receiving the electronic file transmitted by the signature server 130, and is responsible for signing the received electronic file, thereby generating a new electronic file. The client 150 is also responsible for returning the new electronic document generated to the signature server 130.

客戶端150也可以在接收簽章伺服器130所傳送之電子文件時,接收與所接收到之電子文件對應的文件識別資料。客戶端150也可以在對所接收到的電子文件簽章前或簽章後,依據所接收到之文件識別資料產生可視化資料,並可以將所產生的可視化資料加入簽章後所產生之新的電子文件中。The client 150 may also receive the file identification data corresponding to the received electronic file when receiving the electronic file transmitted by the signature server 130. The client 150 can also generate visual data according to the received document identification data before or after signing the received electronic document, and can add the generated visual data to the new one generated after signing In electronic files.

客戶端150也負責接收簽章伺服器130所傳送的簽章文件。The client 150 is also responsible for receiving the signature file transmitted by the signature server 130.

在部分的實施例中,客戶端150也可以依據簽章文件中所包含的可視化資料取得可視化資料所記載的文件識別資料,並可以將所取得之文件識別資料傳送到公證伺服器170。一般而言,客戶端150可以掃描或擷取簽章文件中的可視化資料,藉以取得可視化資料所記載的文件識別資料。In some embodiments, the client 150 can also obtain the document identification data recorded in the visualization data according to the visualization data contained in the signature document, and can transmit the obtained document identification data to the notary server 170. Generally speaking, the client 150 can scan or retrieve the visualization data in the signature document to obtain the document identification data recorded in the visualization data.

客戶端150也可以接收公證伺服器170所傳送的信物。本發明所提之信物為具有時效性的資料,可以由任意數量的字母、數字、及符號任意排列而成。The client 150 may also receive the token transmitted by the notary server 170. The tokens mentioned in the present invention are time-sensitive materials and can be formed by arbitrarily arranging any number of letters, numbers, and symbols.

客戶端150也可以將透過可視化資料取得之文件識別資料以及接收自公證伺服器170的信物傳送給存查伺服器160,並可以接收存查伺服器160所傳送之與所取得之文件識別資料對應的目標文件。The client 150 can also send the document identification data obtained through the visualization data and the tokens received from the notary server 170 to the inventory server 160, and can receive the target corresponding to the acquired document identification data sent by the inventory server 160 file.

存查伺服器160可以與客戶端150、文件主機120、簽章伺服器130、公證伺服器170連接,並可以傳送資料或訊號給客戶端150、文件主機120及公證伺服器170,也可以接收客戶端150、文件主機120、簽章伺服器130、以及公證伺服器170所傳送的資料或訊號。其中,存查伺服器160可以透過通訊介面使用有線網路或無線網路與客戶端150、文件主機120、簽章伺服器130、公證伺服器170連接,本發明沒有特別的限制。The search server 160 can be connected to the client 150, the document host 120, the signature server 130, and the notary server 170, and can send data or signals to the client 150, the document host 120, and the notary server 170, and can also receive clients The data or signals transmitted by the terminal 150, the document host 120, the signature server 130, and the notary server 170. Among them, the storage server 160 can be connected to the client 150, the document host 120, the signature server 130, and the notary server 170 through a communication interface using a wired network or a wireless network, and the invention is not particularly limited.

存查伺服器160負責接收簽章伺服器130所傳送的簽章文件,並可以儲存所接收到的簽章文件。存查伺服器160也可以接收文件主機120所傳送之目標文件的存取權限。The inventory server 160 is responsible for receiving the signature document transmitted by the signature server 130, and may store the received signature document. The search server 160 can also receive the access authority of the target document transmitted by the document host 120.

值得一提的是,存查伺服器160可以只儲存簽章文件所包含之目標文件的目標文件相關資訊,並可以將所接收到的簽章文件儲存至文件主機120。其中,存查伺服器160所儲存的目標文件相關資訊包含但不限於目標文件對應的文件識別資料、目標文件的建立日期、目標文件的狀態、目標文件的存取權限等。It is worth mentioning that the checking server 160 can only store the target document related information of the target document included in the signature document, and can store the received signature document to the document host 120. The target document related information stored in the search server 160 includes but is not limited to the document identification data corresponding to the target document, the creation date of the target document, the status of the target document, and the access authority of the target document.

在部分的實施例中,存查伺服器160可以接收公證伺服器170所傳送之文件識別資料,並判斷與所接收到之文件識別資料對應的目標文件是否可以即時被存取,也就是判斷與文件識別資料對應的目標文件是否正被儲存於存查伺服器160(或文件主機120)中。其中,存查伺服器160可以依據所儲存之目標文件相關資訊中的目標文件的建立日期、目標文件的狀態、及/或目標文件的存取權限等資料進行判斷,也可以直接在儲存媒體中嘗試搜尋目標文件,但存查伺服器160判斷目標文件是否可以即時被存取的方式並不以上述為限。In some embodiments, the inventory server 160 can receive the document identification data transmitted by the notary server 170, and determine whether the target document corresponding to the received document identification data can be accessed in real time, that is, to determine the document Whether the target file corresponding to the identification data is being stored in the search server 160 (or the file host 120). Among them, the search server 160 can make judgments based on data such as the creation date of the target document, the status of the target document, and/or the access permission of the target document in the stored information about the target document, or can directly try in the storage medium The target document is searched, but the way that the inventory server 160 determines whether the target document can be accessed in real time is not limited to the above.

存查伺服器160也可以將與所接收到之文件識別資料對應的目標文件是否可以即時被存取時的判斷結果傳送給公證伺服器170。存查伺服器160也可以在所儲存之目標文件相關資訊中的目標文件的存取權限表示需要身分驗證時,產生身分驗證訊息,並將所產生的身分驗證訊息連同上述的判斷結果一併傳送給公證伺服器170。其中,身分驗證訊息包含用來讓使用者完成身分驗證的任何資料,舉例來說,身分驗證訊息可以包含驗證方式以及相關訊息,例如,驗證方式可以是使用憑證驗證或是使用帳號密碼驗證等,相關訊息也可以是能夠被使用的憑證、或是進行驗證的帳號密碼等,但身分驗證訊息並不以上述為限。The checking server 160 may also send the judgment result when the target document corresponding to the received document identification data can be accessed in real time to the notary server 170. The search server 160 can also generate an identity verification message when the access permission of the target document in the stored target document related information indicates that identity verification is required, and send the generated identity verification message together with the above-mentioned judgment result to the Notary server 170. The identity verification message includes any data used to allow the user to complete the identity verification. For example, the identity verification message may include a verification method and related information. For example, the verification method may be certificate verification or account password verification. The relevant message may also be a certificate that can be used, or an account password for verification, etc., but the identity verification message is not limited to the above.

存查伺服器160也可以接收公證伺服器170所傳送的信物,並可以接收客戶端150所傳送之信物。存查伺服器160也可以判斷公證伺服器170所傳送的信物是否與客戶端150所傳送之信物是否相同,且客戶端150所傳送之信物是否在時效內。當存查伺服器160判斷公證伺服器170與客戶端150所傳送的信物相同,且客戶端150所傳送之信物在時效內時,存查伺服器160可以將與公證伺服器170先前所傳送之文件識別資料對應的目標文件傳送給客戶端150;而若存查伺服器160判斷公證伺服器170與客戶端150所傳送的信物不同,或客戶端150所傳送之信物不在時效內,則存查伺服器160可以不傳送目標文件給客戶端150。The checking server 160 can also receive the tokens sent by the notary server 170, and can receive the tokens sent by the client 150. The checking server 160 can also determine whether the token sent by the notary server 170 is the same as the token sent by the client 150, and whether the token sent by the client 150 is within the aging period. When the checking server 160 judges that the notary server 170 is the same as the message sent by the client 150, and the sent message from the client 150 is within the time limit, the checking server 160 can identify the document previously sent by the notary server 170 The target file corresponding to the data is sent to the client 150; and if the check server 160 determines that the notary server 170 and the client 150 send different tokens, or the client 150 sends the token that is not within the aging period, the check server 160 can The target file is not transmitted to the client 150.

存查伺服器160也可以接收公證伺服器170所傳送之客戶端識別資料,並可以在取得與公證伺服器170先前所傳送之文件識別資料對應的目標文件後,依據客戶端識別資料將所取得的目標文件直接或間接傳送給客戶端150。其中,間接傳送的方式例如透過電子郵件或即時訊息等方式傳送,但本發明並不以此為限。The inspection server 160 can also receive the client identification data sent by the notary server 170, and can obtain the target document corresponding to the file identification data previously sent by the notary server 170, and then obtain the target document according to the client identification data. The target file is directly or indirectly transmitted to the client 150. The indirect transmission method is, for example, email or instant message, but the invention is not limited to this.

公證伺服器170可以與客戶端150、簽章伺服器130、存查伺服器160連接,並可以傳送資料或訊號給客戶端150、簽章伺服器130、存查伺服器160,也可以接收客戶端150、簽章伺服器130、存查伺服器160所傳送的資料或訊號。其中,公證伺服器170可以透過通訊介面使用有線網路或無線網路與客戶端150、簽章伺服器130、存查伺服器160連接,本發明沒有特別的限制。The notary server 170 can be connected to the client 150, the signature server 130, and the registration server 160, and can send data or signals to the client 150, the signature server 130, the registration server 160, and can also receive the client 150 , The signature server 130, and the data or signal transmitted by the check server 160. The notarization server 170 can be connected to the client 150, the signature server 130, and the search server 160 through a communication interface using a wired network or a wireless network, and the invention is not particularly limited.

公證伺服器170負責接收簽章伺服器130所傳送的電子文件,並負責對所接收到的電子文件簽章,藉以產生新的電子文件。公證伺服器170也負責將所產生之新的電子文件傳回簽章伺服器130。The notary server 170 is responsible for receiving the electronic document transmitted by the signature server 130, and is responsible for signing the received electronic document, thereby generating a new electronic document. The notary server 170 is also responsible for returning the new electronic document generated to the signature server 130.

公證伺服器170也負責儲存簽章文件的相關資訊(在本發明中亦使用「簽章文件相關資訊」表示),公證伺服器170所儲存之簽章文件相關資訊包含但不限於簽章文件的摘要值(digest)、簽章文件的雜湊值(hash value)、與簽章文件所包含之目標文件對應的文件識別資料等。在部分的實施例中,公證伺服器170可以依據所儲存之簽章文件相關資訊判斷簽章文件是否與目標文件的正本或原始文件相符。The notary server 170 is also responsible for storing the relevant information of the signature document (in the present invention, it is also represented by "signature document related information"). The relevant information of the signature document stored by the notary server 170 includes but is not limited to the signature document The digest value, the hash value of the signature file, and the file identification information corresponding to the target file included in the signature file, etc. In some embodiments, the notary server 170 may determine whether the signed document is consistent with the original or original document of the target document based on the stored relevant information of the signed document.

公證伺服器170也可以在接收簽章伺服器130所傳送之電子文件時,接收與所接收到之電子文件對應的文件識別資料。公證伺服器170也可以在對所接收到的電子文件簽章前或簽章後,依據所接收到之文件識別資料產生可視化資料,並可以將所產生的可視化資料加入簽章後所產生之新的電子文件中。The notary server 170 may also receive document identification data corresponding to the received electronic document when receiving the electronic document transmitted by the signature server 130. The notary server 170 can also generate visual data based on the received document identification data before or after signing the received electronic document, and can add the generated visual data to the new In the electronic file.

在部分的實施例中,公證伺服器170可以接收客戶端150所傳送的文件識別資料,並可以依據所儲存之簽章文件相關資訊判斷與所接收到之文件識別資料對應的目標文件是否存在。In some embodiments, the notary server 170 can receive the document identification data transmitted by the client 150, and can determine whether the target document corresponding to the received document identification data exists according to the stored signature document related information.

公證伺服器170也可以在判斷與所接收到之文件識別資料對應的目標文件存在時,將所接收到的文件識別資料傳送給存查伺服器160。而若公證伺服器170判斷與所接收到之文件識別資料對應的目標文件不存在,則公證伺服器170可以拒絕客戶端150存取目標文件。The notary server 170 may also transmit the received document identification data to the inventory server 160 when determining that the target document corresponding to the received document identification data exists. If the notary server 170 determines that the target document corresponding to the received document identification data does not exist, the notary server 170 may deny the client 150 access to the target document.

公證伺服器170也可以接收存查伺服器160所傳送的判斷結果,並可以在所接收到的判斷結果表示目標文件可以即時被存取時,產生信物,以及將所產生的信物傳回客戶端150以及存查伺服器160。公證伺服器170也可以在所接收到的判斷結果表示目標文件無法即時被存取時,產生相對應的通知訊息,並將所產生的通知訊息傳回客戶端150,以及將客戶端150的客戶端識別資料傳送給存查伺服器160。The notary server 170 can also receive the judgment result sent by the check server 160, and can generate a token when the received judgment result indicates that the target document can be accessed in real time, and transmit the token generated to the client 150和存查服务160。 And storage server 160. The notary server 170 can also generate a corresponding notification message when the received judgment result indicates that the target document cannot be accessed in real time, and send the generated notification message back to the client 150, and the client 150 client The terminal identification data is sent to the inventory server 160.

公證伺服器170也可以接收存查伺服器160所傳送的身分驗證訊息,並可以依據所接收到的身分驗證訊息要求客戶端150進行身分驗證,以及依據客戶端150的身分驗證結果選擇允許或拒絕客戶端150存取目標文件。當公證伺服器170選擇允許客戶端150存取目標文件時,公證伺服器170才可以傳送所產生的信物或通知訊息至客戶端150,並傳送所產生的信物或客戶端識別資料至存查伺服器160。The notary server 170 can also receive the identity verification message sent by the check server 160, and can request the client 150 to perform identity verification based on the received identity verification message, and choose to allow or deny the client based on the identity verification result of the client 150 Terminal 150 accesses the target file. When the notary server 170 chooses to allow the client 150 to access the target document, the notary server 170 can send the generated token or notification message to the client 150, and send the generated token or client identification data to the search server 160.

接著以第一實施例來解說本發明的運作系統與方法,並請參照「第2圖」本發明所提之依順序提供簽章對象簽章以產生簽章文件之方法流程圖。在本實施例中,假設本發明應用在線上投保的機制中,但本發明並不以此為限。Next, the first embodiment is used to explain the operation system and method of the present invention, and please refer to the "Figure 2" method flow chart of providing the signature object signature in order to generate the signature document according to the present invention. In this embodiment, it is assumed that the present invention is applied to the online insurance mechanism, but the present invention is not limited to this.

首先,客戶端150可以與提供線上投保服務的服務伺服器400連線,並將服務伺服器400要求提供之投保資料(內容參數)傳送給服務伺服器400。在本實施例中,假設客戶端150為安裝在一般計算設備上的瀏覽程式,服務伺服器400為網頁伺服器,客戶端150可以在服務伺服器400所提供的網頁中輸入投保資料。First, the client 150 can connect to the service server 400 that provides an online insurance service, and send the insurance data (content parameters) requested by the service server 400 to the service server 400. In this embodiment, it is assumed that the client 150 is a browser installed on a general computing device, and the service server 400 is a web server. The client 150 can input insurance data in a web page provided by the service server 400.

在服務伺服器400接收到客戶端150所提供的投保資料後,服務伺服器400可以產生包含所接收到之投保資料的電子保單(原始文件),並可以將所產生的電子保單提供給文件主機120,使得文件主機120取得原始文件(步驟210)。在本實施例中,假設服務伺服器400可以儲存各種保險產品之合約書的模板,並可以將所接收到的投保資料逐一填入客戶端150所選擇之保險產品之合約書的模板的對應欄位中,藉以產生完整的電子保單。After the service server 400 receives the insurance data provided by the client 150, the service server 400 can generate an electronic policy (original document) containing the received insurance data, and can provide the generated electronic policy to the file host 120, so that the file host 120 obtains the original file (step 210). In this embodiment, it is assumed that the service server 400 can store contract templates of various insurance products, and can fill in the received insurance data one by one into the corresponding fields of the contract templates of insurance products selected by the client 150 In order to generate a complete electronic insurance policy.

在文件主機120取得原始文件(步驟210)後,文件主機120可以依據所取得之原始文件的類別定義簽章順序(步驟220)。在本實施例中,由於原始文件為保單,因此,文件主機120可以定義簽章順序為先由客戶端150簽章,再由簽章伺服器130簽章。After the file host 120 obtains the original file (step 210), the file host 120 can define the signature sequence according to the category of the obtained original file (step 220). In this embodiment, since the original document is a policy, the document host 120 may define the order of signature to be signed by the client 150 first, and then signed by the signature server 130.

在文件主機120定義簽章順序後,文件主機120可以產生包含所定義之簽章順序以及所取得之原始文件的目標文件,並可以產生與所產生之目標文件對應的文件識別資料,以及可以將所產生之目標文件以及文件識別資料傳送給簽章伺服器130(步驟230)。After the file host 120 defines the signature sequence, the file host 120 can generate a target file including the defined signature sequence and the obtained original file, and can generate file identification data corresponding to the generated target file, and can The generated target document and document identification data are sent to the signature server 130 (step 230).

在簽章伺服器130接收到文件主機120所產生的目標文件以及文件識別資料後,簽章伺服器130可以依據目標文件中的簽章順序依序將電子文件提供給簽章順序所表示之簽章對象,藉以在所有簽章對象完成簽章後產生簽章文件(步驟250)。在本實施例中,由於簽章順序依序為客戶端150以及簽章伺服器130,因此,簽章伺服器130可以將目標文件作為電子文件,傳送給客戶端150,使得客戶端150在服務伺服器400所提供的網頁中要求客戶端150對電子文件簽章。客戶端150可以使用與使用者之數位憑證對應的私鑰對電子文件簽章後,產生包含電子文件以及簽章資料的新電子文件,並將所產生之新的電子文件傳回簽章伺服器130。由於客戶端150並非簽章順序所表示之最後一個簽章單位,因此,客戶端150所產生的電子文件在本發明中也被稱為作業文件。After the signature server 130 receives the target document and the document identification data generated by the document host 120, the signature server 130 can sequentially provide the electronic document to the signature indicated by the signature sequence according to the signature sequence in the target document The seal object is used to generate a seal file after all the seal objects complete the seal (step 250). In this embodiment, since the signature order is the client 150 and the signature server 130 in sequence, the signature server 130 can send the target document as an electronic file to the client 150 so that the client 150 is in service The web page provided by the server 400 requires the client 150 to sign the electronic file. The client 150 can use the private key corresponding to the user's digital certificate to sign the electronic document, generate a new electronic document containing the electronic document and signature data, and return the generated new electronic document to the signature server 130. Since the client 150 is not the last signing unit indicated in the order of signing, the electronic file generated by the client 150 is also called a job file in the present invention.

在簽章伺服器130接收到客戶端150所傳送的電子文件後,可以依據將目標文件中的簽章順序將電子文件提供給簽章順序所表示之在客戶端150之後的簽章對象,由於此時的簽章對象為簽章伺服器130本身,因此,簽章伺服器130可以先確認所接收到的電子文件是否沒有經過變造,且是否包含客戶端150的簽章,當簽章伺服器130判斷所接收到的電子文件經過變造,或沒有包含客戶端150的簽章時,簽章伺服器130可以拒絕對電子文件簽章,而若簽章伺服器130判斷所接收到的電子文件沒有經過變造,且確實包含客戶端150的簽章,則簽章伺服器130可以使用與提供服務伺服器400之保險公司的數位憑證對應的私鑰對接收自客戶端150的電子文件簽章,並在簽章後產生包含接收自客戶端150之電子文件以及簽章資料的新電子文件。由於簽章伺服器130為簽章順序所表示之最後一個簽章單位,因此,簽章伺服器130所產生的電子文件在本發明中也被稱為簽章文件,也就是說,在本實施例中,簽章文件包含目標文件、客戶端150所產生之簽章資料以及簽章伺服器130所產生之簽章資料。After the signature server 130 receives the electronic file transmitted by the client 150, the electronic file can be provided to the signature object after the client 150 indicated in the signature sequence according to the signature sequence in the target file, because The signing object at this time is the signing server 130 itself. Therefore, the signing server 130 can first confirm whether the received electronic document has not been altered and contains the signing of the client 150. The server 130 judges that the received electronic document has been altered or does not contain the signature of the client 150, the signature server 130 may refuse to sign the electronic document, and if the signature server 130 judges the received electronic document If the document has not been altered and does contain the signature of the client 150, the signature server 130 can use the private key corresponding to the digital certificate of the insurance company providing the service server 400 to sign the electronic document received from the client 150 After the signature, a new electronic file containing the electronic file received from the client 150 and the signature information is generated. Since the signing server 130 is the last signing unit expressed in the signing order, the electronic document generated by the signing server 130 is also referred to as a signing document in the present invention, that is, in this implementation In the example, the signature file includes the target file, signature data generated by the client 150, and signature data generated by the signature server 130.

在簽章伺服器130產生簽章文件後,簽章伺服器130可以將所產生的簽章文件傳回客戶端150,使得客戶端150的使用者可以下載簽章伺服器130所產生的簽章文件,簽章伺服器130也可以將所產生的簽章文件傳送給存查伺服器160,使得存查伺服器160儲存簽章伺服器130所產生的簽章文件(步驟260)。After the signature server 130 generates the signature document, the signature server 130 can return the signature document generated to the client 150 so that the user of the client 150 can download the signature generated by the signature server 130 For documents, the signing server 130 may also send the generated signing document to the checking server 160, so that the checking server 160 stores the signing document generated by the signing server 130 (step 260).

如此,透過本發明,保險公司所提供的服務伺服器400以及使用者所使用的客戶端150都無法在目標文件成為簽章文件的過程中直接存取電子文件,確保簽章文件完整無誤,沒有遭到保險公司以及使用者的變造或置換。In this way, through the present invention, neither the service server 400 provided by the insurance company nor the client 150 used by the user can directly access the electronic document during the process that the target document becomes the signature document, ensuring that the signature document is complete and correct. It was altered or replaced by insurance companies and users.

繼續以第二實施例來解說本發明的運作系統與方法,同樣請參照「第2圖」所示之流程圖。在本實施例中,同樣假設本發明應用在線上投保的機制中。Continue to use the second embodiment to explain the operating system and method of the present invention. Please also refer to the flowchart shown in "Figure 2". In this embodiment, it is also assumed that the present invention is applied to the online insurance mechanism.

首先,客戶端150可以與提供線上投保服務的服務伺服器400連線,並將服務伺服器400要求提供之投保資料(內容參數)傳送給服務伺服器400。在本實施例中,假設客戶端150為安裝在一般計算設備上的特定應用程式,客戶端150可以應用程式中瀏覽保單內容、選擇保單產品、並輸入投保資料。First, the client 150 can connect to the service server 400 that provides an online insurance service, and send the insurance data (content parameters) requested by the service server 400 to the service server 400. In this embodiment, assuming that the client 150 is a specific application installed on a general computing device, the client 150 can browse policy contents, select policy products, and enter insurance data in the application.

在服務伺服器400接收到客戶端150所提供的投保資料後,服務伺服器400可以產生包含所接收到之投保資料的電子保單(原始文件),並可以將所產生的電子保單提供給文件主機120,使得文件主機120取得原始文件(步驟210),之後,文件主機120可以依據所取得之原始文件的類別定義簽章順序(步驟220)。在本實施例中,由於原始文件為保單,因此,文件主機120可以定義簽章順序為先由客戶端150簽章,再由簽章伺服器130簽章,最後由公證伺服器170簽章。After the service server 400 receives the insurance data provided by the client 150, the service server 400 can generate an electronic policy (original document) containing the received insurance data, and can provide the generated electronic policy to the file host 120, so that the file host 120 obtains the original file (step 210), and then, the file host 120 can define the signature sequence according to the category of the obtained original file (step 220). In this embodiment, since the original document is a policy, the document host 120 may define the order of signature to be signed by the client 150 first, then by the signature server 130, and finally by the notary server 170.

在文件主機120定義簽章順序後,文件主機120可以產生包含所定義之簽章順序以及所取得之原始文件的目標文件,並可以產生與所產生之目標文件對應的文件識別資料,以及可以將所產生之目標文件以及文件識別資料傳送給簽章伺服器130(步驟230)。在本實施例中,假設目標文件為PDF格式的檔案。After the file host 120 defines the signature sequence, the file host 120 can generate a target file including the defined signature sequence and the obtained original file, and can generate file identification data corresponding to the generated target file, and can The generated target document and document identification data are sent to the signature server 130 (step 230). In this embodiment, it is assumed that the target file is a file in PDF format.

在簽章伺服器130接收到文件主機120所產生的目標文件以及文件識別資料後,簽章伺服器130可以將所接收到的文件識別資料加密(步驟240),並可以依據目標文件中的簽章順序依序將電子文件提供給簽章順序所表示之簽章對象,藉以在所有簽章對象完成簽章後產生簽章文件(步驟250)。After the signature server 130 receives the target document and the document identification data generated by the document host 120, the signature server 130 may encrypt the received document identification data (step 240), and may base on the signature in the target document The order of chapters provides the electronic files to the signing objects indicated in the order of signing in order to generate the signing files after all signing objects have finished signing (step 250).

在本實施例中,由於簽章順序依序為客戶端150、簽章伺服器130、以及公證伺服器170,因此,簽章伺服器130可以先將所接收到的目標文件作為電子文件傳送給客戶端150,同時也將加密後的文件識別資料傳送給客戶端150。客戶端150在接收到電子文件以及文件識別資料後,可以使用與使用者之數位憑證對應的私鑰對所接收到的電子文件簽章,並在簽章後產生相對應的簽章資料,客戶端150也可以使用QR code的編碼方式對所接收到的文件識別資料編碼,並使用QR code之編碼方式中的容錯功能將代表使用者的圖示加入編碼產生的QR code中,藉以產生可視化的QR code(可視化資料)。之後,客戶端150可以使用PDF的檔案格式,將所接收到的電子文件、所產生之簽章資料、所產生之可視化的QR code分別加入相對應的欄位中以產生包含目標文件、簽章資料、及可視化QR code的新電子文件,並可以將所產生之新的電子文件傳回簽章伺服器130,其中,可視化的QR code被加入Visual Sign的欄位中。由於客戶端150並非簽章順序所表示之最後一個簽章單位,因此,客戶端150所產生的電子文件為本發明中的作業文件。In this embodiment, since the signature order is the client 150, the signature server 130, and the notary server 170, the signature server 130 can first send the received target document as an electronic file to The client 150 also transmits the encrypted file identification data to the client 150 at the same time. After receiving the electronic document and the document identification data, the client 150 can use the private key corresponding to the user's digital certificate to sign the received electronic document, and generate the corresponding signature data after signing. The terminal 150 can also use the QR code encoding method to encode the received file identification data, and use the fault tolerance function in the QR code encoding method to add the icon representing the user to the QR code generated by the encoding to generate a visual QR code (visual information). After that, the client 150 can use the PDF file format to add the received electronic document, the generated signature data, and the generated visual QR code to the corresponding fields to generate the target document and signature. The new electronic file of the data and the visual QR code, and the new electronic file generated can be returned to the signature server 130, wherein the visual QR code is added to the field of Visual Sign. Since the client 150 is not the last signing unit indicated in the order of signing, the electronic file generated by the client 150 is a working file in the present invention.

在簽章伺服器130接收到客戶端150所傳送的電子文件後,可以依據將目標文件中的簽章順序將接收自客戶端150的電子文件以及加密後的文件識別資料提供給簽章順序所表示之在客戶端150之後的簽章對象,由於此時的簽章對象為簽章伺服器130本身,因此,簽章伺服器130可以在確認所接收到的電子文件沒有經過變造,且包含排列在簽章順序之前的所有簽章對象(也就是客戶端150)的簽章後,使用與提供服務伺服器400之保險公司的數位憑證對應的私鑰對接收自客戶端150的電子文件簽章,也可以產生包含保險公司之商標且記載加密後之文件識別資料的QR code(可視化資料),並可以產生包含接收自客戶端150之電子文件、所產生之簽章資料、所產生之QR code的新電子文件(簽章伺服器130對電子文件簽章以產生新電子文件的過程與客戶端150相同,故不詳細描述)。After the signature server 130 receives the electronic file transmitted by the client 150, the electronic file received from the client 150 and the encrypted file identification data can be provided to the signature sequence according to the signature sequence in the target file Indicates the signature object after the client 150. Since the signature object at this time is the signature server 130 itself, the signature server 130 can confirm that the received electronic document has not been altered and contains After the signatures of all the signature objects (that is, the client 150) arranged before the signature sequence, use the private key corresponding to the digital certificate of the insurance company providing the service server 400 to sign the electronic document received from the client 150 It can also generate a QR code (visual data) that contains the trademark of the insurance company and records the encrypted document identification data, and can generate an electronic file received from the client 150, the generated signature data, and the generated QR The new electronic file of code (the process of signing the electronic file by the signature server 130 to generate a new electronic file is the same as that of the client 150, so it will not be described in detail).

在簽章伺服器130完成簽章作業後,簽章伺服器130可以再次依據將目標文件中的簽章順序將所產生的電子文件以及加密後的文件識別資料提供給簽章順序所表示之在簽章伺服器130之後的簽章對象,也就是公證伺服器170。因此,簽章伺服器130可以將加密後的文件識別資料以及所產生的電子文件傳送給公證伺服器170。公證伺服器170在接收到文件識別資料以及電子文件後,可以先確認所接收到的電子文件是否經過變造,且是否包含排列在簽章順序之前的所有簽章對象的簽章,若公證伺服器170所接收到的電子文件沒有經過變造且包含排列在簽章順序之前的客戶端150與簽章伺服器130的簽章,則公證伺服器170可以使用與提供公證伺服器170之公證單位的數位憑證對應的私鑰對所接收到的電子文件簽章,也可以產生包含公證單位之商標且記載加密後之文件識別資料的QR code(可視化資料),並可以產生包含接收自簽章伺服器130之電子文件、所產生之簽章資料、所產生之QR code的新電子文件(公證伺服器170對電子文件簽章以產生新電子文件的過程與客戶端150相同,故不詳細描述)。由於公證伺服器170為簽章順序所表示之最後一個簽章單位,因此,公證伺服器170所產生的電子文件在本發明中也被稱為簽章文件,也就是說,在本實施例中,簽章文件包含目標文件、客戶端150所產生之簽章資料與可視化資料、簽章伺服器130所產生之簽章資料與可視化資料、以及公證伺服器170所產生之簽章資料與可視化資料。After the signing server 130 completes the signing operation, the signing server 130 can again provide the generated electronic document and the encrypted document identification data to the signing sequence according to the signing sequence in the target document. The signature object after the signature server 130 is the notary server 170. Therefore, the signature server 130 can send the encrypted document identification data and the generated electronic document to the notary server 170. After receiving the document identification data and the electronic document, the notary server 170 can first confirm whether the received electronic document has been altered and whether it contains the signatures of all the signature objects arranged before the signature sequence. If the electronic document received by the server 170 has not been altered and contains the signatures of the client 150 and the signature server 130 arranged before the signature sequence, the notary server 170 can use and provide the notary unit of the notary server 170 The private key corresponding to the digital certificate of the digital signature of the received electronic document can also generate a QR code (visualized data) that contains the trademark of the notary unit and records the encrypted document identification data, and can generate a server that contains the self-signing servo. The electronic file of the device 130, the signature information generated, and the new electronic file of the generated QR code (the process of signing the electronic file by the notary server 170 to generate a new electronic file is the same as the client 150, so it will not be described in detail) . Since the notary server 170 is the last signing unit expressed in the order of signing, the electronic document generated by the notary server 170 is also referred to as a signing document in the present invention, that is, in this embodiment , The signature file includes the target document, the signature data and visualization data generated by the client 150, the signature data and visualization data generated by the signature server 130, and the signature data and visualization data generated by the notary server 170 .

在公證伺服器170完成簽章作業後,公證伺服器170也可以記錄簽章所產生之新電子文件(簽章文件)的簽章文件相關資訊,並可以將所產生的新電子文件傳回簽章伺服器130。在本實施例中,假設公證伺服器170所記錄之簽章文件相關資訊包含簽章文件的摘要值、簽章文件的雜湊值、以及與簽章文件所包含之目標文件對應的文件識別資料。After the notarization server 170 completes the signature operation, the notarization server 170 can also record the relevant information of the signature document of the new electronic document (signature document) generated by the signature, and can return the generated new electronic document to the signature Chapter Server 130. In this embodiment, it is assumed that the signature document-related information recorded by the notary server 170 includes a summary value of the signature document, a hash value of the signature document, and document identification data corresponding to the target document included in the signature document.

在簽章伺服器130接收到簽章順序所表示之最後一個簽章單位所產生的電子文件(簽章文件)後,簽章伺服器130可以將所接收到的簽章文件傳回客戶端150,使得客戶端150的使用者可以下載經過客戶端150、簽章伺服器130、以及公證伺服器170簽章的簽章文件,簽章伺服器130也可以將簽章文件傳送給存查伺服器160,使得存查伺服器160儲存簽章文件(步驟260)。在本實施例中,存查伺服器160可以將簽章文件傳送到文件主機120儲存,並將簽章文件所包含之目標文件的文件識別資料、建立日期、存取權限等目標文件相關資訊寫入資料庫中。After the signature server 130 receives the electronic document (signature document) generated by the last signature unit indicated in the signature sequence, the signature server 130 can transmit the received signature document to the client 150 , So that the user of the client 150 can download the signature file signed by the client 150, the signature server 130, and the notary server 170, and the signature server 130 can also send the signature file to the check server 160 , So that the check server 160 stores the signature file (step 260). In this embodiment, the search server 160 may send the signature document to the document host 120 for storage, and write the document identification information, creation date, access authority, etc. of the target document contained in the signature document into the relevant information of the target document Database.

如此,透過本發明,保險公司所提供的服務伺服器400以及使用者所使用的客戶端150都無法在目標文件成為簽章文件的過程中直接存取電子文件,除了確保簽章文件完整無誤之外,透過公證伺服器170的簽章,更可以保證目標文件的不可否認性。In this way, through the present invention, neither the service server 400 provided by the insurance company nor the client 150 used by the user can directly access the electronic document during the process that the target document becomes the signature document, except to ensure the integrity of the signature document In addition, the signature of the notary server 170 can ensure the non-repudiation of the target document.

接著請參考「第3圖」所示之方法流程圖,在客戶端150接收到簽章伺服器130所傳送的簽章文件後,當客戶端150的使用者想要確認簽章文件中所記錄的保單內容是否與保險時的內容相同時,客戶端150可以依據簽章文件中之可視化資料取得可視化資料所記載的文件識別資料,並可以將所取得之文件識別資料傳送給公證伺服器170(步驟310)。在本實施例中,使用者可以將簽章文件列印為紙本的形式,或可以使用其他計算設備顯示簽章文件,並可以操作客戶端150使用內建的QR code掃描功能掃描被列印在紙本上或被其他顯示裝置所顯示之簽章文件中的QR code,使得客戶端150在對掃描所得之QR code解碼後取得文件識別資料。在本實施例中,由於文件識別資料經過簽章伺服器130的加密,因此,客戶端150在取得文件識別資料後,還可以對所取得之文件識別資料解密。Then please refer to the flowchart of the method shown in "Figure 3". After the client 150 receives the signature file sent by the signature server 130, when the user of the client 150 wants to confirm the record in the signature file If the content of the policy is the same as the content at the time of insurance, the client 150 can obtain the document identification data recorded in the visualization data according to the visualization data in the signature document, and can send the obtained document identification data to the notary server 170 ( Step 310). In this embodiment, the user can print the signature document in paper form, or can use other computing devices to display the signature document, and can operate the client 150 to scan the printed document using the built-in QR code scanning function The QR code in the signature file on the paper or displayed by other display devices enables the client 150 to obtain the file identification information after decoding the scanned QR code. In this embodiment, since the document identification data is encrypted by the signature server 130, the client 150 can decrypt the acquired document identification data after acquiring the document identification data.

在公證伺服器170接收到客戶端150所傳送的文件識別資料後,公證伺服器170可以依據所接收到之文件識別資料判斷與文件識別資料對應的目標文件是否存在。若目標文件存在,則公證伺服器170可以將所接收到的文件識別資料傳送給存查伺服器160(步驟320);而若目標文件不存在,公證伺服器170可以拒絕客戶端150存取目標文件。在本實施例中,公證伺服器170可以在所儲存之簽章文件相關資訊中是否存在與所接收到之文件識別資料相同的資料,若是,表示目標文件存在,反之,表示目標文件不存在。After the notary server 170 receives the document identification data transmitted by the client 150, the notary server 170 can determine whether the target document corresponding to the document identification data exists according to the received document identification data. If the target file exists, the notary server 170 may send the received file identification data to the check server 160 (step 320); and if the target file does not exist, the notary server 170 may deny the client 150 access to the target file . In this embodiment, the notarization server 170 may check whether the same information as the received document identification data exists in the stored signature document related information. If so, it indicates that the target document exists, otherwise, it indicates that the target document does not exist.

在存查伺服器160接收到公證伺服器170所傳送的文件識別資料後,存查伺服器160可以判斷與所接收到之文件識別資料對應的目標文件是否可即時被存取並產生判斷結果,並可以將所產生的判斷結果傳回公證伺服器170(步驟330)。在本實施例中,存查伺服器160可以由資料庫中讀出與所接收到之文件識別資料對應的目標文件的目標文件相關資訊,並依據所讀出之目標文件相關資訊中的建立日期或狀態判斷目標文件是否可即時被存取,例如判斷建立日期距今是否已達封存或銷毀標準,或是依據狀態判斷目標文件是否還存在等。After the storage server 160 receives the document identification data transmitted by the notary server 170, the storage server 160 can determine whether the target document corresponding to the received file identification data can be accessed in real time and generate a judgment result, and can The generated judgment result is returned to the notary server 170 (step 330). In this embodiment, the search server 160 can read the target document related information of the target document corresponding to the received document identification data from the database, and based on the creation date or the creation date in the read target document related information The status determines whether the target document can be accessed in real time, for example, whether the creation date has reached the standard for storage or destruction, or whether the target document still exists according to the status.

在公證伺服器170接收到存查伺服器160所傳送的判斷結果後,公證伺服器170可以在判斷結果表示目標文件可以被即時存取時,產生信物,並可以將所產生的信物傳送給存查伺服器160以及發出與目標文件對應之文件識別資料的客戶端150(步驟350)。After the notarization server 170 receives the judgment result sent by the inspection server 160, the notarization server 170 can generate a token when the judgment result indicates that the target document can be accessed in real time, and can send the token generated to the inspection server 160 and the client 150 that sends out the file identification data corresponding to the target file (step 350).

客戶端150在接收到公證伺服器170所傳送的信物後,可以將所接收到的信物傳送給存查伺服器160(步驟360),存查伺服器160在接收到公證伺服器170所傳送的信物且接收到客戶端150所傳送的信物後,可以判斷公證伺服器170所傳送的信物與客戶端150所傳送的信物是否相同,並可以在判斷公證伺服器170與客戶端150所傳送的信物相同時,讀出目標文件,並將所讀出的目標文件傳送到客戶端150(步驟370)。在客戶端150接收到存查伺服器160所傳送的目標文件後,使用者可以使用肉眼或客戶端150或其他程式比對簽章文件所記錄的保單內容與目標文件所記錄的保單內容是否相同。After receiving the tokens transmitted by the notary server 170, the client 150 may transmit the received tokens to the check server 160 (step 360). The check server 160 receives the tokens transmitted by the notary server 170 and After receiving the token sent by the client 150, it can be determined whether the token sent by the notary server 170 is the same as the token sent by the client 150, and when the token sent by the notary server 170 and the client 150 are the same , Read the target file, and transfer the read target file to the client 150 (step 370). After the client 150 receives the target document transmitted by the search server 160, the user can use the naked eye or the client 150 or other programs to compare whether the policy content recorded in the signature document is the same as the policy content recorded in the target document.

另外,在公證伺服器170接收到存查伺服器160所傳送的判斷結果後,若判斷結果表示目標文件無法被即時存取,則公證伺服器170可以將傳送與目標文件對應之文件識別資料的客戶端150的對象識別資料傳送給存查伺服器160。In addition, after the notarization server 170 receives the judgment result sent by the check server 160, if the judgment result indicates that the target document cannot be accessed in real time, the notarization server 170 may send the client the document identification data corresponding to the target document The object identification data of the terminal 150 is sent to the inventory server 160.

在存查伺服器160接收到公證伺服器170所傳送之對象識別資料後,存查伺服器160可以等待取得目標文件,並可以在取得目標文件後,依據所接收到的對象識別資料將目標文件直接或間接傳送給客戶端150。After the storage server 160 receives the object identification data transmitted by the notary server 170, the storage server 160 can wait to obtain the target document, and can obtain the target file directly according to the received object identification data. Indirect transmission to the client 150.

如此,透過本發明,也可以在降低存查伺服器160負擔的條件下提供使用者進行調卷作業,同時增加調卷作業的安全性。In this way, according to the present invention, it is also possible to provide the user with a rewinding operation under the condition of reducing the burden on the checking server 160 and increase the safety of the rewinding operation.

上述的實施例中,在存查伺服器160將所產生的判斷結果傳回公證伺服器170(步驟330)前,也可以由資料庫中讀出目標文件的存取權限,並可以在所讀出之存取權限表示需要身分驗證時,產生相對應身分驗證訊息,以及將所產生的身分驗證訊息連同所產生的判斷結果一併傳送給公證伺服器170。假設存查伺服器160所產生的身份驗證訊息表示需要使用憑證進行身份驗證。In the above embodiment, before the storage server 160 returns the generated judgment result to the notary server 170 (step 330), the access authority of the target file can also be read from the database, and can be read out The access right indicates that when identity verification is required, a corresponding identity verification message is generated, and the generated identity verification message is sent to the notary server 170 together with the generated judgment result. Assume that the authentication message generated by the search server 160 indicates that a certificate is required for authentication.

在公證伺服器170接收到存查伺服器160所傳送的身份驗證訊息後,可以要求客戶端150使用憑證進行身份驗證,並依據身份驗證的結果判斷是否允許客戶端150存取目標文件(步驟340)。若客戶端150通過身份驗證,則公證伺服器170可以允許客戶端150存取目標文件,公證伺服器170可以在判斷結果表示目標文件可以被即時存取時傳送所產生信物到存查伺服器160與客戶端150(步驟350),或是在判斷結果表示目標文件無法被即時存取時,傳送客戶端150的對象識別資料至存查伺服器160。而若客戶端150沒有通過身份驗證,則公證伺服器170可以拒絕客戶端150存取目標文件。After the notary server 170 receives the identity verification message sent by the check server 160, it can request the client 150 to use the certificate for identity verification, and determine whether to allow the client 150 to access the target file based on the result of the identity verification (step 340) . If the client 150 passes the authentication, the notary server 170 can allow the client 150 to access the target document, and the notary server 170 can send the generated token to the check server 160 when the judgment result indicates that the target document can be accessed in real time. The client 150 (step 350), or when the judgment result indicates that the target file cannot be accessed in real time, send the object identification data of the client 150 to the search server 160. If the client 150 does not pass the identity verification, the notary server 170 may deny the client 150 access to the target file.

綜上所述,可知本發明與先前技術之間的差異在於具有文件主機依據所取得之原始文件的類別定義簽章順序並產生包含原始文件與簽章順序的目標文件,簽章伺服器依據簽章順序依序將包含目標文件的電子文件提供給簽章對象簽章以產生簽章文件後,將簽章文件傳送給簽章對象的使用者或擁有者保存之技術手段,藉由此一技術手段可以來解決先前技術所存在電子文件可能在簽章前就被替換的問題,進而達成在電子文件中提供近似印鑑的技術功效。In summary, it can be seen that the difference between the present invention and the prior art is that the document host defines the signature sequence according to the category of the original document obtained and generates a target document containing the original document and the signature sequence, and the signature server is based on the signature Chapter order provides the electronic file containing the target file to the signature object for signature to generate the signature file, and then sends the signature file to the user or owner of the signature object to save the technical means, by this technology The method can solve the problem that the electronic file existing in the prior art may be replaced before the signature, and then achieve the technical effect of providing an approximate seal in the electronic file.

再者,本發明之依順序提供簽章對象簽章以產生簽章文件之方法,可實現於硬體、軟體或硬體與軟體之組合中,亦可在電腦系統中以集中方式實現或以不同元件散佈於若干互連之電腦系統的分散方式實現。In addition, the method for providing signature objects in order to produce signature documents in the present invention can be implemented in hardware, software, or a combination of hardware and software, and can also be implemented in a centralized manner or in a computer system Different components are scattered in several interconnected computer systems in a decentralized manner.

雖然本發明所揭露之實施方式如上,惟所述之內容並非用以直接限定本發明之專利保護範圍。任何本發明所屬技術領域中具有通常知識者,在不脫離本發明所揭露之精神和範圍的前提下,對本發明之實施的形式上及細節上作些許之更動潤飾,均屬於本發明之專利保護範圍。本發明之專利保護範圍,仍須以所附之申請專利範圍所界定者為準。Although the disclosed embodiments of the present invention are as described above, the content described is not intended to directly limit the patent protection scope of the present invention. Anyone who has ordinary knowledge in the technical field to which the present invention belongs, without making any departure from the spirit and scope disclosed by the present invention, makes slight modifications to the form and details of the implementation of the present invention, all belong to the patent protection of the present invention range. The scope of patent protection of the present invention shall still be determined by the scope of the attached patent application.

120:文件主機 130:簽章伺服器 150:客戶端 160:存查伺服器 170:公證伺服器 400:服務伺服器 步驟210:文件主機取得原始文件,原始文件包含客戶端所提供之內容參數 步驟220:文件主機依據原始文件之類別定義簽章順序 步驟230:文件主機產生包含簽章順序及原始文件之目標文件,並產生與目標文件對應之文件識別資料,及傳送目標文件及文件識別資料至簽章伺服器 步驟240:簽章伺服器加密文件識別資料 步驟250:簽章伺服器依據簽章順序依序提供多個簽章對象對電子文件簽章以產生簽章文件,簽章文件包含簽章對象所產生之記載文件識別資料之可視化資料 步驟260:簽章伺服器傳送簽章文件至存查伺服器儲存,並傳送簽章文件至客戶端 步驟310:客戶端依據可視化資料取得文件識別資料並傳送文件識別資料至公證伺服器 步驟320:公證伺服器依據文件識別資料判斷目標文件存在時傳送文件識別資料至存查伺服器 步驟330:存查伺服器依據與文件識別資料對應之目標文件是否可即時被存取產生判斷結果,並傳送判斷結果至公證伺服器 步驟340:公證伺服器依據身分驗證訊息判斷是否允許客戶端存取目標文件 步驟350:公證伺服器於判斷結果表示為可即時被存取時,傳送信物至客戶端及存查伺服器 步驟360:客戶端傳送信物至存查伺服器 步驟370:存查伺服器於公證伺服器與客戶端傳送之信物相同時傳送目標文件至客戶端120: File host 130: signature server 150: client 160: Inventory server 170: Notary server 400: service server Step 210: The file host obtains the original file, which contains the content parameters provided by the client Step 220: The file host defines the signature sequence according to the original file type Step 230: The document host generates a target document including the signature sequence and the original document, and generates document identification data corresponding to the target document, and transmits the target document and the document identification data to the signature server Step 240: Signature server encrypts document identification data Step 250: The signing server provides multiple signing objects to sign the electronic document in sequence according to the signing order to generate a signing document. The signing document contains visual data of the document identification data generated by the signing object Step 260: The signature server sends the signature document to the storage server for storage, and sends the signature document to the client Step 310: The client obtains the document identification data according to the visualization data and sends the document identification data to the notary server Step 320: When the notary server judges that the target document exists according to the document identification data, it sends the document identification data to the search server Step 330: The search server generates a judgment result based on whether the target document corresponding to the document identification data can be accessed in real time, and sends the judgment result to the notary server Step 340: The notary server determines whether to allow the client to access the target document based on the identity verification message Step 350: When the judgment result indicates that it can be accessed in real time, the notary server sends the message to the client and the search server Step 360: The client sends the message to the search server Step 370: The search server sends the target document to the client when the notary server and the client send the same token

第1圖為本發明所提之依順序提供簽章對象簽章以產生簽章文件之系統架構圖。 第2圖為本發明所提之依順序提供簽章對象簽章以產生簽章文件之方法流程圖。 第3圖為本發明所提之依簽章文件中之可視化資料調閱目標文件之方法流程圖。FIG. 1 is a system architecture diagram of providing a signature object signature in order to generate a signature file according to the present invention. FIG. 2 is a flow chart of a method for providing a signature object signature in order to generate a signature file according to the present invention. FIG. 3 is a flowchart of the method for retrieving the target document according to the visual data in the signature document according to the present invention.

步驟210:文件主機取得原始文件,原始文件包含客戶端所提供之內容參數 Step 210: The file host obtains the original file, which contains the content parameters provided by the client

步驟220:文件主機依據原始文件之類別定義簽章順序 Step 220: The file host defines the signature sequence according to the original file type

步驟230:文件主機產生包含簽章順序及原始文件之目標文件,並產生與目標文件對應之文件識別資料,及傳送目標文件及文件識別資料至簽章伺服器 Step 230: The document host generates a target document including the signature sequence and the original document, and generates document identification data corresponding to the target document, and transmits the target document and the document identification data to the signature server

步驟240:簽章伺服器加密文件識別資料 Step 240: Signature server encrypts document identification data

步驟250:簽章伺服器依據簽章順序依序提供多個簽章對象對電子文件簽章以產生簽章文件,簽章文件包含簽章對象所產生之記載文件識別資料之可視化資料 Step 250: The signing server provides multiple signing objects to sign the electronic document in sequence according to the signing order to generate a signing document. The signing document contains visual data of the document identification data generated by the signing object

步驟260:簽章伺服器傳送簽章文件至存查伺服器儲存,並傳送簽章文件至客戶端 Step 260: The signature server sends the signature document to the storage server for storage, and sends the signature document to the client

Claims (10)

一種依順序提供簽章對象簽章以產生簽章文件之方法,該方法至少包含下列步驟:一文件主機取得一原始文件,該原始文件包含一客戶端所提供之一內容參數;該文件主機依據該原始文件之類別定義一簽章順序;該文件主機產生包含該簽章順序及該原始文件之一目標文件,並產生與該目標文件對應之一文件識別資料,及傳送該目標文件及該文件識別資料至一簽章伺服器;該簽章伺服器依據該簽章順序依序提供多個簽章對象對一電子文件簽章以產生一簽章文件,其中,該些簽章對象包含該客戶端及該簽章伺服器,該簽章文件包含該些簽章對象至少其中之一所產生之記載該文件識別資料之一可視化資料,且該些簽章對象中該簽章順序所表示之第一個簽章對象對該電子文件簽章時,該電子文件為該目標文件,該些簽章對象中該簽章順序所表示之非第一個簽章對象對該電子文件簽章時,該電子文件為該些簽章對象中該簽章順序所表示之前一個簽章對象進行簽章後所產生之一作業文件;及該簽章伺服器傳送該簽章文件至一存查伺服器儲存,並傳送該簽章文件至該客戶端。 A method for sequentially providing signature object signatures to generate signature files, the method includes at least the following steps: a file host obtains an original file, the original file contains a content parameter provided by a client; the file host is based on The category of the original document defines a signature sequence; the document host generates a target document including the signature sequence and the original document, and generates a document identification data corresponding to the target document, and transmits the target document and the document The identification data is sent to a signature server; the signature server sequentially provides multiple signature objects to an electronic document according to the signature sequence to generate a signature document, wherein the signature objects include the client And the signing server, the signing document contains visual data that records identification information of the document generated by at least one of the signing objects, and the first of the signing objects in the signing order When a signing object signs the electronic file, the electronic file is the target file. When the signing order is not the first signing object among the signing objects, it is not the first signing object. The electronic document is an operation document generated after the previous signing object indicates the signing order among the signing objects; and the signing server sends the signing document to a search server for storage, and Send the signature file to the client. 如申請專利範圍第1項所述之依順序提供簽章對象簽章以產生簽章文件之方法,其中該方法於該簽章伺服器依據該簽章順序依序提供該些簽章 對象對該電子文件簽章以產生該簽章文件之步驟前,更包含該簽章伺服器加密該文件識別資料之步驟。 A method for providing signature objects in sequence to produce signature documents as described in item 1 of the scope of patent application, wherein the method provides the signatures in sequence in the signature server according to the signature sequence Before the step of signing the electronic document to generate the signed document, the object further includes the step of encrypting the document identification data by the signing server. 如申請專利範圍第1項所述之依順序提供簽章對象簽章以產生簽章文件之方法,其中該簽章伺服器依據該簽章順序依序提供該些簽章對象對該電子文件簽章以產生該簽章文件之步驟,更包含該簽章伺服器提供一公證伺服器對最後產生之該作業文件簽章以產生該簽章文件之步驟。 A method for providing signature objects in sequence to produce signature documents as described in item 1 of the patent application scope, wherein the signature server provides the signature objects in sequence to the electronic document according to the signature sequence The step of generating the signature document further includes the step of the signature server providing a notary server to sign the operation document finally generated to generate the signature document. 如申請專利範圍第3項所述之依順序提供簽章對象簽章以產生簽章文件之方法,其中該方法於該簽章主機傳送該簽章文件至該存查伺服器儲存之步驟後,更包含該客戶端依據該可視化資料取得該文件識別資料並傳送該文件識別資料至該公證伺服器,該公證伺服器依據該文件識別資料判斷該目標文件存在時傳送該文件識別資料至該存查伺服器,該存查伺服器依據該文件識別資料判斷該目標文件可即時被存取時產生並傳送一判斷結果至該公證伺服器,該公證伺服器於該判斷結果表示該目標文件可即時被存取時傳送一信物至該客戶端及該存查伺服器,使該客戶端傳送該信物至該存查伺服器,該存查伺服器於判斷該公證伺服器所傳送之該信物與該客戶端所傳送之該信物相同時傳送該目標文件至該客戶端之步驟。 As described in item 3 of the scope of patent application, a method of providing signature objects in order to generate signature documents in sequence, in which the method changes after the step of the signature host sending the signature document to the search server for storage Including that the client obtains the document identification data according to the visualization data and sends the document identification data to the notary server, and the notary server sends the document identification data to the search server when the target document exists according to the document identification data , The search server generates and sends a judgment result to the notary server when it judges that the target document can be accessed in real time according to the document identification data, and the notary server when the judgment result indicates that the target document can be accessed in real time Send a token to the client and the search server, so that the client sends the token to the check server, the check server determines the token sent by the notary server and the token sent by the client The step of sending the target file to the client at the same time. 如申請專利範圍第4項所述之依順序提供簽章對象簽章以產生簽章文件之方法,其中該存查伺服器傳送該確認訊息至該公證伺服器之步驟前,更包含該存查伺服器依據身份驗證結果選擇允許或拒絕該客戶端存取該簽章文件之步驟。 As described in item 4 of the scope of patent application, a method of providing signature objects in order to produce signature documents in sequence, wherein the check server further includes the check server before the step of sending the confirmation message to the notary server According to the identity verification result, select the steps to allow or deny the client to access the signature file. 一種依順序提供簽章對象簽章以產生簽章文件之系統,該系統至少包含: 一客戶端,用以提供一內容參數;一文件主機,用以取得一原始文件,並依據該原始文件之類別定義一簽章順序,及用以產生包含該簽章順序及該原始文件之一目標文件,並產生與該目標文件對應之一文件識別資料,其中,該原始文件包含該內容參數;一簽章伺服器,用以接收該文件主機所傳送之該目標文件及該文件識別資料,及用以依據該簽章順序依序提供多個簽章對象對一電子文件簽章以產生一簽章文件,並傳送該簽章文件至該客戶端,其中,該些簽章對象包含該客戶端及該簽章伺服器,該簽章文件包含該些簽章對象至少其中之一所產生之記載該文件識別資料之一可視化資料,且該些簽章對象中該簽章順序所表示之第一個簽章對象對該電子文件簽章時,該電子文件為該目標文件,該些簽章對象中該簽章順序所表示之非第一個簽章對象對該電子文件簽章時,該電子文件為該些簽章對象中該簽章順序所表示之前一個簽章對象進行簽章後所產生之一作業文件;及一存查伺服器,用以接收並儲存該簽章伺服器所傳送之該簽章文件。 A system for providing signature objects in order to produce signature files in sequence, the system includes at least: A client is used to provide a content parameter; a file host is used to obtain an original file and define a signature sequence according to the type of the original file, and to generate one including the signature sequence and the original file Target file, and generates a file identification data corresponding to the target file, wherein the original file contains the content parameters; a signature server for receiving the target file and the file identification data sent by the file host, And used to provide multiple signature objects in sequence according to the signature sequence to sign an electronic file to generate a signature file, and send the signature file to the client, wherein the signature objects include the client End and the signing server, the signing document contains visual data that records at least one of the signing objects and records the document identification data, and among the signing objects, the signing order indicates the first When a signing object signs the electronic file, the electronic file is the target file, and when the signing order is not the first signing object among the signing objects, the electronic file is signed. The electronic file is an operation document generated after the previous signing object indicates the signing order among the signing objects in the signing objects; and a search server for receiving and storing the file sent by the signing server The signature document. 如申請專利範圍第6項所述之依順序提供簽章對象簽章以產生簽章文件之系統,其中該簽章伺服器更用以加密該文件識別資料。 As described in item 6 of the scope of patent application, a system for providing signature objects in order to produce signature documents in sequence, wherein the signature server is further used to encrypt the document identification data. 如申請專利範圍第6項所述之依順序提供簽章對象簽章以產生簽章文件之系統,其中該系統更包含一公證伺服器,用以接收該簽章伺服器所傳送之最後產生之該作業文件簽章,及用以對最後產生之該作業文件以產生該簽章文件,並傳送該簽章文件至該簽章伺服器。 As described in item 6 of the scope of patent application, a system for providing signature object signatures in sequence to generate signature documents, wherein the system further includes a notarization server for receiving the final generation transmitted by the signature server The operation document is signed, and the operation document is finally used to generate the signature document, and the signature document is transmitted to the signature server. 如申請專利範圍第8項所述之依順序提供簽章對象簽章以產生簽章文件之系統,其中該客戶端更用以依據該可視化資料取得該文件識別資料並傳送該文件識別資料至該公證伺服器,該公證伺服器更用以依據該文件識別資料判斷該目標文件存在時傳送該文件識別資料至該存查伺服器,並於該存查伺服器所傳送之一判斷結果表示該目標文件可即時被存取時傳送一信物至該客戶端及該存查伺服器,使該客戶端傳送該信物至該存查伺服器,該存查伺服器更用以於判斷該公證伺服器所傳送之該信物與該客戶端所傳送之該信物相同時傳送該目標文件至該客戶端。 As described in item 8 of the scope of patent application, a system for providing signature objects in order to produce signature documents in sequence, wherein the client is further used to obtain the document identification data based on the visualization data and send the document identification data to the Notary server, the notary server is further used to send the document identification data to the search server when the target document exists according to the document identification data, and a judgment result sent by the search server indicates that the target document can be Send a token to the client and the search server when it is accessed in real time, so that the client sends the token to the search server. The search server is also used to determine the token and the token sent by the notary server. When the message transmitted by the client is the same, the target file is transmitted to the client. 如申請專利範圍第9項所述之依順序提供簽章對象簽章以產生簽章文件之系統,其中該存查伺服器更用以依據身分驗證結果選擇允許或拒絕該客戶端存取該目標文件。 As described in item 9 of the scope of patent application, a system for providing signature objects in order to generate signature documents in sequence, wherein the check server is further used to select whether to allow or deny the client to access the target document based on the identity verification result .
TW108101522A 2019-01-15 2019-01-15 System and method for providing signature objects in order to produce signature documents in order TWI690192B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW108101522A TWI690192B (en) 2019-01-15 2019-01-15 System and method for providing signature objects in order to produce signature documents in order

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW108101522A TWI690192B (en) 2019-01-15 2019-01-15 System and method for providing signature objects in order to produce signature documents in order

Publications (2)

Publication Number Publication Date
TWI690192B true TWI690192B (en) 2020-04-01
TW202029691A TW202029691A (en) 2020-08-01

Family

ID=71134275

Family Applications (1)

Application Number Title Priority Date Filing Date
TW108101522A TWI690192B (en) 2019-01-15 2019-01-15 System and method for providing signature objects in order to produce signature documents in order

Country Status (1)

Country Link
TW (1) TWI690192B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI778361B (en) * 2020-05-18 2022-09-21 天逸財金科技服務股份有限公司 Distributed digital signature processing method and system
TWI897809B (en) * 2021-10-28 2025-09-11 凱鈿行動科技股份有限公司 Online signing system and method
TWI898244B (en) * 2023-08-08 2025-09-21 金壹金融科技有限公司 System for controlling signature sequence according to sequence codes to complete the online insurance application and method thereof

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070079128A1 (en) * 2005-08-26 2007-04-05 Hon Hai Precision Industry Co., Ltd. Electronic signature system and method
CN103098047A (en) * 2010-05-04 2013-05-08 多塞股份公司 Systems and methods for distributed electronic signature documents including version control
CN103699494A (en) * 2013-12-06 2014-04-02 北京奇虎科技有限公司 Data storage method, data storage equipment and distributed storage system
TWM578053U (en) * 2019-01-15 2019-05-11 臺灣網路認證股份有限公司 System for generating signing documents sequentially providing the signature for the signing party

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070079128A1 (en) * 2005-08-26 2007-04-05 Hon Hai Precision Industry Co., Ltd. Electronic signature system and method
CN103098047A (en) * 2010-05-04 2013-05-08 多塞股份公司 Systems and methods for distributed electronic signature documents including version control
CN103098047B (en) 2010-05-04 2017-02-15 多塞股份公司 Systems and methods for distributed electronic signature documents including version control
CN103699494A (en) * 2013-12-06 2014-04-02 北京奇虎科技有限公司 Data storage method, data storage equipment and distributed storage system
TWM578053U (en) * 2019-01-15 2019-05-11 臺灣網路認證股份有限公司 System for generating signing documents sequentially providing the signature for the signing party

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI778361B (en) * 2020-05-18 2022-09-21 天逸財金科技服務股份有限公司 Distributed digital signature processing method and system
TWI897809B (en) * 2021-10-28 2025-09-11 凱鈿行動科技股份有限公司 Online signing system and method
TWI898244B (en) * 2023-08-08 2025-09-21 金壹金融科技有限公司 System for controlling signature sequence according to sequence codes to complete the online insurance application and method thereof

Also Published As

Publication number Publication date
TW202029691A (en) 2020-08-01

Similar Documents

Publication Publication Date Title
CN108900464B (en) Electronic device, block chain-based data processing method, and computer storage medium
CN110502922B (en) Article circulation link tracing method and device based on block chain and electronic equipment
TWI690192B (en) System and method for providing signature objects in order to produce signature documents in order
CN100587699C (en) Method and computer readable medium for generating usage rights for items based on access rights
CN114925031A (en) Data differential security sharing method, device, electronic device and medium
TWM602765U (en) System for attesting and verifying insurance policy through third-party blockchain
JP6523581B2 (en) INFORMATION PROVIDING DEVICE, INFORMATION PROVIDING SYSTEM, INFORMATION PROVIDING METHOD, AND INFORMATION PROVIDING PROGRAM
CN118133326B (en) Data encryption transmission system based on chip
CN100504829C (en) Communication of information via a side-band channel, and use of same to verify positional relationship
CN110955904B (en) Data encryption method, data decryption method, processor and computer equipment
US11418484B2 (en) Document management system
CN111783119A (en) Form data security control method and device, electronic equipment and storage medium
TWM592629U (en) System to obtain appended data and execute corresponding operation when identity is confirmed
TWM578053U (en) System for generating signing documents sequentially providing the signature for the signing party
CN118395518A (en) Page table checking method based on chip
TWI742429B (en) System for displaying signature message of portable document format file in web page and method thereof
TWM620550U (en) System for verifying identity on different devices by verifying valid certificates
JP4882219B2 (en) Information notification system, information processing apparatus, information processing method, and computer program
TWM618726U (en) System for verifying identity on different devices based on certificates and verification data
TW202305627A (en) System for confirming identity on different devices by verifying valid certification and method thereof
TWM587773U (en) Device for displaying signature information in portable document format on webpage
TWI777105B (en) System for obtaining additional data when identifying to execute operation and method thereof
TWM586390U (en) A system for performing identity verification according to the service instruction to execute the corresponding service
TWM583978U (en) System of using physical carrier to store digital certificate for performing online transaction
US12430409B2 (en) Third party based pirated copy tracing