TWI623849B - Electronic file security system and method - Google Patents

Abstract

An electronic document security system includes a fingerprint sensor, a fingerprint identifier, a processing module, a display module, an input module, and a memory module. The fingerprint sensor is used to obtain fingerprint data of multiple people. The fingerprint identifier processes the fingerprint data into a plurality of sets of fingerprint feature data. The display module is for displaying a clear text. The processing module carries an encryption program. The input module is configured to input an encryption command to notify the processing module to execute the encryption program, and the coded position of the fingerprint feature data output by the fingerprint identifier is re-arranged into a predetermined key according to a correspondence table. The memory module records a correspondence table and an encrypted file, the encrypted file having the predetermined key and a plaintext data encrypted by the predetermined key. In this way, important files in the system can be prevented from being tampered with.

Description

Electronic file security system and method

The present invention relates to an electronic document security system and method, and more particularly to an electronic document security system and method for fingerprint encryption.

The existing fingerprint identification technology is known to be used for unlocking a computer system. However, it is impossible to prevent important files in the computer system from being snooped and tampered with. In addition, electronic paper (Paper-like Display) is mostly used in e-book technology. How to make it have more different applications is also an urgent problem to be solved.

Accordingly, it is an object of the present invention to provide an electronic document security system and method that addresses the deficiencies of the prior art.

Therefore, the electronic document security system of the present invention includes a fingerprint sensor, a fingerprint identifier, a processing module, a display module, an input module, and a memory module.

The fingerprint sensor acquires fingerprint data of multiple people in an encryption stage. The fingerprint identifier processes the fingerprint data into a plurality of sets of fingerprint feature data. The processing module is electrically connected to the fingerprint identifier and carries an encryption program. The display module is electrically The processing module is connected and displays a plaintext material. The input module is electrically connected to the processing module for inputting an encryption command to notify the processing module to execute the encryption program to re-arrange the coding positions of the fingerprint feature data of the encryption stage into a predetermined density according to a correspondence table. key. The memory module is electrically connected to the processing module, and records the correspondence table and an encrypted file having the predetermined key and a plaintext data encrypted by the predetermined key.

In some implementations, the processing module further includes a decryption program, the fingerprint sensor additionally acquiring the fingerprint data in the decryption stage, and the input module further inputs a decryption instruction to notify the processing module. The group executes the decryption program to restore the coded position of the fingerprint feature data of the decryption stage according to the correspondence table to restore a to-be-matched key, and the processing module compares with the to-be-matched key and the predetermined key. And if the matching is performed, the predetermined key is decrypted to display the plaintext data by the display module, and if the matching is not matched, the plaintext data cannot be displayed on the display module.

In some implementations, the encrypted file defines a header area and a data content area, the predetermined key is located in the header area, and the plaintext data is located in the data content area.

In some implementations, the display module is an electronic paper module.

In some implementations, the fingerprint sensor and the fingerprint reader are integrated into a thin film type fingerprint controller.

In some implementations, the electronic paper module is a particle display , a cholesteric liquid crystal display, a micro-electromechanical display or an electro-chemical display.

The electronic document security method of the present invention cooperates with an electronic document security system, which includes a fingerprint sensor, a fingerprint identifier, a processing module, a display module, and an input module. And a memory module, the method comprising the steps of: obtaining, by the fingerprint sensor, a plurality of fingerprint data in an encryption stage, and the fingerprint identifier processes the fingerprint data into a plurality of sets of fingerprint feature data; The display module displays a plaintext data; an encryption command is input through the input module; and the coding position of the fingerprint feature data in the encryption stage is rearranged into a predetermined density according to the correspondence table according to the encryption command. And storing an encrypted file of the plaintext data encrypted by the predetermined key in the memory module.

In some implementations, the electronic file security method further includes the steps of: obtaining, by the fingerprint sensor, a plurality of fingerprint data in a decryption phase; inputting a decryption instruction through the input module; The module restores a to-be-matched key according to the decoding location of the fingerprint feature data of the decryption stage according to the decryption instruction; and determines, by the processing module, whether the to-be-matched key and the predetermined key match If the match is met, the predetermined key is decrypted to display the plaintext data in the display module, and if the data is not matched, the plaintext data cannot be displayed on the display module.

In some implementations, the encrypted file defines a header area and a data content area, the predetermined key is located in the header area, and the plaintext data is located in the data. The area.

In some embodiments, the computer program product of the present invention is capable of performing the electronic file security method as described above after the computer loads the computer program product and executes it.

The electronic document security system and method of the present invention have at least the following effects: a correspondence table is built in the hardware of the electronic document security system to cooperate with a predetermined key generated by a multi-person fingerprint to decrypt the encrypted file, so that the electronic file and the system hardware are mutually Binding, even if the encrypted file is stolen, since the thief's computer does not have a corresponding table and a predetermined key, the encrypted file cannot be decrypted, so the electronic file security system has a good security effect.

10‧‧‧Processing module

100‧‧‧Electronic Document Security System

111‧‧‧Finger sensor

112‧‧‧Finger identifier

113‧‧‧Input module

12‧‧‧Display module

2‧‧‧Memory Module

21‧‧‧ correspondence table

22‧‧‧Encrypted files

221‧‧‧Predetermined key

222‧‧ ‧Information

3‧‧‧Encryption program

31‧‧‧Integrated unit

32‧‧‧Key generation unit

33‧‧‧Encryption unit

5‧‧‧Decryption program

51‧‧‧corresponding unit

52‧‧‧Key Resolution Unit

53‧‧‧Verification unit

S21~S26‧‧‧Steps

S31~S38‧‧‧Steps

Other features and advantages of the present invention will be apparent from the embodiments of the present invention. FIG. 1 is a system block diagram of an embodiment of the electronic document security system of the present invention; FIG. 2 is a block diagram of the embodiment. An encrypted flowchart of the electronic document security method; and FIG. 3 is a decryption flowchart of the electronic document security method of the embodiment.

Referring to FIG. 1 , an embodiment of an electronic document security system 100 of the present invention includes a processing module 10 , a fingerprint sensor 111 , a fingerprint identifier 112 , and a fingerprint sensor 112 . The input module 113, a display module 12 and a memory module 2 are provided.

The display module 12 is an electronic paper module. Since the electronic paper has light and thin characteristics and energy saving characteristics, it is suitable as a carrier for an electronic contract document. The electronic paper module can be a particle display device, a Cholesteric Liquid Crystal Display device, a Micro Electro Mechanical Systems device or an electro-chemical display device. The particle type display may be a bistable particle having a microcapsule electrophoresis technique, a microcup (MicroCup) electrophoresis technique, a Quick-Response Liquid Powder Display technique, or a lateral electrophoresis technique. Cholesterol-type liquid crystal displays have cholesteric liquid crystal molecules to reflect and transmit at two different polar states at different potentials. A microelectromechanical display has a bistable microelectromechanical component that utilizes reflected light to cause a particular wavelength off-line modulation to produce a color display effect. The electrochemistry type display may be a benzene ring compound having electrochromic technology or a dye ink of electrowetting technology.

The fingerprint sensor 111 and the fingerprint identifier 112 may be integrated into a flexible film type fingerprint controller, or a control circuit that separates the fingerprint sensor 111 and the fingerprint identifier 112, and belongs to the application of the present invention. The scope.

The fingerprint sensor 111 is configured to obtain a plurality of fingerprint data of a plurality of people in an encryption phase and a decryption phase, and the fingerprint data is, for example, optical sensing data or capacitance sensing data of one finger. The fingerprint identifier 112 is separately located in the fingerprint data It is determined by multiple sets of fingerprint feature data, for example, recording a plurality of feature points on the fingerprint, and calculating the distance and angle between the feature points, and then converting the aforementioned geometric relationship into a unique set of feature data by an algorithm to provide Apply to the processing module 10.

The processing module 10 is electrically connected to the fingerprint identifier 112 and carries an encryption program 3 and a decryption program 5. The encryption program 3 has an integration unit 31, a key generation unit 32, and an encryption unit 33. The decryption program 5 has a corresponding unit 51, a key parsing unit 52, and a verification unit 53.

The display module 12 is configured to display a plaintext material 222, such as an electronic document. The input module 113 can be, but is not limited to, a keypad for inputting a document operation instruction, for example, a text instruction of a Chinese input method, for writing the plaintext data 222, and inputting an encryption instruction, for example, pressing one. An encryption key is sent to notify the processing module 10 to execute the encryption program 3 to perform an encryption process.

In this embodiment, the integration unit 31 integrates the fingerprint feature data of the encryption stage, and the key generation unit 32 rearranges the coding positions of the fingerprint feature data of the encryption stage into a predetermined key according to a correspondence table 21. 221. The memory module 2 records the correspondence table 21 and an encrypted file 22. The encryption unit 33 defines the encrypted file 22 with a header area and a data content area, and the predetermined key 221 is hidden in the header area, and the plaintext data 222 is disposed in the data content area. It should be noted that the correspondence table 21 may be randomly arranged according to, for example, a unique identification code of the processing module 10 or other hardware components as a seed to generate a unique correspondence table 21 of the machine, and the different devices have different Different hardware components have different correspondence tables 21, thereby avoiding the problem that the corresponding table 21 is cracked.

The fingerprint sensor 111 obtains fingerprint data of a plurality of people in the decryption stage, and the input module 113 further inputs a decryption command, for example, pressing a decryption key to notify the processing module 10 to execute the decryption program 5, corresponding to The unit 51 separates the fingerprint feature data obtained in the decryption phase, and the key parsing unit 52 restores the coded position of the fingerprint feature data in the decryption phase according to the correspondence table 21 to restore a to-be-matched key. Then, the verification unit 53 compares the to-be-matched key and the predetermined key 221, and if it matches, decrypts the predetermined key 221 to display the plaintext data 222 by the display module 12, if not, it cannot The plaintext data 222 is displayed on the display module 12.

Referring to FIG. 2, the encryption process of the electronic document confidentiality method of the electronic document security system 100 includes the following steps: First, a plaintext data 222 containing legally valid text content is first created by the pre-established testator (step S21); The encryption program 3 is turned on (step S22). Next, the fingerprint is prompted to be input (step S23, for example, prompting the pre-testamentary witness and the two witnesses to input fingerprints respectively, so that the electronic document security system 100 generates the fingerprint feature value 1 to the fingerprint feature value N (N=3). Then, confirm Complete fingerprint input of all the people (step S24), for example, press the encryption key, so that the encryption program 3 can generate a predetermined key 221 according to the fingerprint input data of the owner and the correspondence table 21 (step S25), and The encryption program 3 encrypts the plaintext material 222 with a predetermined key 221 into an encrypted file 22 (step S26), which can be stored in the local machine or the cloud.

Referring to FIG. 3, the decryption process of the electronic document security method of the electronic document security system 100 includes the following steps: First, the encrypted file 22 is obtained (step S31), and the encrypted file 22 may be taken from the local machine or the cloud. Then, the decryption program 5 is started (step S32), and the decryption program 5 can be automatically executed when the encrypted file 22 is clicked. Then, the decryption program 5 displays a prompt to input a fingerprint (step S33), for example, prompting the pre-testamentary witness and the plurality of witnesses to input fingerprints respectively, so that the electronic document security system 100 generates the fingerprint feature value 1 to the fingerprint feature value N (N=3). ). Then, it is confirmed that the fingerprint input of all the people is completed (step S34), for example, the decryption key is pressed, so that the decryption program 5 can generate a to-be-matched key according to the fingerprint input data of the owner and the correspondence table 21 (step S35), and the decryption program 5 judges whether or not the comparison key matches the predetermined key 221 of the encrypted file 22 (step S36). If there is a match, the decryption program 5 decrypts the encrypted file 22 with the predetermined key 221 for the display module 12 to display the plaintext data 222 (step S37); if it does not match, the plaintext data 222 cannot be displayed on the display module 12 (step S38). In addition, it is also impossible to tamper with or edit the encrypted file 22.

In summary, the electronic document security system 100 and method have at least the following functions: a correspondence table 21 is built in the hardware of the electronic document security system 100 to decrypt the encrypted file 22 with a predetermined key 221 generated by the multi-person fingerprint. The electronic file and the system hardware are bound to each other. Even if the encrypted file 22 is stolen, since the thief's computer does not have the corresponding table 21 and the predetermined key 221, the encrypted file 22 cannot be decrypted, so the electronic file security system 100 Has a good security effect, so it can be achieved The purpose of the cost invention.

However, the above is only the embodiment of the present invention, and the scope of the invention is not limited thereto, and all the equivalent equivalent changes and modifications according to the scope of the patent application and the patent specification of the present invention are still The scope of the invention is covered.

Claims (10)

An electronic file security system comprising: a fingerprint sensor for obtaining a plurality of fingerprint data in an encryption phase; a fingerprint identifier for processing the fingerprint data into a plurality of sets of fingerprint feature data; a processing module, electrical Connecting the fingerprint identifier, carrying an encryption program; a display module electrically connected to the processing module for displaying a plaintext data; an input module electrically connected to the processing module for inputting an encryption command to notify The processing module executes the encryption program to re-arrange the encoding positions of the fingerprint feature data of the encryption stage into a predetermined key according to a correspondence table; and a memory module electrically connected to the processing module, and records the Correspondence table and an encrypted file having the predetermined key and a plaintext material encrypted by the predetermined key. The electronic document security system of claim 1, wherein the processing module further comprises a decryption program, the fingerprint sensor additionally obtaining a plurality of fingerprint data in a decryption phase, and the input module is further configured to input and decrypt The instruction is configured to notify the processing module to execute the decryption program to restore a coded position of the fingerprint feature data of the decryption stage according to the correspondence table, and the processing module compares the to-be-matched key and Whether the predetermined key matches, if the matching is successful, the predetermined key is decrypted to display the plaintext data in the display module, and if the matching is not matched, the plaintext data cannot be displayed on the display module. The electronic document security system of claim 1 or 2, wherein the encrypted file defines a header area and a data content area, the predetermined key is located in the header area, and the plaintext material is located in the data content area. The electronic document security system of claim 3, wherein the display module is an electronic paper module. The electronic document security system of claim 4, wherein the fingerprint sensor and the fingerprint identifier are integrated into a thin film type fingerprint controller. The electronic document security system of claim 5, wherein the electronic paper module is a particle display, a cholesteric liquid crystal display, a micro-electromechanical display, or an electro-chemical display. An electronic file security method is implemented in conjunction with an electronic document security system comprising a fingerprint sensor, a fingerprint reader, a processing module, a display module, an input module and a memory module The method includes the following steps: displaying, by the display module, a plaintext data; obtaining, by the fingerprint sensor, a plurality of fingerprint data in an encryption stage, and the fingerprint identifier processing the fingerprint data into multiple sets of fingerprints respectively Characteristic data; inputting an encryption instruction through the input module; and processing, by the processing module, the coding position of the fingerprint feature data in the encryption stage according to the encryption instruction to be rearranged into a predetermined key according to a correspondence table; The encrypted file of the plaintext data encrypted by the predetermined key is in the memory module. The method for securing an electronic file according to claim 7, further comprising the steps of: obtaining, by the fingerprint sensor, a plurality of fingerprint data in a decryption phase; inputting a decryption instruction through the input module; Determining, according to the decryption instruction, the coding position of the fingerprint feature data of the decryption stage according to the correspondence table to restore a to-be-matched key; and determining, by the processing module, whether the to-be-matched key and the predetermined key match, if If the matching is performed, the predetermined key is decrypted to display the plaintext data in the display module. If the matching is not matched, the plaintext data cannot be displayed on the display module. The method for securing an electronic document according to claim 8, wherein the encrypted file defines a header area and a data content area, the predetermined key is located in the header area, and the plaintext data is located in the data content area. A computer program product, when the computer loads the computer program product and executes it, the method as claimed in any one of claims 7 to 9 can be completed.