WO2006081861A1 - Systeme de certification et d'authentification electronique - Google Patents
Systeme de certification et d'authentification electronique Download PDFInfo
- Publication number
- WO2006081861A1 WO2006081861A1 PCT/EP2005/013506 EP2005013506W WO2006081861A1 WO 2006081861 A1 WO2006081861 A1 WO 2006081861A1 EP 2005013506 W EP2005013506 W EP 2005013506W WO 2006081861 A1 WO2006081861 A1 WO 2006081861A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- module
- document information
- information
- barcode
- certification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Ceased
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07D—HANDLING OF COINS OR VALUABLE PAPERS, e.g. TESTING, SORTING BY DENOMINATIONS, COUNTING, DISPENSING, CHANGING OR DEPOSITING
- G07D7/00—Testing specially adapted to determine the identity or genuineness of valuable papers or for segregating those which are unacceptable, e.g. banknotes that are alien to a currency
- G07D7/004—Testing specially adapted to determine the identity or genuineness of valuable papers or for segregating those which are unacceptable, e.g. banknotes that are alien to a currency using digital security elements, e.g. information coded on a magnetic thread or strip
- G07D7/0043—Testing specially adapted to determine the identity or genuineness of valuable papers or for segregating those which are unacceptable, e.g. banknotes that are alien to a currency using digital security elements, e.g. information coded on a magnetic thread or strip using barcodes
Definitions
- the invention relates to electronic document security systems and in particular to the certification and authentication of document information of various type, like whole documents, certificates, signatures, stamps, etc., especially by verifying its correctness and safety / immunity from fraud.
- the invention uses an electronic system which comprises at least one of several modules:
- Main Module One of the main modules tasks is it to grant access to the system on the highest level. A further task is it to create crypto-data for use with the system, such as system key pairs generated by asymmetrical crypto-algorithms. It typically runs on an application server / server system which connects to a database server / server system. The server is preferably placed in a trusted environment (e.g. as a trust centre), as for example in the data centre of certification offices. The main module updates its data by connecting to this database and/or to other databases and/or by connecting to other modules. This module is preferably used / activated by an internet browser that runs on a PC but can also accessed by other means like programmable interfaces to other programs. The user / supervisor of this module can for e.g. create a system key pair(s), enter administrator rights and information, and enroll administrator signatures.
- a trusted environment e.g. as a trust centre
- Admin Module An administrator can use this module to, for example: a) Enter certification office information and stamp to be stored in the system; b) Enter certification office registrars' information and enroll their signatures; c) Activate or deactivate certification office registrars; d) Provide certification office registrars with user IDs and passwords; e) Print admin reports.
- the access to this module is typically granted by entering an administrator ID, password and signature into the module but can also be done in other ways, like by fingerprint sensors, ID cards etc.
- Registration Module A registrar can use this module to typically: a) Enter companies' information required for certification like letter header, letter footer and stamp; b) Register companies members' information and enroll their signatures on, e.g., a digital pad and an electronic pen connected to a PC; c) Activate or deactivate signatories or companies' members; d) Provide companies' members with their IDs and passwords; e) Print member transaction reports.
- the access to this module is typically granted by entering a registrar ID number, password and signature but can also be done in other ways, like by fingerprint sensors, ID cards etc.
- Certification Module a member can use this module to, by the way of an example: a) Enter and save the document information that needs to be certified; b) Enroll his signature by the way of, for example, a digital pad and an electronic pen. The system then compares the enrolled signature pattern(s) with the member's signatures pattern(s) stored in the database(s). If the signature is correct, the system displays, e.g. on an internet browser, at least one of: the member signature, his company stamp, certification office stamp, Certification number, Certification date, Certification time and a 2D barcode; c) Print the certified letter displayed himself, i.e. a printer connected to his data station / PC; d) Authorize the printing by another person.
- the access to this module is typically granted by entering a member ID number, password and signature but can also be done in other ways, like by fingerprint sensors, ID cards etc.
- a transaction amount is directly deducted from the member account.
- the certified document information is preferably saved in the database. 5.
- Authorization Module an authorized person can use this module esp. to print a certified letter on his printer that is connected to his PC.
- all of the authorization information is saved in the database for future retrieval.
- Online Verification Module a verifier can use this module to esp. do the following: a) Retrieving a document to be verified by, e.g., entering the document certification number. b) Comparing and/or printing the information displayed to verify its correctness and safety from fraud.
- the above described modules are preferably run on the application server / server system and are preferably connected to an data network like the internet and activated by, for example, an internet browser that runs on a PC.
- an internet browser that runs on a PC.
- the modules check the corresponding user's ID number, password and / or signature before granting access to the respective module.
- the system can comprise:
- An Offline Verification Module that runs on a stand alone verifier data system, e.g. a PC notebook, palm, mobile phone etc., connected to a scanner.
- the verifier can use this module to esp. do the following: a) Scanning the certified document with the scanner; b) Reading the information in the 2D barcode after either: decrypting the random key with the system decryption key, and decrypting the compressed document information with the random key or: decrypting the hash code with the system decryption key and comparing it with compressed document information Hash code); c) Decompressing the document information and displaying it; d) Comparing and/or printing the information displayed to verify its correctness and safety from fraud.
- FIG.1 schematically shows a handwritten signature captured by a digital pad and an electronic pen
- FIG.2 schematically shows a company stamp
- FIG.3 schematically shows a certification office stamp
- FIG.4 schematically shows a 2D barcode.
- the modules of this invention are linked to each other and preferably share one database, and work as one system.
- the process to use the system usually starts with an authorized person to enter admin information (name, position, addresses, IP addresses, admin ID, password etc) and at least one, preferably three or more, electronic admin signatures into the Main Module.
- admin information name, position, addresses, IP addresses, admin ID, password etc
- the admin is then allowed to log into the Admin Module, e.g. by entering his user ID, password, and electronic signature; this can be done by using an internet or intranet browser and a digital pad and electronic pen, for example.
- the admin is thus not restricted to use a closed network and can access the admin module from anywhere.
- the admin in turn can grant access to the Certification Module by entering registrar information (name, employing certification office, address, IP address, registrar ID, password etc) and at least one, preferably three or more, electronic registrar signatures.
- the registrar is then allowed to log into the Registration Module, e.g. by entering his user ID, password, and electronic signature; this can be done by using an internet or intranet browser and a digital pad and electronic pen, for example.
- the registrar is thus not restricted to use a closed network and can access the Registration Module from anywhere.
- the registrar on the other hand, who usually works for a trusted, often governmental, organisation like a certification office, can grant access to the Certification Module to a member of another organisation (often a commercial company) by entering the member information (name, employing company, address, IP address, member ID number, password etc) and at least one, preferably three or more, electronic member signatures. The member is then allowed to log into the member information (name, employing company, address, IP address, member ID number, password etc) and at least one, preferably three or more, electronic member signatures. The member is then allowed to log into the
- Certification Module e.g. by entering his user ID, password, and electronic signature; this can be done by using an internet or intranet browser and a digital pad and electronic pen, for example.
- Members using the Certification Module can enter document information after enrolling their signature(s) into the system, e.g. on a digital pad with an electronic pen connect to a PC. After that, the system compares the enrolled signature patterns with the signatures pattem(s) stored in the database to verify the correctness of the signature. If the signature has been positively verified, the document information is stored in the database, thus completing the certification process.
- a member can also use the system to print, e.g., one or more of: the member's signature, as shown in FIG. 1 , his company stamp as shown in FIG.2, a certification office stamp as shown in FIG.3, a certification number, a certification date, a certification time, and a 2D barcode as shown in FIG.4.
- Printing can be done by using a printer connected to the member's PC or using a PC on a third person's printer wherein the third person is authorized to print the document. The authentication process is then complete.
- a typical 2D barcode usually has bars placed on the horizontal and the vertical dimension (as shown schematically in Fig. 4) and is generated using a 2D barcode generation program which transfers information into bars form.
- the document information is compressed.
- encrypted information is added.
- Document information and encrypted information are both put into the 2D barcode.
- the 2D barcode can be generated by, for example:
- ⁇ encrypting the compressed document information with a system generated random key, encrypting the random key with a system encryption key and generating the 2D barcode from the encrypted random key and the encrypted compressed document information, or by:
- the encryption key is preferably one key out of a key pair, as for example from a asymmetric encription algorithm (e.g. PKI).
- the 2D barcode can, for example, contain the following:
- the Offline Verification Module enables verifiers to read the 2D barcode after scanning the document and to display the corresponding information.
- the decryption can be carried out by, for example:
- the compressed document information is decompressed and the module displays it so that the verifier can compare this document information with the printed document information to verify the correctness and safety of the document from fraud.
- the verifier can verify using the Online Verification Module through the Internet from displaying the certified document information to verify the correctness and safety of the document from fraud.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Storage Device Security (AREA)
- Radar Systems Or Details Thereof (AREA)
- Credit Cards Or The Like (AREA)
- Fittings On The Vehicle Exterior For Carrying Loads, And Devices For Holding Or Mounting Articles (AREA)
- Machine Tool Sensing Apparatuses (AREA)
- Plural Heterocyclic Compounds (AREA)
Abstract
Cette invention concerne un système de certification et d'authentification composé de : un module principal qui autorise l'accès à un module d'administration et fournit des données cryptées à utiliser avec le système, le module d'administration servant à saisir et à stocker des informations sur le bureau de certification, autoriser l'accès au module d'enregistrement et fournir aux registraires de bureaux de certification des identifiants et des mots de passe ; le module d'enregistrement sert à saisir des informations sur des entreprises, enregistrer des informations sur des membres d'entreprises et inscrire des signatures d'un membre, activer ou désactiver des signataires ou des membres d'entreprises ; et fournir aux membres d'entreprises des identifiants et mots de passe ; un module de certification servant au moins à inscrire la signature d'un membre et comparer la signature inscrite avec les signatures d'un membre enregistré et, si la signature est correcte, saisir et enregistrer une information sur le document qui devra être certifié et imprimer la lettre certifiée sous forme de code-barres 2D ; un module d'autorisation servant à imprimer la lettre certifiée, et un module de vérification hors-ligne servant à numériser le document certifié et lire les informations numérisées dans le code-barres 2D.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| EGNA2007000791 EG25980A (en) | 2005-02-02 | 2007-07-30 | Electronic cerification and authentication system |
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| EP05002155.9 | 2005-02-02 | ||
| EP05002155A EP1688891B1 (fr) | 2005-02-02 | 2005-02-02 | Dispositif électronique de certification et d'authentification |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| WO2006081861A1 true WO2006081861A1 (fr) | 2006-08-10 |
Family
ID=35696440
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PCT/EP2005/013506 Ceased WO2006081861A1 (fr) | 2005-02-02 | 2005-12-15 | Systeme de certification et d'authentification electronique |
Country Status (5)
| Country | Link |
|---|---|
| EP (2) | EP2194513A1 (fr) |
| AT (1) | ATE463020T1 (fr) |
| DE (1) | DE602005020245D1 (fr) |
| EG (1) | EG25980A (fr) |
| WO (1) | WO2006081861A1 (fr) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104992206A (zh) * | 2015-06-12 | 2015-10-21 | 孙红琴 | 二维码编码及解码系统 |
| US9819660B2 (en) | 2014-04-11 | 2017-11-14 | Xerox Corporation | Systems and methods for document authentication |
| CN118821184A (zh) * | 2024-09-19 | 2024-10-22 | 长春职业技术学院 | 一种基于大数据的计算机数据交互管理系统及方法 |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8531401B2 (en) | 2009-08-13 | 2013-09-10 | Hewlett-Packard Development Company, L.P. | Computer accessory device |
| US8799675B2 (en) | 2012-01-05 | 2014-08-05 | House Of Development Llc | System and method for electronic certification and authentication of data |
| CN103825734B (zh) * | 2012-11-16 | 2016-11-09 | 深圳市腾讯计算机系统有限公司 | 敏感操作验证方法、终端设备、服务器和验证系统 |
| CN104581726B (zh) * | 2015-01-15 | 2018-07-17 | 天地融科技股份有限公司 | 一种认证方法和系统 |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020023220A1 (en) * | 2000-08-18 | 2002-02-21 | Distributed Trust Management Inc. | Distributed information system and protocol for affixing electronic signatures and authenticating documents |
-
2005
- 2005-02-02 AT AT05002155T patent/ATE463020T1/de not_active IP Right Cessation
- 2005-02-02 EP EP10002826A patent/EP2194513A1/fr not_active Ceased
- 2005-02-02 EP EP05002155A patent/EP1688891B1/fr not_active Expired - Lifetime
- 2005-02-02 DE DE602005020245T patent/DE602005020245D1/de not_active Expired - Lifetime
- 2005-12-15 WO PCT/EP2005/013506 patent/WO2006081861A1/fr not_active Ceased
-
2007
- 2007-07-30 EG EGNA2007000791 patent/EG25980A/xx active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020023220A1 (en) * | 2000-08-18 | 2002-02-21 | Distributed Trust Management Inc. | Distributed information system and protocol for affixing electronic signatures and authenticating documents |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9819660B2 (en) | 2014-04-11 | 2017-11-14 | Xerox Corporation | Systems and methods for document authentication |
| CN104992206A (zh) * | 2015-06-12 | 2015-10-21 | 孙红琴 | 二维码编码及解码系统 |
| CN118821184A (zh) * | 2024-09-19 | 2024-10-22 | 长春职业技术学院 | 一种基于大数据的计算机数据交互管理系统及方法 |
Also Published As
| Publication number | Publication date |
|---|---|
| EP2194513A1 (fr) | 2010-06-09 |
| HK1091305A1 (en) | 2007-01-12 |
| DE602005020245D1 (de) | 2010-05-12 |
| ATE463020T1 (de) | 2010-04-15 |
| EP1688891B1 (fr) | 2010-03-31 |
| EG25980A (en) | 2012-11-19 |
| EP1688891A1 (fr) | 2006-08-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7519825B2 (en) | Electronic certification and authentication system | |
| US7178030B2 (en) | Electronically signing a document | |
| US8285991B2 (en) | Electronically signing a document | |
| US9369287B1 (en) | System and method for applying a digital signature and authenticating physical documents | |
| US4993068A (en) | Unforgeable personal identification system | |
| US20090031139A1 (en) | System and Method for Electronic Certification and Authentification | |
| JP4323098B2 (ja) | 利用者の署名情報の正当性を検証する署名システム | |
| CN103679436B (zh) | 一种基于生物信息识别的电子合同保全系统和方法 | |
| US20030012374A1 (en) | Electronic signing of documents | |
| US20030115475A1 (en) | Biometrically enhanced digital certificates and system and method for making and using | |
| US20040068470A1 (en) | Distributing public keys | |
| US20030089764A1 (en) | Creating counterfeit-resistant self-authenticating documents using cryptographic and biometric techniques | |
| KR101039390B1 (ko) | 바코드를 이용한 발급문서 진위확인 방법 및 장치 | |
| WO2003007527A2 (fr) | Certificats numeriques biometriquement ameliores, systeme et procede de fabrication et d'utilisation | |
| Chowdhary et al. | Blockchain based framework for student identity and educational certificate verification | |
| US11444784B2 (en) | System and method for generation and verification of a subject's identity based on the subject's association with an organization | |
| US20170352039A1 (en) | Counterfeit Prevention and Detection of University and Academic Institutions Documents Using Unique Codes | |
| EP1280098A1 (fr) | Signature électronique de documents | |
| EP1688891B1 (fr) | Dispositif électronique de certification et d'authentification | |
| KR20070036491A (ko) | 신분증 확인 시스템 및 그 방법 | |
| CN2865145Y (zh) | 便携式一次性动态密码生成器以及使用其的安全认证系统 | |
| KR100453616B1 (ko) | 투표자 등록자들과 같은 등록자를 등록하기 위한 방법, 컴퓨터 판독 가능한 매체, 투표자 등록 컴퓨터 시스템 | |
| WO2003009217A1 (fr) | Signature electronique de documents | |
| US20030005298A1 (en) | Method and apparatus for authenticating people using business cards | |
| HK1091305B (en) | Electronic certification and authentication system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| 121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
| DPE1 | Request for preliminary examination filed after expiration of 19th month from priority date (pct application filed from 20040101) | ||
| WWE | Wipo information: entry into national phase |
Ref document number: 5733/DELNP/2007 Country of ref document: IN |
|
| NENP | Non-entry into the national phase |
Ref country code: DE |
|
| 122 | Ep: pct application non-entry in european phase |
Ref document number: 05819301 Country of ref document: EP Kind code of ref document: A1 |
|
| WWW | Wipo information: withdrawn in national office |
Ref document number: 5819301 Country of ref document: EP |