Method, server and program for secure data exchange
First Claim
1. A data exchange method for exchanging data among a plurality of terminals and a data exchange management server for managing said plurality of terminals, connected to said plurality of terminals through a network, wherein:
- a terminal operating as a data sending terminal among said plurality of terminals executes a step of generating a query for extracting data and encryption information for preventing falsification of said query;
said data exchange management server executes a step of receiving and storing said query and said encryption information from said data sending terminal and a step of verifying said encryption information; and
a terminal operating as a data receiving terminal among said plurality of terminals executes a step of receiving said query and said encryption information from said data exchange management server and a step of retrieving predetermined data from said data sending terminal on the basis of said query and said encryption information.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention provides a data exchange method, a data exchange management apparatus and a data exchange management program each capable of insuring high concealment and integrity and not requiring a data center. A data sending terminal generates a query for retrieving data, and make it up to a signed query by adding encryption information of the query (signature). When a data receiving terminal requests the data sending terminal to send the data, the data receiving terminal sends the signed query retrieved by a predetermined procedure. The data sending terminal verifies the signature of the signed queryand after verification proves successful, the data sending terminal sends the data retrieved by the query to the data receiving terminal.
-
Citations
8 Claims
-
1. A data exchange method for exchanging data among a plurality of terminals and a data exchange management server for managing said plurality of terminals, connected to said plurality of terminals through a network, wherein:
-
a terminal operating as a data sending terminal among said plurality of terminals executes a step of generating a query for extracting data and encryption information for preventing falsification of said query;
said data exchange management server executes a step of receiving and storing said query and said encryption information from said data sending terminal and a step of verifying said encryption information; and
a terminal operating as a data receiving terminal among said plurality of terminals executes a step of receiving said query and said encryption information from said data exchange management server and a step of retrieving predetermined data from said data sending terminal on the basis of said query and said encryption information. - View Dependent Claims (2, 3, 8)
-
-
4. A data exchange method for exchanging data among a plurality of terminals connected to one another through a network, wherein a terminal operating as a data sending terminal among said plurality of terminals executes a step of generating a query for extracting data and encryption information for preventing falsification of said query, a step of sending said query and said encryption information to a data terminal operating as a data receiving terminal and a step of verifying said encryption information;
- and
said data receiving terminal executes a step of retrieving and storing said query and said encryption information from said data sending terminal and a step of retrieving predetermined data from said data sending terminal on the basis of said query and said encryption information. - View Dependent Claims (7)
- and
-
5. A data exchange management system used for a data exchange system for exchanging data among a plurality of terminals and a data exchange management server for controlling said plurality of terminals, connected to said plurality of terminals through a network, comprising:
-
a session management portion for establishing encryption communication paths among a data terminal operating as a data sending terminal and a data terminal operating as a date receiving terminal among said plurality of terminals and said data exchange server;
a query control portion for sending said query for extracting data from said data sending terminal and said encryption information for preventing falsification of said query to said data receiving terminal; and
an electronic signature verification portion for verifying said encryption information. - View Dependent Claims (6)
-
Specification