Signature Generation and Verification System and Signature Verification Apparatus
First Claim
1. A signature generation and verification system comprising a signature verification apparatus and a user certification apparatus,wherein the signature verification apparatus includes:
- a signed electronic document input section which acquires electronic document data generated by a signature generation apparatus, and signature data made of a set of a digital signature and verification data;
an integrity verification section which verifies the integrity of the set of the electronic document data and the electronic signature using the verification data;
an identification section which transmits to the user certification apparatus authentication data for authenticating that the verification data was generated based on predetermined user certification information unique to a user, the identification section identifying the user based on the digital signature transmitted from the signature generation apparatus; and
an output section which provides either “
accept”
or “
reject”
output based on either or both of the result of integrity verification by the integrity verification section and the result of identification by the identification section, andwherein the user certification apparatus includes;
a user certification information input section which receives the input of the user certification information; and
a digital signature generation section which generates the digital signature based on the authentication data received from the signature verification apparatus and transmits the digital signature to the signature verification apparatus.
1 Assignment
0 Petitions
Accused Products
Abstract
A signature generation and verification system including a signature generation apparatus and a signature verification apparatus is provided. Based on signer certification information possessed by a signer, the signature generation apparatus generates a digital signature and verification data corresponding to a given electronic document and outputs the set of the digital signature and the verification data as signature data. Upon receipt of the electronic document and the signature data, the signature verification apparatus verifies the digital signature using the verification data to verify the integrity of the electronic document. As needed, the signature verification apparatus performs user identification ex-post facto by authenticating that the signer certification information from which the verification data was generated belongs to a legitimate user without knowledge of the signer certification information.
-
Citations
14 Claims
-
1. A signature generation and verification system comprising a signature verification apparatus and a user certification apparatus,
wherein the signature verification apparatus includes: -
a signed electronic document input section which acquires electronic document data generated by a signature generation apparatus, and signature data made of a set of a digital signature and verification data; an integrity verification section which verifies the integrity of the set of the electronic document data and the electronic signature using the verification data; an identification section which transmits to the user certification apparatus authentication data for authenticating that the verification data was generated based on predetermined user certification information unique to a user, the identification section identifying the user based on the digital signature transmitted from the signature generation apparatus; and an output section which provides either “
accept”
or “
reject”
output based on either or both of the result of integrity verification by the integrity verification section and the result of identification by the identification section, andwherein the user certification apparatus includes; a user certification information input section which receives the input of the user certification information; and a digital signature generation section which generates the digital signature based on the authentication data received from the signature verification apparatus and transmits the digital signature to the signature verification apparatus. - View Dependent Claims (2, 3, 4, 9, 10, 11, 13, 14)
-
-
5. A signature verification apparatus comprising:
-
an integrity verification section which receives the input of first electronic document data and first signature data made of a set of a first digital signature and first verification data, and the input of second signature data made of second electronic document data and a set of a second digital signature and second verification data, verifies the integrity of the set of the first electronic document data and the first digital signature using the first verification data, and verifies the integrity of the set of the second electronic document data and the second digital signature using the second verification data; a signer identity verification section which transmits to a user certification apparatus authentication data for authenticating that the first verification data and the second verification data were generated based on signer certification information possessed by the same signer, and performs the authentication based on the digital signature received from the user certification apparatus without knowledge of the signer certification information; and an output section which provides “
accept”
output when both the integrity verification by the integrity verification section and the authentication by the signer identity verification section are successful, and gives “
reject”
output otherwise. - View Dependent Claims (6, 7, 8, 12)
-
Specification