Electronic document processing system and method of forming digital signature
First Claim
1. A method of forming a digital signature to be added to an electronic document, comprising the steps of:
- generating a former version electronic document;
performing a hash total process to said former version electronic document to generate a former version hash total;
performing an encipher process with at least said former version hash total and personal information of a signatory to generate a first digital signature;
adding the first digital signature to the former version electronic document;
changing the former version electronic document of a former version to which at least said first digital signature has already been added to generate a new version electronic document;
creating version management information which describes the change between the former version and new version electronic documents;
performing a hash total process to said new version electronic document to generate a new version hash total;
performing an encipher process with at least said new version hash total, personal information of another signatory, and said version management information to generate a new digital signature; and
altering at least a part of said first digital signature to correspond to said new version electronic document.
1 Assignment
0 Petitions
Accused Products
Abstract
In a terminal which received an electronic document with at leastone digital signature, when a user changes the contents of the received electronic document, a new digital signature is produced by enciphering signature data by using a secret key of the user, the signature data including a hash total of the document of a new version, personal information of the user (signatory), and version management information necessary to restore an electronic document of a former version from the electronic document of the new version. The new digital signature and the new version electronic document version are transmitted together with the received digital signature to a next person on a document circulating route.
-
Citations
18 Claims
-
1. A method of forming a digital signature to be added to an electronic document, comprising the steps of:
-
generating a former version electronic document; performing a hash total process to said former version electronic document to generate a former version hash total; performing an encipher process with at least said former version hash total and personal information of a signatory to generate a first digital signature; adding the first digital signature to the former version electronic document; changing the former version electronic document of a former version to which at least said first digital signature has already been added to generate a new version electronic document; creating version management information which describes the change between the former version and new version electronic documents; performing a hash total process to said new version electronic document to generate a new version hash total; performing an encipher process with at least said new version hash total, personal information of another signatory, and said version management information to generate a new digital signature; and altering at least a part of said first digital signature to correspond to said new version electronic document. - View Dependent Claims (2, 3, 4, 5, 14)
-
-
6. A method of forming a digital signature to be added to an electronic document, comprising the steps of:
-
changing a former version electronic document to which at least a first digital signature has already been affixed to form a new version electronic document; creating version management information which describes how to restore the former version electronic document from the new version electronic document; performing a hash total process to the new version electronic document to form a first hash total; executing a hash total process to said version management information to form a second hash total; performing an encipher process to signature data including said first and second hash totals and personal information of a signatory to form a new digital signature; and relating said version management information, said first digital signature, and said new digital signature to said new version electronic document. - View Dependent Claims (7, 8, 9)
-
-
10. A method of authenticating an electronic document, in which a message is received, which message includes a current version electronic document and a plurality of digital signatures added to said current version electronic document in accordance with a predetermined order, and at least one of said digital signatures having been obtained by encrypting signature data including personal information of a signatory, a hash total obtained by performing a hash total process to a former version of the electronic document corresponding to said at least one digital signature, and version management information necessary for restoring the current version electronic document to the former version electronic document corresponding to the at least one digital signature, comprising the steps of:
-
(a) setting the current version electronic document included in said received message to a check target document and executing a predetermined hash total process to said check target document to form a check hash total; (b) sequentially selecting the at least one digital signature as a check target from among the digital signatures included in said received message in accordance with the order from a most recent digital signature and deciphering said check target digital signature by using a decipher key corresponding to the signatory of the at least one digital signature to generate check signature data including a deciphered signature hash total; (c) checking whether the deciphered signature hash total coincides with the check hash total; and (d) when said deciphered signature data includes the version management information, restoring the former version electronic document from the version management information and the check target document, setting the former electronic document and a next digital signature into a new check target document and a new check target digital signature, respectively, and repeating said steps (a) to (c), and when the deciphered signature data do not include the version management information, setting the next digital signature into a check target digital signature, and repeating said steps (b) and (c). - View Dependent Claims (11, 12)
-
-
13. A method of authenticating an electronic document, wherein a message is received, which message includes a current version electronic document, a plurality of digital signatures added to said electronic document in a designated order, and version management information which defines how to restore from the current version electronic document each of at least one former version electronic document, and at least one of said plurality of digital signatures having been obtained by enciphering signature data including personal information of a signatory, a first hash total obtained by performing a hash total process to a one of the former version electronic documents to which said digital signature was initially added, and a second hash total obtained by executing a hash total process to the version management information which defines how to restore the current version electronic document to said one of the former version electronic documents, the method comprising the steps of:
-
(a) setting the current electronic document to a check target document and performing a predetermined hash total process to said check target document to form a check target hash total; (b) sequentially selecting each digital signature from among the plurality of digital signatures included in said received message in accordance with the designated order and deciphering the signature data from the check target digital signature by using a decipher key corresponding to the signatory of the each digital signature as its check target; (c) checking whether the first hash total extracted from said deciphered signature data coincides with the check target hash total; (d) when the deciphered signature data includes the second hash total, sequentially selecting the version management information included in the received message as a check target management information in accordance with the designated order from the latest version management information, performing a predetermined hash total process to the check target management information, and checking whether the has total obtained by performing a predetermined has process to the check target management information coincides with the second hash total or not; and (e) when the deciphered signature data includes the second hash total, restoring one of the former version electronic documents from the version management information as said check target and the check target document, setting the electronic document of the former version and the next digital signature into a new check target document and a new check target digital signature, respectively, and repeating said steps (a) to (d), and when the deciphered signature data does not include the version management information, setting a next digital signature into a check target digital signature, and repeating the steps (b) to (d).
-
-
15. A processing system of an electronic document connected to a network, comprising:
-
means for receiving a communication message including at least one prior digital signature and a former version electronic document from said network; checking means for checking the relation between the former version electronic document received from the network and the digital signature added thereto; means for changing a part of the former version electronic document in accordance with an inputting operation from a user to form a new version electronic document; means for forming a new digital signature having a predetermined relation with the new version electronic document; means for transmitting a communication message including the new version electronic document, the prior digital signature, and the new digital signature to the network, said new digital signature forming means including;
a means for performing an encipher process to signature data by a secret key of the user, in which said signature data comprises a document hash total received from a hash total means which executes a hash total process to the new version electronic document, personal information of the user, and version management information which defines how to restore the former version electronic document from the new version electronic document. - View Dependent Claims (16)
-
-
17. A processing system of an electronic document connected to a network, comprising:
-
means for receiving a communication message which is constructed by (1) a former version electronic document and (2) document annexed information including at least one prior digital signature from the network; check means for checking a relation between the former version electronic document received from the network and the prior digital signature; means for changing the former version electronic document in accordance with an inputting operation by user to a new version electronic document; means for forming a new digital signature having a predetermined relation with the new version electronic document, in which the digital signature is formed by performing an encipher process on signature data from a secret key of a new signatory, said signature data comprising a first hash total obtained by executing a hash total process to the new version electronic document, personal information of the user, and a second hash total obtained by executing a hash process to version management information which defines how to restore the former version electronic document from the new version electronic document; and means for transmitting a communication message including the new version electronic document, the document annexed information, the new digital signature, and the version management information to said network. - View Dependent Claims (18)
-
Specification