技术领域technical field
本发明属于生物识别技术领域,具体地讲,涉及一种基于虹膜识别的电子合同的签订方法、判断伪造方法及判断篡改方法。The invention belongs to the technical field of biological identification, and in particular relates to a method for signing an electronic contract based on iris identification, a method for judging forgery and a method for judging tampering.
背景技术Background technique
现实生活中,经济活动交易双方经常需要签订合同。传统的合同为纸质合同,签订方之间需要邮寄合同,签订效率低且容易丢失和泄露信息。In real life, both parties to an economic transaction often need to sign a contract. The traditional contract is a paper contract, and the signing parties need to mail the contract, which is inefficient and easy to lose and leak information.
随着互联网技术的发展和电子商务平台的不断完善,电子合同的概念和实施方式出现,并且在国家《合同法》中得到了法律保护,成为一种实用有效的合同方式。作为一种以电子信息网络为平台的协议方式,电子合同具有方便快捷的优点,但是也存在合同签订方身份难以验证、合同通过网络传输可能会被非法截取并修改、合同签订后容易被篡改或伪造等问题,如何构建有效的电子合同签订及监管体系,规避上述风险,是亟需解决的一个问题。With the development of Internet technology and the continuous improvement of e-commerce platforms, the concept and implementation of electronic contracts have emerged, and have been legally protected in the national "Contract Law", becoming a practical and effective contract method. As an agreement method based on the electronic information network platform, electronic contracts have the advantages of convenience and speed, but there are also difficulties in verifying the identity of the contract signing party, the contract may be illegally intercepted and modified through network transmission, and the contract is easily tampered or damaged after signing. Forgery and other issues, how to build an effective electronic contract signing and supervision system to avoid the above-mentioned risks is a problem that needs to be solved urgently.
发明内容Contents of the invention
为了解决上述现有技术存在的问题,本发明的目的在于提供一种电子合同的签订方法,其包括:接收合同发起方发送的第一账号信息及第一合同数据;其中,所述第一合同数据至少包括:第一电子合同、发起方虹膜特征码及合同响应方信息;根据所述发起方虹膜特征码及所述第一账号信息验证合同发起方的身份是否通过;若合同发起方的身份被验证通过,则根据合同响应方信息通知合同响应方;接收合同响应方发送的第二账号信息及响应方虹膜特征码;根据所述第二账号信息及所述响应方虹膜特征码验证合同响应方的身份是否通过;若合同响应方的身份被验证通过,则将所述第一电子合同发送给合同响应方;接收合同响应方发送的第二合同数据;其中,所述第二合同数据至少包括:第二电子合同,所述第二电子合同由合同响应方同意并签订第一电子合同形成;对所述第二电子合同进行处理,以形成第三合同数据;将所述第三合同数据分别发送给合同发起方和合同响应方。In order to solve the above-mentioned problems in the prior art, the object of the present invention is to provide a method for signing an electronic contract, which includes: receiving the first account information and the first contract data sent by the contract initiator; wherein, the first contract The data includes at least: the first electronic contract, the iris feature code of the initiator, and the contract responder information; according to the iris feature code of the initiator and the first account information, whether the identity of the initiator of the contract is verified; if the identity of the initiator of the contract If the verification is passed, notify the contract responder according to the contract responder information; receive the second account information and the iris feature code of the responder sent by the contract responder; verify the contract response according to the second account information and the iris feature code of the responder If the identity of the contract responding party is verified, the first electronic contract is sent to the contract responding party; the second contract data sent by the contract responding party is received; wherein the second contract data is at least Including: a second electronic contract, the second electronic contract is formed by the contract responder agreeing and signing the first electronic contract; processing the second electronic contract to form third contract data; converting the third contract data Sent to the contract initiator and contract responder respectively.
进一步地,根据所述发起方虹膜特征码及所述第一账号信息验证合同发起方的身份是否通过的具体方法包括:根据所述第一账号信息获取与所述第一账号信息对应的正确发起方虹膜特征码;验证所述发起方虹膜特征码与所述正确发起方虹膜特征码是否匹配,以验证合同发起方的身份是否通过。Further, the specific method for verifying whether the identity of the contract initiator passes according to the iris feature code of the initiator and the first account information includes: obtaining the correct initiator corresponding to the first account information according to the first account information Party iris feature code; verify whether the iris feature code of the initiator matches the iris feature code of the correct initiator, so as to verify whether the identity of the initiator of the contract is passed.
进一步地,所述第二合同数据还包括:第二账号信息及响应方虹膜特征码。Further, the second contract data also includes: second account information and iris feature code of the responding party.
进一步地,在对所述第二电子合同进行签章和保全处理之前,所述电子合同签订方法还包括操作:根据所述第二账号信息及所述响应方虹膜特征码验证合同响应方的身份是否通过。Further, before signing and preserving the second electronic contract, the electronic contract signing method further includes the operation of: verifying the identity of the contract responder according to the second account information and the iris signature of the responder whether to pass.
进一步地,根据所述第二账号信息及所述响应方虹膜特征码验证合同响应方的身份是否通过的具体方法包括:根据所述第二账号信息获取与所述第二账号信息对应的正确响应方虹膜特征码;验证所述响应方虹膜特征码与所述正确响应方虹膜特征码是否匹配,以验证合同响应方的身份是否通过。Further, the specific method for verifying whether the identity of the contract responder passes according to the second account information and the iris feature code of the responder includes: obtaining a correct response corresponding to the second account information according to the second account information Party iris feature code; verify whether the iris feature code of the responding party matches the iris feature code of the correct responding party, so as to verify whether the identity of the contract responding party passes.
进一步地,对所述第二电子合同进行处理的具体方法为:对所述第二电子合同进行签章和保全处理。Further, the specific method of processing the second electronic contract is: performing signature and preservation processing on the second electronic contract.
进一步地,对所述第二电子合同进行签章和保全处理的具体方法包括:将合同发起方和合同响应方的电子印章均植入所述第二电子合同;利用数字水印技术将所述发起方虹膜特征码和所述响应方虹膜特征码均嵌入到所述第二电子合同,以形成所述第三合同数据;计算所述第二电子合同的哈希摘要值,并将所述哈希摘要值录入电子合同签订记录库中。Further, the specific method for signing and preserving the second electronic contract includes: embedding the electronic seals of the contract initiator and the contract responder into the second electronic contract; Both the party's iris feature code and the responding party's iris feature code are embedded into the second electronic contract to form the third contract data; calculate the hash digest value of the second electronic contract, and convert the hash The summary value is entered into the electronic contract signing record library.
进一步地,在将所述第三合同数据分别发送给合同发起方和合同响应方之后,所述电子合同签订方法还包括:在预定时间内未接收到合同发起方和/或合同响应方发送的异议信息,将所述第一合同数据、所述第二合同数据及所述第三合同数据删除。Further, after sending the third contract data to the contract initiator and the contract responder respectively, the electronic contract signing method further includes: not receiving the contract data sent by the contract initiator and/or the contract responder within a predetermined time Objection information, delete the first contract data, the second contract data and the third contract data.
本发明的另一目的还在于提供一种电子合同的判断伪造方法,其包括:接收合同发起方或合同响应方发送的被可疑为伪造的合同数据;其中,所述被可疑为伪造的合同数据至少包括:被可疑为伪造的利用上述的电子合同签订方法签订的电子合同;获取所述被可疑为伪造的电子合同中的发起方虹膜特征码和响应方虹膜特征码;判断所述被可疑为伪造的电子合同中的发起方虹膜特征码和响应方虹膜特征码是否分别与正确发起方虹膜特征码和正确响应方虹膜特征码匹配;若是,则判断所述被可疑为伪造的电子合同未被伪造;若否,则判断所述被可疑为伪造的电子合同被伪造。Another object of the present invention is to provide a method for judging forgery of an electronic contract, which includes: receiving suspected forged contract data sent by the contract initiator or contract responder; wherein, the suspected forged contract data At least including: the electronic contract signed by the above-mentioned electronic contract signing method that is suspected of being forged; obtaining the iris feature code of the initiator and the iris feature code of the responding party in the electronic contract that is suspected of being forged; judging that the Whether the initiator's iris feature code and the responder's iris feature code in the forged electronic contract match the correct initiator's iris feature code and the correct responder's iris feature code respectively; If not, it is determined that the electronic contract suspected of being forged is forged.
本发明的又一目的又在于提供一种电子合同的判断篡改方法,其包括:接收合同发起方或合同响应方发送的被可疑为篡改的合同数据;其中,所述被可疑为篡改的合同数据至少包括:被可疑为篡改的利用上述的电子合同签订方法签订的电子合同;计算所述被可疑为篡改的电子合同的哈希摘要值;判断所述被可疑为篡改的电子合同的哈希摘要值是否与录入到电子合同签订记录库中的哈希摘要值相同;若是,则判断所述被可疑为篡改的电子合同未被篡改;若否,则判断所述被可疑为篡改的电子合同被篡改。Another object of the present invention is to provide a method for judging tampering of an electronic contract, which includes: receiving contract data that is suspected of being tampered with and sent by the contract initiator or contract responder; wherein, the contract data that is suspected of being tampered with At least include: the electronic contract signed by the above electronic contract signing method that is suspected of being tampered with; calculating the hash digest value of the electronic contract suspected of being tampered with; judging the hash digest of the electronic contract suspected of being tampered with Whether the value is the same as the hash digest value entered in the electronic contract signing record library; if so, it is judged that the electronic contract suspected of being tampered has not been tampered with; tamper.
本发明的有益效果:本发明在电子合同的签订过程中利用虹膜特征验证双方的身份,能够有效防止他人伪造电子合同和篡改电子合同,杜绝了合同签订双方在身份认证中的弄虚作假行为,提高了鉴别合同真伪的准确率,维护了合同签订双方的企业秘密和商业利益。Beneficial effects of the present invention: the present invention uses iris features to verify the identities of both parties during the signing process of the electronic contract, which can effectively prevent others from forging and tampering with the electronic contract, eliminates the falsification of the contract signing parties in the identity authentication, and improves the The accuracy of identifying the authenticity of the contract safeguards the corporate secrets and commercial interests of both parties to the contract.
附图说明Description of drawings
通过结合附图进行的以下描述,本发明的实施例的上述和其它方面、特点和优点将变得更加清楚,附图中:The above and other aspects, features and advantages of embodiments of the present invention will become more apparent through the following description in conjunction with the accompanying drawings, in which:
图1是根据本发明的实施例的基于虹膜识别的电子合同的签订方法的流程图。Fig. 1 is a flowchart of a method for signing an electronic contract based on iris recognition according to an embodiment of the present invention.
具体实施方式detailed description
以下,将参照附图来详细描述本发明的实施例。然而,可以以许多不同的形式来实施本发明,并且本发明不应该被解释为限制于这里阐述的具体实施例。相反,提供这些实施例是为了解释本发明的原理及其实际应用,从而本领域的其他技术人员能够理解本发明的各种实施例和适合于特定预期应用的各种修改。Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings. This invention may, however, be embodied in many different forms and should not be construed as limited to the specific embodiments set forth herein. Rather, these embodiments are provided to explain the principles of the invention and its practical application, so that others skilled in the art can understand various embodiments of the invention and various modifications as are suited to particular intended uses.
图1是根据本发明的实施例的基于虹膜识别的电子合同的签订方法的流程图。Fig. 1 is a flowchart of a method for signing an electronic contract based on iris recognition according to an embodiment of the present invention.
在以根据本发明的实施例的基于虹膜识别的电子合同的签订方法正式签订合同之前,需要即将签订合同的双方,即合同发起方、合同响应方分别在第三方认证机构注册,通过录入身份信息、虹膜图像信息,生成个人账号信息和虹膜特征码。具体地,在本实施例中,合同发起方的个人账号信息为第一账号信息,合同响应方的个人账号信息为第二账号信息。虹膜特征码是第三方认证机构系统根据个人虹膜图像信息生成的特定虹膜特征码,具有难伪造、高安全性的特点。Before formally signing the contract with the electronic contract signing method based on iris recognition according to the embodiment of the present invention, the two parties who are about to sign the contract, that is, the contract initiator and the contract responder, are required to register with the third-party certification agency respectively, and enter the identity information , iris image information, and generate personal account information and iris feature codes. Specifically, in this embodiment, the personal account information of the contract initiator is the first account information, and the personal account information of the contract responder is the second account information. The iris feature code is a specific iris feature code generated by the third-party certification body system based on personal iris image information, which is difficult to forge and has high security characteristics.
需要说明的是,上述第三方认证机构是通过国家认证的机构,是具有可靠的执行认证制度的必要能力,并在认证过程中能够客观、公正、独立地从事认证活动的机构。优选地,签订双方需要在第三方认证机构录入虹膜图像信息和身份信息,并将虹膜图像信息与身份信息进行绑定,生成特定的用户信息。在本实施例中,对于公司或团体机构,只有一个账号,但可以有一个或多个自然人的虹膜特征码被绑定,即多个人可以通过他们自己的虹膜登陆该账号并操作,当法人代表不在时,其他授权的人也可以操作,这样的设计增加了操作的灵活性。当用户登陆账号后,用户需要将自己的虹膜图像信息和合同数据发送给第三方认证机构,使第三方机构能够确认是该账号下的哪个授权人在进行合同签订。但本发明并不对此作限制,这仅是本发明的一个实施例,例如,账号信息、授权人的数目可以根据情况做适当地调整。It should be noted that the above-mentioned third-party certification institutions are institutions that have passed national certification, have the necessary capabilities to reliably implement the certification system, and are able to engage in certification activities objectively, impartially and independently during the certification process. Preferably, both parties need to enter iris image information and identity information in a third-party certification body, and bind the iris image information and identity information to generate specific user information. In this embodiment, there is only one account for a company or organization, but one or more natural person's iris feature codes can be bound, that is, multiple people can log in to the account through their own irises and operate as a legal representative When not in, other authorized people can also operate, this design increases the flexibility of operation. After the user logs in to the account, the user needs to send his iris image information and contract data to the third-party certification agency, so that the third-party agency can confirm which authorized person under the account is signing the contract. However, the present invention is not limited thereto, and this is only an embodiment of the present invention. For example, the account information and the number of authorized persons can be appropriately adjusted according to the situation.
为了防止电子合同在签订方与第三方机构间传输时被非法截获甚至修改,所有数据在网络间传输时都要进行加密。因此,第三方认证机构对数据在网络间传输时加密的方法为:对合同发起方、合同响应方的个人账号信息都分别生成一对公钥和私钥,并将个人账号信息和私钥分别发放给对应的合同发起方、合同响应方。合同发起方、合同响应方分别利用私钥加密或解密数据,第三方机构利用公钥加密或解密数据。当然,本发明并不对所述网络传输的加密方式作限制,这仅是本发明的一个实施例。In order to prevent the electronic contract from being illegally intercepted or even modified during the transmission between the signing party and the third-party organization, all data must be encrypted when transmitted between the networks. Therefore, the method for the third-party certification authority to encrypt data when it is transmitted across the network is: generate a pair of public key and private key for the personal account information of the contract initiator and contract responder respectively, and separate the personal account information and private key Issued to the corresponding contract initiator and contract responder. The contract initiator and the contract responder use the private key to encrypt or decrypt the data respectively, and the third party uses the public key to encrypt or decrypt the data. Of course, the present invention does not limit the encryption method of the network transmission, which is only an embodiment of the present invention.
参照图1,当合同发起方、合同响应方正式签订合同时,具体包括以下操作:Referring to Figure 1, when the contract initiator and the contract responder formally sign the contract, the specific operations include the following:
在操作210中,第三方认证机构接收合同发起方发送的第一账号信息及第一合同数据;其中,所述第一账号信息即合同发起方的账号信息。所述第一合同数据至少包括:第一电子合同、发起方虹膜特征码及合同响应方信息。In operation 210, the third-party authentication institution receives the first account information and the first contract data sent by the contract initiator; wherein, the first account information is the account information of the contract initiator. The first contract data at least includes: the first electronic contract, the initiator's iris signature and the contract responder's information.
在这里,合同发起方利用己方的第一账号信息登陆第三方认证机构的网络服务器。在登陆过程中,需要先验证登陆者的身份,具体包括以下操作:采集合同发起方的虹膜图像信息并提取虹膜特征码;网络服务器自动比对提取的虹膜特征码是否与该账号下存储的正确虹膜特征码匹配;如果匹配通过,则登陆成功,否则登陆失败。Here, the contract initiator uses its own first account information to log in to the network server of the third-party certification authority. During the login process, the identity of the registrant needs to be verified first, including the following operations: collect the iris image information of the contract initiator and extract the iris feature code; the network server automatically compares whether the extracted iris feature code is correct with the one stored under the account The iris feature code matches; if the match passes, the login is successful, otherwise the login fails.
如果合同发起方成功登陆第三方认证机构网络服务器,则合同发起方向第三方认证机构发起电子合同签订请求。第三方认证机构响应电子合同签订请求后,提示合同发起方上传第一合同数据。需要注意的是,在本实施例中,合同发起方在上传第一合同数据之前,用私钥对所述上传的第一合同数据进行加密,然后将加密后的第一合同数据上传至第三方认证机构网络服务器。其中,第一合同数据包括第一电子合同、合同发起方虹膜特征码和合同响应方的账号信息。当然,本发明并不对加密这一操作作限制,这仅是本发明的一个实施例。If the contract initiator successfully logs in to the network server of the third-party certification body, the contract initiator initiates an electronic contract signing request to the third-party certification body. After the third-party certification body responds to the electronic contract signing request, it prompts the contract initiator to upload the first contract data. It should be noted that, in this embodiment, before uploading the first contract data, the contract initiator encrypts the uploaded first contract data with a private key, and then uploads the encrypted first contract data to the third party Certification authority web server. Wherein, the first contract data includes the first electronic contract, the iris signature code of the contract initiator, and the account information of the contract responder. Of course, the present invention does not limit the operation of encryption, which is only an embodiment of the present invention.
在操作220中,第三方认证机构根据所述发起方的虹膜特征码及所述第一账号信息来验证合同发起方的身份是否通过。In operation 220, the third-party authentication institution verifies whether the identity of the contract initiator passes according to the iris feature code of the initiator and the first account information.
具体地,第三方认证机构接收合同发起方上传的加密的第一合同数据,并用公钥解密第一合同数据,获得第一电子合同、合同发起方的虹膜特征码和第一账号信息。第三方认证机构提取所述合同发起方的虹膜特征码,然后将所述提取的虹膜特征码与存储的正确合同发起方的虹膜特征码比对,验证合同发起方的身份。Specifically, the third-party authentication agency receives the encrypted first contract data uploaded by the contract initiator, and decrypts the first contract data with a public key to obtain the first electronic contract, the contract initiator's iris feature code, and the first account information. The third-party authentication agency extracts the iris signature of the contract initiator, and then compares the extracted iris signature with the stored iris signature of the correct contract initiator to verify the identity of the contract initiator.
在操作230中,若合同发起方的身份被验证通过,则根据合同响应方信息通知合同响应方。In operation 230, if the identity of the contract initiator is verified, the contract responder is notified according to the information of the contract responder.
具体地,在本实施例中,合同发起方的身份验证成功之后的操作还包括,第三方认证机构利用公钥对第一合同数据进行加密,并将加密后的第一合同数据上传到第三方认证机构网络服务器,然后根据合同响应方信息通知合同响应方。当然本发明并不对加密这一操作做限制,这仅是本发明的一个最优实施例。Specifically, in this embodiment, the operation after the successful identity verification of the contract initiator further includes that the third-party certification authority encrypts the first contract data with a public key, and uploads the encrypted first contract data to the third party The certification authority web server then notifies the contract responder according to the contract responder information. Of course, the present invention does not limit the encryption operation, which is only an optimal embodiment of the present invention.
在操作240中,第三方认证机构接收合同响应方发送的第二账号信息及响应方虹膜特征码。In operation 240, the third-party authentication institution receives the second account information and the responder's iris feature code sent by the contract responder.
具体地,合同响应方接收到合同发起方发送的签订合同的通知后,利用己方的第二账号信息登陆第三方认证机构网络服务器。同样地,合同响应方登陆过程也需要采集己方的虹膜图像信息并提取虹膜特征码。Specifically, after receiving the contract signing notice sent by the contract initiator, the contract responder uses its own second account information to log in to the network server of the third-party certification authority. Similarly, the contract responder's login process also needs to collect its own iris image information and extract the iris feature code.
在操作250中,根据所述第二账号信息及所述响应方虹膜特征码验证合同响应方的身份是否通过。In operation 250, verify whether the identity of the contract responder passes according to the second account information and the responder's iris feature code.
具体地,系统自动比对提取的虹膜特征码是否与第二账号下存储的正确虹膜特征码匹配,如果匹配,则登陆成功,否则登陆失败。Specifically, the system automatically checks whether the extracted iris feature code matches the correct iris feature code stored under the second account, and if it matches, the login is successful, otherwise, the login fails.
在操作260中,若合同响应方的身份验证通过,则允许合同响应方从第三方认证机构网络服务器下载第一电子合同并验证其内容。In operation 260, if the identity verification of the contract responder passes, the contract responder is allowed to download the first electronic contract from the third-party certification authority network server and verify its content.
具体地,合同响应方从第三方认证机构网络服务器下载第一电子合同之后的操作包括:利用自己的私钥对所述下载的第一合同数据进行解密,获得第一电子合同及合同响应方的身份信息。合同响应方确认第一合同数据和合同响应方的身份信息无误后,对第一合同数据进行处理和合同签订,形成第二合同数据。同样地,合同响应方用私钥对所述即将上传的第二合同数据进行加密,然后将加密后的第二合同数据上传至第三方认证机构网络服务器。Specifically, the contract responder's operations after downloading the first electronic contract from the third-party authentication agency network server include: using its own private key to decrypt the downloaded first contract data, and obtain the first electronic contract and the contract responder's Identity Information. After confirming that the first contract data and the identity information of the contract responder are correct, the contract responder processes the first contract data and signs the contract to form the second contract data. Similarly, the contract responder encrypts the second contract data to be uploaded with a private key, and then uploads the encrypted second contract data to the third-party certification authority network server.
在操作270中,第三方认证机构接收合同响应方发送的第二合同数据。其中,所述第二合同数据至少包括:第二电子合同,所述第二电子合同由合同响应方同意并签订第一电子合同形成。In operation 270, the third-party certification authority receives the second contract data sent by the contract responder. Wherein, the second contract data at least includes: a second electronic contract, and the second electronic contract is formed by the contract responder agreeing and signing the first electronic contract.
具体地,在本实施例中,所述第二合同数据包括:第二电子合同、合同发起方的虹膜特征码、第一账号信息、合同响应方的虹膜特征码、第二账号信息。当然本发明并不对此作限制,这仅是本发明的一个实施例,在实际应用中,所述第一合同数据、第二合同数据包括的内容可以根据实际情况做适当的调整。Specifically, in this embodiment, the second contract data includes: the second electronic contract, the iris feature code of the contract initiator, the first account information, the iris feature code of the contract responder, and the second account information. Of course, the present invention is not limited thereto, and this is only an embodiment of the present invention. In practical applications, the contents included in the first contract data and the second contract data can be properly adjusted according to actual conditions.
在操作280中,第三方认证机构对所述第二合同数据进行处理,以形成第三合同数据。In operation 280, the third-party certification authority processes the second contract data to form third contract data.
具体地,第三方认证机构接收合同响应方发送的第二合同数据后,用公钥对所述第二合同数据进行解密,然后对所述第二电子合同进行签章和保全处理。Specifically, after receiving the second contract data sent by the contract responder, the third-party certification authority decrypts the second contract data with a public key, and then signs and preserves the second electronic contract.
其中,第三方认证机构在对所述第二电子合同进行签章和保全处理之前,所述电子合同签订方法还包括操作:根据所述第二账号信息及所述响应方虹膜特征码验证合同响应方的身份是否通过。Wherein, before the third-party certification body signs and preserves the second electronic contract, the electronic contract signing method further includes the operation of: verifying the contract response according to the second account information and the iris feature code of the responding party Whether the identity of the party is passed.
具体地,根据所述第二账号信息及所述响应方虹膜特征码验证合同响应方的身份是否通过的具体方法包括:根据所述第二账号信息获取与所述第二账号信息对应的正确响应方虹膜特征码;验证所述响应方虹膜特征码与所述正确响应方虹膜特征码是否匹配,以验证合同响应方的身份是否通过。Specifically, the specific method for verifying whether the identity of the contract responder passes according to the second account information and the iris feature code of the responder includes: obtaining a correct response corresponding to the second account information according to the second account information Party iris feature code; verify whether the iris feature code of the responding party matches the iris feature code of the correct responding party, so as to verify whether the identity of the contract responding party passes.
第三方认证机构对所述第二电子合同进行处理的具体方法为:对所述第二电子合同进行签章和保全处理。The specific method for the third-party certification body to process the second electronic contract is: to sign and preserve the second electronic contract.
第三方认证机构对所述第二电子合同进行签章和保全处理的具体方法包括:将合同发起方和合同响应方的电子印章均植入所述第二电子合同;利用数字水印技术将所述发起方虹膜特征码和所述响应方虹膜特征码均嵌入到所述第二电子合同,以形成所述第三合同数据;计算所述第二电子合同的哈希摘要值,并将所述哈希摘要值录入电子合同签订记录库中。The specific method for the third-party certification body to sign and preserve the second electronic contract includes: embedding the electronic seals of the contract initiator and the contract responder into the second electronic contract; Both the iris feature code of the initiator and the iris feature code of the responder are embedded into the second electronic contract to form the third contract data; the hash digest value of the second electronic contract is calculated, and the hash The summary value is entered into the electronic contract signing record database.
在操作290中,第三方认证机构将所述第三合同数据分别发送给合同发起方和合同响应方。In operation 290, the third-party certification authority sends the third contract data to the contract initiator and the contract responder, respectively.
第三方认证机构在将所述第三合同数据分别发送给合同发起方和合同响应方之后,所述电子合同签订方法还包括:在预定时间内,若未接收到合同发起方和/或合同响应方发送的异议信息,将所述第三合同数据删除。After the third-party certification body sends the third contract data to the contract initiator and the contract responder respectively, the electronic contract signing method further includes: within a predetermined time, if the contract initiator and/or contract response is not received The objection information sent by the party to delete the third contract data.
在利用上述的电子合同的签订方法签订合同之后,如果合同发起方或合同响应方可疑签订的电子合同被伪造,则电子合同的判断伪造方法包括:第三方认证机构接收合同发起方或合同响应方发送的被可疑为伪造的合同数据;其中,所述被可疑为伪造的合同数据至少包括:被可疑为伪造的利用上述的电子合同签订方法签订的电子合同;获取所述被可疑为伪造的电子合同中的发起方虹膜特征码和响应方虹膜特征码;判断所述被可疑为伪造的电子合同中的发起方虹膜特征码和响应方虹膜特征码是否分别与正确发起方虹膜特征码和正确响应方虹膜特征码匹配;若是,则判断所述被可疑为伪造的电子合同未被伪造;若否,则判断所述被可疑为伪造的电子合同被伪造。After signing the contract using the above-mentioned electronic contract signing method, if the electronic contract signed by the contract initiator or the contract responder is suspected to be forged, the method of judging the forgery of the electronic contract includes: the third-party certification body receives the contract initiator or contract responder The suspected forged contract data sent; wherein, the suspected forged contract data at least includes: the suspected forged electronic contract signed by the above-mentioned electronic contract signing method; obtaining the suspected forged electronic contract data Initiator's iris feature code and responder's iris feature code in the contract; determine whether the initiator's iris feature code and responder's iris feature code in the electronic contract suspected of being forged are the same as the correct initiator's iris feature code and the correct response Party's iris feature code matches; if so, it is judged that the electronic contract suspected of being forged is not forged; if not, it is judged that the electronic contract suspected of being forged is forged.
在利用上述的电子合同的签订方法签订合同之后,如果合同发起方或合同响应方可疑签订的电子合同被篡改,则电子合同的判断篡改方法包括:第三方认证机构接收合同发起方或合同响应方发送的被可疑为篡改的合同数据;其中,所述被可疑为篡改的合同数据至少包括:被可疑为篡改的利用上述的电子合同签订方法签订的电子合同;计算所述被可疑为篡改的电子合同的哈希摘要值;判断所述被可疑为篡改的电子合同的哈希摘要值是否与录入到电子合同签订记录库中的哈希摘要值相同;若是,则判断所述被可疑为篡改的电子合同未被篡改;若否,则判断所述被可疑为篡改的电子合同被篡改。After signing the contract using the above-mentioned electronic contract signing method, if the electronic contract signed by the contract initiator or the contract responder is suspected to have been tampered with, the method of judging the tampering of the electronic contract includes: a third-party certification body receives the contract initiator or contract responder The contract data that is suspected of being tampered is sent; wherein, the contract data that is suspected of being tampered with at least includes: the electronic contract that is suspected of being tampered with and signed using the above-mentioned electronic contract signing method; the electronic contract data that is suspected of being tampered with is calculated The hash summary value of the contract; determine whether the hash summary value of the electronic contract suspected of being tampered with is the same as the hash summary value entered in the electronic contract signing record library; The electronic contract has not been tampered with; if not, it is determined that the electronic contract suspected of being tampered has been tampered with.
综上所述,根据本发明的实施例,在电子合同的签订过程中利用虹膜特征验证双方的身份,能够有效防止他人伪造电子合同和篡改电子合同,杜绝了合同签订双方在身份认证中的弄虚作假行为,提高了鉴别合同真伪的准确率,维护了合同签订双方的企业秘密和商业利益。To sum up, according to the embodiment of the present invention, using the iris feature to verify the identities of both parties during the signing process of the electronic contract can effectively prevent others from forging and tampering with the electronic contract, and prevent the two parties signing the contract from falsifying in identity authentication. The behavior improves the accuracy of identifying the authenticity of the contract, and safeguards the corporate secrets and commercial interests of both parties to the contract.
虽然已经参照特定实施例示出并描述了本发明,但是本领域的技术人员将理解:在不脱离由权利要求及其等同物限定的本发明的精神和范围的情况下,可在此进行形式和细节上的各种变化。While the invention has been shown and described with reference to particular embodiments, it will be understood by those skilled in the art that changes may be made in the form and scope thereof without departing from the spirit and scope of the invention as defined by the claims and their equivalents. Various changes in details.
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510917776.4ACN105631248A (en) | 2015-12-10 | 2015-12-10 | Signing method, forging judgment method and tampering judgment method of electronic contract |
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510917776.4ACN105631248A (en) | 2015-12-10 | 2015-12-10 | Signing method, forging judgment method and tampering judgment method of electronic contract |
| Publication Number | Publication Date |
|---|---|
| CN105631248Atrue CN105631248A (en) | 2016-06-01 |
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510917776.4APendingCN105631248A (en) | 2015-12-10 | 2015-12-10 | Signing method, forging judgment method and tampering judgment method of electronic contract |
| Country | Link |
|---|---|
| CN (1) | CN105631248A (en) |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107438099A (en)* | 2017-07-25 | 2017-12-05 | 苏州云葫芦信息科技有限公司 | Intelligence signing system and method based on mobile terminal |
| CN107968709A (en)* | 2017-11-15 | 2018-04-27 | 财付通支付科技有限公司 | Business data processing method, identity management method and business audit method |
| CN107977556A (en)* | 2017-11-29 | 2018-05-01 | 北京书生电子技术有限公司 | The method and device of stamped signature is carried out to online e-file |
| CN108595938A (en)* | 2018-03-15 | 2018-09-28 | 兴业数字金融服务(上海)股份有限公司 | Electronic contract application range expanding method and system based on structuring control |
| CN109492367A (en)* | 2018-10-17 | 2019-03-19 | 平安国际融资租赁有限公司 | Electronic contract signature processing method, device, computer equipment and storage medium |
| CN109544185A (en)* | 2018-11-27 | 2019-03-29 | 湖南共睹互联网科技有限责任公司 | Based on the guarantee contract generation method for ensureing transaction |
| CN109872233A (en)* | 2019-01-17 | 2019-06-11 | 深圳壹账通智能科技有限公司 | Contract signing method, apparatus, computer equipment and storage medium |
| CN109933761A (en)* | 2019-01-30 | 2019-06-25 | 北京海峰科技有限责任公司 | A kind of contract production method, apparatus, equipment and storage medium |
| CN110557376A (en)* | 2019-08-01 | 2019-12-10 | 平安科技(深圳)有限公司 | Electronic contract signing method, electronic contract signing device, computer equipment and storage medium |
| WO2020062642A1 (en)* | 2018-09-27 | 2020-04-02 | 深圳壹账通智能科技有限公司 | Blockchain-based method, device, and equipment for electronic contract signing, and storage medium |
| CN112231771A (en)* | 2020-12-11 | 2021-01-15 | 浙江数秦科技有限公司 | A method for online signing and preservation of electronic contracts based on blockchain |
| CN113052603A (en)* | 2021-03-11 | 2021-06-29 | 杭州安恒信息安全技术有限公司 | Identity authentication method, identity authentication device, computer equipment and storage medium |
| CN117575582A (en)* | 2024-01-16 | 2024-02-20 | 成都理工大学 | Financial payment system for commercial tenant |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103440444A (en)* | 2013-07-16 | 2013-12-11 | 深圳市亚略特生物识别科技有限公司 | Method of signing electronic contract |
| US20140019761A1 (en)* | 2011-09-30 | 2014-01-16 | Adobe Systems Incorporated | Self-contained electronic signature |
| CN103544448A (en)* | 2013-09-25 | 2014-01-29 | 中山爱科数字科技股份有限公司 | A method for drafting a contract through a mobile terminal |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20140019761A1 (en)* | 2011-09-30 | 2014-01-16 | Adobe Systems Incorporated | Self-contained electronic signature |
| CN103440444A (en)* | 2013-07-16 | 2013-12-11 | 深圳市亚略特生物识别科技有限公司 | Method of signing electronic contract |
| CN103544448A (en)* | 2013-09-25 | 2014-01-29 | 中山爱科数字科技股份有限公司 | A method for drafting a contract through a mobile terminal |
| Title |
|---|
| 李琪: "《网络贸易理论与实务》", 30 November 2010* |
| 葛晓滨: "《移动电子商务教程》", 30 September 2014* |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107438099A (en)* | 2017-07-25 | 2017-12-05 | 苏州云葫芦信息科技有限公司 | Intelligence signing system and method based on mobile terminal |
| CN110233739A (en)* | 2017-11-15 | 2019-09-13 | 财付通支付科技有限公司 | Identity management method, device and storage medium |
| WO2019095959A1 (en)* | 2017-11-15 | 2019-05-23 | 腾讯科技(深圳)有限公司 | Service data processing method, identity management method and service audit method |
| US11570006B2 (en) | 2017-11-15 | 2023-01-31 | Tencent Technology (Shenzhen) Company Limited | Transaction data processing method, computing device, and storage medium |
| CN107968709A (en)* | 2017-11-15 | 2018-04-27 | 财付通支付科技有限公司 | Business data processing method, identity management method and business audit method |
| CN107968709B (en)* | 2017-11-15 | 2020-01-03 | 财付通支付科技有限公司 | Service data processing method, identity management method and service auditing method |
| CN107977556A (en)* | 2017-11-29 | 2018-05-01 | 北京书生电子技术有限公司 | The method and device of stamped signature is carried out to online e-file |
| CN108595938A (en)* | 2018-03-15 | 2018-09-28 | 兴业数字金融服务(上海)股份有限公司 | Electronic contract application range expanding method and system based on structuring control |
| CN108595938B (en)* | 2018-03-15 | 2020-08-25 | 兴业数字金融服务(上海)股份有限公司 | Electronic contract application range expanding method and system based on structured control |
| WO2020062642A1 (en)* | 2018-09-27 | 2020-04-02 | 深圳壹账通智能科技有限公司 | Blockchain-based method, device, and equipment for electronic contract signing, and storage medium |
| CN109492367A (en)* | 2018-10-17 | 2019-03-19 | 平安国际融资租赁有限公司 | Electronic contract signature processing method, device, computer equipment and storage medium |
| CN109544185A (en)* | 2018-11-27 | 2019-03-29 | 湖南共睹互联网科技有限责任公司 | Based on the guarantee contract generation method for ensureing transaction |
| CN109872233A (en)* | 2019-01-17 | 2019-06-11 | 深圳壹账通智能科技有限公司 | Contract signing method, apparatus, computer equipment and storage medium |
| CN109933761A (en)* | 2019-01-30 | 2019-06-25 | 北京海峰科技有限责任公司 | A kind of contract production method, apparatus, equipment and storage medium |
| CN110557376A (en)* | 2019-08-01 | 2019-12-10 | 平安科技(深圳)有限公司 | Electronic contract signing method, electronic contract signing device, computer equipment and storage medium |
| CN110557376B (en)* | 2019-08-01 | 2022-12-30 | 平安科技(深圳)有限公司 | Electronic contract signing method, electronic contract signing device, computer equipment and storage medium |
| CN112231771A (en)* | 2020-12-11 | 2021-01-15 | 浙江数秦科技有限公司 | A method for online signing and preservation of electronic contracts based on blockchain |
| CN113052603A (en)* | 2021-03-11 | 2021-06-29 | 杭州安恒信息安全技术有限公司 | Identity authentication method, identity authentication device, computer equipment and storage medium |
| CN117575582A (en)* | 2024-01-16 | 2024-02-20 | 成都理工大学 | Financial payment system for commercial tenant |
| CN117575582B (en)* | 2024-01-16 | 2024-03-22 | 成都理工大学 | Financial payment system for commercial tenant |
| Publication | Publication Date | Title |
|---|---|---|
| CN105631248A (en) | Signing method, forging judgment method and tampering judgment method of electronic contract | |
| CN111428211B (en) | Evidence storage method for multi-factor authority-determining source tracing of video works facing alliance block chain | |
| CN103440444B (en) | The signing method of electronic contract | |
| CN107070938A (en) | Data access control system based on block chain | |
| US20110289318A1 (en) | System and Method for Online Digital Signature and Verification | |
| CN111787116B (en) | System and method for trusted authentication of container mirror image based on block chain technology | |
| CN106709963A (en) | Method and apparatus for verifying authenticity of image | |
| US20040143556A1 (en) | Voice signature with strong binding | |
| CN115952560A (en) | Method, system, equipment and medium for verifying authenticity of electronic archive file based on original handwriting signature | |
| CN110392043B (en) | Method and system for endowing electronic contract notarization with mandatory execution effect | |
| CN113761578A (en) | Document true checking method based on block chain | |
| CN113849797B (en) | Method, device, equipment and storage medium for repairing data security hole | |
| CN108876375B (en) | Block chain real name participation method and system | |
| CN115021942A (en) | Tamper-proof network data secure transmission method | |
| CN108777673A (en) | One kind carrying out Bidirectional identity authentication method in block chain | |
| CN101741561A (en) | Method and system for authenticating two-way hardware | |
| US11729159B2 (en) | System security infrastructure facilitating protecting against fraudulent use of individual identity credentials | |
| CN108540447A (en) | A kind of certification authentication method and system based on block chain | |
| CN111585995A (en) | Method and device for transmitting and processing safety wind control information, computer equipment and storage medium | |
| CN109246062A (en) | A kind of authentication method and system based on browser plug-in | |
| JP2007188194A (en) | Authentication system, transform function generation device, transform function generation method, program enabling computer to execute the transform function generation method, and recording medium with the program recorded thereon in computer-executable manner | |
| CN111177772B (en) | Data security method for palm power business of power system | |
| CN109145543B (en) | an identity authentication method | |
| CN105610570A (en) | Registration method and system for installation of compiling environment | |
| CN110414264B (en) | Stamping file filing and verification processing method based on intelligent chip card |
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication | Application publication date:20160601 |