Third-party digital signature method and data transmission system

Abstract

The invention discloses a third-party digital signature method and a data transmission system, relates to the field of information security, realizes the control on the security of data transmission and enhances the safety of system. The third-party digital signature method includes the following steps: a first data transmission device sends a signature request to a signable device, and the signature request carries data to be signed or information abstract of data to be signed and requests the signable device to digitally sign the data to be signed; the signable device digitally signs the data to be signed or information abstract of data to be signed, obtains the digital signature information of the data to be signed or information abstract of data to be signed and transmits the digital signature information to the first data transmission device; and the first data transmission device receives the digital signature information and transmits the information as well as the data to be signed to a second data transmission device. The invention is applicable to data transmission based on public key signature.

Description

technical field [0001] The invention relates to the field of information security, in particular to a third-party digital signature method and data transmission system based on public key digital signatures. Background technique [0002] In the process of information security transmission, digital signature based on public key has been widely used. When sending data with a digital signature, the data source sender uses its own private key to encrypt the data, completes the digital signature of the data, and sends the data, digital signature and digital certificate for verification to the data receiver ( The data certificate contains the public key), and the data receiver uses the public key of the other party to interpret the received digital signature, and verifies the integrity of the received data according to the interpretation result. Digital certificates are issued, managed and authenticated by the certificate center. When a device in the network needs to ensure the s...

AI Technical Summary

Problems solved by technology

[0004] On the one hand, when both A and B are in a non-secure situation, even if A has a legal digital certificate, the attacker can forge data in A, and use the private key corresponding to A's digital certificate to sign the data sent to B, because The security of the data source cannot be guaranteed, so B cannot confirm the security of the received data

[0005] On the other hand, in the existing digital signature model, the device that completes the digital signature is usually the device that sends the data. That is to say, as long as there is a device that needs to use the digital signature to send data, it needs to assign a certificate to the device. When a network When there are a large number of devices that require digital signatures in the network, the certificate center of the network needs to issue a large number of digital certificates and manage these digital certificates, which will bring a considerable workload and the management is very complicated.

Images