摘要:
An object is to perform time certification at a low cost while ensuring high precision and high reliability. In a time stamp server according to the present embodiment, a time is measured by the unit of, for example, 100 milliseconds, and a time stamp is issued by using the time. However, what is important is generally a date in a time stamp although it depends on a certification target. Therefore, it is thought that no adverse affect occurs substantially, even if a second hand is doctored. Accordingly, in the present embodiment, the time measured by the internal clock of the time stamp server is divided into a part regarding the units equal to or larger than the unit of minute (year, month, day, minute) and a part regarding the unit of second (including the units smaller than one second, such as millisecond), and the part regarding the units equal to or larger than the unit of minute is audited by an auditory office, whereas the part regarding the unit of second is synchronized with a time distributed from a time distributing office. That is, as to the part regarding the units equal to or larger than the unit of minute, the coincidence with the reference time is confirmed, whereas the part regarding the unit of second is corrected by using the time distributed from the time distributing office.
摘要:
Long-term signature data is formed at a server side while a private key and the like are held at a client side. The long-term signature data is configured by arranging ES, STS, verification information, ATS (1st), and ATS (2nd) in a predetermined long-term signature format. Among these elements, those for which processing using the private key and original data are necessary are ES and ATS. Due to processing where the original data and the private key is necessary being performed by a client terminal 3 and processing where the long-term signature data is analyzed and generated being performed by a long-term signature server 2, the long-term signature data is generated in the long-term signature server 2 while the original data and the private key are held in an inner portion of the client terminal 3. In this manner, the processing where the long-term signature data is formed is separated from the processing using the private key and the original data and the processing where the analysis and generation of XML is performed, and the former is undertaken in the client terminal 3 and the latter is undertaken in the long-term signature server 2.
摘要:
A time certifying server has a clock unit that outputs time information. Units of time equal to or larger than a predetermined unit are acquired from the time information. Units of time from the time information smaller than the predetermined unit are corrected using an acquired correction time and without correcting the acquired units of time equal to or larger than the predetermined unit. A reference time is received from a reference time distributing server that distributes reference time. A verification process is then executed to verify that the clock unit operates at a precision falling within a predetermined range by confirming that, in the time of the units equal to or larger than the predetermined unit, the acquired time and the received reference time coincide with each other. A certification target information that serves as time certification target is received from a client terminal. Time certification information of the received certification target information is generated after verification of the operational precision of the clock unit using the corrected units of time. The generated time certification information is transmitted to the client terminal.
摘要:
A data certification system includes a proof information generation unit that generates certification information for certifying non-falsification of raw data, and generates proof information including the certification information and time information representing the time of the generation of the certification information. A server transmission unit transmits the proof information which is received by a client reception unit. A time information acquisition unit acquires the time information representing the time of the generation of the certification information from the proof information. A report generation unit generates report data in which the time information and publishing destination information representing a publishing destination are included in the raw data. A transfer unit transfers the raw data, the proof information, and the report data to a publishing server which releases the report data. An output unit outputs the report data.
摘要:
A long-term signature server includes a signing target data acquisition function for acquiring signing target data, a signature data transmission function for transmitting to a long-term signature terminal signature data for the electronic-signing of the acquired signing target data, a signature value reception function for receiving an electronic signature value of the signing target data generated using the signature data transmitted from the long-term signature terminal, a time stamp acquisition function for acquiring a time stamp corresponding to the received electronic signature value, and a signature data generation function for generating basic signature data using at least the acquired signing target data, the received electronic signature value, and the acquired time stamp.