CN106685665B - A kind of generation of effective electron authority, openly verification method, apparatus and system - Google Patents

Abstract

The invention discloses a kind of effective electron authoritys to generate, open verification method, apparatus and system, effective electron authority generation method, for generating effective electron authority according to blank electronic authority, comprising: effective electron authority identification information generation step: the electronics authority side of issuing generates the second electronics authority information for describing electronics authority particular content；Any information of blank electronic authority is generated into third electronics authority information together with the second electronics authority information；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, the electronics authority side of issuing signature is generated；Effective electron authority generation step: effective electron authority is generated according to blank electronic authority, the second electronics authority information, the electronics authority side of issuing signature.The embodiment of the present invention enhances the antifalsification of electronics authority, has the advantages that crosstalk-preventing, anti-irregularity use, reduces the difficulty of electronics authority verifying, has the characteristics that easily to verify.

Description

A kind of generation of effective electron authority, openly verification method, apparatus and system

Technical field

The present invention relates to information technology field, espespecially a kind of effective electron authority generates, discloses verification method, device and be System.

Background technique

With internet electronic business, financial auditing, IT application in enterprises development, flow through in journey and pass through in business datum With no paper electronics authority, which is paid, settled accounts and calculated etc., has become a kind of trend, and electronics authority gradually substitutes traditional paper Matter authority, application are more and more extensive.Electronics authority is based on computer and modern communications technology, and storage is believed in the form of data It ceases among computer system, and form is transmitted by network and realizes that tradition has the function of paper authority.

Currently, circulation authority there are many kinds of, such as invoice (national taxation bureau issue or invoice, each local tax Office invoice, common invoice, VAT invoice, the quota invoice issued), enterprises and institutions' treasury trade it is various with receipt, fire Ticket, plane ticket, e bill, contract etc..The anti-fake and verifying of various authoritys is the important link in using and circulating.

Existing tax administration system can not prevent paper invoice the playing tricks of links, falsely use, distort, go here and there with etc. peace Full hidden danger.For example true from false of bills examination is difficult, this has just given some criminal's opportunities.Some illegal electronics authoritys The side of issuing achievees the purpose that tax evasion by using means such as false invoice, yin-yang invoices in normal process of exchange, gives state Family's tax causes great loss.Simultaneously there is also string invoice mutually between different enterprises, issue not in oneself business scope The irregularities such as interior invoice, the invoice for using more than validity period use the phenomenon that invoice.On the other hand, in invoice ping procedure, It needs to be manually operated, not only troublesome in poeration when invoice data is more, also error-prone.

As it can be seen that since the existing above problem, using and promoting for electronics authority just become anxious to papery authority in use Problem to be solved.How to improve the antifalsification of electronics authority, crosstalk-preventing, prevent irregularity from using, easily verifying, really realizes industry Circulation process of being engaged in is problem in the urgent need to address in Current electronic authority use process with no paper at all.

Certain methods are currently suggested for the anti-counterfeiting technology of electronics authority, electronic invoice is carried out by electronic signature method It is anti-fake.Electronic Signature is that the electronics authority side of issuing signs to electronics authority content, passes through the verifying electronics authority side of issuing Signature is to verify electronics authority content authenticity.Electronic invoice does not have the signature of electronics authority issuing organization at present, can not verify The true or false of electronic invoice.In addition to this, in order to improve the antifalsification of electronic invoice, invoice codes, invoice are recorded in invoice Number, the electronics authority side of issuing title, the electronics authority side of issuing Tax Registration Certificate number, purchaser's title, transaction details (transaction Content, unit price, quantity, the amount of money), date of making out an invoice etc. carry out anti-fake, when verifying, is checked by login tax authority's server. To further increase electronic invoice antifalsification, when proposing increase blank ticket number, transaction on the basis of above-mentioned electronic invoice Between etc. modes carry out it is anti-fake, and when the electronics authority side of issuing makes out an invoice log in tax office server, input blank ticket number, purchaser Title and purchaser's unique code, transaction details (transaction content, unit price, quantity, the amount of money), read electricity by tax office server automatically The sub- authority side of issuing identity and server precise time, and a unique electronic invoice number is generated for the transaction.Verifying When by log in the tax authority server, pass through the electronics authority side of issuing unique code+purchaser's unique code+time+gold The method of volume verifies invoice authenticity.Above-mentioned verification method can only carry out online verification, and for the electronics authority side of issuing It can only be identified there is the illegal electronics authority side of issuing in this way and usurp the suspicion that others' code is made out an invoice by unique code It doubts.In addition to this identity of the tax authority is not verified, exists and pretends to be the tax authority to exist phenomena such as issuing invoice Certain loophole.

Summary of the invention

Technical problem to be solved by the invention is to provide a kind of effective electron authoritys to generate, open verification method, device And system, the antifalsification of electronics authority can be enhanced.

To achieve the goals above, the embodiment of the invention provides a kind of effective electron authority generation methods, are used for basis Blank electronic authority generates effective electron authority, which comprises

Effective electron authority identification information generation step: the electronics authority side of issuing generates specifically interior for describing electronics authority The the second electronics authority information held；Any information of blank electronic authority is generated into third together with the second electronics authority information Electronics authority information；The second signature algorithm is called, third electronics authority information is signed using the electronics authority side's of issuing private key Name generates the electronics authority side of issuing signature；

Effective electron authority generation step: according to blank electronic authority, the second electronics authority information, the electronics authority side of issuing Signature generates effective electron authority.

Optionally,

Any information of blank electronic authority, one or more kinds of any combination including following information:

First electronics authority information, electronics authority issuing organization public key, issuing organization signature；

The first electronics authority information, comprising: issued according at least to preset electronics authority ticket information, electronics authority The first electronics authority information that electronics authority ticket information in square public key, the electronics authority side of issuing title three generates；It is described Electronics authority ticket information includes one of following information or two or more any combination:

Electronics authority code, electronics authority number, electronics authority type, electronics authority issuing organization title, electronics authority Amount, electronics authority validity period, type of service；

The second electronics authority information, including one of following information or two or more any combination:

Electronics authority invoicing time, purchaser's title, purchaser's identifier, purchaser address, purchaser's phone, purchaser Bank of deposit, purchaser's account, product name, labor service title, service name, specifications and models, unit, quantity, unit price, the amount of money, tax Rate, the amount of tax to be paid, Amount in Total, total amount of tax to be paid, the electronics authority side of issuing title, the electronics authority side of issuing identifier, electronics authority are opened Tool side address, bank of deposit, the electronics authority side of issuing, the electronics authority side of issuing account, payee, is opened the electronics authority side of issuing phone Ticket people, review people and check code, the password generated for protection above content.

Optionally,

The effective electron authority generation step, further includes: when blank electronic authority does not include the electronics authority side of issuing public affairs The electronics authority side of issuing public key is added to the effective electron authority of generation by key.

Optionally,

The effective electron authority identification information generation step, further includes: call the 4th encryption algorithm, electronics authority is issued Send out authority public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics authority letter Any information in breath, any combination of any information in the second electronics authority information are encoded, and it is effectively electric to generate first Sub- authority identification code；And/or according to the electronics authority coding method prestored, increase electricity in the information of the participation coding prestored Sub- authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electricity Any information in sub- authority information, any combination of any information in the second electronics authority information are encoded, and generate the Two effective electron authority identification codes；

The effective electron authority generation step, further includes: effectively by the first effective electron authority identification code and/or second Electronics authority identification code is added to the effective electron authority of generation.

Optionally, the method also includes:

Show step: the effective electron authority of generation is shown, or printing generates true authority nominal value.

The embodiment of the invention also provides a kind of effective electron authoritys to disclose verification method, comprising:

Effective electron authority information extracting step: effective electron authority key message, the key are extracted from electronics authority Information includes: the electronics authority side of issuing signature；

Electronics authority content authenticity verification step: the second signature verification algorithm is called, the electronics authority side of issuing public affairs are used Key verifies the electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

Optionally,

The effective electron authority information extracting step, further includes: when blank electronic authority does not include that electronics authority is issued Square public key extracts the electronics authority side of issuing public key；

The electronics authority content authenticity verification step, further includes: whether the verifying electronics authority side of issuing public key is effective.

Optionally,

The effective electron authority information extracting step, further includes: the second electronics authority information is extracted, according to effective electron Authority generation method extracts any information of blank electronic authority, according to the second electronics authority information and blank electronic authority of extraction Any information generates third electronics authority information；

The electronics authority content authenticity verification step, further includes: according to first in the blank electronic authority of extraction Electronics authority Information Authentication the second electronics authority information authenticity.

The electronics authority content authenticity verification step, further includes: according to first in the blank electronic authority of extraction Electronics authority Information Authentication the second electronics authority information compliance.

The embodiment of the invention also provides a kind of effective electron authority generating means, comprising:

It is specifically interior to generate description electronics authority for the electronics authority side of issuing for effective electron authority identification information generation module The the second electronics authority information held；Any information of blank electronic authority is generated into third electronics together with the second electronics authority information Authority information；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, it is raw At the electronics authority side of issuing signature；

Effective electron authority generation module, for being opened according to blank electronic authority, the second electronics authority information, electronics authority Tool side's signature generates effective electron authority.

Optionally,

The effective electron authority generation module is also used to when blank electronic authority not include the electronics authority side of issuing public affairs The electronics authority side of issuing public key is added to the effective electron authority of generation by key.

Optionally,

The effective electron authority identification information generation module, is also used to: calling the 4th encryption algorithm, issues electronics authority Send out authority public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics authority letter Any information in breath, any combination of any information in the second electronics authority information are encoded, and it is effectively electric to generate first Sub- authority identification code；And/or according to the electronics authority coding method prestored, increase electricity in the information of the participation coding prestored Sub- authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electricity Any information in sub- authority information, any combination of any information in the second electronics authority information are encoded, and generate the Two effective electron authority identification codes；

The effective electron authority generation module is also used to the first effective electron authority identification code and/or second effectively Electronics authority identification code is added to the effective electron authority of generation.

Optionally, described device further include:

Exposure module, the effective electron authority for that will generate are shown, or printing generates true authority nominal value.

The embodiment of the invention also provides a kind of effective electron authoritys to disclose verifying device, comprising:

Effective electron authority information extraction modules, it is described for extracting effective electron authority key message from electronics authority Key message includes: the electronics authority side of issuing signature；

Electronics authority content authenticity authentication module calls the second signature verification algorithm, uses the electronics authority side of issuing public affairs Key verifies the electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

Optionally,

The effective electron authority information extraction modules are also used to when blank electronic authority not include the electronics authority side of issuing Public key extracts the electronics authority side of issuing public key；

Whether effective the electronics authority content authenticity authentication module is also used to verify the electronics authority side of issuing public key.

Optionally,

The effective electron authority information extraction modules are also used to extract the second electronics authority information, according to effective electron Authority generation method extracts any information of blank electronic authority；

The electronics authority content authenticity authentication module, the first electricity being also used in the blank electronic authority according to extraction Sub- the second electronics of authority Information Authentication authority information authenticity；；

The electronics authority content authenticity authentication module, the first electricity being also used in the blank electronic authority according to extraction Sub- the second electronics of authority Information Authentication authority information compliance；

The electronics authority content authenticity authentication module is also used to the second electronics authority information and blank according to extraction Any information of electronics authority generates third electronics authority information.

Verifying system is generated and disclosed the embodiment of the invention also provides a kind of effective electron authority, the system comprises:

It is specifically interior to generate description electronics authority for the electronics authority side of issuing for effective electron authority identification information generation module The the second electronics authority information held；Any information of blank electronic authority is generated into third electronics together with the second electronics authority information Authority information；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, it is raw At the electronics authority side of issuing signature；

Effective electron authority generation module, for being opened according to blank electronic authority, the second electronics authority information, electronics authority Tool side's signature generates effective electron authority；

Exposure module, the effective electron authority for that will generate are shown, or printing generates effective authority nominal value；

Effective electron authority information extraction modules, it is described for extracting effective electron authority key message from electronics authority Key message includes: the electronics authority side of issuing signature；

Electronics authority content authenticity authentication module is issued for calling the second signature verification algorithm using electronics authority The square public key verifications electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

Optionally,

The effective electron authority generation module is also used to when blank electronic authority not include the electronics authority side of issuing public affairs The electronics authority side of issuing public key is added to the effective electron authority of generation by key；

The effective electron authority information extraction modules are also used to extract the electronics authority side of issuing public key；

Whether effective the electronics authority content authenticity authentication module is also used to verify the electronics authority side of issuing public key.

The electronics authority content authenticity authentication module, the first electricity being also used in the blank electronic authority according to extraction Sub- the second electronics of authority Information Authentication authority information authenticity；

The electronics authority content authenticity authentication module, the first electricity being also used in the blank electronic authority according to extraction Sub- the second electronics of authority Information Authentication authority information compliance.

Optionally,

The effective electron authority identification information generation module, is also used to: calling the 4th encryption algorithm, issues electronics authority Send out authority public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics authority letter Any information in breath, any combination of any information in the second electronics authority information are encoded, and it is effectively electric to generate first Sub- authority identification code；And/or according to the electronics authority coding method prestored, increase electricity in the information of the participation coding prestored Sub- authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electricity Any information in sub- authority information, any combination of any information in the second electronics authority information are encoded, and generate the Two effective electron authority identification codes；

The effective electron authority generation module is also used to the first effective electron authority identification code and/or second effectively Electronics authority identification code is added to the effective electron authority of generation.

The embodiment of the invention also provides a kind of generations of effective electron authority and open verification method, which comprises

Effective electron authority identification information generation step: the electronics authority side of issuing generates description electronics authority particular content Second electronics authority information；Any information of blank electronic authority is generated into third electronics authority together with the second electronics authority information Information；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, electricity is generated The sub- authority side of issuing signature；

Effective electron authority generation step: according to blank electronic authority, the second electronics authority information, the electronics authority side of issuing Signature generates effective electron authority；

Show step: the effective electron authority of generation is shown, or printing generates effective authority nominal value；

Effective electron authority information extracting step: effective electron authority key message, the key are extracted from electronics authority Information includes: the electronics authority side of issuing signature；

Electronics authority content authenticity verification step: the second signature verification algorithm is called, the electronics authority side of issuing public affairs are used Key verifies the electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

Optionally,

The effective electron authority generation step, further includes: when blank electronic authority does not include the electronics authority side of issuing public affairs The electronics authority side of issuing public key is added to the effective electron authority of generation by key；

The effective electron authority information extracting step, further includes: extract the electronics authority side of issuing public key；

The electronics authority content authenticity verification step, further includes: whether the verifying electronics authority side of issuing public key is effective.

The electronics authority content authenticity verification step, further includes: according to first in the blank electronic authority of extraction Electronics authority Information Authentication the second electronics authority information authenticity；

The electronics authority content authenticity verification step, further includes: according to first in the blank electronic authority of extraction Electronics authority Information Authentication the second electronics authority information compliance.

Optionally,

The effective electron authority identification information generation step, further includes: call the 4th encryption algorithm, electronics authority is issued Send out authority public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics authority letter Any information in breath, any combination of any information in the second electronics authority information are encoded, and it is effectively electric to generate first Sub- authority identification code；And/or according to the electronics authority coding method prestored, increase electricity in the information of the participation coding prestored Sub- authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electricity Any information in sub- authority information, any combination of any information in the second electronics authority information are encoded, and generate the Two effective electron authority identification codes；

The effective electron authority generation step, further includes: effectively by the first effective electron authority identification code and/or second Electronics authority identification code is added to the effective electron authority of generation.

The embodiment of the present invention also provides a kind of computer readable storage medium, is stored with computer executable instructions, described Computer executable instructions are performed the realization above method.

Compared with prior art, effective electron authority provided in an embodiment of the present invention generate, open verification method, device and System, by increasing the electronics authority side of issuing public key, the electronics authority side of issuing in electronics authority to the signature of electronics authority content, The authenticity of electronics authority content is verified by the verifying electronics authority side's of issuing public key and signature.By issuing electronics authority It is any in authority public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature and electronics authority Information generates identification code, improves the efficiency of electronics authority verifying.By by the public key of issuing organization, issuing organization signature, electronics The method that the information such as the authority side of issuing public key, the electronics authority side of issuing signature directly displayed or be printed upon authority nominal value, is conveniently tested Card side directly acquires above-mentioned public key and signature, and according to the true and false of above-mentioned public key and signature verification authority.And in existing electronics There is no the public key of issuing organization and signature, the electronics authority side's of issuing public key and signature, relevant information to be required in authority nominal value Specialized system is inquired, it is seen then that the embodiment of the present invention by relevant information being directly displayed or being printed upon authority nominal value, without It uses special system to be inquired, has the characteristics that obtain information simplicity.The method that the embodiment of the present invention discloses verifying can be with It is carried out by offline and online two ways, greatly reduces the difficulty of electronics authority verifying, improve the reliability and effect of verifying Rate.Have the characteristics that verification mode is simple, efficient.

Detailed description of the invention

Attached drawing is used to provide to further understand technical scheme, and constitutes part of specification, with this The embodiment of application is used to explain the technical solution of the application together, does not constitute the limitation to technical scheme.Attached In figure:

Fig. 1 is the blank electronic authority generation method flow chart that first embodiment of the invention provides；

Fig. 2 is the effective electron authority generation method flow chart that second embodiment of the invention provides；

Fig. 3 is blank electronic invoice schematic diagram used at present；

Fig. 4-1 is shown in a manner of text for the blank authority that the embodiment of the present invention designs, or printing master drawing；

Fig. 4-2 shows master drawing in such a way that text and two dimensional code combine for the blank authority that the embodiment of the present invention designs；

Fig. 4-3 shows master drawing in such a way that text and bar code combine for the blank authority that the embodiment of the present invention designs；

Fig. 5 is true electronic invoice schematic diagram used at present；

Fig. 5-1 is that the true authority that the embodiment of the present invention finally shows shows master drawing in the form of text；

Fig. 5-2 is that the true authority that the embodiment of the present invention finally shows shows master drawing in the form of a two dimensional code；

Fig. 5-3 is that the true authority that the embodiment of the present invention finally shows is shown in such a way that text and two dimensional code combine Existing master drawing；

Fig. 5-4 be the true authority that finally shows of the embodiment of the present invention in a manner of text and two two dimensional codes combinations into Row shows master drawing；

Fig. 5-5 is that the true authority that the embodiment of the present invention finally shows shows sample in such a way that text and bar code combine Figure；

Fig. 5-6 is the true authority that finally shows of the embodiment of the present invention in a manner of text, two dimensional code, bar code combination Show master drawing；

Fig. 6 is that the electronics authority that third embodiment of the invention provides discloses verification method flow chart；

Fig. 7 is that the electronics authority that fourth embodiment of the invention provides discloses verification method flow chart；

Fig. 8 is that the electronics authority that fifth embodiment of the invention provides generates and disclosure verifies system schematic；

Fig. 9 is that one purchaser individual of present application example verifies electronics authority true or false by offline mode and content is true The flow chart of property method；

Figure 10 is the flow chart of the electronics authority true or false verification method of present application example one；

Figure 11 is the flow chart of the verification method of the blank electronic authority key message of present application example one；

Figure 12 is the flow chart of the electronics authority content authenticity verification method of present application example one；

Figure 13 is the flow chart of the authenticity verification methods of the effective electron authority key message of present application example one；

Figure 14 is the flow chart of the compliance verification method of the effective electron authority key message of present application example one；

Figure 15 is the blank electronic authority generating means structural schematic diagram that sixth embodiment of the invention provides；

Figure 16 is that the blank electronic authority that seventh embodiment of the invention provides discloses verifying apparatus structure schematic diagram；

Figure 17 is the effective electron authority generating means structural schematic diagram that eighth embodiment of the invention provides；

Figure 18 is that the effective electron authority that ninth embodiment of the invention provides discloses verifying apparatus structure schematic diagram；

Figure 19 is the generation of electronics authority and open verification method flow chart that tenth embodiment of the invention provides；

Figure 20 is that the blank electronic authority that eleventh embodiment of the invention provides generates and disclosure verifies system schematic；

Figure 21 is the generation of blank electronic authority and open verification method flow chart that twelveth embodiment of the invention provides.

The embodiments will be further described with reference to the accompanying drawings for realization, functional characteristics and the advantage of the application purpose.

Specific embodiment

It should be appreciated that specific embodiment described herein is only used to explain the application, it is not used to limit the application.

The embodiment of the present invention increases issuing organization public key, issuing organization to blank electronic authority information in electronics authority Signature, by verifying issuing organization public key and signature, to verify the true or false of electronics authority.And increase in electronics authority The electronics authority side of issuing public key, the electronics authority side of issuing pass through the verifying electronics authority side of issuing to the signature of electronics authority content Public key verifies the authenticity of electronics authority content with signature.By using electronics authority issuing organization private key to blank electronic with It signs according to key message, and electronics authority issuing organization public key and electronics authority issuing organization closes blank electronic authority The signature of key information is added to blank electronic authority, improves antifalse effect, the crosstalk-preventing of blank electronic authority, guarantees electronics authority For the legal authority that legal entity issues, while use cannot be gone here and there between different enterprises mutually.By verifying issuing organization signature come The method of the verifying electronics authority side of issuing public key improves the efficiency of the electronics authority side of issuing public key verifications, reduces electronics authority The maintenance and management cost of the side's of issuing public key is provided convenience for electronics authority off-line verification.Pass through the rule that will be checked and approved or supervise Then it is added in the first electronics authority information, by verifying the first electronics authority relevant information, prevents electronics authority irregularity from making With.Also, the embodiment of the present invention is shown in authority nominal value, or printing electronics authority issuing organization public key, issuing organization signature, The information such as the electronics authority side of issuing public key, the electronics authority side of issuing signature, can use text, two dimensional code, bar code, identification Any combination mode such as code, digital watermarking, image is shown, or printing, and the position put can combine concrete application scene Arbitrarily put.In this way, by the way that the public key of issuing organization, issuing organization signature, the electronics authority side of issuing public key, electronics authority are opened Tool side signature etc. information directly display, or printing generate authority nominal value method, facilitate authentication directly acquire above-mentioned public key and Signature, and according to the true and false of above-mentioned public key and signature verification authority.And there is no issuing organization in existing electronics authority nominal value Public key and signature, the electronics authority side's of issuing public key and signature, relevant information be required to specialized system be inquired, it is seen then that The embodiment of the present invention is by directly displaying relevant information, or printing generates authority nominal value, carries out without using special system Inquiry has the characteristics that obtain information simplicity.

Open verification method provided in an embodiment of the present invention can be purchaser, electronics authority issuing organization, financial system Etc. different departments, different business demands, verified using offline, online two different modes.

Embodiment 1:

Fig. 1 is the flow chart for the blank electronic authority generation method that first embodiment of the invention provides, the present embodiment provides Blank electronic authority generation method, for generating blank electronic authority, as shown in Figure 1, which comprises

Blank electronic authority identification information generation step (step 101 to step 103):

Step 101: being opened according at least to preset electronics authority ticket information, the electronics authority side of issuing public key, electronics authority Electronics authority ticket information in tool side title three generates the first electronics authority information；

The electronics authority ticket information includes one of following information or two or more any combination:

Electronics authority code, electronics authority number, electronics authority type, electronics authority issuing organization title, electronics authority Amount, electronics authority validity period, type of service.

As it can be seen that the first electronics authority information is the one or more any combination of following the description: electronics authority generation Code, electronics authority number, electronics authority type, electronics authority issuing organization title, electronics authority amount, electronics authority are effective Phase, type of service, the electronics authority side of issuing public key, the electronics authority side of issuing title etc.；

The electronics authority code is used to describe the relevant information of electronics authority, for example, area code, plate-making year, batch Secondary, version spoken and written languages, electronics authority issuing organization code, industry code, join time code, electronics authority amount at a little authoritys Etc. relevant informations.

The electronics authority number is used to indicate the serial number of electronics authority；

Which kind of type is the electronics authority type belong to for describing electronics authority, including but not limited to common invoice, VAT invoice, the authority of the treasury trade of public institution, common e bill, train ticket, plane ticket, electronic contract, doctor Institute's authority etc.；

The electronics authority amount is for describing the ceiling that electronics authority is issued；

The electronics authority validity period is used to describe to make out an invoice the date in electronics authority must (earliest and most before the deadline The service life in evening)；

The type of service be used for describe electronics authority issuing organization be realize supervision and setting opened with electronics authority The relevant type of business of tool side's business scope；

The electronics authority side's of issuing public key is effective public key that any authoritative institution issues, the format of public key and the side of storage Formula is unlimited.

Step 102: use the first signature algorithm, and with electronics authority issuing organization private key to the first electronics authority information into Row signature obtains issuing organization signature；

The electronics authority issuing organization private key is effective private key that any authoritative institution issues；First signature is calculated Method is any safely and effectively algorithm, if being applied to digest algorithm in the first signature algorithm, calls the first digest algorithm raw At digest value, first digest algorithm is any safe digest algorithm；If being applied to coding in first signature algorithm Algorithm, then call the first encryption algorithm to generate encoded radio, and first encryption algorithm is any safe encryption algorithm；

First signature algorithm, the first digest algorithm, the first encryption algorithm, way of realization, the mode of storage and fortune Capable mode is unlimited；

Blank electronic authority generation step:

Step 103 has according to the first electronics authority information, electronics authority issuing organization public key, issuing organization signature generation The blank electronic authority of effect.

In the present embodiment, by signing to the first electronics authority information, electronics authority antifalsification is improved.

In the present embodiment, as an implementation, in step 103 further include:

It is issued according to electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, electronics authority One of square title, electronics authority ticket information or two or more any combination are generated using the second encryption algorithm and are known Other code；

Specifically, the generation of the blank electronic authority identification code can be generated empty using following any method The sub- authority identification code of white appliances:

The second encryption algorithm is called, electronics authority issuing organization public key, issuing organization signature are encoded, identification is generated Code；

The second encryption algorithm is called, to electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public affairs Key is encoded, and identification code is generated；

The second encryption algorithm is called, to electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing name Title is encoded, and identification code is generated；

The second encryption algorithm is called, to electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public affairs Key, the electronics authority side of issuing title are encoded, and identification code is generated；

The second encryption algorithm is called, to electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public affairs Key, the electronics authority side of issuing title, any combination of electronics authority ticket information are encoded, and identification code is generated；

Second encryption algorithm is any safely and effectively coding method, and second encryption algorithm can be with first Encryption algorithm is identical to be can also be different；

The step 103, comprising: by the first electronics authority information, electronics authority issuing organization public key, issuing organization label Name, blank electronic authority identification code generate effective blank electronic authority together；

As it can be seen that above-described embodiment is shown, blank electronic authority can have identification code, can also not have identification code, blank electricity Generating for sub- authority identification code can execute according to concrete application scene or not execute protection scope all in the embodiment of the present invention Within.

As an implementation,

The step 103, further includes: by the first electronics authority information, electronics authority issuing organization public key, issuing organization label Name, the electronics authority side of issuing public key generate blank electronic authority together；The electronics authority issuing organization public key is any authority Effective public key corresponding with private key that mechanism issues.The public and private key of electronics authority issuing organization, the electronics authority side of issuing it is public and private It the generation of key and issues and can be completed by electronics authority issuing organization oneself, the believable third-party institution can also be entrusted to complete.

As it can be seen that in the present embodiment, the blank electronic authority is that the first electronics authority information, electronics authority issue machine The combination of structure public key, issuing organization signature, the electronics authority side of issuing public key, any mode of blank electronic authority identification code；

According to specific application environment, blank electronic authority can not include the electronics authority side of issuing public key information, by electronics The public key information of oneself is added to effective electronics authority information when the authority side of issuing generates effective electron authority, both lifes At electronics authority mode also within protection scope of the present invention.

In the present embodiment, as an implementation, the method also includes:

Show step:

Step 104: electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key are shown, or Printing generates blank authority nominal value.

In the present embodiment, the issuing organization public key, issuing organization signature, the electronics authority side of issuing public key placement position It can arbitrarily choose, can concentrate and be placed on an area, can also disperse to be placed on electronics authority nominal value any position.

In the present embodiment, as an implementation,

The step 104 further include: show blank electronic authority identification code, or printing generates blank authority nominal value.

Identification code therein can be generated using any ways such as two dimensional code, bar code, digital watermarking, images.

The blank electronic authority ultimately generated can not include any identification code, only related text information, can wrap yet Containing one or more identification codes, or can be appointed with text information, two dimensional code, bar code, identification code, digital watermarking, image etc. Meaning combination.Related text information, two dimensional code, bar code, identification code, digital watermarking, image etc. can be with any different Mode is shown, or printing generates authority nominal value, shows the public.

In the present embodiment, by directly displaying relevant information, or printing generates authority nominal value, for purchaser, wealth Business system, electronics authority issuing organization can use and the modes such as scan, be manually entered, and carry out open verifying.Wherein, for issuing Send out list of public keys information or certification authority announcement that the verifying of authority public key information can be carried directly by checking system List of public keys information verified.The verifying of the electronics authority side's of issuing public key information can be carried out using following methods: logical Verifying issuing organization signature is crossed to be verified；Checking system included list of public keys information or list of cert information；Check certificate The list of public keys information or list of cert information that issuing organization is announced.The verifying of signature can directly carry out disclosure by verification tool Verifying.This open verification method can be carried out by offline and online two ways, greatly reduce the verifying of electronics authority Difficulty improves the reliability and efficiency of verifying.

The really relevant official seal of electronics authority, for example electronics authority regulating agencies official seal, the electronics authority side of issuing official seal can Can be retained according to specific application environment or not retained.

It should be noted that the embodiment of the present invention method can be applied in the system of electronics authority issuing organization, when So, it can also be applied in the system that the present embodiment function may be implemented in others.

Embodiment 2:

Fig. 2 is the flow chart for the effective electron authority generation method that second embodiment of the invention provides, the present embodiment provides Effective electron authority generation method, for generating effective electron authority, as shown in Figure 2, which comprises

Effective electron authority identification information generation step (step 201 to step 203):

Step 201: the electronics authority side of issuing generates the second electronics authority information for describing electronics authority particular content；

The second electronics authority information for describing electronics authority particular content, open by including but not limited to electronics authority The ticket time, purchaser's title, purchaser's identifier, purchaser address, purchaser's phone, purchaser bank of deposit, purchaser's account, Product name, labor service title, service name, specifications and models, unit, quantity, unit price, the amount of money, the tax rate, the amount of tax to be paid, Amount in Total, conjunction Taxation volume, the electronics authority side of issuing title, the electronics authority side of issuing identifier, the electronics authority side of issuing address, electronics authority are opened Tool side's phone, the electronics authority side of issuing account, payee, drawer, checks people and to protect at bank of deposit, the electronics authority side of issuing Protect check code, the password that above content generates；Second electronics authority information is the one or more any combination of above content.

Step 202: any information of blank electronic authority is generated into third electronics authority together with the second electronics authority information Information；

Step 203: calling the second signature algorithm, third electronics authority information is carried out using the electronics authority side's of issuing private key Signature generates the electronics authority side of issuing signature；

The electronics authority side's of issuing private key is issued corresponding with the electronics authority side's of issuing public key for any authoritative institution Effective private key；

Second signature algorithm is any safely and effectively algorithm, algorithm way of realization, the mode of storage and operation Mode it is unlimited；

If being applied to digest algorithm in second signature algorithm, the second digest algorithm is called to generate digest value, it is described Second digest algorithm is any safe digest algorithm；

If being applied to encryption algorithm in second signature algorithm, third encryption algorithm is called to generate encoded radio, it is described Third encryption algorithm is any safe encryption algorithm；

Second digest algorithm, third encryption algorithm, the mode of way of realization, the mode of storage and operation are unlimited；

Second signature algorithm can be the same or different with the first signature algorithm；

Second digest algorithm can be the same or different with the first digest algorithm；

The third encryption algorithm can be the same or different with the first encryption algorithm, the second encryption algorithm；

Effective electron authority generation step:

Step 204: being generated together according to blank electronic authority, the second electronics authority information, the electronics authority side of issuing signature Effective electron authority.

In the present embodiment, as an implementation, step 204 further include: when blank electronic authority does not include electronics The electronics authority side of issuing public key is added to the effective electron authority of generation by the authority side of issuing public key.

In the present embodiment, as an implementation,

In step 203 further include: the 4th encryption algorithm is called, sign to electronics authority issuing organization public key, issuing organization, The electronics authority side of issuing public key, the electronics authority side of issuing signature, any information in the first electronics authority information, the second electronics with It is believed that any combination of any information in breath is encoded, the first effective electron authority identification code is generated；

The generation of the first effective electron authority identification code can be using following any method:

The 4th encryption algorithm is called in the generation of the first effective electron authority identification code, to electronics authority issuing organization Public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature are encoded, and identification code is generated；

The generation of the first effective electron authority identification code further includes calling the 4th encryption algorithm, is issued electronics authority Authority public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing sign, in effective electron authority Any combination of any information is encoded, and identification code is generated；

In this way, in the above-described embodiments, a first new effective electron authority identification code is individually created, with electronics authority The identification code prestored coexists, or can also not include the identification code that electronics authority has prestored in true electronics authority, only The the first effective electron authority identification code generated including the present embodiment.

Certainly, in other embodiment, in step 203 further include: the electronics authority coding method prestored is called, Increase electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public affairs in the information of the participation coding prestored Key, the electronics authority side of issuing signature, any information in the first electronics authority information, any letter in the second electronics authority information Any combination of breath is encoded, and a second new effective electron authority identification code is generated.

In this way, can increase in the information of the participation coding prestored new when electronics authority has had the identification code prestored Content, generate a second new effective electron authority identification code.

4th encryption algorithm is any safely and effectively coding method；4th encryption algorithm can be with first Encryption algorithm, the second encryption algorithm, third encryption algorithm is identical can also be different；

Correspondingly,

In the step 204, electronics authority issue root according to blank electronic authority, the second electronics authority information, electronics with Effective electricity is generated together according to the side's of issuing signature, the first effective electron authority identification code and/or the second effective electron authority identification code Sub- authority.

In the step 204, when not including the electronics authority side of issuing public key in blank electronic authority, electronics authority is issued Square public key is added to the effective electron authority of generation.

As it can be seen that in the present embodiment, effective electron authority be blank electronic authority, the second electronics authority information, electronics with It is combined according to the side's of issuing signature, the first effective electron authority identification code and/or second any mode of effective electron authority identification code.When Blank electronic authority does not include the electronics authority side of issuing public key, and the electronics authority side of issuing public key is added to the effective electron of generation Authority.In the present embodiment, the effective electron authority ultimately produced can have identification code, can also not have identification code, Ke Yiyou One identification code, can also there are two or multiple identification codes.

In the present embodiment, as an implementation, the method also includes:

Electronics authority shows step: the effective electron authority of generation being shown, or printing generates true authority nominal value.

In the present embodiment, electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, electricity The sub- authority side of issuing signature placement position can arbitrarily be chosen, and can concentrate and be placed on an area, can also disperse to be placed on electronics with According to any position.

In the present embodiment, as an implementation, the electronics authority shows step, further includes:

First effective electron authority identification code and/or the second effective electron authority identification code are shown, or printing generates very Real authority nominal value.

Identification code generating mode can be generated using any coding mode such as two dimensional code, bar code, digital watermarking, image.

The true electronics authority ultimately generated can not include any identification code, only related text information, relevant text The position of word information discharge is unlimited；Also one or more identification codes be may include, or can be with text information, two dimensional code, item Any combination mode such as shape code, identification code, digital watermarking, image is shown or is printed generation.Related text information and knowledge Other code can be revealed in nominal value with any different presentation mode, show the public.

In the present embodiment, by directly displaying relevant information, or printing generates authority nominal value, for purchaser, wealth Business system, electronics authority issuing organization can use and the modes such as scan or be manually entered, and carry out open verifying.Wherein, for The list of public keys information or certification authority public affairs that the verifying of issuing organization public key information can be carried directly by checking system The list of public keys information of cloth is verified.The verifying of the electronics authority side's of issuing public key information can be carried out using following methods: It is verified by verifying issuing organization signature；Checking system included list of public keys information or list of cert information；Examination card The list of public keys information or list of cert information that book issuing organization is announced.The verifying of signature can directly be tested by verification tool Card.This open verification method can be carried out by offline and online two ways, greatly reduce electronics with the difficulty of play verifying Degree, improves the reliability and efficiency of verifying.

The really relevant official seal of electronics authority, for example electronics authority regulating agencies official seal, the electronics authority side of issuing official seal can Can be retained according to specific application environment or not retained.

The password area that invoice uses at present can retain according to specific application environment or not retain.

First embodiment of the invention and second embodiment illustrate electronics authority generation method.It in a particular application, can be with Increase electronics authority issuing organization public key, issuing organization signature, electronics in electronics authority nominal value according to actual application demand One or any of several in the authority side of issuing public key and the electronics authority side of issuing signature, all belongs to the scope of protection of the present invention.

Specifically, blank electronic invoice sample ticket used at present is as shown in Figure 3.

To improve electronics authority antifalsification, the embodiment of the present invention increases electronics authority issuing organization in electronics authority nominal value Public key, issuing organization signature, the electronics authority side's of issuing public key and the electronics authority side of issuing signature etc., are used for anti-fake, crosstalk-preventing It is verified with open, above- mentioned information can concentrate a specific region for being placed in electronics authority nominal value to be shown, can also put Any position for being placed on electronics authority nominal value is shown.In order to improve the efficiency and convenience of the identification of electronics authority, can incite somebody to action Above- mentioned information and electronics authority other information generate identification code using coding method, for example, two dimensional code, bar code, digital watermarking, Image etc., but be not limited to the above method and generate identification code.

Illustrate blank electronic authority and true electronics authority, the blank of design of the embodiment of the present invention in the form of master drawing below Authority master drawing as shown in Fig. 4-1,4-2,4-3, in blank authority add issuing organization public key, issuing organization signature, electronics with According to the side's of issuing public key.Seller public key is a kind of special case of the electronics authority side of issuing public key.

The electronics authority side's of issuing public key is added in the first electronics authority information in blank electronic authority by issuing organization, It is added in blank electronic authority after can also being signed with issuing organization by issuing organization, can also be issued later by electronics authority Fang Tianjia.Issuing organization public key, issuing organization signature, the electronics authority side of issuing public key can be shown in the form of text, can also Show by a manner of two dimensional code, bar code, identification code, digital watermarking, image etc., or with text and two dimensional code, bar code, knowledge Any combination modes such as other code, digital watermarking, image are shown.As increased verifying area in Fig. 4-1 blank electronic authority, with text The mode of word shows electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, electronics authority are issued Side's signature.As Fig. 4-2 shows verifying content in such a way that text and two dimensional code combine, it should be pointed out that the text and two Any position for showing position and being revealed in nominal value of code is tieed up, the embodiment of the present invention is not limited this.If Fig. 4-3 is with text The mode that word and bar code combine shows, likewise, any position for showing position and being revealed in nominal value of text and bar code It sets, the embodiment of the present invention is not limited this.

True electronic invoice sample ticket used at present is as shown in Figure 5.The embodiment of the present invention finally show it is true with According to sample ticket as shown in Fig. 5-1,5-2,5-3,5-4,5-5,5-6, the present embodiment increases issuing organization public key in electronics authority, issues Authority signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature are sent out, electronics authority antifalsification is improved.Seller is public It is that the electronics authority side of issuing signs a kind of special case that key, which is a kind of special case of the electronics authority side of issuing public key, seller signature,.Above-mentioned letter Breath can be shown in the form of text, can also be shown in a manner of two dimensional code, bar code, identification code, digital watermarking, image etc., Or shown in a manner of any combination such as text and two dimensional code, bar code, identification code, digital watermarking, image.Identification code Generation can merge with original identification code, generate an identification code, can also be individually created identification code, original identification code can It can not also be retained with retaining.Fig. 5-1 shows above-mentioned key message in a manner of text, in figure and shows password Area, password area are that current invoice is existing, are that key message is encrypted and signed, tax system is set by special instrument Standby scanning invoice, extracts key message, is decrypted with sign test and carries out the verifying of electronic invoice.For password area, Ke Yigen Retain according to specific application environment or do not retain, belongs among the present invention.Fig. 5-2 is by above-mentioned key message in a manner of two dimensional code Show, merge with original two dimensional code relevant information, generates a new two dimensional code.Fig. 5-3 by above-mentioned key message with text and The mode of two dimensional code combination shows, and merges with original two dimensional code relevant information, generates a new two dimensional code.Fig. 5-4 is shown The situation figure of text and the combination of two two dimensional code figures, a two dimensional code are that original two dimensional code is constant, further include one newly-generated Two dimensional code.Fig. 5-5 is shown in such a way that text and bar code combine.Fig. 5-6 is with the combination of text, two dimensional code and bar code Mode show.

Above-mentioned electronics authority example master drawing is merely illustrative, in the actual use process electronics authority issuing organization public key, Issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature can arbitrarily be put, and participate in generating identification code Content, the placement position of identification code, coding method can arbitrarily choose.

Embodiment 3

Referring to shown in Fig. 6, verification method flow chart, the side are disclosed for the electronics authority that third embodiment of the invention provides Method is verified for carrying out electronics authority true or false, the described method comprises the following steps:

Blank electronic authority key message extraction step:

Step 601: blank electronic authority key message, the blank electronic authority key message are extracted from electronics authority It include: the first electronics authority information, electronics authority issuing organization public key, issuing organization signature；

Electronics authority true or false verification step (step 602 to 604):

Step 602: whether the electronics authority issuing organization public key for verifying extraction is effective；

Step 603: calling the first signature verification algorithm corresponding with the first signature algorithm, use electronics authority issuing organization Public key verifies issuing organization signature；

Step 604: when being verified, judging electronics authority for legal authority.

As an implementation, blank electronic authority key message is extracted in the step 601 from electronics authority, also It include: to extract the electronics authority side of issuing public key；

In step 603 further include: whether the verifying electronics authority side of issuing public key is effective；

If the first electronics authority packet contains the electronics authority side of issuing public key, issuing organization opens electronics authority Tool side's public key is signed, and the electronics authority side of issuing public key can be verified by verifying issuing organization signature, if first Electronics authority information does not include the electronics authority side of issuing public key, and the verifying of the electronics authority side of issuing public key needs to inquire effective public key Whether list information or list of cert information are effective to verify the electronics authority side of issuing public key；

In step 603 further include: whether the first electronics authority information of verifying is true；

First electronics authority Information Authentication can retain according to specific application environment or not retain；

Step 601 extracts the key message of blank electronic authority from effective electron authority, and any means can be used and adopt It extracts in any way, for example is manually entered, scans, by software, PC machine software of cell phone client etc., the crucial letter of extraction The mode for ceasing storage is unlimited.

The verifying of electronics authority issuing organization public key and the verifying of the electronics authority side of issuing public key can using offline or Online mode carries out.

Embodiment 4

Referring to shown in Fig. 7, verification method flow chart, the side are disclosed for the electronics authority that fourth embodiment of the invention provides Method is for verifying electronics authority content authenticity, which comprises

Effective electron authority information extracting step:

Step 701: extracting effective electron authority key message from electronics authority, the key message includes: the second electronics Authority information, any information of blank electronic authority, the electronics authority side of issuing signature；

The extraction of any information of blank electronic authority is extracted according to effective electron authority generation method in step 701；

Effective electron authority verification step (step 702 to step 704):

Step 702: third electronics is generated according to any information of the second electronics authority information and blank electronic authority of extraction Authority information；

Step 703: the second signature verification algorithm is called, using the electronics authority side's of issuing public key to the electronics authority side of issuing label Name is verified；

The verifying that the electronics authority side of issuing signs for the electronics authority side of issuing is verified to sign whether be electronics with According to the side of issuing to the signature of third electronics authority information；

What the electronics authority side of issuing signed is verified as calling the second signature verification algorithm, is issued using electronics authority Square public key verifies the electronics authority side of issuing signature；

Step 704: when being verified, judging that the second electronics authority information was not tampered with；

Step 705: the compliance of verifying effective electron authority key message；The effective electron authority key message closes rule Property verifying for whether closing rule according to first electronics authority Information Authentication the second electronics authority information, compliance, which is verified, includes but not Be limited to include: the titles such as commodity/labor service/service for verifying in the second electronics authority information whether meet defined type of service, Before the deadline whether verifying invoicing time, whether verifying authority type is correct, verifies the amount of money whether in amount etc..

Step 704 and 705 can retain according to concrete application scene or not retain, and the sequence of execution can be arbitrarily arranged, Verifying content can be arbitrarily arranged, in the scope of this patent；

Step 706: when being verified, judging that electronics authority is true；

It as an implementation, further include extracting the electronics authority side of issuing public key in step 701；

It further include the verifying electronics authority side of issuing public key in step 703.

If the first electronics authority information includes the electronics authority side of issuing public key, the verifying of the electronics authority side of issuing public key can To be verified by verifying issuing organization signature in electronics authority true or false verification step；If the first electronics authority information Not comprising the electronics authority side of issuing public key, the verifying of the electronics authority side of issuing public key needs to check effective list of public keys or certificate column Whether table, the verifying electronics authority side of issuing public key are effective；The verifying of the electronics authority side of issuing public key can be using offline or online Mode carries out.

Optionally, step 703 further include:

Whether true effective electron authority key message is verified, including testing by the information for representing electronics authority uniqueness Demonstrate,prove titles, specifications and models, unit, quantity, unit price, the amount of money, the tax rate, the amount of tax to be paid, Amount in Total, the He Jishui such as commodity/labor service/service Whether the information such as volume, payee, drawer and review people are true；

Embodiment 5

Referring to shown in Fig. 8, is generated for the electronics authority that fifth embodiment of the invention provides and open verifying system structure is shown It is intended to, the system comprises:

Blank electronic authority identification information generation module, for according at least to preset electronics authority ticket information, electronics Electronics authority ticket information in the authority side of issuing public key, the electronics authority side of issuing title three generates the first electronics authority letter Breath；It signs, is issued to the first electronics authority information using the first signature algorithm, and with electronics authority issuing organization private key Send out authority signature；

Blank electronic authority generation module, for according to the first electronics authority information, electronics authority issuing organization public key, issue It sends out authority signature and generates blank electronic authority；

Effective electron authority identification information generation module is generated for the electronics authority side of issuing for describing electronics authority tool The the second electronics authority information held in vivo；Any information of blank electronic authority is generated together with the second electronics authority information Third electronics authority information；Call the second signature algorithm, using the electronics authority side's of issuing private key to third electronics authority information into Row signature, generates the electronics authority side of issuing signature；

Effective electron authority generation module, for being opened according to blank electronic authority, the second electronics authority information, electronics authority Tool side's signature generates effective electron authority；

Exposure module, the effective electron authority for that will generate are shown, or printing generates true authority nominal value；

Blank electronic authority information extraction modules, for extracting the key message of blank electronic authority from electronics authority, The key message includes: the first electronics authority information, electronics authority issuing organization public key, issuing organization signature；

Electronics authority true or false authentication module, it is whether effective for verifying the electronics authority issuing organization public key extracted；It adjusts With the first signature verification algorithm corresponding with the first signature algorithm, electronics authority issuing organization public key verifications issuing organization label are used Name；When being verified, judge electronics authority for legal authority；

Effective electron authority information extraction modules, it is described for extracting effective electron authority key message from electronics authority Key message includes: the electronics authority side of issuing signature；

Electronics authority content authenticity authentication module is issued for calling the second signature verification algorithm using electronics authority The square public key verifications electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

Specifically,

The first electronics authority information be including but not limited to electronics authority code, electronics authority number, electronics with It is issued according to type, type of service, electronics authority issuing organization title, electronics authority amount, electronics authority validity period, electronics authority Square public key, the electronics authority side of issuing title etc.；

The issuing organization signature is that electronics authority issuing organization calls the first signature algorithm, and is issued with electronics authority Mechanism private key signs to the first electronics authority information, obtains issuing organization signature；

The electronics authority issuing organization public key is effective public key for issuing of any authoritative institution, the format of public key and is deposited The mode put is unlimited；

The electronics authority issuing organization private key is effective private key corresponding with public key that any authoritative institution issues；

The electronics authority side's of issuing public key is effective public key that any authoritative institution issues, the format of public key and storage Mode it is unlimited；

The blank electronic authority may include can not also include the electronics authority side of issuing public key；

The identification code of the blank electronic authority be call the second encryption algorithm, to electronics authority issuing organization public key, Issuing organization signature, the electronics authority side of issuing public key, any information in the first electronics authority information any combination generate Identification code；

The identification code can merge with existing identification code, can also be individually created new identification code；

The blank electronic authority may include can not also include blank electronic authority identification code；

Effective electron authority generation module generates effective electron authority for the electronics authority side of issuing；Effective electricity Sub- authority is blank electronic authority, the second electronics authority information, the electronics authority side of issuing signature, effective electron authority identification code times Where formula combines.

The third electronics authority information is any information and the second electronics authority information in blank electronic authority Any form combination；

The second electronics authority information is for describing authority particular content, when including but not limited to electronics authority is made out an invoice Between, purchaser's title, purchaser's identifier, purchaser address, purchaser's phone, purchaser bank of deposit, purchaser's account, commodity Title, labor service title, service name, specifications and models, unit, quantity, unit price, the amount of money, the tax rate, the amount of tax to be paid, Amount in Total, He Jishui Volume, the electronics authority side of issuing title, the electronics authority side of issuing identifier, the electronics authority side of issuing address, the electronics authority side of issuing Phone, the electronics authority side of issuing account, payee, drawer, checks people and in protection at bank of deposit, the electronics authority side of issuing State check code, the password of content generation；Second electronics authority information is the one or more any combination of above content.

The electronics authority side of the issuing signature is that the second signature algorithm calls in the electronics authority side of issuing, and uses electronics authority The side's of issuing private key signs to third electronics authority information, generates signature；

The electronics authority side's of issuing private key is effective private key corresponding with public key that any authoritative institution issues；

The identification code of the effective electron authority information is to call the 4th encryption algorithm, public to electronics authority issuing organization Key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, appointing in the first electronics authority information The identification code that information, any combination of any information in the second electronics authority information of anticipating generate；

The identification code can merge with existing identification code, can also be individually created new identification code；

The effective electron authority may include can not also include effective electron authority identification code；

Electronics authority exposure module is for showing effective electron authority information；Electricity in effective electron authority information Sub- authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, identification code Etc. information can arbitrarily put.When specific implementation, electronics authority exposure module can carry out electronics authority on terminal interface It has been shown that, can also show electronics authority dump via the printing equipment of interconnection on paper carrier.

Electronics authority true or false authentication module is used to verify whether electronics authority to be legal authority that legal entity issues；

The electronics authority true or false authentication module includes the extraction of blank electronic authority key message, blank electronic with The verifying signed according to the verifying of key message, issuing organization；

The blank electronic authority key message is extracted for extracting the first electronics authority information, electricity from electronics authority Sub- authority issuing organization public key, issuing organization signature and/or the electronics authority side of issuing public key；

The extraction of the blank electronic authority key message can carry out in any manner, including but not limited to include people Work input, scanning, cell phone client extraction, the extraction of PC machine software etc.；

Whether the verifying of the blank electronic authority key message is true for verifying the first electronics authority key message, It was not tampered with；The verifying of the blank electronic authority key message further includes that verifying electronics authority issuing organization public key is It is no to be tampered, if effectively；

The verifying of the blank electronic authority key message further includes whether the verifying electronics authority side of issuing public key is usurped Change, if effectively；The verification step can blank electronic authority key message verifying in execute, can also effective electron with According to key message verify in execute；

Whether the verifying of the issuing organization signature is electronics authority issuing organization pair for verifying issuing organization signature The signature of first electronics authority information；

The issuing organization signature is verified as the first signature verification algorithm of calling, uses electronics authority issuing organization public Key verifies issuing organization signature；

Whether the content that the electronics authority content authenticity authentication module is used to verify electronics authority is true, closes rule；

The electronics authority content authenticity authentication module include the extraction of effective electron authority key message, electronics with Verifying, the verifying of effective electron authority key message compliance signed according to the side of issuing；

The effective electron authority key message is extracted for extracting the second electronics authority letter from effective electron authority Breath, the electronics authority side of issuing public key, the electronics authority side of issuing signature extract blank electronic according to effective electron authority generation method Any information of authority；

The verifying that the electronics authority side of issuing signs is for verifying whether the second electronics authority information is tampered with；Effective electron The verifying of authority key message content compliance is for verifying whether the second electronics authority information closes rule；

The verifying of effective electron authority key message content authenticity and compliance verifying can be according to concrete application Scene retains or does not retain, and the sequence of execution can be arbitrarily arranged；

The verifying of the effective electron authority key message further includes whether the verifying electronics authority side of issuing public key is effective； If the verification step executes in the verifying of blank electronic authority key message, can be omitted in this step；

The verifying that the electronics authority side of issuing signs for the electronics authority side of issuing is verified to sign whether be electronics with According to the side of issuing to the signature of third electronics authority information；

What the electronics authority side of issuing signed is verified as calling the second signature verification algorithm, is issued using electronics authority Square public key verifies the electronics authority side of issuing signature.

The blank electronic authority generation module, effective electron authority generation module, electronics authority exposure module, electronics with It can be implemented in software also with hardware realization according to true or false authentication module, electronics authority content authenticity authentication module；Before setting Platform or backstage；For centralization or distribution.

Verification method is disclosed to electronics authority of the present invention below by the example in concrete application to illustrate.

Example 1-5 combination purchaser individual uses offline mode, online mode, and financial system passes through offline mode, online Mode, electronics authority issuing organization to electronics authority verify 5 kinds of different application scenarios come illustrate electronics provided by the invention with According to open verification method.

Example 1:

This example is used to illustrate that purchaser individual verifies the true of electronics authority true or false and content by offline mode Property.The electronics authority that this example provides discloses verification method, as shown in Figure 9.

It includes that electronics authority true or false verifying 600 and electronics authority content are true that the electronics authority, which discloses verification process, Property verifies 700 two steps.

This example mainly comprises the steps that

600, electronics authority true or false is verified

The described electronics authority true or false verifying for verifying whether electronics authority is legal authority that legal entity issues, Verification process is as shown in Figure 10, including following 11 steps:

611, the first electronics authority information is extracted from electronics authority；

612, electronics authority issuing organization public key is extracted from electronics authority；

613, issuing organization signature is extracted from electronics authority；

614, the electronics authority side of issuing public key is extracted from electronics authority；

Step 611~614 be from electronics authority extract blank electronic authority key message, the blank electronic with Any means can be used according to key message to extract using any way, for example be manually entered, scan, by cell phone client The mode of software, PC machine software etc., the key message storage of extraction is unlimited；

The sequence that above-mentioned 611~613 3 steps execute can be arbitrarily arranged；

The extraction of the step 614 electronics authority side of issuing public key can be crucial in blank electronic authority according to specific actual conditions It executes in information extraction or is executed in the extraction of effective electron authority key message below.

615, the verifying of blank electronic authority key message；The verifying of the blank electronic authority key message is for testing Demonstrate,prove whether the key message in the first electronics authority is really, to be not tampered with；

The verifying of the blank electronic authority key message is as shown in figure 11, mainly includes following 3 steps:

631, whether verifying electronics authority issuing organization public key is effective, and then proves the true of electronics authority issuing organization public key Reality；

632, whether the title by electronics authority code verification electronics authority issuing organization is true；

633, whether the area used by electronics authority code verification electronics authority is true；

Above-mentioned verification step can be arbitrarily arranged with individual authentication or joint verification, execution sequence；

Step 631 has to carry out in above-mentioned verification step, and other verification steps can be any group according to specific application environment It closes, or without verifying；

Blank electronic authority key message is transferred to next verification step after being verified, not by then directly judging the electronics Authority is the authority forged；

616, judge that blank electronic authority key message verifies whether to pass through, verified, do not passed through in next step by then entering Then directly judge that electronics authority is the authority forged.

617, verifying issuing organization signature；The described verifying issuing organization signature for verify issuing organization signature whether be Signature of the electronics authority issuing organization to the first electronics authority information；

The verifying issuing organization signature uses electronics authority issuing organization public key to call the first signature verification algorithm Verify issuing organization signature；

The first signature verification algorithm is any safely and effectively algorithm corresponding with the first signature algorithm, and algorithm is real The mode of existing form, the mode of storage and operation is unlimited；

If being applied to digest algorithm in first signature verification algorithm, call and in the first signature algorithm identical first Digest algorithm generates digest value；

If being applied to encryption algorithm in first signature verification algorithm, identical first volume with the first signature algorithm is called Code algorithm generates encoded radio；

First digest algorithm, the first encryption algorithm way of realization, the mode of storage and the mode of operation are unlimited.

618, judge whether issuing organization signature verification passes through.By being directly transferred to next verification step, not by then straight It connects and judges that the electronics authority is the authority forged；

619, whether the verifying electronics authority side of issuing public key is effective；First electronics authority information includes the electronics authority side of issuing Public key, verify extraction the electronics authority side of issuing public key whether with the electronics authority side of the issuing public key in the first electronics authority information Unanimously；First electronics authority information does not include the electronics authority side of issuing public key, and the electronics authority side of issuing public key verifications need to use Whether the modes such as list of cert or effective list of public keys of examination are effective to verify the electronics authority side of issuing public key, and then prove electronics The authority side of issuing public key is effective；

The verifying of the step 619 electronics authority side of issuing public key can be placed on electronics authority true or false according to specific application environment It is executed in the effective electron authority key message that executes or put behind in verifying verifying, no matter being placed on which link belongs to this hair Within bright.

620, it is verified, judges that electronics authority is legal authority.

621, verifying does not pass through, and electronics authority is the authority forged.

The verifying of blank electronic authority key message and issuing organization signature verification can be any according to specific application environment Combination, can be arbitrarily arranged with individual authentication or joint verification, the sequence of execution.

700, electronics authority content authenticity is verified

The electronics authority content authenticity is verified for verifying whether the content of electronics authority is tampered with or forges It crosses, if true to close rule, verification process is as shown in figure 12, including the following steps:

711, the second electronics authority information, any information of blank electronic authority are extracted from electronics authority；According to effective electricity Sub- authority generation method extracts any information of blank electronic authority；

712, third electronics authority information is generated according to any information of blank electronic authority and the second electronics authority information；

713, the electronics authority side of issuing public key is extracted；

714, the electronics authority side of issuing signature is extracted；

It is a kind of example shown in Figure 12, step 711,712,713,714 are to extract effective electron from electronics authority Any means can be used using any way in authority key message, the effective electron authority key message extraction, such as It is manually entered, scans, by software, PC machine software of cell phone client etc., the mode of the key message storage of extraction is unlimited；

The sequence that 4 steps of above-mentioned steps 711,712,713,714 execute can be arbitrarily arranged, need to only guarantee 712 After 711；

If step 714 is extracted the electronics authority side's of issuing public key and is executed in the extraction of blank electronic authority key message, It can be omitted at this.

715, the verifying of effective electron authority key message；The verifying of the effective electron authority key message is for testing Demonstrate,prove whether the electronics authority side of issuing public key is effective, whether key message in the second electronics authority is true；It is verified under entrance One step card；

The verifying of the effective electron authority key message is as shown in figure 13, mainly includes following 2 steps:

721, it verifies the electronics authority side's of issuing public key and whether the electronics authority side of issuing information is authentic and valid；

The verifying of the electronics authority side of the issuing public key can use following several ways: if the first electronics authority is believed Breath includes the electronics authority side of issuing public key, and the verifying of the electronics authority side of issuing public key can be carried out by verifying issuing organization signature Whether verifying, the electronics authority side of the issuing public key that need to only verify extraction herein are opened with the electronics authority in the first electronics authority information Tool side's public key is consistent；First electronics authority information does not include the electronics authority side of issuing public key, the electronics authority side of issuing public key verifications Need by using examination the modes such as list of cert or effective list of public keys it is whether effective to verify the electronics authority side of issuing public key, And then prove that the electronics authority side of issuing public key is effective.

By the electronics authority side's of issuing public key information verify the electronics authority side of issuing information whether in electronics authority information The electronics authority side of issuing information it is consistent.

722, whether the second electronics authority information of verifying is true；Whether verifying the second electronics authority information really wraps Include the information by representing electronics authority uniqueness verify the titles such as commodity/labor service/service, specifications and models, unit, quantity, Whether the information such as unit price, the amount of money, the tax rate, the amount of tax to be paid, Amount in Total, total amount of tax to be paid, payee, drawer and review people are true 's；

Verification step 722 can be verified according to specific application environment, or without verifying；

Above-mentioned verification step can be arbitrarily arranged with individual authentication or joint verification, execution sequence；

Above-mentioned verification step can according to specific application environment any combination, or without verifying；

If the step 721 electronics authority side's of issuing public key executes in the verifying of electronics authority true or false, which herein may be used To omit.

716, the verifying that the electronics authority side of issuing signs；The verifying that the electronics authority side of issuing signs is for verifying electricity Whether the sub- authority side of issuing signature is signature of the electronics authority side of issuing to third electronics authority information；

What the electronics authority side of issuing signed is verified as calling the second signature verification algorithm, is issued using electronics authority Square public key verifies the signature of third electronics authority information；

The second signature verification algorithm is that any safely and effectively signature verification corresponding with the second signature algorithm is calculated The mode of method, algorithm way of realization, the mode of storage and operation is unlimited；

If being applied to digest algorithm in second signature verification algorithm, calls and identical second plucked with the second signature algorithm Algorithm is wanted to generate digest value；

If being applied to encryption algorithm in second signature verification algorithm, calls and compiled with third identical in the second signature algorithm Code algorithm generates encoded radio；

Second digest algorithm, third encryption algorithm, the mode of way of realization, the mode of storage and operation are unlimited；

The second signature verification algorithm identical as the first signature verification algorithm can also be different；

Second digest algorithm identical as the first digest algorithm can also be different；

The third encryption algorithm can with the first encryption algorithm, the second encryption algorithm is identical can also be different；

717, the compliance verifying of effective electron authority data critical information；

The compliance verifying of the effective electron authority key message mainly includes following 4 steps as shown in figure 14:

723, verify whether the titles such as commodity/labor service/service meet defined type of service；

724, whether before the deadline invoicing time is verified；

725, whether verifying authority type is correct；

726, whether the verifying electronics authority amount of money is in defined amount；

The verifying of effective electron authority key message compliance can be according to specific application environment any combination, can be independent Verifying or joint verification, the sequence of execution can be arbitrarily arranged.

718, it is verified, electronics authority data content is true.

Effective electron authority key message verifying, the electronics authority side of issuing sign verifying, effective electron authority key letter Ceasing compliance verifying can be according to specific application environment any combination, can be with individual authentication or joint verification, the sequence of execution Can arbitrarily it be arranged.

Electronics authority only passes through the verifying of electronics authority true or false and the verifying of electronics authority content authenticity, just can determine whether this Electronics authority is legal electronics authority.

The described electronics authority true or false verifying and the verifying of electronics authority content authenticity can be tested with individual authentication or combine Card, execution sequence can be arbitrarily arranged.

If not including the electronics authority side of issuing public key information in the first electronics authority, electronics is verified by the way of offline The authority side of issuing public key information, which needs periodically to network with the server of certification authority, updates public key information list.

The verification method of above-mentioned electronics authority individually authority can be verified independently, can be tested using batch methods Card.

Example 2:

This example is used to illustrate that purchaser individual carries out open verifying to electronics authority by online mode.The purchase It is similar with off-line verification mode that buyer individual by online mode verifies electronics authority, and open verification process includes electronics authority True or false verifying and electronics authority content authenticity verify two steps.

The difference is that following three links:

In the verifying of blank electronic authority key message, electronics authority issuing organization public key verifications pass through networking or offline two Whether kind mode is effective to verify electronics authority issuing organization public key, and then proves the true of electronics authority issuing organization public key Property；

The verifying of the electronics authority side of issuing public key；If the first electronics authority information includes the electronics authority side of issuing public key, The verifying of the electronics authority side of issuing public key can be verified by verifying issuing organization signature, need to only verify the electricity of extraction herein Whether the sub- authority side of issuing public key is consistent with the electronics authority side's of issuing public key in the first electronics authority information；If the first electronics Authority information does not include the electronics authority side of issuing public key, and the electronics authority side of issuing public key verifications need to open by pinging electronic authority Whether tool side's public key is effective, and whether the verifying electronics authority side of issuing public key effectively can be by joining with certification authority server Whether net or offline two ways are effective to verify the electronics authority side of issuing public key, and then prove the electronics authority side of issuing public key Authenticity；It is issued by networking with certification authority server to verify electronics authority in the electronics authority side of issuing public key certificate Whether square information is consistent with the electronics authority side's of issuing information in electronics authority information；

In the verifying of effective electron authority key message, the verifying of electronics authority particular content can pass through electronics authority generation Code and other any values for representing electronics authority uniqueness such as electronics authority number verify the titles such as commodity/labor service/service, rule Lattice number, unit, quantity, unit price, the amount of money, the tax rate, the amount of tax to be paid, Amount in Total, total amount of tax to be paid, payee, drawer and review people Etc. information whether be true；The verification step can carry out nuclear tests by networking with electronics authority issuing organization server Card.

The verification method of above-mentioned electronics authority individually authority can be verified independently, can also be carried out using batch methods Verifying.

Example 3:

This example is used to illustrate that financial system carries out open verifying to electronics authority by offline mode.The finance System verifies electronics authority by offline mode and uses off-line verification mode identical with individual, and open verification process includes electronics The verifying of authority true or false and electronics authority content authenticity verify two steps.

The verification method of above-mentioned electronics authority individually authority can be verified independently, can also be carried out using batch methods Verifying.

Example 4:

This example is used to illustrate that financial system carries out open verifying to electronics authority by online mode.The finance It is similar with off-line verification mode that electronics authority is verified by online mode, and open verification process includes that electronics authority true or false is tested Card and electronics authority content authenticity verify two steps.

The difference is that following three links:

Blank electronic authority key message verifying in, by electronics authority issuing organization public key by with certification authority Whether server networking or offline two ways are effective to verify electronics authority issuing organization public key, and then prove that electronics authority is issued Send out the authenticity of authority public key；

The verifying of the electronics authority side of issuing public key；If the first electronics authority information includes the electronics authority side of issuing public key, The verifying of the electronics authority side of issuing public key can be verified by verifying issuing organization signature, need to only verify the electricity of extraction herein Whether the sub- authority side of issuing public key is consistent with the electronics authority side's of issuing public key in the first electronics authority information；If the first electronics Authority information does not include the electronics authority side of issuing public key, and the electronics authority side of issuing public key verifications need the pinging electronic authority side of issuing Whether public key effective, verifying the electronics authority side of issuing public key whether effectively can by with certification authority server networking or Whether offline two ways is effective to verify the electronics authority side of issuing public key, and then proves the true of the electronics authority side of issuing public key Property；By being verified in the electronics authority side of issuing public key certificate with the networking of certification authority server or offline two ways Whether the electronics authority side of issuing information is consistent with the electronics authority side's of issuing information in electronics authority information；

In the verifying of effective electron authority key message, the verifying of electronics authority particular content can pass through electronics authority generation Code and other any values for representing electronics authority uniqueness such as electronics authority number verify the titles such as commodity/labor service/service, rule Lattice number, unit, quantity, unit price, the amount of money, the tax rate, the amount of tax to be paid, Amount in Total, total amount of tax to be paid, payee, drawer and review people Etc. information whether be true；The verification step can be by being verified with the networking of electronics authority issuing organization server.

The verification method of above-mentioned electronics authority individually authority can be verified independently, can also be carried out using batch methods Verifying.

Example 5:

This example is used to illustrate that electronics authority issuing organization carries out open verifying to electronics authority.The electronics authority is issued Hair mechanism to the open verifying of electronics authority with purchaser is personal or financial system to disclose verifying to electronics authority similar, it is open to test Card process includes that the verifying of electronics authority true or false and electronics authority content authenticity verify two steps.

Electronics authority issuing organization has own public key information, and all electronics authoritys side's of issuing public key letter is stored in list of public keys The specifying information of all electronics authoritys is stored in breath, database, offline for the verifying of electronics authority or online two ways is equal It can be with.

The verification method of above-mentioned electronics authority individually authority can be verified independently, can also be carried out using batch methods Verifying.

For example 1-5 by purchaser individual by offline mode, online mode, financial system passes through offline mode, online Mode, 5 kinds of different application scenarios of electronics authority issuing organization illustrate that a kind of electronics authority discloses verification method.Electronics authority Application scenarios are similar in the verifying under other application scenarios is with above-mentioned 5.Different electronics authority different application scene electronics authoritys Verifying demand is different, such as the verifying such as treasury trade authority, train ticket, plane ticket, e bill, electronic contract, hospital charge Can according to different application demands, to above-mentioned verification method carry out it is appropriate delete and combine, belong to present invention protection model Within enclosing.

Embodiment 6:

Figure 15 is the blank electronic authority generating means structural schematic diagram that sixth embodiment of the invention provides.Described device packet It includes:

Blank electronic authority identification information generation module, for according at least to preset electronics authority ticket information, electronics Electronics authority ticket information in the authority side of issuing public key, the electronics authority side of issuing title three generates the first electronics authority letter Breath；It signs, is issued to the first electronics authority information using the first signature algorithm, and with electronics authority issuing organization private key Send out authority signature；

Blank electronic authority generation module, for according to the first electronics authority information, electronics authority issuing organization public key, issue It sends out authority signature and generates blank electronic authority.

Optionally, the blank electronic authority identification information generation module is believed according at least to preset electronics authority nominal value Breath, the electronics authority side of issuing public key, the electronics authority ticket information in the electronics authority side of issuing title three generate the first electronics Authority information, comprising: according at least to one of following information or the electronics authority ticket information of two or more any combination Generate the first electronics authority information:

Electronics authority code, electronics authority number, electronics authority type, electronics authority issuing organization title, electronics authority Amount, electronics authority validity period, type of service.

Optionally, the blank electronic authority identification information generation module uses the first signature algorithm, and with electronics authority Issuing organization private key signs to the first electronics authority information, comprising: uses digest algorithm or encryption algorithm, and uses electronics Authority issuing organization private key signs to the first electronics authority information.

Optionally, the blank electronic authority generation module is also used to when the first electronics authority information not include electricity The electronics authority side of issuing public key is added to the blank electronic authority of generation by the sub- authority side of issuing public key.

Optionally, the blank electronic authority identification information generation module, is also used to:

According to electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, electronics authority nominal value One of information or two or more any combination generate blank electronic authority identification code using the second encryption algorithm；

The blank electronic authority generation module is also used to for the blank electronic authority identification code being added to the sky of generation The sub- authority of white appliances.

Optionally, described device further include:

Exposure module, the blank electronic authority for that will generate are shown, or printing generates blank authority nominal value.

Embodiment 7:

Figure 16 is that the blank electronic authority that seventh embodiment of the invention provides discloses verifying apparatus structure schematic diagram.The sky The sub- authority of white appliances discloses verifying device, comprising:

Blank electronic authority information extraction modules, for extracting the key message of blank electronic authority from electronics authority, The key message includes: the first electronics authority information, electronics authority issuing organization public key, issuing organization signature；

Electronics authority true or false authentication module, it is whether effective for verifying the electronics authority issuing organization public key extracted；It adjusts With the first signature verification algorithm corresponding with the first signature algorithm, electronics authority issuing organization public key verifications issuing organization label are used Name；When being verified, judge electronics authority for legal authority.

Optionally,

The electronics authority true or false authentication module calls the first signature verification algorithm corresponding with the first signature algorithm, packet It includes: calling digest algorithm corresponding with the first signature algorithm or encryption algorithm.

Optionally,

The blank electronic authority information extraction modules are also used to when the first electronics authority information not include that electronics authority is opened Tool side's public key extracts the electronics authority side of issuing public key；

The electronics authority true or false authentication module is also used to verify the electronics authority side of issuing public key.

Optionally,

The electronics authority true or false authentication module verifies the electronics authority side of issuing public key, comprising: verifying electronics authority is opened Whether tool side's public key is effective.

Optionally, the electronics authority true or false authentication module uses electronics authority issuing organization public key verifications issuing organization Signature, comprising: when including the electronics authority side of issuing public key in the first electronics authority information, carried out by verifying issuing organization signature The electronics authority side of issuing public key verifications.

Embodiment 8:

Figure 17 is the effective electron authority generating means structural schematic diagram that eighth embodiment of the invention provides.Described device packet It includes:

It is specifically interior to generate description electronics authority for the electronics authority side of issuing for effective electron authority identification information generation module The the second electronics authority information held；Any information of blank electronic authority is generated into third electronics together with the second electronics authority information Authority information；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, it is raw At the electronics authority side of issuing signature；

Effective electron authority generation module, for being opened according to blank electronic authority, the second electronics authority information, electronics authority Tool side's signature generates effective electron authority together.

Optionally, the effective electron authority identification information generation module, is also used to call the 4th encryption algorithm, to electronics Authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics Authority information, any combination of the second electronics authority information are encoded, and effective electron authority identification code is generated；

The effective electron authority generation module is also used to for effective electron authority identification code being added to effective electricity of generation Sub- authority.

Optionally, the effective electron authority identification information generation module is also used to according to the electronics authority coding prestored Method increases electronics authority issuing organization public key, issuing organization signature, electronics authority in the information of the participation coding prestored and opens Tool side's public key, the electronics authority side of issuing signature, the first electronics authority information, any combination of the second electronics authority information are compiled Code generates the second effective electron authority identification code；

The effective electron authority generation module is also used to effective electron authority identification code and/or the second effective electron Authority identification code is added to the effective electron authority of generation.

Optionally, described device further include:

Exposure module, the effective electron authority for that will generate are shown, or printing generates true authority nominal value.

Embodiment 9:

Figure 18 is that the effective electron authority that ninth embodiment of the invention provides discloses verifying apparatus structure schematic diagram.

Effective electron authority information extraction modules, it is described for extracting effective electron authority key message from electronics authority Key message includes: the electronics authority side of issuing signature；

Electronics authority content authenticity authentication module calls the second signature verification algorithm to use the electronics authority side of issuing public key Verify the electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

Optionally,

The effective electron authority information extraction modules are also used to extract the electronics authority side of issuing public key；

The electronics authority content authenticity authentication module is also used to verify the electronics authority side of issuing public key.

Optionally, effective electron authority information extraction modules are also used to extract the second electronics authority information, according to effective electricity Sub- authority generation method extracts any information of blank electronic authority；

The electronics authority content authenticity authentication module is also used to be tested according to the effective electron authority key message of extraction Demonstrate,prove the key message authenticity of electronics authority, further includes: the value verifying electronics authority of electronics authority uniqueness is represented by verifying Key message authenticity.The electronics authority content authenticity authentication module is also used to be closed according to the effective electron authority of extraction Key information verifies the key message compliance of electronics authority, further includes but is not limited to include: in the second electronics authority information of verifying The titles such as commodity/labor service/service whether meet defined type of service, verifying invoicing time whether before the deadline, verifying Whether authority type is correct, verifies the amount of money whether in amount etc..

Embodiment 10:

Figure 19 is the generation of electronics authority and open verification method flow chart that tenth embodiment of the invention provides.The method Include:

Blank electronic authority identification information generation step 1801: according at least to preset electronics authority ticket information, electronics Electronics authority ticket information in the authority side of issuing public key, the electronics authority side of issuing title three generates the first electronics authority letter Breath；It signs, is issued to the first electronics authority information using the first signature algorithm, and with electronics authority issuing organization private key Send out authority signature；

Blank electronic authority generation step 1802: it according to the first electronics authority information, electronics authority issuing organization public key, issues It sends out authority signature and generates blank electronic authority；

Effective electron authority identification information generation step 1803: the electronics authority side of issuing is generated for describing electronics authority tool The the second electronics authority information held in vivo；Any information of blank electronic authority is generated into third together with the second electronics authority information Electronics authority information；The second signature algorithm is called, third electronics authority information is signed using the electronics authority side's of issuing private key Name generates the electronics authority side of issuing signature；

Effective electron authority generation step 1804: it is opened according to blank electronic authority, the second electronics authority information, electronics authority Tool side's signature generates effective electron authority together；

Show step 1805: the effective electron authority of generation is shown, or printing generates true authority nominal value；

Blank electronic authority information extracting step 1806: extracting the key message of blank electronic authority from electronics authority, The key message includes: electronics authority issuing organization public key, issuing organization signature；

Electronics authority true or false verification step 1807: whether the electronics authority issuing organization public key for verifying extraction is effective；It adjusts With the first signature verification algorithm corresponding with the first signature algorithm, electronics authority issuing organization public key verifications issuing organization label are used Name；When being verified, judge electronics authority for legal authority；

Effective electron authority information extracting step 1808: extracting effective electron authority key message from electronics authority, described Key message includes: the electronics authority side of issuing signature；

Electronics authority content authenticity verification step 1809: the second signature verification algorithm is called, is issued using electronics authority The square public key verifications electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

Embodiment 11:

Figure 20 is that the blank electronic authority that eleventh embodiment of the invention provides generates and disclosure verifies system schematic, institute The system of stating includes:

Blank electronic authority identification information generation module, for according at least to preset electronics authority ticket information, electronics Electronics authority ticket information in the authority side of issuing public key, the electronics authority side of issuing title three generates the first electronics authority letter Breath；It signs, is issued to the first electronics authority information using the first signature algorithm, and with electronics authority issuing organization private key Send out authority signature；

Blank electronic authority generation module, for according to the first electronics authority information, electronics authority issuing organization public key, issue It sends out authority signature and generates blank electronic authority；

Exposure module, the blank electronic authority for that will generate are shown, or printing generates blank authority nominal value；

Blank electronic authority information extraction modules, for extracting the key message of blank electronic authority from electronics authority, The key message includes: electronics authority issuing organization public key, issuing organization signature；

Electronics authority true or false authentication module, it is whether effective for verifying the electronics authority issuing organization public key extracted；It adjusts With the first signature verification algorithm corresponding with the first signature algorithm, electronics authority issuing organization public key verifications issuing organization label are used Name；When being verified, judge electronics authority for legal authority.

Optionally, the blank electronic authority identification information generation module is believed according at least to preset electronics authority nominal value Breath, the electronics authority side of issuing public key, the electronics authority ticket information in the electronics authority side of issuing title three generate the first electronics Authority information, comprising: according at least to one of following information or the electronics authority ticket information of two or more any combination Generate the first electronics authority information:

Electronics authority code, electronics authority number, electronics authority type, electronics authority issuing organization title, electronics authority Amount, electronics authority validity period, type of service.

Optionally,

The blank electronic authority identification information generation module uses the first signature algorithm, and with electronics authority issuing organization Private key signs to the first electronics authority information, comprising: uses digest algorithm or encryption algorithm, and is issued with electronics authority Mechanism private key signs to the first electronics authority information.

Optionally,

The blank electronic authority generation module is also used to when the first electronics authority information not include that electronics authority is opened The electronics authority side of issuing public key is added to the blank electronic authority of generation by tool side's public key.

Optionally, the blank electronic authority identification information generation module, is also used to:

It is issued according to electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, electronics authority One of square title, electronics authority ticket information or two or more any combination are generated empty using the second encryption algorithm The sub- authority identification code of white appliances；

The blank electronic authority generation module is also used to for the blank electronic authority identification code being added to the sky of generation The sub- authority of white appliances.

Optionally,

The blank electronic authority information extraction modules are also used to when the first electronics authority information not include that electronics authority is opened Tool side's public key extracts the electronics authority side of issuing public key；

Whether effective the electronics authority true or false authentication module is also used to verify the electronics authority side of issuing public key.

Optionally,

The electronics authority true or false authentication module is signed using electronics authority issuing organization public key verifications issuing organization, packet Include: when in the first electronics authority information include the electronics authority side of issuing public key, by verifying issuing organization signature carry out electronics with According to the side's of issuing public key verifications.

Embodiment 12:

Figure 21 is the generation of blank electronic authority and open verification method flow chart that twelveth embodiment of the invention provides, institute The method of stating includes:

Blank electronic authority identification information generation step 2001: according at least to preset electronics authority ticket information, electronics Electronics authority ticket information in the authority side of issuing public key, the electronics authority side of issuing title three generates the first electronics authority letter Breath；It signs, is issued to the first electronics authority information using the first signature algorithm, and with electronics authority issuing organization private key Send out authority signature；

Blank electronic authority generation step 2002: it according to the first electronics authority information, electronics authority issuing organization public key, issues It sends out authority signature and generates blank electronic authority；

Exposure module step 2003: the blank electronic authority of generation is shown, or printing generates blank authority nominal value；

Blank electronic authority information extracting step 2004: extracting the key message of blank electronic authority from electronics authority, The key message includes: electronics authority issuing organization public key, issuing organization signature；

Electronics authority true or false verification step 2005: whether the electronics authority issuing organization public key for verifying extraction is effective；It adjusts With the first signature verification algorithm corresponding with the first signature algorithm, electronics authority issuing organization public key verifications issuing organization label are used Name；When being verified, judge electronics authority for legal authority.

Optionally, the blank electronic authority identification information generation step 2001, further includes:

It is issued according to electronics authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, electronics authority One of square title, electronics authority ticket information or two or more any combination are generated empty using the second encryption algorithm The sub- authority identification code of white appliances；

The blank electronic authority generation step 2002 further includes that the blank electronic authority identification code is added to generation Blank electronic authority.

Optionally,

The blank electronic authority information extracting step 2004, further includes: when the first electronics authority information does not include electronics The authority side of issuing public key extracts the electronics authority side of issuing public key；

The electronics authority true or false verification step 2005, further includes: the verifying electronics authority side of issuing public key.

Optionally, the verifying electronics authority side of issuing public key, comprising: whether the verifying electronics authority side of issuing public key has Effect.

Optionally, the electronics authority true or false verification step uses electronics authority issuing organization public key verifications issuing organization Signature, comprising: when including the electronics authority side of issuing public key in the first electronics authority information, carried out by verifying issuing organization signature The electronics authority side of issuing public key verifications.

Optionally, electronics authority true or false verification step 2005, further includes: according to the first electronics authority Information Authentication electronics Authority true or false；

Optionally, the electronics authority ticket information includes one of following information or two or more any group It closes:

Electronics authority code, electronics authority number, electronics authority type, electronics authority issuing organization title, electronics authority Amount, electronics authority validity period, type of service.

Optionally, the first signature verification algorithm be algorithm corresponding with the first signature algorithm, comprising: digest algorithm or Person's encryption algorithm.

Optionally, the blank electronic authority generation step 2002, further includes: when the first electronics authority information is not wrapped The electronics authority side of issuing public key is included, the electronics authority side of issuing public key is added to the blank electronic authority of generation.

Embodiment 13:

Present embodiments provide the generation of effective electron authority and open verification method, which comprises

Effective electron authority identification information generation step: the electronics authority side of issuing generates description electronics authority particular content Second electronics authority information；Any information of blank electronic authority is generated into third electronics authority together with the second electronics authority information Information；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, electricity is generated The sub- authority side of issuing signature；

Effective electron authority generation step: according to blank electronic authority, the second electronics authority information, the electronics authority side of issuing Signature generates effective electron authority；

Show step: the effective electron authority of generation is shown, or printing generates effective authority nominal value；

Effective electron authority information extracting step: effective electron authority key message, the key are extracted from electronics authority Information includes: the electronics authority side of issuing signature；

Electronics authority content authenticity verification step: the second signature verification algorithm corresponding with the second signature algorithm is called to make With the public key verifications electronics authority side of issuing, the electronics authority side of issuing signature；When being verified, judge that electronics authority content is true 's.

Optionally,

The effective electron authority generation step, further includes: when blank electronic authority does not include the electronics authority side of issuing public affairs The electronics authority side of issuing public key is added to the effective electron authority of generation by key；

The effective electron authority information extracting step, further includes: extract the electronics authority side of issuing public key；

The electronics authority content authenticity verification step, further includes: whether the verifying electronics authority side of issuing public key is effective.

Optionally,

The effective electron authority identification information generation step, further includes: call the 4th encryption algorithm, electronics authority is issued Send out authority public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics authority letter Any information in breath, any combination of any information in the second electronics authority information are encoded, and it is effectively electric to generate first Sub- authority identification code；And/or according to the electronics authority coding method prestored, increase electricity in the information of the participation coding prestored Sub- authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electricity Any information in sub- authority information, any combination of any information in the second electronics authority information are encoded, and generate the Two effective electron authority identification codes；

The effective electron authority generation step, further includes: effectively by the first effective electron authority identification code and/or second Electronics authority identification code is added to the effective electron authority of generation.

Embodiment 14:

The generation of effective electron authority and open verifying system are present embodiments provided, the system comprises:

It is specifically interior to generate description electronics authority for the electronics authority side of issuing for effective electron authority identification information generation module The the second electronics authority information held；Any information of blank electronic authority is generated into third electronics together with the second electronics authority information Authority information；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, it is raw At the electronics authority side of issuing signature；

Effective electron authority generation module, for being opened according to blank electronic authority, the second electronics authority information, electronics authority Tool side's signature generates effective electron authority；

Exposure module, the effective electron authority for that will generate are shown, or printing generates effective authority nominal value；

Effective electron authority information extraction modules, it is described for extracting effective electron authority key message from electronics authority Key message includes: the electronics authority side of issuing signature；

Electronics authority content authenticity authentication module, for calling the second signature verification algorithm to use the electronics authority side of issuing The public key verifications electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

Optionally,

The effective electron authority generation module is also used to when blank electronic authority not include the electronics authority side of issuing public affairs The electronics authority side of issuing public key is added to the effective electron authority of generation by key；

The effective electron authority information extraction modules are also used to extract the electronics authority side of issuing public key；

Whether effective the electronics authority content authenticity authentication module is also used to verify the electronics authority side of issuing public key.

Optionally,

The effective electron authority identification information generation module, is also used to: calling the 4th encryption algorithm, issues electronics authority Send out authority public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics authority letter Any information in breath, any combination of any information in the second electronics authority information are encoded, and it is effectively electric to generate first Sub- authority identification code；And/or according to the electronics authority coding method prestored, increase electricity in the information of the participation coding prestored Sub- authority issuing organization public key, issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electricity Any information in sub- authority information, any combination of any information in the second electronics authority information are encoded, and generate the Two effective electron authority identification codes；

The effective electron authority generation module is also used to the first effective electron authority identification code and/or second effectively Electronics authority identification code is added to the effective electron authority of generation.

Other electronics authoritys such as treasury trade authority, train ticket, plane ticket, e bill etc., various authoritys can roots According to respective demand for security, the generation and verification method for using for reference the embodiment of the present invention carry out the generation of various electronics authoritys, show And verifying, it all falls within the protection scope of the present invention.

In addition, the embodiment of the present invention also provides a kind of computer readable storage medium, computer executable instructions are stored with, The computer executable instructions, which are performed, realizes above-mentioned method.

It should be noted that, in this document, the terms "include", "comprise" or its any other variant are intended to non-row His property includes, so that the process, method, article or the device that include a series of elements not only include those elements, and And further include other elements that are not explicitly listed, or further include for this process, method, article or device institute it is intrinsic Element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that including being somebody's turn to do There is also other identical elements in the process, method of element, article or device.

The serial number of the above embodiments of the invention is only for description, does not represent the advantages or disadvantages of the embodiments.

Through the above description of the embodiments, those skilled in the art can be understood that above-described embodiment side Method can be realized by means of software and necessary general hardware platform, naturally it is also possible to by hardware, but in many cases The former is more preferably embodiment.Based on this understanding, technical solution of the present invention substantially in other words does the prior art The part contributed out can be embodied in the form of software products, which is stored in a storage medium In (such as ROM/RAM, magnetic disk, CD), including some instructions are used so that a terminal device (can be mobile phone, computer, clothes Business device, air conditioner or network equipment etc.) execute method described in each embodiment of the present invention.

The above is only a preferred embodiment of the present invention, is not intended to limit the scope of the invention, all to utilize this hair Equivalent structure or equivalent flow shift made by bright specification and accompanying drawing content is applied directly or indirectly in other relevant skills Art field, is included within the scope of the present invention.

Claims (21)

1. a kind of effective electron authority generation method, which is characterized in that for according to blank electronic authority generate effective electron with According to, which comprises

Effective electron authority identification information generation step: the electronics authority side of issuing is generated for describing electronics authority particular content Second electronics authority information；Blank electronic authority information is generated into third electronics authority together with the second electronics authority information Information；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, electricity is generated The sub- authority side of issuing signature；

Effective electron authority generation step: according to blank electronic authority, the second electronics authority information, the electronics authority side of issuing signature Generate effective electron authority；

Wherein, the blank electronic authority information includes: the first electronics authority information, electronics authority issuing organization public key, electronics Authority issuing organization signature；

The first electronics authority information, according at least to preset electronics authority ticket information, the electronics authority side of issuing public key, electricity Electronics authority ticket information in the sub- authority side of issuing title three generates；The electronics authority issuing organization signature uses first Signature algorithm, and the first electronics authority information is signed to obtain with electronics authority issuing organization private key.

2. the method according to claim 1, wherein

The electronics authority ticket information includes one of following information or two or more any combination:

Electronics authority code, electronics authority number, electronics authority type, electronics authority issuing organization title, electronics authority amount, Electronics authority validity period, type of service；

The second electronics authority information, including one of following information or two or more any combination:

Electronics authority invoicing time, purchaser's title, purchaser's identifier, purchaser address, purchaser's phone, purchaser open an account Row, purchaser's account, product name, labor service title, service name, specifications and models, unit, quantity, unit price, the amount of money, the tax rate, tax Volume, Amount in Total, the total amount of tax to be paid, the electronics authority side of issuing title, the electronics authority side of issuing identifier, the electronics authority side of issuing Location, the electronics authority side of issuing phone, bank of deposit, the electronics authority side of issuing, the electronics authority side of issuing account, payee, drawer, Check code, the password checking people and being generated for protection above content.

3. the method according to claim 1, wherein

The effective electron authority generation step, further includes:, will when blank electronic authority does not include the electronics authority side of issuing public key The electronics authority side of issuing public key is added to the effective electron authority of generation.

4. the method according to claim 1, wherein

The effective electron authority identification information generation step, further includes: call the 4th encryption algorithm, machine is issued to electronics authority Structure public key, electronics authority issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics with It is believed that any combination of any information in breath, any information in the second electronics authority information is encoded, generating first has Imitate electronics authority identification code；And/or according to the electronics authority coding method prestored, increase in the information of the participation coding prestored It is powered on sub- authority issuing organization public key, electronics authority issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing Signature, any information in the first electronics authority information, any combination of any information in the second electronics authority information carry out Coding generates the second effective electron authority identification code；

The effective electron authority generation step, further includes: by the first effective electron authority identification code and/or the second effective electron Authority identification code is added to the effective electron authority of generation.

5. the method according to claim 1, which is characterized in that the method also includes:

Show step: the effective electron authority of generation is shown, or printing generates true authority nominal value.

6. a kind of effective electron authority discloses verification method characterized by comprising

Blank electronic authority information extracting step: from electronics authority extract blank electronic authority information, the blank electronic with It is believed that breath includes: the first electronics authority information, electronics authority issuing organization public key, electronics authority issuing organization signature；

Electronics authority true or false verification step: whether the electronics authority issuing organization public key for verifying extraction is effective；Call the first label Name verification algorithm, is signed using electronics authority issuing organization public key verifications electronics authority issuing organization；When being verified, electricity is judged Sub- authority is legal authority；

Effective electron authority information extracting step: effective electron authority key message, the key message are extracted from electronics authority It include: the electronics authority side of issuing signature；

Electronics authority content authenticity verification step: the second signature verification algorithm is called, is tested using the electronics authority side of issuing public key Demonstrate,prove the electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

7. according to the method described in claim 6, it is characterized in that,

The effective electron authority information extracting step, further includes: when blank electronic authority does not include the electronics authority side of issuing public affairs Key extracts the electronics authority side of issuing public key；

The electronics authority content authenticity verification step, further includes: whether the verifying electronics authority side of issuing public key is effective.

8. according to the method described in claim 6, characterized by further comprising: according to the electronics in the blank electronic authority of extraction Authority ticket information verifies the compliance of the electronics authority.

9. a kind of effective electron authority generating means characterized by comprising

Effective electron authority identification information generation module generates description electronics authority particular content for the electronics authority side of issuing Second electronics authority information；Blank electronic authority information is generated to third electronics authority letter together with the second electronics authority information Breath；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, electronics is generated The authority side of issuing signature；

Effective electron authority generation module, for according to blank electronic authority, the second electronics authority information, the electronics authority side of issuing Signature generates effective electron authority；

Wherein, the blank electronic authority information includes: the first electronics authority information, electronics authority issuing organization public key, electronics Authority issuing organization signature；

The first electronics authority information, according at least to preset electronics authority ticket information, the electronics authority side of issuing public key, electricity Electronics authority ticket information in the sub- authority side of issuing title three generates；The electronics authority issuing organization signature uses first Signature algorithm, and the first electronics authority information is signed to obtain with electronics authority issuing organization private key.

10. device according to claim 9, which is characterized in that

The effective electron authority generation module is also used to when blank electronic authority not include the electronics authority side of issuing public key, will The electronics authority side of issuing public key is added to the effective electron authority of generation.

11. device according to claim 9, which is characterized in that

The effective electron authority identification information generation module, is also used to: calling the 4th encryption algorithm, issues machine to electronics authority Structure public key, electronics authority issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics with It is believed that any combination of any information in breath, any information in the second electronics authority information is encoded, generating first has Imitate electronics authority identification code；And/or according to the electronics authority coding method prestored, increase in the information of the participation coding prestored It is powered on sub- authority issuing organization public key, electronics authority issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing Signature, any information in the first electronics authority information, any combination of any information in the second electronics authority information carry out Coding generates the second effective electron authority identification code；

The effective electron authority generation module is also used to the first effective electron authority identification code and/or the second effective electron Authority identification code is added to the effective electron authority of generation.

12. according to device described in claim 9 to 11 any one, which is characterized in that described device further include:

Exposure module, the effective electron authority for that will generate are shown, or printing generates true authority nominal value.

13. a kind of effective electron authority discloses verifying device characterized by comprising

Blank electronic authority information extraction modules, for extracting blank electronic authority information, the blank electricity from electronics authority Sub- authority information includes: the first electronics authority information, electronics authority issuing organization public key, electronics authority card issuing organization signature；

Electronics authority true or false authentication module, it is whether effective for verifying the electronics authority issuing organization public key extracted；Call the One signature verification algorithm is signed using electronics authority issuing organization public key verifications electronics authority issuing organization；When being verified, sentence Powering off sub- authority is legal authority；

Effective electron authority information extraction modules, for extracting effective electron authority key message, the key from electronics authority Information includes: the electronics authority side of issuing signature；

Electronics authority content authenticity authentication module is called the second signature verification algorithm, is tested using the electronics authority side of issuing public key Demonstrate,prove the electronics authority side of issuing signature；When being verified, judge that electronics authority content is true.

14. device according to claim 13, which is characterized in that

The effective electron authority information extraction modules are also used to when blank electronic authority not include the electronics authority side of issuing public affairs Key extracts the electronics authority side of issuing public key；

Whether effective the electronics authority content authenticity authentication module is also used to verify the electronics authority side of issuing public key.

15. device according to claim 13, which is characterized in that

The blank electronic authority information extraction modules are also used to extract the electronics authority ticket information in blank electronic authority；

The electronics authority true or false authentication module, the electronics authority nominal value letter being also used in the blank electronic authority according to extraction Breath verifies the compliance of the electronics authority.

16. a kind of effective electron authority generates and open verifying system, which is characterized in that the system comprises:

Effective electron authority identification information generation module generates description electronics authority particular content for the electronics authority side of issuing Second electronics authority information；Blank electronic authority information is generated to third electronics authority letter together with the second electronics authority information Breath；The second signature algorithm is called, is signed using the electronics authority side's of issuing private key to third electronics authority information, electronics is generated The authority side of issuing signature；

Effective electron authority generation module, for according to blank electronic authority, the second electronics authority information, the electronics authority side of issuing Signature generates effective electron authority；

Exposure module, the effective electron authority for that will generate are shown, or printing generates effective authority nominal value；

Blank electronic authority information extraction modules, for extracting blank electronic authority information, the blank electricity from electronics authority Sub- authority letter includes: the first electronics authority information, electronics authority issuing organization public key, electronics authority issuing organization signature；

Electronics authority true or false authentication module, it is whether effective for verifying the electronics authority issuing organization public key extracted；Call the One signature verification algorithm is signed using electronics authority issuing organization public key verifications electronics authority issuing organization；When being verified, sentence Powering off sub- authority is legal authority；

Effective electron authority information extraction modules, for extracting effective electron authority key message, the key from electronics authority Information includes: the electronics authority side of issuing signature；

Electronics authority content authenticity authentication module uses the electronics authority side of issuing public affairs for calling the second signature verification algorithm Key verifies the electronics authority side of issuing signature；When being verified, judge that electronics authority content is true；

Wherein, the first electronics authority information, according at least to preset electronics authority ticket information, the electronics authority side of issuing public affairs Electronics authority ticket information in key, the electronics authority side of issuing title three generates；The electronics authority issuing organization signature is adopted With the first signature algorithm, and the first electronics authority information is signed to obtain with electronics authority issuing organization private key.

17. system according to claim 16, which is characterized in that

The effective electron authority generation module is also used to when blank electronic authority not include the electronics authority side of issuing public key, will The electronics authority side of issuing public key is added to the effective electron authority of generation；

The effective electron authority information extraction modules are also used to extract the electronics authority side of issuing public key；

Whether effective the electronics authority content authenticity authentication module is also used to verify the electronics authority side of issuing public key；

The blank electronic authority information extraction modules are also used to extract the electronics authority ticket information in blank electronic authority；

The electronics authority true or false authentication module, the electronics authority nominal value letter being also used in the blank electronic authority according to extraction Breath verifies the compliance of the electronics authority.

18. system according to claim 16, which is characterized in that

The effective electron authority identification information generation module, is also used to: calling the 4th encryption algorithm, issues machine to electronics authority Structure public key, electronics authority issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics with It is believed that any combination of any information in breath, any information in the second electronics authority information is encoded, generating first has Imitate electronics authority identification code；And/or according to the electronics authority coding method prestored, increase in the information of the participation coding prestored It is powered on sub- authority issuing organization public key, electronics authority issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing Signature, any information in the first electronics authority information, any combination of any information in the second electronics authority information carry out Coding generates the second effective electron authority identification code；

The effective electron authority generation module is also used to the first effective electron authority identification code and/or the second effective electron Authority identification code is added to the effective electron authority of generation.

19. a kind of effective electron authority generates and open verification method, which is characterized in that the described method includes:

Effective electron authority identification information generation step: the electronics authority side of issuing generates the second of description electronics authority particular content Electronics authority information；Blank electronic authority information is generated into third electronics authority information together with the second electronics authority information；It adjusts It with the second signature algorithm, is signed using the electronics authority side's of issuing private key to third electronics authority information, generates electronics authority The side's of issuing signature；

Effective electron authority generation step: according to blank electronic authority, the second electronics authority information, the electronics authority side of issuing signature Generate effective electron authority；

Show step: the effective electron authority of generation is shown, or printing generates effective authority nominal value；

Blank electronic authority information extracting step: from electronics authority extract blank electronic authority information, the blank electronic with It is believed that including: the first electronics authority information, electronics authority issuing organization public key, electronics authority issuing organization signature；

Electronics authority true or false verification step: whether the electronics authority issuing organization public key for verifying extraction is effective；Call the first label Name verification algorithm, is signed using electronics authority issuing organization public key verifications electronics authority issuing organization；When being verified, electricity is judged Sub- authority is legal authority；

Effective electron authority information extracting step: effective electron authority key message, the key message are extracted from electronics authority It include: the electronics authority side of issuing signature；

Electronics authority content authenticity verification step: the second signature verification algorithm is called, is tested using the electronics authority side of issuing public key Demonstrate,prove the electronics authority side of issuing signature；When being verified, judge that electronics authority content is true；

Wherein, the first electronics authority information, according at least to preset electronics authority ticket information, the electronics authority side of issuing public affairs Electronics authority ticket information in key, the electronics authority side of issuing title three generates；The electronics authority issuing organization signature is adopted With the first signature algorithm, and the first electronics authority information is signed to obtain with electronics authority issuing organization private key.

20. according to the method for claim 19, which is characterized in that

The effective electron authority generation step, further includes:, will when blank electronic authority does not include the electronics authority side of issuing public key The electronics authority side of issuing public key is added to the effective electron authority of generation；

The effective electron authority information extracting step, further includes: extract the electronics authority side of issuing public key；

The electronics authority content authenticity verification step, further includes: whether the verifying electronics authority side of issuing public key is effective；

The blank electronic authority key message extraction step, further includes: extract the electronics authority nominal value in blank electronic authority Information；

The electronics authority true or false verification step, further includes: according to the electronics authority nominal value in the blank electronic authority of extraction The compliance of electronics authority described in Information Authentication.

21. according to the method for claim 19, which is characterized in that

The effective electron authority identification information generation step, further includes: call the 4th encryption algorithm, machine is issued to electronics authority Structure public key, electronics authority issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing signature, the first electronics with It is believed that any combination of any information in breath, any information in the second electronics authority information is encoded, generating first has Imitate electronics authority identification code；And/or according to the electronics authority coding method prestored, increase in the information of the participation coding prestored It is powered on sub- authority issuing organization public key, electronics authority issuing organization signature, the electronics authority side of issuing public key, the electronics authority side of issuing Signature, any information in the first electronics authority information, any combination of any information in the second electronics authority information carry out Coding generates the second effective electron authority identification code；

The effective electron authority generation step, further includes: by the first effective electron authority identification code and/or the second effective electron Authority identification code is added to the effective electron authority of generation.