Abstract: A long-term signature verification server receives long-term signature data configured using signing target data, verification information for verifying the signing target data, and long-term verification information for verifying the authenticity of original data from a verifier terminal. The server verifies the signing target data and the verification information for a predetermined period of time, forms long-term verification information forming information by extracting predetermined information included in the long-term signature data, and transmits the long-term verification information forming information to the verifier terminal.

Abstract: A data certification system includes a proof information generation unit that generates certification information for certifying non-falsification of raw data, and generates proof information including the certification information and time information representing the time of the generation of the certification information. A server transmission unit transmits the proof information which is received by a client reception unit. A time information acquisition unit acquires the time information representing the time of the generation of the certification information from the proof information. A report generation unit generates report data in which the time information and publishing destination information representing a publishing destination are included in the raw data. A transfer unit transfers the raw data, the proof information, and the report data to a publishing server which releases the report data. An output unit outputs the report data.

Abstract: An information processing device has a long-term registration system and a long-term signature system. The long-term registration system receives original data, sets attribute information with respect to the acquired original data, and associates the acquired original data with the set attribute information. The long-term signature system acquires long-term signature data obtained by performing a long-term signature on the associated original data and attribute information.

Abstract: An information processing device manages the protection state of original data by long-term signature data in storage-target data obtained by combining the long-term signature data and the original data. Management information having a management-target value for each management item obtained from the storage-target data recorded therein is acquired. A management-target value of a predetermined management item is acquired from the acquired management information. The acquired management-target value is compared with a value acquired from the storage-target data or a value acquired from the outside to determine the state of management. A result corresponding to the determined state of management is outputted.

Abstract: A long-term signature terminal acquires storage-target data and electronic signature data corresponding to the acquired storage-target data. The acquired electronic signature data is transmitted to a server, and electronic signature data having a time stamp applied thereto is received from the server. The received electronic signature data with the applied time stamp is combined with the acquired storage-target data to generate signed data. Verification information for verifying the validity of the electronic signature data having the time stamp is received from the server and applied to the signed data to generate first long-term signature data. Confirmation data for confirming unfalsification of the generated long-term signature data is generated and transmitted to the server, and the confirmation data having a time stamp applied thereto is received from the server.

Abstract: A long-term signature system acquires electronic signature data for each of a series of pieces of original data, transmits the acquired electronic signature data to a predetermined server, and acquires a time stamp issued for the electronic signature data from the predetermined server. Verification information is acquired for verifying the electronic signature data and the time stamp from a predetermined server. Long-term signature target data for confirming unfalsification of the original data, the electronic signature data, the time stamp, and the verification information is acquired for each of the pieces of original data. The acquired long-term signature target data is transmitted to a predetermined server, and long-term signature data having an archive time stamp issued for the long-term signature target data applied thereto is acquired.

Abstract: Long-term signature data is formed at a server side while a private key and the like are held at a client side. The long-term signature data is configured by arranging ES, STS, verification information, ATS (1st), and ATS (2nd) in a predetermined long-term signature format. Among these elements, those for which processing using the private key and original data are necessary are ES and ATS. Due to processing where the original data and the private key is necessary being performed by a client terminal 3 and processing where the long-term signature data is analyzed and generated being performed by a long-term signature server 2, the long-term signature data is generated in the long-term signature server 2 while the original data and the private key are held in an inner portion of the client terminal 3.

Abstract: It is possible to verify non-falsification of output data without using a device which issues proof information as information for certifying non-falsification. A proof information generation unit generates certification information for certifying non-falsification of raw data, and generates proof information including the certification information and time information representing the time of the generation of the certification information. A server transmission unit transmits the proof information to a client device. A client reception unit receives the proof information transmitted from a server device. A time information acquisition unit acquires the time information representing the time of the generation of the certification information from the proof information. A report generation unit generates report data in which the time information and publishing destination information representing a publishing destination are included in the raw data.

Abstract: A long-term signature server includes a signing target data acquisition function for acquiring signing target data, a signature data transmission function for transmitting to a long-term signature terminal signature data for the electronic-signing of the acquired signing target data, a signature value reception function for receiving an electronic signature value of the signing target data generated using the signature data transmitted from the long-term signature terminal, a time stamp acquisition function for acquiring a time stamp corresponding to the received electronic signature value, and a signature data generation function for generating basic signature data using at least the acquired signing target data, the received electronic signature value, and the acquired time stamp.

Abstract: A long-term signature system 1 can generate long-term signature data for each of a plurality of pieces of original data in cooperation with a long-term signature server 2 while retaining original data and a secret key for signature in a client terminal 3 without sending original data and the secret key to the outside. In the long-term signature system 1, there are PAdES and XAdES as a long-term signature scheme, a scheme is designated for each piece of original data, and in a state where the plurality of schemes are mixed, long-term signature data can be generated in parallel. In the long-term signature system 1, the secret key of a certificate authority issued a public key certificate paired with the secret key for signature is identical, and the secret key of a TSA certificate authority issued a public key certificate paired with a secret key for time stamp is also identical.

Abstract: A client terminal 3 can generate PAdES while performing communication with a long-term signature server 2 without delivering a PDF document and a secret key used in an electronic signature to the long-term signature server 2. PAdES is a long-term signature format which is specified for a PDF file. The client terminal 3 transmits CAdES with the electronic signature before time stamp issuance to the long-term signature server 2 to request to issue a time stamp to CAdES. The client terminal 3 requests the long-term signature server 2 to collect verification information, acquires the verification information, further generates information for confirming unfalsification of a signed PDF document and the verification information therefrom, and transmits the information to the long-term signature server 2 to request to generate DTS. With the above, it is possible to perform a long-term signature while retaining confidential information on a user side.

Abstract: A long-term signature group has a package of long-term signature data and an information file. The package of long-term signature data is obtained by compressing original data and XAdES as long-term signature data of original data into a single file. In the information file, the hash value of the package of long-term signature data, the expiration date of ATS to be used in XAdES, a distribution point of expiration information, the serial number of ATS, and the like are recorded. Non-destruction of the package of long-term signature data can be confirmed by the hash value, the expiration date of ATS can be confirmed by the expiration date, and the expiration information can be obtained from the distribution point of the expiration information to confirm the validity of ATS. Therefore, the validity of the long-term signature is efficiently confirmed.

Abstract: A long-term signature registration system 8 receives an input of attributes from a user to set an attribute value group with respect to original data. The attribute value group is compressed to generate single long-term signature compressed data. The long-term signature registration system 8 outputs and registers long-term signature compressed data to a long-term signature system 1. The long-term signature system 1 decompresses long-term signature compressed data to acquire original data and an attribute value group. The long-term signature system 1 performs a long-term signature on a set (group) of original data and attribute value group, and creates XAdES (long-term signature data) for the set of original data and attribute value group. The long-term signature system 1 compresses original data, the attribute value group, and XAdES to create a package of long-term signature data, and outputs and registers the package of long-term signature data to a document management system 9.

Abstract: Long-term signature data is formed at a server side while a private key and the like are held at a client side. The long-term signature data is configured by arranging ES, STS, verification information, ATS (1st), and ATS (2nd) in a predetermined long-term signature format. Among these elements, those for which processing using the private key and original data are necessary are ES and ATS. Due to processing where the original data and the private key is necessary being performed by a client terminal 3 and processing where the long-term signature data is analyzed and generated being performed by a long-term signature server 2, the long-term signature data is generated in the long-term signature server 2 while the original data and the private key are held in an inner portion of the client terminal 3.