The Microsoft Capicom Component To The Introduction Of The J2ee Platform, The Research And Implementation Of Digital Signature

In recent years, the work flow management (WFM) technology gradually matures, the process of enterprises paperless office is also being accelerated. When enterprises build their information systems,about the traditional Inefficient, time-consuming, high-cost business such as:the examination and approval of the bill, reports and documents, the enterprises hope to put them onto the information systems by association with workflow management technology. To develop this information system, a pressing issue is how to ensure the identity authentication, data integrity, undeniability when the bills, statements on the Internet automatically transfer for being examined and approved. Now generally the digital signature technology based on PKI (Public Key Infrastructure) technology is recognized as being the most mature and having good operability by the experts here and abroad.With the J2EE platform growing up, now many applications are developed basing on J2EE platforms, the main topic of thesis is how to finish the digital signature and signature verification after applying a high-performance Microsoft encryption applications interface components called CAPICOM into J2EE platform. After analysizing the shortcomings and mistakes of the common methods more used now, the research put forward starting from the analysis of ASN.1(Abstract Syntax Notation One) and PKCS#7 (Cryptographic Message Syntax Standard ) syntax and extracting the signed data and signed certificates from the data in PKCS#7 form after CAPICOM signed, then verified the data integrity and the validity of the certificate, those have been realized under the Struts frames.This topic completed the digital signatures and signatures verification by associating the CAPICOM more used in Windows platform with Java. The introduction of the CAPICOM avoids the duplication of programming, and integration with the user certificate well. In addition, it improves the reliability of the certificates and signature verification and strengthens the reusability of software that the certificates and signature are verified in the model layer of the MVC design model. From the perspective of design model, this is more standardized. The research have been applied to the actual projects and put into operation and gotten the more satisfactory expections.