METHOD FOR PERFORMING ANALOG-DIGITAL SIGNATURE IN A TRUSTED ENVIRONMENT AND ITS IMPLEMENTING DEVICE

摘要

A method of providing a trusted environment for performing an analog-digital signature and a device for the implementation thereof are intended to enhance the security of converting source documents into electronic form. Unlike known prior art, the present method and device do not require that the procedure for signing electronic documents be carried out on special certified computers which provide a trusted environment. A trusted environment should guarantee that a digital signature is created in a secure and tested system comprising hardware and software. A violation of these conditions gives rise to potential threats, for example the substitution of an electronic document, i.e. the user sees one document on the screen, while the hacked system signs a different document using the user's name. In the present invention, a trusted environment is formed in a signing device in the form of a stylus, and any non-certified computer can be used. The trusted environment is provided in the invention by a set of technical solutions. A device for signing documents, in the form of a stylus, comprises a security compartment, containing a microcontroller with a software code, a memory with a digital signature secret key, and also inertia sensors, which are connected to the microcontroller, and a loudspeaker, which is likewise connected to the microcontroller and is provided with a voice synthesis program. A wireless interface is used for communication with a computer. The inertia sensors serve to verify the user's manual signature. The loudspeaker and the voice synthesis program serve to voice the text of an electronic document directly from the trusted environment. This guarantees that verified information enters the trusted environment of the stylus.