| 摘要 |
PURPOSE:To secure the safety, and also, to curtail the communication quantity by using a method for zero knowledge certification used for certification of the safety of a Fiar-Shamir method, etc., and also, constituting the system, based fundamentally on a form for executing only once a question and an answer of several 100 bits. CONSTITUTION:A authenticater generates a random number X in a defined area of a function A and calculates Y=A(X), and transmits it to a person to be authenticated. The person to be authenticated calculates X'=B(Y) with regard to received Y, generates a random number R in a defined area of a function F, and also, calculates Z=F(X', R) and transmits it to the authenticated. The authenticater transmits the random number X to the person to be authenticated, and the person to be authenticated inputs the received X and X' decoded by the own device to a coincidence inspecting device 190 and inspects whether they coincide with each other or not. Subsequently, the authenticater calculates Z'=F(X', R) by using a unidirectional function computing element 240, inputs its Z' and Z received previously to a coincidence inspecting device 290, and inspects whether they coincide with each other or not. In such a way, the safety is secured, and the communication quantity is curtailed. |
