摘要 |
<p>Managing reliance in an electronic transaction system includes a certification authority issuing to a subscriber an attestation of a binding of at least one public key of the subscriber to at least one attribute, and forwarding to a reliance server, information about the issued attestation. The reliance server maintains the forwarded information about issued attestation. The subscriber forms a transaction and then provides the transaction to a relying party. The transaction includes the attestation or a reference thereto. The relying party sends to the reliance server a request for assurance based on the transaction received from the subscriber. The reliance server determines whether to provide the requested assurance based on the information about the issued attestation and on the requested assurance. Based on the determining, the reliance server issues to the relying party an authorization message providing the assurance to the relying party.</p> |