摘要 |
Disclosed are a method for authorizing access and an apparatus using the method. The method comprises: generating, by a key generation center, a public identity parameter and a private identity parameter for each server; using, by a client, the public identity parameter of a first server indicated by a first credential from a resource owner to perform identity encryption on the first credential and a first random parameter so as to generate and transmit a first request message to the first server; using, by the first server, the private identity parameter thereof to perform decryption on the first request message, and generating, according to the decrypted first credential, a second credential and providing the same to the client; using, by the client, the public identity parameter of a second server indicated by the second credential to perform identity encryption on the second credential and a second random parameter so as to generate and transmit a second request message to the second server; and using, by the second server, the private identity parameter thereof to perform decryption on the second request message, and determining, according to the decrypted second credential, a resource and providing the same to the client. |