摘要 |
PROBLEM TO BE SOLVED: To provide a key setting method by which operating keys generated by a plurality of service providers can be prevented from being browsed, other than the service providers, and a person who has issued the operating key can be authenticated. SOLUTION: A terminal manufacturer server 5 writes a secret key SK1 and a common key CK2 in a secure application module (SAM) 4 and writes a public key PK1 and the common key CK2 in a terminal 2. A terminal manufacturer delivers the SAM 4 to a service provider. A service provider server 3 encrypts an operating key K using the common key CK2 in the SAM 4, appends a signature due to the secret key SK1 to the encrypted operating key and generates an encrypted operating key E [CK2, K]. The service provider server 3 writes the encrypted operating key E [CK2, K] into the terminal 2 via an information setter server 1. The terminal 2 uses the public key PK1 to verify the signature and decrypts the encrypted operating key E [CK2, K] using the common key CK2. COPYRIGHT: (C)2009,JPO&INPIT
|