| 发明名称 |
CERTIFICATE ISSUING SYSTEM, CLIENT TERMINAL, SERVER DEVICE, CERTIFICATE ACQUISITION METHOD, AND CERTIFICATE ISSUING METHOD |
| 摘要 |
Provided is a certificate issuing system including a client terminal and a server device. The client terminal derives a first hash value from a first random number using a unidirectional function, generates a secret key and a public key of the client terminal, and transmits the first hash value and the public key of the client terminal to the server device. The server device receives the first hash value and the public key of the client terminal from the client terminal, stores the first hash value, authenticates the client terminal on the basis of the stored first hash value and the derived first hash value, generates a client certificate on the basis of the public key of the client terminal and a secret key of the server device when the authentication succeeds, and transmits the client certificate to the client terminal. |
| 申请公布号 |
US2015341178(A1) |
申请公布日期 |
2015.11.26 |
| 申请号 |
US201514711676 |
申请日期 |
2015.05.13 |
| 申请人 |
Panasonic Intellectual Property Management Co., Ltd. |
发明人 |
Tanaka Hiroyuki;Toyonaga Saburo;Ike Kenjiro;Matsuo Masakatsu |
| 分类号 |
H04L9/32;H04L9/08;H04L29/06 |
主分类号 |
H04L9/32 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A certificate issuing system comprising:
a client terminal; and a server device that issues a client certificate to the client terminal, wherein the client terminal and the server device are connected to each other through a network, wherein the client terminal includes
a random number generation unit that generates a first random number sequence,a first storage unit that stores a first random number including the first random number sequence,a first unidirectional function processing unit that derives a first hash value from the first random number using a unidirectional function,a data encryption unit that generates encrypted data using the first random number,a public key pair generation unit that generates a secret key and a public key of the client terminal, anda first communication unit that transmits the first hash value, the encrypted data, and the public key of the client terminal to the server device, wherein the server device includes
a second communication unit that receives the first hash value, the encrypted data, and the public key of the client terminal from the client terminal,a second storage unit that stores the first hash value,a data decryption unit that decrypts the encrypted data to thereby acquire the first random number,a second unidirectional function processing unit that derives a first hash value from the acquired first random number using a unidirectional function,a first authentication processing unit that authenticates the client terminal on the basis of the stored first hash value and the derived first hash value, anda certificate generation unit that generates a client certificate on the basis of the public key of the client terminal and a secret key of the server device when the authentication based on the first authentication processing unit succeeds, and wherein the second communication unit transmits the client certificate to the client terminal. |
| 地址 |
Osaka JP |
