CLIENT DEVICE, SERVER DEVICE, AND PROGRAM

摘要

A client apparatus (100) receives a message including a random number from a server apparatus (200) during the handshake of agreement process, creates a biometric negotiation message including the biometric authentication method information and sends the biometric negotiation message to the server apparatus. Then, the client apparatus (100) executes a biometric authentication based on biometric authentication method information notified from the server apparatus and encrypts the random number based on the private key. In addition, the client apparatus generates an authenticator from a result of the biometric authentication, the biometric authentication method information, the encrypted random number, and the client certificate, and sends to the server apparatus an authentication context including these. The server apparatus (200) verifies the authentication context and establishes a secure session in one handshake.