| 摘要 |
The invention relates to a cryptographic method for generating a pair of user keys for an entity having a public identifier /, and a system. The method according to the invention comprises: the generation (G10), by a certification authority, of either a master public key comprising an RSA modulus n which is the product of two first numbers p and q, a whole number b higher than or equal to 1, two quadratic residues a and g modulus n and a value h determined from a variate z, or a master secret key comprising p and q; the generation (G20), by said entity, of a user secret key s; the evaluation (G30), by the entity, of a value v = g~s (mod n); the transmission (G40) of v to the authority with proof of knowledge of s; the generation (G50), by the authority, of a certificate {A, e) wherein e is a variate associated with / and A eb = f (h i , v, n), f being a pre-determined function; the transmission (G60) of (A, e) to the entity; and the production (G80) of a pair of user keys for the entity, comprising s, and a user public key formed from A, e and I. |
