摘要 |
<P>PROBLEM TO BE SOLVED: To provide a system for authenticating an electronic request between a client computer and a transaction server. <P>SOLUTION: An application request including an identifier of a user originating the request is received in an application server 180 from a client computer 100. The application server 180 constructs a signing key on the basis of the identifier of the user making the request, a time based salt value, a secret shared between the application server 180 and a transaction server 200 and, optionally, an identifier for identifying a developer of an application. The signing key is embedded in an unbranded application thereby forming a branded application. The branded application can sign a request with the signing key and submit the signed request to the transaction server 200 together with the identifier of the user and the identifier of the developer of the application. <P>COPYRIGHT: (C)2013,JPO&INPIT |