摘要 |
PROBLEM TO BE SOLVED: To effectively improve security in key exchange over a network. SOLUTION: A key exchange system includes a user device 600 and a server apparatus 700. In the user device 600, a first private key is generated based on a master key, and a second private key is generated based on an input password. Based on message information sent from a key exchange destination and the first private key, a first authenticator is generated and based on the first authenticator, authentication determination is performed on the message information. If authenticated in the authentication determination, based on the second private key, a second authenticator is generated and based on the second authenticator, authentication determination is performed on message information from the server apparatus. If authenticated, an exchange key based on the message information is generated. In the server apparatus 700, authentication determination is performed based on message information sent from the user device 600 and the first and second authenticators and if the authentication is successful, an exchange key same as the exchange key generated by the user device is output. COPYRIGHT: (C)2011,JPO&INPIT |