摘要 |
There has been no access control method combining two different authentication methods, i.e., authentication by password collation or secret key encryption and authentication by public key encryption. A key number that is assigned to a fixed key stored in a nonvolatile memory of an IC card is virtually assigned to a temporary key, and this key number is included in a public key certificate, and further, this key number is used as a security attribute for setting an access authority, whereby information relating to the fixed key and information relating to the temporary key are combined and specified. Thereby, it is possible to perform access control combining different two authentication methods, i.e., authentication by password collation or secret key encryption and authentication by public key encryption.
|