摘要 |
PROBLEM TO BE SOLVED: To ensure prescribed response performance by preventing performance deterioration of certificate verification treatment even when secret key of a number of certificate verification servers is stored in a hardware encryption module. SOLUTION: A certificate verification server 100 is constituted of a verification part 110 which forms response data by carrying out verification for a certificate as object of certificate verification request, a handle specifying part 111 which obtains an ID of secret key from a certificate as object of certificate verification request and specifies the handle value by checking the ID of the secret key against a secret key information table 125 and a signature part 112 which notifies signature request wherein the specified handle value is a key to a hardware encryption module 200, obtains a signature value from the hardware encryption module 200 and gives signature to response data by using the signature value. COPYRIGHT: (C)2009,JPO&INPIT
|