| 摘要 |
<p>A list of public/private key pairs are stored at a server, wherein the private key is stored in an encrypted form, the encryption being based on a master key. To distribute a public/private key pair to a new user, an administrator who has access to the master key retrieves the next available public/private key pair from the server at a client processor that is convenient to both the administrator and the new user. At the client processor, the administrator decrypts the private key of the public/private key pair, using the master key, and provides both the public and private keys to the new user. The new user encrypts the private key, using a biometric or passphrase that is secret to the new user. The private key is immediately erased from the client processor upon encryption with the user's biometric or passphrase key. The encrypted private key, the corresponding public key, and an identification of the new user are communicated to and stored at the server for subsequent access by the new user, and potentially others. By employing this technique, the private key is vulnerable to detection only within the client processor, and only for a brief period of time.</p> |
