摘要 |
<P>PROBLEM TO BE SOLVED: To provide novel technologies for flexibly dealing with a case where danger of imperilment happens on an issuer private key, when constructing certificate issuance service. <P>SOLUTION: In a configuration for managing a plurality of different issuer private keys, if issuance application information is received, key identification information of an issuer private key is acquired from the issuance application information, and a certificate is issued using the issuer private key indicated by the acquired key identification information, so that a user is capable of using another issuer private key if the issuer private key is imperiled. In such a configuration, a certificate of a link between issuer certificates corresponding to the two issuer private keys is created and issued so as to simultaneously use a plurality of issuer private keys for a fixed period of time. Thus, a transition period of a certificate application can be realized so as to be transient to the new issuer private key. <P>COPYRIGHT: (C)2006,JPO&NCIPI |