摘要 |
PROBLEM TO BE SOLVED: To utilize a public key certificate that is issued before imperilment, until the end of a validity without invalidating the public key even in the case that a private key of a CA is imperiled for reducing a burden of a user. SOLUTION: The CA registers the public key certificate of an EE into a VA when issuing the public key certificate. When registering the public key certificate, the CA uses a public key pair different from the private key of the CA for secure registration. The registered public key certificate is appropriately saved/managed in the VA and information that the public key certificate is surely issued from the CA, is provided to a verifier. Even if the private key of the CA is imperiled, the certificate issued before the imperilment is appropriately managed by the VA. The registration work in the VA and the CA is performed by the public key pair different from the private key of the CA, so that the validity of the public key certificate is kept even if the private key of the CA is imperiled. COPYRIGHT: (C)2005,JPO&NCIPI
|