摘要 |
When receiving a service provided by a service providing apparatus, a terminal generates a session key, which is sent to the service providing apparatus in an encrypted form using a shared secret key provided by an ID issuing apparatus. The terminal applies a hash function on an ID provided by the ID issuing apparatus, using the session key as a key, and sends the hash data and the ID to the service providing apparatus. The service providing apparatus determines the ID issuing apparatus that issued the ID received, and transfers the encrypted session key thereto. The ID issuing apparatus decrypts the session key using the shared secret key, and sends the result to the service providing apparatus. The service providing apparatus applies the hash function on the ID using the session key received, and executes authentication by determining whether the hash data calculated coincides with the hash data received from the terminal.
|