摘要 |
A certificate validity verification engine is integrated into the logic of a secure token, in turn, making the use of a private key conditional upon the determination that the certificate for the corresponding public key is valid at that particular instant in time. In thi s manner, the existence of a digital signature that is verified with a certificate implies that the certificate was valid at the time the signature was created. The verification of the certificate's validi ty by the relying party is unnecessary, as the signature could not have been created had the certificat e been invalid. The validity of a certificate is communicated at the time the signature was created, rather than at the time the signature was verified.
|