摘要 |
<p>Trusted entity authentication includes creating a public-private key pair (295) in a secure environment (240); storing the private key (295) within a device (240) during its manufacture in the secure environment (240); linking the public key (295) with other information in the secure environment; receiving input within the device comprising verification data (250) of an entity; identifying within the device a verification status based on the verification data (250) and data prestored within the device (240); independent of the verification status identified (260), generating a digital signature (299) for a message including an indication of the identified verification status using the private key (295); outputting the digital signature for transmission with an EC (210); identifying upon receipt of the EC (210) the information linked with the public key (295) by authenticating the message with the public key (295); and considering the identified information and the indicated verification status (260). The linked information includes device security aspects and the verification status (260) regards entity authentication performed by the device.</p> |