摘要 |
<p>A user (12) obtains an electronic credential (14) through a network (18) by first requesting such a credential from a certificate authority (16) which, in response verifies the identity of the user by making an inquiry to a directory (24). Upon successful verification of the user, the certificate authority prompts the user for a first password and the identity of an individual (26) having the authority to vouch for the user. Thereafter, the certificate authority launches an inquiry to the individual identified by the user. Upon successful authentication of the user by the identified individual (26), the certificate authority provides the user with a second password, and thereafter prompts the user for both passwords. After correct receipt from the user of both passwords, the certificate authority provides the user with the credential, and thereafter erases the two passwords. <IMAGE></p> |