摘要 |
<p>A method for secure data communication for use in an electronic commerce environment of the type having an authentication server (2), a web server (3) and an applet (5). Data communications between the authentication server, web server, applet and a secure private key server (4) is controlled by generating a certificate-received signal, initiating an authentication request, requesting a server authentication certificate, extracting the vendor public key, loading a client certificate into the applet and simultaneously transmitting the client certificate to the authentication server and receiving the client certificate at the authentication server and extracting a client public key from the client certificate and simultaneously extracting the client public key from the client certificate. This overcomes the problems associated with allowing a vendor access to a users private key.</p> |