摘要 |
Management system for cryptographic keys. In a management server (2), there are stored, for each user (4, 5), a private key (PrK) and a public key (PuK). The server itself, too, has a private and public key for authenticating cryptographic keys to be transmitted. In the event that the private-server key is compromised, the server transmits a message to that effect to each user, authenticated using the private or a secret key of the user or terminal. The message comprises a copy of a new public key of the server. The terminals are capable of detecting messages which are certified using said private or secret key (code) of the user, whereafter the stored copy of the old public key is replaced with the copy, detected in the message, of the new key of the server. |