摘要 |
A method for generating certificates for secure distribution of encryption keys, to establish a secure communication link, comprising the following steps: (a) a key distribution center waits for calls by users (28); (b) a user creates a communications key pair (11); (c) the user calls the center, sends the public key and requests certificate (12); (d) the center verifies that an ID is new. If positive, a certificate is prepared and sent to user (22). The certificate includes the ID together with the public key for that user, and optional additional information; (e) if a certificate was generated in step (d), then the records at center are updated, to include the new certificate (23); (f) if a certificate was generated in step (d), then the user's records are updated (14).
|