JP2001305956A - Method for issuing open key certificate and authentication station, user terminal and recording medium with program recored thereon - Google Patents
Method for issuing open key certificate and authentication station, user terminal and recording medium with program recored thereonInfo
- Publication number
- JP2001305956A JP2001305956A JP2000125967A JP2000125967A JP2001305956A JP 2001305956 A JP2001305956 A JP 2001305956A JP 2000125967 A JP2000125967 A JP 2000125967A JP 2000125967 A JP2000125967 A JP 2000125967A JP 2001305956 A JP2001305956 A JP 2001305956A
- Authority
- JP
- Japan
- Prior art keywords
- certificate
- public key
- format
- information
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Abstract
Description
【0001】[0001]
【発明の属する技術分野】この発明は、公開鍵を利用す
るシステムにおいて、利用者の申請により公開鍵と公開
鍵の持ち主を証明するために公開鍵証明書を発行する認
証局(CA:Certification Authority)における公開鍵
証明書発行方法及び認証局、利用者端末並びにプログラ
ムを記憶した記録媒体に関するものである。BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a certification authority (CA) that issues a public key certificate to certify the public key and the owner of the public key upon application of a user in a system using a public key. ), A public key certificate issuing method, a certificate authority, a user terminal, and a recording medium storing a program.
【0002】[0002]
【従来の技術】通常の認証局が持つ公開鍵証明書発行機
能としては、同一認証局が発行する公開鍵証明書の形式
は一定である。また、利用者が公開鍵証明書を利用して
メーラー(mailer)などのアプリケーションにて認証を行
なう場合、アプリケーションによっては、拡張要素(例
えば、認証局署名の検証を行なう公開鍵など)が含まれ
る公開鍵証明書は受け付けないといったものや、ある拡
張要素がない公開鍵証明書を受け付けないといった制約
のあるアプリケーションがある。2. Description of the Related Art As a public key certificate issuing function of an ordinary certificate authority, the format of a public key certificate issued by the same certificate authority is constant. When a user authenticates with an application such as a mailer using a public key certificate, some applications include an extended element (for example, a public key for verifying a signature of a certificate authority). There is an application that does not accept a public key certificate or an application that has a restriction that it does not accept a public key certificate without a certain extension element.
【0003】[0003]
【発明が解決しようとする課題】このため、利用者は公
開鍵証明書を使用するアプリケーション毎に異なる認証
局に対して公開鍵証明書の申請を行なわなければならな
いという問題があった。また、認証局運営者にとってみ
れば公開鍵証明書の形式毎に異なる認証局を運営しなけ
ればならず、認証局構築・運用のコストがかかるという
問題があった。本発明は、このような状況に鑑み、認証
局が利用者の申請に応じた形式の公開鍵証明書を発行す
ることのできる公開鍵証明書の発行方法及び認証局、利
用者端末並びにプログラムを記録した記録媒体を提供す
ることを目的としている。For this reason, there has been a problem that a user must apply for a public key certificate to a different certificate authority for each application that uses the public key certificate. Further, for the certificate authority operator, there is a problem that a different certificate authority must be operated for each format of the public key certificate, and the cost of building and operating the certificate authority is increased. In view of such circumstances, the present invention provides a public key certificate issuance method, a certificate authority, a user terminal, and a program that enable a certificate authority to issue a public key certificate in a format according to a user's application. It is intended to provide a recorded recording medium.
【0004】[0004]
【課題を解決するための手段】上記目的を達成するため
に、本発明は、利用者端末において要求する公開鍵証明
書の形式を指定した証明書形式情報と要求する公開鍵証
明書の識別情報である証明書登録情報と利用者公開鍵を
含む公開鍵証明書発行申請書を作成して認証局に送り、
また、認証局において利用者端末から証明書形式情報・
証明書登録情報・利用者公開鍵を含む公開鍵証明書発行
申請書を受付けると共に証明書形式情報・証明書登録情
報・利用者公開鍵を読取り、証明書形式情報によって指
定された形式で、公開鍵証明書発行申請書中の証明書登
録情報・利用者公開鍵を含む公開鍵証明書を発行する。In order to achieve the above object, the present invention provides a certificate format information designating a format of a public key certificate requested by a user terminal and identification information of the requested public key certificate. Create a public key certificate issuance application including the certificate registration information and the user public key, and send it to the certificate authority.
Also, the certificate authority sends certificate format information and
Accepts a public key certificate issuance application including certificate registration information and user public key, reads certificate format information, certificate registration information, and user public key, and publishes in the format specified by the certificate format information. Issue a public key certificate including the certificate registration information and user public key in the key certificate issuance application.
【0005】[0005]
【発明の実施の形態】以下、図面を用いて本発明の実施
の形態について説明する。図1に、本発明の公開鍵証明
書の発行を行なう認証局の構成を示す。認証局は、利用
者端末からの公開鍵証明書発行申請書(以下、「申請
書」という。)を受付ける申請書受付手段と、公開鍵証
明書の発行を行なう証明書発行手段とから構成される。Embodiments of the present invention will be described below with reference to the drawings. FIG. 1 shows the configuration of a certificate authority that issues a public key certificate according to the present invention. The certificate authority includes an application receiving means for receiving a public key certificate issuance application form (hereinafter, referred to as an "application form") from a user terminal, and a certificate issuing means for issuing a public key certificate. You.
【0006】証明書発行手段は、申請書の証明書形式情
報を読取る証明書形式情報読取手段と、証明書登録情報
(例えば、利用者の識別情報)を読取る証明書登録情報
読取手段と、申請書の公開鍵情報を読取る公開鍵読取手
段と、デフォルト証明書形式情報を記憶したデフォルト
証明書形式情報記憶手段と、証明書形式詳細情報を有す
る証明書形式設定ファイルを記憶した証明書形式設定フ
ァイル記憶手段と、読取った証明書形式情報が空欄ある
いは証明書設定ファイルの証明書詳細情報に記載されて
いるか判別する証明書形式情報判別手段と、証明書形式
情報が空欄の場合はデフォルト証明書形式情報により、
あるいは、判別された証明書形式情報により証明書形式
設定ファイルの証明書形式詳細情報に基づき公開鍵証明
書の形式を設定して証明書登録情報・利用者公開鍵を含
む公開鍵証明書を発行する証明書形式設定発行手段を備
える。The certificate issuing means includes a certificate format information reading means for reading certificate format information of an application, a certificate registration information reading means for reading certificate registration information (for example, user identification information), Key reading means for reading public key information of a certificate, default certificate format information storing means for storing default certificate format information, and certificate format setting file storing a certificate format setting file having detailed certificate format information Storage means, certificate format information determining means for determining whether the read certificate format information is blank or described in the certificate detailed information of the certificate setting file, and default certificate format if the certificate format information is blank According to the information,
Alternatively, the public key certificate including the certificate registration information and the user public key is issued by setting the format of the public key certificate based on the certificate format detailed information of the certificate format setting file based on the determined certificate format information. And a certificate format setting issuing unit.
【0007】認証局は、デフォルト証明書形式情報記憶
手段にデフォルト証明書形式情報を有し、利用者からの
申請書において、証明書形式情報が空欄であった場合に
は、このデフォルト証明書形式を利用者からの申請にお
ける証明書形式情報とみなすものである。図1の例で
は、デフォルト証明書形式情報として、「1」を設定し
ている。また、認証局の証明書形式設定ファイル記憶手
段に、証明書形式設定ファイルを持つ。これは、利用者
からの申請書中の証明書形式設定情報に対応して、実際
どのような形式の公開鍵証明書を発行するかを記述した
証明書形式設定詳細情報を含む。図1の例では、申請書
の証明書形式情報が「1」の場合は「基本部のみ、拡張
部なし」の形式の公開鍵証明書を、申請書の証明書形式
情報が「2」の場合は「基本部と、拡張部A」の形式の
公開鍵証明書を、申請書の証明書形式情報が「3」の場
合は「基本部と、拡張部AとB」の形式の公開鍵証明書
を発行する。[0007] The certificate authority has default certificate format information in the default certificate format information storage means. If the certificate format information is blank in the application form from the user, the certificate authority uses this default certificate format information. Is regarded as certificate format information in the application from the user. In the example of FIG. 1, “1” is set as the default certificate format information. The certificate authority setting file storage means of the certificate authority has a certificate format setting file. This includes certificate format setting detailed information that describes what type of public key certificate is actually issued in response to the certificate format setting information in the application form from the user. In the example of FIG. 1, if the certificate format information of the application is “1”, a public key certificate in the format “only the basic part, no extension” is sent, and the certificate format information of the application is “2”. Public key certificate in the form of “basic part and extension part A”, and public key certificate in the form of “basic part and extension part A and B” when the certificate format information of the application is “3”. Issue a certificate.
【0008】この実施例では、認証局側に証明書形式設
定ファイルを持つが、利用者端末に証明書形式設定ファ
イルを備え、申請書の証明書形式情報に証明書形式設定
詳細情報を記述してもよい。図2は、本発明の申請書の
作成を行なう利用者端末の構成を示す。利用者端末は、
公開鍵を保持する公開鍵保持手段と、申請書を作成する
証明書発行申請手段と公開鍵証明書の形式を入力するた
めの証明書形式入力手段から構成される。In this embodiment, the certificate authority has the certificate format setting file, but the user terminal has the certificate format setting file, and the certificate format setting detailed information is described in the certificate format information of the application form. You may. FIG. 2 shows the configuration of a user terminal that creates an application form according to the present invention. User terminal
It comprises a public key holding unit for holding a public key, a certificate issuance applying unit for creating an application, and a certificate format input unit for inputting a format of a public key certificate.
【0009】図3は、認証局の証明書発行機能の処理を
表わすフローチャートである。 s1:認証局の申請書受付手段は、利用者端末から証明書
形式情報・証明書登録情報・利用者公開鍵を含む申請書
を受取る。 s2:受取った申請書から認証局の証明書登録情報読取手
段で証明書登録情報、公開鍵読取手段で公開鍵情報をそ
れぞれ読取り、証明書形式情報読取手段は証明書形式情
報を読取る。 s3:認証局の証明書形式情報判別手段は、s2で証明書形
式情報が空欄の場合(NO)は、認証局のデフォルト証明書
形式情報記憶手段が保持しているデフォルト証明書設定
情報を証明書形式情報とみなしてs5に移行する。 s4:認証局の証明書形式情報判別手段は、s2で空欄でな
い場合(YES)は、証明書形式情報読取手段で証明書形式
情報を読取りs5に移行する。 s5:認証局の証明書形式情報判別手段は、証明書形式設
定ファイル記憶手段に保持している証明書情報設定ファ
イルに証明書形式情報が記載されているかどうか調べ
る。 s6:s5で記載されていない場合(NO)は、エラー処理を行
ない終了する。 s7:s5で記載されている場合(YES)は、認証局の証明書形
式発行手段は、証明書形式情報に対応した、証明書形式
設定ファイルに記載された証明書形式詳細情報をもと
に、公開鍵証明書の形式を決定して公開鍵証明書を発行
し、処理を終了する。FIG. 3 is a flowchart showing processing of the certificate issuing function of the certificate authority. s1: The application receiving unit of the certificate authority receives an application including the certificate format information, the certificate registration information, and the user public key from the user terminal. s2: The certificate registration information reading means of the certification authority reads the certificate registration information and the public key reading means reads the public key information from the received application form, and the certificate format information reading means reads the certificate format information. s3: The certificate authority certificate format information discriminating means certifies the default certificate setting information held in the certificate authority default certificate format information storage means if the certificate format information is blank in s2 (NO). The process proceeds to s5 assuming that the information is in document format. s4: If the certificate format information discriminating means of the certificate authority is not blank in s2 (YES), the certificate format information reading means reads the certificate format information and shifts to s5. s5: The certificate format information discriminating means of the certification authority checks whether the certificate format information is described in the certificate information setting file stored in the certificate format setting file storage means. If not described in s6: s5 (NO), error processing is performed and the processing ends. If it is described in s7: s5 (YES), the certificate authority certificate issuing unit of the certificate authority uses the certificate format detailed information described in the certificate format setting file corresponding to the certificate format information. Then, the format of the public key certificate is determined, the public key certificate is issued, and the process ends.
【0010】図4は、利用者端末の申請書の作成を表わ
すフローチャートである。 s10:利用者は発行を希望する公開鍵証明書の形式がある
かどうか入力する。 s11:s10において、発行を希望する公開鍵証明書の形式
がない場合(NO)は、証明書形式情報欄は空欄して、s13
に移行する。 s12:s10において、発行を希望する公開鍵証明書の形式
がある場合(YES)は、証明書形式情報欄に証明書形式入
力手段により希望の形式を記述して、s13に移行する。 s13:申請書を作成して、認証局に送信する。FIG. 4 is a flowchart showing creation of an application form for a user terminal. s10: The user inputs whether there is a format of a public key certificate desired to be issued. s11: If the format of the public key certificate desired to be issued does not exist in s10 (NO), the certificate format information column is left blank and s13
Move to In s12: s10, if there is a format of the public key certificate desired to be issued (YES), the desired format is described in the certificate format information field by the certificate format input unit, and the process proceeds to s13. s13: Create an application form and send it to the certificate authority.
【0011】図5は、利用者から認証局に渡される申請
書の例1と、この申請書を認証局が受取ったときに発行
される公開鍵証明書の例1である。申請書は、利用者の
公開鍵と「証明書形式情報:2」を含んでいる。申請書
を受け取った認証局は、証明書形式設定ファイルを参照
し、「利用者の公開鍵を含む基本部と拡張部A」の形式
を有し、認証局署名を行ない公開鍵証明書を発行する。
(拡張部には、例えば、認証局署名を検証するための公
開鍵証明書を識別する情報が記載される。)図6は、利
用者から認証局に渡される申請書の例2と、この申請書
を認証局が受取ったときに発行される公開鍵証明書の例
2である。FIG. 5 shows Example 1 of an application form passed from a user to a certificate authority, and Example 1 of a public key certificate issued when the certificate authority receives this application form. The application includes the user's public key and “certificate format information: 2”. Upon receiving the application, the certificate authority refers to the certificate format setting file and issues a public key certificate with the format of "basic part including user's public key and extension part A" signed by the certificate authority. I do.
(In the extension part, for example, information for identifying a public key certificate for verifying a certificate authority signature is described.) FIG. 6 shows an example 2 of an application form passed from a user to a certificate authority, and FIG. It is Example 2 of the public key certificate issued when a certificate authority receives an application.
【0012】申請書2は、「証明書形式設定情報」欄は
空欄である。申請書2を受け取った認証局は、「証明書
形式設定情報」欄が空欄であるので、認証局が保持して
いるデフォルト証明書形式情報を参照し、証明書形式情
報を「1」とみなす。そして、証明書形式設定ファイル
を参照して、「基本部のみ、拡張部なし」の形式の公開
鍵証明書を発行する。図7は、利用者から認証局に渡さ
れる申請書の例3である。In the application form 2, the “certificate format setting information” column is blank. The certificate authority that has received the application 2 refers to the default certificate format information held by the certificate authority and regards the certificate format information as “1” because the “certificate format setting information” field is blank. . Then, with reference to the certificate format setting file, a public key certificate in a format of “only the basic portion, no extension portion” is issued. FIG. 7 is an example 3 of the application form passed from the user to the certificate authority.
【0013】申請書3は、「証明書形式情報:9」を含
んでいる。申請書3を受け取った認証局は、認証局が保
持する証明書形式設定ファイルに「証明書形式情報:
9」が含まれているかどうかを調べるが、含まれていな
いため、エラー処理を行ない終了する。この場合には公
開鍵証明書は発行しない。また、この公開鍵証明書発行
システムの利用者端末と認証局を、CPUやメモリ等を
有するコンピュータとCD−ROM、磁気ディスク装
置、半導体メモリ等の機械読取可能な記録媒体で構成
し、記録媒体に記録した公開鍵証明書の発行を実行する
プログラムをコンピュータに読取り、コンピュータの動
作を制御し、コンピュータ上に前述の実施形態における
各構成要素を実現する。The application form 3 includes “certificate format information: 9”. Upon receiving the application form 3, the certificate authority stores “certificate format information:” in the certificate format setting file held by the certificate authority.
It is checked whether or not "9" is included, but since it is not included, error processing is performed and the processing is terminated. In this case, no public key certificate is issued. A user terminal and a certificate authority of the public key certificate issuing system are constituted by a computer having a CPU and a memory and a machine-readable recording medium such as a CD-ROM, a magnetic disk device, and a semiconductor memory. The computer reads the program for executing the issuance of the public key certificate recorded in the computer, controls the operation of the computer, and realizes each component in the above-described embodiment on the computer.
【0014】[0014]
【発明の効果】以上説明したように、本発明によれば、
利用者が希望する公開鍵証明書の形式を示す証明書形式
情報を公開鍵証明書の識別情報と共に認証局に申請する
ことにより、認証局は利用者の希望する形式で公開鍵証
明書の発行ができる。利用者は、希望する形式の公開鍵
証明書を認証局に発行してもらうことができるため、公
開鍵証明書の形式が限定されるアプリケーション用の公
開鍵証明書を、アプリケーション毎に異なる複数の認証
局に発行申請することなく、一つの認証局から発行して
もらうことができる。As described above, according to the present invention,
By applying to the certificate authority for certificate format information indicating the format of the public key certificate desired by the user together with the identification information of the public key certificate, the certificate authority issues the public key certificate in the format desired by the user. Can be. Since the user can have the certificate authority issue a public key certificate in the desired format, a public key certificate for an application whose public key certificate format is It is possible to have one certificate authority issue the certificate without applying to the certificate authority.
【0015】また、認証局運営者にとってみれば証明書
形式毎に別の認証局を運営することもなくなり、認証局
構築・運用が低コストで行なうことができる。Further, the certificate authority operator does not need to operate another certificate authority for each certificate format, and can construct and operate the certificate authority at low cost.
【図1】本発明の一実施形態に係る公開鍵証明書の発行
を行なう認証局の構成を示す図。FIG. 1 is a diagram showing a configuration of a certificate authority that issues a public key certificate according to an embodiment of the present invention.
【図2】本発明の一実施形態に係る申請書の作成を行な
う利用者端末の構成を示す図。FIG. 2 is a diagram showing a configuration of a user terminal that creates an application form according to an embodiment of the present invention.
【図3】認証局における公開鍵証明書発行処理を表わす
フローチャート。FIG. 3 is a flowchart showing a public key certificate issuing process in a certificate authority.
【図4】利用者端末における申請書作成処理を表わすフ
ローチャート。FIG. 4 is a flowchart illustrating an application form creation process in a user terminal.
【図5】申請書の例1と、その申請書を認証局が受け取
ったときに発行する公開鍵証明書の例1を示す図。FIG. 5 is a diagram showing an example 1 of an application and an example 1 of a public key certificate issued when the certificate authority receives the application.
【図6】申請書の例2と、その申請書を認証局が受け取
ったときに発行する公開鍵証明書の例2を示す図。FIG. 6 is a diagram illustrating an application example 2 and a public key certificate example 2 issued when the certificate authority receives the application form.
【図7】申請書の他の例を示す図。FIG. 7 is a diagram showing another example of an application form.
───────────────────────────────────────────────────── フロントページの続き (72)発明者 村田 祐一 東京都千代田区大手町二丁目3番1号 日 本電信電話株式会社内 (72)発明者 今枝 直彦 東京都千代田区大手町二丁目3番1号 日 本電信電話株式会社内 Fターム(参考) 5J104 AA06 AA16 EA05 MA02 MA06 ──────────────────────────────────────────────────続 き Continuing on the front page (72) Inventor Yuichi Murata 2-3-1 Otemachi, Chiyoda-ku, Tokyo Inside Nippon Telegraph and Telephone Corporation (72) Inventor Naohiko Imae 2-3-Otemachi, Chiyoda-ku, Tokyo No. 1 F-term in Nippon Telegraph and Telephone Corporation (reference) 5J104 AA06 AA16 EA05 MA02 MA06
Claims (13)
て、認証局が公開鍵証明書の発行を行なう公開鍵証明書
発行方法であって、 認証局は、利用者端末から要求する公開鍵証明書の形式
を指定した証明書形式情報・要求する公開鍵証明書の識
別情報である証明書登録情報・利用者公開鍵を含む公開
鍵証明書発行申請書を受付けると共に証明書形式情報・
証明書登録情報・利用者公開鍵を読取り、証明書形式情
報によって指定された形式で、公開鍵証明書発行申請書
中の証明書登録情報・利用者公開鍵を含む公開鍵証明書
を発行することを特徴とする公開鍵証明書発行方法。A public key certificate issuance method in which a certificate authority issues a public key certificate in response to a public key certificate application request from a user, wherein the certificate authority issues a request from a user terminal. Certificate format information that specifies the format of the public key certificate, certificate registration information that is the identification information of the requested public key certificate, public key certificate issuance application including the user public key, and certificate format information・
Reads the certificate registration information and user public key, and issues a public key certificate containing the certificate registration information and user public key in the public key certificate application form in the format specified by the certificate format information. A method for issuing a public key certificate, characterized in that:
おいて、 証明書形式情報が空欄である場合は認証局内部にあらか
じめ持っているデフォルト証明書形式情報を証明書形式
情報として指定された形式とすることを特徴とする公開
鍵証明書発行方法。2. The public key certificate issuance method according to claim 1, wherein if the certificate format information is blank, default certificate format information stored in the certificate authority in advance is designated as the certificate format information. Public key certificate issuance method characterized by the following format.
行方法において、 証明書形式情報により証明書形式設定ファイルの証明書
形式詳細情報を読出して指定された形式とすることを特
徴とする公開鍵証明書発行方法。3. The method for issuing a public key certificate according to claim 1, wherein the detailed information of the certificate format in the certificate format setting file is read out according to the certificate format information, and the read format is designated. Public key certificate issuance method.
報・利用者公開鍵を含む公開鍵証明書発行申請書を受付
ける申請書受付手段と、受付けた公開鍵証明書発行申請
書から証明書形式情報と証明書登録情報と利用者公開鍵
を読取り、読取った証明書形式情報により指定された形
式で公開鍵証明書発行申請書中の証明書登録情報・利用
者公開鍵を含む公開鍵証明書を発行する証明書発行手段
を備えたことを特徴とする認証局。An application receiving means for receiving a public key certificate issuance application including certificate format information, certificate registration information, and a user public key from a user, and certifying from the received public key certificate issuance application. Public key containing the certificate registration information and user public key in the public key certificate issuance application in the format specified by the read certificate format information, certificate registration information and user public key. A certificate authority comprising a certificate issuing means for issuing a certificate.
る場合に証明書形式情報とするデフォルト証明書形式情
報を記憶したデフォルト証明書形式設定情報記憶手段を
備えたことを特徴とする認証局。5. The certificate authority according to claim 4, wherein the certificate issuing means stores default certificate format information which is used as certificate format information when the read certificate format information is blank. A certificate authority comprising format setting information storage means.
て、 証明書発行手段は、証明書形式情報により公開鍵証明書
の形式を決定する証明書詳細情報を含む証明書形式設定
ファイルを記憶した証明書形式設定ファイル記憶手段を
備えたことを特徴とする認証局。6. The certificate authority according to claim 4 or 5, wherein the certificate issuing means stores a certificate format setting file including certificate detailed information for determining a format of a public key certificate based on the certificate format information. A certificate authority comprising a certificate format setting file storage means.
鍵証明書の形式を入力する証明書形式入力手段と、入力
した証明書形式情報と証明書登録情報と利用者公開鍵を
含む公開鍵証明書発行申請書を作成する証明書発行申請
手段を備えたことを特徴とする利用者端末。7. A public key holding unit for holding a public key, a certificate format inputting unit for inputting a format of a public key certificate, including the input certificate format information, certificate registration information, and a user public key. A user terminal comprising a certificate issuance application unit for creating a public key certificate issuance application form.
設定詳細情報を含むことを特徴とする利用者端末。8. The user terminal according to claim 7, wherein the certificate format information of the public key certificate issuance application includes certificate format setting detailed information.
登録情報・利用者公開鍵を含む公開鍵証明書発行申請書
を受付ける処理と、 公開鍵証明書発行申請書の証明書形式情報・証明書登録
情報・利用者公開鍵を読取る処理と、 読取った証明書形式情報によって指定された形式で、公
開鍵証明書発行申請書中の証明書登録情報・利用者公開
鍵を含む公開鍵証明書を発行する処理を備えたことを特
徴とする公開鍵証明書を発行するプログラムを記録した
コンピュータ読取り可能な記録媒体。9. A process for receiving an application form for issuing a public key certificate including certificate format information, certificate registration information, and a user public key from a user terminal, and certificate format information for the application form for issuing a public key certificate.・ Process to read certificate registration information and user public key, and public key including certificate registration information and user public key in the public key certificate issuance application in the format specified by the read certificate format information A computer-readable recording medium storing a program for issuing a public key certificate, the program including a process for issuing a certificate.
能な記録媒体において、証明書形式情報が空欄である場
合はデフォルト証明形式情報を証明書形式情報として指
定された形式とする処理を備えたことを特徴とするコン
ピュータ読取り可能な記録媒体。10. The computer-readable recording medium according to claim 9, further comprising a step of setting default certificate format information to a format designated as certificate format information when the certificate format information is blank. A computer-readable recording medium characterized by the above-mentioned.
タ読取り可能な記録媒体において、 証明書形式情報により証明書形式設定ファイルの証明書
形式詳細情報を読出して指定された形式とする処理を備
えたことを特徴とするコンピュータ読取り可能な記録媒
体。11. The computer-readable recording medium according to claim 9, further comprising a process of reading the certificate format detailed information of the certificate format setting file based on the certificate format information and making the certificate format specified. A computer-readable recording medium characterized by the above-mentioned.
る処理と、 入力した証明書形式情報・証明書登録情報・利用者公開
鍵を含む公開鍵証明書発行申請書を作成する処理とを備
えたことを特徴とする公開鍵証明書発行申請書を作成す
るプログラムを記録したコンピュータ読取り可能な記録
媒体。12. A process for inputting a format of a public key certificate issuance application, a process for creating a public key certificate issuance application including the entered certificate format information, certificate registration information, and user public key. A computer-readable recording medium recording a program for generating a public key certificate issuance application form, characterized by comprising:
可能な記録媒体において、 公開鍵証明書発行申請書の証明書形式情報に証明書形式
設定詳細情報を含むことを特徴とするコンピュータ読取
り可能な記録媒体。13. The computer-readable recording medium according to claim 12, wherein the certificate format information of the public key certificate issuance application includes certificate format setting detailed information. Medium.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2000125967A JP2001305956A (en) | 2000-04-26 | 2000-04-26 | Method for issuing open key certificate and authentication station, user terminal and recording medium with program recored thereon |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2000125967A JP2001305956A (en) | 2000-04-26 | 2000-04-26 | Method for issuing open key certificate and authentication station, user terminal and recording medium with program recored thereon |
Publications (1)
Publication Number | Publication Date |
---|---|
JP2001305956A true JP2001305956A (en) | 2001-11-02 |
Family
ID=18635829
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2000125967A Pending JP2001305956A (en) | 2000-04-26 | 2000-04-26 | Method for issuing open key certificate and authentication station, user terminal and recording medium with program recored thereon |
Country Status (1)
Country | Link |
---|---|
JP (1) | JP2001305956A (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2005512395A (en) * | 2001-11-29 | 2005-04-28 | モルガン・スタンレー | Method and system for authenticating electronic certificates |
JP2006108767A (en) * | 2004-09-30 | 2006-04-20 | Toppan Printing Co Ltd | Editor program and method for electronic certificate and ic card |
JP2015518697A (en) * | 2012-04-25 | 2015-07-02 | 西安西▲電▼捷通▲無▼綫▲網▼絡通信股▲分▼有限公司China Iwncomm Co., Ltd. | Digital certificate automatic application method, apparatus and system |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH118619A (en) * | 1997-06-18 | 1999-01-12 | Hitachi Ltd | Electronic certificate publication method and system therefor |
JP2000041032A (en) * | 1998-07-22 | 2000-02-08 | Hitachi Ltd | Certificate acquisition system applicable to policies of plural authentication agents |
JP2000338868A (en) * | 1999-05-26 | 2000-12-08 | Ntt Data Corp | Method for issuing public key certificate, method for verifying, system and recording medium |
JP2001036521A (en) * | 1999-07-22 | 2001-02-09 | Ntt Data Corp | Electronic certificate issue system, electronic certificate authentication system, method for issuing electronic certificate, method for authenticating electronic certificate and recording medium |
JP2001069137A (en) * | 1999-08-25 | 2001-03-16 | Nippon Telegr & Teleph Corp <Ntt> | Method for issuing public key certificate, terminal equipment for user, certification center and medium recording programs therefor |
-
2000
- 2000-04-26 JP JP2000125967A patent/JP2001305956A/en active Pending
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH118619A (en) * | 1997-06-18 | 1999-01-12 | Hitachi Ltd | Electronic certificate publication method and system therefor |
JP2000041032A (en) * | 1998-07-22 | 2000-02-08 | Hitachi Ltd | Certificate acquisition system applicable to policies of plural authentication agents |
JP2000338868A (en) * | 1999-05-26 | 2000-12-08 | Ntt Data Corp | Method for issuing public key certificate, method for verifying, system and recording medium |
JP2001036521A (en) * | 1999-07-22 | 2001-02-09 | Ntt Data Corp | Electronic certificate issue system, electronic certificate authentication system, method for issuing electronic certificate, method for authenticating electronic certificate and recording medium |
JP2001069137A (en) * | 1999-08-25 | 2001-03-16 | Nippon Telegr & Teleph Corp <Ntt> | Method for issuing public key certificate, terminal equipment for user, certification center and medium recording programs therefor |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2005512395A (en) * | 2001-11-29 | 2005-04-28 | モルガン・スタンレー | Method and system for authenticating electronic certificates |
JP2006108767A (en) * | 2004-09-30 | 2006-04-20 | Toppan Printing Co Ltd | Editor program and method for electronic certificate and ic card |
JP4639732B2 (en) * | 2004-09-30 | 2011-02-23 | 凸版印刷株式会社 | Electronic certificate editing program and method, and IC card |
JP2015518697A (en) * | 2012-04-25 | 2015-07-02 | 西安西▲電▼捷通▲無▼綫▲網▼絡通信股▲分▼有限公司China Iwncomm Co., Ltd. | Digital certificate automatic application method, apparatus and system |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP4731624B2 (en) | Assertion message signature | |
JP4783112B2 (en) | Signature history storage device | |
CN111311251B (en) | Binding processing method, device and equipment | |
US20080134341A1 (en) | Ic Card And Access Control Method | |
CN101981865B (en) | Information processing apparatus, control method of the information processing apparatus | |
JP4093723B2 (en) | Electronic signature method and apparatus for structured document | |
JP2015172824A (en) | Information processing system and authentication information providing method | |
JP2001184186A5 (en) | Image processing equipment, image processing method and storage medium | |
JP2006262393A (en) | Tamper-resistant device and file generating method | |
US6981147B1 (en) | Certification of multiple keys with new base and supplementary certificate types | |
CN113221142A (en) | Authorization service processing method, device, equipment and system | |
US20040064703A1 (en) | Access control technique using cryptographic technology | |
JP2011060092A (en) | Document management system, document operation device and program | |
JP2001305956A (en) | Method for issuing open key certificate and authentication station, user terminal and recording medium with program recored thereon | |
De Cock et al. | Introduction to the Belgian EID Card: BELPIC | |
WO2022100658A1 (en) | Method and system for changing key in security module | |
KR101979337B1 (en) | Apparatus and method for certification | |
JP2002207428A (en) | Signature validity term extension device, signature validity term verifying device, signature validity term extension system, signature validity term extension method, and recording medium recorded with signature validity term extension program | |
JP2004336562A (en) | Image transmission device | |
JP2006270646A (en) | Electronic certificate management apparatus | |
JP2003134109A (en) | System for verifying validity of public key certificate | |
JP2001236320A (en) | Terminal specifying method for www | |
JP2003244137A (en) | Method of verifying electronic signature | |
JP2006229854A (en) | Information processing apparatus, user authentication program, and computer-readable recording medium with the program recorded thereon | |
JP3901463B2 (en) | An authentication system access device, a public key certificate acquisition method, a public key certificate invalidation confirmation method, an authentication system access program, a public key certificate acquisition program, a public key certificate invalidation confirmation program, and an authentication system access program are stored. Storage medium storing storage medium and public key certificate acquisition program, and storage medium storing public key certificate revocation confirmation program |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A621 | Written request for application examination |
Free format text: JAPANESE INTERMEDIATE CODE: A621 Effective date: 20040326 |
|
A977 | Report on retrieval |
Free format text: JAPANESE INTERMEDIATE CODE: A971007 Effective date: 20050912 |
|
A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20050920 |
|
A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20051111 |
|
RD03 | Notification of appointment of power of attorney |
Free format text: JAPANESE INTERMEDIATE CODE: A7423 Effective date: 20051111 |
|
A02 | Decision of refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A02 Effective date: 20060502 |
|
A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20060630 |
|
RD02 | Notification of acceptance of power of attorney |
Free format text: JAPANESE INTERMEDIATE CODE: A7422 Effective date: 20060731 |