PRIVATE KEY GENERATION APPARATUS AND METHOD, AND STORAGE MEDIA STORING PROGRAMS FOR EXECUTING THE METHODS
First Claim
1. A private key generation apparatus, comprising:
- a root private key generation unit configured to set a root master key and predetermined parameters capable of generating private keys, and to generate a first sub-master key set capable of generating a number of private keys equal to or smaller than a preset limited number; and
a sub-private key generation unit configured to share authority to generate private keys with the root private key generation unit by receiving the first sub-master key set from the root private key generation unit, to generate a private key corresponding to a user ID using the first sub-master key set, and to issue the private key to a user;
wherein the root private key generation unit receives a sub-private key generation unit ID from the sub-private key generation unit, authenticates the sub-private key generation unit ID, and transmits the first sub-master key set to the sub-private key generation unit if the authentication is successful.
0 Assignments
0 Petitions
Accused Products
Abstract
Disclosed herein are a private key generation apparatus and method, and storage media storing programs for executing the methods on a computer. The private key generation apparatus includes a root private key generation unit and a sub-private key generation unit. The root private key generation unit sets a root master key and predetermined parameters capable of generating private keys, and generates a first sub-master key set capable of generating a number of private keys equal to or smaller than a preset limited number. The sub-private key generation unit generates private keys with the root private key generation unit by receiving the first sub-master key set from the root private key generation unit, to generate a private key corresponding to a user ID using the first sub-master key set, and issues the private key to a user.
-
Citations
16 Claims
-
1. A private key generation apparatus, comprising:
-
a root private key generation unit configured to set a root master key and predetermined parameters capable of generating private keys, and to generate a first sub-master key set capable of generating a number of private keys equal to or smaller than a preset limited number; and a sub-private key generation unit configured to share authority to generate private keys with the root private key generation unit by receiving the first sub-master key set from the root private key generation unit, to generate a private key corresponding to a user ID using the first sub-master key set, and to issue the private key to a user; wherein the root private key generation unit receives a sub-private key generation unit ID from the sub-private key generation unit, authenticates the sub-private key generation unit ID, and transmits the first sub-master key set to the sub-private key generation unit if the authentication is successful. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A private key generation method, the private key generation method being performed by a private key generation apparatus that generates private keys corresponding to user IDs using the user IDs as public keys, the method comprising:
-
(a) setting, by a root-private key generation unit, a root master key and predetermined root parameters capable of generating private keys; (b) setting, by a sub-private key generation unit, a number of private key issuance target users and setting predetermined sub-parameters based, and transmitting, by the sub-private key generation unit, the number of private key issuance target users and an ID of the sub-private key generation unit to the root private key generation unit; (c) authenticating, by the root-private key generation unit, the ID of the sub-private key generation unit; (d) if the authentication is successful at step (c), generating, by the root-private key generation unit, a first sub-master key set capable of generating a number of private keys equal to the set number of users using the root parameters and the sub-parameters, and transmitting, by the root-private key generation unit, the first sub-master key to the sub-private key generation unit; and (e) generating, by the sub-private key generation unit, a secret key corresponding to the user ID using the first sub-master key set, and providing, by the sub-private key generation unit, the private key to a user; wherein the sub-private key generation unit shares authority to generate private keys with the root private key generation unit by receiving the first sub-master key set from the root private key generation unit. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification