VERIFY(8)
NAME
verify − command to authenticate receiver of blinded certificate
SYNOPSIS
lib/verify set-top-box-id
DESCRIPTION
Verify is run on a ‘signer’ server to extract information from the /keydb/signed/set-top-box-id file created by signer(8). That information consists of the previously crafted authentication certificate and the ‘blinded’ version of the certificate that was sent to the requesting client.
Verify displays the ‘blinded’ version textually or graphically, as appropriate, so that it can be compared to that reported by the set-top-box owner over a secure independent mechanism (for example, telephone). If the operator of verify is convinced of the identity of the caller, the operator should accept when prompted by verify. Verify then writes the authentication certificate to /keydb/countersigned/set-top-box-id, as input for countersigner (see signer(8)).
Note: if the operator of verify accepts the identity, the set-top-box owner should be requested to answer ‘yes’ to the prompt displayed by register(8). The order of acceptance (first on the signer) then on the client is important.
FILES
/keydb/signed/set-top-box-id
/keydb/countersigned/set-top-box-id
SOURCE
/appl/lib/verify.b