Signature verification system, verification key management apparatus, verification key management method and program

The invention claimed is: 1. A signature verification system comprising: a signature generation server including first circuitry configured to generate a signing key and a verification key by a publisher, the verification key being a part of an encryption key pair of a bid request, wherein the bid request describes a request by the publisher for receiving a bid on a region for placing a content, indicate, to a verification key management server, the verification key and publisher identification information for identifying the publisher, and sign the bid request issued by the publisher, with use of the generated signing key, the verification key management server including a storage and second circuitry electrically coupled to the storage, the second circuitry being configured to resister the indicated publisher identification information and verification key in the storage, the publisher identification information and the verification key are associated with information that enables a version of the verification key to be identified, receive the publisher identification information and the version indicating a verification key, from the signature verification server, in response to receiving the publisher identification information and the version of the verification key, determining whether a verification key of a latest version, that correspond to the received publisher identification information and version, is registered in the storage unit, and transmit, upon determining that the verification key of the latest version is registered in the storage, the verification key of the latest version to a signature verification server, the signature verification server being electrically configured to be coupled to the signature generation server and a signature verification server, and the signature verification server including third circuitry configured to receive the bid request, transmit, in response to receiving the bid request, publisher identification information and the version indicating a verification key that are included in the received bid request, to the verification key management server, and verify a signature for the bid request by using the verification key of the latest version, upon occurrence of a condition in which the verification key management server sends, to the signature verification server, the verification key of the latest version based on the publisher identification information and version transmitted from the third circuitry of the signature verification server. 2. The signature verification system according to claim 1 , wherein the first circuitry of the signature generation server is configured to indicate, to the verification key management server, the publisher identification information and the verification key by using a secure channel that is preliminarily established with the verification key management server, and the second circuitry of the verification key management server is configured to transmit, the verification key of the latest version to the signature verification server, by using a secure channel that is preliminarily established with the signature verification server. 3. The signature verification system according to claim 1 , wherein the second circuitry of the verification key management server is further configured to acquire, upon determining the verification key of the latest version is not registered in the storage, a verification key located directly under a root domain associated with the publisher corresponding to the publisher identification information, and register, in the storage, the acquired verification key associated with the publisher identification information and information that enables a version of the acquired verification key to be identified. 4. A verification key management apparatus to be electrically coupled, via a communication network, to a signature verification server for verifying a signature of in a bid request, the verification key management apparatus comprising: a storage; and circuitry electrically coupled to the storage, the circuitry being configured to receive, publisher identification information of the publisher and a verification key of the bid request, wherein the bid request describes a request by the publisher for receiving a bid on a region for placing a content, resister, in the storage, the publisher identification information and the verification key, the publisher identification information being for identifying the publisher of the bid request, the verification key being a part of an encryption key pair of the bid request, and the verification key being used to verify the signature of the publisher, and the publisher identification information and the verification key corresponding to a version of the verification key, receive the publisher identification information of the publisher and a version of the verification key, determine, in response to receiving the publisher identification information and the verification key, whether a verification key of a latest version, corresponding to the received publisher identification information and version, is registered in the storage unit, and transmit the verification key of the latest version to the signature verification server, upon determining that the verification key of the latest version is registered in the storage. 5. A verification key management method for execution by a computer to be electrically coupled, via a communication network, to a signature verification server that verifies a signature of a bid request, the verification key management method comprising: receiving publisher identification information of the publisher and a verification key of the bid request, wherein the bid request describes a request by the publisher for receiving a bid on a region for placing a content; registering, in a storage, the publisher identification information and the verification key, the publisher identification information being for identifying the publisher of the bid request, the verification key being a part of an encryption key pair of the bid request, the verification key being used to verify the signature of the publisher, and the received publisher identification information and verification key corresponding to a version of the received verification key; receiving, from the signature verification server, the publisher identification information of the publisher and an identifier of the verification key of the bid request; determining, in response to receiving the publisher identification information and the version of the verification key, whether the received publisher identification information corresponds to the registered publisher identification information in the storage and whether the received version of the verification key of the bid request corresponds the latest version of the registered verification key in the storage; and transmitting, upon determining that that the verification key of the latest version is registered in the storage, the verification key of the latest version to the signature verification server. 6. A non-transitory recording medium storing program that causes a computer to execute the verification key management method according to claim 5 .