Method to Provide Password Security Without Storing Password
Permalink
Bookmark
Share
Twitter
Digg
Reddit
Facebook
Stumbleupon
Del.icio.us| IP.com Number | IPCOM000039794D |
|
|
|---|---|---|---|
| Dated | Aug 1, 1987 UTC | ||
| Size | 1 page(s) (11.0 KB) | ||
| Disclosed by |
|
||
Publication Summary
A method is described to secure access to functions via a user password that is not stored on any media. Passwords that are stored are easy to find. Even encrypted passwords can be broken. The password is not stored on media. The password is long (30-80 characters); blanks are allowed. Therefore, the password may be a sentence, phrase, poem, or words to a song. When the user tries to access secured functions, the program prompts for the password. The password is entered and is "crunched" into a "key." The system then gets the previous system time from media. That time is encrypted with the key. The previous time and encrypted time have been stored on media, but the password itself is not (nor is it kept in memory). If the time encrypted with the just derived key equals that on media, the password is correct.| Country | United States |
|---|---|
| Language | English (United States) |
| Related Person(s) |
(AUTHOR) Dean, MC (AUTHOR) Jones, CK (AUTHOR) Loucks, LK (AUTHOR) Reiswig, R (AUTHOR) Wierwille, RL |
About this Publication
This document was submitted to IP.com's Prior Art Database and this preview is designed to provide you with information regarding the contents of this document by displaying up to the first four pages of the document as scaled page renderings and displaying a limited amount of text which was extracted from the document on the Text Preview Tab.
To find out more on how to obtain the entire document, click the Download tab. There is a charge for downloading some Prior Art Database documents; please examine carefully whether you believe this document fills your needs before purchasing.
For more information about the Prior Art Database, visit the Learn section of this website. Thank you for visiting IP.com's Prior Art Database! You may wish to check out our Global Patent Search website before you leave.
Method to Provide Password Security Without Storing Password
A method is described to secure access to functions via a user password that is not stored on any media. Passwords that are stored are easy to find. Even encrypted passwords can be broken. The password is not stored on media. The password is long (30-80 characters); blanks are allowed. Therefore, the password may be a sentence, phrase, poem, or words to a song. When the user tries to access secured functions, the program prompts for the password. The password is entered and is "crunched" into a "key." The system then gets the previous system time from media. That time is encrypted with the key. The previous time and encrypted time have been stored on media, but the password itself is not (nor is it kept in memory). If the time encrypted with the just derived key equals that on media, the password is correct.
1