Cryptography – Particular algorithmic function encoding – Nbs/des algorithm
Patent
1993-09-17
1995-02-28
Gregory, Bernarr E.
Cryptography
Particular algorithmic function encoding
Nbs/des algorithm
380 1, 380 4, 380 25, 380 49, 380 50, H04L 900
Patent
active
053944712
ABSTRACT:
An improved method for password validation comprising the steps of identifying bad passwords having one or more characters; computing a frequency of occurrence of bad password characters; computing a probability of occurrence T of the bad password characters within the bad passwords based upon the computed frequency of occurrence; identifying a proposed password having one or more characters; and comparing the proposed password characters with the probability of occurrence T of the bad password characters. The method further comprises the steps of establishing a validation threshold and validating the proposed password based upon the correspondence between (i) a value, BAp, reflecting the relationship between the probability of occurrence T of bad password characters within bad passwords and the proposed password characters and (ii) an established validation threshold. A Markov model is use to compute the probability of occurrence. The present invention also includes an improved password validation system.
REFERENCES:
patent: 4440976 (1984-04-01), Bocci et al.
patent: 4926475 (1990-05-01), Spiotta et al.
patent: 4974191 (1990-11-01), Amirghodsi et al.
patent: 5199069 (1993-03-01), Barrett et al.
patent: 5307409 (1994-04-01), Driscoll
Kohl, John et al., "The Kerberos.TM. Network Authentication Service" (V5), Internet-Draft, Sep. 1, 1992, pp. 1-69.
Spafford, Eugene H., "Observing Reusable Password Choices", Jul. 31, 1992, pp. 1-12.
Spafford, Eugene H., "OPUS: Preventing Weak Password Choices", Jun. 1991, pp. 1-14.
Federal Register, vol. 57, No. 174, Tuesday, Sep. 8, 1992, Notices, pp. 40895-40896.
Smid, Miles E. et al., "The DAta Encryption Standard: Past and Future", Proceedings of the IEE, vol. 76, No. 5, May 1988, pp. 550-559.
Nagle, John, "Tell if a Password is `Obvious`", vol. 16, Issue 60, Nov. 10, 1988.
Bellovin, Steven M. et al., "Encrypted Key Exchange: Password-Based Protocols Secure Against Dictionary Attacks", IEEE, 1992, pp. 72-84.
Bishop, Matt, "Proactive Password Checking", pp. 1-9, No date given.
Ganesan, Ravi et al, "Statistical Techniques for Language Recognition: An Empirical Study Using Real and Simulated English", Sep. 28, 1993, pp. 1-48.
Feldmeier, David C. et al., "UNIX Password Security-Ten Years Later", pp. 44-63, no date given.
Ganesan, Ravi et al., "Statistical Techniques for Language Recognition: An Introduction and Guide for Cryptanalysts", Computer Science Technical Report Series, Feb. 1993, pp.1-32. Supplement, Sep. 28, 1993, pp. 49-129.
Davies Christopher I.
Ganesan Ravi
Bell Atlantic Network Services Inc.
Gregory Bernarr E.
LandOfFree
Method and system for proactive password validation does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system for proactive password validation, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system for proactive password validation will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-854217