Information security – Access control or authentication – Network
Reexamination Certificate
2007-03-20
2007-03-20
Sheikh, Ayaz (Department: 2131)
Information security
Access control or authentication
Network
C380S284000, C713S171000, C713S177000
Reexamination Certificate
active
09998484
ABSTRACT:
A method for providing security in password-based access to computer networks, the network including a server and a remote user, includes: signing a phrase by a security chip of the server using an encryption key; associating the signed phrase with the remote user; signing the phrase with an encryption key obtained by the security chip when a request for access to the computer network is received from the remote user; comparing the phrase signed with the obtained encryption key with the signed phrase associated with the remote user; and granting access to the remote user if the phrase signed with the obtained encryption key is the same as the stored signed phrase associated with the remote user. The use of the encryption key protects against “dictionary attacks”. Use of the security chip protects against offline attacks. These provide greater security for the computer network.
REFERENCES:
patent: 4879747 (1989-11-01), Leighton et al.
patent: 4995081 (1991-02-01), Leighton et al.
patent: 5440635 (1995-08-01), Bellovin et al.
patent: 5481612 (1996-01-01), Campana et al.
patent: 5694471 (1997-12-01), Chen et al.
patent: 5719941 (1998-02-01), Swift et al.
patent: 5774650 (1998-06-01), Chapman et al.
patent: 5825300 (1998-10-01), Bathrick et al.
patent: 5884312 (1999-03-01), Dustan et al.
patent: 6044155 (2000-03-01), Thomlinson et al.
patent: 6061799 (2000-05-01), Eldridge et al.
patent: 6064736 (2000-05-01), Davis et al.
patent: 6081893 (2000-06-01), Grawrock et al.
patent: 6094721 (2000-07-01), Eldridge et al.
patent: 6704868 (2004-03-01), Challener et al.
patent: 6725382 (2004-04-01), Thompson et al.
patent: 6898577 (2005-05-01), Johnson
patent: 2002/0083332 (2002-06-01), Grawrock
patent: 2003/0061494 (2003-03-01), Girard et al.
patent: 2003/0074566 (2003-04-01), Hypponen
TCPA PC Specific Implementation Specification. Sep. 9, 2001. Version 1.00. p. 1-70.
Challener David Carroll
Goodman Steven Dale
LaForgia Christian
Lenovo ( Singapore) Pte. Ltd.
Sawyer Law Group LLP
Sheikh Ayaz
LandOfFree
Method of creating password list for remote authentication... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method of creating password list for remote authentication..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method of creating password list for remote authentication... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3794900