Cryptography – Particular algorithmic function encoding – Nbs/des algorithm
Patent
1995-10-12
1998-02-10
Cain, David C.
Cryptography
Particular algorithmic function encoding
Nbs/des algorithm
380 28, H04K 100
Patent
active
057177562
ABSTRACT:
An authentication session key is generated on a trusted machine based upon an identifier of its CPU, hardware configuration, and a timestamp. The trusting machine retrieves this same information about the trusted machine, and then generates session locks for the machine which are valid for a predetermined time interval. If the incoming session key matches one of the session locks, and the incoming session key is not on the list of used keys, the session key is appended to a list of keys which will no longer thereafter be valid, and access is then granted, thereby employing single-use keys. Because the locks and keys are also generated during a timestamp, a user may request service from the same machine multiple times by waiting no more than a predetermined time between requests, or front ends to the masquerade protection tools could be written that re-try until successful. Because the keys generated are specific to the hardware characteristics of the trusted machine upon which they are generated, attempts to gain access from an imposter machine will generate unusable session keys.
REFERENCES:
patent: 5136643 (1992-08-01), Fischer
patent: 5313521 (1994-05-01), Torii et al.
patent: 5319710 (1994-06-01), Atalla et al.
patent: 5337357 (1994-08-01), Chou et al.
patent: 5349642 (1994-09-01), Kingdon
patent: 5349643 (1994-09-01), Cox et al.
patent: 5351293 (1994-09-01), Michener et al.
patent: 5351295 (1994-09-01), Perlman et al.
patent: 5371794 (1994-12-01), Diffie et al.
"Kerberos: An Authentication Service for Computer Networks", C. Neuman et al, IEEE Communications Magazine, vol. 32, No. 9, Sep. 1994, ISSN 0163-6804, pp. 33-38.
"The S/Key One-Time Password System", N. M. Haller, ISOC Symposium on Network and Systems Security, Jan. 1, 1994, pp. 151-157.
Cain David C.
Carwell Robert M.
International Business Machines - Corporation
LandOfFree
System and method for providing masquerade protection in a compu does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for providing masquerade protection in a compu, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for providing masquerade protection in a compu will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2084266