Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Central trusted authority provides computer authentication
Reexamination Certificate
2006-01-10
2006-01-10
Vu, Kim (Department: 2134)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Central trusted authority provides computer authentication
C713S161000, C713S169000, C713S170000, C713S184000, C713S152000, C713S152000, C380S274000, C709S206000, C709S246000
Reexamination Certificate
active
06986039
ABSTRACT:
The present invention provides a method, system, and computer program product for synchronizing security credentials of users and/or groups of users between directories, operating system platforms, and/or registries. A user's security credentials at a master registry are to be securely set (or reset). To ensure that the user has the required permission for this operation, the user is first authenticated with a trusted authenticating domain. The authenticating domain may be identified by the user, or the identification of the domain may be obtained from the master registry. The master registry may store an identification of the authenticating domain on a per-user basis, or for groups of users, or for the master registry as a whole. The credentials may be propagated to other registries, in addition to the master. This technique enables synchronizing multiple copies of a user's security credentials without requiring access to a plaintext version thereof, and without forcing the credentials to a new value as part of the synchronization process.
REFERENCES:
patent: 5719941 (1998-02-01), Swift et al.
patent: 5838903 (1998-11-01), Blakely et al.
patent: 5862323 (1999-01-01), Blakley, III et al.
patent: 5867646 (1999-02-01), Benson et al.
patent: 5913025 (1999-06-01), Higley et al.
patent: 5944824 (1999-08-01), He
patent: 6173400 (2001-01-01), Perlman et al.
patent: 6240184 (2001-05-01), Huynh et al.
patent: 6292904 (2001-09-01), Broomhall et al.
patent: 6615258 (2003-09-01), Barry et al.
patent: 6647393 (2003-11-01), Dietterich et al.
patent: 6675161 (2004-01-01), Suchter
IBM Technical Disclosure Bulletin, vol. 38, No. 09 Sep. 1995, “Partial Containment Structure for Inegration of Distributed Computing Environment and Local Registries” pp 535-538.
Leah Robert C.
McGarvey John Ryan
Doubet Marcia L.
International Business Machines - Corporation
Tran Tongoc
Vu Kim
LandOfFree
Technique for synchronizing security credentials using a... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Technique for synchronizing security credentials using a..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Technique for synchronizing security credentials using a... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3541042