Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Reexamination Certificate
2007-06-05
2007-06-05
Vu, Kim (Department: 2135)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
C713S150000, C713S176000, C713S182000, C726S002000, C726S005000, C380S255000
Reexamination Certificate
active
10291281
ABSTRACT:
A secure distributed single-login authentication system comprises a client and a server. The client collects a user name and password from a user and tests that user name and password at a variety of potential authentication servers to check where the login is valid. It combines the password with a time varying salt and a service specific seed in a message digesting hash and generates a first hash value. The client sends the hash value along with the user name and the time varying salt to a currently selected server. The server extracts the user name and looks up an entry under the user name from the selected server's database. If an entry is found, it retrieves the password and performs the same hash function on the combination of the user name, the service specific seed, and the retrieved password to generate a second hash value. Then, it compares two hash values. If these two values match, the user is authenticated. In this way, the system never sufficiently reveals the password to authentication agents that might abuse the information.
REFERENCES:
patent: 5210795 (1993-05-01), Lipmer et al.
patent: 5349642 (1994-09-01), Kingdon
patent: 5581616 (1996-12-01), Crandall
patent: 5633931 (1997-05-01), Wright
patent: 5659616 (1997-08-01), Sudia
patent: 5684951 (1997-11-01), Goldman et al.
patent: 5768373 (1998-06-01), Lobstroh et al.
patent: 5774552 (1998-06-01), Grimmer
patent: 5799088 (1998-08-01), Raike
patent: 5805703 (1998-09-01), Crandall
patent: 5815665 (1998-09-01), Teper et al.
patent: 5841865 (1998-11-01), Sudia
patent: 5841871 (1998-11-01), Pinkas
patent: 5872849 (1999-02-01), Sudia
patent: 5892828 (1999-04-01), Perlman
patent: 5995624 (1999-11-01), Fielder et al.
patent: 6009177 (1999-12-01), Sudia
patent: 6049610 (2000-04-01), Crandall
patent: 6085321 (2000-07-01), Gibbs et al.
patent: 6091835 (2000-07-01), Smithies et al.
patent: 6094659 (2000-07-01), Bhatia
patent: 6094721 (2000-07-01), Eldrisge et al.
patent: 6161181 (2000-12-01), Haynes, III et al.
patent: 6185316 (2001-02-01), Buffam
patent: 6189096 (2001-02-01), Haverty
patent: 6199052 (2001-03-01), Mitty et al.
patent: 6212635 (2001-04-01), Reardon
patent: RE37178 (2001-05-01), Kingdon
patent: 6259789 (2001-07-01), Paone
patent: 6282295 (2001-08-01), Young et al.
patent: 6285760 (2001-09-01), Crandall
patent: 6298383 (2001-10-01), Gutman et al.
patent: 6298445 (2001-10-01), Shostack et al.
patent: 6304915 (2001-10-01), Nguyen et al.
patent: 6307935 (2001-10-01), Crandall et al.
patent: 6421768 (2002-07-01), Puroura
patent: 6662300 (2003-12-01), Peters
patent: 6732101 (2004-05-01), Cook
patent: 6819766 (2004-11-01), Weidong
patent: 6959336 (2005-10-01), Moreh et al.
patent: 6996718 (2006-02-01), Henry et al.
patent: 7024690 (2006-04-01), Young et al.
patent: 2002/0184507 (2002-12-01), Makower et al.
patent: 2003/0131266 (2003-07-01), Best et al.
patent: 2003/0135507 (2003-07-01), Hind et al.
patent: 667 998 (1999-10-01), None
patent: 1 076 279 (2001-02-01), None
patent: 1 081 914 (2001-03-01), None
patent: 1 089 516 (2001-04-01), None
patent: 739 560 (2001-06-01), None
Password Files; T.J. Pope; Dr. Dobb's Journal; Jan. 1996.
Sign on to Streamlined Security; J.R. Vacca; Datamation; Sep. 15, 1994.
Better Login Protocols for Computer Networks; D. de Waleffe, and J.J. Quisquarter; Computer Security an Industrial Cryptography; May 1991.
A Security Architecture for Computational Grids; Ian Foster, Carl Kesselman, Gene Tsudik, and Steven Tuecke.
SESAME V2 Public Key and Authorisation Extensions to Kerberos; P,V. McMahon.
Efficient Kerberized Multicast in a Practical Distributed Setting; Giovanni Di Crescenzo.
A Flexible Distributed Authorization Protocol; Jonathan T. Troslte, and B. Clifford Neuman.
Krypto Knight Authentication and Key Distribution System; Refik Molva, Gene Tsudik, Els Van Herreweghen, and Stefano Zatti; Aug. 24, 1993.
On Selectable Collisionful Hash Functions; S. Bakhtiari, R. Safavi-Naini, and J. Pieprzyk.
RFC 1423—Privacy Enhancement for Internet electronic Mail: Part III: Algorithms, Modes, and Identifiers; D. Balenson; Feb. 1993.
Secure Electronic Payment Systems, Secure Electronic Transactions(SET); Burton Filstrup.
Secure Data Collection With Updates; S. Loureiro, R. Molva, and A. Pannetrat; Electronic Commerce Research; Feb.-Mar. 2001.
Message Digest 5 and the Authentication in IPv6; Wang Gui-Zhu, Li Jin-Sheng, and Hong Pei-Lin; Mini-Micro System; Jan. 2001.
A Study of One-Time Password System Based on Message Digest; Liu Yuyan, and Luo Junzhou; 5thInternational Conference for Young Computer Scientists; 1999.
One-Way Hash Functions; B. Schneier; Dr. Dobb's Journal; Sep. 1991.
The MD4 Message Digest Algorithm; B.S, Kaliski Jr.; Advances in Cryptology; 1991.
America Online Inc.
Glenn Michael A.
Glenn Patent Group
Shaw Yin-Chen
LandOfFree
Simple secure login with multiple-authentication providers does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Simple secure login with multiple-authentication providers, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Simple secure login with multiple-authentication providers will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3874018