Method to Provide Password Security Without Storing Password (01-Aug-1987)

Options

IP.com Prior Art Database Disclosure (Source: IPCOM)

Disclosure Number IPCOM000039794D dated 01-Aug-1987

Added to Prior Art Database on 01-Feb-2005

Disclosed by: IBM (TDB 08-87 p.1068)

Country: United States

Related People

Dean, MC - AUTHOR [+4]

Austin

Disclosure File: 1 pages / 11.0 KB / English (United States)

A method is described to secure access to functions via a user password that is not stored on any media. Passwords that are stored are easy to find. Even encrypted passwords can be broken. The password is not stored on media. The password is long (30-80 characters); blanks are allowed. Therefore, the password may be a sentence, phrase, poem, or words to a song. When the user tries to access secured functions, the program prompts for the password. The password is entered and is "crunched" into a "key." The system then gets the previous system time from media. That time is encrypted with the key. The previous time and encrypted time have been stored on media, but the password itself is not (nor is it kept in memory). If the time encrypted with the just derived key equals that on media, the password is correct.

Options

This text was extracted from a PDF file.

This is the abbreviated version, containing approximately 100% of the total text.

Page 1 of 1

Method to Provide Password Security Without Storing Password

(Source: IPCOM)

(Source: IPCOM)

Critical Path Design on Data Flow Chip - IPCOM000039793D <

Improved Process for Clear Defect Mask Repair - IPCOM000039795D >