Work Files Saved Searches
   My Account                                                  Search:   Quick/Number   Boolean   Advanced   Derwent    Help   


 The Delphion Integrated View
  Buy Now:   Buy PDF- 15pp  PDF  |   File History  |   Other choices   
  Tools:  Citation Link  |  Add to Work File:    
  View:  Expand Details   |  INPADOC   |  Jump to: 
  Go to:  Derwent  
 Email this to a friend  Email this to a friend 
       
Title: US5719941: Method for changing passwords on a remote computer
[ Derwent Title ]

Country: US United States of America

View Images High
Resolution

 Low
 Resolution

 
15 pages

 
Inventor: Swift, Michael M.; Bellevue, WA
Van Dyke, Clifford P.; Bellevue, WA
Misra, Pradyumna Kumar; Issaquah, WA

Assignee: Microsoft Corporation, Redmond, WA
other patents from MICROSOFT CORPORATION (373780) (approx. 3,197)
 News, Profiles, Stocks and More about this company

Published / Filed: 1998-02-17 / 1996-01-12

Application Number: US1996000587886
IPC Code: Advanced: G06F 21/00;
Core: more...
IPC-7: H04L 9/00; H04L 9/32;

ECLA Code: G06F21/00N5A2;

U.S. Class: Current: 713/155; 340/005.54; 340/005.85; 705/072; 713/183; 726/005;
Original: 380/025; 380/004; 380/009; 380/021; 380/023; 380/049; 380/050; 340/825.31; 340/825.34; 395/188.01; 395/491;

Field of Search: 380/004,9,23,25,28,29,49,50,21,44,46 340/825.31,825.34 395/188.01,491

Priority Number:
1996-01-12  US1996000587886

Abstract:     A method for changing an account password stored at a physically remote location is provided. After initiating a password change sequence, a user submits both an old and a new password to its client machine. Thereafter, the client computes two message values to be transmitted to the server. The first message is computed by encrypting at least the new password using a one-way hash of the old password as an encryption key. The second message is computed by encrypting the one-way hash of the old password using a one-way hash of the new clear text password as the encryption key. The server receives both messages and computes a first decrypted value by decrypting the first message using the one-way hash of the old password, previously stored at the server, as the decryption key. The server computes a second decrypted value by decrypting the second message using a one-way hash of the first decrypted value as the decryption key. The server compares the decrypted one-way hashed value, transmitted in encrypted form in the second message, to the pre-stored hashed old password. If the two values are equal, then the server replaces the old password by the new password.

Attorney, Agent or Firm: Leydig, Voit & Mayer, Ltd. ;

Primary / Asst. Examiners: Gregory, Bernarr E.;

INPADOC Legal Status: Show legal status actions

Family: None
First Claim:
Show all 18 claims		 What is claimed is:     1. A method for registering a new password for an account with a server via a client coupled to the server in a network, the server maintaining an accounts database including account identifications and corresponding passwords, the method comprising the steps of:
  • computing, by the client, a first message by encrypting a first data sequence including at least a new clear text password using an authenticating value as an encryption key, a form of the authenticating value being previously stored at the server for verifying the authenticity of a source of the new clear text password;
  • computing, by the client, a second message by encrypting a second data sequence including at least the authenticating value using a one-way hash of the new clear text password as an encryption key;
  • transmitting the first message to the server;
  • transmitting the second message to the server;
  • computing, by the server, the new clear text password from the first message, including at least the sub-step of decrypting the first message using the authenticating value, a form of which is maintained by the server, as a decryption key;
  • computing, by the server, the authenticating value from the second message, including at least the sub-step of decrypting the second message using a one-way hash of the new clear text password obtained from the first message as a decryption key;
  • verifying, by the server, the new password, the verifying step including at least the sub-step of determining that the authenticating value from the second message is the same as a server provided authenticating value that is based upon the form of the authenticating value previously stored at the server; and
  • conditionally registering a form of the new clear text password in the accounts database based upon the results of the verifying step.
    •


Background / Summary: Show background / summary

Drawing Descriptions: Show drawing descriptions

Description: Show description

Forward References: Show 59 U.S. patent(s) that reference this one

       
U.S. References: Go to Result Set: All U.S. references   |  Forward references (59)   |   Backward references (3)   |   Citation Link

Buy
PDF		 Patent  Pub.Date  Inventor Assignee   Title
Buy PDF- 43pp US4786900  1988-11 Karasawa et al.  Casio Computer Co. LTD. Electronic key apparatus
Buy PDF- 17pp US5287519  1994-02 Dayan et al.  International Business Machines Corp. LAN station personal computer system with controlled data access for normal and unauthorized users and method
Buy PDF- 13pp US5475762  1995-12 Morisawa et al.  Kabushiki Kaisha Toshiba Computer with password processing function and password processing method of computer
       
Foreign References: None

Other References:
  • Microsoft Corporation, Microsoft LAN Manager Programmer's Reference: Network API Functions for OS/2, Windows, and DOS, pp. 604-660 (1990).


    • Inquire Regarding Licensing

    Powered by Verity
    Plaques from Patent Awards      Gallery of Obscure PatentsNominate this for the Gallery...

    Thomson Reuters Copyright © 1997-2010 Thomson Reuters 
    Subscriptions  |  Web Seminars  |  Privacy  |  Terms & Conditions  |  Site Map  |  Contact Us  |  Help