Generation of randomized passwords for one-time usage

US 10,282,526 B2
Filed: 12/09/2015
Issued: 05/07/2019
Est. Priority Date: 12/09/2015
Status: Active Grant

First Claim

Patent Images

1. An electronic device configured for password protection, said electronic device comprising:

a processor; and

a memory communicatively coupled to the processor;

wherein;

said memory is configured to store a personal data character string (PDCS) and an associated description of the PDCS, wherein the characters of the PDCS represent personal data associated with an authorized user of the electronic device; and

said processor is configured to;

select at random, a subset of characters from the characters of the PDCS, the subset comprising one or more characters of the PDCS;

generate a one-time password comprising a combination of the one or more selected characters of the PDCS;

generate a prompt, via a speaker, configured to request the authorized user to provide the one-time password, wherein the prompt comprises an ordinal placement corresponding to each of the one or more selected characters of the PDCS coupled with the associated description of the PDCS;

receive an input, via a microphone, corresponding to the authorized user having provided the one-time password; and

provide user access in response to the receipt of the input corresponding to the authorized user having provided the one-time password.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An electronic device dynamically generates a password for one-time only usage. The one-time password is constructed by placing, in a random sequential order: (i) several randomly chosen digits and (ii) several digits, which are randomly selected from personal identification numbers, which were previously provided by an authorized user. The current user of the device is presented with a natural-language password hint, which describes the sequence of digits in the password. Only the authorized user knows the personal identification numbers; and so is able to construct, on-the-fly, the one-time password, and present that password to the device. The password hint may be presented aloud, in audio form, and the password may be entered into the device via speech. If someone nearby hears the hint and/or the password, they cannot use it at a later time to gain device control or data access, since the password is only valid the one time.

454 Citations

21 Claims

1. An electronic device configured for password protection, said electronic device comprising:
- a processor; and
  
  a memory communicatively coupled to the processor;
  
  wherein;
  
  said memory is configured to store a personal data character string (PDCS) and an associated description of the PDCS, wherein the characters of the PDCS represent personal data associated with an authorized user of the electronic device; and
  
  said processor is configured to;
  
  select at random, a subset of characters from the characters of the PDCS, the subset comprising one or more characters of the PDCS;
  
  generate a one-time password comprising a combination of the one or more selected characters of the PDCS;
  
  generate a prompt, via a speaker, configured to request the authorized user to provide the one-time password, wherein the prompt comprises an ordinal placement corresponding to each of the one or more selected characters of the PDCS coupled with the associated description of the PDCS;
  
  receive an input, via a microphone, corresponding to the authorized user having provided the one-time password; and
  
  provide user access in response to the receipt of the input corresponding to the authorized user having provided the one-time password.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The electronic device of claim 1, wherein the processor is further configured to generate the password by combining the one or more selected characters of the PDCS in a random sequential order.
  - 3. The electronic device of claim 1, wherein the processor is further configured to:
    - generate one or more additional characters; and
      
      generate the one-time password as a combination of;
      
      the one or more selected characters of the PDCS; and
      
      the one or more additional characters.
  - 4. The electronic device of claim 1 further comprising a user interface which is communicatively coupled to the processor, wherein said user interface is configured to:
    - present a data prompt comprising a data category of said PDCS; and
      
      to receive a data value responsive to the data prompt, wherein;
      
      said received data value is stored in the memory as the PDCS associated with the data category.
  - 5. The electronic device of claim 4, wherein said user interface comprises at least one of:
    - an audio user interface; and
      
      a voice reception interface.
  - 6. The electronic device of claim 4, wherein the data prompt comprises a data category for a data value which is distinctively associated with the authorized user.
  - 7. The electronic device of claim 6, wherein the generated one-time password consists of one or more digits selected from among a plurality of digits of the stored PDCS.
  - 8. The electronic device of claim 1, wherein the processor is further configured to generate a description of said generated one-time password, said description comprising:
    - (a) a data category of the personal data of the PDCS;
      
      (b) a description of any additional characters of said generated one-time password; and
      
      (c) a description of an ordering, within the generated one-time password, of the one or more selected characters the additional characters.

9. A computer-readable, non-transitory storage medium storing instructions that, when executed by a processor of an electronic device, causes the processor to execute a method for password access, the method comprising:
- storing in a memory of the electronic device a personal data character string (PDCS) and an associated description of the PDCS, wherein the characters of the PDCS represent personal data associated with an authorized user of the electronic device;
  
  selecting at random, via the processor, a subset of characters from the characters of the PDCS, the subset comprising one or more characters of the PDCS; and
  
  generating, via the processor, a one-time password comprising a combination of the one or more selected characters of the PDCS;
  
  generating, via the processor, a prompt, on a speaker, configured to request the authorized user to provide the one-time password, wherein the prompt comprises an ordinal placement corresponding to each of the one or more selected characters of the PDCS coupled with the associated description of the PDCS; and
  
  receiving, via the processor, an input, on a microphone, corresponding to the authorized user having provided the one-time password; and
  
  provide user access in response to the receiving of the input corresponding to the authorized user having provided the one-time password.
- View Dependent Claims (10, 11, 12, 13, 14, 15)
- - 10. The computer-readable, non-transitory storage medium of claim 9, wherein the method further comprises generating the one-time password by combining the one or more selected characters of the PDCS in a random sequential order.
  - 11. The computer-readable, non-transitory storage medium of claim 9, wherein the method further comprises:
    - generating via the processor one or more additional characters; and
      
      generating via the processor the one-time password as a combination of;
      
      the one or more selected characters of the PDCS; and
      
      the one or more additional characters.
  - 12. The computer-readable, non-transitory storage medium of claim 9, wherein the method further comprises:
    - presenting, via a user interface of the electronic device, a data prompt comprising a data category of said PDCS; and
      
      receiving, via the user interface of the electronic device, a data value responsive to the data prompt, wherein;
      
      said received data value is stored in the memory as the PDCS associated with the data category.
  - 13. The computer-readable, non-transitory storage medium of claim 12, wherein the data prompt comprises a data category for a data value which is distinctively associated with the authorized user.
  - 14. The computer-readable, non-transitory storage medium of claim 9, wherein the generated one-time password consists of one or more digits selected from among a plurality of digits of the stored PDCS.
  - 15. The computer-readable, non-transitory storage medium of claim 9, wherein the method further comprises generating a description of said generated one-time password, said description comprising:
    - (a) a data category of the personal data of the PDCS;
      
      (b) an ordinal placement of the one or more selected characters within the PDCS;
      
      (c) a description of any additional characters of said generated one-time password; and
      
      (d) a description of an ordering, within the generated one-time password, of;
      
      the selected characters referred to by (a) and (b), andthe additional characters of (c).

16. In an electronic device comprising a processor and a memory which is communicatively coupled to said processor, a method for password access, the method comprising:
- storing in the memory of the electronic device a personal data character string (PDCS) and an associated description of the PDCS, wherein the characters of the PDCS represent personal data associated with an authorized user;
  
  selecting at random, via the processor of the electronic device, a subset of characters from the characters of the PDCS, the subset comprising one or more characters of the PDCS;
  
  generating, via the processor of the electronic device, a one-time password comprising a combination of the one or more selected characters of the PDCS;
  
  generating, via the processor of the electronic device, a prompt, on a speaker, configured to request the authorized user to provide the one-time password, wherein the prompt comprises an ordinal placement corresponding to each of the one or more selected characters of the PDCS coupled with the associated description of the PDCS; and
  
  receiving, via the processor of the electronic device, an input, on a microphone, corresponding to the authorized user having provided the one-time password; and
  
  providing, via the processor of the electronic device, user access in response to the receiving of the input corresponding to the authorized user having provided the one-time password.
- View Dependent Claims (17, 18, 19, 20, 21)
- - 17. The method of claim 16, further comprising generating the one-time password by combining the one or more selected characters of the PDCS in a sequential order which is randomly determined.
  - 18. The method of claim 16, wherein the ordinal placement corresponding to a selected character comprises the ordinal placement of the selected character in the PDCS, counting from left to right.
  - 19. The method of claim 16, wherein the personal data comprises information being non-unique to the authorized user.
  - 20. The method of claim 16, wherein the personal data comprises a zip code and the associated description of the personal data comprises the words “
    - zip code”
      
      .
  - 21. The method of claim 16, wherein the personal data comprises a name and wherein the associated description of the personal data comprises an identification of the name.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hand Held Products Incorporated (Honeywell International Inc.)
Original Assignee
Hand Held Products Incorporated (Honeywell International Inc.)
Inventors
Nichols, Matthew
Primary Examiner(s)
Najjar, Saleh
Assistant Examiner(s)
Teng, Louis C

Application Number

US14/963,943
Publication Number

US 20170169198A1
Time in Patent Office

1,245 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/31 User authentication

Generation of randomized passwords for one-time usage

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

454 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Generation of randomized passwords for one-time usage

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

454 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links