Systems and methods for automatically generating passwords that comply with password restrictions

US 10,331,879 B1
Filed: 09/14/2015
Issued: 06/25/2019
Est. Priority Date: 09/14/2015
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for automatically generating passwords that comply with password restrictions, at least a portion of the method being performed by a computing device comprising at least one processor, the method comprising:

maintaining, by the computing device, a database that stores current password-creation criteria for a plurality of websites by;

using a web crawler to automatically detect the current password-creation criteria for each website in the plurality of websites; and

for websites where the current password-creation criteria are not readily available, deducing the current password-creation criteria based on at least one failed attempt to create a new password by;

identifying, by the computing device, the at least one failed attempt to create the new password on at least one website in the plurality of websites; and

deducing, based on the at least one failed attempt to create the new password, at least one current password-creation criterion for the at least one website;

determining that a user is accessing a website that requests creation of a password;

automatically determining a set of password complexity rules for the website by querying the database that stores the current password-creation criteria;

using the set of password complexity rules to automatically generate the password for the website to ensure the password complies with the current password-creation criteria for the website; and

providing the password for use, by the user, in the website that requested creation of the password.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computer-implemented method for automatically generating passwords that comply with password restrictions may include (1) maintaining a database that stores password criteria for a plurality of websites, (2) determining that a user is accessing a website that requests creation of a password, (3) determining a set of password complexity rules for the website by querying the database that stores the password criteria, (4) using the set of password complexity rules to automatically generate the password for the website such that the password complies with the password criteria for the website, and (5) providing the password for use in the website that requested creation of the password. Various other methods, systems, and computer-readable media are also disclosed.

Citations

17 Claims

1. A computer-implemented method for automatically generating passwords that comply with password restrictions, at least a portion of the method being performed by a computing device comprising at least one processor, the method comprising:
- maintaining, by the computing device, a database that stores current password-creation criteria for a plurality of websites by;
  
  using a web crawler to automatically detect the current password-creation criteria for each website in the plurality of websites; and
  
  for websites where the current password-creation criteria are not readily available, deducing the current password-creation criteria based on at least one failed attempt to create a new password by;
  
  identifying, by the computing device, the at least one failed attempt to create the new password on at least one website in the plurality of websites; and
  
  deducing, based on the at least one failed attempt to create the new password, at least one current password-creation criterion for the at least one website;
  
  determining that a user is accessing a website that requests creation of a password;
  
  automatically determining a set of password complexity rules for the website by querying the database that stores the current password-creation criteria;
  
  using the set of password complexity rules to automatically generate the password for the website to ensure the password complies with the current password-creation criteria for the website; and
  
  providing the password for use, by the user, in the website that requested creation of the password.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein the web crawler validates and collects information on the plurality of websites.
  - 3. The method of claim 1, wherein using the web crawler to automatically detect the current password-creation criteria for each website in the plurality of websites further comprises:
    - detecting password complexity text; and
      
      parsing the password complexity text to transform the password complexity text into the current password-creation criteria.
  - 4. The method of claim 1, wherein identifying the at least one failed attempt to create the new password further comprises at least one of:
    - detecting a failed user attempt to create the new password; and
      
      detecting a failed web crawler attempt to create the new password.
  - 5. The method of claim 1, wherein maintaining the database that stores the current password-creation criteria further comprises:
    - determining that the password provided for use in the website was rejected; and
      
      updating the current password-creation criteria for the website based on determining that the password provided for use in the website was rejected.
  - 6. The method of claim 5, wherein updating the current password-creation criteria for the website further comprises at least one of:
    - using a web crawler to automatically detect changes to the current password-creation criteria; and
      
      deducing, based on the rejected password, at least one changed password-creation criterion for the website.
  - 7. The method of claim 1, wherein using the set of password complexity rules to automatically generate the password for the website further comprises:
    - presenting a list of password preferences to the user that complies with the current password-creation criteria for the website;
      
      receiving, from the user, a selection of one or more password preferences; and
      
      creating the password based on the selection of one or more password preferences.

8. A system for automatically generating passwords that comply with password restrictions, the system comprising:
- a memory configured to store computer-readable instructions;
  
  a maintenance module, stored in the memory, that maintains, by a computing device, a database that stores current password-creation criteria for a plurality of websites by;
  
  using a web crawler to automatically detect the current password-creation criteria for each website in the plurality of websites; and
  
  for websites where the current password-creation criteria are not readily available, deducing the current password-creation criteria based on at least one failed attempt to create a new password by;
  
  identifying, by the computing device, the at least one failed attempt to create the new password on at least one website in the plurality of websites; and
  
  deducing, based on the at least one failed attempt to create the new password, at least one current password-creation criterion for the at least one website;
  
  an access module, stored in the memory, that determines that a user is accessing a website that requests creation of a password;
  
  a determination module, stored in the memory, that automatically determines a set of password complexity rules for the website by querying the database that stores the current password-creation criteria;
  
  a generation module, stored in the memory, that uses the set of password complexity rules to automatically generate the password for the website to ensure the password complies with the current password-creation criteria for the website;
  
  a provision module, stored in the memory, that provides the password for use, by the user, in the website that requested creation of the password; and
  
  at least one processor that executes the maintenance module, the access module, the determination module, the generation module, and the provision module.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The system of claim 8, wherein the web crawler validates and collects information on the plurality of websites.
  - 10. The system of claim 8, wherein using the web crawler to automatically detect the current password-creation criteria for each website in the plurality of websites further comprises:
    - detecting password complexity text; and
      
      parsing the password complexity text to transform the password complexity text into the current password-creation criteria.
  - 11. The system of claim 8, wherein identifying the at least one failed attempt to create the new password further comprises at least one of:
    - detecting a failed user attempt to create the new password; and
      
      detecting a failed web crawler attempt to create the new password.
  - 12. The system of claim 8, wherein the maintenance module maintains the database that stores the current password-creation criteria by:
    - determining that the password provided for use in the website was rejected; and
      
      updating the current password-creation criteria for the website based on determining that the password provided for use in the website was rejected.
  - 13. The system of claim 12, wherein updating the current password-creation criteria for the website further comprises at least one of:
    - using a web crawler to automatically detect changes to the current password-creation criteria; and
      
      deducing, based on the rejected password, at least one changed password-creation criterion for the website.
  - 14. The system of claim 8, wherein the generation module uses the set of password complexity rules to automatically generate the password for the website by:
    - presenting a list of password preferences to the user that complies with the current password-creation criteria for the website;
      
      receiving, from the user, a selection of one or more password preferences; and
      
      creating the password based on the selection of one or more password preferences.

15. A non-transitory computer-readable medium comprising one or more computer-readable instructions that, when executed by at least one processor of a computing device, cause the computing device to:
- maintain, by the computing device, a database that stores current password-creation criteria for a plurality of websites by;
  
  using a web crawler to automatically detect the current password-creation criteria for each website in the plurality of websites; and
  
  for websites where the current password-creation criteria are not readily available, deducing the current password-creation criteria based on at least one failed attempt to create a new password by;
  
  identifying, by the computing device, the at least one failed attempt to create the new password on at least one website in the plurality of websites; and
  
  deducing, based on the at least one failed attempt to create the new password, at least one current password-creation criterion for the at least one website;
  
  determine that a user is accessing a website that requests creation of a password;
  
  automatically determine a set of password complexity rules for the website by querying the database that stores the current password-creation criteria;
  
  use the set of password complexity rules to automatically generate the password for the website to ensure the password complies with the current password-creation criteria for the website; and
  
  provide the password for use, by the user, in the website that requested creation of the password.
- View Dependent Claims (16, 17)
- - 16. The non-transitory computer-readable medium of claim 15, wherein the web crawler validates and collects information on the plurality of websites.
  - 17. The non-transitory computer-readable medium of claim 15, wherein the one or more computer-readable instructions cause the computing device to use the web crawler to automatically detect the current password-creation criteria for each website in the plurality of websites by:
    - detecting password complexity text; and
      
      parsing the password complexity text to transform the password complexity text into the current password-creation criteria.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Gen Digital Inc.
Original Assignee
Symantec Corporation (NortonLifeLock Inc.)
Inventors
Jiang, Kevin, Sokolov, Ilya
Primary Examiner(s)
Pham, Luu T
Assistant Examiner(s)
Cohen, Harvey I

Application Number

US14/853,029
Time in Patent Office

1,380 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/46 by designing passwords or c...

H04L 63/083 using passwords cryptograph...

Systems and methods for automatically generating passwords that comply with password restrictions

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for automatically generating passwords that comply with password restrictions

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links