Smart card enabled secure computing environment system
First Claim
1. A process for controlling access to a host computer via user specific smart cards, comprising the steps of:
- providing a smart card reader;
locking said host computer from user access;
providing access time definition means on said host computer for defining valid users and access time intervals for each user;
storing said valid users and said access time intervals for each user on said host computer;
detecting that a smart card has been inserted into said smart card reader;
retrieving a smart card password and username from said smart card;
receiving a password entered by a user;
comparing said entered password to said retrieved password;
searching said stored valid users for said username if said entered password matches said retrieved password;
retrieving stored access time intervals associated with said username; and
granting access to the user by unlocking said host computer if the current time is within any of the stored access time intervals.
3 Assignments
0 Petitions
Accused Products
Abstract
A smart card enabled secure computing environment system locks the host computer system from user access and waits for a smart card to be inserted into an attached or co-resident smart card reader. When a smart card is inserted into the smart card reader, the invention asks the user to enter his smart card password which is compared to the password on the smart card. If the two passwords match, the invention looks up the user'"'"'s username in an access file of valid users and finds its associated access times and/or cumulative time limits in the access file. if the current time is within any of the valid access times and the user'"'"'s cumulative usage time is within the specified cumulative time limit, then access is granted and the system is unlocked. The invention periodically checks the current time while the user is using the computer. If a blocked time period is entered or a cumulative time limit is exceeded, the user is logged off the machine and the computer is locked from user access. If at any time the user'"'"'s smart card is removed from the smart card reader the invention will shut down all of the user'"'"'s programs and lock the system.
102 Citations
46 Claims
-
1. A process for controlling access to a host computer via user specific smart cards, comprising the steps of:
-
providing a smart card reader;
locking said host computer from user access;
providing access time definition means on said host computer for defining valid users and access time intervals for each user;
storing said valid users and said access time intervals for each user on said host computer;
detecting that a smart card has been inserted into said smart card reader;
retrieving a smart card password and username from said smart card;
receiving a password entered by a user;
comparing said entered password to said retrieved password;
searching said stored valid users for said username if said entered password matches said retrieved password;
retrieving stored access time intervals associated with said username; and
granting access to the user by unlocking said host computer if the current time is within any of the stored access time intervals. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A process for using low-cost memory cards to log onto a Windows XP host computer connected to a smart card reader, comprising the steps of:
-
detecting that a low-cost memory card has been inserted into said smart card reader;
retrieving a smart card password from said low-cost memory card;
receiving a password entered by a user;
comparing said entered password to said retrieved password; and
retrieving a Windows domain name and password from said low-cost memory card if said entered password matches said retrieved password. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23)
-
-
24. An apparatus for controlling access to a host computer via user specific smart cards, comprising:
-
a smart card reader;
a module for locking said host computer from user access;
access time definition means on said host computer for defining valid users and access time intervals for each user;
a module for storing said valid users and said access time intervals for each user on said host computer;
a module for detecting that a smart card has been inserted into said smart card reader;
a module for retrieving a smart card password and username from said smart card;
a module for receiving a password entered by a user;
a module for comparing said entered password to said retrieved password;
a module for searching said stored valid users for said username if said entered password matches said retrieved password;
a module for retrieving stored access time intervals associated with said username; and
a module for granting access to the user by unlocking said host computer if the current time is within any of the stored access time intervals. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38)
-
-
39. An apparatus for using low-cost memory cards to log onto a Windows XP host computer connected to a smart card reader, comprising:
-
a module for detecting that a low-cost memory card has been inserted into said smart card reader;
a module for retrieving a smart card password from said low-cost memory card;
a module for receiving a password entered by a user;
a module for comparing said entered password to said retrieved password; and
a module for retrieving a Windows domain name and password from said low-cost memory card if said entered password matches said retrieved password. - View Dependent Claims (40, 41, 42, 43, 44, 45, 46)
-
Specification