Graphical passwords for use in a data processing network
First Claim
1. A method of authorizing access to restricted information on a data processing network, comprising:
- responsive to receiving a request for a document, determining whether access to the document is restricted;
responsive to determining that access to the requested document is restricted, providing at least one password document comprising a plurality of icons to a user for selection by the user;
detecting a user'"'"'s selection of one or more icons from the at least one password documents and, based thereon, determining the user'"'"'s authority to access the requested documents.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for authorizing access to networked information using a graphically based password. In one embodiment, access to a restricted document is granted only after the user has demonstrated its authority to access the information by identifying a previously determined sequence of graphical images. If the user identifies the correct images, the user is granted access to the restricted information. In one embodiment, the graphical images may be presented to the user as a sequence of web pages where each page has multiple graphical images (icons). On each page in the sequence, the user selects (such as by clicking) the correct icon. The icon may be implemented as a link to the next web page in the password sequence. As each page is presented, the user clicks the correct icon thereby generating a sequence of accessed web pages. The server then verifies the user as an authorized user by comparing the sequence of web pages visited by the user to a predetermined sequence. In this manner, the password enabling a user to access confidential information comprises a sequence of web pages visited by the user. The graphically based password information may be supplemented with user identification information that is either entered by the user or provided by the user as cookie information. In this embodiment, the server may grant various levels of access based on the combination of the user identification information and the graphically entered password.
-
Citations
21 Claims
-
1. A method of authorizing access to restricted information on a data processing network, comprising:
-
responsive to receiving a request for a document, determining whether access to the document is restricted;
responsive to determining that access to the requested document is restricted, providing at least one password document comprising a plurality of icons to a user for selection by the user;
detecting a user'"'"'s selection of one or more icons from the at least one password documents and, based thereon, determining the user'"'"'s authority to access the requested documents. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer program product comprising a set of computer executable instructions for authorizing access to restricted information on a data processing network, the instruction stored on a computer readable medium, comprising:
-
computer code means for determining whether access to the document is restricted responsive to receiving a request for a document;
computer code means responsive to determining that access to the requested document is restricted for providing at least one password document comprising a plurality of icons to a user for selection by the user;
computer code means for detecting a user'"'"'s selection of one or more icons from the at least one password documents and, based thereon, determining the user'"'"'s authority to access the requested documents. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A data processing system including processor, memory, and input means connected via a bus, the memory containing at least a portion of a computer program product comprising a set of computer executable instructions for authorizing access to restricted information on a data processing network, the instruction stored on a computer readable medium, comprising:
-
computer code means for determining whether access to the document is restricted responsive to receiving a request for a document;
computer code means responsive to determining that access to the requested document is restricted for providing at least one password document comprising a plurality of icons to a user for selection by the user;
computer code means for detecting a user'"'"'s selection of one or more icons from the at least one password documents and, based thereon, determining the user'"'"'s authority to access the requested documents. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification