Systems and methods for setting and resetting a password
First Claim
1. A method for resetting a user password on a computer system, comprising:
- retrieving a private key from a removable computer-readable medium;
locating an encrypted user password encrypted with a public key that corresponds to the private key;
attempting to decrypt the encrypted user password with the private key;
allowing a user password to be reset if decryption is successful; and
wherein the encrypted user password is the user password that specified by the user during a most recent password change operation.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for recovering from a lost password are described. A password reset disk is created by generating a key pair consisting of a private key and a corresponding public key. The private key is stored on a removable computer-readable medium so that it can be removed and securely stored remote from the computer system on which it was created. The public key is stored on the computer system and used to maintain an up-to-date encrypted copy of the current password. This encrypted copy is stored on the computer system. If, at a later time, the user forgets a user password, the user may insert the password reset disk into the computer system. The private key is retrieved from the password reset disk and the encrypted password is decrypted using the private key. If the decryption is successful, the user is allowed to set a new password. The password reset disk is effective even if the user password has been changed since the creation of the password reset disk. In this way, a user does not have to contact customer service to recover from a forgotten password. The user may also create the password reset disk when there is no password set. When a password is set, the password is encrypted with the public key and stored.
127 Citations
38 Claims
-
1. A method for resetting a user password on a computer system, comprising:
-
retrieving a private key from a removable computer-readable medium;
locating an encrypted user password encrypted with a public key that corresponds to the private key;
attempting to decrypt the encrypted user password with the private key;
allowing a user password to be reset if decryption is successful; and
wherein the encrypted user password is the user password that specified by the user during a most recent password change operation. - View Dependent Claims (2, 3, 4)
-
-
5. A computer system, comprising:
-
a password module configured to receive a user password and to control access to the computer system with the user password;
a disk creator configured to generate a public key/private key pair, encrypt the user password with the public key and store the private key on a removable computer-readable medium; and
wherein the removable computer-readable medium can be stored remote from the computer system and subsequently used to retrieve the private key stored therein, decrypt the encrypted user password and, if successful, allow the user password to be reset. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for creating a password reset disk, comprising:
-
generating a key pair having a public key and a corresponding private key;
storing the private key on a removable computer readable medium to create the password reset disk;
creating a password file that contains the public key and a user password encrypted with the public key; and
wherein the password reset disk can be stored remote from the password file, and a lost user password can subsequently be replaced by retrieving the private key from the password reset disk and using the private key with the contents of the password file to authorize a user to reset the user password. - View Dependent Claims (14, 15, 16)
-
-
17. A system, comprising:
-
a password file that contains a public key and an encrypted user password that is created by encrypting a user password with the public key; and
a password reset module configured to;
retrieve a private key from a removable computer-readable medium, the private key corresponding to the public key;
attempt to decrypt the encrypted user password with the private key;
allow the user password to be replaced with a new user password if the attempt to decrypt the encrypted user password is successful. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25)
-
-
26. A removable computer-readable medium, comprising:
-
a casing designed to fit into a removable drive; and
a computer-readable medium contained within the casing in such a way so that the computer-readable medium may be read by a disk reading device in the disk drive, the computer-readable medium containing a private key;
wherein;
the private key corresponds with a public key which has been used to create an encrypted user password on a computer system; and
a user password on the computer system can be reset by successfully decrypting the encrypted user password with the private key. - View Dependent Claims (27)
-
-
28. A removable computer-readable medium assembly, comprising:
-
a casing that is removably insertable into a computer drive; and
a computer-readable medium contained within the casing in such a way so that the computer-readable medium may be read by a reading device in the computer drive, the computer-readable medium containing a private key; and
wherein;
the private key corresponds with a public key which has been used to create an encrypted user password on a computer system; and
a user password on the computer system can be set or reset by successfully decrypting the encrypted user password with the private key. - View Dependent Claims (29, 30)
-
-
31. One or more computer-readable media containing computer-executable instructions that, when executed on a computer, performs the following steps:
-
generating a public key/private key pair;
storing the private key on a removable computer-readable medium;
encrypting a user password with the public key to create an encrypted user password; and
wherein a computer system requires the user password to access the computer system except when the private key is retrievable from the removable computer-readable medium, in which case the computer system may be accessed to reset the user password if the private key successfully decrypts the encrypted user password. - View Dependent Claims (32, 33, 34)
-
-
35. One or more computer-readable media containing computer-executable instructions that, when executed on a computer, perform the following steps:
-
retrieving a private key from a removable computer-readable medium;
locating an encrypted user password that is a user password that has been encrypted with a public key that corresponds to the private key;
attempting to decrypt the encrypted user password with the private key; and
if the attempted decryption is successful, allowing a current user password to be reset with a new user password that allows access to a computer system. - View Dependent Claims (36, 37, 38)
-
Specification