Password management
First Claim
1. A method of managing a user'"'"'s passwords for a plurality of resources using a password registry associated with said user, comprising:
- (i) encrypting an unencrypted user-specified password at a process associated with said each resource;
(ii) receiving an encrypted password from said process associated with said each resource; and
(iii) storing said encrypted password in said password registry, such that said unencrypted user-specified password is unknown to said password registry.
1 Assignment
0 Petitions
Accused Products
Abstract
A password management solution which provides a user with convenient access to multiple resources (e.g. systems and services), and also provides the flexibility to establish varying password security requirements for each resource is disclosed. In an embodiment, there is provided a password registry for registering resources and securely storing user ID and encrypted password information. An unencrypted user-provided password may be encrypted by a process associated with each resource, using an encryption algorithm specific to that resource, before storage of the encrypted password in the password registry. An encrypted password retrieved from the password registry may be decrypted by a process associated with each resource using a decryption algorithm specific to that resource.
-
Citations
25 Claims
-
1. A method of managing a user'"'"'s passwords for a plurality of resources using a password registry associated with said user, comprising:
-
(i) encrypting an unencrypted user-specified password at a process associated with said each resource;
(ii) receiving an encrypted password from said process associated with said each resource; and
(iii) storing said encrypted password in said password registry, such that said unencrypted user-specified password is unknown to said password registry. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of managing a user'"'"'s passwords for a plurality of password protected resources accessed from a workstation over a network, comprising:
-
at a workstation process associated with a network accessed password protected resource;
receiving a user selected password;
encrypting said user selected password as an encrypted password; and
storing said encrypted password in a password registry. - View Dependent Claims (10, 11, 12)
-
-
13. A computer readable medium having computer readable program code embedded in the medium for managing a user'"'"'s passwords for a plurality of resources accessed from a workstation over a network, the computer readable program code including:
-
code for establishing a process at a workstation, said process acting as a front-end for a network accessed resource;
code for enabling said process to receive a user-specified password;
code for enabling said process to encrypt said user-specified password as an encrypted password and output said encrypted password, in association with identifying information, to a password registry; and
code for enabling said process to receive a request from a workstation user to access said resource and to, in response, retrieve said encrypted password from said password registry using said identifying information. - View Dependent Claims (14)
-
-
15. A password registry for managing a user'"'"'s passwords for a plurality of resources, comprising:
-
an input for receiving an unencrypted user-specified password for one of said resources;
an output for transmitting said unencrypted user-specified password to a process associated with said one of said resources for encryption at said process;
an input for receiving said encrypted password from said process; and
an output to storage for storing said encrypted password. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
-
22. A system for managing a user'"'"'s passwords for a plurality of password protected resources accessed from a workstation over a network, comprising:
at a workstation process associated with a network accessed password protected resource;
means for receiving a user selected password;
means for encrypting said user selected password as an encrypted password; and
means for storing said encrypted password in a password registry. - View Dependent Claims (23, 24, 25)
Specification