System and method for generating and authenticating a computer password
First Claim
1. In a network access device, an apparatus for constructing and transmitting a network password utilized by an authentication device to authenticate the network access device, said apparatus comprising:
- means for receiving from a user, a plurality of predefined characters forming a user password;
a memory for storing a plurality of time intervals in a predefined sequence;
a network password generator comprising;
packet forming means for placing each of the received characters of the user password in different ones of a plurality of data packets; and
timing means for delaying transmission of each data packet by a time interval retrieved from the memory, wherein at a predefined frequency, a next time interval is retrieved from the predefined sequence of time intervals; and
means for transmitting the network password to the authentication device with the data packets separated by the retrieved time interval.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for generating and authenticating a password to protect a computer system from unauthorized access. The characters of the password are placed in data packets by an access device. Prior to sending the packets, the device inserts predefined time intervals between each of the data packets. The value of the time intervals is retrieved from a sequence of time intervals that is shared between the access device and an authentication device. The authentication device determines whether the received set of password characters matches a stored set of password characters, measures the time intervals between the packets, and determines whether the measured time intervals match the predefined time intervals. The authentication device positively authenticates the access device only if both the characters and the time intervals match. Periodically, different time intervals from the sequence are inserted to change the password.
50 Citations
18 Claims
-
1. In a network access device, an apparatus for constructing and transmitting a network password utilized by an authentication device to authenticate the network access device, said apparatus comprising:
-
means for receiving from a user, a plurality of predefined characters forming a user password;
a memory for storing a plurality of time intervals in a predefined sequence;
a network password generator comprising;
packet forming means for placing each of the received characters of the user password in different ones of a plurality of data packets; and
timing means for delaying transmission of each data packet by a time interval retrieved from the memory, wherein at a predefined frequency, a next time interval is retrieved from the predefined sequence of time intervals; and
means for transmitting the network password to the authentication device with the data packets separated by the retrieved time interval. - View Dependent Claims (2, 3)
-
-
4. A method of authenticating a user device, said method comprising the steps of:
-
receiving by an authentication device, a password sent from the user device, said password comprising a plurality of data packets that transport a set of password characters, wherein each data packet is separated from an adjacent data packet by a time interval;
determining by the authentication device, whether the received set of password characters matches a stored set of password characters;
comparing the time interval separating the data packets with a predefined time interval retrieved from a sequence of predefined time intervals, wherein at a predefined frequency, a next time interval is retrieved from the sequence for comparison; and
positively authenticating the user device only if the received set of password characters matches the stored set of password characters, and the time interval separating the data packets matches the retrieved predefined time interval. - View Dependent Claims (5, 6, 7, 8, 9)
-
-
10. A system for protecting a network against unauthorized access, said system comprising:
-
an access device for constructing and transmitting a network password utilized by an authentication server to authenticate the access device, said access device comprising;
means for receiving from a user, a plurality of predefined characters forming a user password;
a lookup table for determining at least one time interval based on information received from the authentication server;
a network password generator comprising;
packet forming means for placing each of the received characters of the user password in different ones of a plurality of data packets; and
timing means for delaying transmission of each data packet by the at least one time interval determined by the lookup table; and
means for transmitting the network password to the authentication server with the data packets separated by the at least one retrieved time interval; and
an authentication server connected to the network for receiving the network password and authenticating the access device, said authentication server comprising;
means for receiving the network password sent from the access device;
means for determining whether the received set of password characters matches a stored set of password characters;
means for comparing the at least one time interval separating the data packets with at least one predefined time interval retrieved from a memory;
means for positively authenticating the user device only if the received set of password characters matches the stored set of password characters, and the at least one time interval separating the data packets matches the at least one retrieved predefined time interval; and
means for sending information regarding the time intervals to the access device, wherein the information is utilized by the access device to determine the at least one time interval to be used for constructing a new network password. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. A method of protecting a computer system, comprising the steps of:
-
creating a password by an access device, said password comprising at least a first password character and a termination indication;
transmitting the password from the access device to an authentication device, wherein the first password character and the termination indication are separated by a time interval retrieved from a stored sequence of time intervals, wherein at a predefined frequency, a next time interval is retrieved from the predefined sequence of time intervals;
determining by the authentication device, whether the received first password character matches a stored password character;
determining by the authentication device, whether the time interval separating the first password character and the termination indication matches a predefined time interval, wherein at a predefined frequency, a next time interval is retrieved from the sequence for comparison; and
positively authenticating the access device only if the received first password character matches a stored password character, and the time interval matches a predefined time interval. - View Dependent Claims (17, 18)
-
Specification