System and method for user authentication with enhanced passwords

US 20050273624A1
Filed: 07/21/2005
Published: 12/08/2005
Est. Priority Date: 08/27/2002
Status: Active Grant

First Claim

Patent Images

1. A method for user authentication, the method comprising:

selecting an access code;

selecting a certain pace, rhythm, or tempo in which to enter the access code;

entering the selected access code into a database that stores the access code;

entering the selected certain pace, rhythm, or tempo in which to enter the access code into a database;

receiving an access code from a user, the access code entered according to a certain pace, rhythm, or tempo;

determining whether the entered access code matches a stored access code character sequence and whether the certain pace, rhythm, or tempo at which the access code was entered matches a stored certain pace, rhythm, or tempo for the stored access code;

granting access only if (i) the entered access code matches the stored access code character sequence, and (ii) the certain pace, rhythm, or tempo of the access code as entered by the user matches the stored certain pace, rhythm, or tempo for the stored access code.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for enhancing passwords, access codes, and personal identification numbers by making them pace, rhythm, or tempo sensitive. The password includes a sequence of characters and an associated timing element. To access a restricted device or function a user enters the correct character sequence according to the correct pace, rhythm, or tempo. The entered sequence and timing element are compared with stored values and access is granted only if the entered and stored values match. In an alternative embodiment the stored timing element is set, and periodically altered, by a computer or program without consent from the user and visual, auditory, and/or tactile prompts indicate the correct timing element to the user during the authentication process. The meaning of the prompts are provided to the user in advance.

53 Citations

View as Search Results

21 Claims

1. A method for user authentication, the method comprising:
- selecting an access code;
  
  selecting a certain pace, rhythm, or tempo in which to enter the access code;
  
  entering the selected access code into a database that stores the access code;
  
  entering the selected certain pace, rhythm, or tempo in which to enter the access code into a database;
  
  receiving an access code from a user, the access code entered according to a certain pace, rhythm, or tempo;
  
  determining whether the entered access code matches a stored access code character sequence and whether the certain pace, rhythm, or tempo at which the access code was entered matches a stored certain pace, rhythm, or tempo for the stored access code;
  
  granting access only if (i) the entered access code matches the stored access code character sequence, and (ii) the certain pace, rhythm, or tempo of the access code as entered by the user matches the stored certain pace, rhythm, or tempo for the stored access code.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, further comprising requiring a user to enter a user identification string associated with the stored access code character sequence prior to granting access.
  - 3. The method of claim 1, further comprising providing a user with a visual, auditory, and/or tactile timing aid to assist the user with entering the access code according to the certain pace, rhythm, or tempo.
  - 4. The method of claim 1, wherein the selected certain pace, rhythm, or tempo is entered into the database as the access code is being entered into the database.
  - 5. The method of claim 1, further comprising:
    - requiring a user to enter an identification string associated with the stored access code character sequence prior to granting access; and
      
      providing the user with a visual, auditory, and/or tactile timing aid to assist the user with entering the access code according to the certain pace, rhythm, or tempo.
  - 6. The method of claim 1, wherein the stored certain pace, rhythm, or tempo for the stored access code character sequence is set and can be altered by a computer without consent from a user;
    - further comprising providing prompts from the computer while receiving the access code, wherein the prompts indicate to the user the stored certain pace, rhythm, or tempo for the stored access code character sequence.
  - 7. The method of claim 6, further comprising providing the user with prompt meanings prior to providing prompts.
  - 8. The method of claim 6, wherein the prompts are selected from the group consisting of visual, auditory and tactile prompts.

9. A method for creating a user authentication system, said method comprising:
- selecting an access code;
  
  entering said access code into a database;
  
  selecting a certain pace, rhythm, or tempo for entering the access code; and
  
  entering said certain pace, rhythm, or tempo for entering the access code into a database.
- View Dependent Claims (10)
- - 10. The method of claim 9, wherein said certain pace, rhythm, or tempo for entering the access code and said access code are entered into the database simultaneously.

11. A method of defining a password, comprising:
- setting a password;
  
  setting a pace, rhythm, or tempo by which said password is to be entered;
  
  memorizing said password;
  
  committing to memory said pace, rhythm, or tempo; and
  
  entering said password in said pace, rhythm, or tempo into a computer database.

12. A method for user authentication, said method comprising:
- remembering a password to enter into a database for user authentication;
  
  remembering a certain pace, rhythm, or tempo for entering the password for user authentication;
  
  entering said remembered password in said remembered certain pace, rhythm, or tempo into said database; and
  
  comparing said entered remembered password in said remembered certain pace, rhythm, or tempo to a stored password and a stored certain pace, rhythm, or tempo and providing user authentication if the remembered and stored passwords are the same and the remembered and stored paces, rhythms, or tempos are the same, thereby authenticating a user.

13. A system for user authentication, the system comprising:
- a user, the user comprising
  
  1) a password including a sequence of characters, wherein said password is stored in a memory of the user and
  
  2) a timing element, the timing element defined by predetermined pauses associated with the sequence of characters, wherein said timing element is stored in the memory of the user;
  
  an input device permitting input by the user; and
  
  a computer and a computer memory, wherein the sequence of characters of the password is stored in the computer memory, wherein the timing element is stored in the computer memory, wherein the system is configured to provide user authentication when the user inputs the password sequence of characters with the input device according to the predetermined pauses of the timing element.
- View Dependent Claims (14, 15, 16)
- - 14. The system of claim 13, wherein the user is a human.
  - 15. The system of claim 13, wherein the user is a computer.
  - 16. The system of claim 13, wherein the input device is a keyboard.

17. A system for user authentication, the system comprising:
- a computer and a computer memory;
  
  an input device permitting input by a user;
  
  a user-defined password including a sequence of characters, wherein the sequence of characters of the user-defined password is stored in the computer memory; and
  
  a computer generated timing element, the timing element defined by predetermined pauses associated with the sequence of characters, wherein the system is configured to provide user authentication when the user inputs the password sequence of characters with the input device according to the predetermined pauses of the timing element.
- View Dependent Claims (18, 19, 20, 21)
- - 18. The system of claim 17, further comprising:
    - a ghost character feature, the ghost character feature capable of being locked and unlocked by the user;
      
      the ghost character feature permitting the user to input, during the pauses in the password or access code, additional characters; and
      
      the computer being configured to ignore the additional characters when the ghost character feature is unlocked.
  - 19. The system of claim 17, further configured to selectively grant access to a domain upon entry of the password, wherein the domain comprises a physical location.
  - 20. The system of claim 17, further configured to selectively grant access to a domain upon entry of the password, wherein the domain comprises a software program or file.
  - 21. The system of claim 17, further including a user identification string associated with the password.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
S Aqua Semiconductor LLC (Intellectual Ventures LLC)
Original Assignee
Fastfixnet LLC (Intellectual Ventures LLC)
Inventors
Serpa, Michael Lawrence

Granted Patent

US 7,653,818 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/183
CPC Class Codes

G06F 21/31 User authentication

G06F 21/316 by observing the pattern of...

System and method for user authentication with enhanced passwords

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

53 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for user authentication with enhanced passwords

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

53 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links