Method and system for controlling access privileges for trusted network nodes
First Claim
1. A system for controlling access to a node in a secured network group, the system comprising:
- a plurality of mutually trusted nodes forming the secured network group; and
a mechanism for providing loose security within the secured network group while retaining strong security against external access to the secured network group.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method for controlling access to a computer provides for loose security within a local network while retaining strong security against external access to the network. In one embodiment, a user has access to trusted nodes in a secured group within an unmanaged network, without being required to choose, enter and remember a login password. To establish such a secure blank password or one-click logon account for the user on a computer, a strong random password is generated and stored, and the account is designated as a blank password account. If the device is part of a secured network group, the strong random password is replicated to the other trusted nodes. When a user with a blank password account wishes to log in to a computer, the stored strong random password is retrieved and the user is authenticated.
52 Citations
24 Claims
-
1. A system for controlling access to a node in a secured network group, the system comprising:
-
a plurality of mutually trusted nodes forming the secured network group; and
a mechanism for providing loose security within the secured network group while retaining strong security against external access to the secured network group. - View Dependent Claims (2, 3, 4)
-
-
5. A method for providing a user with access to one or more computers, the method comprising:
at a first computer, generating a strong random password for a new account for the user;
designating the new account as a blank password account; and
storing the strong random password. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
16. A method for controlling access of a user to a computer, the method comprising:
-
determining whether an account selected by the user is a blank password account;
if the account is a blank password account, retrieving a stored strong random password associated with the account; and
authenticating the user. - View Dependent Claims (17, 18, 19, 20)
-
-
21. A computer-readable medium having computer-executable instructions for providing a user with access to a computer, the instructions comprising:
-
generating a strong random password for a new account for the user;
designating the new account as a blank password account; and
storing the strong random password. - View Dependent Claims (22, 23)
-
-
24. Computer-readable media having components for implementing a system for controlling access to a node in a secured network group, the system comprising:
-
a database for storing a strong random password associated with a single-click logon account;
a local system security authority;
a security support provider that retrieves the strong random password when a user initiates a login to the single-click logon account;
a security account management service that interacts with the database and the security support provider; and
an authentication engine that interacts with a login user interface component and the local system security authority to regulate the login to the single-click logon account.
-
Specification