Secure login credentials for substantially anonymous users

US 20060225130A1
Filed: 03/31/2005
Published: 10/05/2006
Est. Priority Date: 03/31/2005
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

establishing a first connection with a server;

receiving over the first connection a login credential for the server, generated by the server without the use of any information identifying a computer user; and

establishing a second secure connection with the server using a secure protocol and the login credential provided by the server.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and apparatus for secure communications. The techniques feature receiving over the first connection a login credential for the server, generated by the server without the use of any information identifying a computer user. The techniques further feature establishing a second secure connection with the server using a secure protocol and the login credential provided by the server.

Citations

26 Claims

1. A method comprising:
- establishing a first connection with a server;
  
  receiving over the first connection a login credential for the server, generated by the server without the use of any information identifying a computer user; and
  
  establishing a second secure connection with the server using a secure protocol and the login credential provided by the server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, wherein the login credential comprises a randomly generated username and a randomly generated password.
  - 3. The method of claim 1, wherein the login credential is assigned a set expiration time.
  - 4. The method of claim 3, wherein the second secure connection is terminated at the expiration time.
  - 5. The method of claim 3, wherein the login credential cannot be used to establish a connection after the expiration time.
  - 6. The method of claim 3, wherein the expiration time is contained in the login credential and protected by a digital signature of the server.
  - 7. The method of claim 1, wherein the login credential can only be used a predetermined number of times.
  - 8. The method of claim 7, wherein the number of times is contained in the login credential.
  - 9. The method of claim 8, wherein the number of times is protected by a digital signature of the server.
  - 10. The method of claim 1, wherein the login credential is purchased.
  - 11. The method of claim 1, wherein the first connection is a secure connection.
  - 12. The method of claim 11, wherein the secure connection is established using a transport layer security (TLS) or secure sockets layer (SSL) tunnel.
  - 13. The method of claim 1, wherein the server is a virtual private network (VPN) server.
  - 14. The method of claim 13, wherein the VPN server protocol is Point-to-Point Tunneling Protocol (PPTP).

15. A method comprising:
- receiving a first request from a client to establish a first secure connection with the client;
  
  establishing the first secure connection with the client;
  
  transmitting to the client over the first secure connection a login credential, generated without reference to any client identifying information;
  
  receiving a second request from the client to establish a second secure connection with the client; and
  
  establishing a second secure connection with the client.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The method of claim 15, wherein the first secure connection is established using a transport layer security (TLS) tunnel or a secure sockets layer (SSL) tunnel.
  - 17. The method of claim 15, wherein the second request includes the login credential.
  - 18. The method of claim 15, wherein the second request is encrypted using an encryption key derived from the login credential.
  - 19. The method of claim 15, wherein the login credential comprises a randomly generated username and a randomly generated password.
  - 20. The method of claim 15, wherein the login credential is assigned a set expiration time.
  - 21. The method of claim 15, further comprising verifying a purchase of the login credential.

22. A system comprising:
- means for establishing a first connection with a server;
  
  means for receiving over the first connection a login credential for the server, generated by the server without the use of any information identifying a computer user; and
  
  means for establishing a second secure connection with the server using a secure protocol and the login credential provided by the server.
- View Dependent Claims (23, 24)
- - 23. The system of claim 22, wherein the login credential comprises a randomly generated username and a randomly generated password.
  - 24. The method of claim 22, wherein the server is a virtual private network (VPN) server.

25. A method comprising:
- receiving in a user computer a certificate from a virtual private network (VPN) server;
  
  establishing a first secure connection with the VPN server using a Transport Layer Security (TLS) protocol based on the certificate provided by the VPN server;
  
  receiving over the first secure connection from the VPN server a username and password to login to the VPN server, the username and password having been generated by the VPN server and without any identifying information provided to the VPN server;
  
  calculating a secret encryption key based on the username and password;
  
  establishing a second secure connection with the VPN server using a Point-to-Point Tunneling Protocol (PPTP) tunnel based on the username and password and the secret encryption key; and
  
  logging in to the VPN server over the second secure connection using the username and password.

26. A method comprising:
- establishing a first secure connection with a user computer using a Transport Layer Security (TLS) protocol;
  
  sending over the first secure connection to the user computer a username and password, without use of any identifying information identifying a computer user;
  
  receiving a login request containing the username and password from the user; and
  
  establishing a second secure connection with the user using a Point-to-Point Tunneling Protocol (PPTP) tunnel based on the username and password.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Google LLC (Alphabet Inc.)
Original Assignee
Google Inc. (Alphabet Inc.)
Inventors
Chen, Kai, Shen, Shioupyn

Granted Patent

US 7,661,128 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/5
CPC Class Codes

H04L 63/0407 wherein the identity of one...

H04L 63/083 using passwords cryptograph...

Secure login credentials for substantially anonymous users

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Secure login credentials for substantially anonymous users

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links