SYSTEMS AND METHODS FOR SECURE PASSWORD CHANGE

US 20080288781A1
Filed: 05/18/2007
Published: 11/20/2008
Est. Priority Date: 05/18/2007
Status: Abandoned Application

First Claim

Patent Images

1. A method for changing a user password, said method comprising:

determining at least one password equivalent value;

determining a safe-to-transmit password value;

determining a password change authentication value;

transmitting, from a remote device to a controller, the password change authentication value and the safe-to-transmit password value;

confirming the data integrity of the password change authentication value transmitted from the remote device to the controller; and

storing a new password equivalent value.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods for changing a user password are described. In one embodiment, the method includes determining at least one password equivalent value, determining a safe-to-transmit password value, determining a password change authentication value, transmitting, from a remote device to a controller, the password change authentication value and the safe-to-transmit password value, confirming the data integrity of the password change authentication value sent from the remote device to the controller, and storing a new password equivalent value.

Citations

20 Claims

1. A method for changing a user password, said method comprising:
- determining at least one password equivalent value;
  
  determining a safe-to-transmit password value;
  
  determining a password change authentication value;
  
  transmitting, from a remote device to a controller, the password change authentication value and the safe-to-transmit password value;
  
  confirming the data integrity of the password change authentication value transmitted from the remote device to the controller; and
  
  storing a new password equivalent value.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. A method in accordance with claim 1 wherein determining at least one password equivalent value comprises:
    - using a keyed-hash message authentication code algorithm to combine a user-input current password with a location key, to form a current password equivalent value; and
      
      using a keyed-hash message authentication code algorithm to combine a user-input new password with the location key, to form a new password equivalent value.
  - 3. A method in accordance with claim 2 wherein determining a safe-to-transmit password value comprises performing logical operation to combine the current password equivalent value and the new password equivalent value.
  - 4. A method in accordance with claim 1 wherein determining a password change authentication value comprises using a keyed-hash message authentication code algorithm to combine the at least one password equivalent value with a change key value.
  - 5. A method in accordance with claim 1 wherein confirming the data integrity of the password change authentication value transmitted from the remote device to the controller comprises comparing the password change authentication value, transmitted from the remote device to the controller, with a password change authentication value generated by the controller.
  - 6. A method in accordance with claim 1 wherein storing a new password value comprises:
    - performing a logical operation to combine the safe-to-transmit password value and a password equivalent value, stored by the controller, to recover the new password equivalent value; and
      
      replacing a current password equivalent value, stored by the controller, with the result of the exclusive or operation.

7. A system of access protection for a controller, said system comprising:
- a controller configured to;
  
  transmit a password change operation web page to a user-operated web browser;
  
  determine a password change authentication value;
  
  receive a password change authentication value;
  
  compare the password change authentication value with a password change authentication value transmitted by a user-operated web browser;
  
  determine a new password equivalent value; and
  
  store the new password equivalent value; and
  
  a user-operated web browser configured to;
  
  display a password change operation web page;
  
  determine a current password equivalent value;
  
  determine a new password equivalent value;
  
  determine a safe-to-transmit password value;
  
  determine a password change authentication value; and
  
  transmit the password change authentication value and the safe-to-transmit password value to the controller.
- View Dependent Claims (8, 9, 10, 11, 12, 13)
- - 8. A system for access protection of a controller in accordance with claim 7, the user-operated web browser further configured to determine a current password equivalent value based on a combination of a user-input current password and a location key using a keyed-hash message authentication code algorithm.
  - 9. A system for access protection of a controller in accordance with claim 7, the user-operated web browser further configured to determine a new password equivalent value based on a combination of a user-input new password and a location key using a keyed-hash message authentication code algorithm.
  - 10. A system for access protection of a controller in accordance with claim 7, the user-operated web browser further configured to determine a safe-to-transmit password value based on a logical operation to combine the current password equivalent value and the new password equivalent value.
  - 11. A system for access protection of a controller in accordance with claim 7, the user-operated web browser further configured to determine a password change authentication value based on a combination of the current password equivalent value and a change key using a keyed-hash message authentication code algorithm.
  - 12. A system for access protection of a controller in accordance with claim 7, the controller configured to determine a password change authentication value based on a combination of a password equivalent value stored by the controller, and a change key using a keyed-hash message authentication code algorithm.
  - 13. A system for access protection of a controller in accordance with claim 7, the controller configured to determine the new password equivalent value based on a logical operation to combine the safe-to-transmit password value and a password equivalent value stored by the controller.

14. A method for changing a user password on a controller, said method comprising:
- determining a current password equivalent value;
  
  determining a new password equivalent value;
  
  determining a safe-to-transmit password value;
  
  determining a password change authentication value;
  
  transmitting, from a user-operated web browser to the controller, the password change authentication value and the safe-to-transmit password value;
  
  determining a password change authentication value to be stored by the controller;
  
  comparing the password change authentication value, stored by the controller, and the password change authentication value transmitted by the user-operated web browser to the controller; and
  
  storing the new password equivalent value.
- View Dependent Claims (15, 16, 17, 18, 19, 20)
- - 15. A method in accordance with claim 14 wherein determining a current password equivalent value comprises using a keyed-hash message authentication code algorithm to combine a user-input current password and a location key.
  - 16. A method in accordance with claim 14 wherein determining a new password equivalent value comprises using a keyed-hash message authentication code algorithm to combine a user-input new password and a location key.
  - 17. A method in accordance with claim 14 wherein determining a safe-to-transmit password value comprises performing a logical operation to combine the current password equivalent value and the new password equivalent value.
  - 18. A method in accordance with claim 14 wherein determining a password change authentication value comprises using a keyed-hash message authentication code algorithm to combine the current password equivalent value and a change key.
  - 19. A method in accordance with claim 14 wherein determining a password change authentication to be stored by the controller value comprises using a keyed-hash message authentication code algorithm to combine a password equivalent value and a change key.
  - 20. A method in accordance with claim 14 wherein storing the new password value comprises:
    - performing a logical operation to combine the safe-to-transmit password value and a password equivalent value to recover the new password equivalent value; and
      
      replacing the current password equivalent value with the result of the exclusive or operation.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
General Electric Company
Original Assignee
General Electric Company
Inventors
Kickham, David Patrick, Chandler, Clifton Douglas, Lawson, Richard Lee

Application Number

US11/750,476
Publication Number

US 20080288781A1
Time in Patent Office

Days
Field of Search
US Class Current

713/182
CPC Class Codes

G06F 21/31 User authentication

SYSTEMS AND METHODS FOR SECURE PASSWORD CHANGE

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEMS AND METHODS FOR SECURE PASSWORD CHANGE

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links