Method and Apparatus for Securely Synchronizing Password Systems
6 Assignments
0 Petitions
Accused Products
Abstract
A centralized password repository (CPR) provides network users with a password portal through which the user can manage password access to domains and applications on the network. A subset of the domains and applications on the network may be required, by design, to maintain a separate password infrastructure. For these systems, the CPR establishes a secure and authenticated communication channel and software on the system interfaces with the password infrastructure to synchronize the password in the system password infrastructure with the password in the CPR. For other systems not required to maintain a separate password infrastructure, the CPR performs password services by responding to requests from those systems seeking to validate user IDs and passwords. The CPR enables an administrator to modify network privileges and enables a user to alter passwords on the network through a single interface.
-
Citations
37 Claims
-
1-17. -17. (canceled)
-
18. A method of securely updating at least one password on a network connected to a plurality of password domains, the method comprising:
-
maintaining a table associating user identifiers with password domains in which the user identifiers are used; receiving from a user a user identifier and password; authenticating the received user identifier and password; receiving from the authenticated user a communication requesting a password change; implementing the requested password change in the table; identifying at least one password domain associated with the authenticated user identifier; and when the user has been authenticated at a level acceptable to the at least one password domain in which the received user identifier is used; establishing an encrypted and authenticated network connection to the identified at least one password domain; and implementing the requested password change on a password database of the at least one identified password domain. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27)
-
-
28. A non-transitory, tangible, processor-readable storage medium having stored thereon instructions for securely updating at least one password on a network connected to a plurality of password domains, the instructions comprising instructions executable by a processor:
-
to maintain a table associating user identifiers with password domains in which the user identifiers are used; to receive from a user a user identifier and password; to authenticate the received user identifier and password; to receive from the authenticated user a communication requesting a password change; to implement the requested password change in the table; to identify at least one password domain associated with the authenticated user identifier; and when the user has been authenticated at a level acceptable to the at least one password domain in which the received user identifier is used; to establish an encrypted and authenticated network connection to the identified at least one password domain; and to implement the requested password change on a password database of the at least one identified password domain. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36, 37)
-
Specification