METHOD OF PREVENTING SEQUENTIAL UNAUTHORIZED LOGINS

US 20140165175A1
Filed: 11/14/2013
Published: 06/12/2014
Est. Priority Date: 12/10/2012
Status: Active Grant

First Claim

Patent Images

1. A server device communicatively connected to a plurality of client terminals, the server device comprising:

a storage unit configured to store information on a plurality of value conversion processes;

a setting unit configured to set a value conversion process included in the plurality of value conversion processes as a specific value conversion process;

a sending unit configured to send an instruction for the specific value conversion process to one of the plurality of client terminals in response to a request from the client terminal;

a receiving unit configured to receive, from the client terminal, a login request including a result of the specific value conversion process on a parameter value;

a determination unit configured to determine whether to permit a login by the client terminal based at least on the received result;

a selection unit configured to select, on a predetermined condition, a candidate for a new specific value conversion process from the plurality of value conversion processes stored in the storage unit; and

a monitoring unit for monitoring situation of unauthorized logins,wherein the storage unit stores groups including the value conversion processes as a part of the information on the plurality of value conversion processes,and wherein if the situation of unauthorized logins is a first situation, the selection unit selects the candidate for the new specific value conversion process from value conversion processes included in the same group as the current specific value conversion process; and

if the situation of unauthorized logins is a second situation, the selection unit selects the candidate for the new specific value conversion process from value conversion processes included in a different group than the current specific value conversion process.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

One object is to restrain unauthorized logins without significantly reducing usability. In accordance with one aspect, a server device according to an embodiment includes: an information storage unit for storing information; a setting unit for setting a value conversion rule used for login authentication; an information generating unit for generating login authentication information in response to a display request for a login screen sent from a terminal device; a sending unit for sending login screen data for displaying the login screen on the terminal device; a receiving unit for receiving login information from the terminal device; a determination unit for determining whether a login is permitted based on the received login information; a monitoring unit for monitoring the situation of unauthorized logins to the server device; and a selection unit for selecting a candidate for a new value conversion rule in accordance with the situation of unauthorized logins.

18 Citations

View as Search Results

12 Claims

1. A server device communicatively connected to a plurality of client terminals, the server device comprising:
- a storage unit configured to store information on a plurality of value conversion processes;
  
  a setting unit configured to set a value conversion process included in the plurality of value conversion processes as a specific value conversion process;
  
  a sending unit configured to send an instruction for the specific value conversion process to one of the plurality of client terminals in response to a request from the client terminal;
  
  a receiving unit configured to receive, from the client terminal, a login request including a result of the specific value conversion process on a parameter value;
  
  a determination unit configured to determine whether to permit a login by the client terminal based at least on the received result;
  
  a selection unit configured to select, on a predetermined condition, a candidate for a new specific value conversion process from the plurality of value conversion processes stored in the storage unit; and
  
  a monitoring unit for monitoring situation of unauthorized logins,wherein the storage unit stores groups including the value conversion processes as a part of the information on the plurality of value conversion processes,and wherein if the situation of unauthorized logins is a first situation, the selection unit selects the candidate for the new specific value conversion process from value conversion processes included in the same group as the current specific value conversion process; and
  
  if the situation of unauthorized logins is a second situation, the selection unit selects the candidate for the new specific value conversion process from value conversion processes included in a different group than the current specific value conversion process.
- View Dependent Claims (2, 3, 4, 9, 10, 11)
- - 2. The server device of claim 1 wherein the selection unit causes information on the selected candidate for the new specific value conversion process to be displayed on a display device for an administrator.
  - 3. The server device of claim 1 wherein the setting unit sets the candidate for the new specific value conversion process selected by the selection unit, as the specific value conversion process.
  - 4. The server device of claim 1, wherein the selection unit selects the candidate for the new specific value conversion process each time the predetermined condition is satisfied, the predetermined condition being that the sending unit sends the instruction for the specific value conversion process.
  - 9. The server device of claim 1 wherein the sending unit sends, to the client terminal, login page information for displaying a login page on the client terminal, the login page information including the parameter value and the instruction for the specific value conversion process.
  - 10. The server device of claim 9 further comprising an information generating unit configured to generate, in response to a request from the client terminal, authentication information for the client terminal and generate, based on the authentication information, pre-conversion authentication information to be converted into the authentication information through the specific value conversion process,wherein the sending unit sends, to the client terminal, the pre-conversion authentication information as the parameter value;
    - andthe determination unit determines whether to permit a login by the client terminal based at least on comparison of the received result and the authentication information.
  - 11. The server device of claim 9 wherein the parameter value is a character string, and the value conversion process operates a character string.

5. (canceled)

6. (canceled)

7. (canceled)

8. (canceled)

12. A method of managing logins by using a server device communicatively connected to a plurality of client terminals and having a storage unit, the method comprising the steps of:
- (a) storing, on the storage unit, information on a plurality of value conversion processes;
  
  (b) setting a value conversion process included in the plurality of value conversion processes as a specific value conversion process;
  
  (c) sending an instruction for the specific value conversion process to one of the plurality of client terminals in response to a request from the client terminal;
  
  (d) receiving, from the client terminal, a login request including a result of the specific value conversion process on a parameter value;
  
  (e) determining whether to permit a login by the client terminal based at least on the received result;
  
  (f) selecting, on a predetermined condition, a candidate for a new specific value conversion process from the plurality of value conversion processes stored in the storage unit; and
  
  (g) monitoring situation of unauthorized logins,wherein the storing step (a) stores groups including the value conversion processes as a part of the information on the plurality of value conversion processes,and wherein if the situation of unauthorized logins is a first situation, the selecting step (f) selects the candidate for the new specific value conversion process from value conversion processes included in the same group as the current specific value conversion process; and
  
  if the situation of unauthorized logins is a second situation, the selecting step (f) selects the candidate for the new specific value conversion process from value conversion processes included in a different group than the current specific value conversion process.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
DENA Company Limited
Original Assignee
DENA Company Limited
Inventors
SUGIYAMA, Toshiharu

Granted Patent

US 8,966,604 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/8
CPC Class Codes

G06F 21/45   Structures or tools for the...

G06F 21/552   involving long-term monitor...

G06F 2221/2103   Challenge-response

H04L 63/08   for authentication of entit...

METHOD OF PREVENTING SEQUENTIAL UNAUTHORIZED LOGINS

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

18 Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD OF PREVENTING SEQUENTIAL UNAUTHORIZED LOGINS

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

18 Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links