Systems and Methods for Password Reset

US 20150178493A1
Filed: 01/07/2015
Published: 06/25/2015
Est. Priority Date: 12/24/2013
Status: Active Grant

First Claim

Patent Images

1. A method for password reset, comprising:

receiving, by a first server, a request operation instruction from a user terminal, wherein the request operation instruction includes account information and identity information;

determining, by the first server, whether to permit password reset for a first account indicated by the account information;

in response to the password reset for the first account being permitted, authenticating, by the first server, the account information and the identity information;

in response to the authentication of the account information and the identity information being successful,processing, by the first server, the request operation instruction; and

sending, by the first server, a password reset prompt to the user terminal;

receiving, by the user terminal, the password reset prompt;

sending, by the user terminal, to the first server password information set by a user in response to the password reset prompt;

sending, by the first server, to a second server a password reset request that carries the password information;

responding, by the second server, to the password reset request; and

setting, by the second server, a new password for the first account according to the password information.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods are provided for password reset. For example, a first server receives a request operation instruction from a user terminal, wherein the request operation instruction includes account information and identity information; the first server determines whether to permit password reset for a first account indicated by the account information; in response to the password reset for the first account being permitted, the first server authenticates the account information and the identity information; if the authentication of the account information and the identity information is successful, the first server processes the request operation instruction and sends a password reset prompt to the user terminal; the user terminal receives the password reset prompt and sends to the first server password information set by a user in response to the password reset prompt; and the first server sends to a second server a password reset request that carries the password information.

Citations

26 Claims

1. A method for password reset, comprising:
- receiving, by a first server, a request operation instruction from a user terminal, wherein the request operation instruction includes account information and identity information;
  
  determining, by the first server, whether to permit password reset for a first account indicated by the account information;
  
  in response to the password reset for the first account being permitted, authenticating, by the first server, the account information and the identity information;
  
  in response to the authentication of the account information and the identity information being successful,processing, by the first server, the request operation instruction; and
  
  sending, by the first server, a password reset prompt to the user terminal;
  
  receiving, by the user terminal, the password reset prompt;
  
  sending, by the user terminal, to the first server password information set by a user in response to the password reset prompt;
  
  sending, by the first server, to a second server a password reset request that carries the password information;
  
  responding, by the second server, to the password reset request; and
  
  setting, by the second server, a new password for the first account according to the password information.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the authenticating, by the first server, the account information and the identity information includes:
    - sending, by the first server, an authentication request to the second server, wherein the authentication request includes the account information and the identity information;
      
      authenticating, by the second server, an association between the account information and the identity information;
      
      in response to the authentication of the association between the account information and the identity information being successful, sending, by the second server, an authentication pass message to the first server; and
      
      receiving, by the first server, the authentication pass message from the second server.
  - 3. The method of claim 1, wherein the processing, by the first server, the request operation instruction includes:
    - sending, by the first server, to a designated communication account a verification request for returning verification information, wherein the communication account is associated with the first account;
      
      receiving, by the first server, the verification information returned by the communication account; and
      
      processing, by the first server, the request operation instruction according to the verification information.
  - 4. The method of claim 1, further comprising:
    - generating, by the first server, a password reset credential according to the account information and the identity information;
      
      wherein;
      
      the password reset request includes the password information and the password reset credential; and
      
      the second server responds to the password reset request and sets the new password for the first account according to the password reset credential and the password information.
  - 5. The method of claim 1, wherein the determining, by the first server, whether to permit password reset for a first account indicated by the account information includes:
    - determining, by the first server, whether the first account indicated by the account information satisfies a preset condition;
      
      in response to the first account satisfying the preset condition, permitting, by the first server, the password reset for the first account; and
      
      in response to the first account not satisfying the preset condition, forbidding, by the first server, the password reset for the first account.
  - 6. The method of claim 5, further comprising:
    - in response to the password reset for the first account being forbidden, authenticating, by the first server, the account information and the identity information; and
      
      in response to the authentication of the account information and the identity information, processing, by the first server, the request operation instruction.

7. A method for password reset, comprising:
- receiving a request operation instruction from a user terminal, wherein the request operation instruction includes account information and identity information;
  
  determining whether to permit password reset for a first account indicated by the account information;
  
  in response to the password reset for the first account being permitted, authenticating the account information and the identity information;
  
  in response to the authentication of the account information and the identity information being successful,processing the request operation instruction; and
  
  sending a password reset prompt to the user terminal;
  
  receiving password information set by the user terminal, wherein the password information is set by a user in response to the password reset prompt after the user terminal receives the password reset prompt; and
  
  sending to a server a password reset request that carries the password information so that the server responds to the password reset request and sets a new password for the first account according to the password information.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The method of claim 7, wherein the authenticating the account information and the identity information includes:
    - sending an authentication request including the account information and the identity information to the server so that the server authenticates an association between the account information and the identity information; and
      
      receiving an authentication pass message from the server.
  - 9. The method of claim 7, wherein the processing the request operation instruction includes:
    - sending to a designated communication account a verification request for returning verification information, wherein the communication account is associated with the first account;
      
      receiving the verification information returned by the communication account; and
      
      processing the request operation instruction according to the verification information.
  - 10. The method of claim 7, further comprising:
    - generating a password reset credential according to the account information and the identity information;
      
      wherein;
      
      the password reset request includes the password information and the password reset credential; and
      
      the server sets a new password for the first account according to the password reset credential and the password information.
  - 11. The method of claim 7, wherein the determining whether to permit password reset for a first account indicated by the account information includes:
    - determining whether the first account indicated by the account information satisfies a preset condition;
      
      in response to the first account satisfying the preset condition, permitting the password reset for the first account; and
      
      in response to the first account not satisfying the preset condition, forbidding the password reset for the first account.
  - 12. The method of claim 11, further comprising:
    - in response to the password reset for the first account being forbidden, authenticating the account information and the identity information; and
      
      in response to the authentication of the account information and the identity information being successful, processing the request operation instruction.

13. A system for password reset, comprising:
- a first server;
  
  a user terminal; and
  
  a second server;
  
  wherein;
  
  the first server is configured to;
  
  receive a request operation instruction from the user terminal, wherein the request operation instruction includes account information and identity information;
  
  determine whether to permit password reset for a first account indicated by the account information;
  
  in response to the password reset for the first account being permitted, authenticate the account information and the identity information;
  
  in response to the authentication of the account information and the identity information being successful,process the request operation instruction; and
  
  send a password reset prompt to the user terminal;
  
  the user terminal is configured to receive the password reset prompt and send to the first server password information set by a user in response to the password reset prompt;
  
  the first server is further configured to send to the second server a password reset request that carries the password information; and
  
  the second server is configured to respond to the password reset request and set a new password for the first account according to the password information.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The system of claim 13, wherein:
    - the first server is further configured to send an authentication request to the second server, wherein the authentication request includes the account information and the identity information;
      
      the second server is further configured to authenticate an association between the account information and the identity information and, in response to the authentication of the association between the account information and the identity information being successful, send an authentication pass message to the first server; and
      
      the first server is further configured to receive the authentication pass message from the second server.
  - 15. The system of claim 13, wherein the first server is further configured to:
    - send to a designated communication account a verification request for returning verification information, wherein the communication account is associated with the first account; and
      
      receive the verification information returned by the communication account; and
      
      process the request operation instruction according to the verification information.
  - 16. The system of claim 13, wherein:
    - the first server is further configured to generate a password reset credential according to the account information and the identity information;
      
      the password reset request includes the password information and the password reset credential; and
      
      the second server is further configured to respond to the password reset request and set a new password for the first account according to the password reset credential and the password information.
  - 17. The system of claim 13, wherein the first server is further configured to:
    - determine whether the first account indicated by the account information satisfies a preset condition;
      
      in response to the first account satisfying the preset condition, permit the password reset for the first account; and
      
      in response to the first account not satisfying the preset condition, forbid the password reset for the first account.
  - 18. The system of claim 17, wherein the first server is further configured to:
    - in response to the password reset for the first account being forbidden, authenticate the account information and the identity information; and
      
      in response to the authentication of the account information and the identity information, process the request operation instruction.

19. A device for password reset, comprising:
- a first receiving unit;
  
  a determining unit;
  
  a first authenticating unit;
  
  a first processing unit;
  
  a first sending unit;
  
  a second receiving unit; and
  
  a second sending unit;
  
  wherein;
  
  the first receiving unit is configured to receive a request operation instruction from the user terminal, wherein the request operation instruction includes account information and identity information;
  
  the determining unit is configured to determine whether to permit password reset for a first account indicated by the account information;
  
  the first authenticating unit is configured to, in response to the password reset for the first account being permitted, authenticate the account information and the identity information;
  
  the first processing unit is configured to in response to the authentication of the account information and the identity information being successful, process the request operation instruction;
  
  the first sending unit is configured to send a password reset prompt to the user terminal;
  
  the second receiving unit is configured to receive password information set by the user terminal, wherein the password information is set by a user in response to the password reset prompt after the user terminal receives the password reset prompt; and
  
  the second sending unit is configured to send to a server a password reset request that carries the password information so that the server responds to the password reset request and sets a new password for the first account according to the password information.
- View Dependent Claims (20, 21, 22, 23, 24, 25)
- - 20. The device of claim 19, wherein the first authenticating unit is further configured to send an authentication request including the account information and the identity information to the server, so that the server authenticates an association between the account information and the identity information, and receive an authentication pass message from the server.
  - 21. The device of claim 19, wherein the processing unit is further configured to:
    - send to a designated communication account a verification request for returning verification information, wherein the communication account is associated with the first account;
      
      receive the verification information returned by the communication account; and
      
      process the request operation instruction according to the verification information.
  - 22. The device of claim 19, further comprising:
    - a generating unit configured to generate a password reset credential according to the account information and the identity information;
      
      wherein;
      
      the password reset request includes the password information and the password reset credential; and
      
      the server sets a new password for the first account according to the password reset credential and the password information.
  - 23. The device of claim 19, wherein the determining unit is further configured to:
    - determine whether the first account indicated by the account information satisfies a preset condition;
      
      in response to the first account satisfying the preset condition, permit the password reset for the first account; and
      
      in response to the first account not satisfying the preset condition, forbid the password reset for the first account.
  - 24. The device of claim 23, further comprising:
    - a second authenticating unit configured to, in response to the password reset for the first account being forbidden, authenticate the account information and the identity information; and
      
      a second processing unit configured to, in response to the authentication of the account information and the identity information being successful, processing the request operation instruction.
  - 25. The device of claim 19, further comprising:
    - one or more data processors; and
      
      a computer-readable storage medium;
      
      wherein the first receiving unit, the determining unit, the first authenticating unit, the first processing unit, the first sending unit, the second receiving unit, and the second sending unit are stored in the storage medium and configured to be executed by the one or more data processors.

26. A non-transitory computer readable storage medium comprising programming instructions for password reset, the programming instructions configured to cause one or more data processors to execute operations comprising:
- receiving a request operation instruction from a user terminal, wherein the request operation instruction includes account information and identity information;
  
  determining whether to permit password reset for a first account indicated by the account information;
  
  in response to the password reset for the first account being permitted, authenticating the account information and the identity information;
  
  in response to the authentication of the account information and the identity information being successful,processing the request operation instruction; and
  
  sending a password reset prompt to the user terminal;
  
  receiving password information set by the user terminal, wherein the password information is set by a user in response to the password reset prompt after the user terminal receives the password reset prompt; and
  
  sending to a server a password reset request that carries the password information so that the server responds to the password reset request and sets a new password for the first account according to the password information.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Tencent Technology Shenzhen Company Limited (Tencent Holdings Limited)
Original Assignee
Tencent Technology Shenzhen Company Limited (Tencent Holdings Limited)
Inventors
Song, Zhigang, Liu, Tiehua

Granted Patent

US 9,355,244 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/45   Structures or tools for the...

H04L 63/083   using passwords cryptograph...

H04L 63/0884   by delegation of authentica...

Systems and Methods for Password Reset

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and Methods for Password Reset

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links