Method and system for proactive password validation
First Claim
1. An improved method for password validation comprising the steps of:
- (a) identifying bad passwords, wherein each said bad password is comprised of one or more characters;
(b) computing a frequency of occurrence of said bad password characters;
(c) computing a probability of occurrence T, within said bad passwords, of the bad password characters using the computed frequency of occurrence;
(d) identifying a validation password, wherein said validation password is comprised of one or more characters; and
(e) comparing said validation password characters with the probability of occurrence T of the bad password characters.
3 Assignments
0 Petitions
Accused Products
Abstract
An improved method for password validation comprising the steps of identifying bad passwords having one or more characters; computing a frequency of occurrence of bad password characters; computing a probability of occurrence T of the bad password characters within the bad passwords based upon the computed frequency of occurrence; identifying a proposed password having one or more characters; and comparing the proposed password characters with the probability of occurrence T of the bad password characters. The method further comprises the steps of establishing a validation threshold and validating the proposed password based upon the correspondence between (i) a value, BAp, reflecting the relationship between the probability of occurrence T of bad password characters within bad passwords and the proposed password characters and (ii) an established validation threshold. A Markov model is use to compute the probability of occurrence. The present invention also includes an improved password validation system.
102 Citations
32 Claims
-
1. An improved method for password validation comprising the steps of:
-
(a) identifying bad passwords, wherein each said bad password is comprised of one or more characters; (b) computing a frequency of occurrence of said bad password characters; (c) computing a probability of occurrence T, within said bad passwords, of the bad password characters using the computed frequency of occurrence; (d) identifying a validation password, wherein said validation password is comprised of one or more characters; and (e) comparing said validation password characters with the probability of occurrence T of the bad password characters. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. An improved password validation system comprising:
-
(a) means for accessing a data base of bad passwords, wherein each said bad password is comprised of one or more characters; (b) means for computing a frequency of occurrence of said bad password characters; (c) means for computing a probability of occurrence T, within said bad passwords, of the bad password characters using the computed frequency of occurrence; (d) means for inputting a validation password to the system, wherein said validation password is comprised of one or more characters; and (e) comparitor means for comparing said validation password characters with the probability of occurrence T of the bad password characters. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
-
Specification