Security system for a stand-alone computer

US 5,402,492 A
Filed: 06/18/1993
Issued: 03/28/1995
Est. Priority Date: 06/18/1993
Status: Expired due to Term

First Claim

Patent Images

1. A security system for a host computer, said security system being activated during the system boot operations and controlling access to the host computer, said security system comprising;

at least one communications port;

a key which is connectable to said at least one communications port, said key having an associated key ID value;

a keyboard;

a first non-volatile memory having defined therein a stored key ID value and a first password value, said stored key ID value corresponding to said key ID value, said password value corresponding to a selected first access password; and

a microprocessor based peripheral controller in communication with said at least one communications port, said keyboard, said non-volatile memory and said host computer, wherein said peripheral controller is responsive to either said key being connected to said communications port or entry of said access password on said keyboard to permit access to said host computer.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A security system for stand alone and portable computer hosts which utilizes both a hardware key and a password key to enable-access to the computer host. The entry of the password key and the hardware key is monitored by the keyboard controller. The keyboard controller alters a status bit during the POST portion of the host code if access is granted. The host security is divided into two levels of security, a first administrative level and a second user level. The administrative level is accessible by the entry of a first password or by the hardware key and enables access to all levels of the host SET-UP configuration. The user level is accessible by the entry of a second password and only enables access to a limited portion of the setup configuration.

135 Citations

17 Claims

1. A security system for a host computer, said security system being activated during the system boot operations and controlling access to the host computer, said security system comprising;
- at least one communications port;
  
  a key which is connectable to said at least one communications port, said key having an associated key ID value;
  
  a keyboard;
  
  a first non-volatile memory having defined therein a stored key ID value and a first password value, said stored key ID value corresponding to said key ID value, said password value corresponding to a selected first access password; and
  
  a microprocessor based peripheral controller in communication with said at least one communications port, said keyboard, said non-volatile memory and said host computer, wherein said peripheral controller is responsive to either said key being connected to said communications port or entry of said access password on said keyboard to permit access to said host computer.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. A security system for a host computer as defined in claim 1, wherein said non-volatile memory has further defined therein a second password value, said second password value corresponding to a selected second access password, and wherein, said peripheral controller is further responsive to entry of said second access password on said keyboard to permit access to less than all of a set of options executed by host computer during setup operations.
  - 3. A security system for a host computer as defined in claim 1, wherein the communications port comprises a PS/2®
    - -type port.
  - 4. A security system for a host computer as defined in claim 1, wherein the key comprises an electronic key having a second non-volatile memory containing said key ID value.
  - 5. A security system for a host computer as defined in claim 4, wherein said second non-volatile memory operates using a one-wire data communication protocol.
  - 6. A security system for a host computer as defined in claim 5, wherein said second non-volatile memory has only one data line and one ground line.

7. A security system for a host computer, wherein said security system monitors a set of security settings during system boot operations, and wherein the security system controls access to the host computer based upon said security settings, said security system comprisingat least one peripheral device communications port;
- a key which is adapted for connection to said at least one peripheral device communications port, said key having an associated key ID value;
  
  a keyboard;
  
  a non-volatile memory having defined therein a stored key ID value, a first password value, and a second password value, said stored key ID value corresponding to said key ID value, said first password corresponding to a first selected access password, and said second password value corresponding to a second selected access password; and
  
  a microprocessor based peripheral controller in communication with said at least one peripheral device communications port, said keyboard, said non-volatile memory and said host computer, wherein said peripheral controller is responsive to entry of said first password on said keyboard or said key being connected to said communications port to permit access to a first set of setup parameters for said computer, and wherein said peripheral controller is responsive to entry of said second password on said keyboard to permit access to a subset of said set of setup parameters.
- View Dependent Claims (8, 9, 10, 11)
- - 8. A security system for a host computer as defined in claim 7, wherein the communications port comprises a PS/2®
    - -type port.
  - 9. A security system for a host computer as defined in claim 7, wherein the key comprises an electronic key having a second non-volatile memory containing said key ID value.
  - 10. A security system for a host computer as defined in claim 9, wherein said second non-volatile memory operates using a one-wire data communication protocol.
  - 11. A security system for a host computer as defined in claim 10, wherein said second non-volatile memory has only one data line and one ground line.

12. A method of controlling access to a host computer, wherein the host computer is in communication with a peripheral device controller which is in communication with at least one communications port, and wherein said peripheral device controller is further in communication with a non-volatile memory having defined therein a stored key ID value, said method comprising the steps of:
- coupling a key having a key ID value corresponding to said stored key ID value to said at least one communications port;
  
  reading, with said peripheral controller, said key ID value from said key;
  
  comparing, with said peripheral controller, said key ID value to said stored key ID value from said non-volatile memory; and
  
  permitting access to said host computer if said peripheral controller determines that said stored key ID value and said key ID value correspond.
- View Dependent Claims (13, 14)
- - 13. The method of controlling access to a host computer as defined in claim 12, wherein said non-volatile memory has further defined therein a first password valued corresponding to a first access password, further comprising the steps of:
    - monitoring, with said peripheral controller, entries made on a keyboard until a predesignated key on said keyboard is pressed;
      
      comparing the entries monitored by said keyboard controller to said first password value to determine is said entries correspond to said first access password; and
      
      permitting access to said host computer if said entries correspond to said first access password.
  - 14. The method of preventing unauthorized access to a host computer as defined in claim 13, wherein said non-volatile memory has further defined therein a second password value corresponding to a second access password, said method further comprising the steps of:
    - comparing the entries monitored by said keyboard controller to said second password value to determine if said entries correspond to said second access password; and
      
      permitting access to less than all of a set of setup parameters for said host computer if said entries correspond to said second access password.

15. A method of controlling access to a host computer, the host computer in communication with a peripheral controller which is in communication with at least one communications port and with a non-volatile memory, said method comprising the steps of:
- initializing a first mode of authorized access, comprising the steps of;
  
  to said host computer by coupling a key having a corresponding key ID value stored therein to said communications port;
  
  with said peripheral controller, reading the key ID value from said key; and
  
  with said peripheral controller, storing a value corresponding to said key ID value in said non-volatile memory as a valid stored key ID, said non-volatile memory inaccessible by said host;
  
  after said initialization, permitting access to said host computer whenever, upon system startup, a key having said key ID value is coupled to said communications port.
- View Dependent Claims (16, 17)
- - 16. The method of controlling access to a host computer as defined in claim 15, further comprising the steps of:
    - initializing a first password value in said non-volatile memory when said key is coupled to said communications port; and
      
      after said first password is initialized, permitting access to said host computer whenever said peripheral controller detects entries on said keyboard during system boot which correspond to said first password value initialized in said non-volatile memory.
  - 17. The method of controlling access to a host computer as defined in claim 16, further comprising the steps of:
    - initializing a second password by storing a second password value corresponding to said first password in said non-volatile memory when either said key is coupled to said communications port, or said peripheral controller has detected entry of said first password on said keyboard;
      
      after said second password is initialized, permitting access to less than all of a set of setup parameters for said host computer whenever said peripheral controller detects entries on said keyboard during system boot which correspond to said second password value.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Jingpin Technologies, LLC (Intellectual Ventures LLC)
Original Assignee
AST Research, Inc. (Samsung Electronics Co. Ltd.)
Inventors
Raasch, Charles F., Goodman, Michael K., Noorbehesht, Farzad
Primary Examiner(s)
Barron, Jr., Gilberto

Application Number

US08/079,630
Time in Patent Office

648 Days
Field of Search

380/4, 380/44, 380/25, 364/252.3, 364/252.4, 364/252.7, 364/958, 364/958.1, 364/958.4
US Class Current

726/20
CPC Class Codes

G06F 21/31   User authentication

G06F 21/34   involving the use of extern...

G06F 2221/2113   Multi-level security, e.g. ...

G06F 2221/2131   Lost password, e.g. recover...

Security system for a stand-alone computer

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

135 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Security system for a stand-alone computer

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

135 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links