Method and apparatus for providing a secure remote password graphic interface

US 5,793,952 A
Filed: 05/17/1996
Issued: 08/11/1998
Est. Priority Date: 05/17/1996
Status: Expired due to Term

First Claim

Patent Images

1. A method implemented by a computer for updating a password, said method comprising the steps of:

prompting a user to enter user information at a local machine, said user information comprising user identification information, old password information, and new password information;

receiving said user information;

after receiving said user information, spawning a communication process at said local machine, said communication process;

establishing communication with a remote machine via a communications network coupled to said local machine;

transmitting a first portion of said user information comprising said user identification information to said remote machine via said communications network;

awaiting receipt of first responsive information from said remote machine via said communications network;

transmitting a second portion of said user information comprising said old password information to said remote machine via said communications network only upon receipt of said first responsive information;

awaiting receipt of second responsive information from said remote machine via said communications network;

transmitting a third portion of said user information comprising said new password information to said remote machine via said communications network only upon receipt of said second responsive information;

awaiting receipt of third responsive information from said remote machine via said communications network.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus for providing a secure remote password graphic interface. In an embodiment of the invention, an improved password changer provides the capability to securely change a user'"'"'s password at a remote location without the necessity of the user executing commands to the remote machine. A local graphic interface is provided for entry and initial validation of the user'"'"'s proposed new password. Once validated, the user'"'"'s login and password data is securely stored in temporary memory allocated during operation of the invention, and communication is initiated with the remote machine. All commands necessary to change the user'"'"'s password at the remote machine are handled by an embodiment of the invention without the requirement of user intervention. The present invention improves remote password updating by eliminating the user'"'"'s need to understand the command structure of the operating system running at the remote machine.

Citations

32 Claims

1. A method implemented by a computer for updating a password, said method comprising the steps of:
- prompting a user to enter user information at a local machine, said user information comprising user identification information, old password information, and new password information;
  
  receiving said user information;
  
  after receiving said user information, spawning a communication process at said local machine, said communication process;
  
  establishing communication with a remote machine via a communications network coupled to said local machine;
  
  transmitting a first portion of said user information comprising said user identification information to said remote machine via said communications network;
  
  awaiting receipt of first responsive information from said remote machine via said communications network;
  
  transmitting a second portion of said user information comprising said old password information to said remote machine via said communications network only upon receipt of said first responsive information;
  
  awaiting receipt of second responsive information from said remote machine via said communications network;
  
  transmitting a third portion of said user information comprising said new password information to said remote machine via said communications network only upon receipt of said second responsive information;
  
  awaiting receipt of third responsive information from said remote machine via said communications network.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The method of claim 1 wherein said prompting said user to enter user information comprises displaying a graphic interface for receiving said user information.
  - 3. The method of claim 2 wherein said new password information is validated, according to a first set of validation criteria, at said local machine before said spawning of said communication process.
  - 4. The method of claim 3 wherein said new password information is stored at said local machine after validation.
  - 5. The method of claim 3 wherein said new password information is stored in a temporary memory area at said local machine after validation.
  - 6. The method of claim 5 wherein said temporary memory area is de-allocated at said local machine upon receipt of said third responsive information.
  - 7. The method of claim 2 wherein said user identification information and old password information are transmitted from said local machine to said remote machine using at least one of a first set of commands.
  - 8. The method of claim 7, wherein said first responsive information comprises an indication that said local machine is successfully connected to a user'"'"'s account at said remote machine.
  - 9. The method of claim 8 wherein said receiving of said first responsive information is accomplished using an expect command.
  - 10. The method of claim 8 wherein said communication process transmits a request to update said password after receipt of said first responsive information.
  - 11. The method of claim 10 wherein said third responsive information comprises an indication that said password was either successfully or unsuccessfully updated.
  - 12. The method of claim 10 wherein said transmitting of said request to update said user'"'"'s password is accomplished using a password command.
  - 13. The method of claim 2 wherein said graphic interface includes fields for entering said user identification information, old password information and new password information.

14. An article of manufacture comprising:
- a computer usable medium having computer readable program code embodied therein for updating a password, said computer readable program code comprising;
  
  computer readable program code configured to cause said local computer to prompt a user to enter user information at said local machine, said user information comprising user identification information, old password information, and new password information;
  
  computer readable program code configured to cause said local computer to receive said user information;
  
  computer readable program code configured to cause said local computer, after receiving said user information, to spawn a communication process at said local machine, said communication process;
  
  establishing communication with a remote machine over a communications network coupled to said local machine;
  
  transmitting a first portion of said user information comprising said user identification information to said remote machine via said communications network;
  
  awaiting receipt of first responsive information from said remote machine via said communications network;
  
  transmitting a second portion of said user information comprising said old password information to said remote machine via said communications network only upon receipt of said first responsive information;
  
  awaiting receipt of second responsive information from said remote machine via said communications network;
  
  transmitting a third portion of said user information comprising said new password information to said remote machine via said communications network only upon receipt of said second responsive information;
  
  awaiting receipt of third responsive information from said remote machine via said communications network.
- View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22)
- - 15. The article of manufacture of claim 14 wherein said computer readable program code for prompting said user to enter user information comprises computer readable program code to cause said local computer to display a graphic interface for receiving said user information.
  - 16. The article of manufacture of claim 15 comprising computer readable program code configured to cause said local machine to validate said new password information, according to a first set of validation criteria, at said local machine before said communication is spawned.
  - 17. The article of manufacture of claim 16 comprising computer readable program code configured to cause said local machine to store said new password information in a temporary memory area at said local machine after validation.
  - 18. The article of manufacture of claim 17 comprising computer readable program code configured to cause said local machine to de-allocate said temporary memory area upon receipt of said third responsive information.
  - 19. The article of manufacture of claim 15 comprising computer readable program code configured to cause said local machine to accomplish transmission of said user identification information and old password information over a network using at least one of a first set of commands.
  - 20. The article of manufacture of claim 19 said first responsive information comprises an indication that said local machine is successfully connected to a user'"'"'s account.
  - 21. The article of manufacture of claim 20 comprising computer readable program code configured to cause said local machine to transmit a request to update said password after receipt of said first responsive information.
  - 22. The article of manufacture of claim 21 wherein said third responsive information comprises an indication that said password was either successfully or unsuccessfully updated.

23. An apparatus for updating a password, comprising:
- a local machine, said local machine spawning a communication process at said local machine after entry of user information comprising user identification information, old password information, and new password information at said local machine, said communication process;
  
  establishing communication with a remote machine over a communications network coupled to said local machine;
  
  transmitting a first portion of said user information comprising said user identification information to said remote machine via said communications network;
  
  awaiting receipt of first responsive information from said remote machine via said communications network;
  
  transmitting a second portion of said user information comprising said old password information to said remote machine via said communications network only upon receipt of said first responsive information;
  
  awaiting receipt of second responsive information from said remote machine via said communications network;
  
  transmitting a third portion of said user information comprising said new password information to said remote machine via said communications network only upon receipt of said second responsive information;
  
  awaiting receipt of third responsive information from said remote machine via said communications network.
- View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32)
- - 24. The apparatus of claim 23 wherein said user information is entered in a graphic interface.
  - 25. The apparatus of claim 24 wherein said graphic interface comprises fields for entering said user identification information, old password information and new password information.
  - 26. The apparatus of claim 24 wherein said new password information is validated, according to a first set of validation criteria, at said local machine before said spawning.
  - 27. The apparatus of claim 26 wherein said new password information is stored in a temporary memory area at said local machine after validation.
  - 28. The apparatus of claim 27 wherein said temporary memory area is de-allocated at said local machine upon receipt of said third responsive information.
  - 29. The apparatus of claim 27 wherein said user identification information and old password information are transmitted using at least one of a first set of commands.
  - 30. The apparatus of claim 29 wherein said first responsive information comprises an indication that said local machine is successfully connected to a user'"'"'s account.
  - 31. The apparatus of claim 30 wherein said communication process transmits a request to update said password after receipt of said first responsive information.
  - 32. The apparatus of claim 31 wherein said third responsive information comprises an indication that said password was either successfully or unsuccessfully updated.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle America, Inc. (Oracle Corporation)
Original Assignee
Sun Microsystems Incorporated (Oracle Corporation)
Inventors
Limsico, Carl
Primary Examiner(s)
Decady, Albert

Application Number

US08/649,214
Time in Patent Office

816 Days
Field of Search

395/186, 395/187.01, 395/188.01, 380/3, 380/4, 380/23, 380/25, 711/164
US Class Current

726/18
CPC Class Codes

G06F 21/31 User authentication

Method and apparatus for providing a secure remote password graphic interface

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

32 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for providing a secure remote password graphic interface

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

32 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links