×

Systems, methods and computer program products that use an encrypted session for additional password verification

  • US 6,064,736 A
  • Filed: 09/15/1997
  • Issued: 05/16/2000
  • Est. Priority Date: 09/15/1997
  • Status: Expired due to Term
First Claim
Patent Images

1. A password authentication method between a client and a server that communicate over a network, the server storing a plurality of hashed passwords for a corresponding plurality of clients, the method comprising the steps of:

  • establishing an encrypted session between the client and the server over the network, using a client password and the corresponding hashed password that is stored at the server;

    transmitting the client password from the client to the server during the encrypted session;

    hashing the received password at the server during the encrypted session;

    comparing the hashed received password with the corresponding hashed password for the client that is stored at the server during the encrypted session; and

    terminating the encrypted session between the client and the server over the network if the hashed received password and the corresponding hashed password that were compared during the encrypted session do not match.

View all claims
  • 4 Assignments
Timeline View
Assignment View
    ×
    ×