Secure and dynamic biometrics-based token generation for access control and authentication
First Claim
1. A method for dynamically changing a user'"'"'s password in a computer network, comprising:
- (a) capturing a biometrics sample associated with a bodily characteristic of a user;
(b) generating a template value using said captured biometrics sample;
(c) comparing said template value to a template value associated with a current user password stored in a database;
(d) automatically changing said current user password to a new password if a match is found in step (c), and (e) storing the new password in a user database.
3 Assignments
0 Petitions
Accused Products
Abstract
A computer network includes at least one client computer coupled to a server computer that dynamically changes a user'"'"'s password each time the user logs on to the computer network. By changing the password during the log on process, network security is increased. The server computer includes a users databases that contains a password, a username (if desired) and a biometrics template value associated with each user registered to access the computer network. A biometrics sensing device, such as a fingerprint sensor, is connected to each client computer. The user attempts to log on the server by entering a username which is optional and activating the biometrics sensing device. Appropriate software and/or hardware in the client and server computers capture a sample from the biometrics sensing device and create a template value from the captured sample. The template value thus is representative of a bodily characteristic of the user who activated the biometrics sensing device in an attempt to log on to the server computer. The client computer then transmits the template value to the server which compares the template value received from the client computer with template values previously stored in the users database. If a match is found, the log on process completes. At some point during or after the log on process, the biometrics account manager changes the current password associated with the user to a new password and overwrites the previous password with the new password.
-
Citations
10 Claims
-
1. A method for dynamically changing a user'"'"'s password in a computer network, comprising:
-
(a) capturing a biometrics sample associated with a bodily characteristic of a user;
(b) generating a template value using said captured biometrics sample;
(c) comparing said template value to a template value associated with a current user password stored in a database;
(d) automatically changing said current user password to a new password if a match is found in step (c), and (e) storing the new password in a user database. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for dynamically changing a user'"'"'s password in a computer network, comprising:
-
(a) capturing a biometrics sample associated with a bodily characteristic of a user;
(b) generating a template value using said captured biometrics sample;
(c) comparing said template value to a template value associated with a current user password stored in a database;
(d) changing said current user password to a new password if a match is found in step (c); and
(e) storing the new password in a user database, wherein step (d) includes changing said current user password by generating a random number, wherein generating a random number includes using a seed value to generate the random number, and wherein the seed value includes said template value.
-
-
8. A server computer system, comprising:
-
a users database containing for each registered user a password and a biometrics template representative of bodily characteristic of the registered user; and
a biometrics account manager that changes the password in the users database associated with a particular registered user after each time that user logs on to the server computer system, wherein said biometrics account manager determines a random number and uses the random number to change the password associated with the particular registered user to a new password, and wherein the biometrics account manager stores the new password in the users database. - View Dependent Claims (9)
-
-
10. A server computer system, including:
-
a users database containing for each registered user a password and a biometrics template representative of bodily characteristic of the registered user;
a means for dynamically changing a password stored in said users database associated with a user who attempts to log on to the server computer system; and
a means for automatically changing a set of passwords using a random or pseudo-random process.
-
Specification