Hashing method and system

US 7,694,147 B2
Filed: 01/03/2006
Issued: 04/06/2010
Est. Priority Date: 01/03/2006
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

receiving by a computing system, a user password, said user password for enabling access to a computing system;

generating by said computing system, a first hash (H1) for said user password;

storing said first hash (H1) within a memory device of said computing system;

generating by said computing system, a second hash (H2) for only a system parameter,wherein said system parameter consists of a parameter for a hardware component of said computing system;

storing said second hash (H2) within said memory device;

generating by said computing system, an additional hash for only an additional system parameter, wherein said additional system parameter consists of a parameter for a software component of said computing system;

performing by said computing system, an operation relating said first hash (H1) to said second hash (H2) and said additional hash to generate a first combination value;

generating by said computing system, a third hash (H3) for said first combination value;

storing within said memory device, said third hash (H3);

receiving by said computing system, a specific password for requesting access to said computing system;

generating by said computing system, a fourth hash (H4) for said specific password;

performing by said computing system, an operation relating said fourth hash (H4) to said second hash (H2) and said additional hash to generate a second combination value;

generating by a computer processor of said computing system, a fifth hash (H5) for said second combination value;

comparing by said computing system, said third hash (H3) to said fifth hash (H5);

Determining as a result of said comparing, that said third hash (H3) matches said fifth hash (H5); and

Enabling access to said computing system.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A hashing method and system. The method comprises receiving by a computing system, a user password. The computing system generates a first hash for the user password. The computing system generates a second hash for a system parameter and performs an operation relating the first hash to the second hash to generate a first combination value. The computing system generates a third hash for the first combination value. The computing system receives a specific password for requesting access to the computing system. The computing system generates a fourth hash for said specific password and performs an operation relating the fourth hash to the second hash to generate a second combination value. The computing system generates a fifth hash for the second combination value. The third hash is compared to the fifth hash to determine that the third hash matches the fifth hash. Access is enabled to the computing system.

Citations

49 Claims

1. A method, comprising:
- receiving by a computing system, a user password, said user password for enabling access to a computing system;
  
  generating by said computing system, a first hash (H1) for said user password;
  
  storing said first hash (H1) within a memory device of said computing system;
  
  generating by said computing system, a second hash (H2) for only a system parameter,wherein said system parameter consists of a parameter for a hardware component of said computing system;
  
  storing said second hash (H2) within said memory device;
  
  generating by said computing system, an additional hash for only an additional system parameter, wherein said additional system parameter consists of a parameter for a software component of said computing system;
  
  performing by said computing system, an operation relating said first hash (H1) to said second hash (H2) and said additional hash to generate a first combination value;
  
  generating by said computing system, a third hash (H3) for said first combination value;
  
  storing within said memory device, said third hash (H3);
  
  receiving by said computing system, a specific password for requesting access to said computing system;
  
  generating by said computing system, a fourth hash (H4) for said specific password;
  
  performing by said computing system, an operation relating said fourth hash (H4) to said second hash (H2) and said additional hash to generate a second combination value;
  
  generating by a computer processor of said computing system, a fifth hash (H5) for said second combination value;
  
  comparing by said computing system, said third hash (H3) to said fifth hash (H5);
  
  Determining as a result of said comparing, that said third hash (H3) matches said fifth hash (H5); and
  
  Enabling access to said computing system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 41, 42, 43)
- - 2. The method of claim 1, further comprising:
    - comparing by said computing system, said third hash (H3) to said fifth hash (H5);
      
      determining as a result of said comparing, that said third hash (H3) does not match said fifth hash (H5); and
      
      denying access to said computing system.
  - 3. The method of claim 1, further comprising:
    - encrypting by said computing system, said third hash (H3) to generate an encrypted third hash; and
      
      encrypting by said computing system, said fifth hash (H5) to generate an encrypted fifth hash.
  - 4. The method of claim 3, further comprising:
    - comparing by said computing system, said encrypted third hash to said encrypted fifth hash;
      
      determining as a result of said comparing, that said encrypted third hash matches said encrypted fifth hash; and
      
      enabling access to said computing system.
  - 5. The method of claim 3, further comprising:
    - comparing by said computing system, said encrypted third hash to said encrypted fifth hash;
      
      determining as a result of said comparing, that said encrypted third hash does not match said encrypted fifth hash; and
      
      denying access to said computing system.
  - 6. The method of claim 1, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises XORing said first hash (H1) and said second hash (H2) to form H1 XOR H2 as said first combination value.
  - 7. The method of claim 1, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises concatenating said first hash (H1) to said second hash (H2) to form H1H2 as said first combination value.
  - 8. The method of claim 1, wherein said performing said operation relating said said first hash (H1) to said second hash (H2) comprises concatenating said first hash (H1) to said second hash (H2) to form H2H1 as said first combination value.
  - 9. The method of claim 1, wherein said generating said first hash (H1) comprises applying as an input to a first hash function said user password to generate said first hash (H1), wherein said generating said second hash (H2) comprises applying as an input to a second hash function said system parameter to generate said second hash (H2), wherein said generating said third hash (H3) comprises applying as an input to a third hash function said first combination value to generate said third hash (H3), and wherein said generating said additional hash comprises applying as an input to an additional hash function said additional system parameter to generate said additional hash.
  - 10. The method of claim 9, wherein said first hash function, said second hash function, said additional hash function, and said third hash function each comprise a different hash function.
  - 41. The method of claim 1, wherein said system parameter comprises a serial number for said hardware component, and wherein said hardware component comprises a component selected from the group consisting of a central processing unit and a memory device.
  - 42. The method of claim 1, wherein said additional system parameter comprises a specified number for said hardware component, and wherein said software component comprises a component selected from the group consisting of serial/license number for an operating system running said computing system, a daughter card, and a message authentication code (MAC) address for said computing system.
  - 43. The method of claim 1, further comprising:
    - before said generating said second hash (H2), automatically retrieving by said computing system, said system parameter; and
      
      before said generating said additional hash (H3), automatically retrieving by said computing system, said additional system parameter.

11. A computing system comprising a computer processor and a computer readable memory unit coupled to the computer processor, said memory unit containing instructions that when executed by the computer processor implement a hashing method, said method comprising:
- receiving by said computing system, a user password, said user password for enabling access to said computing system;
  
  generating by said computing system, a first hash (H1) for said user password;
  
  storing said first hash (H1) within said memory unit;
  
  generating by said computing system, a second hash (H2) for a system parameter, wherein said system parameter consists of a parameter for a hardware component of said computing system;
  
  storing said second hash (H2) within said memory unit;
  
  generating by said computing system, an additional hash for only an additional system parameter, wherein said additional system parameter consists of a parameter for a software component of said computing system;
  
  performing by said computing system, an operation relating said first hash (H1) to said second hash (H2) and said additional hash to generate a first combination value;
  
  generating by said computing system, a third hash (H3) for said first combination value;
  
  storing within said memory unit, said third hash (H3);
  
  receiving by said computing system, a specific password for requesting access to said computing system;
  
  generating by said computing system, a fourth hash (H4) for said specific password;
  
  performing by said computing system, an operation relating said fourth hash (H4) to said second hash (H2) and said additional hash to generate a second combination value;
  
  generating by said computer processor, a fifth hash (H5) for said second combination value;
  
  comparing by said computing system, said third hash (H3) to said fifth hash (H5);
  
  Determining as a result of said comparing, that said third hash (H3) matches said fifth hash (H5); and
  
  Enabling access to said computing system.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 44, 45)
- - 12. The computing system of claim 11, wherein said method further comprises:
    - comparing by said computing system, said third hash (H3) to said fifth hash (H5);
      
      determining as a result of said comparing, that said third hash (H3) does not match said fifth hash (H5); and
      
      denying access to said computing system.
  - 13. The computing system of claim 11, wherein said method further comprises:
    - encrypting by said computing system, said third hash (H3) to generate an encrypted third hash; and
      
      encrypting by said computing system, said fifth hash (H5) to generate an encrypted fifth hash.
  - 14. The computing system of claim 13, wherein said method further comprises:
    - comparing by said computing system, said encrypted third hash to said encrypted fifth hash;
      
      determining as a result of said comparing, that said encrypted third hash matches said encrypted fifth hash; and
      
      enabling access to said computing system.
  - 15. The computing system of claim 13, wherein said method further comprises:
    - comparing by said computing system, said encrypted third hash to said encrypted fifth hash;
      
      determining as a result of said comparing, that said encrypted third hash does not match said encrypted fifth hash; and
      
      denying access to said computing system.
  - 16. The computing system of claim 11, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises XORing said first hash (H1) and said second hash (H2) to form H1 XOR H2 as said first combination value.
  - 17. The computing system of claim 11, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises concatenating said first hash (H1) to said second hash (H2) to form H1H2 as said first combination value.
  - 18. The computing system of claim 11, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises concatenating said first hash (H1) to said second hash (H2) to form H2H1 as said first combination value.
  - 19. The computing system of claim 11, wherein said generating said first hash (H1) comprises applying as an input to a first hash function said user password to generate said first hash (H1), wherein said generating said second hash (H2) comprises applying as an input to a second hash function said system parameter to generate said second hash (H2), and wherein said generating said third hash (H3) comprises applying as an input to a third hash function said first combination value to generate said third hash (H3), and wherein said generating said additional hash comprises applying as an input to an additional hash function said additional system parameter to generate said additional hash.
  - 20. The computing system of claim 19, wherein said first hash function, said second hash function, said additional hash function and said third hash function each comprise a different hash function.
  - 44. The computing system of claim 11, wherein said system parameter comprises a serial number for said hardware component, and wherein said hardware component comprises a component selected from the group consisting of a central processing unit and a memory device.
  - 45. The computing system of claim 11, wherein said additional system parameter comprises a specified number for said software component, and wherein said software component comprises a component selected from the group consisting of serial/license number for an operating system running said computing system, a daughter card, and a message authentication code (MAC) address for said computing system.

21. A computer program product, comprising a computer usable medium having a computer readable program code embodied therein, said computer readable program code comprising an algorithm adapted to implement a hashing method within a computing system, said method comprising:
- receiving by said computing system, a user password, said user password for enabling access to said computing system;
  
  generating by said computing system, a first hash (H1) for said user password;
  
  storing said first hash (H1) within said computer usable medium;
  
  generating by said computing system, a second hash (H2) for a system parameter, wherein said system parameter consists of a parameter for a hardware component of said computing system;
  
  storing said second hash (H2) within said computer usable medium;
  
  generating by said computing system, an additional hash for only an additional system parameter, wherein said additional system parameter consists of a parameter for a software component of said computing system;
  
  performing by said computing system, an operation relating said first hash (H1) to said second hash (H2) and said additional hash to generate a first combination value;
  
  generating by said computing system, a third hash (H3) for said first combination value;
  
  storing within said computer usable medium, said third hash (H3);
  
  receiving by said computing system, a specific password for requesting access to said computing system;
  
  generating by said computing system, a fourth hash (H4) for said specific password;
  
  performing by said computing system, an operation relating said fourth hash (H4) to said second hash (H2) and said additional hash to generate a second combination value;
  
  generating by a computer processor of said computing system, a fifth hash (H5) for said second combination value;
  
  comparing by said computing system, said third hash (H3) to said fifth hash (H5);
  
  Determining as a result of said comparing, that said third hash (H3) matches said fifth hash (H5); and
  
  Enabling access to said computing system.
- View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 46, 47)
- - 22. The computer program product of claim 21, wherein said method further comprises:
    - comparing by said computing system, said third hash (H3) to said fifth hash (H5);
      
      determining as a result of said comparing, that said third hash (H3) does not match said fifth hash (H5); and
      
      denying access to said computing system.
  - 23. The computer program product of claim 21, wherein said method further comprises:
    - encrypting by said computing system, said third hash (H3) to generate an encrypted third hash; and
      
      encrypting by said computing system, said fifth hash (H5) to generate an encrypted fifth hash.
  - 24. The computer program product of claim 23, wherein said method further comprises:
    - comparing by said computing system, said encrypted third hash to said encrypted fifth hash;
      
      determining as a result of said comparing, that said encrypted third hash matches said encrypted fifth hash; and
      
      enabling access to said computing system.
  - 25. The computer program product of claim 23, wherein said method further comprises:
    - comparing by said computing system, said encrypted third hash to said encrypted fifth hash;
      
      determining as a result of said comparing, that said encrypted third hash does not match said encrypted fifth hash; and
      
      denying access to said computing system.
  - 26. The computer program product of claim 21, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises XORing said first hash (H1) and said second hash (H2) to form H1 XOR H2 as said first combination value.
  - 27. The computer program product of claim 21, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises concatenating said first hash (H1) to said second hash (H2) to form H1H2 as said first combination value.
  - 28. The computer program product of claim 21, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises concatenating said first hash (H1) to said second hash (H2) to form H2H1 as said first combination value.
  - 29. The computer program product of claim 21, wherein said generating said first hash (H1) comprises applying as an input to a first hash function said user password to generate said first hash (H1), wherein said generating said second hash (H2) comprises applying as an input to a second hash function said system parameter to generate said second hash (H2), wherein said generating said third hash (H3) comprises applying as an input to a third hash function said first combination value to generate said third hash (H3), and wherein said generating said additional hash comprises applying as an input to an additional hash function said additional system parameter to generate said additional hash.
  - 30. The computer program product of claim 29, wherein said first hash function, said second hash function, said additional hash function and said third hash function each comprise a different hash function.
  - 46. The computer program product of claim 21, wherein said system parameter comprises a serial number for said hardware component, and wherein said hardware component comprises a component selected from the group consisting of a central processing unit and a memory device.
  - 47. The computer program product of claim 21, wherein said additional system parameter comprises a specified number for said software component, and wherein said software component comprises a component selected from the group consisting of serial/license number for an operating system running said computing system, a daughter card, and a message authentication code (MAC) address for said computing system.

31. A process for integrating computing infrastructure, comprising integrating computer-readable code into a computing system, wherein the computing system comprises a computer usable medium, and wherein the code in combination with the computing system is capable of performing a hashing method comprising:
- receiving by said computing system, a user password, said user password for enabling access to said computing system;
  
  generating by said computing system, a first hash (H1) for said user password;
  
  storing said first hash (H1) within said computer usable medium;
  
  generating by said computing system, a second hash (H2) for a system parameter, wherein said system parameter consists of a parameter for a hardware component of said computing system;
  
  storing said second hash (H2) within said computer usable medium;
  
  generating by said computing system, an additional hash for only an additional system parameter, wherein said additional system parameter consists of a parameter for a software component of said computing system;
  
  performing by said computing system, an operation relating said first hash (H1) to said second hash (H2) and said additional hash to generate a first combination value;
  
  generating by said computing system, a third hash (H3) for said first combination value;
  
  storing within said computer usable medium, said third hash (H3);
  
  receiving by said computing system, a specific password for requesting access to said computing system;
  
  generating by said computing system, a fourth hash (H4) for said specific password;
  
  performing by said computing system, an operation relating said fourth hash (H4) to said second hash (H2) and said additional hash to generate a second combination value; and
  
  generating by a computer processor of said computing system, a fifth hash (H5) for said second combination value;
  
  comparing by said computing system, said third hash (H3) to said fifth hash (H5);
  
  Determining as a result of said comparing, that said third hash (H3) matches said fifth hash (H5); and
  
  Enabling access to said computing system.
- View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 48, 49)
- - 32. The process of claim 31, wherein said method further comprises:
    - comparing by said computing system, said third hash (H3) to said fifth hash (H5);
      
      determining as a result of said comparing, that said third hash (H3) does not match said fifth hash (H5); and
      
      denying access to said computing system.
  - 33. The process of claim 31, wherein said method further comprises:
    - encrypting by said computing system, said third hash (H3) to generate an encrypted third hash; and
      
      encrypting by said computing system, said fifth hash (H5) to generate an encrypted fifth hash.
  - 34. The process of claim 33, wherein said method further comprises:
    - comparing by said computing system, said encrypted third hash to said encrypted fifth hash;
      
      determining as a result of said comparing, that said encrypted third hash matches said encrypted fifth hash; and
      
      enabling access to said computing system.
  - 35. The process of claim 33, wherein said method further comprises:
    - comparing by said computing system, said encrypted third hash to said encrypted fifth hash;
      
      determining as a result of said comparing, that said encrypted third hash does not match said encrypted fifth hash; and
      
      denying access to said computing system.
  - 36. The process of claim 31, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises XORing said first hash (H1) and said second hash (H2) to form H1 XOR H2 as said first combination value.
  - 37. The process of claim 31, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises concatenating said first hash (H1) to said second hash (H2) to form H1H2 as said first combination value.
  - 38. The process of claim 31, wherein said performing said operation relating said first hash (H1) to said second hash (H2) comprises concatenating said first hash (H1) to said second hash (H2) to form H2H1 as said first combination value.
  - 39. The process of claim 31, wherein said generating said first hash (H1) comprises applying as an input to a first hash function said user password to generate said first hash (H1), wherein said generating said second hash (H2) comprises applying as an input to a second hash function said system parameter to generate said second hash (H2), wherein said generating said third hash (H3) comprises applying as an input to a third hash function said first combination value to generate said third hash (H3), and wherein said generating said additional hash comprises applying as an input to an additional hash function said additional system parameter to generate said additional hash.
  - 40. The process of claim 39, wherein said first hash function, said second hash function, said additional hash function and said third hash function each comprise a different hash function.
  - 48. The process of claim 31, wherein said system parameter comprises a serial number for said hardware component, and wherein said hardware component comprises a component selected from the group consisting of a central processing unit and a memory device.
  - 49. The process of claim 31, wherein said additional system parameter comprises a specified number for said software component, and wherein said software component comprises a component selected from the group consisting of serial/license number for an operating system running said computing system, a daughter card, and a message authentication code (MAC) address for said computing system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Twitter Inc (X Holdings Corp.)
Original Assignee
International Business Machines Corporation
Inventors
Lott, David Robert
Primary Examiner(s)
Barron, Jr.; Gilberto
Assistant Examiner(s)
Gregory; Shaun

Application Number

US11/324,703
Publication Number

US 20070157028A1
Time in Patent Office

1,554 Days
Field of Search

713182-183, 713/185, 726/2, 726 16- 18, 726/21, 726 26- 28
US Class Current

713/183
CPC Class Codes

G06F 21/31   User authentication

H04L 9/3226   using a predetermined code,...

H04L 9/3236   using cryptographic hash fu...

Hashing method and system

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

Citations

49 Claims

Specification

Solutions

Use Cases

Quick Links

Hashing method and system

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

49 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links