Methods and systems for remote password reset using an authentication credential managed by a third party
First Claim
1. A method of providing a remote reset of a password associated with a token, the remote reset provided by a security server, the method comprising:
- receiving, at the security server, a request to reset the password associated with the token, wherein the request is received over a secure channel,retrieving, from a third party agent by the security server, a query associated with the token and a correct response to the query;
providing the query to the token over the secure channel;
receiving a response to the query over the secure channel; and
resetting the password based on a comparison of the received response to the correct response.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of the present invention provide a secure remote password reset capability. In some embodiments, an exemplary method provides a remote reset of a password associated with a token in a computer system having a security server. A token-based authentication process is activated by connecting the token to the security server. A server-based authentication process is initiated in the security server by activating a password reset process in a security client. The server-based authentication process communicates with the token-based authentication process over a secure channel. An authentication credential is managed by a third party agent that supplies a query and the authentication credential as a correct response to the query to the security server. A prompt provided by the password reset process collects the authentication credential and a new password. After the authentication credential is validated mutually authentication is performed between the security server and the token. The token is updated with the new password based on a successful result of the mutual authentication.
-
Citations
15 Claims
-
1. A method of providing a remote reset of a password associated with a token, the remote reset provided by a security server, the method comprising:
-
receiving, at the security server, a request to reset the password associated with the token, wherein the request is received over a secure channel, retrieving, from a third party agent by the security server, a query associated with the token and a correct response to the query; providing the query to the token over the secure channel; receiving a response to the query over the secure channel; and resetting the password based on a comparison of the received response to the correct response. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A server in a computer system providing a remote reset of a password associated with a token, the computer system including at least a security client, and a third party server, the server comprising:
-
a network interface to the security client and the third party server; a processor coupled to the network interface and configured to; establish a secure channel to the security client via the network interface receive a request to reset the password associated with the token over the secure channel, retrieve, from the third party server via the network interface, a query associated with the token and a correct response to the query; provide the query to the token over the secure channel; receive a response to the query over the secure channel; and reset the password based on a comparison of the received response to the correct response. - View Dependent Claims (11, 12)
-
-
13. A computer system providing a remote reset of a password associated with a token, the computer system comprising:
-
a third party server configured to maintain a query associated with the token and a correct response to the query; and a security server coupled to the third party server and configured to; receive a request to reset the password associated with the token, wherein the request is received over a secure channel, retrieve, from the third party server, the query associated with the token and the correct response to the query; provide the query to the token over the secure channel; receive a response to the query over the secure channel; and reset the password based on a comparison of the received response to the correct response. - View Dependent Claims (14, 15)
-
Specification