Method and system for controlling access privileges for trusted network nodes
First Claim
1. A method for providing a user with access to one or more computers, the method comprising:
- establishing a blank password account by default at a first computer that does not require user entry of a password to login at any time unless a selection is received to establish a conventional account that requires user entry of a password each time to login that is used to generate a new account for the user;
receiving an entry of a human generated password when the selection is the conventional account and for subsequent logins to the conventional account entry of the human generated password is required;
when the selection is not received to establish the conventional account, creating a black password account performing actions comprising;
automatically generating a strong random password without any user input for the a black password account for the user;
wherein the strong random password is the only password that is used to login when in physical proximity to the first computer;
wherein the strong random password comprises at least seven characters including numbers and symbols generated entirely without user input;
designating the new account as the blank password account that is a one-click logon account such that the user is not prompted to enter any authentication information including any password including the strong random password upon any logon attempt to the established blank password account while in physical proximity to the first computer;
storing the strong random password on the first computing device;
receiving a selection of a representation of a user'"'"'s account on a second computer;
determining when the second computer is at a location that is within physical proximity of the first computer and is part of a secured group with the first computer;
determining when the user'"'"'s account is associated with the conventional account and when the user'"'"'s account is associated with the blank password account;
when the account is the conventional account then requiring the user entry of the password;
when the account is the established blank password account then not displaying a password-entry dialog and automatically retrieving the strong random password entered at the first computer without prompting the user to enter the strong random password or any other information such that the user is logged into the blank password account after receiving the selection of the representation of the user'"'"'s account on the second computer.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method for controlling access to a computer provides for loose security within a local network while retaining strong security against external access to the network. In one embodiment, a user has access to trusted nodes in a secured group within an unmanaged network, without being required to choose, enter and remember a login password. To establish such a secure blank password or one-click logon account for the user on a computer, a strong random password is generated and stored, and the account is designated as a blank password account. If the device is part of a secured network group, the strong random password is replicated to the other trusted nodes. When a user with a blank password account wishes to log in to a computer, the stored strong random password is retrieved and the user is authenticated.
34 Citations
20 Claims
-
1. A method for providing a user with access to one or more computers, the method comprising:
-
establishing a blank password account by default at a first computer that does not require user entry of a password to login at any time unless a selection is received to establish a conventional account that requires user entry of a password each time to login that is used to generate a new account for the user; receiving an entry of a human generated password when the selection is the conventional account and for subsequent logins to the conventional account entry of the human generated password is required; when the selection is not received to establish the conventional account, creating a black password account performing actions comprising; automatically generating a strong random password without any user input for the a black password account for the user;
wherein the strong random password is the only password that is used to login when in physical proximity to the first computer;
wherein the strong random password comprises at least seven characters including numbers and symbols generated entirely without user input;designating the new account as the blank password account that is a one-click logon account such that the user is not prompted to enter any authentication information including any password including the strong random password upon any logon attempt to the established blank password account while in physical proximity to the first computer; storing the strong random password on the first computing device; receiving a selection of a representation of a user'"'"'s account on a second computer; determining when the second computer is at a location that is within physical proximity of the first computer and is part of a secured group with the first computer; determining when the user'"'"'s account is associated with the conventional account and when the user'"'"'s account is associated with the blank password account; when the account is the conventional account then requiring the user entry of the password; when the account is the established blank password account then not displaying a password-entry dialog and automatically retrieving the strong random password entered at the first computer without prompting the user to enter the strong random password or any other information such that the user is logged into the blank password account after receiving the selection of the representation of the user'"'"'s account on the second computer. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A system for controlling access to computers in a secured network group, the system comprising:
-
establishing a blank password account by default at a first computer that does not require user entry of a password to login at any time unless a selection is received to establish a conventional account that requires user entry of a password each time to login that is used to generate a new account for the user; receiving an entry of a human generated password when the selection is the conventional account and for subsequent logins to the conventional account entry of the human generated password is required; when the selection is not received to establish the conventional account, creating a black password account performing actions comprising; automatically generating a strong random password without any user input for the a black password account for the user;
wherein the strong random password is the only password that is used to login when in physical proximity to the first computer;
wherein the strong random password comprises at least seven characters including numbers and symbols generated entirely without user input;designating the new account as the blank password account that is a one-click logon account such that the user is not prompted to enter any authentication information including any password including the strong random password upon any logon attempt to the established blank password account while in physical proximity to the first computer; storing the strong random password on the first computing device; receiving a selection of a representation of a user'"'"'s account on a second computer; determining when the second computer is at a location that is within physical proximity of the first computer and is part of a secured group with the first computer; determining when the user'"'"'s account is associated with the conventional account and when the user'"'"'s account is associated with the blank password account; when the account is the conventional account then requiring the user entry of the password; when the account is the established blank password account then not displaying a password-entry dialog and automatically retrieving the strong random password entered at the first computer without prompting the user to enter the strong random password or any other information such that the user is logged into the blank password account after receiving the selection of the representation of the user'"'"'s account on the second computer. - View Dependent Claims (13, 14, 15, 16, 17)
-
-
18. A memory storing computer-executable instructions for providing a user with access to a computer, the instructions comprising:
-
establishing a blank password account by default at a first computer that does not require user entry of a password to login at any time unless a selection is received to establish a conventional account that requires user entry of a password each time to login that is used to generate a new account for the user; receiving an entry of a human generated password when the selection is the conventional account and for subsequent logins to the conventional account entry of the human generated password is required; when the selection is not received to establish the conventional account, creating a black password account performing actions comprising; automatically generating a strong random password without any user input for the a black password account for the user;
wherein the strong random password is the only password that is used to login when in physical proximity to the first computer;
wherein the strong random password comprises at least seven characters including numbers and symbols generated entirely without user input;designating the new account as the blank password account that is a one-click logon account such that the user is not prompted to enter any authentication information including any password including the strong random password upon any logon attempt to the established blank password account while in physical proximity to the first computer; storing the strong random password on the first computing device; receiving a selection of a representation of a user'"'"'s account on a second computer; determining when the second computer is at a location that is within physical proximity of the first computer and is part of a secured group with the first computer; determining when the user'"'"'s account is associated with the conventional account and when the user'"'"'s account is associated with the blank password account; when the account is the conventional account then requiring the user entry of the password; when the account is the established blank password account then not displaying a password-entry dialog and automatically retrieving the strong random password entered at the first computer without prompting the user to enter the strong random password or any other information such that the user is logged into the blank password account after receiving the selection of the representation of the user'"'"'s account on the second computer. - View Dependent Claims (19, 20)
-
Specification