Multiple user desktop graphical identification and authentication

US 8,438,400 B2
Filed: 01/10/2006
Issued: 05/07/2013
Est. Priority Date: 01/11/2005
Status: Expired due to Fees

First Claim

Patent Images

1. A computer-implemented method for secure access to computer resources on a computing system having an operating system with a default graphical identification and authentication (GINA) module and a Winlogon application including steps of:

providing a local computing graphical identification and authentication (GINA) module compatible with the default operating system GINA module, where the computing GINA module is a multiple user desktop (MUD) GINA module;

substituting the MUD GINA for the default operating system GINA;

using the MUD GINA to provide secure access to the computer resources on the local computing module for one or more users, wherein each of the one or more users has a unique credential;

logging on a system dummy-user with the Winlogon application;

using the system dummy-user to maintain a logged-on state with the Winlogon application on the local computing module when at least one of the one or more users is logged-on with the unique credential specific to the at least one user;

providing MUD GINA functionality for secure access to the computer resources, including intermittent logon and logoff by each of the one or more users; and

using the MUD GINA functionality to logon and logoff the at least one of the one or more users while the system dummy-user logged-on state is maintained with the Winlogon application.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A multiple user desktop graphical identification and authentication configured as a loadable dynamic link library (DLL) intended to replace the default Microsoft graphical identification and authentication. It has the ability to create secure, private logon sessions for each user that logs on to the system. There can be up to at least thirteen users logged in at the same time and each user will have their own desktop environment. Auto log off functions may be set based on time of inactivity and/or number of individual users. The multiple user desktop graphical identification and authentication functions in a domain and non-networked environments and needs no added hardware.

Citations

18 Claims

1. A computer-implemented method for secure access to computer resources on a computing system having an operating system with a default graphical identification and authentication (GINA) module and a Winlogon application including steps of:
- providing a local computing graphical identification and authentication (GINA) module compatible with the default operating system GINA module, where the computing GINA module is a multiple user desktop (MUD) GINA module;
  
  substituting the MUD GINA for the default operating system GINA;
  
  using the MUD GINA to provide secure access to the computer resources on the local computing module for one or more users, wherein each of the one or more users has a unique credential;
  
  logging on a system dummy-user with the Winlogon application;
  
  using the system dummy-user to maintain a logged-on state with the Winlogon application on the local computing module when at least one of the one or more users is logged-on with the unique credential specific to the at least one user;
  
  providing MUD GINA functionality for secure access to the computer resources, including intermittent logon and logoff by each of the one or more users; and
  
  using the MUD GINA functionality to logon and logoff the at least one of the one or more users while the system dummy-user logged-on state is maintained with the Winlogon application.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, further comprising the steps of:
    - a. providing a logging service application; and
      
      b. using the logging service application to monitor actions taken by a user of the computing resources.
  - 3. The method of claim 1, wherein the operating system is a 32-bit Windows NT based operating system.
  - 4. The method of claim 1, wherein the operating system is a 64-bit operating system.
  - 5. The method of claim 1, wherein the operating system is one portion of a multiple operating system computing environment.
  - 6. The method of claim 1, wherein the computing module is a DLL.
  - 7. The method of claim 1, wherein the at least one user is more than one user.
  - 8. The method of claim 7, wherein more than one user is logged in, each to their own desktop, with GINA access to lock, unlock, and change desktops.
  - 9. The method of claim 1, wherein the unique credential includes at least one authentication factor in addition to a password.

10. A non-transitory computer-readable storage medium containing computer executable instructions for performing a method for providing secure access to computer resources located on a local computer system, comprising:
- multiple user desktop (MUD) means for creating and maintaining MUDs;
  
  means for graphical identification and authentication (GINA) which provides for secure MUDs;
  
  said means for GINA substitutes for the standard operating system GINA;
  
  means for logging on a system dummy-user with a Winlogon application;
  
  means for using the system dummy-user to maintain a logged-on state with the Winlogon application at the local computing module when at least one user is logged-on with a credential specific to the at least one user;
  
  providing MUD GINA functionality for secure access to the computer resources, including intermittent logon and logoff by at least one user;
  
  using the MUD GINA functionality to logon and logoff at least one user while the system user logged-on state is maintained with Winlogon; and
  
  said MUD means provides multiple user desktops capable of running concurrently on the local computer system while said means for GINA provides access security for each of the MUDs .

11. A computer system for providing secure access to computer resources at a local computing module using 32-bit Windows NT based operating systems, comprising:
- an MUD GINA DLL;
  
  said MUD GINA DLL substitutes for the standard operating system GINA;
  
  a system dummy-user for a Winlogon application configured to maintain a logged-on state with Winlogon at the local computing module when at least one user is logged-on with a credential specific to the at least one user;
  
  said MUD GINA DLL configured to provide secure access to the computer resources, including intermittent logon and logoff by at least one user; and
  
  said MUD GINA DLL provides secure access to multiple user desktops while maintaining the system logged on with Winlogon by maintaining a dummy user on the local computer module.
- View Dependent Claims (12, 13, 14, 15, 16)
- - 12. The system of claim 11, further comprising:
    - a. a logging service application; and
      
      b. said the logging service application monitors actions taken by a user of the computing resources.
  - 13. The system of claim 11, wherein the operating system is a 32-bit Windows NT based operating system.
  - 14. The system of claim 11, wherein the operating system is selected from a list consisting of Windows NT 4.0 workstation/server, Windows 2000 workstation/server, Windows XP, and a successor operating system.
  - 15. The system of claim 11, wherein the operating system is one portion of a multiple operating system computing environment.
  - 16. The system of claim 11, wherein the computer resources comprise at least one element selected from the list consisting of a computer, a workstation, a server, a kiosk, a nursing station, a bank teller terminal, a network, an application, an operating environment, a database, a computer-based control terminal, and a computer file.

17. A computer system for secure access to computer resources using 32-bit Windows NT based operating systems at a local computing module, comprising:
- a substitute GINA DLL;
  
  said substitute GINA DLL substitutes for the standard operating system GINA;
  
  said substitute GINA DLL provides secure access to a user desktop while maintaining the system logged on at the local computing module with a Winlogon application by maintaining a dummy user when at least one user is logged-on with a separate credential specific to each user; and
  
  said substitute GINA DLL provides secure access to a user desktop, with intermittent logon and logoff by at least one user, while the user desktop and applications are running;
  
  wherein said computer system provides for more than one user to be logged in concurrently to the local computing module, each to their own private desktop, with GINA access to lock, unlock, and change desktops.
- View Dependent Claims (18)
- - 18. The system of claim 17, wherein the more than one user is at least 13 users.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Indigo Identityware Incorporated
Original Assignee
Indigo Identityware Incorporated
Inventors
Hoghaug, Robert John, Hoghaug, Thomas Andrew
Primary Examiner(s)
GOODCHILD, WILLIAM J

Application Number

US11/329,216
Publication Number

US 20070101155A1
Time in Patent Office

2,674 Days
Field of Search

713/1, 713/189, 713/202, 709/201, 709/229, 717/168
US Class Current

713/189
CPC Class Codes

G06F 21/31   User authentication

G06F 21/32   using biometric data, e.g. ...

G06F 2221/2149   Restricted operating enviro...

Multiple user desktop graphical identification and authentication

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Multiple user desktop graphical identification and authentication

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links