Access authentication method, information processing unit, and computer product
First Claim
1. An access authentication method for performing access authentication using a recording medium that is detachably connected to an information processing unit, the access authentication method comprising:
- first performing the access authentication by authenticating authentication information provided by a user;
issuing a key corresponding to the authentication information, when the access authentication based on the authentication information is successful at the first performing;
encrypting the authentication information provided by the user with the key to generate encrypted authentication information; and
first storing the key in the information processing unit;
second storing, using a processor, the encrypted authentication information in a first memory area of the recording medium, and a plurality of identification information of login screens for a plurality of systems and respective login information about the login screens, in a corresponding manner, the login information being used to log in the respective login screens and including both an identification information (ID) and a password in a second memory area of the recording medium, the second memory area being protected by the authentication information provided by the user;
second performing, using the processor, the access authentication by obtaining the encrypted authentication information stored in the first memory area of the recording medium at the storing and by decrypting the encrypted authentication information using the key stored in the information processing unit at the storing, when a login screen for a system is displayed on the information processing unit;
reading, using the processor, login information including both an ID and a password corresponding to identification information of the displayed login screen from the second memory area, when the access authentication is successful at the second performing; and
entering, using the processor, the login information read at the reading on the displayed login screen, whereinthe issuing, the encrypting, the first storing, and the second storing are performed in a first event in which the recording medium is connected to the information processing unit, andthe second performing, the reading, and the entering are performed in a second event after the first event in which the recording medium is connected to the information processing unit.
2 Assignments
0 Petitions
Accused Products
Abstract
An input personal identification number (PIN) is encrypted, identification information to identify a computer that has generated an encrypted PIN is associated with the encrypted PIN, and the associated information is sent to a recording medium. When the recording medium is again connected to the computer, it is checked whether the identification information is present in the recording medium. If the identification information is present in the recording medium, the encrypted PIN associated with the identification information is decrypted. These processes can be performed on both computer side and recording medium side.
18 Citations
29 Claims
-
1. An access authentication method for performing access authentication using a recording medium that is detachably connected to an information processing unit, the access authentication method comprising:
-
first performing the access authentication by authenticating authentication information provided by a user; issuing a key corresponding to the authentication information, when the access authentication based on the authentication information is successful at the first performing; encrypting the authentication information provided by the user with the key to generate encrypted authentication information; and first storing the key in the information processing unit; second storing, using a processor, the encrypted authentication information in a first memory area of the recording medium, and a plurality of identification information of login screens for a plurality of systems and respective login information about the login screens, in a corresponding manner, the login information being used to log in the respective login screens and including both an identification information (ID) and a password in a second memory area of the recording medium, the second memory area being protected by the authentication information provided by the user; second performing, using the processor, the access authentication by obtaining the encrypted authentication information stored in the first memory area of the recording medium at the storing and by decrypting the encrypted authentication information using the key stored in the information processing unit at the storing, when a login screen for a system is displayed on the information processing unit; reading, using the processor, login information including both an ID and a password corresponding to identification information of the displayed login screen from the second memory area, when the access authentication is successful at the second performing; and entering, using the processor, the login information read at the reading on the displayed login screen, wherein the issuing, the encrypting, the first storing, and the second storing are performed in a first event in which the recording medium is connected to the information processing unit, and the second performing, the reading, and the entering are performed in a second event after the first event in which the recording medium is connected to the information processing unit. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A computer-readable non-transitory recording medium that stores therein an access authentication program for implementing an access authentication method in which access authentication is performed by an information processing unit being a computer with a recording medium that is detachably connected to the information processing unit, the access authentication program causing the computer to perform a process comprising:
-
first performing the access authentication by authenticating authentication information provided by a user; issuing a key corresponding to the authentication information, when the access authentication based on the authentication information is successful at the first performing; encrypting the authentication information provided by the user with the key to generate encrypted authentication information; and storing the key in the information processing unit, the encrypted authentication information in a first memory area of the recording medium, and a plurality of identification information of login screens for a plurality of systems and respective login information about the login screens, in a corresponding manner, the login information being used to log in the respective login screens and including both an identification information (ID) and a password in a second memory area of the recording medium, the second memory area being protected by the authentication information provided by the user; second performing the access authentication by obtaining the encrypted authentication information stored in the first memory area of the recording medium at the storing and by decrypting the encrypted authentication information using the key stored in the information processing unit at the storing, when a login screen for a system is displayed on the information processing unit; reading login information including both an ID and a password corresponding to identification information of the displayed login screen from the second memory area, when the access authentication is successful at the second performing; and entering the login information read at the reading on the displayed login screen, wherein the issuing, the encrypting, and the storing are performed in a first event in which the recording medium is connected to the information processing unit, and the second performing, the reading, and the entering are performed in a second event after the first event in which the recording medium is connected to the information processing unit. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A computer-readable non-transitory recording medium that stores therein an access authentication program for implementing an access authentication method in which access authentication is performed by a recording medium being a computer that is detachably connected to an information processing unit with authentication information provided by a user, the access authentication program causing the computer to perform a process comprising:
-
first performing the access authentication by authenticating authentication information provided by a user; issuing a key corresponding to the authentication information, when the access authentication based on the authentication information is successful at the first performing; encrypting the authentication information provided by the user with the key to generate encrypted authentication information; and storing the key in the information processing unit, the encrypted authentication information in a first memory area of the recording medium, and a plurality of identification information of login screens for a plurality of systems and respective login information about the login screens, in a corresponding manner, the login information being used to log in the respective login screens including both an identification information (ID) and a password in a second memory area of the recording medium, the second memory area being protected by the authentication information provided by the user; second performing the access authentication by obtaining the encrypted authentication information stored in the first memory area of the recording medium at the storing and by decrypting the encrypted authentication information using the key stored in the information processing unit at the storing, when a login screen for a system is displayed on the information processing unit; reading login information including both an ID and a password corresponding to identification information of the displayed login screen from the second memory area, when the access authentication is successful at the second performing; and entering the login information read at the reading on the displayed login screen, wherein the issuing, the encrypting, and the storing are performed in a first event in which the recording medium is connected to the information processing unit, and the second performing, the reading, and the entering are performed in a second event after the first event in which the recording medium is connected to the information processing unit. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27)
-
-
28. An information processing apparatus for performing access authentication using a recording medium that is detachably connected thereto and authentication information provided by a user, the information processing apparatus comprising:
-
a first performing unit that performs the access authentication by authenticating authentication information provided by a user; an issuing unit that issues a key corresponding to the authentication information, when the access authentication based on the authentication information performed by the first performing unit is successful; an encrypting unit that encrypts the authentication information provided by the user with the key to generate encrypted authentication information; a storing unit that stores the key in the information processing unit, the encrypted authentication information in a first memory area of the recording medium, and a plurality of identification information of login screens for a plurality of systems and respective login information about the login screens, in a corresponding manner, the login information being used to log in the respective login screens and including both an identification information (ID) and a password in a second memory area of the recording medium, the second memory area being protected by the authentication information provided by the user; and a second performing unit that performs the access authentication by obtaining the encrypted authentication information stored in the first memory area of the recording medium at the storing and by decrypting the encrypted authentication information using the key stored in the information processing unit by the storing unit, when a login screen for a system is displayed on the information processing unit;
whereinthe second performing unit reads login information including both an ID and a password corresponding to identification information of the displayed login screen from the second memory area, when the access authentication is successful by the second performing unit, and enters the read login information on the displayed login screen, the issuing by the issuing unit, the encrypting by the encrypting unit, and the storing by storing unit are performed in a first event in which the recording medium is connected to the information processing unit, and the second performing by the second performing unit, the reading by the second performing unit, and the entering by the second performing unit are performed in a second event after the first event in which the recording medium is connected to the information processing unit.
-
-
29. An information processing unit for performing access authentication using a recording medium that is detachably connected thereto and authentication information provided by a user, the information processing unit comprising:
-
a memory; and a processor coupled to the memory, wherein the processor executes a process comprising; first performing the access authentication by authenticating authentication information provided by a user; issuing a key corresponding to the authentication information, when the access authentication based on the authentication information is successful at the first performing; encrypting the authentication information provided by the user with the key to generate encrypted authentication information; storing the key in the information processing unit, the encrypted authentication information in a first memory area of the recording medium, and a plurality of identification information of login screens for a plurality of systems and respective login information about the login screens, in a corresponding manner, the login information being used to log in the respective login screens and including both an identification information (ID) and a password in a second memory area of the recording medium, the second memory area being protected by the authentication information provided by the user; second performing the access authentication by obtaining the encrypted authentication information stored in the first memory area of the recording medium at the storing and by decrypting the encrypted authentication information using the key stored in the information processing unit at the storing, when a login screen for a system is displayed on the information processing unit; reading login information including both an ID and a password corresponding to identification information of the displayed login screen from the second memory area, when the access authentication is successful at the second performing; and entering the login information at the reading on the displayed login screen, wherein the issuing, the encrypting, and the storing are performed in a first event in which the recording medium is connected to the information processing unit, and the second performing, the reading, and the entering are performed in a second event after the first event in which the recording medium is connected to the information processing unit.
-
Specification