Password protection using pattern

US 9,111,073 B1
Filed: 11/19/2012
Issued: 08/18/2015
Est. Priority Date: 11/19/2012
Status: Active Grant

First Claim

Patent Images

1. A method of establishing a user identity, said method comprising:

displaying a two dimensional grid having individual elements on a display at a first computing device;

generating, by a computer user, a two-dimensional pattern in said grid of said display of said first computing device by inserting symbols by said user into said grid, wherein said inserted symbols form a password;

generating one or more other symbols at said first computing device within said grid, wherein said other symbols do not include said password;

receiving, on said first computing device, a user identifier from said computer user;

transmitting said user identifier and said grid with said user inserted symbols and said other symbols from said first computing device to a second computing device without transmitting said pattern, said inserted symbols or said other symbols outside of said grid;

after said transmitting operation, determining a set of coordinates that define said pattern at said second computing device; and

storing said set of coordinates, said user identifier and said password in association with one another in persistent storage of said second computing device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A user generates a pattern in a matrix (or two-dimensional grid) and enters a user name and an associated password. This username, password and pattern are stored locally on a computing device or are transmitted to a remote computer server for later authentication. Upon authentication, an input matrix is displayed. The user enters the password into the matrix in the form of the pattern, and also enters the username. The computer retrieves the previously stored pattern and password with the username. The previously stored pattern is used to read the input password from the input matrix. A match with the stored password indicates authentication. Alternatively, the input matrix only includes the pattern and password is entered separately. The input matrix may also be filled with random characters to improve security. The stored pattern is compared to the input pattern using image analysis or by comparing a set of coordinates.

79 Citations

View as Search Results

22 Claims

1. A method of establishing a user identity, said method comprising:
- displaying a two dimensional grid having individual elements on a display at a first computing device;
  
  generating, by a computer user, a two-dimensional pattern in said grid of said display of said first computing device by inserting symbols by said user into said grid, wherein said inserted symbols form a password;
  
  generating one or more other symbols at said first computing device within said grid, wherein said other symbols do not include said password;
  
  receiving, on said first computing device, a user identifier from said computer user;
  
  transmitting said user identifier and said grid with said user inserted symbols and said other symbols from said first computing device to a second computing device without transmitting said pattern, said inserted symbols or said other symbols outside of said grid;
  
  after said transmitting operation, determining a set of coordinates that define said pattern at said second computing device; and
  
  storing said set of coordinates, said user identifier and said password in association with one another in persistent storage of said second computing device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method as recited in claim 1 wherein said password is composed of symbols.
  - 3. The method as recited in claim 1 wherein said password is composed of alphanumeric characters and wherein each of said inserted symbols is a different one of said alphanumeric characters of said password.
  - 4. The method as recited in claim 1 wherein said two-dimensional pattern is generated using a matrix on said display of said first computing device, and wherein said set of coordinates define elements of said matrix.
  - 5. The method as recited in claim 1 further comprising:
    - receiving, on said computing device, input from said computer user indicating a desired matrix size; and
      
      displaying, at said computing device, a matrix of said size wherein said pattern is generated within said matrix and wherein said receiving of said input indicating said desired matrix size and said displaying of said matrix of said size are performed before said receiving of said one or more symbols.
  - 6. The method as recited in claim 1 further comprising:
    - after said storing, receiving input from said user defining an input password, an input user identifier and an input pattern; and
      
      comparing said input password, said input identifier and said input pattern to said password, said user identifier and said set of coordinates in persistent storage of said second computing device in order to authenticate said user.
  - 7. The method as recited in claim 1 further comprising:
    - assigning, at said first computing device, a flag to each of said symbols inserted by said user into said grid, said flags indicating which symbols in said grid were inserted by said user, wherein said transmitted grid includes said flags.
  - 8. The method as recited in claim 1 wherein said first computing device automatically generates and displays said pattern in said grid at said first computing device before said user inserts said symbols into said grid.
  - 9. The method as recited in claim 1 further comprising:
    - after said storing operation, displaying a two dimensional authentication grid at a display of a computer system wherein said computer system is one selected from the group consisting of said first computing device and a third computing device;
      
      receiving input from said user at said computer system, said user input including one or more input symbols that are inserted into said authentication grid by said user;
      
      receiving an input user identifier from said user at said computer system; and
      
      transmitting said input user identifier and said authentication grid with said inserted symbols from said computer system to said second computing device without indicating which symbols in said authentication grid were inserted by said user;
      
      retrieving, at said second computing device, said stored set of coordinates using said input user identifier;
      
      retrieving, at said second computing device, said stored password using said input user identifier;
      
      using, at said second computing device, said stored set of coordinates to select symbols from said received authentication grid that correspond to said stored set of coordinates, said selected symbols forming an input password;
      
      comparing, at said second computing device, said input password to said previously stored password; and
      
      authenticating said user at said server computer when said input password matches said previously stored password.
  - 10. The method as recited in claim 1 wherein:
    - said generating of said pattern includes said user selecting a particular set of said individual elements in said grid at said first computing device, said selected set including a first number of said individual elements that define said pattern;
      
      said insertion of said symbols by said user includes said user inserting, after said selection of said set, each of said user inserted symbols into a different one of said individual elements in said selected set to form said password;
      
      said password is formed from a second number of said user inserted symbols and said second number is less than said first number of said individual elements in said selected set such that, after said user inserted symbols are inserted into said selected set, at least one of said individual elements in said selected set does not include any of said user inserted symbols, thereby causing said selected set to be partially filled with said user inserted symbols; and
      
      said transmitted grid includes said partially filled set.

11. A method of authenticating a user, said method comprisingdisplaying, on a first computing device, a two-dimensional grid having individual elements;
- receiving input at said first computing device from a user of said first computing device that defines a pattern on said grid wherein said user input that defines said pattern includes one or more symbols that are inserted into said grid by said user;
  
  receiving a password input from said user on said first computing device in the form of said inserted symbols;
  
  generating one or more symbols within said grid at said first computer device wherein said generated symbols are different from said user inserted symbols and do not include said password;
  
  receiving a user identifier from said user at said first computing device; and
  
  transmitting said user identifier and said grid with said user inserted symbols and said generated symbols from said first computing device to a second computing device without indicating which symbols in said grid were inserted by said user and without transmitting said pattern or said user inserted symbols outside of said grid; and
  
  authenticating said user using said pattern, said password input and said user identifier at said second computing device using a stored pattern, a stored password and a stored user identifier in persistent storage of said second computing device.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The method as recited in claim 11 wherein said password input is composed of symbols.
  - 13. The method as recited in claim 11 wherein said password input is composed of alphanumeric characters and wherein each one of said one or more inserted symbols is a different one of said alphanumeric characters of said password input.
  - 14. The method as recited in claim 11 further comprising:
    - prompting said user to input a desired grid size;
      
      receiving a response from said user indicating said desired grid size wherein said displayed grid is of said desired size and wherein said prompting and said receiving of said response indicating said desired grid size are performed before said displaying of said grid.
  - 15. The method as recited in claim 11 wherein:
    - said user input that defines said pattern includes said user selecting a set of said individual elements in said grid at said first computing device, said selected set including a first number of individual elements that define said pattern;
      
      said insertion of said symbols by said user includes said user inserting, after said selection of said set, each of said user inserted symbols into a different one of said individual elements in said selected set to form said password;
      
      said password is formed from a second number of said user inserted symbols and said second number is less than said first number of said individual elements in said selected set such that, after said user inserted symbols are inserted into said selected set, at least one of said individual elements in said selected set does not include any of said user inserted symbols, thereby causing said selected set to be partially filled with said user inserted symbols; and
      
      said transmitted grid includes said partially filled set.

16. A method of authenticating a user, said method comprising:
- receiving input at a computer server from a computing device, wherein said input indicates a request for a grid of a desired size from a user;
  
  after said receiving of said input, receiving, at said computer server, a two-dimensional grid with individual elements from said computing device, wherein a plurality of said elements include symbols that were inserted into said grid by said user and other symbols that were generated by said computing device and wherein said received grid is of said desired size as requested by said user and wherein said computer server does not receive any information from said computing device indicating which symbols in said grid were inserted by said user and wherein said computer server does not receive any information outside of said grid from said computing device that indicates said symbols inserted by said user;
  
  receiving, at said computer server, a user identifier from said computing device wherein said user identifier is associated with said grid received from said computing device;
  
  retrieving, at said computer server, a previously stored pattern from persistent storage using said user identifier;
  
  retrieving, at said computer server, a previously stored password from persistent storage using said user identifier;
  
  after said receiving of said input and said receiving of said two-dimensional grid of said desired size as requested by said user, using, at said server computer, said stored pattern to select symbols from said received grid that correspond to said stored pattern, said selected symbols forming an input password;
  
  comparing, at said server computer, said input password to said previously stored password; and
  
  authenticating said user at said server computer when said input password matches said previously stored password.
- View Dependent Claims (17, 18, 19, 20, 21, 22)
- - 17. The method as recited in claim 16 wherein said received grid includes elements having symbols other than elements of said grid that correspond to said previously stored pattern.
  - 18. The method as recited in claim 16 further comprising:
    - selecting, at said computer server, symbols from said grid by superimposing an image of said previously stored pattern onto said grid.
  - 19. The method as recited in claim 16 further comprising:
    - retrieving, from said persistent storage, a set of coordinates defining said previously stored pattern;
      
      selecting symbols from said grid by using said set of coordinates.
  - 20. The method as recited in claim 16 further comprising:
    - displaying on said computing device an indication that said user has been authenticated.
  - 21. The method as recited in claim 16 wherein said symbols are alphanumeric characters.
  - 22. The method as recited in claim 16 wherein:
    - said grid received at said server includes a set of said individual elements that delineate said previously stored pattern stored at said computer server in said grid, said set including a first number of said individual elements that were selected by said user;
      
      each of said user inserted symbols are inserted into a different one of said individual elements in said set to form said input password; and
      
      said input password is formed from a second number of said user inserted symbols and said second number is less than said first number of said individual elements in said selected set such that, after said user inserted symbols are inserted into said selected set, at least one of said individual elements in said set does not include any of said user inserted symbols.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Trend Micro Inc.
Original Assignee
Trend Micro Inc.
Inventors
Cao, Jing, Jiang, Juliang, Ruan, Xiangdong
Primary Examiner(s)
Schwartz, Darren B

Application Number

US13/680,834
Time in Patent Office

1,002 Days
Field of Search

726/6
US Class Current

1/1
CPC Class Codes

G06F 21/36 by graphic or iconic repres...

Password protection using pattern

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

79 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Password protection using pattern

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

79 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links