Methods of resetting passwords in network service systems including user redirection and related systems and computer program products
First Claim
1. A method of resetting a password for a network service account, the method comprising:
- accepting entry of a password at a first server via a communication session from an electronic device wherein the electronic device is remote from the first server;
comparing the entered password with a known password;
redirecting the communications session of the user, without user intervention, of the electronic device from the first server to a second server providing a password reset tool responsive to a negative comparison result between the entered password and the known password, such that the entered password does not match the known password;
blocking the user of the electronic device from network access other than the password reset tool in the second server, wherein the second server is separate from the first server;
accepting user entry of verification information at the second server responsive to blocking network access;
comparing the verification information from the user with known verification information for the user at the password reset tool in the second server;
accepting user entry of a new password responsive to matching the entered verification information and the known verification information for the user; and
storing the new password as the known password for the user,wherein the electronic device is remote from both of the first and second servers;
wherein the second server comprises an element of a sandbox network and wherein the first server is outside the sandbox network;
wherein the password reset tool implemented on the second server is separate from the first server;
wherein the password reset tool in the second server is configured to accept redirection of the user of the electronic device from an access control point implemented at the first server to the sandbox network at the second server, the access control point being coupled between the electronic device and the second server;
wherein the password reset tool in the second server implemented at the second server is further configured to accept user entry of verification information, to compare the verification information from the user of the electronic device with known verification information for the user of the electronic device, to accept user entry of a new password if the verification information accepted from the user of the electronic device matches the known verification information for the user of the electronic device, and to store the new password as the known password for the user of the electronic device; and
wherein the method further comprises terminating redirecting the communication session of the user of the electronic device to the second server providing the password reset tool in response to at least one of;
verification information entered by the user that does not match the known verification information;
user verification information that is accepted a predetermined number of times without matching the known verification information; and
passing of a predetermined period of time without accepting user verification information matching the known verification information.
6 Assignments
0 Petitions
Accused Products
Abstract
Resetting a password for a network service account may include redirecting the user to a password reset tool, wherein the user is blocked from network access other than the password reset tool while being redirected. After redirecting the user to the password reset tool, user entry of verification information may be accepted, and the verification information from the user may be compared with known verification information for the user. User entry of a new password may be accepted if the verification information accepted from the user matches the known verification information for the user; and the new password may be stored as the known password for the user. Related systems and computer-program products are also discussed.
64 Citations
17 Claims
-
1. A method of resetting a password for a network service account, the method comprising:
-
accepting entry of a password at a first server via a communication session from an electronic device wherein the electronic device is remote from the first server; comparing the entered password with a known password; redirecting the communications session of the user, without user intervention, of the electronic device from the first server to a second server providing a password reset tool responsive to a negative comparison result between the entered password and the known password, such that the entered password does not match the known password; blocking the user of the electronic device from network access other than the password reset tool in the second server, wherein the second server is separate from the first server; accepting user entry of verification information at the second server responsive to blocking network access; comparing the verification information from the user with known verification information for the user at the password reset tool in the second server; accepting user entry of a new password responsive to matching the entered verification information and the known verification information for the user; and storing the new password as the known password for the user, wherein the electronic device is remote from both of the first and second servers; wherein the second server comprises an element of a sandbox network and wherein the first server is outside the sandbox network; wherein the password reset tool implemented on the second server is separate from the first server; wherein the password reset tool in the second server is configured to accept redirection of the user of the electronic device from an access control point implemented at the first server to the sandbox network at the second server, the access control point being coupled between the electronic device and the second server; wherein the password reset tool in the second server implemented at the second server is further configured to accept user entry of verification information, to compare the verification information from the user of the electronic device with known verification information for the user of the electronic device, to accept user entry of a new password if the verification information accepted from the user of the electronic device matches the known verification information for the user of the electronic device, and to store the new password as the known password for the user of the electronic device; and wherein the method further comprises terminating redirecting the communication session of the user of the electronic device to the second server providing the password reset tool in response to at least one of; verification information entered by the user that does not match the known verification information; user verification information that is accepted a predetermined number of times without matching the known verification information; and passing of a predetermined period of time without accepting user verification information matching the known verification information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A network service system that provides access to a data network for a user having a network service account therewith, the system comprising:
-
an electronic device; and first and second servers in communication with the electronic device; an access control point implemented on the first server configured to accept entry of a password from the electronic device remote from the first server as a condition of providing access to the data network, to compare the entered password with a known password for the user using the electronic device, and to redirect the communications session of the user, without user intervention, of the electronic device from the first server to a second server providing a password reset tool responsive to a negative comparison result between the entered password and the known password, such that the entered password does not match the known password; and a password reset tool implemented on the second server separate from the first server, wherein the password reset tool is configured to accept redirection of the communications session of the user, without user intervention, of the electronic device from the access control point implemented at the first server to the password reset tool implemented at the second server, wherein the user of the electronic device is blocked from network access other than the password reset tool implemented at the second server while being redirected, the password reset tool implemented at the second server being further configured to accept user entry of verification information after redirecting the user of the electronic device to the password reset tool, to compare the verification information from the user of the electronic device with known verification information for the user of the electronic device, to accept user entry of a new password, responsive to matching the entered verification information and the known verification information for the user, and to store the new password as the known password for the user of the electronic device, wherein the electronic device is remote from both of the first and second servers; and wherein the second server comprises an element of a sandbox network and wherein the first server is outside the sandbox network; wherein the password reset tool in the second server is configured to accept redirection of the user of the electronic device from an access control point implemented at the first server to the sandbox network at the second server, the access control point being coupled between the electronic device and the second server; wherein the password reset tool in the second server is configured to terminate redirecting the communication session of the user of the electronic device to the second server providing the password reset tool in response to at least one of; verification information entered by the user that does not match the known verification information; user verification information that is accepted a predetermined number of times without matching the known verification information; and passing of a predetermined period of time without accepting user verification information matching the known verification information. - View Dependent Claims (14, 15, 16)
-
-
17. A computer program product configured to reset a password for a network service account, the computer program product comprising a non-transitory computer readable storage medium having computer-readable program code embodied in the medium, the computer-readable program code comprising:
-
computer-readable program code that is configured to accept entry of a password at a first server from an electronic device wherein the electronic device is remote from the first server; computer-readable program code that is configured to compare the entered password with a known password, wherein redirecting the user to the password reset tool comprises redirecting the user to the password reset tool if the entered password does not match the known password; computer-readable program code that is configured to redirect the communications session of the user, without user intervention, of the electronic device from the first server to a second server providing a password reset tool responsive to a negative comparison result between the entered password and the known password, such that the entered password does not match the known password, and to block the user of the electronic device from network access other than the password reset tool in the second server, wherein the second server is separate from the first server; computer-readable program code that is configured to accept user entry of verification information at the second server responsive to blocking network access; computer-readable program code that is configured to compare the verification information from the user with known verification information for the user at the password reset tool in the second server; computer-readable program code that is configured to accept user entry of a new password responsive to matching the entered verification information and the known verification information for the user; and computer-readable program code that is configured to store the new password as the known password for the user, wherein the electronic device is remote from both of the first and second servers; wherein the second server comprises an element of a sandbox network and wherein the first server is outside the sandbox network; wherein the password reset tool implemented on the second server is separate from the first server; wherein the password reset tool in the second server is configured to accept redirection of the user of the electronic device from an access control point implemented at the first server to the sandbox network at the second server, the access control point being coupled between the electronic device and the second server; wherein the password reset tool in the second server implemented at the second server is further configured to accept user entry of verification information, to compare the verification information from the user of the electronic device with known verification information for the user of the electronic device, to accept user entry of a new password if the verification information accepted from the user of the electronic device matches the known verification information for the user of the electronic device, and to store the new password as the known password for the user of the electronic device; and wherein the method further comprises terminating redirecting the communication session of the user of the electronic device to the second server providing the password reset tool in response to at least one of; verification information entered by the user that does not match the known verification information; user verification information that is accepted a predetermined number of times without matching the known verification information; and passing of a predetermined period of time without accepting user verification information matching the known verification information.
-
Specification