System for processing lost password using password long-term memory of user, and method for processing lost password

US 9,684,782 B2
Filed: 08/01/2013
Issued: 06/20/2017
Est. Priority Date: 08/01/2012
Status: Active Grant

First Claim

Patent Images

1. A system for processing a lost password, comprising:

a user terminal comprising a processor and executable instructions which, when executed by the processor, implement;

a term memory condition registration unit configured to receive registration of a term memory condition for determining whether a user has term memory of a password, wherein the term memory condition includes at least one of a reference success time counted as a time passed since the password was set, or a reference success number counted as a number of authentication succeeded since the password was set;

a term memory condition determination unit configured to determine whether the term memory condition of the user is satisfied each time authentication processing of the password is attempted;

a user identity verification unit configured to, in the event that a lost password is determined to have occurred due to failed authentication of the password, when non-term memory of the user is determined, perform authentication processing using a user identity verification technique registered upon setting the password, and when term memory of the user is determined, perform authentication processing using a user identity verification technique with an enhanced authentication procedure over the registered identity verification technique; and

a lost state cancellation unit configured to perform cancellation processing of an occurrence state of the lost password in the user terminal when the user identity verification succeeds.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention relates to a system and method for processing a lost password by selectively providing a reset process under the password in the long-term memory of the user. According to the present invention, the system includes a user terminal including: a long-term memory condition registration unit receiving the registration of long-term memory conditions; a long-term condition determination unit determining the long-term memory conditions are satisfied; a user identification unit, after the occurrence of a lost password, authenticating the user through a user identification verification scheme or through a enhanced user identification verification scheme whether or not the password resides in the long-term memory of the user, and a lost state resetting unit cancelling the lost password occurrence state. According to the present invention, provided are an identification verification service or an enhanced identification authentication service whether or not the password resides in the long term memory of user.

Citations

22 Claims

1. A system for processing a lost password, comprising:
- a user terminal comprising a processor and executable instructions which, when executed by the processor, implement;
  
  a term memory condition registration unit configured to receive registration of a term memory condition for determining whether a user has term memory of a password, wherein the term memory condition includes at least one of a reference success time counted as a time passed since the password was set, or a reference success number counted as a number of authentication succeeded since the password was set;
  
  a term memory condition determination unit configured to determine whether the term memory condition of the user is satisfied each time authentication processing of the password is attempted;
  
  a user identity verification unit configured to, in the event that a lost password is determined to have occurred due to failed authentication of the password, when non-term memory of the user is determined, perform authentication processing using a user identity verification technique registered upon setting the password, and when term memory of the user is determined, perform authentication processing using a user identity verification technique with an enhanced authentication procedure over the registered identity verification technique; and
  
  a lost state cancellation unit configured to perform cancellation processing of an occurrence state of the lost password in the user terminal when the user identity verification succeeds.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The system for processing a lost password according to claim 1, wherein the user terminal further comprises:
    - a success time collection unit configured to count a time passed since the password was set; and
      
      a success number collection unit configured to count a number of authentication succeeded since the password was set.
  - 3. The system for processing a lost password according to claim 1, wherein the user terminal further comprises:
    - a term memory change unit configured to notify the user, each time the term memory condition of the set password is initially satisfied, of the fact that the condition is satisfied, and to receive a consent to registration of satisfaction of the condition.
  - 4. The system for processing a lost password according to claim 3, wherein the term memory change unit initializes counting information included in the term memory condition when the consent is rejected by the user.
  - 5. The system for processing a lost password according to claim 1, wherein the user terminal omits the processing of the user identity verification and outputs a new password setting display, when the term memory condition is determined to be unsatisfied.
  - 6. The system for processing a lost password according to claim 1, wherein the user terminal outputs notification to a screen to request the user to visit an authentication center, instead of providing the processing of the user identity verification, when the term memory condition is determined to be satisfied.
  - 7. The system for processing a lost password according to claim 1, wherein the user terminal changes between modes, andthe modes comprise:
    - a password mode in which a password input is requested;
      
      a user identity verification mode in which user identity verification is requested when the term memory condition is unsatisfied after a lost password is determined to have occurred in the password mode; and
      
      a lock mode in which user manipulation is disallowed when the term memory condition is satisfied.
  - 8. The system for processing a lost password according to claim 1, wherein the user terminal further comprises:
    - an identity verification user unit configured to receive registration of user information of at least one second user able to verify a first user'"'"'s identity when the first user forgot a password each password setting, to keep a lost password from occurring, andthe user identity verification unit performs authentication processing of the second user'"'"'s answer in response to a question about the first user'"'"'s identity.
  - 9. The system for processing a lost password according to claim 8, further comprising:
    - a call connection server configured to receive an occurrence event of a lost password from the user terminal, connect an automated response system (ARS) call between the first user and the second user, receive an answer inputted from the second user having confirmed the first user'"'"'s identity via the connected call, and perform authentication processing of the received answer.
  - 10. The system for processing a lost password according to claim 9, wherein the call connection server requests the second user to provide a predetermined answer during the call being connected, and receives, from the second user, an answer delivered from the first user in response to the request.
  - 11. The system for processing a lost password according to claim 9, wherein the call connection server connects ARS calls between the first user and n (n>
    - 1) second users when the term memory condition is determined to be satisfied, and determines the user identity verification as a success when n answers received from the second users are all successes.

12. A method for processing a lost password by which a user terminal cancels a state of a lost password, the method comprising:
- (a) a term memory condition registration step of receiving registration of a term memory condition for determining whether a user has term memory of a password, wherein the term memory condition includes at least one of a reference success time counted as a time passed since the password was set, or a reference success number counted as a number of authentication succeeded since the password was set;
  
  (b) a term memory condition determination step of determining whether the term memory condition is satisfied each time authentication processing of the password inputted from the user is attempted;
  
  (c) a user identity verification step of, after a lost password occurs due to failed authentication of the password, when non-term memory of the user is determined, performing authentication processing using a user identity verification technique registered upon setting the password, and when term memory of the user is determined, performing authentication processing using a user identity verification technique with an enhanced authentication procedure over the registered identity verification technique; and
  
  (d) a lost state cancellation step of performing cancellation processing of an occurrence state of the lost password in the user terminal when the user identity verification succeeds.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 13. The method for processing a lost password according to claim 12, further comprising:
    - before the step (b),each time the user terminal performs authentication processing of the password,counting, by the user terminal, a time passed since the password was set; and
      
      counting, by the user terminal, a number of authentication succeeded since the password was set.
  - 14. The method for processing a lost password according to claim 13, further comprising:
    - after the step (a),notifying, by the user terminal, the user of the fact that the condition is satisfied each time the term memory condition of the set password is initially satisfied, and receiving a consent to registration of satisfaction of the condition.
  - 15. The method for processing a lost password according to claim 14, further comprising:
    - initializing, by the user terminal, the counting information included in the term memory condition when the consent is rejected by the user.
  - 16. The method for processing a lost password according to claim 12, wherein the step (b) comprises determining, by the user terminal, as the term memory condition, at least one condition of a first condition in which the time counted since the password was set exceeds the reference success time and a second condition in which a number of authentication successes of the password counted since the password was set exceeds the reference success number, and when the counted time exceeds the reference success time and the counted number exceeds the reference success number, determining that the term memory condition is satisfied.
  - 17. The method for processing a lost password according to claim 12, wherein the step (c) comprises omitting, by the user terminal, the processing of the user identity verification using the registered user identity verification technique and outputting a new password setting display, when the term memory condition of the user is determined to be unsatisfied.
  - 18. The method for processing a lost password according to claim 12, wherein the step (c) comprises outputting, by the user terminal, notification to a screen to request the user to visit an authentication center, instead of providing the processing of the user identity verification, when the term memory condition of the user is determined to be satisfied.
  - 19. The method for processing a lost password according to claim 12, wherein the step (a) further comprises receiving, by the user terminal, registration of user information of at least one second user able to verify a first user'"'"'s identity when the first user forgot a password, to keep a lost password from occurring each password setting, andthe step (c) comprises performing, by the user identity, authentication processing of the second user'"'"'s answer in response to a question about the first user'"'"'s identity.
  - 20. The method for processing a lost password according to claim 19, wherein the step (c) comprises receiving, by a call connection server, an occurrence event of a lost password from the user terminal, connecting an automated response system (ARS) call between the first user and the second user, receiving an answer inputted from the second user having confirmed the first user'"'"'s identity via the connected call, and performing authentication processing of the received answer and transmitting a result of the processing to the user terminal.
  - 21. The method for processing a lost password according to claim 20, comprising:
    - requesting, by the call connection server, the second user to provide a predetermined answer during the call being connected, and receiving, from the second user, an answer delivered from the first user in response to the request.
  - 22. The method for processing a lost password according to claim 20, further comprising:
    - connecting, by the call connection server, ARS calls between the first user and n (n>
      
      1) second users when the term memory condition is determined to be satisfied, and determining the user identity verification as a success when n answers received from the second users are all successes.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Rowem Incorporated
Original Assignee
Rowem Incorporated
Inventors
Hwang, Jaeyeob, Yang, Giho
Primary Examiner(s)
LEWIS, LISA C

Application Number

US14/418,830
Publication Number

US 20150294106A1
Time in Patent Office

1,419 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/45   Structures or tools for the...

G06F 2221/2131   Lost password, e.g. recover...

G06F 2221/2135   Metering

System for processing lost password using password long-term memory of user, and method for processing lost password

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

System for processing lost password using password long-term memory of user, and method for processing lost password

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links