×

Distributed password verification

  • US 9,876,783 B2
  • Filed: 12/22/2015
  • Issued: 01/23/2018
  • Est. Priority Date: 12/22/2015
  • Status: Active Grant
First Claim
Patent Images

1. A method comprising:

  • creating a first token on a first server based, at least in part, on a first set of client identifiers for a client and an encryption key, wherein;

    the first set of client identifiers includes;

    a first hashed password for the client, anda first username for the client, andthe first token is encrypted;

    transmitting the first token from the first server to the client;

    adding, to a honeychecker registry on a second server, the first username, wherein the honeychecker registry is a list of valid usernames;

    deleting the first token and the first set of client identifiers from the first server;

    receiving, on the first server, a second token and a second set of client identifiers for the client, wherein;

    the second token is encrypted,the second token is equivalent to the first token, andthe second set of client identifiers includes;

    a second hashed password, anda second username;

    decrypting the second token using a decryption key to reveal the first set of client identifiers;

    comparing the second hashed password to the first hashed password from the second token to verify an identity of the client;

    determining that the second username does not appear in the honeychecker registry; and

    denying, to the client, responsive to determining that the second username does not appear in the honeychecker registry, access to the account to prevent an unauthorized access;

    wherein;

    at least comparing the second hashed password to the first hashed password from the second token is performed by computer software running on computer hardware.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×