Dynamic password generation

US 9,798,872 B2
Filed: 01/27/2017
Issued: 10/24/2017
Est. Priority Date: 12/17/2015
Status: Active Grant

First Claim

Patent Images

1. A computer system for providing access to electronic information, the system comprising:

a computer, a computer-readable storage medium, and program instructions stored on the computer-readable storage medium, which when executed cause the computer to perform a method comprising;

receiving, by a first computer from a second computer over a network, in response to information entered into a user interface on the second computer, a first password string associated with a user;

retrieving, by the first computer, from a database, a second password string associated with the user and a rule for configuring and generating a third password string from the second password string, wherein the rule specifies a dynamic element to insert in the second password string based on first contextual information associated with the user, and wherein a value of the specified dynamic element is determined based on second contextual information associated with the user;

configuring and generating, by the first computer, the third password string from the second password string, based on the retrieved rule;

determining, by the first computer, that the first password string matches the third password string; and

granting, by the first computer, the second computer access to the electronic information.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Providing access to electronic information. A first password string associated with a user is received. A second password string associated with the user and a rule for configuring and generating a third password string from the second password string is retrieved from a database. The rule specifies a dynamic element to insert in the second password string based on first contextual information associated with the user. The value of the specified dynamic element is determined based on second contextual information associated with the user. Based on the rule, the third password string is configured and generated from the second password string. It is determined that the first password string matches the third password string. Access to the electronic information is granted.

41 Citations

View as Search Results

14 Claims

1. A computer system for providing access to electronic information, the system comprising:
- a computer, a computer-readable storage medium, and program instructions stored on the computer-readable storage medium, which when executed cause the computer to perform a method comprising;
  
  receiving, by a first computer from a second computer over a network, in response to information entered into a user interface on the second computer, a first password string associated with a user;
  
  retrieving, by the first computer, from a database, a second password string associated with the user and a rule for configuring and generating a third password string from the second password string, wherein the rule specifies a dynamic element to insert in the second password string based on first contextual information associated with the user, and wherein a value of the specified dynamic element is determined based on second contextual information associated with the user;
  
  configuring and generating, by the first computer, the third password string from the second password string, based on the retrieved rule;
  
  determining, by the first computer, that the first password string matches the third password string; and
  
  granting, by the first computer, the second computer access to the electronic information.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. A computer system in accordance with claim 1, wherein the first computer is selected from the group consisting of a mobile computing device and a cloud computing node.
  - 3. A computer system in accordance with claim 1, wherein the second computer is selected from the group consisting of a mobile computing device and a cloud computing node.
  - 4. A computer system in accordance with claim 1, wherein the rule for configuring and generating a second password string includes a string generation rule for generating a string at a corresponding reference character position of the first password string, based on the second contextual information associated with the user.
  - 5. A computer system in accordance with claim 4, wherein the string generation rule includes a pattern, which specifies that second contextual information associated with the user is to be inserted at the corresponding reference character position of the first password string.
  - 6. A computer system in accordance with claim 1, wherein the first contextual information associated with the user and the second contextual information associated with the user comprise, respectively, one or more information selected from the group consisting of:
    - a location, a time, a date, a month, a day of the week, a pin code, a predefined constant character string, a character sequence based on a grid card, and a one-time password.
  - 7. A computer system in accordance with claim 1, wherein the rule for configuring and generating a second password string comprises a rule selected from the group consisting of:
    - a rule defined by the user and a rule selected from a predefined set of rules.

8. A computer program product for providing access to electronic information, the program product comprising:
- a computer-readable storage medium and program instructions stored on the computer-readable storage medium, the program instructions, when executed by a computer, cause the computer to perform a method comprising;
  
  receiving, by a first computer from a second computer over a network, in response to information entered into a user interface on the second computer, a first password string associated with a user;
  
  retrieving, by the first computer, from a database, a second password string associated with the user and a rule for configuring and generating a third password string from the second password string, wherein the rule specifies a dynamic element to insert in the second password string based on first contextual information associated with the user, and wherein a value of the specified dynamic element is determined based on second contextual information associated with the user;
  
  configuring and generating, by the first computer, the third password string from the second password string, based on the retrieved rule;
  
  determining, by the first computer, that the first password string matches the third password string; and
  
  granting, by the first computer, the second computer access to the electronic information.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. A computer program product in accordance with claim 8, wherein the first computer is selected from the group consisting of a mobile computing device and a cloud computing node.
  - 10. A computer program product in accordance with claim 8, wherein the second computer is selected from the group consisting of a mobile computing device and a cloud computing node.
  - 11. A computer program product in accordance with claim 8, wherein the rule for configuring and generating a second password string includes a string generation rule for generating a string at a corresponding reference character position of the first password string, based on the second contextual information associated with the user.
  - 12. A computer program product in accordance with claim 11, wherein the string generation rule includes a pattern, which specifies that second contextual information associated with the user is to be inserted at the corresponding reference character position of the first password string.
  - 13. A computer program product in accordance with claim 8, wherein the first contextual information associated with the user and the second contextual information associated with the user comprise, respectively, one or more information selected from the group consisting of:
    - a location, a time, a date, a month, a day of the week, a pin code, a predefined constant character string, a character sequence based on a grid card, and a one-time password.
  - 14. A computer program product in accordance with claim 8, wherein the rule for configuring and generating a second password string comprises a rule selected from the group consisting of:
    - a rule defined by the user and a rule selected from a predefined set of rules.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Shetty, Ashrith, Shetty, Rohit
Primary Examiner(s)
LE, CHAU D

Application Number

US15/417,882
Publication Number

US 20170177857A1
Time in Patent Office

270 Days
Field of Search
US Class Current
CPC Class Codes

G06F 16/90344   by using string matching te...

G06F 21/46   by designing passwords or c...

H04L 63/083   using passwords cryptograph...

H04L 63/0846   using time-dependent-passwo...

H04L 63/10   for controlling access to d...

H04W 12/06   Authentication

H04W 12/61   Time-dependent

H04W 12/63   Location-dependent; Proximi...

Dynamic password generation

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

41 Citations

14 Claims

Specification

Use Cases

Quick Links

Others

Dynamic password generation

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

41 Citations

14 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others