KR101292975B1 - 패스워드 보호 - Google Patents

패스워드 보호 Download PDF

Info

Publication number
KR101292975B1
KR101292975B1 KR1020050090321A KR20050090321A KR101292975B1 KR 101292975 B1 KR101292975 B1 KR 101292975B1 KR 1020050090321 A KR1020050090321 A KR 1020050090321A KR 20050090321 A KR20050090321 A KR 20050090321A KR 101292975 B1 KR101292975 B1 KR 101292975B1
Authority
KR
South Korea
Prior art keywords
password
data
delete delete
key pair
public key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
KR1020050090321A
Other languages
English (en)
Korean (ko)
Other versions
KR20060066621A (ko
Inventor
제스퍼 엠. 요한슨
조쉬 디. 베낼로
Original Assignee
마이크로소프트 코포레이션
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 마이크로소프트 코포레이션 filed Critical 마이크로소프트 코포레이션
Publication of KR20060066621A publication Critical patent/KR20060066621A/ko
Application granted granted Critical
Publication of KR101292975B1 publication Critical patent/KR101292975B1/ko
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F15/00Digital computers in general; Data processing equipment in general
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/14Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
KR1020050090321A 2004-11-17 2005-09-28 패스워드 보호 Expired - Fee Related KR101292975B1 (ko)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/990,798 US7602910B2 (en) 2004-11-17 2004-11-17 Password protection
US10/990,798 2004-11-17

Publications (2)

Publication Number Publication Date
KR20060066621A KR20060066621A (ko) 2006-06-16
KR101292975B1 true KR101292975B1 (ko) 2013-08-02

Family

ID=35534213

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020050090321A Expired - Fee Related KR101292975B1 (ko) 2004-11-17 2005-09-28 패스워드 보호

Country Status (5)

Country Link
US (1) US7602910B2 (enExample)
EP (1) EP1659475B1 (enExample)
JP (1) JP4914051B2 (enExample)
KR (1) KR101292975B1 (enExample)
CN (1) CN1777096B (enExample)

Families Citing this family (59)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8284942B2 (en) * 2004-08-24 2012-10-09 Microsoft Corporation Persisting private/public key pairs in password-encrypted files for transportation to local cryptographic store
US7992203B2 (en) 2006-05-24 2011-08-02 Red Hat, Inc. Methods and systems for secure shared smartcard access
US8495380B2 (en) 2006-06-06 2013-07-23 Red Hat, Inc. Methods and systems for server-side key generation
US7822209B2 (en) 2006-06-06 2010-10-26 Red Hat, Inc. Methods and systems for key recovery for a token
US8364952B2 (en) 2006-06-06 2013-01-29 Red Hat, Inc. Methods and system for a key recovery plan
US8180741B2 (en) 2006-06-06 2012-05-15 Red Hat, Inc. Methods and systems for providing data objects on a token
US8332637B2 (en) 2006-06-06 2012-12-11 Red Hat, Inc. Methods and systems for nonce generation in a token
US8098829B2 (en) 2006-06-06 2012-01-17 Red Hat, Inc. Methods and systems for secure key delivery
US9769158B2 (en) 2006-06-07 2017-09-19 Red Hat, Inc. Guided enrollment and login for token users
US8589695B2 (en) 2006-06-07 2013-11-19 Red Hat, Inc. Methods and systems for entropy collection for server-side key generation
US8099765B2 (en) 2006-06-07 2012-01-17 Red Hat, Inc. Methods and systems for remote password reset using an authentication credential managed by a third party
US8707024B2 (en) 2006-06-07 2014-04-22 Red Hat, Inc. Methods and systems for managing identity management security domains
US8412927B2 (en) 2006-06-07 2013-04-02 Red Hat, Inc. Profile framework for token processing system
US8787566B2 (en) * 2006-08-23 2014-07-22 Red Hat, Inc. Strong encryption
US8806219B2 (en) 2006-08-23 2014-08-12 Red Hat, Inc. Time-based function back-off
US9038154B2 (en) 2006-08-31 2015-05-19 Red Hat, Inc. Token Registration
US8977844B2 (en) 2006-08-31 2015-03-10 Red Hat, Inc. Smartcard formation with authentication keys
US8074265B2 (en) 2006-08-31 2011-12-06 Red Hat, Inc. Methods and systems for verifying a location factor associated with a token
US8356342B2 (en) 2006-08-31 2013-01-15 Red Hat, Inc. Method and system for issuing a kill sequence for a token
US20080123842A1 (en) * 2006-11-03 2008-05-29 Nokia Corporation Association of a cryptographic public key with data and verification thereof
US8418235B2 (en) * 2006-11-15 2013-04-09 Research In Motion Limited Client credential based secure session authentication method and apparatus
DE602006006072D1 (de) * 2006-11-22 2009-05-14 Research In Motion Ltd System und Verfahren für ein sicheres Aufzeichnungsprotokoll unter Verwendung von gemeinsam genutzten Kenntnissen von Mobilteilnehmerberechtigungsnachweisen
US20080118059A1 (en) * 2006-11-22 2008-05-22 Research In Motion Limited System and method for secure record protocol using shared knowledge of mobile user credentials
US8693690B2 (en) 2006-12-04 2014-04-08 Red Hat, Inc. Organizing an extensible table for storing cryptographic objects
US8607070B2 (en) * 2006-12-20 2013-12-10 Kingston Technology Corporation Secure storage system and method of use
US8813243B2 (en) 2007-02-02 2014-08-19 Red Hat, Inc. Reducing a size of a security-related data object stored on a token
US8639940B2 (en) 2007-02-28 2014-01-28 Red Hat, Inc. Methods and systems for assigning roles on a token
US8832453B2 (en) 2007-02-28 2014-09-09 Red Hat, Inc. Token recycling
US9081948B2 (en) 2007-03-13 2015-07-14 Red Hat, Inc. Configurable smartcard
US9767319B2 (en) 2007-04-17 2017-09-19 Avago Technologies General Ip (Singapore) Pte. Ltd. Method and apparatus of secure authentication for system on chip (SoC)
US8499168B2 (en) * 2007-05-09 2013-07-30 Kingston Technology Corporation Secure and scalable solid state disk system
US8527781B2 (en) * 2007-05-09 2013-09-03 Kingston Technology Corporation Secure and scalable solid state disk system
US8010768B2 (en) * 2007-05-09 2011-08-30 Kingston Technology Corporation Secure and scalable solid state disk system
US8302167B2 (en) * 2008-03-11 2012-10-30 Vasco Data Security, Inc. Strong authentication token generating one-time passwords and signatures upon server credential verification
US8140855B2 (en) * 2008-04-11 2012-03-20 Microsoft Corp. Security-enhanced log in
CN101917427A (zh) * 2010-08-10 2010-12-15 电子科技大学 一种将非认证密钥交换协议转化为认证的密钥交换协议的方法
US8918853B2 (en) * 2011-06-29 2014-12-23 Sharp Laboratories Of America, Inc. Method and system for automatic recovery from lost security token on embedded device
US20130290733A1 (en) * 2012-04-26 2013-10-31 Appsense Limited Systems and methods for caching security information
US20130290734A1 (en) * 2012-04-26 2013-10-31 Appsense Limited Systems and methods for caching security information
US8954735B2 (en) * 2012-09-28 2015-02-10 Intel Corporation Device, method, and system for secure trust anchor provisioning and protection using tamper-resistant hardware
US8897450B2 (en) * 2012-12-19 2014-11-25 Verifyle, Inc. System, processing device, computer program and method, to transparently encrypt and store data objects such that owners of the data object and permitted viewers are able to view decrypted data objects after entering user selected passwords
CN103973651B (zh) * 2013-02-01 2018-02-27 腾讯科技(深圳)有限公司 基于加盐密码库的账户密码标识设置、查询方法及装置
US9106412B2 (en) 2013-03-08 2015-08-11 Mcafee, Inc. Data protection using programmatically generated key pairs from a master key and a descriptor
AU2014305655A1 (en) * 2013-08-09 2016-03-24 Mypersonaldocs Pty Ltd Controlling essential life data
CN104579668B (zh) * 2013-10-28 2018-12-11 深圳市腾讯计算机系统有限公司 一种用户身份的验证方法和密码保护装置及验证系统
EP2905718A1 (en) 2014-02-05 2015-08-12 Thomson Licensing Device and method certificate generation
CN104821884B (zh) * 2015-05-14 2019-01-22 收付宝科技有限公司 基于非对称密钥体系的私钥保护方法
CN105245343B (zh) 2015-09-22 2018-09-14 华南理工大学 一种基于多变量密码技术的在线离线签名系统及方法
US12400209B2 (en) * 2015-11-20 2025-08-26 Afirma Consulting & Technologies, S. L. Dynamic multilayer security for internet mobile-related transactions
JP2018170642A (ja) * 2017-03-30 2018-11-01 株式会社アクセル 復号装置、鍵作成装置、暗号化装置、暗号処理システム、復号方法及び復号プログラム
CN107070909A (zh) * 2017-04-01 2017-08-18 广东欧珀移动通信有限公司 信息发送方法、信息接收方法、装置及系统
US10776480B2 (en) * 2018-04-02 2020-09-15 International Business Machines Corporation Producing volatile password hashing algorithm salts from hardware random number generators
CN109145585B (zh) * 2018-08-23 2020-09-22 北京神州绿盟信息安全科技股份有限公司 一种检测网站存在弱口令的方法及装置
US10970372B2 (en) 2018-11-01 2021-04-06 Microsoft Technology Licensing, Llc Revocable biometric print based identification
JP6719789B2 (ja) * 2019-07-09 2020-07-08 株式会社アクセル 暗号処理システム、暗号処理方法及び暗号処理プログラム
US11438378B1 (en) * 2019-12-18 2022-09-06 NortonLifeLock Inc. Systems and methods for protecting against password attacks by concealing the use of honeywords in password files
CN111711624B (zh) * 2020-06-15 2022-06-21 华中师范大学 安全云口令管理器控制系统、控制方法、设备及存储介质
US12375289B2 (en) * 2020-10-29 2025-07-29 Microsoft Technology Licensing, Llc Using multi-factor and/or inherence-based authentication to selectively enable performance of an operation prior to or during release of code
US20230177161A1 (en) * 2021-12-08 2023-06-08 Hewlett-Packard Development Company, L.P. Bios change requests signings based on passwords

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0752636A2 (en) 1995-07-05 1997-01-08 Sun Microsystems, Inc. NIS+ password update protocol
US20030149666A1 (en) 2000-11-20 2003-08-07 Davies Philip Michael Personal authentication system
US20040030901A1 (en) 2000-08-04 2004-02-12 Lynn Henry Wheeler Linking public key of device to information during manufacture
KR20040068614A (ko) * 2002-01-07 2004-07-31 에스씨엠 마이크로시스템스 게엠베하 보안 환경에서 장치가 비의도적으로 사용되는 것을방지하는 방법 및 장치

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH08274769A (ja) * 1995-03-28 1996-10-18 Toppan Printing Co Ltd 対称暗号鍵の配送システムおよび通信端末
US5666415A (en) * 1995-07-28 1997-09-09 Digital Equipment Corporation Method and apparatus for cryptographic authentication
US6230269B1 (en) * 1998-03-04 2001-05-08 Microsoft Corporation Distributed authentication system and method
JP2002525706A (ja) * 1998-09-17 2002-08-13 インデックス システムズ インコーポレイテッド マスター・パスワードを回復するためにパスワードで保護されたソフトウェア・システムを解錠するための装置及び方法
JP4764536B2 (ja) * 1998-11-17 2011-09-07 株式会社リコー 画像計測機器
WO2000045539A1 (en) * 1999-01-29 2000-08-03 General Instrument Corporation Key management for telephone calls to protect signaling and call packets between cta's
US6742129B1 (en) * 1999-12-08 2004-05-25 Carrier Corporation Software security mechanism
WO2002063825A2 (en) * 2001-02-05 2002-08-15 Asiansign Co., Ltd An optical storage medium for storing a public key infrastructure (pki)-based private key and certificate, a method and system for issuing the same and a method for using such
JP3862081B2 (ja) * 2002-11-07 2006-12-27 日本電信電話株式会社 名前解決方法、名前解決システム、名前解決ディレクトリ、通信端末装置、プログラム及び記録媒体
JP2005167527A (ja) * 2003-12-02 2005-06-23 Hitachi Ltd 証明書管理システムおよびその方法

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0752636A2 (en) 1995-07-05 1997-01-08 Sun Microsystems, Inc. NIS+ password update protocol
US20040030901A1 (en) 2000-08-04 2004-02-12 Lynn Henry Wheeler Linking public key of device to information during manufacture
US20030149666A1 (en) 2000-11-20 2003-08-07 Davies Philip Michael Personal authentication system
KR20040068614A (ko) * 2002-01-07 2004-07-31 에스씨엠 마이크로시스템스 게엠베하 보안 환경에서 장치가 비의도적으로 사용되는 것을방지하는 방법 및 장치

Also Published As

Publication number Publication date
JP2006148879A (ja) 2006-06-08
CN1777096B (zh) 2010-09-29
KR20060066621A (ko) 2006-06-16
CN1777096A (zh) 2006-05-24
EP1659475A1 (en) 2006-05-24
US20060104441A1 (en) 2006-05-18
JP4914051B2 (ja) 2012-04-11
EP1659475B1 (en) 2019-07-17
US7602910B2 (en) 2009-10-13

Similar Documents

Publication Publication Date Title
KR101292975B1 (ko) 패스워드 보호
US7840993B2 (en) Protecting one-time-passwords against man-in-the-middle attacks
JP4896537B2 (ja) 非対称キーセキュリティのための方法およびシステム
US8966276B2 (en) System and method providing disconnected authentication
Ford et al. Server-assisted generation of a strong secret from a password
US8132020B2 (en) System and method for user authentication with exposed and hidden keys
KR100827650B1 (ko) 그룹에 참여하도록 초대된 잠재적 회원을 인증하는 방법
EP2020797B1 (en) Client-server Opaque token passing apparatus and method
RU2307391C2 (ru) Способы дистанционного изменения пароля связи
US20060036857A1 (en) User authentication by linking randomly-generated authentication secret with personalized secret
US20120023336A1 (en) System and method for designing secure client-server communication protocols based on certificateless public key infrastructure
JP2003536320A (ja) 複数のサーバを使用した遠隔パスワード認証のためのシステム、方法およびソフトウェア
JP2001513227A (ja) ネットワーク環境における秘密最新乱数の管理および使用
JP2001313634A (ja) 通信方法
Giri et al. A novel and efficient session spanning biometric and password based three-factor authentication protocol for consumer usb mass storage devices
WO2022076352A1 (en) zkMFA: ZERO-KNOWLEDGE BASED MULTI-FACTOR AUTHENTICATION SYSTEM
Murtaza et al. A portable hardware security module and cryptographic key generator
Naganuma et al. New secret key management technology for blockchains from biometrics fuzzy signature
US7916868B1 (en) Quadratic residue based password authenticated key exchange method and system
CN101278538A (zh) 用于用户认证的方法和设备
Resende et al. PUF-based mutual multifactor entity and transaction authentication for secure banking
Kiennert et al. Authentication systems
KR100986980B1 (ko) 생체 인증 방법, 클라이언트 및 서버
Murdoch et al. A Forward-secure Efficient Two-factor Authentication Protocol
Kansro et al. Users authentication issues and challenges in electronic commerce applications

Legal Events

Date Code Title Description
PA0109 Patent application

St.27 status event code: A-0-1-A10-A12-nap-PA0109

PG1501 Laying open of application

St.27 status event code: A-1-1-Q10-Q12-nap-PG1501

A201 Request for examination
AMND Amendment
E13-X000 Pre-grant limitation requested

St.27 status event code: A-2-3-E10-E13-lim-X000

P11-X000 Amendment of application requested

St.27 status event code: A-2-2-P10-P11-nap-X000

P13-X000 Application amended

St.27 status event code: A-2-2-P10-P13-nap-X000

PA0201 Request for examination

St.27 status event code: A-1-2-D10-D11-exm-PA0201

R17-X000 Change to representative recorded

St.27 status event code: A-3-3-R10-R17-oth-X000

D13-X000 Search requested

St.27 status event code: A-1-2-D10-D13-srh-X000

D14-X000 Search report completed

St.27 status event code: A-1-2-D10-D14-srh-X000

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

St.27 status event code: A-1-2-D10-D21-exm-PE0902

AMND Amendment
P11-X000 Amendment of application requested

St.27 status event code: A-2-2-P10-P11-nap-X000

P13-X000 Application amended

St.27 status event code: A-2-2-P10-P13-nap-X000

E601 Decision to refuse application
PE0601 Decision on rejection of patent

St.27 status event code: N-2-6-B10-B15-exm-PE0601

J201 Request for trial against refusal decision
PJ0201 Trial against decision of rejection

St.27 status event code: A-3-3-V10-V11-apl-PJ0201

AMND Amendment
P11-X000 Amendment of application requested

St.27 status event code: A-2-2-P10-P11-nap-X000

P13-X000 Application amended

St.27 status event code: A-2-2-P10-P13-nap-X000

PB0901 Examination by re-examination before a trial

St.27 status event code: A-6-3-E10-E12-rex-PB0901

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

St.27 status event code: A-1-2-D10-D21-exm-PE0902

P11-X000 Amendment of application requested

St.27 status event code: A-2-2-P10-P11-nap-X000

P13-X000 Application amended

St.27 status event code: A-2-2-P10-P13-nap-X000

B701 Decision to grant
PB0701 Decision of registration after re-examination before a trial

St.27 status event code: A-3-4-F10-F13-rex-PB0701

GRNT Written decision to grant
PR0701 Registration of establishment

St.27 status event code: A-2-4-F10-F11-exm-PR0701

PR1002 Payment of registration fee

St.27 status event code: A-2-2-U10-U11-oth-PR1002

Fee payment year number: 1

PG1601 Publication of registration

St.27 status event code: A-4-4-Q10-Q13-nap-PG1601

PN2301 Change of applicant

St.27 status event code: A-5-5-R10-R13-asn-PN2301

St.27 status event code: A-5-5-R10-R11-asn-PN2301

PN2301 Change of applicant

St.27 status event code: A-5-5-R10-R11-asn-PN2301

PN2301 Change of applicant

St.27 status event code: A-5-5-R10-R14-asn-PN2301

PR1001 Payment of annual fee

St.27 status event code: A-4-4-U10-U11-oth-PR1001

Fee payment year number: 4

FPAY Annual fee payment

Payment date: 20170704

Year of fee payment: 5

PR1001 Payment of annual fee

St.27 status event code: A-4-4-U10-U11-oth-PR1001

Fee payment year number: 5

R18-X000 Changes to party contact information recorded

St.27 status event code: A-5-5-R10-R18-oth-X000

FPAY Annual fee payment

Payment date: 20180628

Year of fee payment: 6

PR1001 Payment of annual fee

St.27 status event code: A-4-4-U10-U11-oth-PR1001

Fee payment year number: 6

PR1001 Payment of annual fee

St.27 status event code: A-4-4-U10-U11-oth-PR1001

Fee payment year number: 7

R17-X000 Change to representative recorded

St.27 status event code: A-5-5-R10-R17-oth-X000

PR1001 Payment of annual fee

St.27 status event code: A-4-4-U10-U11-oth-PR1001

Fee payment year number: 8

PC1903 Unpaid annual fee

St.27 status event code: A-4-4-U10-U13-oth-PC1903

Not in force date: 20210730

Payment event data comment text: Termination Category : DEFAULT_OF_REGISTRATION_FEE

PC1903 Unpaid annual fee

St.27 status event code: N-4-6-H10-H13-oth-PC1903

Ip right cessation event data comment text: Termination Category : DEFAULT_OF_REGISTRATION_FEE

Not in force date: 20210730