Password breach registry
US10574693B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Mar 14, 2018 |
| Grant date | Feb 25, 2020 |
| Priority date | — |
| Expiry date | Mar 14, 2038 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/10
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A password breach registry is utilized to secure a service provided by a service provider. The password breach registry is a publicly accessible registry and includes password tokens written by breached service providers. The password tokens indicate passwords used to access breached service providers that may have been breached. A service provider can subscribe to the password breach registry and periodically query the password breach registry to determine if a password token corresponding to a user of a service provided by the service provider has been written to the password breach registry. This may indicate that the user of the service utilizes the same password on other services that have been breached. Upon determining that the password token has been written to the password breach registry, the user can be locked out from the service to prevent a malicious actor from gaining access to the account of the user.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.