Patent · US Expired

Method and apparatus for protecting the confidentiality of passwords in a distributed data processing system

US5418854A · kind A · utility

152Cited by

8References

13Claims

0Family size

Assignee

Digital Equipment Corporation · US

Inventors

Charles W. Kaufman · Northborough, US
Morrie Gasser · Hopkinton, US
Butler W. Lampson · Portola Valley, US
Joseph Tardo · Palo Alto, US
Kannan Alagappan · Arlington, US

Key dates

Filing date	Apr 28, 1992
Grant date	May 23, 1995
Priority date	—
Expiry date	Apr 28, 2012

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2143
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Apparatus for protecting the confidentiality of a user's password during a remote login authentication exchange between a user node and a directory service node of a distributed, public key cryptography system includes a specialized server application functioning as an intermediary agent for the login procedure. The login agent has responsibility for approving the user's login attempt and distributing a private key to the user. However, the login agent is not trusted with the user's password and is therefore a "semi-trusted" node. In another aspect of the invention, a login protocol enables remote authentication of the user password without transmitting the password over the network.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.