Patent · US Expired

Method and apparatus for protecting the confidentiality of passwords in a distributed data processing system

US5497421A · kind A · utility

193Cited by

13References

7Claims

0Family size

Assignee

Digital Equipment Corporation · US

Inventors

Charles W. Kaufman · Northborough, US
Morrie Gasser · Hopkinton, US
Butler W. Lampson · Portola Valley, US
Joseph Tardo · Palo Alto, US
Kannan Alagappan · Arlington, US

Key dates

Filing date	Sep 28, 1994
Grant date	Mar 5, 1996
Priority date	—
Expiry date	Sep 28, 2014

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2143
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Apparatus for protecting the confidentiality of a user's password during a remote login authentication exchange between a user node and a directory service node of a distributed, public key cryptography system includes a specialized server application functioning as an intermediary agent for the login procedure. The login agent has responsibility for approving the user's login attempt and distributing a private key to the user. However, the login agent is not trusted with the user's password and is therefore a "semi-trusted" node. In another aspect of the invention, a login protocol enables remote authentication of the user password without transmitting the password over the network.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.