Server-assisted regeneration of a strong secret from a weak secret
US6829356B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | May 17, 2000 |
| Grant date | Dec 7, 2004 |
| Priority date | — |
| Expiry date | May 17, 2020 |
Classification
- Technology area (CPC A)Human Necessities
- CPC primaryA61K38/00
- WIPO fieldPharmaceuticals
- WIPO sectorChemistry
Abstract
Methods for regenerating a strong secret for a user, based on input of a weak secret, such as a password, are assisted by communications exchanges with a set of independent servers. Each server holds a distinct secret value (i.e., server secret data). The strong secret is a function of the user's weak secret and of the server secret data, and a would-be attacker cannot feasibly compute the strong secret without access to both the user's weak secret and the server secret data. Any attacker has only a limited opportunity to guess the weak secret, even if he has access to all messages transmitted in the generation and regeneration processes plus a subset (but not all) of the server secret data.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.