Patent · US Active

Password manipulation for secure account creation and verification through third-party servers

US9774591B2 · kind B2 · utility

1Cited by

7References

28Claims

0Family size

Assignee

Airbnb, Inc. · US

Inventors

Ismail Cem Paya · Gainesville, US
Kevin V. Nguyen · Allen, US

Key dates

Filing date	Oct 15, 2014
Grant date	Sep 26, 2017
Priority date	—
Expiry date	Jan 9, 2035

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0823
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method and system for deterring attacks at potential breach points between servers and an account and login server for creating and subsequent verification of accounts. Various cryptographic primitives are used to manipulate passwords to generate verifiers. The verifiers are used with external hardware security modules (HSMs) to eliminate HSMs and intermediate steps between the HSM and login servers as potential breach points.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.