Browse Prior Art Database

Secured access authorization system with using combination of historical information and temporary password

IP.com Disclosure Number: IPCOM000015165D
Original Publication Date: 2002-Jan-03
Included in the Prior Art Database: 2003-Jun-20
Document File: 1 page(s) / 36K

Publishing Venue

IBM

Abstract

This invention is the secured access authorization system with using combination of historical information and temporary password. The pervasive devices with cheap parts do not have much security hardware assistance functions. But sometimes an user wants to communicate under the secured environments. The most important point is the authorization of access at the time of logging on. Usually, authorization by a Password is used for this purpose. But the password is exchanged via Internet. Thus, the password via Internet can not provide the safety environment. Next better answer to increase safety is One Time Password. In this mechanism, a service provider needs much extra investment to enable One Time Password with normal devices. Assuming almost pervasive devices have the capability to exchange e-mails and store them, a mail server can add the Password into a part of the mail. The mail exchange occasionally happens. If a hacker try to steal the Password from the mail, he/she must identify which mail has Password character sets. In this invention, the Password can be made from combination of both a part of mail character and onetime password. As the result, the user can get more robust access authorization environment. 1

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 100% of the total text.

Page 1 of 1

  Secured access authorization system with using combination of historical information and temporary password

    This invention is the secured access authorization system with using combination of historical information and temporary password. The pervasive devices with cheap parts do not have much security hardware assistance functions. But sometimes an user wants to communicate under the secured environments. The most important point is the authorization of access at the time of logging on. Usually, authorization by a Password is used for this purpose. But the password is exchanged via Internet. Thus, the password via Internet can not provide the safety environment.

Next better answer to increase safety is One Time Password. In this mechanism, a service provider needs much extra investment to enable One Time Password with normal devices. Assuming almost pervasive devices have the capability to exchange e-mails and store them, a mail server can add the Password into a part of the mail. The mail exchange occasionally happens. If a hacker try to steal the Password from the mail, he/she must identify which mail has Password character sets. In this invention, the Password can be made from combination of both a part of mail character and onetime password. As the result, the user can get more robust access authorization environment.

1