Browse Prior Art Database

Controlling Customer Access to Restricted Tools Via Key Based on Job Number

IP.com Disclosure Number: IPCOM000110732D
Original Publication Date: 1992-Dec-01
Included in the Prior Art Database: 2005-Mar-25
Document File: 1 page(s) / 46K

Publishing Venue

IBM

Related People

Forman, RF: AUTHOR [+2]

Abstract

A generated password protection scheme for restricting access to sensitive programs or tools that are installed on uncontrolled systems and allowing them to be used for limited periods of time is disclosed.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 89% of the total text.

Controlling Customer Access to Restricted Tools Via Key Based on Job Number

      A generated password protection scheme for restricting access
to sensitive programs or tools that are installed on uncontrolled
systems and allowing them to be used for limited periods of time is
disclosed.

      Access to the restricted program or tool is controlled by a
generated access key or password that is supplied when calling the
program.  This access key is calculated (based on some algorithm of
choice) by a separate in house generation program as a function of
something unique to a particular instance of where the restricted
program or tool will be used (in this example, the job number of the
job that the program will be run in).

      This technique allows a program or tool to restrict its usage
to a certain approved environment and for a limited time by enforcing
that the correct generated access key for its current environment is
given each time it is invoked.  This prevents the use of that program
or tool at a different time or place.  Even if a generated access key
was known previously, that access key is not valid outside the scope
of the environment it was generated for.

      Within the operating system, the job number is a characteristic
that is unique to each job.  By basing the access key on the job
number of the job that the restricted program is to be run in, this
program can be run one or more times while that job is active and
only within that jo...