Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Dual Access Control in a Conventional Password System

IP.com Disclosure Number: IPCOM000116664D
Original Publication Date: 1995-Oct-01
Included in the Prior Art Database: 2005-Mar-31
Document File: 2 page(s) / 37K

Publishing Venue

IBM

Related People

Freeman, C: AUTHOR

Abstract

A conventional password system uses a single password to protect access to a facility. The password will be known to one or more users, any one of whom will be able to access the protected facility. In some circumstances, it is required that two people must be present to access a facility. The system described here achieves this on a single-password system.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 88% of the total text.

Dual Access Control in a Conventional Password System

      A conventional password system uses a single password to
protect access to a facility.  The password will be known to one or
more users, any one of whom will be able to access the protected
facility.  In some circumstances, it is required that two people must
be present to access a facility.  The system described here achieves
this on a single-password system.

      Let the two users be A and B, having respectively passwords PA
and PB.  Without loss of generality, assume passwords can be up to
eight alphanumeric characters long.  The system uses a new password,
PX, which is derived from PA and PB as follows:

Let VALUE(character) return a value for any character of a password:
0 for '0', 1 for '1', through to 36 for 'Z'.  Let CHAR(number) invert
this, so CHAR(11)='B'.
  Extend each password so it is a full 8 characters, by "wrapping"
  the characters of the password.  So 'ALPHA' becomes 'ALPHAALP',
  etc.
  for each character position N, N=1 through 8:
    temp := VALUE( PA(n)) + VALUE( PB(N))
    temp := temp modulo 36
    PX(N) := CHAR( temp )

      PX is now used as the single password to protect the facility.
Note that knowledge of PA or PB alone gives no information on PX.
Note
also that both passwords must be set up or changed at the same time.

      Experience has shown that passwords generated using this scheme
is slightly "stronger" (in the sense of having fewer repeat...