Browse Prior Art Database

Password Protection Using DES Security

IP.com Disclosure Number: IPCOM000123679D
Original Publication Date: 1999-Mar-01
Included in the Prior Art Database: 2005-Apr-05
Document File: 2 page(s) / 71K

Publishing Venue

IBM

Related People

Cromer, D: AUTHOR [+6]

Abstract

Problem Solved By This Invention: Current IBM computers have password protection. The user is required to enter the password during system boot. The system will not operate without the user entering the correct password. However current solutions store the password in battery powered memory which is readable by other applications. Therefore it is possible to determine the password which can comprise the security of the client.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 52% of the total text.

Password Protection Using DES Security

   Problem Solved By This Invention:

   Current IBM computers have password protection.  The
user is required to enter the password during system boot.  The
system will not operate without the user entering the correct
password.  However current solutions store the password in battery
powered memory which is readable by other applications.  Therefore it
is possible to determine the password which can comprise the security
of the client.

   This invention will add hardware based encryption to the
password scheme.  Therefore the password stored in the system is
encrypted and not the actual password and the client is protected if
an unauthorized user/program acquires the stored encrypted password.

   Description of Invention:

   Future Desktop systems will contain the following
subsystem required for this invention to work.  DES hard ware engine
with non-system readable security keys.  This engine is capable of
encoding and decoding secure data from the hard drive.  The subsystem
which consists of a microprocessor, memory (RAM and ROM), DES engine,
and a protected area for key storage.  This entire  solution will be
integrated within the system core chipset at a very affordable cost
structure (less than $4 per system).

   Each system has a unique serial and machine number.  This
is used by the system at deployment or first time setup to create
unique set of public and private keys.  The keys are stored within
the system hardware DES engine (not readable by any operating system
or application).  A state machine in the DES engine guar...