Browse Prior Art Database

A method to reinitialize password for a shared object without any authentication server

IP.com Disclosure Number: IPCOM000188697D
Original Publication Date: 2009-Oct-19
Included in the Prior Art Database: 2009-Oct-19
Document File: 2 page(s) / 46K

Publishing Venue

IBM

Abstract

Disclosed is a method to reinitialize a password for some shared object like a shared file on the file server without depending on any authentication server, in case a user forgets its password. In this method, an object's password will be encrypted by a user's password and will be saved at the server-side with a shared object. In addition, the user password will be also encrypted by a machine-unique secret key and will be saved at the secure storage at the computer-side. When a user requires to reinitialize the password from that computer, the encrypted user password will be retrieved from the secure storage and will be decrypted by the machine unique secret key, and then an object's password will be decrypted by that decrypted user password and immediately reencypted by a new user password.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 53% of the total text.

Page 1 of 2

A method to reinitialize password for a shared object without any authentication server

Disclosed is a method to reinitialize a password for some shared object like a shared file on the file server without depending on any authentication server, in case a user forgets its password. In this method, an object's password will be encrypted by a user's password and will be saved at the server-side with a shared object. In addition, the user password will be also encrypted by a machine-unique secret key and will be saved at the secure storage at the computer-side. When a user requires to reinitialize the password from that computer, the encrypted user password will be retrieved from the secure storage and will be decrypted by the machine unique secret key, and then an object's password will be decrypted by that decrypted user password and immediately reencypted by a new user password.

Disclosed is a method to reinitialize a password for some shared object like a shared file on the file server without depending on any authentication server, in case a user forgets its password. This method provides a new feature to strictly distinguish an object's password and user(s) password, the former will be used to access control to the target object itself and the latter will be used to encrypt the former password, and also provides a distinguished feature to allow the computer to reset the user password only in case the computer had successfully accessed the object before.

First, an object's password will be encrypted by a user's pas...