Browse Prior Art Database

Method to Alter Passcodes and Passwords Based upon Personnel Changes

IP.com Disclosure Number: IPCOM000248173D
Publication Date: 2016-Nov-03
Document File: 2 page(s) / 24K

Publishing Venue

The IP.com Prior Art Database

Abstract

Disclosed is a method to utilize organizational and access rights data to determine when to change passwords and passcodes.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 54% of the total text.

Page 01 of 2

Method to Alter Passcodes and Passwords Based upon Personnel Changes

Corporate security takes many forms. Electronic access to files, locations, and meetings over the phone or web often use passcodes that are broadly distributed to employees. Companies often use not only Single-Sign-On solutions to provide access to data on the corporate intranet, but also a combination of looser access controls that can weaken security.

The novel solution is a method to utilize organizational and access rights data to determine when to change passwords and passcodes.

Operation:

1. Track the organizational chart for a company. This can be done with a set of relationships such as report-to chains and peers.

2. Monitor for individuals that have left the organization 3. Determine which employees in the organization have had access to certain electronic assets. This can be done by tracking:

A. Users that joined meetings using access codes or meeting passwords B. To whom passcodes were communicated (e.g., via email, instant message, etc.)

    C. Which users accessed websites or documents containing the codes 4. Force changes to passwords and passwords to which the identified user had access

Alternative operation:

4. Determine to which level of the organizational chart the data was exposed for each item in step 3 (e.g., access was limited to the user's department, director's level, or company-wide, etc.)

5. For each item, if the user's new place in the organizational chart is outside of t...