Dismiss
We will be performing system updates on Sunday, July 21st, from 9-noon ET. You may experience brief service interruptions during that time.
Browse Prior Art Database

Token-Based Multiparty Password Authenticated Key Retrieval Process

IP.com Disclosure Number: IPCOM000238619D
Original Publication Date: 2014-Sep-05
Included in the Prior Art Database: 2014-Sep-05
Document File: 4 page(s) / 118K

Publishing Venue

Linux Defenders

Related People

Authors:
Pablo Guerrero

Abstract

A process to allow a user with a password P, to retrieve a secret key (or any other strong secret) K with the help of multiple independent servers. The secrecy of P and K is preserved if at least one server is not compromised by an attacker. It’s based on single use pre-calculated tokens and additional measures to prevent denial of service attacks. Unlike the alternatives, it’s not covered by patents and it can be used freely, which makes it an interesting solution in many use cases.