58 results about "Password manager" patented technology

A method and system for managing user identities on a network is disclosed. form independent model for managing user identities on a network is disclosed which translated to one or more platform-specific models for the actual implementation. An trator is provided with the ability to add, modify and delete actors on the network. or, such as a help desk, is ascribed use cases, such as enabling passwords, resetting s, and disenabling passwords, that are appropriate for that actor. The administrator modify each use case, such as by unlocking a user's account before resetting the d or providing an email notification to a user prior to resetting a password, to the desired by the administrator. As a result, an actor with no or little programming skills form sophisticated identity management functions resulting in improved efficiency and lower cost to the company.

A secure mechanism for transparent key recovery for a user who has changed authentication information is disclosed. A password manager agent intercepts requests by a user to access secure resources that require user credentials. Upon detecting changed authentication information for the user, the password manager agent automatically regenerates the components of a cryptographic key associated with the user that was previously used to encrypt user credentials for the user and then destroyed. After regeneration of the original cryptographic key, the password manager agent uses the key to decrypt the user credentials necessary for the requested application. The regenerated key is then destroyed and the user credentials are re-encrypted by the password manager agent using a new cryptographic key associated with the user made up of multiple components. Following the re-encryption of the user credentials, the components used to assemble the new key are securely stored in multiple locations and the new key is destroyed.

A method, apparatus and program storage device for providing a secure password manager. A password manager provides a database comprising a header and N slots. An indicator is stored in a predetermine position of the header for identifying a number of valid password entries for the record. A hash value based on the content of the N slots is calculated and stored in the header. The data in the data structure is fed along with a master password through a key generator to create encrypted data.

Methods and apparatus are provided for changing passwords in a distributed communication system. The disclosed password management system includes an event server for receiving one or more subscriptions to a password change event from one or more endpoints associated with a user and for notifying the endpoints that subscribed to the password change event of a password change; and a profile service for (i) receiving a request for a new password from one or more of the endpoints in response to the subscription notification from the event server of the password change event; (ii) authenticating the one or more of the endpoints based on an existing password; and (iii) providing a new password to the one or more of the endpoints following the authentication. A password manager notifies the event server and profile service of a password change.

Systems and methods for unattended authentication of software applications to provide these applications with access to shared resources. A server password manager (SPM) module resident on a node also occupied by a requester software application requesting access to resources receives the requestor's request. The SPM module creates a request package containing the requestor's information as well as the node's identifying information. The request package is then transmitted to a credentials manager (CM) module in a CM node. The request package, encrypted by the SPM module with encryption keys previously generated by the CM module, is decrypted by the CM module. The contents are checked against data stored by the CM module regarding the SPM module and the requestor application when these were registered with the CM. If the data matches, then the CM provides credentials which are used to give the requestor application access to the requested resources.

The invention discloses an account password secure encryption system for improving the safety of an account password. According to the technical scheme of the invention, the account password secure encryption system is characterized by comprising an account data backup server, a client and a password manager, wherein the password manager is connected to the client and the client is connected with the account data backup server via the Internet. Compared with the prior art, the account password secure encryption system has the advantages that information of an account and a password is encrypted by adopting the password manager and then saved in the password manager and a network server, thereby preventing the leakage of the account and the password when the password manage is lost; and a user can find account information of the user through the network server, thereby improving the safety of the user password.

The present invention relates to an application that is configured to provide secure access to confidential information. To protect the confidential information, the application may include functions that utilize a decoy application to disguise the functionality of the application. A unique sequence of inputs received through an interface associated with the decoy application may permit a user to access the confidential information. An authorized user that has been provided access to the confidential information may access configuration interfaces that permit the user to define the inputs that will serve as login credentials and to customize the appearance and functionality of the decoy application.

An password management system is provided. The system typically includes a graphical user interface logic, which receives a current password from a user, prompts the user to determine whether to change the current password, and receive a new password if the user replies affirmatively. The system further includes password confirmation logic to confirm the current password with a switched access remote test system, and password administration logic to receive the new password and change the current password on the switched access remote test system. Methods and other systems are also provided.

The invention discloses a password storing method, device, system and equipment. The password storing method comprises the steps that a password manager obtains registration information and generatescryptograph according to the registration information; the password manager synthesizes password information based on the registration information and the cryptograph; and the password manager sends the password information to the storing equipment, wherein the storing equipment is disconnected from the password manager after receiving the password information and stores the password information offline. According to the password storing method, device, system and equipment, the technical problem that potential safety hazards exist in an existing password storage scheme adopting a password manager is solved.

An interface, system and method of password entry in a computing device/system including a graphical user interface including a plurality of password characters displayed on a screen according to a location-based structure and selectable by a pointing device; a scrambling module that scrambles where at least a portion of the password characters are positioned within the location-based structure when triggered; and a triggering module to trigger the scrambling module. The location-based structure may be a 3-dimensional object. There is a password manager module that allows a user to upload password characters that are user customized images. Alpha-numeric characters are not scrambled.

An online protection suite provides password management and a dashboard set of services combining single-click access to user accounts and a simple browser window automatically filled with offers for a variety of related products and services targeted especially for particular users. Each user is identified to a business partner server with a unique customer automatically sent from a simple browser embedded in the password management dashboard. The business partner server returns a webpage back to the simple browser that has been constructed especially for this user by leveraging sensitive and proprietary information collected by the business partner. Such customer information is not directly accessible to the password manager.

The invention discloses a security password manager based on multi-cloud storage and a use method thereof, the use method comprises the following steps: for accounts and password information of a useron any website, firstly, adopting a (k,n) threshold secret sharing algorithm (combining RAONT-RS algorithm with Shamir algorithm); encrypting information, splitting the encrypted information into n parts, improving the reliability of data by adopting a commitment scheme, and storing the data at n cloud providers; when the password is obtained, the commitment scheme verifying the data firstly, then combining the at least k parts to restore the ciphertext, and finally obtaining the plaintext account and password information through decryption. According to the password manager, the problem of data reliability existing in the multi-cloud storage password manager is solved, the robustness of the password manager under attack is improved on the basis that the data storage security is guaranteed, and meanwhile efficient retrieval can be achieved.

There is provided a password manager for a hand-held device. The hand-held device is included in a system managed by an administrator and having a server and a network. The network is for synchronizing the hand-held device and the server. An input device receives a user input that indicates that a user of the hand-held device has forgotten an established password for the hand-held device. A notification module automatically transmits a notification of forgotten password to the administrator in response to the user input.

The present invention provides a portable mass storage device for use in two factor authentication systems and methods. A secure portable mass storage device protects content from being freely copied with security mechanisms and firmware. The security functionality also protects confidential user credentials and passwords, as well as algorithms and seeds needed for two factor authentication or asymmetric authentication methods. A client application residing in the mass storage device acts as both a password manager and an authentication manager that seamlessly performs the authentication procedures in the background while signing a user into various institutions of his choosing. A very high level of security is integrated into a mass storage device the user has for purposes other than two factor authentication, and the convenience of highly secure password management also comes in a convenient pocket sized package easy for the user to transport. This facilitates the acceptance of two factor authentication, and increases security for a wide variety of online transactions.

The invention discloses an identity authorization login method and device, electronic equipment and a computer readable storage medium. The method comprises the steps of obtaining a random character string and an identifier of an application or a website from a server of the application or the website, generating a public key and a private key, and obtaining account information used for logging inthe application or the website from a password manager based on the identifier; generating a login request transaction through the password manager and broadcasting the login request transaction to ablockchain network, so that a blockchain node corresponding to the application or website in the blockchain network sends the login request transaction to the server for verification, wherein the login request transaction comprises the random character string, the identifier, the public key and the account information; and login permission information is received through the blockchain network, and the server is accessed by using a login token in the login permission information. According to the identity authorization login method provided by the invention, the security of identity authorization login is improved.

The invention discloses a password management method, electronic equipment, and a computer storage medium. The method includes: receiving a request initiated by a client, and judging whether the request is a trusted HTTPS request; if so, extracting encrypted password request information from the request; Decrypt the encrypted password request information, and send the decrypted password request information to the password manager, so that the password manager returns the corresponding password information according to the password request information; receive the password information returned by the password manager, and verify the password The information is encrypted and returned to the client for use by the client after decrypting the encrypted password information. By judging the request initiated by the client and encrypting the password request information and password information, the transmission security during the entire password request process is guaranteed. At the same time, even if the password information is recorded in the log, the password information is encrypted. The password information also avoids the possibility of leakage.

An information recording system includes a recording medium and an information recording device. The information recording device has a group password manager for saving a group password used for a predetermined group and an identification ID of the group password; a password setter for registering the group password in a password register of the recording medium and registering the identification ID in a password related information storage; a password selector for reading the identification ID from the password related information storage of the recording medium and selecting a group password corresponding to the identification ID from at least one group password stored in the group password manager according to the identification ID; and a limitation cancel requester for inputting the password selected by the password selector in the password comparator of the recording medium.

A password manager injects credentials into a web browser request. A user can browse to a form provided by a server that includes a password field. A plug-in requests a password for the field from a password manager. The actual password is not provided to the plug-in or the browser. The password manager provides a proxy password that is not the actual password for the field. A request interceptor in a separate process from the browser intercepts the completed request as it is sent to the server and replaces the proxy password with the actual password.

The invention relates to a password management method and device, a storage medium and a password manager, and belongs to the technical field of information security. The method comprises the following steps: receiving an operation request sent by a client, wherein the operation request comprises a first password to be verified and password operation information; sending a verification request to the block chain platform according to the first to-be-verified password, wherein the verification request is used for triggering the block chain platform to verify the first password to be verified by using the stored password; if a message that the first password to be verified returned by the block chain platform passes verification is received, judging that the operation request passes verification; and operating the corresponding stored password in the block chain platform according to the password operation information in the operation request. According to the technical scheme, the problem that an existing password management method cannot ensure the safety of each managed password is solved. Before the password stored in the block chain platform is operated, legality verification is fully carried out, so that the security of the managed password can be effectively ensured.

The invention discloses a password management device and a management method, a password manager and electronic equipment. The password management device comprises an input device, a first processor and an output interface, wherein the input device is used for receiving the operation signal of a user; the first processor is connected to the input device and is used for acquiring a password corresponding to the operation signal and converting the password into a button input signal; and the output interface is connected to the first processor, provides an interface connected to external connection equipment and is used for outputting the button input signal to the external connection equipment connected to the output interface. In the invention, technical problems that password management safety is low and the password is easy to crack are solved.

The invention provides a site password generation method and system and a password manager, wherein the site password generation method comprises the following steps: step 1) constructing a first excitation data according to the information including a user password, wherein the user password is used for logging in a user account by the user on a client side of the application program, and the first excitation data is a binary string; step 2) inputting the first excitation data into the PUF and obtaining corresponding first response data from the PUF; Wherein the first response data is a binary string. The password generation method and system and the password manager provided by the invention can resist offline attacks and single point failures, and simultaneously improve the efficiency of generating the site password.

The invention belongs to the technical field of security authentication, and discloses a security cloud password manager control system and method. A password manager stores user names and passwords of user login websites and systems; the cloud stores a password manager; a mobile device and a client execute a massively pseudo-random protocol to generate a randomized main password for encrypting ordecrypting the password manager; a server authenticates a user name and a password of user login; a client user inputs a main password. According to the invention, the main password of the user is blindly calculated by using mobile equipment of the user, the user account is expanded into a randomized main password which is highly secure enough, and then a randomized main password encryption password manager stores the randomized main password into the cloud, so that an offline dictionary guessing attack can be prevented, meanwhile, each user account is bound with a website domain name, an attacker cannot execute a phishing attack, and the security and reliability of communication are effectively improved.

The invention relates to the technical field of information security storage and in particular relates to a user-oriented hardware password manager. The user-oriented hardware password manager comprises a password manager for a lower computer and an upper computer unit; the password manager for the lower computer consists of a main control MCU (Micro-programmed Control Unit), a fingerprint authentication module and a password storage module; the main control MCU is connected with the fingerprint authentication module and the password storage module through a data lead wire; the upper computer unit consists of a serial port communication module and a password information inquiring and displaying module; the upper computer unit is connected with the password manager of the lower computer through the serial port communication module and a network. With the adoption of technologies of hardware storage, on one hand, fingerprint authentication and interaction, one main password manager can be conveniently used for managing a plurality of account password data; and on the other hand, the disastrous results caused by the fact that main passwords are revealed are creatively avoided.