WO2005119995A3 - Method and apparatus for providing temporary access to a network device - Google Patents

Method and apparatus for providing temporary access to a network device Download PDF

Info

Publication number
WO2005119995A3
WO2005119995A3 PCT/US2005/018570 US2005018570W WO2005119995A3 WO 2005119995 A3 WO2005119995 A3 WO 2005119995A3 US 2005018570 W US2005018570 W US 2005018570W WO 2005119995 A3 WO2005119995 A3 WO 2005119995A3
Authority
WO
WIPO (PCT)
Prior art keywords
network device
user
service provider
support service
password
Prior art date
Application number
PCT/US2005/018570
Other languages
French (fr)
Other versions
WO2005119995A2 (en
Inventor
Robert Brian Harrison
Lonhyn Jasinskyj
Paul J Clegg
Ben Cottrell
Original Assignee
Ironport Systems Inc
Robert Brian Harrison
Lonhyn Jasinskyj
Paul J Clegg
Ben Cottrell
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ironport Systems Inc, Robert Brian Harrison, Lonhyn Jasinskyj, Paul J Clegg, Ben Cottrell filed Critical Ironport Systems Inc
Publication of WO2005119995A2 publication Critical patent/WO2005119995A2/en
Publication of WO2005119995A3 publication Critical patent/WO2005119995A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/104Grouping of entities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/305Authentication, i.e. establishing the identity or authorisation of security principals by remotely controlling device operation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • H04L63/0838Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords

Abstract

A method and apparatus for providing access to resources of a network device (fig 1 , 130) is provided. A user instructs a network device to generate a user password that is concealed from the user of the network device. The network device generates the user password based on, at least in part, public input (figure 1, 120) provided by the user, and an algorithm which is concealed from the user, but known to a support service provider. The user communicates the public input to the support service provider. The support service provider uses the public input to generate a provider password based on, at least in part, the algorithm. The support service provider may access the network device via a network by providing the provider password to the network device. If the provider password matches the user password generated, then the support service provider is granted access to resources of the network device.
PCT/US2005/018570 2004-05-29 2005-05-27 Method and apparatus for providing temporary access to a network device WO2005119995A2 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US57565804P 2004-05-29 2004-05-29
US60/575,658 2004-05-29
US11/139,376 US8166310B2 (en) 2004-05-29 2005-05-26 Method and apparatus for providing temporary access to a network device
US11/139,376 2005-05-26

Publications (2)

Publication Number Publication Date
WO2005119995A2 WO2005119995A2 (en) 2005-12-15
WO2005119995A3 true WO2005119995A3 (en) 2006-11-23

Family

ID=35426932

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2005/018570 WO2005119995A2 (en) 2004-05-29 2005-05-27 Method and apparatus for providing temporary access to a network device

Country Status (2)

Country Link
US (1) US8166310B2 (en)
WO (1) WO2005119995A2 (en)

Families Citing this family (31)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8775602B2 (en) * 2006-06-01 2014-07-08 Avaya Inc. Alarm-driven access control in an enterprise network
US8775820B1 (en) 2006-06-02 2014-07-08 Sprint Communications Company L.P. System and method of enterprise administrative password generation and control
US8218435B2 (en) * 2006-09-26 2012-07-10 Avaya Inc. Resource identifier based access control in an enterprise network
US10289259B2 (en) * 2007-02-13 2019-05-14 Visual Targeting Corporation Method for defining a presentation format targetable to a demographic
US20080295151A1 (en) * 2007-03-18 2008-11-27 Tiejun Jay Xia Method and system for anonymous information verification
US8738905B2 (en) * 2007-12-10 2014-05-27 International Business Machines Corporation Third party secured storage for web services and web applications
US20100257583A1 (en) * 2009-04-06 2010-10-07 Bomgar Method and apparatus for providing vendor remote support and management
US9742779B2 (en) * 2009-04-06 2017-08-22 Bomgar Corporation Method and apparatus for securely providing access and elevated rights for remote support
US9003531B2 (en) * 2009-10-01 2015-04-07 Kaspersky Lab Zao Comprehensive password management arrangment facilitating security
US8484482B1 (en) * 2011-03-07 2013-07-09 Sprint Communications Company L.P. Password generation and validation system and method
TW201351285A (en) * 2012-06-07 2013-12-16 Askey Computer Corp Method for protecting firmware being updated
US9271110B1 (en) 2012-07-09 2016-02-23 Sprint Communications Company L.P. Location awareness session management and cross application session management
US8745415B2 (en) 2012-09-26 2014-06-03 Pure Storage, Inc. Multi-drive cooperation to generate an encryption key
US11032259B1 (en) 2012-09-26 2021-06-08 Pure Storage, Inc. Data protection in a storage system
US10623386B1 (en) 2012-09-26 2020-04-14 Pure Storage, Inc. Secret sharing data protection in a storage system
US9985991B2 (en) 2013-02-26 2018-05-29 Red Hat, Inc. HTTP password mediator
US9781102B1 (en) * 2013-03-08 2017-10-03 EMC IP Holding Company LLC Managing support access in software-as-a-service systems
US10263770B2 (en) 2013-11-06 2019-04-16 Pure Storage, Inc. Data protection in a storage system using external secrets
US11128448B1 (en) 2013-11-06 2021-09-21 Pure Storage, Inc. Quorum-aware secret sharing
US9516016B2 (en) * 2013-11-11 2016-12-06 Pure Storage, Inc. Storage array password management
US9355233B1 (en) 2014-01-27 2016-05-31 Sprint Communications Company L.P. Password reset using hash functions
US9325700B2 (en) * 2014-05-28 2016-04-26 International Business Machines Corporation Service account access
US10229262B2 (en) 2015-04-20 2019-03-12 Bomgar Corporation Systems, methods, and apparatuses for credential handling
US10397233B2 (en) 2015-04-20 2019-08-27 Bomgar Corporation Method and apparatus for credential handling
US9954867B1 (en) * 2015-12-15 2018-04-24 Amazon Technologies, Inc. Verification of credential reset
US10887305B1 (en) * 2018-03-30 2021-01-05 Mckesson Corporation Method and apparatus for generating and providing a temporary password to control access to a record created in response to an electronic message
US11025425B2 (en) 2018-06-25 2021-06-01 Elasticsearch B.V. User security token invalidation
US11223626B2 (en) 2018-06-28 2022-01-11 Elasticsearch B.V. Service-to-service role mapping systems and methods
US11196554B2 (en) * 2018-07-27 2021-12-07 Elasticsearch B.V. Default password removal
US11023598B2 (en) 2018-12-06 2021-06-01 Elasticsearch B.V. Document-level attribute-based access control
US11475108B2 (en) * 2019-04-25 2022-10-18 Stanton Kee Nethery Secure hardware backdoor for digital devices

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030131266A1 (en) * 2002-01-07 2003-07-10 International Business Machines Corporation Generating and maintaining encrypted passwords
US6665800B1 (en) * 1999-01-26 2003-12-16 Dell Usa, L.P. System and method for securing a computer system
US20040025026A1 (en) * 2002-08-02 2004-02-05 Karp Alan H. System-specific passwords

Family Cites Families (75)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPS60246451A (en) * 1984-05-22 1985-12-06 Sharp Corp Information protecting device
US5319776A (en) 1990-04-19 1994-06-07 Hilgraeve Corporation In transit detection of computer virus with safeguard
GB2261538B (en) * 1991-11-13 1995-05-24 Bank Of England Transaction authentication system
US5212729A (en) * 1992-01-22 1993-05-18 Schafer Randy J Computer data security device and method
EP0566811A1 (en) * 1992-04-23 1993-10-27 International Business Machines Corporation Authentication method and system with a smartcard
US5537544A (en) * 1992-09-17 1996-07-16 Kabushiki Kaisha Toshiba Portable computer system having password control means for holding one or more passwords such that the passwords are unreadable by direct access from a main processor
GB2283341A (en) 1993-10-29 1995-05-03 Sophos Plc Central virus checker for computer network.
US5495411A (en) * 1993-12-22 1996-02-27 Ananda; Mohan Secure software rental system using continuous asynchronous password verification
US5805810A (en) 1995-04-27 1998-09-08 Maxwell; Robert L. Apparatus and methods for converting an electronic mail to a postal mail at the receiving station
US5666415A (en) * 1995-07-28 1997-09-09 Digital Equipment Corporation Method and apparatus for cryptographic authentication
JP3590143B2 (en) 1995-07-28 2004-11-17 株式会社東芝 Email transfer device
US5581700A (en) * 1995-08-11 1996-12-03 Dell U.S.A., L.P. Hierarchical multiple password acceptance system
US5623600A (en) 1995-09-26 1997-04-22 Trend Micro, Incorporated Virus detection and removal apparatus for computer networks
US5889943A (en) 1995-09-26 1999-03-30 Trend Micro Incorporated Apparatus and method for electronic mail virus detection and elimination
US5926462A (en) * 1995-11-16 1999-07-20 Loran Network Systems, Llc Method of determining topology of a network of objects which compares the similarity of the traffic sequences/volumes of a pair of devices
US5802178A (en) 1996-07-30 1998-09-01 Itt Industries, Inc. Stand alone device for providing security within computer networks
US5832208A (en) 1996-09-05 1998-11-03 Cheyenne Software International Sales Corp. Anti-virus agent for use with databases and mail servers
US6003084A (en) 1996-09-13 1999-12-14 Secure Computing Corporation Secure network proxy for connecting entities
US5983350A (en) 1996-09-18 1999-11-09 Secure Computing Corporation Secure firewall supporting different levels of authentication based on address or encryption status
US6072942A (en) 1996-09-18 2000-06-06 Secure Computing Corporation System and method of electronic mail filtering using interconnected nodes
US5915087A (en) 1996-12-12 1999-06-22 Secure Computing Corporation Transparent security proxy for unreliable message exchange protocols
US5812764A (en) * 1997-01-30 1998-09-22 International Business Machines Password management system over a communications network
US6408336B1 (en) 1997-03-10 2002-06-18 David S. Schneider Distributed administration of access to information
US5983270A (en) 1997-03-11 1999-11-09 Sequel Technology Corporation Method and apparatus for managing internetwork and intranetwork activity
US6539430B1 (en) 1997-03-25 2003-03-25 Symantec Corporation System and method for filtering data received by a computer system
US6212558B1 (en) 1997-04-25 2001-04-03 Anand K. Antur Method and apparatus for configuring and managing firewalls and security devices
US6341309B1 (en) 1997-05-27 2002-01-22 Novell, Inc. Firewall system for quality of service management
US6578077B1 (en) 1997-05-27 2003-06-10 Novell, Inc. Traffic monitoring tool for bandwidth management
US5968176A (en) 1997-05-29 1999-10-19 3Com Corporation Multilayer firewall system
US6389534B1 (en) 1997-06-30 2002-05-14 Taher Elgamal Cryptographic policy filters and policy control method and apparatus
US5958005A (en) 1997-07-17 1999-09-28 Bell Atlantic Network Services, Inc. Electronic mail security
DE69841210D1 (en) 1997-07-24 2009-11-12 Axway Inc Email Firewall
US5999967A (en) 1997-08-17 1999-12-07 Sundsted; Todd Electronic mail filtering by electronic stamp
US6591291B1 (en) 1997-08-28 2003-07-08 Lucent Technologies Inc. System and method for providing anonymous remailing and filtering of electronic mail
US6266664B1 (en) 1997-10-01 2001-07-24 Rulespace, Inc. Method for scanning, analyzing and rating digital information content
US6393568B1 (en) 1997-10-23 2002-05-21 Entrust Technologies Limited Encryption and decryption system and method with content analysis provision
US6393465B2 (en) 1997-11-25 2002-05-21 Nixmail Corporation Junk electronic mail detector and eliminator
WO1999032985A1 (en) 1997-12-22 1999-07-01 Accepted Marketing, Inc. E-mail filter and method thereof
US6052709A (en) 1997-12-23 2000-04-18 Bright Light Technologies, Inc. Apparatus and method for controlling delivery of unsolicited electronic mail
US6484261B1 (en) 1998-02-17 2002-11-19 Cisco Technology, Inc. Graphical network security policy management
JPH11261627A (en) 1998-03-09 1999-09-24 Fujitsu Ltd Electronic mail distributor
US6161130A (en) 1998-06-23 2000-12-12 Microsoft Corporation Technique which utilizes a probabilistic classifier to detect "junk" e-mail by automatically updating a training and re-training the classifier based on the updated training set
US6192114B1 (en) 1998-09-02 2001-02-20 Cbt Flint Partners Method and apparatus for billing a fee to a party initiating an electronic mail communication when the party is not on an authorization list associated with the party to whom the communication is directed
US6587550B2 (en) 1998-09-02 2003-07-01 Michael O. Council Method and apparatus for enabling a fee to be charged to a party initiating an electronic mail communication when the party is not on an authorization list associated with the party to whom the communication is directed
US6434600B2 (en) 1998-09-15 2002-08-13 Microsoft Corporation Methods and systems for securely delivering electronic mail to hosts having dynamic IP addresses
US6654787B1 (en) 1998-12-31 2003-11-25 Brightmail, Incorporated Method and apparatus for filtering e-mail
US6266692B1 (en) 1999-01-04 2001-07-24 International Business Machines Corporation Method for blocking all unwanted e-mail (SPAM) using a header-based password
US6330590B1 (en) 1999-01-05 2001-12-11 William D. Cotten Preventing delivery of unwanted bulk e-mail
US6507866B1 (en) 1999-07-19 2003-01-14 At&T Wireless Services, Inc. E-mail usage pattern detection
AU6932200A (en) 1999-08-23 2001-03-19 Webmiles.Com Corporation On-line registration system and method
US6460050B1 (en) 1999-12-22 2002-10-01 Mark Raymond Pace Distributed content identification system
KR100316812B1 (en) 2000-03-09 2001-12-22 박춘우 Electronic stamp providing system for online advertisement and method of operating thereof
US20040073617A1 (en) 2000-06-19 2004-04-15 Milliken Walter Clark Hash-based systems and methods for detecting and preventing transmission of unwanted e-mail
GB2357939B (en) * 2000-07-05 2002-05-15 Gfi Fax & Voice Ltd Electronic mail message anti-virus system and method
GB2366706B (en) 2000-08-31 2004-11-03 Content Technologies Ltd Monitoring electronic mail messages digests
AU2001291174A1 (en) 2000-09-21 2002-04-02 Omega Web Inc. E-mail spam elimination method and system
US6650890B1 (en) 2000-09-29 2003-11-18 Postini, Inc. Value-added electronic messaging services and transparent implementation thereof using intermediate server
US7072943B2 (en) 2000-11-01 2006-07-04 Buyerleverage Email Solutions Llc System and method for granting deposit-contingent E-mailing rights
GB2373130B (en) 2001-03-05 2004-09-22 Messagelabs Ltd Method of,and system for,processing email in particular to detect unsolicited bulk email
US6928465B2 (en) 2001-03-16 2005-08-09 Wells Fargo Bank, N.A. Redundant email address detection and capture system
US20020133469A1 (en) 2001-03-19 2002-09-19 Patton Charles M. Electronic mail filtering system
US7657935B2 (en) 2001-08-16 2010-02-02 The Trustees Of Columbia University In The City Of New York System and methods for detecting malicious email transmission
US7146402B2 (en) 2001-08-31 2006-12-05 Sendmail, Inc. E-mail system providing filtering methodology on a per-domain basis
US20030110224A1 (en) 2001-12-12 2003-06-12 Cazier Robert Paul Message auto-routing for electronic mail
US20030149726A1 (en) 2002-02-05 2003-08-07 At&T Corp. Automating the reduction of unsolicited email in real time
KR100871581B1 (en) 2002-02-19 2008-12-02 포스티니 코포레이션 E-mail management services
US20030172291A1 (en) 2002-03-08 2003-09-11 Paul Judge Systems and methods for automated whitelisting in monitored communications
US20040054742A1 (en) 2002-06-21 2004-03-18 Shimon Gruper Method and system for detecting malicious activity and virus outbreak in email
US20040019651A1 (en) 2002-07-29 2004-01-29 Andaker Kristian L. M. Categorizing electronic messages based on collaborative feedback
US20040083230A1 (en) 2002-10-24 2004-04-29 Caughey David A. Method and system for automatically managing an address database
US7373664B2 (en) * 2002-12-16 2008-05-13 Symantec Corporation Proactive protection against e-mail worms and spam
US7272853B2 (en) * 2003-06-04 2007-09-18 Microsoft Corporation Origination/destination features and lists for spam prevention
US7181498B2 (en) * 2003-10-31 2007-02-20 Yahoo! Inc. Community-based green list for antispam
US7631044B2 (en) * 2004-03-09 2009-12-08 Gozoom.Com, Inc. Suppression of undesirable network messages
US7917588B2 (en) * 2004-05-29 2011-03-29 Ironport Systems, Inc. Managing delivery of electronic messages using bounce profiles

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6665800B1 (en) * 1999-01-26 2003-12-16 Dell Usa, L.P. System and method for securing a computer system
US20030131266A1 (en) * 2002-01-07 2003-07-10 International Business Machines Corporation Generating and maintaining encrypted passwords
US20040025026A1 (en) * 2002-08-02 2004-02-05 Karp Alan H. System-specific passwords

Also Published As

Publication number Publication date
US8166310B2 (en) 2012-04-24
US20050268345A1 (en) 2005-12-01
WO2005119995A2 (en) 2005-12-15

Similar Documents

Publication Publication Date Title
WO2005119995A3 (en) Method and apparatus for providing temporary access to a network device
TW200509640A (en) Method and system for a single-sign-on operation providing grid access and network access
WO2006020329A3 (en) Method and apparatus for determining authentication capabilities
WO2006027650A3 (en) Service authentication
WO2007021495A3 (en) Authorization of device access to network services in dynamic networks
WO2006002068A3 (en) Method and apparatus for making accessible a set of services to users
WO2005008477A3 (en) System and method for dynamic generation of a graphical user interface
AU2002304334A1 (en) Multiple security level mobile telecommunications device, system and method
WO2003100544A3 (en) Method for authenticating a user to a service of a service provider
WO2004102338A3 (en) Method and apparatus for authentication of users and web sites
NO20060905L (en) Method and apparatus for generating an approved domain
WO2003069490A1 (en) User authentication method and user authentication system
WO2006051492A3 (en) Method and network device for assisting a user in selecting content
WO2004034229A3 (en) System and method for providing access control
MXPA06000274A (en) Apparatus and method for a secure broadcast system.
NO20014774D0 (en) System, portable device and method for digital authentication, encryption and signing when generating volatile crypton keys
WO2004058403A3 (en) Method, system and device for automatically configuring a communications network
GB0422132D0 (en) Method and apparatus for performing a secure transaction in a trusted network
WO2007070273A3 (en) Method and apparatus for selecting a codec in a packet-switched communication network
TW200635319A (en) User authentication system
WO2005008403A3 (en) Apparatuses and methods for dynamic creation of phase gantt charts
WO2007014271A3 (en) Applicant screening
TWI256227B (en) Device, system and method to manage security credentials in a protected computer network domain
WO2004044886A3 (en) Method and apparatus for providing speech recognition resolution on an application server
WO2008116858A3 (en) Method and device for the control of a user's access to a service provided in a data network

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NG NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

WWW Wipo information: withdrawn in national office

Country of ref document: DE

122 Ep: pct application non-entry in european phase