发明名称 |
Methods and apparatus to manage password security |
摘要 |
Methods, apparatus, systems and articles of manufacture are disclosed to manage password security. An example apparatus includes an alarm action engine to invoke a provisional transmission block in response to detecting entry of a candidate password, a password linkage monitor to retrieve a list of password hash values associated with previously used passwords, and to compare the list of password hash values to a hash of the candidate password, the alarm action engine to invoke a permanent block of the candidate password when a match condition occurs between the hash of the candidate password and a hash of one of the list of password hash values. |
申请公布号 |
US9563768(B2) |
申请公布日期 |
2017.02.07 |
申请号 |
US201314359437 |
申请日期 |
2013.11.25 |
申请人 |
Intel Corporation |
发明人 |
Li Hong;Kohlenberg Tobias M.;Hurst Lawrence |
分类号 |
G06F21/46;G06F21/45;G06F21/55;H04L29/06;H04L29/08 |
主分类号 |
G06F21/46 |
代理机构 |
Hanley, Flight & Zimmerman, LLC |
代理人 |
Hanley, Flight & Zimmerman, LLC |
主权项 |
1. An apparatus to manage password security, comprising:
a hardware processor to implement: an alarm action engine to invoke a provisional transmission block of a candidate password associated with a user in response to detecting entry of the candidate password; a transmission delay manager to maintain the provisional transmission block until a blocking release authorization code is received; and a password linkage monitor to retrieve a list of password hash values, stored in a memory, the password hash values associated with previously used passwords associated with the user, the password linkage monitor to compare the list of password hash values to a hash value of the candidate password, the password linkage monitor to determine a count of the number of times the hash value of the candidate password matches a password hash value in the list, wherein the count represents a number of different online service sites where the candidate password has been used; the alarm action engine to identify a service category type associated with the candidate password, the alarm action engine to identify a threshold based on the service category type, where the threshold for the service category type is dependent on a security risk for the service category type, the alarm action engine to compare the count with the threshold; the alarm action engine to invoke a permanent block of the candidate password when the count meets or exceeds the threshold; the alarm action engine to allow use of the candidate password when the count does not meet or exceed the threshold. |
地址 |
Santa Clara CA US |