摘要 |
Controlling access to a computerized device includes deriving a hash from two pieces of information, signing the hash to create a signed password and storing the password in the device. In response to an initial access attempt, the user is prompted to enter two input values. A local hash is then derived from the two input values and compared to a hash derived from the stored password. Upon detecting a match between the hashes, the user is granted access to the device, where the match indicates equivalence between the two pieces of information and the two input values. The input values may include information specific or personal to the user and information unique to the device. A public/private key pair may be used to sign and optionally encrypt and decrypt the stored password.
|