CPC H04L 9/3226 (2013.01) [H04L 9/0819 (2013.01); H04L 9/3242 (2013.01); H04L 63/1466 (2013.01)] | 20 Claims |
1. A method, comprising:
receiving, by a system, a request to access software utilizing password-based authentication;
receiving, by the system, a password for the password-based authentication;
computing, by the system, a hash utilizing the password and a hardware-based authenticator associated with hardware of the system, wherein the hash is computed utilizing a combination of a single implementation of a hardware-based symmetric encryption algorithm provided by a hardware-backed cryptographic module of the system and a single implementation of a software-based one-way pseudorandom function; and
verifying, by the system, that the hash computed utilizing the password and the hardware-based authenticator is correct for accessing the software.
|