CPC H04L 61/4511 (2022.05) [H04L 61/5007 (2022.05); H04L 63/0407 (2013.01); H04L 63/0428 (2013.01); H04L 63/10 (2013.01)] | 20 Claims |
1. A method comprising:
creating, by a security component, a first hash of a user name associated with a user account, a second hash of a password associated with the user name and a host name;
receiving, by a service, the first hash, the second hash, and the host name;
accessing, by the service, a database containing host names and associated username hashes and password hashes associated with the username hashes;
comparing, by the service, the second hash to password hashes of the database; and
notifying, by the service, the security component that the password is allowable for use by the user account for accessing the host:
when the comparison does not result in matching the second hash to a password hash in the database; or
when the comparison results in matching the second hash to at least one password hash in the database, and the first hash is compared, by the service, to all username hashes associated with the at least one matching password hash, and the first hash does not match any of the username hashes associated with the at least one matching password hash.
|