Salesforce, inc. (20240422000). HARDWARE-BACKED PASSWORD SECURITY FOR CLOUD SYSTEMS
HARDWARE-BACKED PASSWORD SECURITY FOR CLOUD SYSTEMS
Organization Name
Inventor(s)
Prasad Peddada of Alameda CA (US)
HARDWARE-BACKED PASSWORD SECURITY FOR CLOUD SYSTEMS
This abstract first appeared for US patent application 20240422000 titled 'HARDWARE-BACKED PASSWORD SECURITY FOR CLOUD SYSTEMS
Original Abstract Submitted
methods, systems, and devices for data processing are described. a server host may receive a login request that includes a clear text password for an account associated with a tenant of a multi-tenant cloud platform. the server host may retrieve an encrypted payload associated with the account. the encrypted payload may include a hash value of a user-configured password for the account and an indication of a hashing algorithm used to transform the user-configured password into the hash value. the server host may obtain a wrapped symmetric key provisioned by a symmetric key distribution service. the server host may transmit a request that includes the encrypted payload, the clear text password, and the wrapped symmetric key. the server host may receive a response that indicates whether a hash value of the clear text password from the login request corresponds to the hash value of the user-configured password.