Entity authentication for pre-authenticated links
US-2024396898-A1 · Nov 28, 2024 · US
Unlock and recovery for encrypted devices
US10078748B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10078748-B2 |
| Application number | US-201514941246-A |
| Country | US |
| Kind code | B2 |
| Filing date | Nov 13, 2015 |
| Priority date | Nov 13, 2015 |
| Publication date | Sep 18, 2018 |
| Grant date | Sep 18, 2018 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A computing device can perform operations to unlock encrypted volumes of the computing device while the computing device is in a recovery environment. In some examples, the computing device can work in conjunction with a test computing device to unlock the encrypted volumes using an unlock token and a PIN. In other examples, the computing device can perform operations without a test computing device. For example, the computing device can, while in the recovery environment, use credentials associated with a user of the computing device to obtain a recovery password to unlock keys for interpreting the encrypted volumes. In some examples, the computing device can use a shortened recovery password in conjunction with anti-hammering capabilities of a Trusted Platform Module in order to unlock keys for interpreting the encrypted volumes. These and other operations can facilitate secure unlock of volumes of encrypted data on a consumer device.
First claim
Opening claim text (preview).
What is claimed is: 1. A computing device, comprising: one or more processors; a Trusted Platform Module; and computer-readable media configured to be communicatively coupled to the one or more processors and storing instructions that, based on execution by the one or more processors, configure the computing device, to: enter a recovery mode on the computing device; receive credentials associated with accessing a security account; access the security account using the credentials; obtain a first recovery password from the security account; provide the first recovery password to the Trusted Platform Module to perform authentication; receive, from the Trusted Platform Module in response to successfully authenticating the first recovery password, a second recovery password, wherein the first recovery password is shorter than the second recovery password; and retrieving one or more keys using the second recovery password to encrypt or decrypt data stored in the computing device. 2. The computing device of claim 1 , wherein the credentials comprise a user ID and password. 3. The computing device of claim 1 , wherein the security account comprises a cloud-based security account. 4. The computing device of claim 3 , further configured to: detect one or more networks usable to access the cloud-based security account; present a user interface, via a display of the computing device, to prompt entry of access information associated with logging into the one or more networks; connect, via the one or more networks, to the cloud-based security account; submit the credentials into one or more input fields of the cloud-based security account; and access the cloud-based security account. 5. The computing device of claim 1 , wherein obtaining the first recovery password from the security account comprises identifying the first recovery password from data of the security account. 6. The computing device of claim 1 , further configured to reboot the computing device into another operating mode other than a recovery mode. 7. The computing device of claim 1 , wherein the first recovery password is usable to unlock one or more unlock keys associated with an encrypted partition of the computing device.
Assignees
Inventors
Classifications
involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token (network architectures or network communication protocols for supporting authentication of entities using an additional device in a packet data network H04L63/0853) · CPC title
using a predetermined code, e.g. password, passphrase or PIN (network architectures or network communication protocols for supporting authentication of entities using passwords in a packet data network H04L63/083) · CPC title
Lost password, e.g. recovery of lost or forgotten passwords · CPC title
- G06F21/6218Primary
to a system of files or objects, e.g. local or distributed file system or database · CPC title
involving additional devices, e.g. trusted platform module [TPM], smartcard or USB · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10078748B2 cover?
- A computing device can perform operations to unlock encrypted volumes of the computing device while the computing device is in a recovery environment. In some examples, the computing device can work in conjunction with a test computing device to unlock the encrypted volumes using an unlock token and a PIN. In other examples, the computing device can perform operations without a test computing d…
- Who is the assignee on this patent?
- Microsoft Technology Licensing Llc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/6218. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Sep 18 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).