Abstract: Techniques are disclosed relating to authenticating a user based on a partial password. In one embodiment, a computer system stores masking criteria defining how a mask is to be applied to generated passwords. In some embodiments, the computer system receives a request from a user to generate a one-time password. In response to the request, in some embodiments, the computer system generates the one-time password having a sequence of characters, applies the mask to the generated one-time password to select a subset of the sequence of characters usable to authenticate the user, and presents the selected subset of characters to the user as a partial password for authentication.

Abstract: Provided is a process of determining whether remote direct memory access requests are authorized, including: receiving a request to authorize a remote direct memory access request (RDMA) session between a first computing device and a second computing device; receiving a user credential from the second computing device; receiving a computing-device attribute indicator based on a plurality attributes of the second computing device; accessing access-control criteria corresponding to the received request in an access-control policy repository; and determining based on the accessed access-control criteria, the computing-device attribute indicator, and the user credential, to authorize the requested RDMA session.

Abstract: A method is described for receiving a group credential request for a group from a second user, the group credential request comprising a first challenge and a second challenge, where the first challenge is a hashed string of characters and the second challenge is a version of the first challenge encrypted with a private key. The method includes using a public key associated with a first user to determine whether the private key is associated with the first user. The method further includes, in response to determining that the private key is associated with the first user, transmitting group credentials to the second user, the group credentials comprising a group shared key.

Abstract: Provided is a process of determining whether remote direct memory access requests are authorized, including: receiving a request to authorize a remote direct memory access request (RDMA) session between a first computing device and a second computing device; receiving a user credential from the second computing device; receiving a computing-device attribute indicator based on a plurality attributes of the second computing device; accessing access-control criteria corresponding to the received request in an access-control policy repository; and determining based on the accessed access-control criteria, the computing-device attribute indicator, and the user credential, to authorize the requested RDMA session.

Abstract: Provided is a process, including: receiving a request to authenticate a user to access resources from a first computing device; in response to receiving the request, sending, with one or more processors, instructions that cause the first computing device to display a machine readable image, wherein: the machine readable image is configured to, upon being sensed with a camera of a second computing device, cause the second computing device to present, with a display of the second computing device, a user interface with a user-credential input configured based on the machine readable image displayed by the first computing device; receiving from the second computing device, a value demonstrating possession of a user credential and an identifier of the second computing device, the user credential being entered into the second computing device via the user interface configured based on the machine readable image displayed by the first computing device.

Abstract: Techniques are disclosed relating to authenticating a user based on a partial password. In one embodiment, a computer system stores masking criteria defining how a mask is to be applied to generated passwords. In some embodiments, the computer system receives a request from a user to generate a one-time password. In response to the request, in some embodiments, the computer system generates the one-time password having a sequence of characters, applies the mask to the generated one-time password to select a subset of the sequence of characters usable to authenticate the user, and presents the selected subset of characters to the user as a partial password for authentication.

Abstract: Provided is a process, including: receiving a request to authenticate a user to access resources from a first computing device; in response to receiving the request, sending, with one or more processors, instructions that cause the first computing device to display a machine readable image, wherein: the machine readable image is configured to, upon being sensed with a camera of a second computing device, cause the second computing device to present, with a display of the second computing device, a user interface with a user-credential input configured based on the machine readable image displayed by the first computing device; receiving from the second computing device, a value demonstrating possession of a user credential and an identifier of the second computing device, the user credential being entered into the second computing device via the user interface configured based on the machine readable image displayed by the first computing device.