Methods and systems for managing network activity using biometrics
First Claim
1. A method of managing digital communications using biometrics, the method comprising:
- identifying, by a first device, a first value N, and a cryptographic primitive modulo N, wherein N is determined during enrollment of a user;
storing, by the first device, one or more verification codes, wherein each of the one or more verification codes is generated using the cryptographic primitive modulo N to the power of a one-way function result of a respective portion of a first biometric template acquired from the user during the enrollment, and each portion of the biometric template is identified by a corresponding identifier;
receiving, by the first device, a request to connect to the first device, the request from a second device operated by the user;
transmitting, by the first device, a first identifier to the second device, wherein the second device uses the first identifier to identify a first portion of a second biometric template acquired from the user in association with the request, and to generate a first value using the identified first portion of the second biometric template; and
determining, by the first device, that the user is authenticated when the first value from the second device matches a second value generated at the first device according to the first identifier.
1 Assignment
0 Petitions
Accused Products
Abstract
The present disclosure describes systems and methods for managing network traffic using biometrics. A server may store a first value N, a primitive root modulo N, and a plurality of verification codes generated using the primitive root modulo N to the power of a hash function result of a respective portion of a first biometric template acquired from the user during enrollment. The sever may receive a request to connect to the server, from a client operated by the user. The client may use a first offset identifier from the server to identify a first portion of a second biometric template acquired from the user, and generate a first value corresponding to a common exponentiation function. The server may generate a second value corresponding to the common exponentiation function. The server may determine that the user is authenticated if the first value from the client matches the second value.
113 Citations
20 Claims
-
1. A method of managing digital communications using biometrics, the method comprising:
-
identifying, by a first device, a first value N, and a cryptographic primitive modulo N, wherein N is determined during enrollment of a user; storing, by the first device, one or more verification codes, wherein each of the one or more verification codes is generated using the cryptographic primitive modulo N to the power of a one-way function result of a respective portion of a first biometric template acquired from the user during the enrollment, and each portion of the biometric template is identified by a corresponding identifier; receiving, by the first device, a request to connect to the first device, the request from a second device operated by the user; transmitting, by the first device, a first identifier to the second device, wherein the second device uses the first identifier to identify a first portion of a second biometric template acquired from the user in association with the request, and to generate a first value using the identified first portion of the second biometric template; and determining, by the first device, that the user is authenticated when the first value from the second device matches a second value generated at the first device according to the first identifier. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system of managing digital communications using biometrics, the system comprising:
a first device in communication with a second device operated by a user, the first device configured to identify a first value N, and a cryptographic primitive modulo N, wherein N is selected during enrollment of the user, the first device comprising; memory configured to store one or more verification codes, wherein each of the one or more verification codes is generated using the cryptographic primitive modulo N to the power of a one-way function result of a respective portion of a first biometric template acquired from the user during the enrollment, and each portion of the biometric template is identified by a corresponding identifier; a transceiver configured to receive a request from the second device to connect to the first device, and to transmit a first identifier to the second device, wherein the second device uses the first identifier to identify a first portion of a second biometric template acquired from the user in association with the request, and to generate a first value using the identified first portion of the second biometric template; and one or more processors configured to determine that the user is authenticated when the first value from the second device matches a second value generated at the first device according to the first identifier. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
Specification