Digital identity system
First Claim
1. A digital identity system comprising:
- a computer interface for receiving electronic messages; and
one or more hardware processors configured to execute;
an enrolment module configured to receive a data item captured from an identity document, and create in persistent electronic storage a digital identity comprising the data item;
a credential creation module configured to transmit from the digital identity system to a user device via the computer interface a credential for storing at the user device, the credential being bound to the digital identity; and
a validation service configured to receive an electronic message comprising the credential and identifying a target device, validate the credential, and if the credential is valid, use the credential to transmit from the digital identity system to the target device, an electronic message so as to render the data item of the digital identity available to the target device.
0 Assignments
0 Petitions
Accused Products
Abstract
The disclosure relates to a digital identity system including an enrolment module executing on a processor configured to receive a data item from an enrolling device and to create in persistent electronic storage a digital profile comprising the data item. The system also includes a credential creation module executing on a processor configured to generate a credential from a random sequence, to associate the credential with the digital profile in a database, and to transmit the credential to the enrolling device. The system further includes a publication module executing on a processor configured, in response to later presentation of the credential to the digital identity system, to publish the digital profile by storing a version of the digital profile in a memory location accessible to a device presenting the credential.
-
Citations
20 Claims
-
1. A digital identity system comprising:
-
a computer interface for receiving electronic messages; and one or more hardware processors configured to execute; an enrolment module configured to receive a data item captured from an identity document, and create in persistent electronic storage a digital identity comprising the data item; a credential creation module configured to transmit from the digital identity system to a user device via the computer interface a credential for storing at the user device, the credential being bound to the digital identity; and a validation service configured to receive an electronic message comprising the credential and identifying a target device, validate the credential, and if the credential is valid, use the credential to transmit from the digital identity system to the target device, an electronic message so as to render the data item of the digital identity available to the target device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A computer-implemented method of creating a digital identity comprising:
-
at a user device, capturing a data item from an identity document; creating on a processor of the user device an electronic message comprising the data item; transmitting the electronic message from the user device to a digital identity system; receiving at the user device from the digital identity system an electronic message comprising a credential, which is bound to a digital identity comprising the data item, the digital identity having been created at the digital identity system in response to the electronic message comprising the data item; and storing the credential in memory of the user device, wherein later presentation of the credential to the digital identity system causes the data item of the digital identity to be rendered available to a target device presenting the credential. - View Dependent Claims (16, 17)
-
-
18. A user device comprising:
-
a memory; and a hardware processor coupled to the memory and configured to execute computer readable instructions which, when executed on the hardware processor, cause the hardware processor to; capture a data item from an identity document, create an electronic message comprising the data item, transmit the electronic message from the user device to a digital identity system, receive from the digital identity system an electronic message comprising a credential, which is bound to a digital identity comprising the data item, the digital identity having been created at the digital identity system in response to the electronic message comprising the data item; and store the credential in the memory, wherein later presentation of the credential to the digital identity system causes the data item of the digital identity to be rendered available to a target device presenting the credential.
-
-
19. A non-transitory computer readable storage medium comprising code executable a user device to implement steps of:
-
capturing a data item from an identity document; creating an electronic message comprising the data item; transmitting the electronic message from the user device to a digital identity system; receiving from the digital identity system an electronic message comprising a credential, which is bound to a digital identity comprising the data item, the digital identity having been created at the digital identity system in response to the electronic message comprising the data item; and storing the credential at the user device, wherein later presentation of the credential to the digital identity system causes the data item of the digital identity to be rendered available to a target device presenting the credential.
-
-
20. A digital identity system comprising:
-
a computer interface for receiving electronic messages; and one or more hardware processors configured to execute; an enrolment module configured to create in persistent electronic storage a digital identity comprising a data item; a credential creation module configured to associate a credential with the digital profile, and transmit the credential from the digital identity system to a credential-receiving device; a computer interface configured to receive, in a transaction, an electronic message comprising the credential and identifying a target device, the message being received from the credential-receiving device or the target device having captured the credential from the credential-receiving device; and a publication module configured to, in response to the electronic message, publish the data item of the digital identity, by storing a version of the data item in a memory location of the digital identity system accessible to the target device, wherein the version of the data item published in the memory location of the digital identity system is unaffected by future modifications of the digital identity to provide a snapshot of the data item of the digital identity at a time of the transaction.
-
Specification