Personal digital key initialization and registration for secure transactions
First Claim
1. A method comprising:
- establishing, at a reader device, a communication channel with a personal digital key (PDK);
determining, at the reader device, that the PDK has a first status, a financial transaction prevented when the PDK has a second status and an authentication associated with the financial transaction initiated when the PDK has the first status;
determining the authentication associated with the financial transaction based on a predefined criterion associated with the financial transaction and based on a comparison of one or more types of authentication profiles permitted by the reader device to one or more types of authentication profiles satisfiable by the PDK;
initiating, at the reader device, the authentication associated with the financial transaction which was determined based on the comparison of one or more types of authentication profiles authentication types permitted by the reader device to one or more types of authentication profiles satisfiable by the PDK;
determining, at the reader device, that a trigger indicative of intent to complete the financial transaction is required to continue authentication;
receiving, at the reader device, information indicating that the trigger indicative of intent to complete the financial transaction has been executed; and
receiving, at the reader device, payment means information from the PDK subsequent to execution of the trigger and successful authentication of a user, the payment means associated with a source of payment.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method provide efficient, secure, and highly reliable authentication for transaction processing and/or access control applications. A personal digital key (PDK) is programmed using a trusted programming device to initialize and/or register the PDK for use. In one embodiment, the initialization and registration processes are administered by a specialized trusted Notary to ensure the processes follow defined security procedures. In a biometric initialization, the programming device acquires a biometric input from a user and writes the biometric data to a tamperproof memory in the PDK. In registration, the Programmer communicates to one or more remote registries to create or update entries associated with the user PDK. Once initialized and registered, the PDK can be used for various levels of secure authentication processes.
299 Citations
20 Claims
-
1. A method comprising:
-
establishing, at a reader device, a communication channel with a personal digital key (PDK); determining, at the reader device, that the PDK has a first status, a financial transaction prevented when the PDK has a second status and an authentication associated with the financial transaction initiated when the PDK has the first status; determining the authentication associated with the financial transaction based on a predefined criterion associated with the financial transaction and based on a comparison of one or more types of authentication profiles permitted by the reader device to one or more types of authentication profiles satisfiable by the PDK; initiating, at the reader device, the authentication associated with the financial transaction which was determined based on the comparison of one or more types of authentication profiles authentication types permitted by the reader device to one or more types of authentication profiles satisfiable by the PDK; determining, at the reader device, that a trigger indicative of intent to complete the financial transaction is required to continue authentication; receiving, at the reader device, information indicating that the trigger indicative of intent to complete the financial transaction has been executed; and receiving, at the reader device, payment means information from the PDK subsequent to execution of the trigger and successful authentication of a user, the payment means associated with a source of payment. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system comprising:
-
one or more processors; and a memory storing instructions that when executed by the one or more processors, causes the system to; establish a communication channel between a personal digital key (PDK) and a reader; determine that the PDK has a first status, a financial transaction prevented when the PDK has a second status and an authentication associated with the financial transaction initiated when the PDK has the first status; determine the authentication associated with the financial transaction based on a predefined criterion associated with the financial transaction and based on a comparison of one or more types of authentication profiles permitted by the reader to one or more types of authentication profiles satisfiable by the PDK; initiate the authentication associated with the financial transaction which was determined based on the comparison of one or more types of authentication profiles authentication types permitted by the reader to one or more types of authentication profiles satisfiable by the PDK; determine that a trigger indicative of intent to complete the financial transaction is required to continue authentication; receiving information indicating that the trigger indicative of intent to complete the financial transaction has been executed; and receiving payment means information from the PDK subsequent to the execution of the trigger and successful authentication of a user, wherein the PDK includes the payment means information, the payment means associated with a source of payment. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification