Personal digital key initialization and registration for secure transactions

US 10,374,795 B1
Filed: 12/31/2015
Issued: 08/06/2019
Est. Priority Date: 05/05/2006
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

establishing, at a reader device, a communication channel with a personal digital key (PDK);

determining, at the reader device, that the PDK has a first status, a financial transaction prevented when the PDK has a second status and an authentication associated with the financial transaction initiated when the PDK has the first status;

determining the authentication associated with the financial transaction based on a predefined criterion associated with the financial transaction and based on a comparison of one or more types of authentication profiles permitted by the reader device to one or more types of authentication profiles satisfiable by the PDK;

initiating, at the reader device, the authentication associated with the financial transaction which was determined based on the comparison of one or more types of authentication profiles authentication types permitted by the reader device to one or more types of authentication profiles satisfiable by the PDK;

determining, at the reader device, that a trigger indicative of intent to complete the financial transaction is required to continue authentication;

receiving, at the reader device, information indicating that the trigger indicative of intent to complete the financial transaction has been executed; and

receiving, at the reader device, payment means information from the PDK subsequent to execution of the trigger and successful authentication of a user, the payment means associated with a source of payment.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method provide efficient, secure, and highly reliable authentication for transaction processing and/or access control applications. A personal digital key (PDK) is programmed using a trusted programming device to initialize and/or register the PDK for use. In one embodiment, the initialization and registration processes are administered by a specialized trusted Notary to ensure the processes follow defined security procedures. In a biometric initialization, the programming device acquires a biometric input from a user and writes the biometric data to a tamperproof memory in the PDK. In registration, the Programmer communicates to one or more remote registries to create or update entries associated with the user PDK. Once initialized and registered, the PDK can be used for various levels of secure authentication processes.

299 Citations

20 Claims

1. A method comprising:
- establishing, at a reader device, a communication channel with a personal digital key (PDK);
  
  determining, at the reader device, that the PDK has a first status, a financial transaction prevented when the PDK has a second status and an authentication associated with the financial transaction initiated when the PDK has the first status;
  
  determining the authentication associated with the financial transaction based on a predefined criterion associated with the financial transaction and based on a comparison of one or more types of authentication profiles permitted by the reader device to one or more types of authentication profiles satisfiable by the PDK;
  
  initiating, at the reader device, the authentication associated with the financial transaction which was determined based on the comparison of one or more types of authentication profiles authentication types permitted by the reader device to one or more types of authentication profiles satisfiable by the PDK;
  
  determining, at the reader device, that a trigger indicative of intent to complete the financial transaction is required to continue authentication;
  
  receiving, at the reader device, information indicating that the trigger indicative of intent to complete the financial transaction has been executed; and
  
  receiving, at the reader device, payment means information from the PDK subsequent to execution of the trigger and successful authentication of a user, the payment means associated with a source of payment.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, comprising:
    - determining a status of the PDK based at least in part on a registry including data describing the status of one or more PDKs; and
      
      determining that the PDK is in good standing, wherein the first status is in good standing.
  - 3. The method of claim 2, wherein the PDK is in good standing when not reported as lost, stolen, expired or revoked.
  - 4. The method of claim 1, wherein the second status includes at least one of being lost, stolen, expired and revoked.
  - 5. The method of claim 1, wherein the trigger indicative of intent to complete the financial transaction includes acquisition of a biometric input and the trigger indicative of intent to complete the financial transaction is executed when a user'"'"'s biometric input is received via a biometric scanner, the biometric input compared to a biometric profile stored on the PDK, the successful authentication including a match between the biometric input and the biometric profile stored on the PDK.
  - 6. The method of claim 5, wherein the biometric input is based on one or more features of the user'"'"'s finger.
  - 7. The method of claim 1, wherein the PDK is integrated into a cell phone.
  - 8. The method of claim 1, wherein the PDK is integrated into a watch.
  - 9. The method of claim 1, wherein the payment means information is associated with a default payment means.
  - 10. The method of claim 1, wherein the payment means information is associated a payment means selected by the user from a plurality of potential payment means associated with the user.

11. A system comprising:
- one or more processors; and
  
  a memory storing instructions that when executed by the one or more processors, causes the system to;
  
  establish a communication channel between a personal digital key (PDK) and a reader;
  
  determine that the PDK has a first status, a financial transaction prevented when the PDK has a second status and an authentication associated with the financial transaction initiated when the PDK has the first status;
  
  determine the authentication associated with the financial transaction based on a predefined criterion associated with the financial transaction and based on a comparison of one or more types of authentication profiles permitted by the reader to one or more types of authentication profiles satisfiable by the PDK;
  
  initiate the authentication associated with the financial transaction which was determined based on the comparison of one or more types of authentication profiles authentication types permitted by the reader to one or more types of authentication profiles satisfiable by the PDK;
  
  determine that a trigger indicative of intent to complete the financial transaction is required to continue authentication;
  
  receiving information indicating that the trigger indicative of intent to complete the financial transaction has been executed; and
  
  receiving payment means information from the PDK subsequent to the execution of the trigger and successful authentication of a user, wherein the PDK includes the payment means information, the payment means associated with a source of payment.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 12. The system of claim 11 comprising:
    - a network interface adapted to receive data describing the status of the PDK from a remote registry.
  - 13. The system of claim 11 comprising:
    - a biometric reader adapted to obtain a representation of a physical or behavioral characteristic of the user.
  - 14. The system of claim 13, wherein the biometric reader comprises at least one of a fingerprint scanner, a retinal scanner, an iris scanner, a face scanner, a palm scanner, a DNA analyzer, a signature analyzer and a voice analyzer.
  - 15. The system of claim 11, wherein the first status is in good standing and the PDK is in good standing when not reported as lost, stolen, expired or revoked.
  - 16. The system of claim 11, wherein the second status includes at least one of being lost, stolen, expired and revoked.
  - 17. The system of claim 13, wherein the trigger indicative of intent to complete the financial transaction includes acquisition of a biometric input using the biometric reader, the biometric input compared to a biometric profile stored on the PDK, the successful authentication including a match between the biometric input and the biometric profile stored on the PDK.
  - 18. The system of claim 11, wherein the PDK is integrated into a cell phone.
  - 19. The system of claim 11, wherein the PDK is integrated into a watch.
  - 20. The system of claim 11, wherein the payment means information is associated a payment means selected by the user from a plurality of potential payment means associated with the user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Proxense, LLC
Original Assignee
Proxense, LLC
Inventors
Giobbi, John J, Brown, David L, Hirt, Fred S
Primary Examiner(s)
Arani, Taghi T
Assistant Examiner(s)
Lane, Gergory A

Application Number

US14/986,306
Time in Patent Office

1,314 Days
Field of Search

713186
US Class Current
CPC Class Codes

G06F 21/31   User authentication

G06F 21/32   using biometric data, e.g. ...

G06F 21/34   involving the use of extern...

G06F 2221/2115   Third party

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/4014   Identity check for transact...

G06Q 20/40145   Biometric identity checks

G07C 2209/12   Comprising means for protec...

G07C 9/257   electronically G07C9/26 tak...

G07C 9/26   using a biometric sensor in...

G07F 7/1008   Active credit-cards provide...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/80   Wireless network architectu...

H04L 63/0861   using biometrical features,...

H04L 9/0866   involving user or device id...

H04L 9/3231   Biological data, e.g. finge...

H04W 12/06   Authentication

H04W 12/068   using credential vaults, e....

Personal digital key initialization and registration for secure transactions

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

299 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Personal digital key initialization and registration for secure transactions

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

299 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links