Universal secure registry
First Claim
1. An electronic ID device configured to allow a user to select an account associated with the user to employ in a transaction, the electronic ID device comprising:
- a biometric sensor configured to receive a biometric input provided by the user;
a user interface configured to receive a user input, the user input including;
secret information known to the user; and
selection information concerning an account selected by the user from one or more accounts associated with the user;
a communication interface configured to communicate with a secure registry, wherein the communication interface includes a near field communication (NFC) transceiver; and
a processor coupled to the biometric sensor to receive information concerning the biometric input, wherein the processor is programmed to;
activate transaction software of the electronic ID device in response to a successful authentication of the user'"'"'s identity, wherein authentication of the user'"'"'s identity is based on at least one of the biometric input and the secret information;
generate a one-time non-predictable value;
obtain a public identifier that corresponds to private account information of the selected user account, wherein the public identifier does not contain any private account information of the selected user account;
generate authentication information from the one-time non-predictable value and the public identifier;
encrypt the authentication information; and
wirelessly communicate the encrypted authentication information to a requesting or receiving device via an authentication signal generated by the communication interface, the authentication signal comprising an NFC signal, such that the secure registry;
receives a transaction request and at least a portion of the encrypted authentication information from the requesting or receiving device, wherein the transaction request involves the selected user account;
decrypts the encrypted authentication information;
verifies the decrypted authentication information without using the private account information;
uses the public identifier from the encrypted authentication information to acquire the private account information of the selected user account; and
generates an enablement signal to enable the transaction request without transmitting the private account information.
0 Assignments
0 Petitions
Accused Products
Abstract
According to some aspects of the disclosure, an electronic ID device is configured to allow a user to select an account associated with the user to employ in a transaction. The electronic ID device comprises a biometric sensor configured to receive a biometric input provided by the user, a user interface configured to receive a user input, a communication interface configured to communicate with a secure registry, wherein the communication interface includes a near field communication transceiver, and a processor coupled to the biometric sensor to receive information concerning the biometric input.
231 Citations
27 Claims
-
1. An electronic ID device configured to allow a user to select an account associated with the user to employ in a transaction, the electronic ID device comprising:
-
a biometric sensor configured to receive a biometric input provided by the user; a user interface configured to receive a user input, the user input including; secret information known to the user; and selection information concerning an account selected by the user from one or more accounts associated with the user; a communication interface configured to communicate with a secure registry, wherein the communication interface includes a near field communication (NFC) transceiver; and a processor coupled to the biometric sensor to receive information concerning the biometric input, wherein the processor is programmed to; activate transaction software of the electronic ID device in response to a successful authentication of the user'"'"'s identity, wherein authentication of the user'"'"'s identity is based on at least one of the biometric input and the secret information; generate a one-time non-predictable value; obtain a public identifier that corresponds to private account information of the selected user account, wherein the public identifier does not contain any private account information of the selected user account; generate authentication information from the one-time non-predictable value and the public identifier; encrypt the authentication information; and wirelessly communicate the encrypted authentication information to a requesting or receiving device via an authentication signal generated by the communication interface, the authentication signal comprising an NFC signal, such that the secure registry; receives a transaction request and at least a portion of the encrypted authentication information from the requesting or receiving device, wherein the transaction request involves the selected user account; decrypts the encrypted authentication information; verifies the decrypted authentication information without using the private account information; uses the public identifier from the encrypted authentication information to acquire the private account information of the selected user account; and generates an enablement signal to enable the transaction request without transmitting the private account information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. An electronic ID device configured to allow a user to select an account associated with the user to employ in a transaction, the electronic ID device comprising:
-
a biometric sensor configured to receive a biometric input provided by the user; a user interface configured to receive a user input, the user input including; secret information known to the user; and selection information concerning an account selected by the user from one or more accounts associated with the user; a communication interface configured to communicate with a secure registry, wherein the communication interface includes a magnetic stripe emulator; and a processor coupled to the biometric sensor to receive information concerning the biometric input, wherein the processor is programmed to; activate transaction software of the electronic ID device in response to a successful authentication of the user'"'"'s identity, wherein authentication of the user'"'"'s identity is based on at least one of the biometric input and the secret information; generate a one-time non-predictable value; obtain a public identifier that corresponds to private account information of the selected user account, wherein the public identifier does not contain any private account information of the selected user account; generate authentication information from the one-time non-predictable value and the public identifier; encrypt the authentication information; and wirelessly communicate the encrypted authentication information to a requesting or receiving device via an authentication signal generated by the communication interface, the authentication signal comprising a time-varying signal which emulates data provided by a magnetic-stripe card to a magnetic card reader, such that the secure registry; receives a transaction request and at least a portion of the encrypted authentication information from the requesting or receiving device, wherein the transaction request involves the selected user account; decrypts the encrypted authentication information; verifies the decrypted authentication information without using the private account information; uses the public identifier from the decrypted authentication information to acquire the private account information of the selected user account; and generates an enablement signal to enable the transaction request without transmitting the private account information. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. An electronic ID device configured to allow a user to select an account associated with the user to employ in a transaction, the electronic ID device comprising:
-
a biometric sensor configured to receive a biometric input provided by the user; a user interface configured to receive a user input, the user input including; secret information known to the user; and selection information concerning an account selected by the user from one or more accounts associated with the user; a communication interface configured to communicate with a secure registry, wherein the communication interface includes a Bluetooth™
or Bluetooth™
Low Energy transceiver; anda processor coupled to the biometric sensor to receive information concerning the biometric input, wherein the processor is programmed to; activate transaction software of the electronic ID device in response to a successful authentication of the user'"'"'s identity, wherein authentication of the user'"'"'s identity is based on at least one of the biometric input and the secret information; generate a one-time non-predictable value; obtain a public identifier that corresponds to private account information of the selected user account, wherein the public identifier does not contain any private account information of the selected user account; generate authentication information from the one-time non-predictable value and the public identifier; encrypt the authentication information; and wirelessly communicate the encrypted authentication information to a requesting or receiving device via an authentication signal generated by the communication interface, the authentication signal comprising a Bluetooth™
or Bluetooth™
Low Energy signal, such that the secure registry;receives a transaction request and at least a portion of the encrypted authentication information from the requesting or receiving device, wherein the transaction request involves the selected user account; decrypts the encrypted authentication information; verifies the decrypted authentication information without the private account information; uses the public identifier from the decrypted authentication information to acquire the private account information of the selected user account; and generates an enablement signal to enable the transaction request without transmitting the private account information. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27)
-
Specification