Biometrically enhanced digital certificates and system and method for making and using
First Claim
1. A digital certificate for use in a public key infrastructure, said certificate comprising:
- a public key field comprising a public key; and
a biometric certificate field comprising biometric data;
wherein said public key and said biometric data are associated with a same entity.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention provides biometrically enhanced certificates or other data structure or data item containing biometric information, by adding fields containing biometric information derived from a user to a conventional Public Key Certificate. A biometrically enhanced certificate, therefore, provides a digital identity that binds a public key not just to a name, but to a physical property or properties of the person or entity who is the subject of the certificate. In one embodiment, biometric certificate fields comprising biometric data are incorporated into private extensions of an X.509 identity certificate. In another embodiment, biometric certificate fields comprising biometric data are incorporated into an X.509 attribute certificate.
-
Citations
33 Claims
-
1. A digital certificate for use in a public key infrastructure, said certificate comprising:
-
a public key field comprising a public key; and
a biometric certificate field comprising biometric data;
wherein said public key and said biometric data are associated with a same entity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method for generating a biometrically enhanced certificate comprising:
-
obtaining a biometric data sample;
processing said biometric data sample to yield processed biometric information;
generating biometric certificate fields utilizing said compressed biometric information; and
submitting certificate information including said biometric certificate fields to at least one third-party authority. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 33)
-
-
25. A computer program product for use in conjunction with a computer system having at least one processor and a memory coupled to the processor, the computer program product comprising a computer readable storage medium and a computer program mechanism embedded therein, the computer program mechanism, comprising:
-
a program module that directs the computer to function in a specified manner to generate a biometrically enhanced certificate, the program module including instructions for;
obtaining a biometric data sample;
processing said biometric data sample to yield processed biometric information;
generating biometric certificate fields utilizing said compressed biometric information;
submitting certificate information including said biometric certificate fields to at least one third-party authority; and
receiving a signed certificate. - View Dependent Claims (26, 27, 28, 29, 30, 31)
-
-
32. A digital certificate for use in a public key infrastructure, said certificate comprising:
-
a public key field comprising a public key;
a biometric certificate field comprising scan sampled biometric data including processed biometric data, a biometric template, and a hash value;
wherein said public key and said biometric data are associated with a same entity;
said certificate is an X.509 certificate comprising private extensions, and wherein said private extensions comprise said biometric information; and
said biometric data sample comprises a biometric data sample selected from the group consisting of a fingerprint scan, a facial image, an iris scan, a retinal scan, a voice recording, a DNA sample, a saliva sample, and combinations thereof.
-
Specification