Method and apparatus for facilitating low-cost and scalable digital identification authentication
First Claim
1. A method for providing identification authentication, comprising:
- receiving an identification credential from an individual, including a biometric data, wherein the identification credential is digitally signed with a private key;
receiving a biometric sample from the individual;
validating the digital signature using a corresponding public key;
determining if a difference between the digitally signed biometric data and the biometric data from the individual is below a predetermined threshold; and
providing the results of the determination to an interested party;
whereby the identity of the individual can be authenticated with reference to the identification credential alone, without having to lookup information for the individual in a database.
2 Assignments
0 Petitions
Accused Products
Abstract
One embodiment of the present invention provides a system for authenticating and individual'"'"'s identity. The system operates by receiving an identification credential from the individual, such as an ID card, that contains information about the individual including biometric data. This ID card is signed with a private key. The system also receives a biometric sample from the individual, such as a finger print. The system validates the identification credential with the corresponding public key and compares the biometric data with the biometric sample. If the difference between the data and the sample is below a predetermined threshold, the system reports a positive identification. Otherwise, the system reports a negative identification. Note that the system operates solely on information contained within the identification credential and without requiring a connection to a network or a database.
46 Citations
21 Claims
-
1. A method for providing identification authentication, comprising:
-
receiving an identification credential from an individual, including a biometric data, wherein the identification credential is digitally signed with a private key;
receiving a biometric sample from the individual;
validating the digital signature using a corresponding public key;
determining if a difference between the digitally signed biometric data and the biometric data from the individual is below a predetermined threshold; and
providing the results of the determination to an interested party;
whereby the identity of the individual can be authenticated with reference to the identification credential alone, without having to lookup information for the individual in a database. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-readable storage medium storing instructions that when executed by a computer cause the computer to perform a method for providing identification authentication, the method comprising:
-
receiving an identification credential from an individual, including a biometric data, wherein the identification credential is digitally signed with a private key;
receiving a biometric sample from the individual;
validating the digital signature using a corresponding public key;
determining if a difference between the digitally signed biometric data and the biometric data from the individual is below a predetermined threshold; and
providing the results of the determination to an interested party;
whereby the identity of the individual can be authenticated with reference to the identification credential alone, without having to lookup information for the individual in a database. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. An apparatus for providing identification authentication, comprising:
-
a receiving mechanism that is configured to receive an identification credential from an individual, including a biometric data, wherein the identification credential is digitally signed with a private key;
a sampling mechanism that is configured to receive a biometric sample from the individual;
a validation mechanism that is configured to validate the digital signature using a corresponding public key;
a determination mechanism that is configured to determine if a difference between the digitally signed biometric data and the biometric data from the individual is below a predetermined threshold; and
a feedback mechanism that is configured to provide the results of the determination to an interested party;
whereby the identity of the individual can be authenticated with reference to the identification credential alone, without having to lookup information for the individual in a database. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification