Apparatus and method for securing information transmitted on computer networks

US 20030149881A1
Filed: 01/31/2002
Published: 08/07/2003
Est. Priority Date: 01/31/2002
Status: Abandoned Application

First Claim

Patent Images

1. A method for communicating confidential data from a sender to a receiver, comprising the steps of:

(A) encrypting the confidential data while the confidential data is in the control of the sender, said step of encrypting including mixing the confidential data with biometric data to produce encrypted data;

(B) sending the encrypted data over a communication link to the receiver;

(C) de-encrypting the encrypted data while the encrypted data is in the control of the receiver by separating the biometric data from the confidential data.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for communicating confidential data over a computer network, such as the Internet includes encrypting the confidential data while the confidential data is in the control of a sender. The step of encrypting includes mixing the confidential data with biometric data to produce encrypted data. The encrypted data is then sent over a communication link to a receiver. The encrypted data is de-encrypted while the encrypted data is in the control of the receiver by separating the biometric data from the confidential data. Voice signatures are convenient forms of biometric data and may be used for the dual purpose of encrypting the data to be sent and serving as a key to be matched by the second entity to gain access to the data, i.e., to allow de-encryption. The further step of converting the encrypted data from a first format to a second format, e.g., wave file format, may provide additional security and requires the reconversion by the second entity in order to de-encrypt. Additional key data may be generated and combined with the confidential data and/or biometric data in accordance with a predetermined algorithm to create a second level of encryption and which is de-encrypted by a reverse algorithm.

73 Citations

View as Search Results

28 Claims

1. A method for communicating confidential data from a sender to a receiver, comprising the steps of:
- (A) encrypting the confidential data while the confidential data is in the control of the sender, said step of encrypting including mixing the confidential data with biometric data to produce encrypted data;
  
  (B) sending the encrypted data over a communication link to the receiver;
  
  (C) de-encrypting the encrypted data while the encrypted data is in the control of the receiver by separating the biometric data from the confidential data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
- - 2. The method of claim 1, wherein the biometric data includes first biometric data relating to the receiver and further including the steps of:
    - (D) isolating the first biometric data from the encrypted data after said step of sending;
      
      (E) generating second biometric data relating to the receiver; and
      
      (F) comparing the first biometric data to the second biometric data to determine if there is a predetermined level of similarity therebetween, said steps of isolating, generating and comparing being conducted prior to said step of de-encrypting, with the execution or non-execution of said step of de-encrypting being dependent upon whether the predetermined level of similarity is present.
  - 3. The method of claim 2, wherein said step (A) of encrypting includes mixing an additional data component with the confidential data and the first biometric data to produce the encrypted data, the additional data component and the confidential data remaining mixed after said step (D) of isolating the first biometric data, said step (C) of de-encrypting including separating the confidential data from the additional data component.
  - 4. The method of claim 3, wherein the additional data component includes secret key data.
  - 5. The method of claim 4 wherein the secret key data is combined with the confidential data via a logical/mathematical operation to encrypt said confidential data.
  - 6. The method of claim 5, wherein the secret key data is combined with the confidential data before said step of mixing the confidential data with the biometric data in said step (A).
  - 7. The method of claim 6, wherein the secret key data is de-combined from the confidential data after said step of separating the biometric data from the confidential data in said step (C).
  - 8. The method of claim 7, wherein the secret key data is combined with the biometric data via a logical/mathematical operation to encrypt the biometric data and wherein the secret key data is de-combined from the biometric data after said step of separating the biometric data from the confidential data in said step (C).
  - 9. The method of claim 8, further including the step of deriving the secret key data from a password via a predefined logical/mathematical formula.
  - 10. The method of claim 5, wherein the secret key data is combined with the biometric data via a logical/mathematical operation to encrypt said biometric data.
  - 11. The method of claim 3, wherein the additional data component is third biometric data.
  - 12. The method of claim 11, wherein the third biometric data is a voice signature of the sender and further including the steps of:
    - (G) producing a reference voice signature for the sender; and
      
      (H) storing the reference voice signature produced in step (G), prior to said step (A) of encrypting the confidential data.
  - 13. The method of claim 3, wherein the first biometric data is a reference voice signature of the receiver and further comprising the steps of:
    - (I) producing the reference voice signature for the receiver;
      
      (J) storing the reference voice signature produced in step (I); and
      
      (K) communicating the reference voice signature of the receiver to the sender prior to said step (A) of encrypting the confidential data.
  - 14. The method of claim 13, wherein the reference voice signature is stored on a server computer on the Internet and said step (K) of communicating includes downloading the reference voice signature from the server computer to a sender computer available to the sender.
  - 15. The method of claim 14, wherein the reference voice signature is stored on the server computer in association with a flag indicating the necessity of the receiver giving prior authorization to the sender before receiving confidential data from the sender;
    - and further including the step of checking the status of the flag prior to downloading the reference voice signature.
  - 16. The method of claim 15, wherein said step (B) of sending includes uploading the encrypted data from the sender computer to the server computer;
    - storing the encrypted data on an email system on the server computer; and
      
      downloading the encrypted data from the server computer to a receiver computer available to the receiver.
  - 17. The method of claim 16, wherein the encrypted data is stored on the receiver computer for a predetermined time and then deleted automatically.
  - 18. The method of claim 13, wherein said step (E) of generating includes deriving a voice signature from a speech sample given in real time by the receiver.
  - 19. The method of claim 18, wherein said step (E) of generating includes the receiver speaking into an audio input of a computer to provide a speech sample, the speech sample being processed by the computer to derive the voice signature.
  - 20. The method of claim 1, wherein the confidential data is in the form of a computer file residing on a first computer controlled by the sender, wherein the communication link is a computer network and said step of sending includes sending the encrypted data over the computer network to a second computer in the control of the receiver.
  - 21. The method of claim 20 further including the step of:
    - (L) converting the encrypted data from a first file format to a second file format before said step (B) of sending.
  - 22. The method of claim 21, wherein the second file format is a wave file format.
  - 23. The method of claim 21, wherein said step (C) of de-encrypting includes reconverting the second file format to the first file format.
  - 24. The method of claim 20, wherein the computer network includes the Internet and said step (B) of sending includes the transfer of the encrypted data from the first computer to a server computer and from the server computer to the second computer.

25. A method for encrypting and de-encrypting confidential data, comprising the steps of:
- (A) Encrypting the confidential data by combining the confidential data with secret key data in accordance with a first predetermined logical/mathematical algorithm to produce data at a first level of encryption;
  
  (B) Obtaining biometric data relating to a living creature;
  
  (C) Mixing the biometric data with the data at the first level of encryption in accordance with a second predetermined algorithm to produce data at a second level of encryption;
  
  (D) De-encrypting the data at the second level of encryption by separating the data at the second level of encryption with the biometric data and the data at the first level of encryption using the second pre-determined algorithm in reverse; and
  
  (E) De-combining the confidential data and the secret key data using the reverse of the first predetermined logical/mathematical algorithm.
- View Dependent Claims (26, 27, 28)
- - 26. The method of claim 25, further comprising the step of converting the data at the second level of encryption from a file of a first format to a file of a second format after said step (C) of mixing and wherein said step (D) of de-encrypting includes reconverting from the second format to the first format prior to said step of separating.
  - 27. The method of claim 26, wherein the second file format is a wave file format.
  - 28. The method of claim 27, wherein said step (B) of obtaining includes generating a speech sample and deriving a voice signature from the speech sample constituting the biometric data, and further including verifying the voice signature after said step of separating by generating a second speech sample and deriving a second voice signature and comparing the voice signature of the biometric data to the second voice signature to determine a predetermined degree of similarity prior to said step of de-combining.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Digital Security, Inc. (DLR Funding, Inc.)
Original Assignee
Digital Security, Inc. (DLR Funding, Inc.)
Inventors
Patel, Bharat, Patel, Manish, Mahajan, Vinay Kumar

Application Number

US10/062,898
Publication Number

US 20030149881A1
Time in Patent Office

Days
Field of Search
US Class Current

713/186
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 63/0435   wherein the sending and rec...

H04L 63/0861   using biometrical features,...

H04L 9/32   including means for verifyi...

H04L 9/3231   Biological data, e.g. finge...

Apparatus and method for securing information transmitted on computer networks

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

73 Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

Apparatus and method for securing information transmitted on computer networks

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

73 Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links