Biometric key generation for secure storage

US 20030219121A1
Filed: 05/24/2002
Published: 11/27/2003
Est. Priority Date: 05/24/2002
Status: Abandoned Application

First Claim

Patent Images

1. A method for generating security information using biometric information, said method comprising the steps of:

receiving scan data relating to a person securing data;

generating a random cryptographic key;

performing a reversible operation on said biometric scan data and said random key to create a template;

storing said template;

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus for the generation and use of a biometric cryptographic key to secure and retrieve data that involves combining a random key and the biometric information to generate a template, such that the cryptographic key needed to retrieve the data cannot be obtained from the combination unless the identical user submits his or her biometric information during a subsequent biometric scan at which time the cryptographic key is generated from a combination of the stored template and the scan, allowing the secured data to be released and/or decrypted. Thus, if the system containing the secured data were compromised it would be virtually impossible to decrypt the data because not enough information resides on the system to re-construct the cryptographic key.

Citations

24 Claims

1. A method for generating security information using biometric information, said method comprising the steps of:
- receiving scan data relating to a person securing data;
  
  generating a random cryptographic key;
  
  performing a reversible operation on said biometric scan data and said random key to create a template;
  
  storing said template;
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method for generating security information using biometric information of claim 1 further comprising the step of adding an error correction code to said random cryptographic key.
  - 3. The method for generating security information using biometric information of claim 2 further comprising the step of adding bits to said biometric scan data for padding purposes.
  - 4. The method for generating security information using biometric information of claim 1 wherein said reversible operation performed on said random cryptographic key and said biometric scan data is an exclusive OR operation.
  - 5. The method for generating security information using biometric information of claim 1 further comprising the step of passing said random cryptographic key through a hash function to produce a hashed random cryptographic key for encrypting data to be secured through the use of said hashed random cryptographic key.

6. A method of retrieving a random cryptographic key originally generated using biometric information, said method comprising the steps of:
- receiving biometric scan data relating to a person seeking access to the secured data;
  
  combining, through a reversible operation, said biometric information with a stored template, to derive said random cryptographic key.
- View Dependent Claims (7, 8, 9)
- - 7. The method of retrieving a random cryptographic key of claim 6 further comprising the step of passing said derived random cryptographic key through an error correction code checker, wherein said random cryptographic key includes an error correction code.
  - 8. The method of retrieving a random cryptographic key of claim 6 wherein said reversible operation is an exclusive OR operation.
  - 9. The method of retrieving a random cryptographic key of claim 7 wherein said derived cryptographic key is passed through a hash function after it is verified by said error correction code checker.

10. A method securing and unsecuring user data using a biometric cryptographic key, said method comprising the steps of:
- receiving a first biometric scan data set relating to a person securing user data;
  
  generating a random cryptographic key;
  
  performing a reversible operation on said biometric scan data and random cryptographic key to create a template;
  
  storing said template;
  
  securing the user data through use of said random cryptographic key;
  
  receiving a second biometric scan data set from a person desiring to retrieve the secured user data;
  
  performing said reversible operation on said template and second biometric scan data set to derive a key;
  
  using said derived key to retrieve said secured user data.
- View Dependent Claims (11, 12, 13, 14, 15)
- - 11. The method of securing and unsecuring data of claim 10 further comprising the step of adding an error correction code to said random cryptographic key prior to performing said reversible operation that results in the creation of a template.
  - 12. The method of securing and unsecuring data of claim 10 further comprising the step of adding bits to said random cryptographic key prior to performing said reversible operation that results in the creation of a template in order to make the bit length of the random cryptographic key equal to the bit length of the first biometric scan data set.
  - 13. The method of securing and unsecuring data of claim 10 wherein said reversible operation is an exclusive OR operation.
  - 14. The method of securing and unsecuring data of claim 10 wherein said random cryptographic key is passed through a hash function before it is used to secure said user data.
  - 15. The method of securing and unsecuring data of claim 12 further comprising the step of stripping said added bits from said derived key prior to using said derived key to retrieve said secured user data.

16. A method for securing user data using a random cryptographic key, said method comprising the steps of:
- receiving a first biometric scan data set relating to a person securing user data;
  
  generating a random cryptographic key;
  
  performing a reversible operation on said biometric scan data and random key to create a template;
  
  storing said template;
  
  securing the user data through use of said random cryptographic key.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The method for securing user data using a random cryptographic key of claim 16 further comprising the step of adding an error correction code to said random key prior to performing said reversible operation that results in the creation of said template.
  - 18. The method for securing user data using a random cryptographic key of claim 16 further comprising the step of adding bits to said random key prior to performing said reversible operation that results in the creation of said template in order to make the bit length of the random cryptographic key equal to the bit length of the first biometric scan data set.
  - 19. The method for securing user data using a random cryptographic key of claim 16 wherein said reversible operation is an exclusive OR operation.
  - 20. The method for securing user data using a random cryptographic key of claim 16 wherein said random key is passed through a hash function before it is used to secure said user data.

21. A method unsecuring data using a random cryptographic key, said method comprising the steps of:
- receiving a biometric scan data set from a person desiring to retrieve the secured user data;
  
  performing a reversible operation on a stored template and said biometric scan data set to derive a key;
  
  using said derived key to retrieve said secured data.
- View Dependent Claims (22, 23)
- - 22. The method of unsecuring data of claim 21 wherein said reversible operation is an exclusive OR operation.
  - 23. The method of unsecuring data of claim 21 further comprising the step of stripping bits from said derived key prior to using said derived key to retrieve said secured user data.

24. An apparatus for securing and unsecuring data through the use of a biometric cryptographic key comprising:
- a biometric scanner;
  
  a secure data system comprising a processor and a first data store, said processor being programmed to generate a random key and for performing reversible operations on biometric scan data sets and said random key to create a template, said processor also securing said data from access by unintended parties through the use of said random key; and
  
  a second data store for storing said template.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
nCipher Corporation Limited (Thales SA)
Original Assignee
nCipher Corporation Limited (Thales SA)
Inventors
van Someren, Nicholas Benedict

Application Number

US10/155,594
Publication Number

US 20030219121A1
Time in Patent Office

Days
Field of Search
US Class Current

380/44
CPC Class Codes

G07C 9/37   using biometric data, e.g. ...

H04L 2209/34   Encoding or coding, e.g. Hu...

H04L 9/0866   involving user or device id...

H04L 9/3231   Biological data, e.g. finge...

Biometric key generation for secure storage

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Biometric key generation for secure storage

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links