Biometric private key infrastructure
First Claim
1. A method comprising:
- receiving a request for access to a service;
collecting a biometric sample from a user associated with the request;
comparing the biometric sample to a biometric template associated with the user; and
providing access to a private key in accordance with a result of the comparing step.
1 Assignment
0 Petitions
Accused Products
Abstract
In accordance with an aspect of providing trust and authentication for network communications and transactions, a network infrastructure is provided that employs biometric private keys (BioPKI). Generally, Bio PKI is a unique combination of two software solutions that validate electronic user authentication: a state-of-the-art biometric signature system, and a digital signature for data integrity. The combined solution allows networked businesses and merchants such as financial institutions to ensure that user authentication is conducted in a trusted, secure fashion within standard network environments. In one example implementation, a biometric signature augments standard digital signatures by adding an automated, non-reputable user authentication capability to the existing digital signature process. In contrast to simple verification in a pure biometric-based system or digital signature/certificate environment, BioPKI uses a combination of biometric technology to access private keys in order to create digital signatures based on biometric authentication and industry-standard PKI technologies. In one example, BioPKI utilizes public key cryptography technology to encrypt the biometric signature information for transmission to the BioPKI server. The encryption packet contains several layers of internal information to ensure that the biometric signature is secured and validated prior to accessing the individual'"'"'s private key.
-
Citations
28 Claims
-
1. A method comprising:
-
receiving a request for access to a service;
collecting a biometric sample from a user associated with the request;
comparing the biometric sample to a biometric template associated with the user; and
providing access to a private key in accordance with a result of the comparing step. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. An apparatus comprising:
-
means for receiving a request for access to a service;
means for collecting a biometric sample from a user associated with the request;
means for comparing the biometric sample to a biometric template associated with the user; and
means for providing access to a private key in accordance with a result of the comparing step. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. An authentication infrastructure comprising:
-
a server that intercepts requests for access to a service; and
a client that collects a biometric sample from a user associated with the request, wherein the server maintains a biometric template associated with the user for authenticating the collected biometric sample, and wherein the server provides access to a private key in accordance with a result of the authentication, so that the user need not maintain a token for accessing the service. - View Dependent Claims (28)
-
Specification