Web-based, biometric authentication system and method

US 20040177097A1
Filed: 03/19/2004
Published: 09/09/2004
Est. Priority Date: 12/01/2000
Status: Abandoned Application

First Claim

Patent Images

1. A method for enabling biometric authentication of an individual seeking access to a Web server from a Web client, the method comprising:

selecting records of biometric data of one or more individuals on the Web server;

selecting parameters associated with biometric data to use in authenticating the biometric data;

collecting live biometric data in accordance with the selected parameters, the live biometric data having any number of biometric characteristics of the individual;

comparing biometric characteristics of the selected records with the biometric characteristics of the live biometric data as a function of the selected parameters; and

determining whether the live data sufficiently matches the selected records as to enable biometric authentication of the individual as a function of the comparison.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A Web-based authentication system and method, the system comprising at least one Web client station, at least one Web server station and an authentication center. The Web client station is linked to a Web cloud, and provides selected biometric data of an individual who is using the Web client station. The Web server station is also linked to the Web cloud. The authentication center is linked to at least one of the Web client and Web server stations so as to receive the biometric data. The authentication center, having records of one or more enrolled individuals, provides for comparison of the provided data with selected records. The method comprises the steps of (i) establishing parameters associated with selected biometric characteristics to be used in authentication; (ii) acquiring, at the Web client station, biometric data in accordance with the parameters; (iii) receiving, at an authentication center, a message that includes biometric data; (iv) selecting, at the authentication center, one or more records from among records associated with one or more enrolled individuals; and (v) comparing the received data with selected records. The comparisons of the system and method are to determine whether the so-compared live data sufficiently matches the selected records so as to authenticate the individual seeking access of the Web server station, which access is typically to information, services and other resources provided by one or more application servers associated with the Web server station.

Citations

28 Claims

1. A method for enabling biometric authentication of an individual seeking access to a Web server from a Web client, the method comprising:
- selecting records of biometric data of one or more individuals on the Web server;
  
  selecting parameters associated with biometric data to use in authenticating the biometric data;
  
  collecting live biometric data in accordance with the selected parameters, the live biometric data having any number of biometric characteristics of the individual;
  
  comparing biometric characteristics of the selected records with the biometric characteristics of the live biometric data as a function of the selected parameters; and
  
  determining whether the live data sufficiently matches the selected records as to enable biometric authentication of the individual as a function of the comparison.
- View Dependent Claims (2, 3, 4, 5, 28)
- - 2. The method of claim 1, further comprising:
    - storing the records of biometric data in a secure database.
  - 3. The method of claim 2, wherein the step of storing is performed using a secure transport protocol.
  - 4. The method of claim 1, further comprising:
    - providing one or more biometric databases of records of biometric data of one or more individuals; and
      
      , linking an authorization server to one or more biometric servers and linking each biometric server to at least one biometric database.
  - 5. The method of claim 4, wherein the step of providing one or more biometric databases includes providing at least one captive biometric database.
  - 28. The method of claim 1, wherein comparing biometric characteristics of the selected records with the biometric characteristics of the live biometric data as a function of the parameters includes using the parameters to identify biometric characteristics and wherein comparing biometric characteristics of the selected records with the biometric characteristics of the live biometric data includes comparing the identified biometric characteristics of the selected records and of the live biometric data.

6. An authentication system for authenticating an individual seeking access to a Web server from a Web client, the system comprising:
- a biometric device linked to the Web client to provide live data respecting biometric characteristics of the individual, the live data having parameters;
  
  an authentication center in communication with the Web server for storing a plurality of records of biometric data of a plurality of individuals, such biometric data having characteristics associated with parameters, the authentication center being adapted to compare the characteristics of the live data with characteristics of the biometric data for a plurality of individuals as a function of the parameters, the comparison being to determine whether the live data sufficiently matches the selected records of one of the plurality of individuals so as to identify the individual seeking access to a Web server.
- View Dependent Claims (7, 8, 9, 10, 11, 12, 13)
- - 7. The system of claim 6, wherein the web client and the Web server are linked to a Web cloud via Web connections and the Web connections that support a secure transport protocol.
  - 8. The system of claim 6, wherein the authentication center is linked to at least one of the Web client and the Web server via authentication center connections, the authentication center connections supporting a secure transport protocol.
  - 9. The system of claim 6, wherein the authentication center comprises an authorization server linked to one or more biometric servers, each of the biometric servers being linked to one or more biometric databases.
  - 10. The system of claim 9, wherein at least one of the biometric databases is captive.
  - 11. The system of claim 9, wherein at least one of the biometric databases is independent.
  - 12. The system of claim 8, wherein at least one of the biometric servers is independent.
  - 13. The system of claim 6, wherein the Web client provides for the individual to have a claimed identity and the authentication center supports (i) receiving said claimed identity, (ii) providing the selected records based on said claimed identity and (iii) comparing the live data with the so-provided selected records.

14. An authentication system comprising:
- a web client configured and arranged to receive live biometric data inputs from a user and to communicate the live biometric data on a network communications link;
  
  a biometric record parameter database having stored biometric data and stored parameter information for use in analyzing live biometric data, the parameter information including information describing evaluation characteristics to use in evaluating live biometric data;
  
  a web server coupled to the network communications link and configured and arranged to;
  
  receive the live biometric data from the web client; and
  
  using the parameters stored in the biometric record parameter database, identifying and using a characteristic of the live biometric data with the stored biometric data to determine a condition of validity of the live biometric data; and
  
  authenticating the user as a function of the determined condition of compatibility.
- View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
- - 15. The system of claim 14, wherein the web client is further configured and arranged to receive inputs for selecting parameters, and to communicate the selected parameters to the web server, the web server being configured and arranged to use the selected parameters in identifying and using a characteristic of the live biometric data.
  - 16. The system of claim 14, wherein the biometric record parameter database includes parameters that specify a characteristic of biometric data to use for comparison, and wherein identifying and using a characteristic of the live biometric data with the stored biometric data to determine a condition of validity of the live biometric data includes comparing the specified characteristic of the live biometric data with the same specified characteristic of the stored biometric data to determine the condition of validity.
  - 17. The system of claim 16, wherein the parameter information includes a confidence range of a difference between the specified characteristic of the live biometric data and the stored biometric data and wherein comparing the specified characteristic of the live biometric data with the same specified characteristic of the stored biometric data to determine the condition of validity includes determining whether any difference between the specified characteristics of the live and stored biometric data fall within the confidence range.
  - 18. The system of claim 14, wherein the parameter information includes information for identifying a specific biometric characteristic to use in determining the condition of validity.
  - 19. The system of claim 14, wherein the parameter information includes information for determining a quantity of biometric characteristics to use in determining the condition of validity.
  - 20. The system of claim 14, wherein the parameter information includes a confidence range for use in determining whether live biometric data falls within a range that is acceptable for determining the condition of validity.
  - 21. The system of claim 14, wherein the parameter information includes comparison algorithms for use in comparing live biometric data with stored biometric data for determining the condition of validity.
  - 22. The system of claim 14, wherein the parameter information includes information for routing information regarding the authentication to the user at the web client.
  - 23. The system of claim 14, wherein the parameter information includes information for processing the live biometric data in response to the condition of validity indicating that the live biometric data is invalid.
  - 24. The system of claim 14, further comprising an authentication center communicatively coupled with the web server and configured and arranged to perform the web server functions of, using the parameters stored in the biometric record parameter database, identifying and using a characteristic of the live biometric data with the stored biometric data to determine a condition of validity of the live biometric data, the authentication center further configured to send the condition of validity to the web server.
  - 25. The system of claim 14, wherein the web client is further configured and arranged to receive parameter inputs from the user and to communicate the parameter inputs to the web server, the web server being configured and arranged to use the parameter inputs to determine a condition of validity of the live biometric data.

26. A biometric identification system comprising:
- a web client configured and arranged to receive live biometric data inputs from a user and to communicate the live biometric data on a network communications link;
  
  a biometric record database configured and arranged to store biometric data for a multitude of users; and
  
  a web server configured and arranged for communicating with the web client to receive the live biometric data and to identify the user as a function of a comparison between the live biometric data and stored biometric data for a multitude of users stored in the biometric database.
- View Dependent Claims (27)
- - 27. The system of claim 26, wherein the web server is configured and arranged to identify the user as a function of a comparison between the live biometric data and the stored biometric data without previous knowledge of particular stored biometric data to use in the comparison.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Philips Electronics North America Corporation (Koninklijke Philips N.V.)
Original Assignee
Philips Electronics North America Corporation (Koninklijke Philips N.V.)
Inventors
Wong, Stephen, Yu, Yuan-Pin, Hoffberg, Mark B.

Application Number

US10/804,361
Publication Number

US 20040177097A1
Time in Patent Office

Days
Field of Search
US Class Current

707/104.1
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06Q 10/10   Office automation; Time man...

G06Q 30/00   Commerce

G06Q 90/00   Systems or methods speciall...

Web-based, biometric authentication system and method

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

Web-based, biometric authentication system and method

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links