System and Method for Decoupling Identification from Biometric Information in Biometric Access Systems

US 20070038863A1
Filed: 07/10/2006
Published: 02/15/2007
Est. Priority Date: 10/20/2003
Status: Abandoned Application

First Claim

Patent Images

1. A method for storing biometric information received from an individual in a database, the method comprising:

receiving a personal identification number from the individual;

obtaining biometric information associated with the individual;

applying a calculation on the personal identification number, wherein the result of the calculation serves as an encryption key;

encrypting the biometric information using the encryption key; and

storing the encrypted biometric information in the database.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method are provided for providing increased security when storing biometric information and personal information in a biometric access system. A personal information number or personal search code that is known only to the individual and not stored by the biometric access system may be used to generate encryption keys, bin numbers and addresses in the biometric access system that make it difficult to access biometric information or relate biometric information to personal information that may be stored in a segregated database.

32 Citations

View as Search Results

28 Claims

1. A method for storing biometric information received from an individual in a database, the method comprising:
- receiving a personal identification number from the individual;
  
  obtaining biometric information associated with the individual;
  
  applying a calculation on the personal identification number, wherein the result of the calculation serves as an encryption key;
  
  encrypting the biometric information using the encryption key; and
  
  storing the encrypted biometric information in the database.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1 wherein the calculation comprises encrypting the personal identification number and applying a one-way hash on the result of the encryption of the personal identification number.
  - 3. The method of claim 1 further comprising:
    - applying a second calculation on the personal identification number, wherein the result of the second calculation servers as a bin number in the database in which to store the biometric information; and
      
      wherein storing the encrypted biometric information in the database comprises storing the encrypted biometric information in a bin associated with the bin number.
  - 4. The method of claim 3 wherein the second calculation comprises applying a deterministic function on the personal identification number and applying a one-way hash on the result of the deterministic function.
  - 5. The method of claim 1 wherein the personal identification number comprises a secret personal search code.

6. A method for storing personal information received from an individual in a database, the method comprising:
- receiving a personal identification number from the individual;
  
  receiving personal information from the individual;
  
  applying a calculation on the personal identification number, wherein the result of the calculation serves as a link to a unique address in the database for storing personal information; and
  
  storing the received personal information at the unique address.
- View Dependent Claims (7, 8, 9, 10, 11)
- - 7. The method of claim 6 wherein the calculation comprises applying a deterministic function on the personal identification number and applying a one-way hash on the result of the deterministic function.
  - 8. The method of claim 6 wherein the personal identification number is unique.
  - 9. The method of claim 6 wherein the result of the calculation is unique.
  - 10. The method of claim 6 wherein a unique stored value relating to the individual is used as an input to the calculation.
  - 11. The method of claim 10 further comprising:
    - receiving biometric information associated with the individual;
      
      storing the biometric information and the unique stored value in a record, wherein successful authentication of sample biometric information during an access request provides access to the unique stored value.

12. A method for accessing an individual'"'"'s stored personal information in a biometric access system, the method comprising:
- receiving a personal identification number from an individual;
  
  obtaining sample biometric information associated with the individual;
  
  applying a calculation on the personal identification number, wherein a result of the calculation serves as a decryption key;
  
  decrypting encrypted registered biometric information stored in a database of the biometric access system with the result of the calculation;
  
  upon successful decryption of such encrypted registered biometric information, comparing the sample biometric information with the decrypted registered biometric information to determine a match; and
  
  upon successful determination of a match, accessing stored personal information relating to the individual in the biometric access system.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. The method of claim 12 wherein the calculation comprises encrypting the personal identification number and applying a one-way hash on the result of the encryption of the personal identification number.
  - 14. The method of claim 12 further comprising:
    - applying a second calculation on the personal identification number, wherein the result of the second calculation serves as a bin number in the database in which to access registered biometric information; and
      
      wherein decrypting encrypted registered biometric information stored in the database comprises decrypting at least one encrypted registered biometric information stored in the bin number represented by the result of the second calculation.
  - 15. The method of claim 14 further comprising:
    - applying a third calculation on the personal identification number, wherein the result of the third calculations serves as a link to a unique address wherein a record of the individual'"'"'s personal information is stored; and
      
      wherein accessing stored personal information relating to the individual in the biometric access system comprises accessing the record stored at the unique address represented by the result of the third calculation.
  - 16. The method of claim 15 wherein the third calculation comprises applying a deterministic function on the personal identification number and applying a one-way hash on the result of the deterministic function.
  - 17. The method of claim 15 wherein a unique stored value relating to the individual is used as an input to the third calculation.
  - 18. The method of claim 15 wherein the result of the third calculation is unique.
  - 19. The method of claim 14 wherein the second calculation comprises applying a deterministic function on the personal identification number and applying a one-way hash on the result of the deterministic function.
  - 20. The method of claim 12 wherein the personal identification number is unique.

21. A system form securely storing biometric information and personal information relating to and individual, the system comprising:
- a biometric database, wherein registered biometric information of the individual is stored, wherein the stored registered biometric information is encrypted using the result of a calculation on a personal identification number known only to the individual; and
  
  a personal information database segregated from the biometric database, wherein the personal information database contains one or more records, wherein personal information relating to the individual is stored in a record.
- View Dependent Claims (24, 25, 26)
- - 24. The system of claim 21 wherein the address of the record in the personal information database is obtained by applying a second calculation to the personal identification number.
  - 25. The method of claim 24 wherein the second calculation comprises a deterministic function and a one-way hash function applied to the personal identification number.
  - 26. The method of claim 24 wherein a unique stored value relating to the individual is used as an input to the third calculation.

22. The system of 21 wherein the individual'"'"'s registered biometric information is stored in a bin in the biometric database, wherein the bin number associated with the bin is derived from a second calculation of the personal identification number.
- View Dependent Claims (23)
- - 23. The method of claim 22 wherein the second calculation comprises a deterministic function and a one-way hash function applied to the personal identification number.

27. The system of 21 wherein the calculation comprises an encryption algorithm and a one-way hash function applied to the personal identification number.
- View Dependent Claims (28)
- - 28. The method of claim 27 wherein the result of the calculation is unique.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Solidus Networks Incorporated
Original Assignee
Solidus Networks Incorporated
Inventors
Nguyen, Nhan, Thomas, Arun, Hollowood, Larry

Application Number

US11/456,409
Publication Number

US 20070038863A1
Time in Patent Office

Days
Field of Search
US Class Current

713/176
CPC Class Codes

G06F 21/6254 by anonymising data, e.g. d...

System and Method for Decoupling Identification from Biometric Information in Biometric Access Systems

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

32 Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

System and Method for Decoupling Identification from Biometric Information in Biometric Access Systems

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

32 Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links