METHOD AND SYSTEM FOR MANAGING SECURE ACCESS TO DATA IN A NETWORK

US 20070136604A1
Filed: 12/06/2005
Published: 06/14/2007
Est. Priority Date: 12/06/2005
Status: Abandoned Application

First Claim

Patent Images

1. A method for managing secure access to data by a user in a network, the method comprising:

receiving a key from a user device;

receiving a biometric sample of the user;

decrypting a stored encrypted biometric profile using the key to yield an unencrypted biometric profile;

authenticating the user for secure access to the data using the unencrypted biometric profile and the biometric sample; and

discarding the key, the biometric sample, and the unencrypted biometric profile after authenticating the user.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and system for managing secure access to data by a user in a network are disclosed. The method includes receiving (402, 404) a key and a biometric sample of the user transmitted by a user device (104) at a server (102). The method also includes decrypting (406) an encrypted biometric profile (212) corresponding to the user by using the key, to yield an unencrypted biometric profile. The method further includes authenticating (408) the user by using the biometric sample of the user and the unencrypted biometric profile corresponding to the user. The method further includes discarding (410) the key, the biometric sample of the user, and the unencrypted biometric profile corresponding to the user after authentication.

Citations

22 Claims

1. A method for managing secure access to data by a user in a network, the method comprising:
- receiving a key from a user device;
  
  receiving a biometric sample of the user;
  
  decrypting a stored encrypted biometric profile using the key to yield an unencrypted biometric profile;
  
  authenticating the user for secure access to the data using the unencrypted biometric profile and the biometric sample; and
  
  discarding the key, the biometric sample, and the unencrypted biometric profile after authenticating the user.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method according to claim 1 further comprising receiving a user identification code, wherein the user identification code is a unique identifier associated with the user, and the user identification code is used to select an encrypted biometric profile corresponding to the user from a database of at least one encrypted biometric profile.
  - 3. The method according to claim 1 further comprising granting the user device an access to the data after a successful authentication of the user.
  - 4. The method according to claim 3, wherein the method is performed within a first server and at least a portion of the data is in a second server, further comprising granting the user secure access to the portion of the data in the second server, after a successful authentication of the user.
  - 5. The method according to claim 1, wherein receiving the biometric sample comprises receiving the biometric sample from the user through a biometric sensor.
  - 6. The method according to claim 5, wherein the biometric sensor is coupled to one of the user device and a server that performs the step of receiving the biometric sample.

7. A method for managing a secure access to data by a user device of a user in a network, the method comprising:
- transmitting a key to a server; and
  
  transmitting a biometric sample of the user to the server.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The method according to claim 7 further comprising transmitting a user identification code to the server, wherein the user identification code is a unique identifier associated with the user.
  - 9. The method according to claim 7 further comprising authenticating the server.
  - 10. The method according to claim 7 further comprising receiving the biometric sample from the user through a biometric sensor.
  - 11. The method according to claim 10, wherein the biometric sensor is coupled to one of the user device and the server that performs the step of receiving the biometric sample.
  - 12. The method according to claim 7 further comprising gaining an access to the data after a successful authentication of the user by the server.

13. A server for managing secure access to data in a network, the server comprising:
- a means for communicating with a user;
  
  a memory, wherein the memory stores a key received from the user, and a biometric sample received from the user;
  
  a database of at least one encrypted biometric profile;
  
  a processor capable of accessing the memory and the database of at least one encrypted biometric profile, wherein the processor decrypts the encrypted biometric profile corresponding to the user from the database of at least one encrypted biometric profile using the key received from the user to yield an unencrypted biometric profile; and
  
  an authentication unit capable of authenticating the user, wherein the authentication unit authenticates the user using the biometric sample received from the user and the unencrypted biometric profile.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The server according to claim 13, wherein the memory further stores a user identification code received from the user, the user identification code used by the processor to select the encrypted biometric profile corresponding to the user from the database of at least one encrypted biometric profile.
  - 15. The server according to claim 13, wherein the unencrypted biometric profile, the key, and the biometric sample are discarded after the user has been authenticated.
  - 16. The server according to claim 13, wherein the user device is granted an access to the data after a successful authentication of the user.
  - 17. The server according to claim 13, wherein the user device is granted secure access to a portion of the data in a second server after a successful authentication of the user.

18. A user device comprising:
- a transceiver configured to transmit a key and a biometric sample of a user to a server for authentication of the user; and
  
  a means to access data after a successful authentication of the user by the server.
- View Dependent Claims (19, 20, 21, 22)
- - 19. The user device according to claim 18, wherein the transceiver is configured to transmit a user identification code, further wherein the user identification code is a unique identifier associated with the user.
  - 20. The user device according to claim 18 further comprising a biometric sensor operatively coupled to the transceiver, wherein the biometric sensor receives the biometric sample of the user.
  - 21. The user device according to claim 18 further comprising an authentication unit, wherein the authentication unit validates the authenticity of the server.
  - 22. The user device according to claim 18 further comprising a storage unit, wherein the storage unit stores the key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Motorola Mobility, Inc. (Lenovo Group Ltd.)
Original Assignee
Motorola, Inc. (Motorola Solutions, Inc.)
Inventors
Kuhlman, Douglas, Li, Yi

Application Number

US11/275,052
Publication Number

US 20070136604A1
Time in Patent Office

Days
Field of Search
US Class Current

713/186
CPC Class Codes

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/0861   using biometrical features,...

H04L 9/3231   Biological data, e.g. finge...

METHOD AND SYSTEM FOR MANAGING SECURE ACCESS TO DATA IN A NETWORK

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD AND SYSTEM FOR MANAGING SECURE ACCESS TO DATA IN A NETWORK

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links