Identification and remote network access using biometric recognition

US 20070180263A1
Filed: 12/14/2006
Published: 08/02/2007
Est. Priority Date: 12/16/2005
Status: Abandoned Application

First Claim

Patent Images

1. A method of adding biometric security to a communication for a transaction initiated from a remote computer and processed by a central server, comprising the steps of:

sending a request for traditional security information for an entity from the central computer to the remote computer;

receiving traditional security information for the entity at the central computer from the remote computer;

receiving at the central computer a request for a transaction for the specific entity from the remote computer;

sending from the central computer to the remote computer a request to enter a biometric for the specific entity;

receiving the biometric for the specific entity from the remote computer;

comparing the biometric for the specific entity received from the remote computer with biometric enrollment information stored in a memory, wherein the biometric enrollment information had been previously obtained; and

, executing the transaction in response to the biometric for the specific entity received from the remote computer matching the biometric enrollment information stored in the memory.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Apparatuses and methods for setting-up, implementing and using a remote network access using a biometric recognition system is described. The system utilizes a user machine (10), host web server (20), secure server (100), authentication server (70) and controlling programs (72,25) to trigger or prompt and filter information.

77 Citations

20 Claims

1. A method of adding biometric security to a communication for a transaction initiated from a remote computer and processed by a central server, comprising the steps of:
- sending a request for traditional security information for an entity from the central computer to the remote computer;
  
  receiving traditional security information for the entity at the central computer from the remote computer;
  
  receiving at the central computer a request for a transaction for the specific entity from the remote computer;
  
  sending from the central computer to the remote computer a request to enter a biometric for the specific entity;
  
  receiving the biometric for the specific entity from the remote computer;
  
  comparing the biometric for the specific entity received from the remote computer with biometric enrollment information stored in a memory, wherein the biometric enrollment information had been previously obtained; and
  
  , executing the transaction in response to the biometric for the specific entity received from the remote computer matching the biometric enrollment information stored in the memory.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1 wherein the comparing step includes the steps of:
    - sending the biometric of the specific entity to an authentication server by the central computer, wherein the authentication server compares the biometric for the specific entity with the biometric enrollment information; and
      
      , receiving the results of the comparison from the authentication server.
  - 3. The method of claim 2 further comprising the authentication server communicating with the memory for comparing the specific entity biometric with the biometric enrollment information stored in the memory.
  - 4. The method of claim 1 wherein the executing the transaction step includes:
    - sending the transaction to a secure server by the central computer.
  - 5. The method of claim 2 further comprising:
    - providing a plug-in component between the central computer and the authentication server for facilitating communication between the central computer and the authentication server.
  - 6. The method of claim 1 further comprising the step of:
    - encrypting the biometric of the specific entity by the remote computer.
  - 7. The method of claim 6 wherein the comparing step includes:
    - comparing the encrypted biometric of the specific entity with the biometric enrollment information wherein the biometric enrollment information is maintained in an encrypted format, without decoding the encrypted biometric of the specific entity.
  - 8. The method of claim 1 further comprising:
    - appending a representation of at least a portion of the biometric enrollment information to the transaction for tracking the entity requesting the transaction.
  - 9. The method of claim 1 further comprising the steps of:
    - appending a representation of combined security information to the transaction for tracking the entity requesting the transaction, wherein at least a part of the combination comprising at least a portion of the biometric enrollment information.

10. A method of enrolling an individual into a biometric security system for using biometric security in a communication for a transaction initiated from a remote computer and processed by a central server, comprising the steps of:
- receiving at the central server a request to enroll a specific entity in the biometric security system from the remote computer;
  
  sending from the central server to the remote computer a request to enter a biometric for the specific entity, and a request to enter a plurality of security answers to a plurality of security questions;
  
  receiving at the central server a plurality of answers to the plurality of questions and the biometric for the specific entity, from the remote computer;
  
  receiving at the central server trustworthy information associated with the specific entity from a remote trusted source;
  
  comparing the plurality of security answers to the trustworthy information; and
  
  , enrolling the specific entity requesting enrollment into the biometric security system if the comparison of the plurality of security answers to the trustworthy information determines that the specific entity requesting enrollment is the same entity as the specific entity associated with the trustworthy information.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
- - 11. The method claim 10, wherein the step of enrolling comprises storing a representation of the biometric in the central server, and associating the biometric with stored security information for the specific entity.
  - 12. The method claim 10, wherein the stored security information comprises biographical information, a username and a password for the specific entity.
  - 13. The method claim 10, wherein the trustworthy information comprises at least one or more of credit information, credit history information, family history information, biological information, and other personal information for the entity.
  - 14. The method claim 10, wherein the step of comparing the plurality of security answers to the trustworthy information comprises applying a risk analysis algorithm to the results of the comparison, for providing a risk analysis outcome indicative of the probability that the specific entity is actual an entity from which the trustworthy information is associated with.
  - 15. The method of claim 11 wherein the step of storing a representation of the biometric in the central server comprises encrypting the biometric with an encryption key.
  - 16. The method of claim 15 further comprising storing the encryption key with an escrow agent.
  - 17. The method of claim 16 further comprising the step of releasing the encryption key from the escrow agent only in response to a fraud investigation involving a transaction related to the specific entity, to decrypt the encrypted biometric which had been appended to the transaction to determine if the specific entity or some other entity actually requested the transaction.

18. A method of securely allowing a remote user to initiate a transaction on a secure server comprising the steps of:
- receiving a request for a transaction from a remote system by a server hosting a web site;
  
  receiving a biometric tag of a user of the remote system by the hosting server;
  
  transmitting the biometric tag to an authentication server by the hosting server;
  
  comparing the biometric tag of the user with biometric information in a database of enrolled users; and
  
  , allowing the transaction to be completed by the secure server if the comparison indicates the user is an enrolled user.
- View Dependent Claims (19, 20)
- - 19. The method of claim 18 further comprising the step of:
    - sending a message to the remote system indicating a denial of the transaction if the comparison indicates the user is not an enrolled user.
  - 20. The method of claim 18 further comprising the step of:
    - maintaining a proxy web site for receiving the transaction request and the biometric tag, the proxy web site communicating with the hosting server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
US Biometrics Corporation
Original Assignee
US Biometrics Corporation
Inventors
Delgrosso, David, Orr, Fraser

Application Number

US11/639,386
Publication Number

US 20070180263A1
Time in Patent Office

Days
Field of Search
US Class Current

713/186
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/4014   Identity check for transact...

G06Q 20/40145   Biometric identity checks

G07C 9/37   using biometric data, e.g. ...

G07F 19/20   Automatic teller machines [...

G07F 19/207   Surveillance aspects at ATMs

G07F 7/1008   Active credit-cards provide...

H04L 2463/102   applying security measure f...

H04L 63/0861   using biometrical features,...

Identification and remote network access using biometric recognition

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

77 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Identification and remote network access using biometric recognition

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

77 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others