METHOD AND SYSTEM FOR PROVIDING ONLINE AUTHENTICATION UTILIZING BIOMETRIC DATA
First Claim
Patent Images
1. A method for providing user authentication services to an online service provider, the method comprising:
- receiving biometric device identification information associated with a biometric device coupled to an online terminal;
receiving a biometric sample of a user taken by the biometric device;
retrieving at least one registered biometric sample associated with the biometric device identification information;
comparing the biometric sample with the at least one registered biometric sample;
upon a match with the at least one registered biometric sample, retrieving a user identifier associated with the matched registered biometric sample;
extracting a federated identity associated with the user identifier and the online service provider; and
transmitting the federated identity to the online service provider.
7 Assignments
0 Petitions
Accused Products
Abstract
A system and method for securely authenticating a user for the purpose of accessing information such as private financial or personal information, in an online environment are disclosed. In addition, a system and method for allowing consumers to make secure payments from an electronic wallet with biometric authentication are disclosed.
-
Citations
37 Claims
-
1. A method for providing user authentication services to an online service provider, the method comprising:
-
receiving biometric device identification information associated with a biometric device coupled to an online terminal;
receiving a biometric sample of a user taken by the biometric device;
retrieving at least one registered biometric sample associated with the biometric device identification information;
comparing the biometric sample with the at least one registered biometric sample;
upon a match with the at least one registered biometric sample, retrieving a user identifier associated with the matched registered biometric sample;
extracting a federated identity associated with the user identifier and the online service provider; and
transmitting the federated identity to the online service provider. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method for providing user authentication services to an online service provider, the method comprising:
-
obtaining biometric device identification information from a biometric device;
obtaining a biometric sample of a user from the biometric device;
obtaining network identifying information from a web server of the online service provider;
obtaining a session ID from a communication session between the user'"'"'s web browser and the web server of the online service provider;
establishing a direct connection with an authentication provider service; and
transmitting the biometric device identification information, biometric sample, network identifying information, and session ID to the authentication provider service, wherein upon an authentication by the authentication provider service, the user'"'"'s web browser gains online access to the user'"'"'s account at the online service provider. - View Dependent Claims (15, 16, 17)
-
-
18. A computer-readable carrier containing one or more programming instructions for performing a method for providing user authentication services to an online service provider, the method comprising:
-
obtaining biometric device identification information from a biometric device;
obtaining a biometric sample of a user from the biometric device;
obtaining network identifying information from a web server of the online service provider;
obtaining a session ID from a communication session between the user'"'"'web browser and the web server of the online service provider;
establishing a direct connection with an authentication provider service; and
transmitting the biometric device identification information, biometric sample, network identifying information, and session ID to the authentication provider service, wherein upon an authentication by the authentication provider service, the user'"'"'s web browser gains access to the user'"'"'s account at the online service provider. - View Dependent Claims (19, 20)
-
-
21. An online computer server for providing a service to online service providers for authenticating users, the server comprising:
-
an identity management software component configured to receive biometric samples from online terminals and to transmit federated identifies to the online service providers;
a biometric authentication server software component configured to receive biometric samples from the identity management software component and to compare the received biometric samples to registered biometric samples;
a biometric directory configured to store the registered biometric samples in association with user identifiers and biometric device identification information; and
a federated identity directory configured to store the federated identities in association with the user identifiers and the online service providers. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29)
-
-
30. A method for enabling a user at an online terminal to conduct an e-commerce transaction through an online merchant for which a user does not have a merchant account, the method comprising:
-
receiving from the online merchant payment transaction details relating to the e-commerce purchase;
retrieving a user identifier upon a biometric authentication of the user conducted through a direct connection with the online terminal;
extracting electronic wallet information relating to the user identifier;
generating a new federated identity associated with the user identifier and the online merchant;
transmitting at least a first portion of the electronic wallet information and the new federated identity to the online merchant for the online merchant to establish a merchant account for the user;
transmitting at least a second portion of the electronic wallet information and at least a portion of the payment transaction details to a payment processor; and
transmitting an approval message to the online merchant indicating whether the payment processor has authorized the e-commerce purchase. - View Dependent Claims (31, 32, 33, 34, 35, 36, 37)
-
Specification