METHOD FOR AUTHORIZED-USER VERIFICATION AND RELATED APPARATUS

US 20080126811A1
Filed: 04/17/2007
Published: 05/29/2008
Est. Priority Date: 11/24/2006
Status: Abandoned Application

First Claim

Patent Images

1. A method for authorized-user verification, which allows a host-end system to determine whether a holder of a user-end apparatus is an authorized user, the method comprising:

the host-end system sending a secret code to the user-end apparatus;

the user-end apparatus scanning at least one biometric characteristic of the holder;

the user-end apparatus generating encrypted data according to the secret code and the biometric characteristic;

the user-end apparatus sending the encrypted data to the host-end system;

the host-end system decrypting the encrypted data to generate a decrypted secret code and a decrypted biometric characteristic;

the host-end system checking whether the decrypted secret code matches the secret code; and

the host-end system further checking whether the decrypted biometric characteristic matches a pre-stored biometric characteristic of the authorized user to determine whether the holder is the authorized user if the decrypted secret code matches the secret code.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention discloses a method for authorized-user verification, which allows a host-end system to determine whether a holder of a user-end apparatus is an authorized user. The method includes: the host-end system sending a secret code to the user-end apparatus; the user-end apparatus scanning at least one biometric characteristic of the holder, generating encrypted data according to the secret code and the biometric characteristic, and sending the encrypted data to the host-end system; the host-end system decrypting the encrypted data to generate a decrypted secret code and a decrypted biometric characteristic, checking whether the decrypted secret code matches the secret code, and further checking whether the decrypted biometric characteristic matches a pre-stored biometric characteristic of the authorized user when the decrypted secret code matches the secret code.

13 Citations

View as Search Results

25 Claims

1. A method for authorized-user verification, which allows a host-end system to determine whether a holder of a user-end apparatus is an authorized user, the method comprising:
- the host-end system sending a secret code to the user-end apparatus;
  
  the user-end apparatus scanning at least one biometric characteristic of the holder;
  
  the user-end apparatus generating encrypted data according to the secret code and the biometric characteristic;
  
  the user-end apparatus sending the encrypted data to the host-end system;
  
  the host-end system decrypting the encrypted data to generate a decrypted secret code and a decrypted biometric characteristic;
  
  the host-end system checking whether the decrypted secret code matches the secret code; and
  
  the host-end system further checking whether the decrypted biometric characteristic matches a pre-stored biometric characteristic of the authorized user to determine whether the holder is the authorized user if the decrypted secret code matches the secret code.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein the host-end system and the user-end apparatus receive and send the secret code and the encrypted data according to a near field communication (NFC) protocol.
  - 3. The method of claim 1, wherein the host-end system and the user-end apparatus receive and send the secret code and the encrypted data according to a radio frequency identity (RFID) protocol.
  - 4. The method of claim 1, wherein the user-end apparatus is a portable electronic apparatus.
  - 5. The method of claim 1 being applied in a NFC transaction.
  - 6. The method of claim 1, wherein the secret code is a value generated according to a specific operation.
  - 7. The method of claim 1, wherein the secret code is a random value changing with time.

8. A method for authorized-user verification, which allows a host-end system to determine whether a holder of a user-end apparatus is an authorized user, the method comprising:
- the host-end system sending a secret code to the user-end apparatus;
  
  the user-end apparatus scanning a biometric characteristic of the holder;
  
  the user-end apparatus checking whether the biometric characteristic matches a pre-stored biometric characteristic, the pre-stored biometric characteristic being stored in the user-end apparatus;
  
  the user-end apparatus generating encrypted data according to the secret code and a key value stored in the user-end apparatus if the biometric characteristic matches the pre-stored biometric characteristic;
  
  the user-end apparatus sending the encrypted data to the host-end system;
  
  the host-end system decrypting the encrypted data to generate a decrypted secret code and a decrypted key value;
  
  the host-end system checking whether the decrypted secret code matches the secret code; and
  
  the host-end system further checking whether the decrypted key value matches a pre-stored key value of the authorized user to determine whether the holder is the authorized user if the decrypted secret code matches the secret code.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The method of claim 8, wherein the host-end system and the user-end apparatus receive and send the secret code and the encrypted data according to an NFC protocol.
  - 10. The method of claim 8, wherein the host-end system and the user-end apparatus receive and send the secret code and the encrypted data according to an RFID protocol.
  - 11. The method of claim 8, wherein the user-end apparatus includes a security apparatus, and the pre-stored biometric characteristic and the key value are stored in the security apparatus.
  - 12. The method of claim 8, wherein the user-end apparatus is a portable electronic apparatus.
  - 13. The method of claim 8, wherein the secret code is a value generated according to a specific operation.
  - 14. The method of claim 8, wherein the secret code is a random value changing with time.

15. An authorized-user verification apparatus, which allows a host-end system to determine whether a holder of a user-end apparatus is an authorized user, the authorized-user verification apparatus comprising:
- a transceiver, for receiving a secret code from the host-end system and sending encrypted data to the host-end system;
  
  a biometric characteristic sensor, for scanning at least one biometric characteristic of the holder; and
  
  an encryption module, coupled to the transceiver and the biometric characteristic sensor, for generating the encrypted data according to the secret code and the biometric characteristic;
  
  wherein the host-end system determines whether the holder is the authorized user according to the encrypted data.
- View Dependent Claims (16, 17, 18)
- - 16. The authorized-user verification apparatus of claim 15, wherein the transceiver is an NFC transceiver.
  - 17. The authorized-user verification apparatus of claim 15, wherein the transceiver receives and sends the secret code and the encrypted data according to an RFID protocol.
  - 18. The authorized-user verification apparatus of claim 15 being a portable electronic apparatus.

19. An authorized-user verification apparatus, which allows a host-end system to determine whether a holder of a user-end apparatus is an authorized user, the authorized-user verification apparatus comprising:
- a transceiver, for receiving a secret code from the host-end system and send encrypted data to the host-end system;
  
  a biometric characteristic sensor, for scanning a biometric characteristic of the holder;
  
  a security apparatus, for storing a pre-stored biometric characteristic and a key value of the authorized user;
  
  an identification module, coupled to the biometric characteristic sensor and the security apparatus, for determining whether the biometric characteristic matches the pre-stored biometric characteristic; and
  
  an encryption module, coupled to the identification module, the security apparatus, and the transceiver, for generating the encrypted data according to the secret code and the key value when the biometric characteristic matches the pre-stored biometric characteristic;
  
  wherein the host-end system determines whether the holder is the authorized user according to the encrypted data.
- View Dependent Claims (20, 21, 22)
- - 20. The authorized-user verification apparatus of claim 19, wherein the transceiver is a NFC transceiver.
  - 21. The authorized-user verification apparatus of claim 19, wherein the transceiver receives and sends the secret code and the encrypted data according to an RFID protocol.
  - 22. The authorized-user verification apparatus of claim 19 being a portable electronic apparatus.

23. A method for authorized-user verification, which allows a host-end system to determine whether a holder of a user-end apparatus is an authorized user, the method implemented in the user-end apparatus, the method comprising:
- receiving a secret code;
  
  scanning at least one biometric characteristic of the holder;
  
  generating encrypted data according to the secret code and the biometric characteristic; and
  
  sending out the encrypted data.
- View Dependent Claims (24, 25)
- - 24. The method of claim 23, wherein the secret code is sent from the host-end system.
  - 25. The method of claim 23, wherein the encrypted data is sent to the host-end system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
MStar Semiconductor Incorporated (MediaTek, Inc.)
Original Assignee
MStar Semiconductor Incorporated (MediaTek, Inc.)
Inventors
Chang, Wei, Yang, Steve Wiyi, Cheng, Nai-Sheng

Application Number

US11/736,569
Publication Number

US 20080126811A1
Time in Patent Office

Days
Field of Search
US Class Current

713/186
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 9/3231   Biological data, e.g. finge...

H04L 9/3271   using challenge-response

METHOD FOR AUTHORIZED-USER VERIFICATION AND RELATED APPARATUS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

13 Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD FOR AUTHORIZED-USER VERIFICATION AND RELATED APPARATUS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

13 Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links