ANONYMOUS BIOMETRIC TOKENS

US 20090164796A1
Filed: 12/21/2007
Published: 06/25/2009
Est. Priority Date: 12/21/2007
Status: Abandoned Application

First Claim

Patent Images

1. A method of associating a machine readable token with a user of that token, the method comprising:

(a) receiving biometric data from the user and performing a concealment operation on that biometric data to generate concealed biometric data;

(b) generating a token request message for a token, the token request message including the concealed biometric data,(c) deriving a token including the concealed biometric data from the token request message.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A biometrically enabled machine readable token is biometrically associated with the user or owner of the token. Such a token may be generated by initially providing biometric data of the user, and concealing the biometric data such that the biometric data is selectively accessible. The concealed biometric data is then used in generation of a token request message either by embedding the concealed biometric data into the token request message or by providing a concealed link thereto within the token request message. Once a token request message is received by a token issuer the concealed biometric data may be associated with the token. As the biometric data is concealed the specifics of that data are not accessible to third parties. Optionally the authenticity of the token may be effected by having the token issuer digitally signing the token.

Citations

21 Claims

1. A method of associating a machine readable token with a user of that token, the method comprising:
- (a) receiving biometric data from the user and performing a concealment operation on that biometric data to generate concealed biometric data;
  
  (b) generating a token request message for a token, the token request message including the concealed biometric data,(c) deriving a token including the concealed biometric data from the token request message.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The method as claimed in claim 1, wherein the concealed biometric data is concealed by applying a reversible function to the user supplied biometric data.
  - 3. The method of claim 1 wherein the concealed biometric data is concealed by applying a non-reversible function to the user supplied biometric data.
  - 4. The method as claimed in claim 1, wherein the biometric data is concealed by encrypting the biometric data with an encryption key or by applying an exclusive-OR (XOR) function to the biometric data or by combining the biometric data with another number.
  - 5. The method as claimed in claim 1, wherein the concealment operation utilises random data.
  - 6. The method of claim 5 wherein the random data is the same length as the biometric data.
  - 7. The method as claimed in claim 1, wherein the concealment operation provides for computation of a one-way hash of the biometric data.
  - 8. The method as claimed in claim 1, wherein the concealment operation provides for generation of a concealed link in the form of computation of a one way hash of the original biometric data and additional data.
  - 9. The method as claimed in claim 1, wherein the receiving of biometric data is effected through use of a biometric capture device.
  - 10. A method as claimed in claim 1, wherein the generating a token includes application of a digital signature to the token.
  - 11. The method as claimed in claim 10, wherein the application of a digital signature operably utilises a public key signature algorithm comprises at least one algorithm selected from the group consisting of an RSA signature algorithm, DSA signature algorithm, Schnorr signature algorithm, Ferguson'"'"'s randomized blind signature algorithm, Chaum-Person double Schnorr signature algorithm, Chaum'"'"'s blind unanticipated signature algorithm, ElGamal signature algorithm, and signature algorithms utilizing elliptic curve cryptography.
  - 12. A method of authenticating a user presented machine readable token, the method including:
    - a) associating a machine readable token with a user of that token according to the method of claim 1,b) receiving the machine readable token from the user,c) extracting the original biometric data from the concealed biometric data, andd) comparing the extracted biometric data with user provided biometric data to confirm legitimacy of the user ownership of the token.
  - 13. The method as claimed in claim 12, wherein the extraction of the original biometric data is effected through reverse application of a concealment operation used to generate the concealed biometric data.
  - 14. A method of authenticating a user presented machine readable token, the method including:
    - a) associating a machine readable token with a user of that token according to the method of claim 3,b) receiving the machine readable token from the user,c) receiving a copy of the original biometric data used to generate the concealed biometric data from the user, andd) applying the same non-reversible function to the received copy to regenerate the concealed biometric data.
  - 15. A method as claimed in claim 14, wherein the method includes the further step of comparing the regenerated concealed biometric data with token associated concealed biometric data to confirm legitimacy of the user ownership of the token.
  - 16. A method as claimed in claim 14, wherein the method includes the further steps of capturing a biometric and comparing that captured biometric with the copy of the original biometric data used to generate the concealed biometric data.

17. A machine readable token generated by an issuing party comprising:
- concealed biometric data, anda digital signature indicative of the identity of the issuing party which issued the token.
- View Dependent Claims (18, 19, 20, 21)
- - 18. A machine readable token as claimed in claim 17, wherein the token includes additional data.
  - 19. A machine readable token as claimed in claim 18, wherein the additional data comprises biographic data associated with the user.
  - 20. A machine readable token as claimed in claim 18, wherein the additional data comprises application specific data.
  - 21. A machine readable token as claimed in claim 18, wherein at least some of the additional data is concealed such that it is selectively accessible.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Daon Holdings Limited
Original Assignee
Daon Holdings Limited
Inventors
Peirce, Michael

Application Number

US11/963,246
Publication Number

US 20090164796A1
Time in Patent Office

Days
Field of Search
US Class Current

713/186
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/34   involving the use of extern...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/40145   Biometric identity checks

G07F 7/1008   Active credit-cards provide...

H04L 2209/42   Anonymization, e.g. involvi...

H04L 9/3231   Biological data, e.g. finge...

H04L 9/3234   involving additional secure...

H04L 9/3247   involving digital signatures

ANONYMOUS BIOMETRIC TOKENS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

ANONYMOUS BIOMETRIC TOKENS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links