IN-CIRCUIT SECURITY SYSTEM AND METHODS FOR CONTROLLING ACCESS TO AND USE OF SENSITIVE DATA
First Claim
1. A method for controlling access to an electronic device having an in-circuit security system, comprising:
- a. requiring enrollment of a personal identity credential within an identity credential verification subsystem,b. associating the personal identity credential with at least one security privilege,c. requesting a personal identity credential sample be provided to the identity credential verification subsystem upon access request,d. comparing the personal identity credential sample to at least one enrolled personal identity credential within the identity credential verification subsystem,e. determining existence of a match between the personal identity credential sample and an enrolled personal identity credential, f. determining all security privileges associated with the personal identity credential sample,g. determining access authorization based on at least one of said determined existence of a match or said determined security privileges,h. granting or denying access based on said access authorization, andi. performing any actions required for said granting or denying of access as stipulated by security settings.
4 Assignments
0 Petitions
Accused Products
Abstract
The invention disclosed herein is an in-circuit security system for electronic devices. The in-circuit security system incorporates identity credential verification, secure data and instruction storage, and secure data transmission capabilities. It comprises a single semiconductor chip, and is secured using industry-established mechanisms for preventing information tampering or eavesdropping, such as the addition of oxygen reactive layers. This invention also incorporates means for establishing security settings, profiles, and responses for the in-circuit security system and enrolled individuals. The in-circuit security system can be used in a variety of electronic devices, including handheld computers, secure facility keys, vehicle operation/ignition systems, and digital rights management.
-
Citations
20 Claims
-
1. A method for controlling access to an electronic device having an in-circuit security system, comprising:
-
a. requiring enrollment of a personal identity credential within an identity credential verification subsystem, b. associating the personal identity credential with at least one security privilege, c. requesting a personal identity credential sample be provided to the identity credential verification subsystem upon access request, d. comparing the personal identity credential sample to at least one enrolled personal identity credential within the identity credential verification subsystem, e. determining existence of a match between the personal identity credential sample and an enrolled personal identity credential, f. determining all security privileges associated with the personal identity credential sample, g. determining access authorization based on at least one of said determined existence of a match or said determined security privileges, h. granting or denying access based on said access authorization, and i. performing any actions required for said granting or denying of access as stipulated by security settings. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method, comprising:
-
disabling a portion of a single integrated circuit of an electronic device, the portion of the single integrated circuit being associated with functionality of the single integrated circuit not used during operation of an identity credential verification subsystem of the single integrated circuit; identifying, at the identity credential verification subsystem, a user of the electronic device based on an identity credential; verifying the user of the electronic device based on a security privilege associated with the identity credential; and enabling the portion of the single integrated circuit when the user is identified based on the identity credential associated with the user and verified based on the security privilege associated with the identity credential. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13)
-
-
14. A method, comprising:
-
producing, at a single integrated circuit of an electronic device, a biometric template based on a biometric input of a user; authenticating, at the single integrated circuit of the electronic device, the biometric template of the user based on a pre-enrolled biometric template stored at the electronic device; and disconnecting a power source of the single integrated circuit from a real-time clock of the single integrated circuit when the processor denies access for a predetermined number of access attempts within a predetermined period of time. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification