VERIFICATION OF AUTHENTICITY AND RESPONSIVENESS OF BIOMETRIC EVIDENCE AND/OR OTHER EVIDENCE
First Claim
1. A sensor configured to acquire evidence that is to be provided for validation of the authenticity and responsiveness of the evidence without regard for whether there is direct control over the sensor, the sensor comprising:
- a sample acquisition apparatus configured to acquire one or more samples; and
one or more processors configured to execute computer program modules, the computer program modules comprising;
a communications module configured to receive a request for evidence, the evidence including one or more samples or a representation of one or more samples, the request for evidence including a challenge;
a sample acquisition module configured to obtain individual ones of the one or more samples acquired by the sample acquisition apparatus; and
a data packaging module configured to combine the evidence and a response to the challenge into a signed or encrypted unit of data, the sensor communications module being further configured to transmit the signed or encrypted unit of data;
wherein the evidence included in the signed or encrypted unit of data is validated based on a comparison between the response to the challenge included in the signed or encrypted unit of data and the challenge sent with the request for evidence.
2 Assignments
0 Petitions
Accused Products
Abstract
Authenticity and responsiveness of evidence (e.g., biometric evidence) may be validated without regard for whether there is direct control over a sensor that acquired the evidence. In some implementations, only a data block containing evidence that is (1) appended with a server-generated challenge (e.g., a nonce) and (2) signed or encrypted by the sensor may validate that the evidence is responsive to a current request and belongs to a current session. In some implementations, trust may be established and/or enhanced due to one or more security features (e.g., anti-spoofing, anti-tampering, and/or other security features) being collocated with the sensor at the actual sampling site.
-
Citations
28 Claims
-
1. A sensor configured to acquire evidence that is to be provided for validation of the authenticity and responsiveness of the evidence without regard for whether there is direct control over the sensor, the sensor comprising:
-
a sample acquisition apparatus configured to acquire one or more samples; and one or more processors configured to execute computer program modules, the computer program modules comprising; a communications module configured to receive a request for evidence, the evidence including one or more samples or a representation of one or more samples, the request for evidence including a challenge; a sample acquisition module configured to obtain individual ones of the one or more samples acquired by the sample acquisition apparatus; and a data packaging module configured to combine the evidence and a response to the challenge into a signed or encrypted unit of data, the sensor communications module being further configured to transmit the signed or encrypted unit of data; wherein the evidence included in the signed or encrypted unit of data is validated based on a comparison between the response to the challenge included in the signed or encrypted unit of data and the challenge sent with the request for evidence. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A system configured to validate the authenticity and responsiveness of evidence without regard for whether there is direct control over a sensor that acquired the evidence, the system comprising:
one or more processors configured to execute computer program modules, the computer program modules comprising; a communications module configured to transmit a request for evidence, the evidence including one or more samples or a representation of one or more sample, the request for evidence including a challenge; the communications module being further configured to receive a unit of data signed or encrypt, the signed or encrypted unit of data including evidence and a response to the challenge; and an authentication module configured to determine whether the evidence included in the signed or encrypted unit of data is valid based on a comparison between the response to the challenge included in the signed or encrypted unit of data and the challenge sent with the request for evidence. - View Dependent Claims (20, 21, 22, 23)
-
24. A method for validating the authenticity and responsiveness of evidence without regard for whether there is direct control over a sensor that acquired the evidence, the method comprising:
-
transmitting a request for evidence, the evidence including one or more samples or a representation of one or more samples, the request including a challenge; receiving a unit of data signed or encrypted, the signed or encrypted unit of data including evidence and a response to the challenge; and determining whether the evidence included in the signed or encrypted unit of data is valid based on a comparison between the response to the challenge included in the signed or encrypted unit of data and the challenge sent with the request for evidence. - View Dependent Claims (25, 26, 27, 28)
-
Specification