Access Control System using Stimulus Evoked Cognitive Response
First Claim
1. A system and method for authenticating an individual using stimulus evoked cognitive response and real time calculation of an authentication confidence level, to control access to information, systems, devices, vehicles, and/or data, comprising:
- a. Methodologies for acquiring, generating and presenting stimulus, collecting and processing electroencephalogram (EEG) data, extracting the P3 Event Related Potential (ERP) signal of interest, statistically analyzing the processed and cleaned P3 ERPs, and calculating a real time authentication confidence levelb. A method for presenting stimuli to a user in a manner that elicits a measurable cognitive response in the form of a P3 ERPc. A method for eliciting P3 ERPs from users by presenting stimuli with a small percentage of the stimuli associated with the users target stimulus.d. A method for differentiating between infrequent target stimuli known only to the user and random more prevalent non-target stimuli such that comparison of target and non-target responses can be used to authenticate the usere. A Stimulus management function that includes collects, metadata tags, categorizes and stores stimuli, provides a menu for user selection of stimuli, a stimulus filing system with user-specific target and non-target files for each user, and a stimulus presentation algorithm that presents target and non-target stimuli to the user while simultaneously sending stimulus identifiers and precise stimulus presentation timing to the EEG processing unitf. An apparatus to collect real time EEG analog data, convert it to digital data and transmit that data wirelessly to the EEG collection and processing unit, and optionally provide present audio stimulus to a userg. An EEG Collection and Processing function that receives all sensor data, including mastoid references and eye blink sensor data from the stimulus presentation function and converts the raw EEG data into cleaned P3 ERPs associated with each stimulus presented for subsequent statistical analysish. A Statistical Analysis Algorithm that constructs confidence intervals using a normal distribution, such as Student'"'"'s t distribution, for the averaged target and non-target data sets to find the highest confidence level within which the target and non-target confidence intervals do not overlap.i. An Access Control Unit that allows or denies access to the user in real time based on the ongoing calculation of confidence levels
0 Assignments
0 Petitions
Accused Products
Abstract
The ACSSECR invention is a biometric access control system and methodology that measures cognitive, psychophysiological responses to stimuli to confirm the identity of an individual. As an alternative to “Logging in” with a user ID and password, this cognitive biometric authentication system is used for “Cogging in” to a system with user ID and user-selected “Cogkey”. ACSSECR is designed for strict access control scenarios where significant authentication confidence is required to gain access to controlled information, facilities, systems, vehicles, or devices. The system takes advantage of a behavioral and physiological characteristic of humans that is an unconscious response to a stimulus. The Event Related Potential (ERP) response (specifically the P3 ERP) involuntarily occurs when an individual perceives and reacts to an unexpected, task-relevant event. The task is for the user to recognize their Cogkey which is presented infrequently amidst more frequent non-target stimuli. There is no requirement for extensive enrollment by users, only the recognition of their Cogkey. The basic system does not store biometric data for comparison, but rather measures the user'"'"'s Cogkey recognition responses in comparison to non-Cogkey stimulus responses. An individual can have multiple personas with different Cog keys.
-
Citations
19 Claims
-
1. A system and method for authenticating an individual using stimulus evoked cognitive response and real time calculation of an authentication confidence level, to control access to information, systems, devices, vehicles, and/or data, comprising:
-
a. Methodologies for acquiring, generating and presenting stimulus, collecting and processing electroencephalogram (EEG) data, extracting the P3 Event Related Potential (ERP) signal of interest, statistically analyzing the processed and cleaned P3 ERPs, and calculating a real time authentication confidence level b. A method for presenting stimuli to a user in a manner that elicits a measurable cognitive response in the form of a P3 ERP c. A method for eliciting P3 ERPs from users by presenting stimuli with a small percentage of the stimuli associated with the users target stimulus. d. A method for differentiating between infrequent target stimuli known only to the user and random more prevalent non-target stimuli such that comparison of target and non-target responses can be used to authenticate the user e. A Stimulus management function that includes collects, metadata tags, categorizes and stores stimuli, provides a menu for user selection of stimuli, a stimulus filing system with user-specific target and non-target files for each user, and a stimulus presentation algorithm that presents target and non-target stimuli to the user while simultaneously sending stimulus identifiers and precise stimulus presentation timing to the EEG processing unit f. An apparatus to collect real time EEG analog data, convert it to digital data and transmit that data wirelessly to the EEG collection and processing unit, and optionally provide present audio stimulus to a user g. An EEG Collection and Processing function that receives all sensor data, including mastoid references and eye blink sensor data from the stimulus presentation function and converts the raw EEG data into cleaned P3 ERPs associated with each stimulus presented for subsequent statistical analysis h. A Statistical Analysis Algorithm that constructs confidence intervals using a normal distribution, such as Student'"'"'s t distribution, for the averaged target and non-target data sets to find the highest confidence level within which the target and non-target confidence intervals do not overlap. i. An Access Control Unit that allows or denies access to the user in real time based on the ongoing calculation of confidence levels - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
Specification