REAL IDENTITY AUTHENTICATION
First Claim
1. A real identity authentication device comprising:
- a non-transitory, computer-readable medium for storing data and instructions;
a biometric input device for collecting user biometric information ;
a processor for executing the instructions stored in the non-transitory computer-readable medium, the instructions, when executed, causing the processor to perform the steps of;
sending an authentication request to a remote server;
receiving an encrypted server biometric token from the remote server;
collecting real-time biometric attributes, based on biometric interaction of a user with the biometric input device;
comparing information in the server biometric token and the real time biometric attributes; and
authenticating a user based upon information in the server biometric token matching the information indicative of the real time biometric attributes.
2 Assignments
0 Petitions
Accused Products
Abstract
A real identity biometric authentication device includes a USB thumb drive form factor, with a biometric sensor and designated device processor and stored instructions in firmware which perform authentication in a secure manner, independent of processing and storage resources on a host platform. The device and authentication process require biometric data and are secured against effects of malware or other security risks presented by applications running on the host platform. During an enrollment process, a unique encrypted enrollment biometric token is created using biometric data and uploaded securely to an authentication server. During an authentication process, the encrypted enrollment biometric token is downloaded to the real identity authentication device firmware and is decrypted on the device. The biometric data obtained from the decrypted data and is compared with live, real-time biometric data obtained from the user, for example, by a real-time fingerprint scan. If the real-time biometric data and the enrolled, decrypted biometric data match, the user is authenticated.
95 Citations
15 Claims
-
1. A real identity authentication device comprising:
-
a non-transitory, computer-readable medium for storing data and instructions; a biometric input device for collecting user biometric information ; a processor for executing the instructions stored in the non-transitory computer-readable medium, the instructions, when executed, causing the processor to perform the steps of; sending an authentication request to a remote server; receiving an encrypted server biometric token from the remote server; collecting real-time biometric attributes, based on biometric interaction of a user with the biometric input device; comparing information in the server biometric token and the real time biometric attributes; and authenticating a user based upon information in the server biometric token matching the information indicative of the real time biometric attributes. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A process for authenticating a user comprising:
-
sending an authentication request to a remote server; receiving an encrypted server biometric token from the remote server; collecting real-time biometric attributes, based on biometric interaction of a user with the biometric input device; comparing information in the server biometric token and the real time biometric attributes; and authenticating a user based upon information in the server biometric token matching the information indicative of the real time biometric attributes. - View Dependent Claims (12, 13, 14, 15)
-
Specification