REAL IDENTITY AUTHENTICATION

US 20140101453A1
Filed: 10/04/2012
Published: 04/10/2014
Est. Priority Date: 10/04/2012
Status: Active Grant

First Claim

Patent Images

1. A real identity authentication device comprising:

a non-transitory, computer-readable medium for storing data and instructions;

a biometric input device for collecting user biometric information ;

a processor for executing the instructions stored in the non-transitory computer-readable medium, the instructions, when executed, causing the processor to perform the steps of;

sending an authentication request to a remote server;

receiving an encrypted server biometric token from the remote server;

collecting real-time biometric attributes, based on biometric interaction of a user with the biometric input device;

comparing information in the server biometric token and the real time biometric attributes; and

authenticating a user based upon information in the server biometric token matching the information indicative of the real time biometric attributes.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A real identity biometric authentication device includes a USB thumb drive form factor, with a biometric sensor and designated device processor and stored instructions in firmware which perform authentication in a secure manner, independent of processing and storage resources on a host platform. The device and authentication process require biometric data and are secured against effects of malware or other security risks presented by applications running on the host platform. During an enrollment process, a unique encrypted enrollment biometric token is created using biometric data and uploaded securely to an authentication server. During an authentication process, the encrypted enrollment biometric token is downloaded to the real identity authentication device firmware and is decrypted on the device. The biometric data obtained from the decrypted data and is compared with live, real-time biometric data obtained from the user, for example, by a real-time fingerprint scan. If the real-time biometric data and the enrolled, decrypted biometric data match, the user is authenticated.

95 Citations

View as Search Results

15 Claims

1. A real identity authentication device comprising:
- a non-transitory, computer-readable medium for storing data and instructions;
  
  a biometric input device for collecting user biometric information ;
  
  a processor for executing the instructions stored in the non-transitory computer-readable medium, the instructions, when executed, causing the processor to perform the steps of;
  
  sending an authentication request to a remote server;
  
  receiving an encrypted server biometric token from the remote server;
  
  collecting real-time biometric attributes, based on biometric interaction of a user with the biometric input device;
  
  comparing information in the server biometric token and the real time biometric attributes; and
  
  authenticating a user based upon information in the server biometric token matching the information indicative of the real time biometric attributes.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The device of claim 1, wherein the step of authenticating includes creating an encrypted authentication token in response to matching information in the server biometric token to the real time biometric attributes;
    - and sending the encrypted authentication token to the remote server to authenticate the user.
  - 3. The device of claim 1, further comprising a host platform interface for coupling the device to a host platform, wherein the processor is configured to execute instructions in the non-transitory computer-readable medium independent of processing and storage resources on the host platform.
  - 4. The real identity authentication device of claim 1, wherein the non-transitory computer-readable medium comprises a secure, firmware storage medium for storing the instructions which, when executed, cause the steps of collecting a real time biometric attributes, comparing the server biometric token and the real time biometric attribute, and creating an encrypted authentication token.
  - 5. The authentication device of claim 1, wherein the real time biometric attributes are collected based on at least one user fingerprint.
  - 6. The authentication device of claim 1, further comprising the step of deleting the real time biometric attributes after matching the server biometric token and the real time biometric attributes.
  - 7. The authentication device of claim 1, wherein the encrypted authentication token includes information indicative of the time and information indicative of the real identity authentication device.
  - 8. The device of claim 1, further comprising a universal serial bus (USB) interface for interfacing the device to a host platform.
  - 9. The device of claim 1, wherein the instructions, when executed, cause the processor to perform the further steps of sending an authentication request to the remote server from a second user, and wherein the step of receiving an encrypted biometric token from the remote server includes receiving a biometric token associated with the second user.
  - 10. The device of claim 1, wherein the instructions, when executed, cause the processor to perform the further steps of creating an enrollment biometric token and uploading the enrollment biometric token to an authentication server.

11. A process for authenticating a user comprising:
- sending an authentication request to a remote server;
  
  receiving an encrypted server biometric token from the remote server;
  
  collecting real-time biometric attributes, based on biometric interaction of a user with the biometric input device;
  
  comparing information in the server biometric token and the real time biometric attributes; and
  
  authenticating a user based upon information in the server biometric token matching the information indicative of the real time biometric attributes.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The process of claim 11, further comprising the step of creating an encrypted authentication token in response to matching the server biometric token to the real time biometric attributes;
    - and sending the encrypted authentication token to the remote server to authenticate the user.
  - 13. The process of claim 11, further comprising the step of deleting the real time biometric attributes after matching the server biometric token and the real time biometric attributes.
  - 14. The process of claim 11, further comprising further steps of sending an authentication request to the remote server from a second user, and wherein the step of receiving an encrypted biometric token from the remote server includes receiving a biometric token associated with the second user.
  - 15. The process of claim 11, further comprising the steps of creating an enrollment biometric token and uploading the enrollment biometric token to an authentication server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Law Office of John F. Rollins
Original Assignee
MSI Security, Ltd.
Inventors
Senthurpandi, Janarthanan

Granted Patent

US 9,286,455 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/172
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 63/0853   using an additional device,...

H04L 63/0861   using biometrical features,...

H04L 9/3231   Biological data, e.g. finge...

REAL IDENTITY AUTHENTICATION

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

95 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

REAL IDENTITY AUTHENTICATION

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

95 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links