BIOMETRICS BASED ELECTRONIC DEVICE AUTHENTICATION AND AUTHORIZATION

US 20140230018A1
Filed: 02/12/2013
Published: 08/14/2014
Est. Priority Date: 02/12/2013
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, at a first network device, an indication of a configuration request for an electronic device;

subsequent to receiving the indication of the configuration request from the electronic device, receiving, at the first network device, an indication of an access request for the electronic device, wherein the indication of the access request comprises biometric data;

validating the biometric data against previously captured biometric data accessible by the first network device;

if the biometric data is valid based on said validating the biometric data against the previously captured biometric data,accessing a user profile associated with the biometric data, wherein the user profile is one of a plurality of user profiles; and

authorizing access to the electronic device in accordance with the user profile; and

if the biometric data is not valid based on said validating the biometric data against the previously captured biometric data, generating and transmitting a notification that an unauthorized access has been attempted.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A device including a home biometric security unit configured to receive an indication of a configuration request for an electronic device. The device is configured to receive an indication of an access request, the indication of an access request comprising biometric data, for the electronic device subsequent to receiving the indication of the configuration request. The device is configured to validate the biometric data against previously captured biometric data accessible by the device. If the biometric data is valid based on said validation of the biometric data, the device is configured to access a user profile associated with the biometric data and authorize access to the electronic device in accordance with the user profile. If the biometric data is not valid based on said validation of the biometric data, the device is configured to generate and transmit a notification that an unauthorized access has been attempted.

Citations

53 Claims

1. A method comprising:
- receiving, at a first network device, an indication of a configuration request for an electronic device;
  
  subsequent to receiving the indication of the configuration request from the electronic device, receiving, at the first network device, an indication of an access request for the electronic device, wherein the indication of the access request comprises biometric data;
  
  validating the biometric data against previously captured biometric data accessible by the first network device;
  
  if the biometric data is valid based on said validating the biometric data against the previously captured biometric data,accessing a user profile associated with the biometric data, wherein the user profile is one of a plurality of user profiles; and
  
  authorizing access to the electronic device in accordance with the user profile; and
  
  if the biometric data is not valid based on said validating the biometric data against the previously captured biometric data, generating and transmitting a notification that an unauthorized access has been attempted.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
- - 2. The method of claim 1, wherein said authorizing access to the electronic device in accordance with the user profile comprises:
    - generating a message that indicates access authorization in accordance with the user profile; and
      
      transmitting the message to the electronic device.
  - 3. The method of claim 2, wherein said generating the message that indicates access authorization in accordance with the user profile comprises:
    - determining one or more access permissions defined in the user profile;
      
      determining whether the access request indicates a type of access permitted based on the one or more access permissions;
      
      generating the message with an indication of approval if the access request indicates a type of access permitted based on the one or more access permissions; and
      
      generating the message with an indication of denial if the access request indicates a type of access that is not permitted based on the one or more access permissions.
  - 4. The method of claim 2, wherein the message includes an access permission defined in the user profile.
  - 5. The method of claim 2, wherein the message includes a subset of the user profile.
  - 6. The method of claim 2, wherein said generating the message that indicates access authorization in accordance with the user profile comprises:
    - accessing operation data for the electronic device based on an identifier of the electronic device indicated in the access request; and
      
      determining an operation from the operation data for a type of access indicated as authorized in the user profile, wherein the access request indicates the type of access.
  - 7. The method of claim 1, wherein said generating and transmitting a notification that an access has been attempted with invalid biometric data comprises:
    - determining that a user profile is indicated to receive notifications that an access has been attempted with invalid biometric data;
      
      loading the user profile that is indicated to receive notifications that an access has been attempted with invalid biometric data; and
      
      transmitting the notification that an access has been attempted with invalid biometric data in accordance with the user profile indicated to receive such notifications.
  - 8. The method of claim 1 further comprising:
    - receiving, at the first network device, a second indication of an access request from the electronic device, wherein the indication of the access request comprises a user identifier.
  - 9. The method of claim 1 further comprising:
    - receiving, at the first network device, an indication of a user profile update request from the electronic device, wherein the indication of the access request comprises a user identifier.
  - 10. The method of claim 1 further comprising:
    - generating and transmitting a notification indicating that a user profile has been modified, wherein the notification comprises at least one of an user identifier associated with the user profile and the user profile.
  - 11. The method of claim 1, wherein the electronic device comprises one of a microwave, a refrigerator, a washer, a dryer, a dishwasher, a toaster, a television, a game console, a video player, a cable box, a satellite receiver, an IPTV receiver, an audio receiver and an audio player.
  - 12. The method of claim 1, wherein the indication of the access request further comprises at least one of an electronic device identifier and an operation identifier.
  - 13. The method of claim 1, wherein the access request is received from a second electronic device.
  - 14. The method of claim 13, wherein the second electronic device comprises one of a cellphone and a control panel.
  - 15. The method of claim 1, wherein the indication of the configuration request is associated with a zero configuration networking protocol.
  - 16. The method of claim 1, wherein the indication of the configuration request comprises biometric data, wherein the biometric data indicates a user profile to be given access to the electronic device.
  - 17. The method of claim 16 further comprising:
    - determining whether the biometric data associated with the configuration request indicates a user profile with a user permission indicating that a user associated with the biometric data is permitted to configure an electronic device;
      
      if the user associated with the biometric data is permitted to configure an electronic device, configuring the electronic device to operate with the first network device; and
      
      if the user associated with the biometric data is not permitted to configure an electronic device, denying the configuration request.
  - 18. The method of claim 1 further comprising:
    - receiving, at the first network device, an indication of an permission transfer request from an electronic device, wherein the indication of the permission transfer request comprises transferor biometric data and transferee biometric data; and
      
      replicating user permissions associated with a user profile indicated by the transferor biometric data to a user profile indicated by the transferee biometric data.
  - 19. The method of claim 1 further comprising:
    - if the biometric data is not valid based on said validating the biometric data against the previously captured biometric data, creating a user profile associated with the invalid biometric data.

20. A method comprising:
- receiving, at a first network device, an indication of an access request for an electronic device;
  
  receiving, at the first network device, an indication of biometric data;
  
  transmitting, to a second network device, the indication of the access request from the electronic device;
  
  receiving, at the first network device, a response to the indication of the access request from the second network device, wherein the response indicates whether a user associated with the biometric data is permitted access to the electronic device; and
  
  transmitting, to the electronic device, an indication that the user is permitted access to the electronic device.
- View Dependent Claims (21, 22, 23, 30)
- - 21. The method of claim 20, wherein said transmitting, to the electronic device, an indication that the user is permitted access to the electronic device comprises:
    - forwarding, to the electronic device, the response to the indication of the access request.
  - 22. The method of claim 20, wherein said transmitting, to the electronic device, an indication that the user is permitted access to the electronic device comprises:
    - transmitting, to a plurality of electronic devices, an indication that the user is permitted access to each of the plurality of electronic device.
  - 23. The method of claim 20, wherein the indication of the access request comprises the indication of biometric data.
  - 30. The machine-readable storage media of claim 23, wherein the operations further comprise:
    - receiving, at the first network device, an indication of a user profile update request from the electronic device, wherein the indication of the access request comprises a user identifier.

24. One or more machine-readable media having stored therein a program product, which when executed by a set of one or more processor units causes the set of one or more processor units to perform operations that comprise:
- receiving, at a first network device, an indication of a configuration request for an electronic device;
  
  subsequent to receiving the indication of the configuration request from the electronic device, receiving, at the first network device, an indication of an access request for the electronic device, wherein the indication of the access request comprises biometric data;
  
  validating the biometric data against previously captured biometric data accessible by the first network device;
  
  if the biometric data is valid based on said validating the biometric data against the previously captured biometric data,accessing a user profile associated with the biometric data, wherein the user profile is one of a plurality of user profiles; and
  
  authorizing access to the electronic device in accordance with the user profile; and
  
  if the biometric data is not valid based on said validating the biometric data against the previously captured biometric data, generating and transmitting a notification that an unauthorized access has been attempted.
- View Dependent Claims (25, 26, 27, 28, 29, 31, 32, 33, 34, 35, 36)
- - 25. The machine-readable storage media of claim 24, wherein said operation of authorizing access to the electronic device in accordance with the user profile comprises:
    - generating a message that indicates access authorization in accordance with the user profile; and
      
      transmitting the message to the electronic device.
  - 26. The machine-readable storage media of claim 25, wherein said operation of generating the message that indicates access authorization in accordance with the user profile comprises:
    - determining one or more access permissions defined in the user profile;
      
      determining whether the access request indicates a type of access permitted based on the one or more access permissions;
      
      generating the message with an indication of approval if the access request indicates a type of access permitted based on the one or more access permissions; and
      
      generating the message with an indication of denial if the access request indicates a type of access that is not permitted based on the one or more access permissions.
  - 27. The machine-readable storage media of claim 25, wherein said operation of generating the message that indicates access authorization in accordance with the user profile comprises:
    - accessing operation data for the electronic device based on an identifier of the electronic device indicated in the access request; and
      
      determining an operation from the operation data for a type of access indicated as authorized in the user profile, wherein the access request indicates the type of access.
  - 28. The machine-readable storage media of claim 24, wherein said operation of generating and transmitting a notification that an access has been attempted with invalid biometric data comprises:
    - determining that a user profile is indicated to receive notifications that an access has been attempted with invalid biometric data;
      
      loading the user profile that is indicated to receive notifications that an access has been attempted with invalid biometric data; and
      
      transmitting the notification that an access has been attempted with invalid biometric data in accordance with the user profile indicated to receive such notifications.
  - 29. The machine-readable storage media of claim 24, wherein the operations further comprise:
    - receiving, at the first network device, a second indication of an access request from the electronic device, wherein the indication of the access request comprises a user identifier.
  - 31. The machine-readable storage media of claim 24, wherein the operations further comprise:
    - generating and transmitting a notification indicating that a user profile has been modified, wherein the notification comprises at least one of an user identifier associated with the user profile and the user profile.
  - 32. The machine-readable storage media of claim 24, wherein the indication of the configuration request is associated with a zero configuration networking protocol.
  - 33. The machine-readable storage media of claim 24, wherein the indication of the configuration request comprises biometric data, wherein the biometric data indicates a user profile to be given access to the electronic device.
  - 34. The machine-readable storage media of claim 24, wherein the operations further comprise:
    - determining whether the biometric data associated with the configuration request indicates a user profile with a user permission indicating that a user associated with the biometric data is permitted to configure an electronic device;
      
      if the user associated with the biometric data is permitted to configure an electronic device, configuring the electronic device to operate with the first network device; and
      
      if the user associated with the biometric data is not permitted to configure an electronic device, denying the configuration request.
  - 35. The machine-readable storage media of claim 24, wherein the operations further comprise:
    - receiving, at the first network device, an indication of an permission transfer request from an electronic device, wherein the indication of the permission transfer request comprises transferor biometric data and transferee biometric data; and
      
      replicating user permissions associated with a user profile indicated by the transferor biometric data to a user profile indicated by the transferee biometric data.
  - 36. The machine-readable storage media of claim 24, wherein the operations further comprise:
    - if the biometric data is not valid based on said validating the biometric data against the previously captured biometric data, creating a user profile associated with the invalid biometric data.

37. A device comprising:
- a network interface; and
  
  a home biometric security unit coupled with the network interface, the home biometric security unit configured to;
  
  receive an indication of a configuration request for an electronic device;
  
  subsequent to receiving the indication of the configuration request from the electronic device, receive an indication of an access request for the electronic device, wherein the indication of the access request comprises biometric data;
  
  validate the biometric data against previously captured biometric data accessible by the device;
  
  if the biometric data is valid based on said validation of the biometric data against the previously captured biometric data,access a user profile associated with the biometric data, wherein the user profile is one of a plurality of user profiles; and
  
  authorize access to the electronic device in accordance with the user profile; and
  
  if the biometric data is not valid based on said validation of the biometric data against the previously captured biometric data, generate and transmit a notification that an unauthorized access has been attempted.
- View Dependent Claims (38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49)
- - 38. The device of claim 37, wherein the home biometric security unit configured to authorize access to the electronic device in accordance with the user profile is configured to:
    - generate a message that indicates access authorization in accordance with the user profile; and
      
      transmit the message to the electronic device.
  - 39. The device of claim 38, wherein the home biometric security unit configured to generate the message that indicates access authorization in accordance with the user profile is configured to:
    - determine one or more access permissions defined in the user profile;
      
      determine whether the access request indicates a type of access permitted based on the one or more access permissions;
      
      generate the message with an indication of approval if the access request indicates a type of access permitted based on the one or more access permissions; and
      
      generate the message with an indication of denial if the access request indicates a type of access that is not permitted based on the one or more access permissions.
  - 40. The device of claim 38, wherein the home biometric security unit configured to generate the message that indicates access authorization in accordance with the user profile is configured to:
    - access operation data for the electronic device based on an identifier of the electronic device indicated in the access request; and
      
      determine an operation from the operation data for a type of access indicated as authorized in the user profile, wherein the access request indicates the type of access.
  - 41. The device of claim 37, wherein the home biometric security unit configured to generate and transmit a notification that an access has been attempted with invalid biometric data is configured to:
    - determine that a user profile is indicated to receive notifications that an access has been attempted with invalid biometric data;
      
      load the user profile that is indicated to receive notifications that an access has been attempted with invalid biometric data; and
      
      transmit the notification that an access has been attempted with invalid biometric data in accordance with the user profile indicated to receive such notifications.
  - 42. The device of claim 37, wherein the home biometric security unit is further configured to:
    - receive a second indication of an access request from the electronic device, wherein the indication of the access request comprises a user identifier.
  - 43. The device of claim 37, wherein the home biometric security unit is further configured to:
    - receive an indication of a user profile update request from the electronic device, wherein the indication of the access request comprises a user identifier.
  - 44. The device of claim 37, wherein the home biometric security unit is further configured to:
    - generate and transmit a notification indicating that a user profile has been modified, wherein the notification comprises at least one of an user identifier associated with the user profile and the user profile.
  - 45. The device of claim 37, wherein the indication of the configuration request is associated with a zero configuration networking protocol.
  - 46. The device of claim 37, wherein the indication of the configuration request comprises biometric data, wherein the biometric data indicates a user profile to be given access to the electronic device.
  - 47. The device of claim 37, wherein the home biometric security unit is further configured to:
    - determine whether the biometric data associated with the configuration request indicates a user profile with a user permission indicating that a user associated with the biometric data is permitted to configure an electronic device;
      
      if the user associated with the biometric data is permitted to configure an electronic device, configure the electronic device to operate with the device; and
      
      if the user associated with the biometric data is not permitted to configure an electronic device, deny the configuration request.
  - 48. The device of claim 37, wherein the home biometric security unit is further configured to:
    - receive an indication of an permission transfer request from an electronic device, wherein the indication of the permission transfer request comprises transferor biometric data and transferee biometric data; and
      
      replicate user permissions associated with a user profile indicated by the transferor biometric data to a user profile indicated by the transferee biometric data.
  - 49. The device of claim 37, wherein the home biometric security unit is further configured to:
    - if the biometric data is not valid based on said validating the biometric data against the previously captured biometric data, create a user profile associated with the invalid biometric data.

50. A device comprising:
- a network interface; and
  
  a processor coupled with the network interface, the processor configured to;
  
  receive an indication of an access request for an electronic device;
  
  receive an indication of biometric data;
  
  transmit the indication of an access request and the indication of the biometric data;
  
  receive a response to the indication of the access request, wherein the response indicates whether a user associated with the biometric data is permitted access to the electronic device; and
  
  transmit, to the electronic device, an indication that the user is permitted access to the electronic device.
- View Dependent Claims (51, 52, 53)
- - 51. The device of claim 50, wherein said processor configured to transmit, to the electronic device, an indication that the user is permitted access to the electronic device is configured to:
    - forward, to the electronic device, the response to the indication of the access request.
  - 52. The device of claim 50, wherein said processor configured to transmit, to the electronic device, an indication that the user is permitted access to the electronic device is configured to:
    - transmit, to a plurality of electronic devices, an indication that the user is permitted access to each of the plurality of electronic device.
  - 53. The device of claim 50, wherein the indication of the access request comprises the indication of biometric data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Qualcomm, Inc.
Original Assignee
Qualcomm, Inc.
Inventors
ANANTHARAMAN, Subramanian

Granted Patent

US 9,160,743 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/4
CPC Class Codes

H04L 12/2816   Controlling appliance servi...

H04L 63/0861   using biometrical features,...

H04L 63/102   Entity profiles

BIOMETRICS BASED ELECTRONIC DEVICE AUTHENTICATION AND AUTHORIZATION

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

53 Claims

Specification

Solutions

Use Cases

Quick Links

BIOMETRICS BASED ELECTRONIC DEVICE AUTHENTICATION AND AUTHORIZATION

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

53 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links