TECHNOLOGIES FOR SECURE STORAGE AND USE OF BIOMETRIC AUTHENTICATION INFORMATION
1 Assignment
0 Petitions
Accused Products
Abstract
Generally, this disclosure describes technologies for securely storing and using biometric authentication information, such as biometric reference templates. In some embodiments, the technologies include a client device that stores one or more biometric reference templates in a memory thereof. The client device may transfer such templates to an authentication device. The transfer may be conditioned on verification that the authentication device includes a suitable protected environment for the templates and will execute an acceptable temporary storage policy. The technologies may also include an authentication device that is configured to temporarily store biometric reference templates received from a client device in a protected environment thereof. Upon completion of biometric authentication or the occurrence of a termination event, the authentication devices may delete the biometric reference templates from the protected environment.
106 Citations
50 Claims
-
1-26. -26. (canceled)
-
27. A client device, comprising:
-
a processor; a memory configured to store a biometric reference template, the biometric reference template comprising biometric reference information of a human; and a client authentication module (CAM) configured to evaluate attestation information received from an authentication device and determine whether the authentication device comprises a protected environment meeting at least one first predetermined criterion for temporary storage of the biometric reference template, the CAM further configured to permit transmission of the biometric reference template to the authentication device if the protected environment meets the first predetermined criterion. - View Dependent Claims (28, 29, 30, 31, 32)
-
-
33. An authentication device, comprising:
-
a processor; a memory; a protected environment; and an authentication device attestation module (ADAM), wherein the ADAM is configured to; store a biometric reference template received from a client device in the protected environment; biometrically authenticate a human with the biometric reference template stored in the protected environment; establish an authenticated session if biometric authentication of the human is successful; and delete the biometric reference template upon the detection of a termination event. - View Dependent Claims (34, 35, 36, 37, 38, 39)
-
-
40. A method of transferring a biometric template with a client device, comprising:
-
evaluating attestation information received from an authentication device, the evaluating comprising determining whether the authentication device comprises a protected environment meeting at least one first predetermined criterion for the temporary storage of a biometric reference template resident on the client device; and permitting the transmission of the biometric reference templates from the client device to the authentication device if the protected environment meets the at least one first predetermined criterion. - View Dependent Claims (41, 42, 43, 44)
-
-
45. A method of performing biometric authentication with an authentication device, comprising:
-
storing a biometric reference template received from a client device in a protected environment of the authentication device; biometrically authenticating a human with the biometric reference template stored in the protected environment; establishing an authenticated session if biometric authentication of the human is successful; and deleting the biometric reference template upon the detection of a termination event. - View Dependent Claims (46, 47, 48, 49, 50)
-
Specification