BIOMETRIC VERIFICATION WITH IMPROVED PRIVACY AND NETWORK PERFORMANCE IN CLIENT-SERVER NETWORKS
First Claim
1. A method of biometric authentication of a client-side authorized smart device user at least occasionally connected to a remote server via a communication network, comprising:
- comparison by the smart device of an input biometric template corresponding to a biometric representation operably received by the smart device with a reference biometric template previously stored on the smart device and corresponding to a biometric representation of the user; and
reporting by the smart device of user authentication success/failure to the server based on the comparison of the input biometric template and the previously stored reference biometric template.
0 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to improving the privacy of biometric information used in biometric authentication of identity by retaining all biometric information corresponding to a given user, and conducting all transactions related thereto (i.e., the actual authentication process) on a client (i.e., user) side of the system, thereby maximizing the user'"'"'s control over biometric information corresponding to himself and preventing the storage of biometric templates on third-party servers outside of the control of the concerned individual. In a particular example of the present invention, security for the biometric information is further enhanced by encrypting the biometric template (used as a comparison reference during authentication, as is known) stored on the client side and completely destroying an original unencrypted version of the template. Also specified is secure storage of encryption keys for encrypting biometric data at the client. In yet a further example of the present invention, authentication is preferably conducted using the encrypted biometric templates.
-
Citations
11 Claims
-
1. A method of biometric authentication of a client-side authorized smart device user at least occasionally connected to a remote server via a communication network, comprising:
-
comparison by the smart device of an input biometric template corresponding to a biometric representation operably received by the smart device with a reference biometric template previously stored on the smart device and corresponding to a biometric representation of the user; and reporting by the smart device of user authentication success/failure to the server based on the comparison of the input biometric template and the previously stored reference biometric template. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for authenticating the identity of a smart device client user, comprising:
-
a smart device constructed and arranged to selectively receive a biometric representation of an authorized user of the smart device, convert the biometric representation into a biometric reference template, and encrypt the biometric reference template, wherein the smart device comprises or is operably associated with a biometric representation reader for detecting and inputting the biometric representation of the authorized user; and at least one remote server in at least occasional electronic communication with the smart device client, and constructed and arranged to selectively send a request to a given smart device client user to authenticate himself, and to act in response to the authentication result transmitted back from the smart device client. - View Dependent Claims (11)
-
Specification