×

Method and System for Providing Password-free, Hardware-rooted, ASIC-based Authentication of a Human to a Mobile Device using Biometrics with a Protected, Local Template to Release Trusted Credentials to Relying Parties

  • US 20140365782A1
  • Filed: 03/06/2014
  • Published: 12/11/2014
  • Est. Priority Date: 06/14/2004
  • Status: Active Grant
First Claim
Patent Images

1. A mobile device incorporating;

  • a processor, memory, signed software, at least one sensor, capable of capturing biometric data and an ASIC, contained within or connected to said mobile device and dedicated to causing certain biometric authentication and encryption operations to take place;

    said mobile device incorporating signed software code, said signed software code incorporating;

    a means of capturing biometric signature/sign input from a human;

    a means of capturing biometric sensor input from a human;

    a means of acquiring PIN input from a human;

    a means of capturing password input from a human and a means of password authentication;

    said ASIC to incorporate a processor, a non-volatile storage area containing authentication parameters, at least one encrypted biometric template, credential information and an obfuscated password;

    said ASIC memory also containing a non-volatile software code storage unit containing software code;

    said code defining a method of generating a hardware ID from characteristics of hardware components;

    a method of obtaining a hashed PIN value by one of a) generating said hashed PIN value from said hardware ID and b) generating said hashed value from said PIN value entered on the mobile device;

    a method of obfuscating and de-obfuscating a password using said hashed value of said PIN and said hardware ID;

    a method of storing said obfuscated password in said memory of said ASIC;

    said ASIC software code capable of transforming biometric sample data to a consistent angle of inclination, biometrically enrolling and verifying the identity of mobile device users by matching the biometric samples captured from said biometric sensor with at least one biometric template stored in encrypted form in the said ASIC memory;

    a method of generating a template encryption key using at least said obfuscated password and said hashed PIN;

    a method of encrypting and decrypting said biometric template using said encryption key;

    a method of de-obfuscating said password and submitting it to one of the said mobile device authentication process, including a Trusted Platform Module and the server authentication process, in response to the successful decryption of the said biometric template and the successful matching of said biometric sample to said biometric template, thereby relieving the user of the need to enter a complex password for the purposes of mobile device access and encryption.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×