USER AUTHENTICATION VIA EVOKED POTENTIAL IN ELECTROENCEPHALOGRAPHIC SIGNALS

US 20160021106A1
Filed: 09/28/2015
Published: 01/21/2016
Est. Priority Date: 08/29/2007
Status: Active Grant

First Claim

Patent Images

1. A method for authenticating a user, comprising the steps of:

receiving a claim from an individual claiming to be an enrolled user;

retrieving a stored electroencephalographic response profile associated with the enrolled user, the electroencephalographic response profile being generated as a result of supervised enrollment process based a shared secret, wherein the shared secret comprises a sequence of visual elements which follows an explicit rule known by the enrolled user during the supervised enrollment process, wherein the explicit rule specifies at least one of a relationship between the visual elements and an allowed sequence of the visual elements;

presenting perceptory stimuli to the individual, the perceptory stimuli comprising the shared secret;

obtaining at least one electroencephalographic response from the individual in response to the perceptory stimuli comprising said shared secret presented to the individual; and

authenticating the individual'"'"'s claim as being the enrolled user based on the obtained electroencephalographic response, wherein authenticating comprises;

detecting a pattern of P300 event-related potentials in the obtained electroencephalographic response;

comparing the detected pattern of P300 event-related potentials with an expected pattern of P300 event-related potentials as provided by the stored electroencephalographic response profile associated with the enrolled user, wherein an unexpectedly produced P300 event-related potential in the detected pattern is indicative of an imposter;

determining an authentication score based on results of said comparing; and

comparing the determined authentication score to a predetermined authentication threshold value to positively authenticate the individual as being the claimed enrolled user when the authentication score exceeds the predetermined authentication threshold or to reject the individual as an imposter when the authentication score does not exceed the predetermined authentication threshold.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques are disclosed for authentication and identification of a user by use of an electroencephalographic (EEG) signal. For example, a method for authenticating a user includes the following steps. At least one electroencephalographic response is obtained from a user in accordance with perceptory stimuli presented to the user. The user is authenticated based on the obtained electroencephalographic response. The authenticating step may be based on detection of an event-related potential in the obtained electroencephalographic response. The event-related potential may be a P300 event-related potential. The method may also include the step of enrolling the user prior to authenticating the user. The enrolling step may include a supervised enrollment procedure or an unsupervised enrollment procedure.

11 Citations

View as Search Results

20 Claims

1. A method for authenticating a user, comprising the steps of:
- receiving a claim from an individual claiming to be an enrolled user;
  
  retrieving a stored electroencephalographic response profile associated with the enrolled user, the electroencephalographic response profile being generated as a result of supervised enrollment process based a shared secret, wherein the shared secret comprises a sequence of visual elements which follows an explicit rule known by the enrolled user during the supervised enrollment process, wherein the explicit rule specifies at least one of a relationship between the visual elements and an allowed sequence of the visual elements;
  
  presenting perceptory stimuli to the individual, the perceptory stimuli comprising the shared secret;
  
  obtaining at least one electroencephalographic response from the individual in response to the perceptory stimuli comprising said shared secret presented to the individual; and
  
  authenticating the individual'"'"'s claim as being the enrolled user based on the obtained electroencephalographic response, wherein authenticating comprises;
  
  detecting a pattern of P300 event-related potentials in the obtained electroencephalographic response;
  
  comparing the detected pattern of P300 event-related potentials with an expected pattern of P300 event-related potentials as provided by the stored electroencephalographic response profile associated with the enrolled user, wherein an unexpectedly produced P300 event-related potential in the detected pattern is indicative of an imposter;
  
  determining an authentication score based on results of said comparing; and
  
  comparing the determined authentication score to a predetermined authentication threshold value to positively authenticate the individual as being the claimed enrolled user when the authentication score exceeds the predetermined authentication threshold or to reject the individual as an imposter when the authentication score does not exceed the predetermined authentication threshold.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, further comprising performing the supervised enrollment process, wherein the supervised enrollment process comprises:
    - presenting a set of perceptory stimuli to a user to be enrolled, wherein the set of perceptory stimuli comprises one or more sequences of visual elements that follow the explicit rule and one or more sequences of visual elements that violate the explicit rule, and wherein the user is informed of the explicit rule before being presented with the set of perceptory stimuli;
      
      recording a set of electroencephalographic responses of the user in response to the set of perceptory stimuli presented to the user, wherein the set of electroencephalographic responses comprises at least one P300 event-related potential which corresponds to the occurrence of a violation of the explicit rule; and
      
      analyzing the set of recorded electroencephalographic responses to generate a set of results which are stored as part of the electroencephalographic response profile of the enrolled user.
  - 3. The method of claim 2, further comprising the step of confirming the consistency of the set of results by repeating the supervised enrollment process.
  - 4. The method of claim 1, wherein the authentication score comprises a negative cumulative distance measure obtained using a dynamic time-warping process.
  - 5. The method of claim 1, wherein authenticating comprises time-aligning the detected pattern of P300 event-related potentials with the perceptory stimuli presented to the individual.
  - 6. The method of claim 1, wherein a P300 event-related potential comprises a prominent peak detectable in an electroencephalographic signal after about 300 milliseconds (ms) following a perceptory stimulus.
  - 7. An article of manufacture comprising a non-transitory computer readable storage medium comprising program instructions which, when executed by a computer, implement the method of claim 1.

8. A method for authenticating a user, comprising the steps of:
- receiving a claim from an individual claiming to be an enrolled user;
  
  retrieving a stored electroencephalographic response profile associated with the enrolled user, the electroencephalographic response profile being generated as a result of an unsupervised enrollment process based on an implicit rule, said implicit rule being learned from electroencephalographic signals obtained in response to the user being presented with one or more training sequences of visual elements, wherein the implicit rule specifies at least one of a relationship between the visual elements and an allowed sequence of the visual elements;
  
  presenting perceptory stimuli to the individual, the perceptory stimuli comprising a sequence of visual elements that follow the implicit rule;
  
  obtaining at least one electroencephalographic response from the individual in response to the perceptory stimuli presented to the individual; and
  
  authenticating the individual'"'"'s claim as being the enrolled user based on the obtained electroencephalographic response, wherein authenticating comprises;
  
  detecting a pattern of P300 event-related potentials in the obtained electroencephalographic response;
  
  comparing the detected pattern of P300 event-related potentials with an expected pattern of P300 event-related potentials as provided by the stored electroencephalographic response profile associated with the enrolled user, wherein an unexpectedly produced P300 event-related potential in the detected pattern is indicative of an imposter;
  
  determining an authentication score based on results of said comparing; and
  
  comparing the determined authentication score to a predetermined authentication threshold value to positively authenticate the individual as being the claimed enrolled user when the authentication score exceeds the predetermined authentication threshold or to reject the individual as an imposter when the authentication score does not exceed the predetermined authentication threshold.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
- - 9. The method of claim 8, further comprising performing the unsupervised enrollment process, wherein the unsupervised enrollment process comprises:
    - presenting a set of training perceptory stimuli to a user to be enrolled, wherein the set of training perceptory stimuli comprises one or more training sequences of visual elements;
      
      recording a set of electroencephalographic responses generated in response to the user being presented with the one or more training sequences of visual elements;
      
      analyzing the set of recorded electroencephalographic responses to learn at least one rule;
      
      presenting, to the user, at least one perceptory stimuli that is based on the at least one learned rule;
      
      recording a second set of electroencephalographic responses generated in response to the user being presented with the at least one perceptory stimuli based on the at least one learned rule; and
      
      using the recorded second set of electroencephalographic responses to perform a consistency check for the at least one learned rule.
  - 10. The method of claim 9, wherein during the unsupervised enrollment process, the user is not informed of the one or more rules that are learned from the training set of perceptory stimuli.
  - 11. The method of claim 9, wherein during the unsupervised enrollment process, the user selects one of the one or more implicit rules that are learned from the training set of perceptory stimuli.
  - 12. The method of claim 8, wherein the authentication score comprises a negative cumulative distance measure obtained using a dynamic time-warping process.
  - 13. The method of claim 8, wherein authenticating comprises time-aligning the detected pattern of P300 event-related potentials with the perceptory stimuli presented to the individual.
  - 14. The method of claim 8, wherein a P300 event-related potential comprises a prominent peak detectable in an electroencephalographic signal after about 300 milliseconds (ms) following a perceptory stimulus.
  - 15. An article of manufacture comprising a non-transitory computer readable storage medium comprising program instructions which, when executed by a computer, implement the method of claim 8.

16. An apparatus, comprising:
- a memory configured to store program instructions; and
  
  a processor coupled to the memory and configured to execute the stored program instructions to execute a process to authenticate a user, the process comprisingreceiving a claim from an individual claiming to be an enrolled user;
  
  retrieving a stored electroencephalographic response profile associated with the enrolled user, the electroencephalographic response profile being generated as a result of supervised enrollment process based a shared secret, wherein the shared secret comprises a sequence of visual elements which follows an explicit rule known by the enrolled user during the supervised enrollment process, wherein the explicit rule specifies at least one of a relationship between the visual elements and an allowed sequence of the visual elements;
  
  presenting perceptory stimuli to the individual, the perceptory stimuli comprising the shared secret;
  
  obtaining at least one electroencephalographic response from the individual in response to the perceptory stimuli comprising said shared secret presented to the individual; and
  
  authenticating the individual'"'"'s claim as being the enrolled user based on the obtained electroencephalographic response, wherein authenticating comprises;
  
  detecting a pattern of P300 event-related potentials in the obtained electroencephalographic response;
  
  comparing the detected pattern of P300 event-related potentials with an expected pattern of P300 event-related potentials as provided by the stored electroencephalographic response profile associated with the enrolled user, wherein an unexpectedly produced P300 event-related potential in the detected pattern is indicative of an imposter;
  
  determining an authentication score based on results of said comparing; and
  
  comparing the determined authentication score to a predetermined authentication threshold value to positively authenticate the individual as being the claimed enrolled user when the authentication score exceeds the predetermined authentication threshold or to reject the individual as an imposter when the authentication score does not exceed the predetermined authentication threshold.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The apparatus of claim 16, wherein the process further comprises performing the supervised enrollment process, wherein the supervised enrollment process comprises:
    - presenting a set of perceptory stimuli to a user to be enrolled, wherein the set of perceptory stimuli comprises one or more sequences of visual elements that follow the explicit rule and one or more sequences of visual elements that violate the explicit rule, and wherein the user is informed of the explicit rule before being presented with the set of perceptory stimuli;
      
      recording a set of electroencephalographic responses of the user in response to the set of perceptory stimuli presented to the user, wherein the set of electroencephalographic responses comprises at least one P300 event-related potential which corresponds to the occurrence of a violation of the explicit rule; and
      
      analyzing the set of recorded electroencephalographic responses to generate a set of results which are stored as part of the electroencephalographic response profile of the enrolled user.
  - 18. The apparatus of claim 16, wherein the authentication score comprises a negative cumulative distance measure obtained using a dynamic time-warping process.
  - 19. The apparatus of claim 16, wherein authenticating comprises time-aligning the detected pattern of P300 event-related potentials with the perceptory stimuli presented to the individual.
  - 20. The apparatus of claim 16, wherein a P300 event-related potential comprises a prominent peak detectable in an electroencephalographic signal after about 300 milliseconds (ms) following a perceptory stimulus.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Navratil, Jiri, Ramabhadran, Bhuvana

Granted Patent

US 9,942,225 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

A61B 5/117   Identification of persons m...

A61B 5/377   using evoked responses

A61B 5/378   Visual stimuli

G06F 21/32   using biometric data, e.g. ...

G06F 21/44   Program or device authentic...

G06F 21/445   by mutual authentication, e...

H04L 63/0861   using biometrical features,...

H04L 67/306   User profiles

USER AUTHENTICATION VIA EVOKED POTENTIAL IN ELECTROENCEPHALOGRAPHIC SIGNALS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

11 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

USER AUTHENTICATION VIA EVOKED POTENTIAL IN ELECTROENCEPHALOGRAPHIC SIGNALS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

11 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links