BIOMETRIC METADATA BUREAU

US 20170279799A1
Filed: 03/25/2016
Published: 09/28/2017
Est. Priority Date: 03/25/2016
Status: Active Grant

First Claim

Patent Images

1. A system for improving speed, efficiency, and security of authenticators that use biometric markers for access control, comprising:

a processor; and

a memory device including instructions, which when executed by the processor are operable to provide;

a bureau, located remotely from the authenticators, for collecting metadata on the biometric markers being used for access control and managing use of the biometric markers, wherein the bureau further comprises;

a bureau receiver, in communication with the authenticators, operable to receive communications from the authenticators regarding access conditions for using the biometric markers for access control;

a bureau database, operable to store a meta dataset including information regarding the access conditions for using the biometric markers for access control;

a bureau analyzer operable to extract the metadata from the communications to build the meta dataset, and further operable to determine whether a given communication indicates a use deviation when compared to the meta dataset; and

a bureau transmitter, in communication with the authenticators and the bureau analyzer, operable to transmit an alert to the authenticators when the use deviation is detected.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Biometric markers are seen as a secure and convenient way to control an individual'"'"'s access to systems. The data that comprise these access controls, however, can be spoofed by nefarious third parties. Therefore, systems and methods are provided that track metadata related to the usage of biometric markers as access control devices to improve the security of systems using biometric markers for access control and to improve the speed and efficiency for systems when re-granting access for an individual in the event that access was revoked or suspended. A bureau collects metadata related to the authentication of individuals via biometric markers and the activities of the individual and the systems accessed. These metadata are used by the bureau to alert affected parties of potential misuse of biometric data and to reduce the processing requirements, storage requirements, and number of communications to on-board or re-authenticate an individual.

Citations

20 Claims

1. A system for improving speed, efficiency, and security of authenticators that use biometric markers for access control, comprising:
- a processor; and
  
  a memory device including instructions, which when executed by the processor are operable to provide;
  
  a bureau, located remotely from the authenticators, for collecting metadata on the biometric markers being used for access control and managing use of the biometric markers, wherein the bureau further comprises;
  
  a bureau receiver, in communication with the authenticators, operable to receive communications from the authenticators regarding access conditions for using the biometric markers for access control;
  
  a bureau database, operable to store a meta dataset including information regarding the access conditions for using the biometric markers for access control;
  
  a bureau analyzer operable to extract the metadata from the communications to build the meta dataset, and further operable to determine whether a given communication indicates a use deviation when compared to the meta dataset; and
  
  a bureau transmitter, in communication with the authenticators and the bureau analyzer, operable to transmit an alert to the authenticators when the use deviation is detected.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The system of claim 1, wherein the bureau is further operable to generate reports regarding the access conditions for using the biometric markers, wherein the reports specify an organization scheme chosen from:
    - organized by an individual;
      
      organized by a domain to which access is granted;
      
      organized by a general biometric marker in general for the domain; and
      
      organized by a specific biometric marker from the individual.
  - 3. The system of claim 1, wherein the alert requests a different biometric marker from an individual than the biometric markers involved in the use deviation.
  - 4. The system of claim 1, wherein the meta data set is built from an initial on-boarding of the biometric markers for granting access control.
  - 5. The system of claim 1, wherein the meta dataset is extracted from header information in the communications.
  - 6. The system of claim 1, wherein the authenticator comprises a local portion, from which the bureau receives datasets for the biometric markers, and a remote portion, to which the datasets for the biometric markers grant access.
  - 7. The system of claim 6, wherein the bureau acts as a clearing house, forwarding messages between the local portion and the remote portion.
  - 8. The system of claim 6, wherein authentication requirements for the remote portion are transmitted by the bureau to the local portion to enable the local portion to transmit the datasets for the biometric markers in formats acceptable to the remote portion.

9. A method for improving speed, efficiency, and security of authenticators that use biometric markers for access control, comprising:
- receiving on-boarding information at a bureau, including a biometric dataset for a biometric marker of an individual, and an authentication dataset, specifying how the individual was identified for on-boarding;
  
  collecting, at the bureau, current usage information of the biometric dataset in relation to a remote system to build a meta dataset, wherein the meta dataset comprises historic usage information related to access conditions surrounding usage of the biometric marker;
  
  determining, based on comparing the current usage information to the historic usage information, whether the current usage information indicates a deviation in use of the remote system for the individual;
  
  when it is determined that the current usage information indicates use deviation, transmitting an alert of the deviation; and
  
  when it is determined that the current usage information does not indicate use deviation, continue collecting usage information.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The method of claim 9, wherein the alert is transmitted to the individual.
  - 11. The method of claim 10, wherein, the alert include a request for an alternate authentication from the individual.
  - 12. The method of claim 11, wherein the alternate authentication from the individual is chosen from:
    - a password;
      
      a personal identification number;
      
      a pattern;
      
      a security question and response pair; and
      
      a different biometric marker.
  - 13. The method of claim 9, wherein the alert is transmitted to all remote systems known to the bureau to use the biometric marker involved in the deviation in use of the biometric marker.
  - 14. The method of claim 9, wherein the deviation in use is a data breach of the remote system.
  - 15. The method of claim 9, wherein the remote system includes authentication requirements, specifying the access conditions required by the remote system to accept the biometric dataset to grant access to the remote system, which are transmitted to the individual by the bureau to ensure that the authentication dataset meets the authentication requirements.
  - 16. The method of claim 9, further comprising:
    - providing, from the bureau to the individual, a list of remote systems that use a given biometric dataset.

17. A system for improving speed, efficiency, and security of authenticators that use biometric markers for access control, comprising:
- a remote portion of an authenticator, including a remote system to which access is granted via a biometric dataset;
  
  a local portion of the authenticator, including a biometric scanner operable to scan the biometric markers to produce the biometric dataset, wherein the local portion is in communication with the remote portion via a network to request access to the remote system; and
  
  a bureau disposed of between the local portion and the remote portion, wherein the bureau is operable to monitor communications between the local portion and the remote portion over the network to collect a meta dataset on access conditions for how the biometric dataset is used, wherein the meta dataset includes information on a location where the local portion is located when access to the remote system is requested, a time when the access to the remote system is requested, and how the biometric dataset was on-boarded and associated with an individual for the remote system;
  
  wherein the bureau is further operable to determine from the communications between the local portion and the remote portion that a use deviation has occurred when the communications include metadata that do not match the information stored in the meta dataset and the generates an alert in response to the use deviation.
- View Dependent Claims (18, 19, 20)
- - 18. The system of claim 17, wherein the alert is transmitted by the bureau to the local portion of the authenticator and indicates the metadata that did not match the information stored in the meta dataset.
  - 19. The system of claim 18, wherein the bureau is operable to receive from the local portion a command to accept the use deviation as acceptable, wherein the metadata that did not match the information stored in the meta dataset is added to the meta dataset.
  - 20. The system of claim 17, wherein the alert is transmitted by the bureau to the remote portion of the authenticator with a command to terminate an access granted to the remote portion by a biometric marker in response to the use deviation.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Experian Health, Inc. (Experian plc)
Original Assignee
Experian Health, Inc. (Experian plc)
Inventors
Baltzer, Matthew, Katz, Elazar

Granted Patent

US 10,033,733 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06V 40/1359   Extracting features related...

G06V 40/70   Multimodal biometrics, e.g....

H04L 63/083   using passwords cryptograph...

H04L 63/0861   using biometrical features,...

H04L 63/1425   Traffic logging, e.g. anoma...

BIOMETRIC METADATA BUREAU

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

BIOMETRIC METADATA BUREAU

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links