Identity verification method and apparatus
First Claim
Patent Images
1. A method of using a secure identification card comprising the steps of:
- reading a personal encryption key and a partial result from said card;
receiving characteristic characters related to a prospective user of said card;
encrypting said characteristic characters with said key to obtain a result;
comparing a first part of said result with said partial result read from said card to verify a first level of correspondence between said characteristic character and said card;
denying use of said card by said prospective user if said first part compares unfavorably with said partial result;
comparing a second part of said result with a second partial result stored at a central data base for said card, if said first part compares favorably with said partial result to verify a second level of correspondence between said characteristic characters and said card;
denying use of said card by said prospective user if said second part compares unfavorably with said second partial result.
0 Assignments
0 Petitions
Accused Products
Abstract
An improved method for verifying the identity of a prospective terminal user presenting an identification card or a credit card and a memorized personal identification number. Only part of the information necessary to correlate an account number to a personal identification number is available at any accessible place in the operating system. Neither the credit card, the host computer, nor the transmission link will ever have sufficient information to completely correlate an account number to a personal identification number.
167 Citations
6 Claims
-
1. A method of using a secure identification card comprising the steps of:
-
reading a personal encryption key and a partial result from said card; receiving characteristic characters related to a prospective user of said card; encrypting said characteristic characters with said key to obtain a result; comparing a first part of said result with said partial result read from said card to verify a first level of correspondence between said characteristic character and said card; denying use of said card by said prospective user if said first part compares unfavorably with said partial result; comparing a second part of said result with a second partial result stored at a central data base for said card, if said first part compares favorably with said partial result to verify a second level of correspondence between said characteristic characters and said card; denying use of said card by said prospective user if said second part compares unfavorably with said second partial result.
-
-
2. A method of using a secure identification card comprising the steps of:
-
reading a key and a partial result from said card; receiving characteristic characters related to a prospective user of said card; calculating a result using said key and said characteristic characters; comparing a first part of said result with said partial result read from said card to verify a first level of correspondence between said characteristic character and said card; denying use of said card by said prospective user if said first part compares unfavorably with said partial result; comparing a second part of said result with a second partial result stored at a central data base for said card, if said first part compares favorably with said partial result to verify a second level of correspondence between said characteristic characters and said card; denying use of said card by said prospective user if said second part compares unfavorably with said second partial result; calculating a new result using said characteristic characters and a newly generated key if said second part compares favorably with said second partial result; writing said newly generated key and a first part of said new result on said card in place of said key and said partial result on said card; storing a second part of said new result at a central data base in place of said second partial result.
-
-
3. An improved identification card including human readable information fields and machine readable and writeable information fields wherein the improvement comprises:
-
a partial result field for storing part of encrypted characteristic information related to the authorized user of said card; a personal encryption key field for storing the unique personal encryption key under which said characteristic information is encrypted.
-
-
4. An identity verification terminal for verifying the identity of person presenting an identification card of the type capable of receiving characteristic information related to a prospective terminal user and an identification card having machine readable and writeable information storage media, the improvement comprising:
-
means for reading a personal encryption key and a partial result from said card; means for encrypting said characteristic information under said key to obtain a calculated result; means for comparing said partial result with a first part of said calculated result; means for indicating the result of the comparison of said partial result with said first part of said calculated result; means responsive to said means for comparing, for transmitting a second part of said calculated result to a central location for comparison with a second partial result related to said identification card and stored at said central location; means for receiving a response from said central location and indicating the result of said comparison with said second partial result. - View Dependent Claims (5)
-
-
6. An identity verification system for verifying the identity of a prospective terminal user comprising:
-
a terminal having a keyboard for receiving characteristic characters related to a person presenting an identification card; reading means at said terminal for reading a partial result and a personal encryption key from said identification card; encrypting means at said terminal for encrypting said characteristic characters under said personal encryption key to obtain a calculated result; means at said terminal for comparing said partial result with a first part of said calculated result; and indicating means for indicating the result of comparing said partial result; and transmitting means within said terminal for transmitting a second part of said calculated result to programmed computing means at a central location; a program controlling said computing means at said central location to compare said second part of said calculated result received from said terminal with a second partial result related to said identification card and stored at said central location, said program responding to said terminal with an indication of the result of said comparison with said second partial result.
-
Specification