Method and apparatus for restrospectively identifying an individual who had engaged in a commercial or retail transaction or the like

Individuals are provided with a transaction card which is to be presented for at least certain classes of transactions, e.g., truck rentals, purchases of chemicals, etc. Encoded electronically within the card are a) physical verification information and b) identity information. The identity information is encrypted, to create an encrypted identity file, using an "identity encryption key." The matching "identity decryption key" is held in secret by an appropriate government agency or agencies. The encrypted identity file and the physical verification information are then commingled and encrypted together using the "public encryption key" of a so-called public key encryption/decryption pair to create a composite encrypted file. The matching "public decryption key" is distributed to the society at large and is, in particular, stored at points-of-sale/transaction.

When a transaction is entered into, the purchaser presents his/her transaction card to the vendor as a requirement for the completion of the transaction. The composite encryption file stored in the card is decrypted, yielding a) a "clear text" version of the physical identification information and b) the encrypted identity file, which is saved along with information about the transaction. The encrypted identity file can be decrypted only under court order at such time as an item or substance involved in a crime is traced back to the transaction in question. Even though the purchaser'"'"'s identity information has been captured by the point-of-sale/transaction terminal, his/her privacy is maintained because the vendor cannot decrypt that information and therefore cannot actually read or display the information.