Personal biometric authentication and authorization device
First Claim
1. A personal authorization device for authorizing portable tokens for transactions, comprising:
- a sensor adapted to receive a biometric input;
a biometric data storage adapted to hold stored biometric data to be compared with the biometric input; and
a magnetic stripe writer, adapted to write valid magnetic stripe data to a magnetic stripe of a portable token responsive to the biometric input corresponding to the stored biometric data;
a logic adapted for enrollment of the personal authorization device, comprising;
a personal authorization device identification data;
logic to receive a portable token identification data from the user;
logic to send the personal authorization device identification data to an enrollment system; and
logic to associate the portable token with the biometric input and the portable token identification data.
1 Assignment
0 Petitions
Accused Products
Abstract
A personal biometric authentication and authorization device (PAD) provides protection for portable tokens such as magnetic stripe cards and smart cards. The PAD enables portable tokens upon engagement with the PAD and comparison of a biometric input on the PAD with a stored biometric data. The PAD can be used for biometrically authenticated transactions with or without a portable token. Multiple user account data can be stored in the PAD. The PAD can write the magnetic stripe of a magnetic stripe portable token. The PAD can be enrolled with an enrollment system to associate the PAD, an individual, and the portable tokens to be used with the PAD. The PAD can be used for e-commerce transactions.
-
Citations
70 Claims
-
1. A personal authorization device for authorizing portable tokens for transactions, comprising:
-
a sensor adapted to receive a biometric input; a biometric data storage adapted to hold stored biometric data to be compared with the biometric input; and a magnetic stripe writer, adapted to write valid magnetic stripe data to a magnetic stripe of a portable token responsive to the biometric input corresponding to the stored biometric data; a logic adapted for enrollment of the personal authorization device, comprising; a personal authorization device identification data; logic to receive a portable token identification data from the user; logic to send the personal authorization device identification data to an enrollment system; and logic to associate the portable token with the biometric input and the portable token identification data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. An integrated personal authorization device for authorizing transactions, comprising:
-
a biometric sensor adapted to receive a biometric input; a biometric data storage adapted to hold stored biometric data to be compared with the biometric input; an account information storage adapted to hold a plurality of user account data for a plurality of user accounts that correspond to the stored biometric data; and an interface for authorizing transactions responsive to the biometric input corresponding to the stored biometric data; a logic adapted for enrollment of the personal authorization device, comprising; a personal authorization device identification data; and logic to send the personal authorization device identification data to an enrollment system, wherein one of the plurality of user account data is selected responsive to the biometric input corresponding to the stored biometric data, wherein the user account data is encrypted using an encryption technique, and wherein prevalidated user account data is encrypted using a first encryption technique and non-prevalidated user account data is encrypted using a second encryption technique. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42)
-
-
43. An integrated personal authorization device for authorizing transactions, comprising:
-
a biometric sensor adapted to receive a biometric input; a biometric data storage adapted to hold stored biometric data to be compared with the biometric input; an account information storage adapted to hold user account information for a user account that corresponds to the stored biometric data; and an interface for authorizing transactions responsive to the biometric input corresponding to the stored biometric data; a processor, a memory coupled to the processor, the memory providing storage for executable instructions adapted to cause the processor to; communicate with an enrollment system via the interface to enroll the integrated personal authorization device and the portable token with the enrollment system; send a personal authorization device identification data to the enrollment system via the interface to enroll the integrated personal authorization device with the enrollment system; receive a plurality of account data from the enrollment system for storage in the account information storage; select one of the plurality of account data stored in the account information storage responsive to the biometric input corresponding to the stored biometric data; and transmit a portion of the selected one of a plurality of account data via the interface for a transaction with an external system. - View Dependent Claims (44, 45, 46, 47, 48)
-
-
49. A method of enrolling a personal authorization device, comprising:
-
opening communications between the personal authorization device and an enrollment system; authenticating the personal authorization device to the enrollment system, comprising; sending a personal authorization device identification data to the enrollment system from the personal authorization device; verifying the personal authorization device identification data by the enrollment system; and refusing enrollment of the personal authorization device if verification fails, obtaining biometric data on the personal authorization device from a user; storing the biometric data on the personal authorization device; and closing communications with the enrollment system, wherein the personal authorization device identification data is a media access control (MAC) address for the personal authorization device. - View Dependent Claims (50, 51)
-
-
52. A method of enrolling a personal authorization device comprising:
-
opening communications between the personal authorization device and an enrollment system; authenticating the personal authorization device to the enrollment system, comprising; sending a personal authorization device identification data to the enrollment system from the personal authorization device; verifying the personal authorization device identification data by the enrollment system; obtaining biometric data on the personal authorization device from a user; storing the biometric data on the personal authorization device; closing communications with the enrollment system; sending a plurality of user account data to the personal authorization device from the enrollment system; storing the plurality of user account data in the personal authorization device; and obtaining an additional account data from the enrollment system, comprising; opening communications between the personal authorization device and the enrollment system; authenticating the personal authorization device to the enrollment system; obtaining biometric data on the personal authorization device from a user; if the biometric input corresponds to the stored biometric data, sending an additional account data to the personal authorization device from the enrollment system. - View Dependent Claims (53, 54)
-
-
55. A biometric protection system, comprising:
-
a personal authorization device, comprising; a biometric sensor adapted to receive a biometric input; a biometric data storage adapted to bold stored biometric data to be compared with the biometric input; and a smart card interface; and a smart card, adapted to store; a master account data; and an application for providing an additional account data to the personal authorization device if the biometric input corresponds to the stored biometric data; and an enrollment system, comprising; a processor; a communications interface, adapted to communicate between the personal authorization device and the enrollment system; a database coupled to the processor, adapted to store; a personal authorization device identifier data; and a user account data; and an enrollment software, when executed on the processor, causing the processor to perform; receiving the personal authorization device identifier from the personal authorization device; locating the personal authorization device in the database, using the personal authorization device identifier; and validating the personal authorization device, responsive to locating the personal authorization device in the database, wherein the smart card interface is adapted for communicating with the smart card if the biometric input corresponds to the stored biometric data. - View Dependent Claims (56, 57, 58, 59, 60, 61, 62, 63, 64)
-
-
65. A method of performing e-commerce transactions, comprising:
-
sending a personal authorization device identification data from a personal authorization device to an enrollment system; enrolling the personal authorization device responsive to receipt by the enrollment system of the personal authorization device identification data storing a biometric data on the personal authorization device responsive to enrolling the personal authorization device; comparing a biometric input on the personal authorization device to the stored biometric data, engaging a portable token with the personal authorization device, the portable token containing a user account data; providing the user account data via the personal authorization device for use by a transaction system, responsive to the stored biometric data corresponding to the biometric input. - View Dependent Claims (66, 67, 68, 69, 70)
-
Specification