Continuous biometric authentication using frame preamble for biometric data
First Claim
1. A method of continuous biometric authentication of a client connected to a network switch, wherein said client and said network switch exchange Ethernet/802.3 frames associated with a client application, and wherein said client and said network switch are coupled by a full-duplex Ethernet/802.3 communication channel, said method comprising the steps of:
- capturing a biometric data sample of a user of said client;
encapsulating biometric data in an authentication protocol message frame;
separating said authentication protocol message frame into a sequence of a plurality of fragments, each fragment having a predetermined number of bytes;
assigning a respective sequence number to each of said fragments; and
inserting each of said fragments with its respective sequence number in a respective preamble of a respective one of a plurality of Ethernet/802.3 frames associated with said client application that are being transmitted from said client to said network switch.
6 Assignments
0 Petitions
Accused Products
Abstract
A client connected to a network switch is continuously authenticated to a network switch by using biometrics, wherein the client and the network switch exchange Ethernet/802.3 frames associated with a client application, and wherein the client and the network switch are coupled by a full-duplex Ethernet/802.3 communication channel. A biometric data sample of a user of the client is captured. Biometric data is encapsulated in an authentication protocol message frame. The authentication protocol message frame is separated into a sequence of a plurality of fragments, each fragment having a predetermined number of bytes. Respective sequence numbers are assigned to each of the fragments. Each of the fragments is inserted with its respective sequence number in a respective preamble of a respective one of a plurality of Ethernet/802.3 frames associated with the client application that are being transmitted from the client to the network switch.
72 Citations
19 Claims
-
1. A method of continuous biometric authentication of a client connected to a network switch, wherein said client and said network switch exchange Ethernet/802.3 frames associated with a client application, and wherein said client and said network switch are coupled by a full-duplex Ethernet/802.3 communication channel, said method comprising the steps of:
-
capturing a biometric data sample of a user of said client; encapsulating biometric data in an authentication protocol message frame; separating said authentication protocol message frame into a sequence of a plurality of fragments, each fragment having a predetermined number of bytes; assigning a respective sequence number to each of said fragments; and inserting each of said fragments with its respective sequence number in a respective preamble of a respective one of a plurality of Ethernet/802.3 frames associated with said client application that are being transmitted from said client to said network switch. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A client for continuous biometric authentication for a full-duplex network session on an Ethernet/802.3 network switch, wherein said client and said network switch exchange Ethernet/802.3 frames associated with a client application, comprising:
-
an authentication protocol framer for encapsulating biometric data into an authentication protocol message frame; a calculator for calculating a first authentication tag in response to said authentication protocol message frame; a separator for forming a sequence of a plurality of fragments of said authentication protocol message frame and said first authentication tag and for appending a respective sequence number to each of said fragments; and an Ethernet/802.3 framer for inserting each of said fragments with its respective sequence number in a respective preamble of a respective one of a plurality of Ethernet/802.3 frames associated with said client application being transmitted from said client to said Ethernet/802.3 network switch. - View Dependent Claims (16, 17)
-
-
18. A network switch providing substantially continuous biometric authentication for a full-duplex network session with a client, wherein said client and said network switch exchange Ethernet/802.3 frames associated with a client application, wherein respective preambles of said Ethernet/802.3 frames include respective fragments and sequence numbers of an authentication protocol message frame which encapsulates biometric data corresponding to captured biometric data of a user of said client, said network switch comprising:
-
a re-assembler for recovering said fragments and said sequence numbers from said respective preambles and for reassembling said authentication protocol message frame from said fragments in response to said sequence numbers; and a processor for processing said biometric data to determine whether said user is authorized to use said client. - View Dependent Claims (19)
-
Specification