Person authentication system, person authentication method, information processing apparatus, and program providing medium
First Claim
1. A person authentication method for executing person authentication by comparing a template which is person identification data acquired beforehand with sampling information input by a user, said method comprising the steps of:
- acquiring an encrypted template from a person identification certificate including said template and generated by a third-party agency serving as a person identification certificate authority;
receiving said encrypted template from said person identification certificate authority and an encrypted sampling information from said user;
decrypting said encrypted template and said encrypted sampling information;
comparing said decrypted template with said decrypted sampling information, andexecuting person authentication on the basis of the acquired template;
wherein,said encrypted sampling information is generated using a public key certificate generated by a certificate authority; and
when transmitting said person identification certificate to a person authentication system, said person identification certificate authority(a) retrieves a stored encrypted template,(b) decrypts the stored encrypted template using a private key of the person identification certificate authority,(c) re-encrypts the decrypted template using a public key of said person authentication system to which said person identification certificate is to be transmitted, and(d) stores the re-encrypted template in said person identification certificate.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed are a person authentication system, a person authentication method, and an information processing apparatus which allow person authentication to be performed in an easy fashion in various devices by comparing a template serving as person identification data with sampling information input by a user. A service provider (SP) or user device (UD) executes person authentication by acquiring a template from a person identification certificate (IDC) generated by a third-party agency serving as a person identification certificate authority (IDA). The IDA acquires a template serving as identification data after verifying a person requesting an IDC to be issued, and generates the IDC storing template information. The IDA distributes the IDC having a digital signature of the IDA added thereto to the SP and the UD.
-
Citations
14 Claims
-
1. A person authentication method for executing person authentication by comparing a template which is person identification data acquired beforehand with sampling information input by a user, said method comprising the steps of:
-
acquiring an encrypted template from a person identification certificate including said template and generated by a third-party agency serving as a person identification certificate authority; receiving said encrypted template from said person identification certificate authority and an encrypted sampling information from said user; decrypting said encrypted template and said encrypted sampling information; comparing said decrypted template with said decrypted sampling information, and executing person authentication on the basis of the acquired template;
wherein,said encrypted sampling information is generated using a public key certificate generated by a certificate authority; and when transmitting said person identification certificate to a person authentication system, said person identification certificate authority (a) retrieves a stored encrypted template, (b) decrypts the stored encrypted template using a private key of the person identification certificate authority, (c) re-encrypts the decrypted template using a public key of said person authentication system to which said person identification certificate is to be transmitted, and (d) stores the re-encrypted template in said person identification certificate. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A person authentication method for executing person authentication by comparing a template which is a person identification data acquired beforehand with sampling information input by a user, comprising receiving, at a person identification certificate authority which acquires an encrypted template from a person identification certificate including said encrypted template, said encrypted template from said person identification certificate authority and an encrypted sampling information from said user;
- decrypting said encrypted template and said encrypted sampling information, and executing person authentication by comparing said decrypted template with said decrypted sampling information, wherein a verification certificate is issued provided that said person authentication is successfully passed;
wherein said encrypted sampling information is generated using a public key certificate generated by a certificate authority; and
wherein, when transmitting said person identification certificate to a person authentication system, said person identification certificate authority retrieves a stored encrypted template, decrypts the stored encrypted template using a private key of the person identification certificate authority, re-encrypts the decrypted template using a public key of said person authentication system to which said person identification certificate is to be transmitted, and stores the re-encrypted template in said person identification certificate. - View Dependent Claims (9, 10, 11, 12, 13, 14)
- decrypting said encrypted template and said encrypted sampling information, and executing person authentication by comparing said decrypted template with said decrypted sampling information, wherein a verification certificate is issued provided that said person authentication is successfully passed;
Specification