Biometric safeguard method for use with a smartcard

US 7,318,550 B2
Filed: 07/01/2004
Issued: 01/15/2008
Est. Priority Date: 07/01/2004
Status: Expired due to Fees

First Claim

Patent Images

1. A method for conducting a transaction using a smartcard transaction system having a biometric security device, said method comprising:

communicating with a smartcard, wherein said smart card comprises a common application and a second application, said second application storing travel-related information associated with a cardholder, said second application comprising a common file structure and a partner file structure;

determining when a transaction violates a preset transaction limitation;

notifying a user to proffer a first biometric sample and a second biometric sample to verify an identity of said user;

receiving a first proffered biometric sample and a second proffered biometric sample, wherein said first proffered biometric sample is a different type of biometric sample from said second proffered biometric sample, and wherein said first proffered biometric sample and said second proffered biometric sample are from the same user, and wherein said first proffered biometric sample is required to access said common file structure and said second proffered biometric sample is required to access said partner file structure;

verifying said first proffered biometric sample and a second proffered biometric sample;

enabling write access to a field within said partner file structure upon verification of said second proffered biometric sample and upon request by a first partnering organization;

denying write access to said field upon request by a second partnering organization;

enabling write access for said first partnering organization and said second partnering organization to a field in said common file structure, upon verification of said first proffered biometric sample;

transferring common data to facilitate said transaction;

transferring said travel-related information, information related to said common file structure and information related to said partner file structure to facilitate said transaction;

storing, by a first enterprise data collection unit, update transactions and pending transactions associated with said smartcard and a first enterprise, wherein said first enterprise data collection unit is associated with a first enterprise;

storing, by a second enterprise data collection unit, update transactions and pending transactions associated with said smartcard and a second enterprise, wherein said second enterprise data collection unit is associated with a second enterprise;

interfacing with said smartcard and said first and second enterprise data collection units, at an access point;

storing, by a card object database system coupled to said first and second enterprise data collection units, said smartcard information in accordance with said update transactions and said pending transactions, wherein said smartcard information includes a card object having an application;

routing, by an update logic system, said smartcard information from said first and second enterprise data collection units to said access point in order to effect synchronization of said smartcard information associated with said smartcard and said card object database system; and

, activating, by said verification device, said update logic system upon verification of said first proffered biometric sample and said second biometric sample.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for facilitating biometric security in a smartcard-reader transaction system is provided. The method includes determining if a transaction violates an established rule, such as a preset spending limit. The method also includes notifying a user to proffer a biometric sample in order to verify the identity of said user, and detecting a proffered biometric at a sensor to obtain a proffered biometric sample. The method additionally comprises verifying the proffered biometric sample and authorizing a transaction to continue upon verification of the proffered biometric sample.

506 Citations

20 Claims

1. A method for conducting a transaction using a smartcard transaction system having a biometric security device, said method comprising:
- communicating with a smartcard, wherein said smart card comprises a common application and a second application, said second application storing travel-related information associated with a cardholder, said second application comprising a common file structure and a partner file structure;
  
  determining when a transaction violates a preset transaction limitation;
  
  notifying a user to proffer a first biometric sample and a second biometric sample to verify an identity of said user;
  
  receiving a first proffered biometric sample and a second proffered biometric sample, wherein said first proffered biometric sample is a different type of biometric sample from said second proffered biometric sample, and wherein said first proffered biometric sample and said second proffered biometric sample are from the same user, and wherein said first proffered biometric sample is required to access said common file structure and said second proffered biometric sample is required to access said partner file structure;
  
  verifying said first proffered biometric sample and a second proffered biometric sample;
  
  enabling write access to a field within said partner file structure upon verification of said second proffered biometric sample and upon request by a first partnering organization;
  
  denying write access to said field upon request by a second partnering organization;
  
  enabling write access for said first partnering organization and said second partnering organization to a field in said common file structure, upon verification of said first proffered biometric sample;
  
  transferring common data to facilitate said transaction;
  
  transferring said travel-related information, information related to said common file structure and information related to said partner file structure to facilitate said transaction;
  
  storing, by a first enterprise data collection unit, update transactions and pending transactions associated with said smartcard and a first enterprise, wherein said first enterprise data collection unit is associated with a first enterprise;
  
  storing, by a second enterprise data collection unit, update transactions and pending transactions associated with said smartcard and a second enterprise, wherein said second enterprise data collection unit is associated with a second enterprise;
  
  interfacing with said smartcard and said first and second enterprise data collection units, at an access point;
  
  storing, by a card object database system coupled to said first and second enterprise data collection units, said smartcard information in accordance with said update transactions and said pending transactions, wherein said smartcard information includes a card object having an application;
  
  routing, by an update logic system, said smartcard information from said first and second enterprise data collection units to said access point in order to effect synchronization of said smartcard information associated with said smartcard and said card object database system; and
  
  , activating, by said verification device, said update logic system upon verification of said first proffered biometric sample and said second biometric sample.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 2. The method of claim 1, wherein said step of determining when said transaction violates said preset transaction limitation includes determining when said transaction is at least one of a purchase exceeding an established per purchase spending limit, a purchase exceeding a preset number of transactions, any portion of a purchase using non-monetary funds, and a purchase exceeding an established limit.
  - 3. The method of claim 1, wherein said step of notifying includes providing notification by at least one of an audible signal, a visual signal, an optical signal, a mechanical signal, a vibration, blinking, signaling, beeping, providing an olfactory signal, providing a physical touch signal, and providing a temperature signal to said user.
  - 4. The method of claim 1, further comprising using data representing said first proffered biometric sample and said second proffered biometric sample as a variable in an encryption calculation to secure at least one of user data and transaction data.
  - 5. The method of claim 1, further comprising accessing card-holder preferences relating to at least one of rental cars, hotel reservations, and air travel in said partner file structure, upon verification of said first proffered biometric sample and said second proffered biometric sample.
  - 6. The method of claim 1, further comprising using data representing said first proffered biometric sample and said second proffered biometric sample as at least one of a private key and a public key to facilitate encryption security associated with said transaction.
  - 7. The method of claim 1, further comprising using data representing said first proffered biometric sample and said second proffered biometric sample in generating a message authentication code.
  - 8. The method of claim 1, wherein said step of verifying includes comparing said first proffered biometric sample and said second proffered biometric sample with a stored biometric sample.
  - 9. The method of claim 8, wherein said stored biometric sample is from at least one of a criminal, a terrorist, and a cardmember.
  - 10. The method of claim 1, wherein said step of verifying includes verifying said first proffered biometric sample and said second proffered biometric sample using information contained on at least one of a local database, a remote database, and a third-party controlled database.
  - 11. The method of claim 1, further comprising using data representing said first proffered biometric sample and said second proffered biometric sample to provide substantially simultaneous access to goods and initiation of authentication for a subsequent purchase of said goods.
  - 12. The method of claim 1, further comprising requesting said user to submit a personal identification number and verifying said personal identification number.
  - 13. The method of claim 1, further comprising facilitating a selection of an account from at least two accounts.
  - 14. The method of claim 1, further comprising requiring a third proffered biometric sample to override said preset transaction limitation.
  - 15. The method of claim 1, further comprising writing to at least one of said partner file structure and said common file structure to program said smartcard as a room key.
  - 16. The method of claim 1, further comprising securely routing, by an update logic system, card information between said enterprise data synchronization interface and said enterprise data collection units, wherein said update logic system is coupled to an enterprise data synchronization interface, and communicating, by said enterprise network, with said access point, wherein said enterprise data synchronization interface is coupled to said enterprise network.
  - 17. The method of claim 16, further comprising, by a secure support client server, communicating with said access point, and adaptively providing communication functionality in accordance with the communication functionality available at said access point.
  - 18. The method of claim 17, further comprising:
    - communicating, by a key system, with a security server and supplying a key in response to a request from said security server, wherein said key system is associated with said application;
      
      receiving, by a personalization utility, said card object and communicating with said security server;
      
      adding, by said personalization utility, said key to said card object;
      
      accepting, by a card management system, a card request and communicating said card request to said personalization utility; and
      
      communicating, by a gather application module, with said card management system and gathering application information from a first database and a second database in accordance with said card request, wherein said first database is associated with said first enterprise, and said second database is associated with said second enterprise.
  - 19. The method of claim 1, further comprising displaying a first plurality of financial accounts upon verification of said first proffered biometric sample, and displaying a second plurality of financial accounts upon verification of said second biometric sample, wherein said first plurality of financial accounts include different financial accounts than said second plurality of financial accounts.
  - 20. The method of claim 1, further comprising associating a first set of rules with said first proffered biometric sample and displaying a first plurality of financial accounts upon verification of said first proffered biometric sample and said first set of rules, and associating a second set of rules with said second proffered biometric sample and displaying a second plurality of financial accounts upon verification of said second biometric sample and said second set of rules, wherein said first plurality of financial accounts include different financial accounts than said second plurality of financial accounts.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Liberty Peak Ventures, LLC (Dominion Harbor Enterprises, LLC)
Original Assignee
American Express Travel Related Services Company, Inc. (American Express Company)
Inventors
Salow, Glen, Bonalle, David S.
Primary Examiner(s)
WALSH, DANIEL I

Application Number

US10/710,335
Publication Number

US 20060016877A1
Time in Patent Office

1,293 Days
Field of Search

235/380, 235/487, 235/492, 340/5.6, 340/10.1, 340/5.4, 340/572.1, 340/5.52, 340/5.82
US Class Current

235/380
CPC Class Codes

G06Q 20/105   involving programming of a ...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/367   involving electronic purses...

G06Q 20/3674   involving authentication

G06Q 20/382   insuring higher security of...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 20/40145   Biometric identity checks

G07C 9/257   electronically G07C9/26 tak...

G07C 9/26   using a biometric sensor in...

G07C 9/27   with central registration

G07F 7/1008   Active credit-cards provide...

Biometric safeguard method for use with a smartcard

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

506 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Biometric safeguard method for use with a smartcard

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

506 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others