Biometric-based authentication in a nonvolatile memory device
First Claim
1. An apparatus, comprising:
- an integrated circuit including;
a first processor;
a first interface coupled to the first processor to communicate with a second processor external to the integrated circuit;
a first non-volatile memory decoupled from the first interface and coupled to the first processor to store first biometric data identifying at least one authorized user, and having contents that are unreadable external to the integrated circuit;
a second interface coupled to the first processor to input second biometric data from a biometric reader; and
a second non-volatile memory coupled to a third interface and decoupled from the first processor, first interface, second interface, and first non-volatile memory, and having contents that are accessible external to the apparatus through the third interface.
0 Assignments
0 Petitions
Accused Products
Abstract
A biometric-based security circuit in which the user database, processor, and biometric map generation functions are all located on the same integrated circuit whose secure contents are inaccessible from external to the integrated circuit. Biometric data, such as a fingerprint, retina scan, or voiceprint, is taken from a user requesting access to restricted resources. The biometric data is transferred into the integrated circuit, where it is converted to a biometric map and compared with a database of biometric maps stored in a non-volatile memory in the integrated circuit. The stored maps represent pre-authorized users, and a match triggers the security circuit to send a signal to a host processor authorizing the host processor to permit the requesting user access to the restricted resources. The integrated circuit essentially serves as a write-only memory for the secure data, because the secure data and security functions in the integrated circuit are not directly accessible through any pin or port, and therefore cannot be read or monitored through a dedicated security attack. A second non-volatile memory, accessible from external to the integrated circuit, can also be provided in the integrated circuit for holding non-secure data. This second memory has its own interface port, and is isolated from the security-related functions and memory so that secure and non-secure functions are physically isolated from each other and cannot be modified to overcome that isolation.
-
Citations
14 Claims
-
1. An apparatus, comprising:
an integrated circuit including; a first processor; a first interface coupled to the first processor to communicate with a second processor external to the integrated circuit; a first non-volatile memory decoupled from the first interface and coupled to the first processor to store first biometric data identifying at least one authorized user, and having contents that are unreadable external to the integrated circuit; a second interface coupled to the first processor to input second biometric data from a biometric reader; and a second non-volatile memory coupled to a third interface and decoupled from the first processor, first interface, second interface, and first non-volatile memory, and having contents that are accessible external to the apparatus through the third interface. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
9. A system, comprising:
-
a host processor; a biometric reader; an integrated circuit coupled to the biometric reader and host processor including; a first processor; a first interface coupled to the first processor and the host processor; a first non-volatile memory decoupled from the first interface and coupled to the first processor to store first biometric data identifying at least one authorized user, and having contents that are unreadable external to the integrated circuit; a second interface coupled to the first processor and the biometric reader to input second biometric data; and a second non-volatile memory coupled to the host processor through a third interface and decoupled from the first processor, first interface, second interface, and first non-volatile memory, and having contents that are accessible external to the apparatus through the third interface. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A system comprising:
-
biometric reader; and a first processor; a security circuit including; a second processor; a first interface coupled to the second processor to input biometric data; a first non-volatile memory coupled to the second processor to store second biometric data identifying at least one authorized user, and having contents that are unreadable external to the security circuit; a second interface coupled to the second processor to communicate with the first processor; a third interface coupled to the second processor; and a second non-volatile memory coupled to the third interface and decoupled from the second processor, first interface, second interface and first non-volatile memory, having contents that are accessible external to the security circuit through the second interface.
-
Specification