Personal authorisation device
First Claim
Patent Images
1. A personal authorisation device wearable by a user, comprising:
- a memory;
an input operable to receive user authentication data for authenticating the user, wherein the personal authorisation device is configured to generate validation information from said user authentication data by transforming said user authentication data via a one-way transformation, wherein said validation information comprises a result of said one-way transformation, wherein said user authentication data is not stored within said memory;
wherein the memory stores an authorisation code and said validation information generated from the user authentication data, wherein said personal authorisation device is configured to encrypt said authorisation code with an encryption key to generate an encrypted authorisation code, wherein said encryption key comprises said validation information generated from said user authentication data; and
an output operable to provide said encrypted authorisation code to an other device configured to protect a resource, wherein said personal authorisation device is configured to enable the user to gain access to the protected resource, wherein to enable the user to gain access to the protected resource comprises providing said encrypted authorisation code to the other device through said output, wherein said other device and said resource are external to the personal authorisation device; and
a tamper detector configured to trigger if the personal authorisation device is removed from said user, wherein in response to said triggering the tamper detector is configured to disable use of the personal authorisation device, wherein to disable use of the personal authorisation device comprises preventing output of said encrypted authorisation code subsequent to said triggering.
2 Assignments
0 Petitions
Accused Products
Abstract
A personal authorisation device wearable by a user includes an input operable to receive data for authenticating a user, a memory operable to store validation information derived from the user authentication data, and an output operable to provide an authorisation code. The device further includes a tamper detector that triggers if the device is removed from its wearer. Triggering of the tamper detector serves to disable use of the device.
61 Citations
34 Claims
-
1. A personal authorisation device wearable by a user, comprising:
-
a memory; an input operable to receive user authentication data for authenticating the user, wherein the personal authorisation device is configured to generate validation information from said user authentication data by transforming said user authentication data via a one-way transformation, wherein said validation information comprises a result of said one-way transformation, wherein said user authentication data is not stored within said memory; wherein the memory stores an authorisation code and said validation information generated from the user authentication data, wherein said personal authorisation device is configured to encrypt said authorisation code with an encryption key to generate an encrypted authorisation code, wherein said encryption key comprises said validation information generated from said user authentication data; and an output operable to provide said encrypted authorisation code to an other device configured to protect a resource, wherein said personal authorisation device is configured to enable the user to gain access to the protected resource, wherein to enable the user to gain access to the protected resource comprises providing said encrypted authorisation code to the other device through said output, wherein said other device and said resource are external to the personal authorisation device; and a tamper detector configured to trigger if the personal authorisation device is removed from said user, wherein in response to said triggering the tamper detector is configured to disable use of the personal authorisation device, wherein to disable use of the personal authorisation device comprises preventing output of said encrypted authorisation code subsequent to said triggering. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A method of providing an authorisation code from a personal authorisation device wearable by a user, comprising:
-
receiving user authentication data; generating validation information from said user authentication data by transforming said user authentication data via a one-way transformation, wherein said validation information comprises a result of said one-way transformation, wherein said user authentication data is not stored within a memory of said personal authorisation device; storing said validation information generated from the user authentication data in said memory of the personal authorisation device; accessing an authorisation code stored in said memory of the personal authorisation device and encrypting said authorisation code with an encryption key to generate an encrypted authorisation code, wherein said encryption key comprises said validation information generated from said user authentication data; enabling the user to gain access to a protected resource that is protected by an other device, wherein said enabling comprises providing said encrypted authorisation code as output from the personal authorisation device to said other device, wherein said other device and said resource are external to the personal authorisation device; detecting if the personal authorisation device is removed from the user wearing the personal authorisation device; and disabling use of the personal authorisation device in response to detecting such removal, wherein said disabling comprises preventing the output of said encrypted authorisation code. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
-
-
34. A personal authorisation device wearable by a user, comprising:
-
means for receiving user authentication data; means for generating validation information from said user authentication data by transforming said user authentication data via a one-way transformation, wherein said validation information comprises a result of said one-way transformation, wherein said user authentication data is not stored within said personal authorisation device; means for storing said validation information generated from the user authentication data in the personal authorisation device; means for accessing an authorisation code stored in the personal authorisation device and encrypting said authorisation code with an encryption key to generate an encrypted authorisation code, wherein said encryption key comprises said validation information generated from said user authentication data; means for enabling the user to gain access to a protected resource that is protected by an other device, wherein said enabling comprises providing said encrypted authorisation code as output from the personal authorisation device to said other device, wherein said other device and said resource are external to the personal authorisation device; means for detecting if the personal authorisation device is removed from the user wearing the personal authorisation device; and means for disabling use of the personal authorisation device in response to detecting such removal, wherein said disabling comprises preventing the output of said encrypted authorisation code.
-
Specification