Trust tokens
First Claim
Patent Images
1. An identity confirmation device comprising:
- a memory card including readable data and a writeable data store,the identity confirmation device being programmable by a security server and including data defining the user identity, data derived from a user feature and digital signature data issued by the security server,the identity confirmation device being used in combination with a reader arranged to derive the user identity, compare user feature data with the user present and to issue a single use token confirming the validity of a transaction certified by the digital signature data;
wherein the identity confirmation device includes identities of multiple persons stored thereon, the strength of token issued being dependent upon the number of persons whose identity is confirmed at the time of issue of the token.
1 Assignment
0 Petitions
Accused Products
Abstract
A token issuer and an authentication device provide an identity confirmation device. A token issuer is programmable by a central identity provider to issue certification tokens for use in e-commerce whereby transactions can be certified with suppliers without need for additional communication with a central server.
-
Citations
18 Claims
-
1. An identity confirmation device comprising:
-
a memory card including readable data and a writeable data store, the identity confirmation device being programmable by a security server and including data defining the user identity, data derived from a user feature and digital signature data issued by the security server, the identity confirmation device being used in combination with a reader arranged to derive the user identity, compare user feature data with the user present and to issue a single use token confirming the validity of a transaction certified by the digital signature data; wherein the identity confirmation device includes identities of multiple persons stored thereon, the strength of token issued being dependent upon the number of persons whose identity is confirmed at the time of issue of the token. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method of confirming an identity, said method comprising:
-
providing an identity confirmation device, programming the identity confirmation device with data defining the user identity, data derived from a user feature and digital signature data issued by the security server, reading the identity confirmation device to derive the user identity, compare user feature data with the user present and issue a single use token confirming the validity of a transaction certified by the digital signature data; and storing identities of multiple persons on the identity confirmation device and varying the strength of an issued token dependent upon the number of persons whose identity is confirmed at the time of issue of the token. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
Specification