Biometric-based system and method for enabling authentication of electronic messages sent over a network
First Claim
1. A system for data and user authentication using biometric means, to verify to a third party that a document purporting to be from a first party is an unaltered version of a document issued by said first party, the system comprising:
- a) at least one network enabled client device for sending data to a network;
b) at least one biometric data input mechanism on said client device for capturing biometric data, said data input mechanism further being configured to digitally bind said captured biometric data at said client device to a document, said digital binding comprising encrypting said document using a session key generated from said biometric data, said session key being retained for subsequent decryption of said document therefrom at an instigation of said third party; and
c) an authentication server configured with storage for storing said session key, said storage making said session key available for said instigation by said third party, and enabling remote data and user authentication at said authentication server side and further configured to pass a token to said client device if said user authentication is successful, said token to enable generation of said binding in association with said authentication, said binding thereby verifying the document in a current version as coming from said first party, and reversing said binding using said session key thereby verifying to said third party that a document obtained thereby is said current version from said first party, said first party identification thereby comprising biometric identification.
1 Assignment
0 Petitions
Accused Products
Abstract
A network based mechanism for real time verification and authentication of data and user identities. The present invention enables a method whereby biometric elements, such as voice prints, are utilized to enhance the Public Key Infrastructure as a means to decrypt data and verify data authenticity, such that the user'"'"'s private key is authenticated remotely on a one-time basis. The present invention comprises an authentication server (25) with various software modules that enable authentication of user identity, secure user access to data, digital signatures, secure messaging and secure online transactions.
-
Citations
26 Claims
-
1. A system for data and user authentication using biometric means, to verify to a third party that a document purporting to be from a first party is an unaltered version of a document issued by said first party, the system comprising:
-
a) at least one network enabled client device for sending data to a network; b) at least one biometric data input mechanism on said client device for capturing biometric data, said data input mechanism further being configured to digitally bind said captured biometric data at said client device to a document, said digital binding comprising encrypting said document using a session key generated from said biometric data, said session key being retained for subsequent decryption of said document therefrom at an instigation of said third party; and c) an authentication server configured with storage for storing said session key, said storage making said session key available for said instigation by said third party, and enabling remote data and user authentication at said authentication server side and further configured to pass a token to said client device if said user authentication is successful, said token to enable generation of said binding in association with said authentication, said binding thereby verifying the document in a current version as coming from said first party, and reversing said binding using said session key thereby verifying to said third party that a document obtained thereby is said current version from said first party, said first party identification thereby comprising biometric identification. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for enhancing data and user authentication using a biometric mechanism to verify to third parties that a document purporting to be from a first party is an unaltered version of a document issued by said first party, comprising the steps of:
-
a) enabling secure biometric remote registration by at least one user; b) authenticating user identity, by an authentication server, by means of a secure data access procedure implemented from a client side device, said secure data access procedure comprising digitally binding biometric data of said biometric remote registration to a document, said digital binding comprising reversibly encrypting said document using a session key generated from said biometric data, c) storing said session key for said third parties to make authentication queries on said document; d) sending a token from said authentication server to said client side device following said data and user authentication, said token enabling said binding to be generated in association with said authentications; e) subsequently decrypting said document using said session key at the instigation of one or more of said third parties, said decrypting using said session key providing said data and user authentication, said user authentication thereby comprising biometric identification. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
Specification