Methods and systems for secured access to devices and systems

US 7,864,987 B2
Filed: 04/18/2006
Issued: 01/04/2011
Est. Priority Date: 04/18/2006
Status: Active Grant

First Claim

Patent Images

1. A method of determining user access for a user having a user role, the method comprising:

combining, using a computer, test scores for first and second non-biometric tests to meet or exceed a non-biometric confidence threshold;

receiving, using the computer, a test score for a first biometric test for the user;

making a first determination, using the computer and based at least in part on the test score for the first biometric test, that a biometric confidence threshold has not been reached;

as a result of the first determination and using the computer, presenting a second biometric test to the user;

making a second determination, using the computer and based at least in part on a combination of the test score for the first biometric test for the user and a test score for the second biometric test, whether the biometric confidence threshold has been met or exceeded; and

determining, using the computer and as a result of the second determination, a level of access based at least in part on the user role in the event both the non-biometric and biometric confidence thresholds have been met or exceeded for the user, wherein at least one of the first or second biometric tests has an associated biometric test confidence level, wherein the at least one of the first or second biometric tests has a biometric user test result, wherein an individual biometric test confidence score is a combination of the biometric test confidence level and the biometric user test result, wherein the at least one of the first or second biometric tests has a biometric test failure threshold, wherein, if the biometric user test result is below the biometric test failure threshold, the user fails the at least one of the first or second biometric tests, and wherein the biometric test failure threshold is based in part on the biometric test confidence level of a preceding biometric test.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An access system in one embodiment that first determines that someone has correct credentials by using a non-biometric authentication method such as typing in a password, presenting a Smart card containing a cryptographic secret, or having a valid digital signature. Once the credentials are authenticated, then the user must take at least two biometric tests, which can be chosen randomly. In one approach, the biometric tests need only check a template generated from the user who desires access with the stored templates matching the holder of the credentials authenticated by the non-biometric test. Access desirably will be allowed when both biometric tests are passed.

82 Citations

View as Search Results

21 Claims

1. A method of determining user access for a user having a user role, the method comprising:
- combining, using a computer, test scores for first and second non-biometric tests to meet or exceed a non-biometric confidence threshold;
  
  receiving, using the computer, a test score for a first biometric test for the user;
  
  making a first determination, using the computer and based at least in part on the test score for the first biometric test, that a biometric confidence threshold has not been reached;
  
  as a result of the first determination and using the computer, presenting a second biometric test to the user;
  
  making a second determination, using the computer and based at least in part on a combination of the test score for the first biometric test for the user and a test score for the second biometric test, whether the biometric confidence threshold has been met or exceeded; and
  
  determining, using the computer and as a result of the second determination, a level of access based at least in part on the user role in the event both the non-biometric and biometric confidence thresholds have been met or exceeded for the user, wherein at least one of the first or second biometric tests has an associated biometric test confidence level, wherein the at least one of the first or second biometric tests has a biometric user test result, wherein an individual biometric test confidence score is a combination of the biometric test confidence level and the biometric user test result, wherein the at least one of the first or second biometric tests has a biometric test failure threshold, wherein, if the biometric user test result is below the biometric test failure threshold, the user fails the at least one of the first or second biometric tests, and wherein the biometric test failure threshold is based in part on the biometric test confidence level of a preceding biometric test.
- View Dependent Claims (4, 5, 9, 14)
- - 4. The method of claim 1, the second determination comprising a determination that a biometric test limit for the user has been exceeded and a determination that the biometric confidence threshold has not been reached, the level of access comprising no access for the user.
  - 5. The method of claim 4, further comprising changing the biometric test limit.
  - 9. The method of claim 4, further comprising triggering an alarm based on the second determination.
  - 14. The method of claim 1, further comprising:
    - making a third determination, based at least in part on the test score for the first non-biometric test completed by the user, that the non-biometric confidence threshold has not been reached by the user; and
      
      as a result of the third determination and using the computer, receiving the test score for the second non-biometric test completed by the user.

2. A method of allowing user access to a user having a role, the method comprising:
- combining, using a computer, individual non-biometric scores from plural non-biometric user tests taken by the user until a non-biometric confidence threshold is met or exceeded;
  
  combining, using the computer, individual biometric test scores of plural biometric user tests taken by the user until a biometric confidence threshold is met or exceeded; and
  
  allowing, using the computer, a level of access based in part upon the user'"'"'s role in the event both the non-biometric and biometric confidence thresholds have been met or exceeded for the user, wherein at least one of the biometric user tests has an associated biometric test confidence level, wherein the at least one of the biometric user tests has a biometric user test result, wherein an individual biometric test confidence score is a combination of the biometric test confidence level and the biometric user test result, wherein the at least one of the biometric user tests has a biometric test failure threshold, wherein, if the biometric user test result is below the biometric test failure threshold, the user fails the at least one biometric user test, and wherein the biometric test failure threshold is based in part on the biometric test confidence level of a preceding biometric user test.
- View Dependent Claims (3, 6, 7, 8, 10, 11, 12, 13)
- - 3. The method of claim 2, wherein the user'"'"'s role is incrementally defined based at least in part by the incremental individual non biometric scores and the incremental individual biometric test scores.
  - 6. The method of claim 2 wherein the biometric test failure threshold is related to how many times the at least one of the biometric user tests has been taken by the user.
  - 7. The method of claim 2, wherein the user'"'"'s role is at least partially defined by at least one of the individual non-biometric scores or at least one of the individual biometric test scores.
  - 8. The method of claim 2, further comprising determining the biometric test failure threshold at least in part based upon the biometric test confidence level of at least one of the biometric user tests.
  - 10. The method of claim 2 wherein the plural non-biometric user tests are chosen from a group comprising:
    - inputting a password, inputting a Smart card containing a digital certificate or a predefined secret, possessing a contactless card containing a digital circuit, inputting a USB token device, inputting a bio-token device, using a soft-token device, and showing an ID.
  - 11. The method of claim 2 wherein the plural biometric user tests are chosen from a group comprising at least two of:
    - a fingerprint recognition test of a specific finger or thumb, a fingerprint recognition test of a different specific finger or thumb, a handprint recognition test, a face recognition test, a handwriting recognition test, a voice recognition test, an iris recognition test, an eye blinking rate test, an eyeball squint extent test, a normalized body temperature test, a keystroke dynamic test, a vein recognition test, and a DNA recognition test.
  - 12. The method of claim 2, wherein at least one of the first and second non-biometric tests comprises determining a user identity, and wherein at least one of the first and second biometric tests comprises comparing a test template generated by the user with a stored template associated with the user identity to determine the individual biometric test confidence score.
  - 13. The method of claim 2, wherein the allowing a level of access comprises at least one of allowing movement in a formerly restricted location, allowing access to a formerly restricted computer file, allowing access to a formerly restricted computer function, allowing access to at least a portion of a formerly restricted device, or allowing access to at least a portion of a formerly restricted system.

15. One or more non-transitory computer-readable storage media having encoded thereon instructions which, when executed by a computer, cause the computer to perform a method, the method comprising:
- combining, using the computer, test scores for first and second non-biometric tests to meet or exceed a non-biometric confidence threshold;
  
  receiving, using the computer, a test score for a first biometric test for the user;
  
  making a first determination, using the computer and based at least in part on the test score for the first biometric test, that a biometric confidence threshold has not been reached;
  
  as a result of the first determination and using the computer, presenting a second biometric test to the user;
  
  making a second determination, using the computer and based at least in part on a combination of the test score for the first biometric test for the user and a test score for the second biometric test, the second determination comprising whether the biometric confidence threshold has been met or exceeded; and
  
  determining, using the computer and at least partially as a result of the second determination, a level of access based at least in part on the user role in the event both the non-biometric and biometric confidence thresholds have been met or exceeded for the user, wherein at least one of the first or second biometric tests has an associated biometric test confidence level, wherein the at least one of the first or second biometric tests has a biometric user test result, wherein an individual biometric test confidence score is a combination of the biometric test confidence level and the biometric user test result, wherein the at least one of the first or second biometric tests has a biometric test failure threshold, wherein, if the biometric user test result is below the biometric test failure threshold, the user fails the at least one of the first or second biometric tests, and wherein the biometric test failure threshold is based in part on the biometric test confidence level of a preceding biometric test.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The one or more non-transitory computer-readable storage media of claim 15, the second determination comprising a determination that a biometric test limit for the user has been exceeded and a determination that the biometric confidence threshold has not been reached, the level of access comprising no access for the user.
  - 17. The one or more non-transitory computer-readable storage media of claim 15, the test score for the first biometric test being based at least in part on a biometric test confidence level of a previous biometric test.
  - 18. The one or more non-transitory computer-readable storage media of claim 15, wherein a difficulty of passing at least one of the first or second biometric tests is related to a number of times that the user has taken the at least one of the first or second biometric tests.
  - 19. The one or more non-transitory computer-readable storage media of claim 15, the method further comprising:
    - making a third determination based at least in part on the test score for the first non-biometric test completed by the user, that the non-biometric confidence threshold has not been reached by the user; and
      
      as a result of the third determination and using the computer, receiving the test score for the second non-biometric test completed by the user.
  - 20. The one or more non-transitory computer-readable storage media of claim 15, wherein at least one of the first biometric test and the second biometric test comprises comparing a test template generated by the user in response to the test with a stored template associated with the user.

21. A system, comprising:
- a processor; and
  
  one or more computer-readable storage media having encoded thereon instructions which, when executed by the processor, cause the processor to perform a method, the method comprising;
  
  combining test scores for first and second non-biometric user tests to meet or exceed a non-biometric confidence threshold;
  
  receiving a test score for a first biometric test for the user;
  
  making a first determination, based at least in part on the test score for the first biometric test, that a biometric confidence threshold has not been reached;
  
  as a result of the first determination, presenting a second biometric test to the user;
  
  making a second determination, based at least in part on a combination of the test score for the first biometric test for the user and a test score for the second biometric test, the second determination comprising whether the biometric confidence threshold has been met or exceeded; and
  
  determining, at least partially as a result of the second determination, a level of access based at least in part on the user role in the event both the non-biometric and biometric confidence thresholds have been met or exceeded for the user, wherein at least one of the first or second biometric tests has an associated biometric test confidence level, wherein the at least one of the first or second biometric tests has a biometric user test result, wherein an individual biometric test confidence score is a combination of the biometric test confidence level and the biometric user test result, wherein the at least one of the first or second biometric tests has a biometric test failure threshold, wherein, if the biometric user test result is below the biometric test failure threshold, the user fails the at least one of the first or second biometric tests, and wherein the biometric test failure threshold is based in part on the biometric test confidence level of a preceding biometric test.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Infosys Technologies Limited (Infosys Limited)
Original Assignee
Infosys Technologies Limited (Infosys Limited)
Inventors
Venkatanna, Kumar Balepur, Subrahmanya, S V, Moona, Rajat
Primary Examiner(s)
Ahmed; Samir A
Assistant Examiner(s)
Lee; John W

Application Number

US11/406,769
Publication Number

US 20070241861A1
Time in Patent Office

1,722 Days
Field of Search

None
US Class Current

382/115
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/34   involving the use of extern...

G06F 21/40   by quorum, i.e. whereby two...

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2105   Dual mode as a secondary as...

Methods and systems for secured access to devices and systems

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

82 Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and systems for secured access to devices and systems

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

82 Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links