Personal digital key differentiation for secure transactions
First Claim
1. A method for differentiating between a first personal digital key (PDK) and a second PDK within a proximity zone of an external device, comprising:
- using a computer to execute method steps, the steps comprising;
obtaining a first differentiation metric associated with the first PDK after it enters the proximity zone, wherein the first differentiation metric is based on a distance metric that measures a distance greater than zero from the PDK to the external device or a detection duration metric that measures a time duration greater than zero once the PDK enters the proximity zone;
obtaining a second differentiation metric associated with the second PDK after it enters the proximity zone while the first PDK is present in the proximity zone, wherein the second differentiation metric is based on the distance metric or the detection duration metric;
comparing the first differentiation metric to the second differentiation metric;
determining that the first PDK is associated with a transaction based on the comparison of the first differentiation metric and the second differentiation metric;
responsive to determining that the first PDK is associated with the transaction, executing an authentication test for the first PDK; and
authorizing the transaction responsive to the first PDK satisfying the authentication test.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method provide efficient, secure, and highly reliable authentication for transaction processing and/or access control applications. A Personal Digital Key is a portable device carried by an individual that stores one or more profiles (e.g., a biometric profile) in a tamper-proof memory. When multiple PDKs are present at the point of the transaction, the system automatically determines which PDK to associate with the authentication and transaction processes. The differentiation decision is based on one or more differentiation metrics including distance information, location information, and detection duration information associated with each of the PDKs within range. Profile samples comprising subsets of the profile information are received to provide a quick correlation between a PDK an input sample (e.g., a subset of a biometric input). After determining which PDK should be associated with the transaction, a full authentication process is executed.
-
Citations
32 Claims
-
1. A method for differentiating between a first personal digital key (PDK) and a second PDK within a proximity zone of an external device, comprising:
using a computer to execute method steps, the steps comprising; obtaining a first differentiation metric associated with the first PDK after it enters the proximity zone, wherein the first differentiation metric is based on a distance metric that measures a distance greater than zero from the PDK to the external device or a detection duration metric that measures a time duration greater than zero once the PDK enters the proximity zone; obtaining a second differentiation metric associated with the second PDK after it enters the proximity zone while the first PDK is present in the proximity zone, wherein the second differentiation metric is based on the distance metric or the detection duration metric; comparing the first differentiation metric to the second differentiation metric; determining that the first PDK is associated with a transaction based on the comparison of the first differentiation metric and the second differentiation metric; responsive to determining that the first PDK is associated with the transaction, executing an authentication test for the first PDK; and authorizing the transaction responsive to the first PDK satisfying the authentication test. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 31, 32)
-
11. An apparatus for differentiating between a first personal digital key (PDK) and a second PDK within a proximity zone, comprising:
-
a receiver/decoder circuit adapted to obtain a first differentiation metric associated with the first PDK when the first PDK enters the proximity zone and to obtain a second differentiation metric associated with the second PDK when the second PDK enters the proximity zone while the first PDK is present in the proximity zone, wherein the first differentiation metric and the second differentiation metric are based on a distance metric that measures a distance greater than zero from the PDK to the external device or a detection duration metric that measures a time duration greater than zero once the PDK enters the proximity zone; and a processor coupled to the receiver decoder circuit, the processor for comparing the first differentiation metric to the second differentiation metric, determining that the first PDK is associated with a transaction based on the comparison of the first differentiation metric and the second differentiation metric, executing an authentication test for the first PDK responsive to determining that the first PDK is associated with the transaction, and authorizing the transaction responsive to the first PDK satisfying the authentication test. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A computer readable storage medium for differentiating between a plurality of personal digital keys (PDKs) within a proximity zone of an external device, structured to store instructions executable by a processing system, the instructions when executed cause the processing system to:
-
obtain a first differentiation metric associated with the first PDK after it enters the proximity zone, wherein the first differentiation metric is based on a distance metric that measures a distance greater than zero from the PDK to the external device or a detection duration metric that measures a time duration greater than zero once the PDK enters the proximity zone; obtain a second differentiation metric associated with the second PDK after it enters the proximity zone while the first PDK is present in the proximity zone, wherein the second differentiation metric is based on the distance metric or the detection duration metric; compare the first differentiation metric to the second differentiation metric; determine that the first PDK is associated with a transaction based on the comparison of the first differentiation metric and the second differentiation metric; responsive to the first PDK being associated with the transaction, execute an authentication test for the first PDK; and authorize the transaction responsive to the first PDK satisfying the authentication test. - View Dependent Claims (23, 24, 25, 26)
-
-
27. A computer implemented method for differentiating between a first personal digital key (PDK) and a second PDK within a proximity zone of an external device, comprising:
-
obtaining a first differentiation metric associated with the first PDK after it enters the proximity zone, wherein the first differentiation metric is based on a first location metric that tracks a motion of the PDK towards the external device and the first location metric is determined using coordinate triangulation; obtaining a second differentiation metric associated with the second PDK after it enters the proximity zone while the first PDK is present in the proximity zone, wherein the second differentiation metric is based on a second location metric and the second location metric is determined using coordinate triangulation; computing a differentiation decision based on the first differentiation metric and the second differentiation metric; determining that the first PDK is associated with a transaction within the proximity zone based on the differentiation decision; responsive to the first PDK being associated with the transaction, executing an authentication test for the first PDK; and authorizing the transaction responsive to the first PDK satisfying the authentication test. - View Dependent Claims (28, 29, 30)
-
Specification