Method and system for efficient exception handling of the production process of personal identification verification (PIV) smartcards

US 7,934,102 B2
Filed: 02/27/2006
Issued: 04/26/2011
Est. Priority Date: 03/25/2005
Status: Expired due to Fees

First Claim

Patent Images

1. A method for efficient exception handling of the production process of personal identification verification (PIV) smartcards, comprising:

receiving an applicant legend from a PIV sponsor;

checking the applicant a legend submitted by a PIV sponsor;

collecting source identity documents and biometrics of the applicant;

verifying the authenticity of the source identity documents and biometrics of the applicant prior to issuing a PIV smartcard at least once through a PIV registrar and at least once through a central security clearance;

checking the biometrics by conducting a criminal background check on the applicant prior to issuing a PIV smartcard;

inputting the legend, the source identity documents, the biometrics, and security and clearance approvals into an identity management (IDM) system;

printing and issuing a PIV smartcard, that contains the biometrics of the applicant;

locking the PIV smartcard, wherein the PIV smartcard is locked after issuance;

verifying the applicant'"'"'s authenticity upon receiving the applicant'"'"'s request for access to security systems, including collecting a second biometrics for the applicant at a registration station; and

granting the applicant physical and logical access to the security systems by unlocking the PIV smartcard, wherein the PIV smartcard is unlocked after clearing with the IDM system by;

using a personal identification number (PIN) to release the biometrics on the PIV smartcard; and

using the IDM system to evaluate the second collected biometrics by comparing the second collected biometrics with the biometrics on the PIV smartcard.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system provide efficient exception handling of the production process of PIV smartcards. Specifically, an automatic personal identity verification (AutoPIV) system and process manage potential failures in identification for agencies, such as a breakdown in correct identification. The AutoPIV system and process may deny access to individuals falsely claiming to be someone with legitimate access rights. The AutoPIV system and process may also accurately identify those with legitimate access rights.

Citations

23 Claims

1. A method for efficient exception handling of the production process of personal identification verification (PIV) smartcards, comprising:
- receiving an applicant legend from a PIV sponsor;
  
  checking the applicant a legend submitted by a PIV sponsor;
  
  collecting source identity documents and biometrics of the applicant;
  
  verifying the authenticity of the source identity documents and biometrics of the applicant prior to issuing a PIV smartcard at least once through a PIV registrar and at least once through a central security clearance;
  
  checking the biometrics by conducting a criminal background check on the applicant prior to issuing a PIV smartcard;
  
  inputting the legend, the source identity documents, the biometrics, and security and clearance approvals into an identity management (IDM) system;
  
  printing and issuing a PIV smartcard, that contains the biometrics of the applicant;
  
  locking the PIV smartcard, wherein the PIV smartcard is locked after issuance;
  
  verifying the applicant'"'"'s authenticity upon receiving the applicant'"'"'s request for access to security systems, including collecting a second biometrics for the applicant at a registration station; and
  
  granting the applicant physical and logical access to the security systems by unlocking the PIV smartcard, wherein the PIV smartcard is unlocked after clearing with the IDM system by;
  
  using a personal identification number (PIN) to release the biometrics on the PIV smartcard; and
  
  using the IDM system to evaluate the second collected biometrics by comparing the second collected biometrics with the biometrics on the PIV smartcard.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, further comprising issuing private key infrastructure (PKI) certificates and signing the biometrics and the scanned documents with digital signers.
  - 3. The method of claim 1, further comprising registering the PIV smartcard with a card management system.
  - 4. The method of claim 1, further comprising creating a World-Wide Identity (WWID) for the applicant.
  - 5. The method of claim 1, further comprising managing the PIV smartcard using the IDM system.
  - 6. The method of claim 1, wherein the checking the biometrics step includes conducting a National Agency Check (NAC).
  - 7. The method of claim 1, wherein the checking the biometrics step includes conducting a National Agency Check with written Inquiries (NACI).
  - 8. The method of claim 1, wherein the verifying the applicant'"'"'s authenticity step is conducted at a PIV registration station.
  - 9. The method of claim 1, further comprising changing an access mode from smartcard sign-on to user identification (ID) and password sign-on if the applicant forgets the PIV smartcard.
  - 10. The method of claim 1, further comprising issuing a temporary PIV smartcard if the applicant forgets the PIV smartcard.

11. A system for efficient exception handling of the production process of personal identification verification (PIV) smartcards, comprising:
- a central security clearance that checks biometrics of an applicant requesting access to security systems, wherein the central security clearance checks the biometrics of the applicant by conducting a criminal background check on the applicant;
  
  an identity management (IDM) system, the IDM system collecting a legend of an applicant from a PIV sponsor and collecting source identity documents and the biometrics of the applicant from a PIV registrar, wherein the PIV registrar verifies the authenticity of the source identity documents and biometrics of the applicant,wherein the IDM communicates with the central security clearance to obtain security and clearance approvals regarding the applicant; and
  
  a network connecting the central security clearance and the IDM system,wherein the IDM system issues a PIV smartcard for the applicant after obtaining the security and clearance approvals from the central security clearance, wherein the PIV smartcard contains the biometrics of the applicant, wherein the PIV smartcard is locked after issuance, wherein the IDM system, after verifying the applicant'"'"'s authenticity at a registration station including collecting a second biometrics of the applicant, grants the applicant physical and logical access to the security systems by unlocking the PIV smartcard, wherein the PIV smartcard is unlocked after clearing with the IDM system by using a personal identification number (PIN) to release the biometrics on the PIV smartcard, and using the IDM system to evaluate the second collected biometrics by comparing the second collected biometrics with the biometrics on the PIV smartcard, and wherein the IDM system communicates with the registration station using the network.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The system of claim 11, wherein the IDM system uses a certification authority (CA) to issue private key infrastructure (PKI) certificates and to sign the biometrics and the source identity documents with digital signers.
  - 13. The system of claim 11, wherein the IDM system uses a shared service provider (SSP) to sign the biometrics and the source identity documents with digital signers.
  - 14. The system of claim 11, wherein the central security clearance checks the biometrics by conducting a National Agency Check (NAC).
  - 15. The system of claim 11, wherein the central security clearance checks the biometrics by conducting a National Agency Check with written Inquiries (NACI).
  - 16. The system of claim 11, wherein the IDM system sends a notification to the applicant to pick up the PIV smartcard.
  - 17. The system of claim 11, wherein the IDM system registers the PIV smartcard with a card management system.
  - 18. The system of claim 11, wherein the IDM system creates a World-Wide Identity (WWID) for the applicant.
  - 19. The system of claim 11, further comprising a security database for storing the biometrics and the source identity documents.

20. A non-transitory computer readable medium providing instructions stored on the non-transitory computer readable medium for efficient exception handling of the production process of personal identification verification (PIV) smartcards, the instructions comprising:
- receiving an applicant legend from a PIV sponsor;
  
  checking the applicant a legend submitted by a PIV sponsor;
  
  collecting source identity documents and biometrics of the applicant;
  
  verifying the authenticity of the source identity documents and biometrics of the applicant prior to issuing a PIV smartcard at least once through a PIV registrar and at least once through a central security clearance;
  
  checking the biometrics by conducting a criminal background check on the applicant prior to issuing a PIV smartcard;
  
  inputting the legend, the source identity documents, the biometrics, and security and clearance approvals into an identity management (IDM) system;
  
  printing and issuing a PIV smartcard, that contains the biometrics of the applicant;
  
  locking the PIV smartcard, wherein the PIV smartcard is locked after issuance;
  
  verifying the applicant'"'"'s authenticity upon receiving the applicant'"'"'s request for access to security systems, including collecting a second biometrics for the applicant at a registration station; and
  
  granting the applicant physical and logical access to the security systems by unlocking the PIV smartcard, wherein the PIV smartcard is unlocked after clearing with the IDM system by;
  
  using a personal identification number (PIN) to release the biometrics on the PIV smartcard; and
  
  using the IDM system to evaluate the second collected biometrics by comparing the second collected biometrics with the biometrics on the PIV smartcard.
- View Dependent Claims (21, 22, 23)
- - 21. The computer readable medium of claim 20, further comprising instructions for registering the PIV smartcard with a card management system.
  - 22. The computer readable medium of claim 20, further comprising instructions for creating a World-Wide Identity (WWID) for the applicant.
  - 23. The computer readable medium of claim 20, further comprising instructions for changing an access mode from smartcard sign-on to user identification (ID) and password sign-on if the applicant forgets the PIV smartcard.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Northrop Grumman Systems Corporation (Northrop Grumman Corporation)
Original Assignee
Northrop Grumman Systems Corporation (Northrop Grumman Corporation)
Inventors
Aull, Kenneth Wagner, Bowman, Erik J.
Primary Examiner(s)
Srivastava; Vivek
Assistant Examiner(s)
TRUONG, THONG P

Application Number

US11/362,207
Publication Number

US 20070074041A1
Time in Patent Office

1,884 Days
Field of Search

713/186
US Class Current

713/186
CPC Class Codes

G06Q 10/00   Administration; Management

G07C 2209/41   with means for the generati...

G07C 9/22   in combination with an iden...

G07C 9/257   electronically G07C9/26 tak...

Method and system for efficient exception handling of the production process of personal identification verification (PIV) smartcards

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for efficient exception handling of the production process of personal identification verification (PIV) smartcards

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links