Methods for secure enrollment of personal identity credentials into electronic devices

US 8,127,143 B2
Filed: 08/12/2008
Issued: 02/28/2012
Est. Priority Date: 08/06/2002
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

verifying, at a personal identification device, a validity of an enrollment authority based on an encrypted verification string associated with the enrollment authority, the verifying including comparing a decrypted verification string and an unencrypted verification string such that the validity of the enrollment authority is verified when the decrypted verification string matches the unencrypted verification string, the decrypted verification string being produced by the personal identification device based on the encrypted verification string and a public key associated with the enrollment authority;

sending from the personal identification device an encrypted session key to the enrollment authority when the validity of the enrollment authority is verified;

downloading, at the personal identification device, biometric data encrypted using the encrypted session key after the sending and when the validity of the enrollment authority is verified; and

storing, only at the personal identification device, the biometric data after the receiving such that the biometric data is prevented from being transmitted from the personal identification device after the storing.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for securely enrolling personal identity credentials into personal identification devices. The system of the invention comprises the manufacturer of the device and an enrollment authority. The manufacturer is responsible for recording serial numbers or another unique identifier for each device that it produces, along with a self-generated public key for each device. The enrollment authority is recognized by the manufacturer or another suitable institution as capable of validating an individual before enrolling him into the device. The enrollment authority maintains and operates the appropriate equipment for enrollment, and provides its approval of the enrollment. The methods described herein discuss post-manufacturing, enrollment, backup, and recovery processes for the device.

295 Citations

24 Claims

1. A method, comprising:
- verifying, at a personal identification device, a validity of an enrollment authority based on an encrypted verification string associated with the enrollment authority, the verifying including comparing a decrypted verification string and an unencrypted verification string such that the validity of the enrollment authority is verified when the decrypted verification string matches the unencrypted verification string, the decrypted verification string being produced by the personal identification device based on the encrypted verification string and a public key associated with the enrollment authority;
  
  sending from the personal identification device an encrypted session key to the enrollment authority when the validity of the enrollment authority is verified;
  
  downloading, at the personal identification device, biometric data encrypted using the encrypted session key after the sending and when the validity of the enrollment authority is verified; and
  
  storing, only at the personal identification device, the biometric data after the receiving such that the biometric data is prevented from being transmitted from the personal identification device after the storing.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, further comprising:
    - before the verifying, receiving a digital certificate uniquely associated with the enrollment authority, the digital certificate including a public key of the enrollment authority, the verifying being based on the digital certificate.
  - 3. The method of claim 1, further comprising:
    - before the verifying, sending the unencrypted verification string from the personal identification device to the enrollment authority.
  - 4. The method of claim 1, further comprising:
    - before the verifying, receiving at the personal identification device the encrypted verification string from the enrollment authority, the encrypted verification string being produced by the enrollment authority based on the unencrypted verification string sent from the personal identification device and a private key uniquely associated with the enrollment authority.
  - 5. The method of claim 1, further comprising:
    - before the verifying, decrypting the encrypted verification string based on a public key associated with the enrollment authority.
  - 6. The method of claim 1, wherein:
    - the encrypted verification string being produced by the enrollment authority based on the unencrypted verification string sent by the personal identification device and a private key uniquely associated with the enrollment authority.
  - 7. The method of claim 1, further comprising:
    - sending a digital certificate associated with the personal identification device from the personal identification device to the enrollment authority, the digital certificate including a public key associated with the personal identification device;
      
      receiving, at the personal identification device, a device verification string from the party enrollment authority;
      
      encrypting the device verification string based on a private key uniquely associated with the personal identification device to produce an encrypted device verification string; and
      
      sending the encrypted device verification string from the personal identification device to the enrollment authority.

8. A method, comprising:
- verifying, at an enrollment authority, a validity of a personal identification device based on an encrypted verification string associated with the personal identification device, the verifying including comparing a decrypted string and a device verification string such that the validity of the personal identification device is verified when the decrypted string matches the device verification string;
  
  receiving, at the enrollment authority, an encrypted session key from the personal identification device; and
  
  sending, from the enrollment authority, a signal configured to permit the personal identification device to download biometric data encrypted using the encrypted session key after the validity of the personal identification device is verified such that the biometric data is stored only at the personal identification device and prevented from being transmitted from the personal identification device.
- View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16)
- - 9. The method of claim 8, further comprising:
    - before the verifying, receiving a digital certificate uniquely associated with the personal identification device, the digital certificate including a public key of the personal identification device, the verifying being based on the digital certificate.
  - 10. The method of claim 8, further comprising:
    - before the verifying, sending the device verification string from the enrollment authority to the personal identification device, the encrypted string being based on the device verification string.
  - 11. The method of claim 8, further comprising:
    - before the verifying, receiving at the enrollment authority the encrypted string from the personal identification device, the encrypted string being produced by the personal identification device based on a device verification string sent by the enrollment authority and a private key uniquely associated with the personal identification device.
  - 12. The method of claim 8, further comprising:
    - before the verifying, decrypting the encrypted string based on the encrypted string and a public key associated with the personal identification device to produce a decrypted string, the verifying being based on the decrypted string.
  - 13. The method of claim 8, wherein:
    - the decrypted string being produced by the enrollment authority based on the encrypted string and a public key associated with the personal identification device, the encrypted string being produced by the personal identification device based on a device verification string sent by the enrollment authority and a private key uniquely associated with the personal identification device.
  - 14. The method of claim 8, further comprising:
    - after the sending, sending biometric data from the enrollment authority to the personal identification device based on the encrypted session key.
  - 15. The method of claim 8, further comprising:
    - receiving, from the personal identification device, a digital certificate associated with a manufacturer of the personal identification device; and
      
      verifying a validity of the manufacturer based on the digital certificate associated with the manufacturer.
  - 16. The method of claim 8, further comprising:
    - sending a digital certificate associated with the enrollment authority from the enrollment authority to the personal identification device, the digital certificate including a public key associated with the enrollment authority;
      
      receiving at the enrollment authority an enrollment authority verification string from the personal identification device;
      
      encrypting the enrollment authority verification string based on a private key uniquely associated with the enrollment authority to produce an encrypted enrollment authority verification string; and
      
      sending the encrypted enrollment authority verification string from the enrollment authority to the personal identification device.

17. An apparatus, comprising:
- a memory configured to store biometric data of a user;
  
  a processor coupled to the memory, the processor configured to verify a validity of an enrollment authority based on an encrypted string associated with the enrollment authority and a digital certificate uniquely associated with the enrollment authority;
  
  the processor configured to compare a decrypted string and an enrollment authority verification string such that the validity of the enrollment authority is verified when the decrypted string matches the enrollment authority verification string;
  
  a biometric sensor coupled to the processor, the biometric sensor configured to receive biometric data from the user;
  
  a transmitter coupled to the processor, the processor configured to send an encrypted session key to the enrollment authority via the transmitter when the validity of the enrollment authority is verified; and
  
  a receiver coupled to the processor, the receiver configured to receive the digital certificate uniquely associated with the enrollment authority, the digital certificate including a public key of the enrollment authority, the processor configured to download and store the biometric data when the validity of the enrollment authority is verified, the receiver configured to store the biometric data such that such that the biometric data is prevented from being transmitted by the transmitter after the storing.
- View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
- - 18. The apparatus of claim 17, wherein:
    - the processor is configured to send the enrollment authority verification string to the party via the transmitter, the enrollment authority verification string being associated with the encrypted string.
  - 19. The apparatus of claim 17, wherein:
    - the receiver is configured to receive the encrypted string from the enrollment authority, the encrypted string being produced by the enrollment authority based on the enrollment authority verification string sent by the apparatus and a private key uniquely associated with the party enrollment authority.
  - 20. The apparatus of claim 17, wherein:
    - the processor configured to produce the decrypted string based on the encrypted string and a public key associated with the enrollment authority, the processor configured to send the enrollment authority verification string via the transmitter, the encrypted string being produced by the enrollment authority based on the enrollment authority verification string and a private key uniquely associated with the enrollment authority.
  - 21. The apparatus of claim 17, wherein:
    - the processor is configured to produce a session key, the processor configured to encrypt the session key to produce the encrypted session key.
  - 22. The apparatus of claim 17, wherein the processor is configured to send the encrypted session key to the enrollment authority via the transmitter such that the enrollment authority securely sends biometric data based on the encrypted session key.
  - 23. The apparatus of claim 17, wherein:
    - the processor is configured to send a digital certificate associated with a manufacturer of the apparatus to the enrollment authority via the transmitter such that a validity of the digital certificate associated with the manufacturer can be verified.
  - 24. The apparatus of claim 17, wherein:
    - the receiver is configured to receive a device verification string from the enrollment authority,the processor being configured to encrypt the device verification string based on a private key uniquely associated with the apparatus to produce an encrypted device verification string, the processor being configured to send the encrypted device verification string to the enrollment authority via the transmitter.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Privaris, Inc.
Inventors
Abdallah, David S., Johnson, Barry W.
Primary Examiner(s)
Gergiso, Techane

Application Number

US12/190,058
Publication Number

US 20090031140A1
Time in Patent Office

1,295 Days
Field of Search

713/182, 713/186, 726/16, 726/5, 382/115, 340/5.82
US Class Current

713/186
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06Q 20/40145   Biometric identity checks

G06V 40/10   Human or animal bodies, e.g...

H04L 63/06   for supporting key manageme...

H04L 63/0861   using biometrical features,...

H04L 9/0894   Escrow, recovery or storing...

H04L 9/30   Public key, i.e. encryption...

H04L 9/3231   Biological data, e.g. finge...

H04L 9/3247   involving digital signatures

H04L 9/3263   involving certificates, e.g...

Methods for secure enrollment of personal identity credentials into electronic devices

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

295 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Methods for secure enrollment of personal identity credentials into electronic devices

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

295 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links