Secure data verification via biometric input
First Claim
1. An apparatus that secures a transaction via biometric verification, comprising:
- a display configured to receive first input that selects a payment application in connection with a transaction;
a biometric sensor configured to receive biometric data; and
a security processor configured to compare the biometric data against a biometric template stored in non-volatile memory and to determine whether the biometric data matches the biometric template within a defined degree of similarity;
wherein the security processor is further configured to send information to the transaction terminal authorizing completion of the transaction in response to a determination that the biometric data matches the biometric template within the defined degree of similarity and if the apparatus is placed within a defined distance from the transaction terminal; and
wherein the security processor is further configured to cancel the transaction if the apparatus is not placed within the defined distance within a defined time limit after the determination that the biometric data matches the biometric template within the defined degree of similarity.
8 Assignments
0 Petitions
Accused Products
Abstract
An architecture is presented that controls access to secure data via biometric verification. The system comprises a memory module that communicates with biometric data to establish a heightened level of security for controlling access to data stored in the non-volatile memory. The memory module includes a security processor, non-volatile memory, and volatile memory. The security processor provides for concurrent processing of security protocols, provides a secure execution environment within the memory module to evaluate and store biometric data, communicates with the biometric data sensors to fetch the biometric data, and analyzes the biometric data to control access to data stored in the non-volatile memory. Specifically, biometric data is input and communicated to the security processor, then compared against the existing biometric templates stored in the non-volatile memory. If the data matches, verification is sent to the external processor and the user is granted access to the secure assets.
-
Citations
23 Claims
-
1. An apparatus that secures a transaction via biometric verification, comprising:
-
a display configured to receive first input that selects a payment application in connection with a transaction; a biometric sensor configured to receive biometric data; and a security processor configured to compare the biometric data against a biometric template stored in non-volatile memory and to determine whether the biometric data matches the biometric template within a defined degree of similarity; wherein the security processor is further configured to send information to the transaction terminal authorizing completion of the transaction in response to a determination that the biometric data matches the biometric template within the defined degree of similarity and if the apparatus is placed within a defined distance from the transaction terminal; and wherein the security processor is further configured to cancel the transaction if the apparatus is not placed within the defined distance within a defined time limit after the determination that the biometric data matches the biometric template within the defined degree of similarity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 13, 14, 15)
-
- 9. The system of apparatus 8, wherein the security software is configured to identify points of data of the biometric data as match points, and to store the match points as a template for use by the security processor to authenticate subsequent biometric data.
-
16. A method of controlling access to secure data via biometric verification, comprising:
-
selecting a payment application for conducting a payment transaction via a mobile device; inputting biometric data into the mobile device; converting the biometric data into specified match points; processing the match points into a numeric value; comparing the numeric value against a biometric template stored in a non-volatile memory of the mobile device; and if the comparing determines that the numerical value matches the biometric template within a defined tolerance; initiating a timer having a defined timeout value; in response to determining that the mobile device is located within a defined range of a transaction terminal before the timer has reached the defined timeout value; sending an indication from the mobile device to the transaction terminal validating the payment transaction, and in response to determining that the mobile device has not been located within the defined range before the timer has reached the defined timeout value; cancelling the payment transaction. - View Dependent Claims (17, 18, 19, 20)
-
-
21. A method of controlling access to account information via biometric data, comprising:
-
selecting a payment application on a mobile device in connection with a purchase transaction; selecting an account to use for the purchase transaction, wherein information regarding the account is stored in a first secure partition of a non-volatile memory of the mobile device that is divided into multiple secure partitions; receiving biometric data at the mobile device; confirming that the biometric data matches a biometric template stored in a second secure partition of the non-volatile memory; initiating a timer in response to the confirming; determining that the mobile device has been placed within range of a transaction terminal before the timer reaches a defined timeout value; transmitting a validation output to a transaction terminal authorizing the purchase transaction in response to the determining; and cancelling the purchase transaction in response to determining that the mobile device has not been placed within range of the transaction terminal before the timer reaches the defined timeout value. - View Dependent Claims (22, 23)
-
Specification