System, method and program product for communicating a privacy policy associated with a biometric reference template
First Claim
1. A method for communicating a privacy policy associated with a biometric reference template, said method comprising:
- assigning in a first attribute a first identifier, said first identifier uniquely identifying a biometric reference template created for a type of biometric data collected, said biometric reference template comprising the biometric data, said biometric data being a digital form of a biometric sample collected from a part of an individual'"'"'s body, said assigning the first identifier being performed by a processor of a computer system;
said processor defining in a second attribute a second identifier, said second identifier uniquely identifying a privacy policy that indicates a level of protection to be provided by a relying party requesting access to said biometric reference template, said second identifier including an accept-reject provision for said privacy policy for controlling proper use and handling of said biometric data;
said processor cryptographically binding said biometric reference template to said privacy policy; and
said processor transmitting, responsive to a request received from said relying party, said second identifier along with an accept-reject provision for said privacy policy associated with said biometric reference template for controlling said proper use and handling of said biometric data, wherein based on a response received from said relying party to said accept-reject provision for said privacy policy, said biometric reference template is either transmitted or not transmitted to said relying.
1 Assignment
0 Petitions
Accused Products
Abstract
A system, method and program product for communicating a privacy policy associated with a reference template. The method includes assigning a first identifier for identifying a reference template created from biometric data collected, defining a second identifier for identifying a privacy policy that indicates a level of protection to be provided by a relying party requesting access to the reference template, the second identifier including an accept-reject provision for controlling the proper use and handling of the biometric data, cryptographically binding the reference template to the privacy policy and transmitting, responsive to a request received from the relying party, the accept-reject provision for the reference template, where based on a response received from the relying party to the accept-reject provision for the privacy policy, the reference template is either transmitted or not transmitted to the relying party.
93 Citations
25 Claims
-
1. A method for communicating a privacy policy associated with a biometric reference template, said method comprising:
-
assigning in a first attribute a first identifier, said first identifier uniquely identifying a biometric reference template created for a type of biometric data collected, said biometric reference template comprising the biometric data, said biometric data being a digital form of a biometric sample collected from a part of an individual'"'"'s body, said assigning the first identifier being performed by a processor of a computer system; said processor defining in a second attribute a second identifier, said second identifier uniquely identifying a privacy policy that indicates a level of protection to be provided by a relying party requesting access to said biometric reference template, said second identifier including an accept-reject provision for said privacy policy for controlling proper use and handling of said biometric data; said processor cryptographically binding said biometric reference template to said privacy policy; and said processor transmitting, responsive to a request received from said relying party, said second identifier along with an accept-reject provision for said privacy policy associated with said biometric reference template for controlling said proper use and handling of said biometric data, wherein based on a response received from said relying party to said accept-reject provision for said privacy policy, said biometric reference template is either transmitted or not transmitted to said relying. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A process for deploying computing infrastructure comprising integrating computer-readable program code into a computer system, wherein said program code in combination with said computer system is capable of performing a process for controlling dissemination and use of biometric data, said program code being stored in a computer readable hardware storage device of the computer system, said process comprising:
-
assigning in a first attribute a first identifier, said first identifier uniquely identifying a biometric reference template created for a type of biometric data collected, said biometric reference template comprising the biometric data, said biometric data being a digital form of a biometric sample collected from a part of an individual'"'"'s body, said assigning the first identifier being performed by a processor of a computer system; said processor defining in a second attribute a second identifier, said second identifier uniquely identifying a privacy policy that indicates a level of protection to be provided by a relying party requesting access to said biometric reference template, said second identifier including an accept-reject provision for said privacy policy for controlling proper use and handling of said biometric data; said processor cryptographically binding said biometric reference template to said privacy policy; and said processor transmitting, responsive to a request received from said relying party, said second identifier along with an accept-reject provision for said privacy policy associated with said biometric reference template for controlling said proper use and handling of said biometric data, wherein based on a response received from said relying party to said accept-reject provision for said privacy policy, said biometric reference template is either transmitted or not transmitted to said relying party. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A computer system comprising a processor, a memory coupled to the processor, and a computer readable hardware storage device coupled to the processor, said storage device containing program code configured to be executed by the processor via the memory to implement a method for associating a biometric reference template with a privacy policy, said method comprising:
-
said processor assigning in a first attribute a first identifier, said first identifier uniquely identifying a biometric reference template created for a type of biometric data collected, said biometric reference template comprising the biometric data, said biometric data being a digital form of a biometric sample collected from a part of an individual'"'"'s body; said processor defining in a second attribute a second identifier, said second identifier uniquely identifying a privacy policy that indicates a level of protection to be provided by a relying party requesting access to said biometric reference template, said second identifier including an accept-reject provision for said privacy policy for controlling proper use and handling of said biometric data; said processor cryptographically binding said biometric reference template to said privacy policy; and said processor transmitting, responsive to a request received from said relying party, said second identifier along with an accept-reject provision for said privacy policy associated with said biometric reference template for controlling said proper use and handling of said biometric data, wherein based on a response received from said relying party to said accept-reject provision for said privacy policy, said biometric reference template is either transmitted or not transmitted to said relying party. - View Dependent Claims (15, 16, 17, 18, 19)
-
-
20. A computer program product, comprising a computer readable hardware storage device having a computer readable program code stored therein, said program code configured to be executed by a processor of a computer system to implement a method for controlling dissemination and use of biometric data, said method comprising:
-
said processor assigning in a first attribute a first identifier, said first identifier uniquely identifying a biometric reference template created for a type of biometric data collected, said biometric reference template comprising the biometric data, said biometric data being a digital form of a biometric sample collected from a part of an individual'"'"'s body; said processor defining in a second attribute a second identifier, said second identifier uniquely identifying a privacy policy that indicates a level of protection to be provided by a relying party requesting access to said biometric reference template, said second identifier including an accept-reject provision for said privacy policy for controlling proper use and handling of said biometric data; said processor cryptographically binding said biometric reference template to said privacy policy; and said processor transmitting, responsive to a request received from said relying party, said second identifier along with an accept-reject provision for said privacy policy associated with said biometric reference template for controlling said proper use and handling of said biometric data, wherein based on a response received from said relying party to said accept-reject provision for said privacy policy, said biometric reference template is either transmitted or not transmitted to said relying party. - View Dependent Claims (21, 22, 23, 24, 25)
-
Specification