Secure method and apparatus to verify personal identity over a network
First Claim
Patent Images
1. A system for on-demand authentication of a user as an owner of an avatar interacting in a virtual world environment, said system comprising:
- means for issuing, from a first computing device, a temporary challenge to the user interacting in said virtual world environment at a second computing device, said temporary challenge issued with limited time life for authenticating the user, and said temporary challenge being encrypted with a public key of said user, said public key employed as part of a public key encryption algorithm;
means for receiving, at said second computing device, said temporary challenge with limited time life, said second computing device having a memory storage device including a protected memory storing a private key of the user;
means for decrypting said received temporary challenge with said private key;
means for capturing biometric information of the user in response to the received temporary challenge from the first computing device;
means for hashing the biometric information at said second computing device;
means for encrypting the hash of the captured biometric information concatenated with the received challenge as an encrypted response, said encrypting means employing said stored private user key of the user;
means for returning the encrypted response to the first computing device; and
means for authenticating the user at said first computing device by processing the encrypted challenge within a limited amount of time.
1 Assignment
0 Petitions
Accused Products
Abstract
The present application provides an apparatus and method for verifying a user, via captured biometric characteristics of the user, who is interacting online. The captured biometrics are guaranteed to be captured in real-time, and avoids the possibility of providing biometrics that were previously captured, by sending to the user a time-sensitive challenge and requiring the user to provide the requested biometric information within a predetermined time period. Therefore, the present invention is best positioned for environments where trusted identification of a user is needed online to facilitate secure transactions.
46 Citations
12 Claims
-
1. A system for on-demand authentication of a user as an owner of an avatar interacting in a virtual world environment, said system comprising:
-
means for issuing, from a first computing device, a temporary challenge to the user interacting in said virtual world environment at a second computing device, said temporary challenge issued with limited time life for authenticating the user, and said temporary challenge being encrypted with a public key of said user, said public key employed as part of a public key encryption algorithm; means for receiving, at said second computing device, said temporary challenge with limited time life, said second computing device having a memory storage device including a protected memory storing a private key of the user; means for decrypting said received temporary challenge with said private key; means for capturing biometric information of the user in response to the received temporary challenge from the first computing device; means for hashing the biometric information at said second computing device; means for encrypting the hash of the captured biometric information concatenated with the received challenge as an encrypted response, said encrypting means employing said stored private user key of the user; means for returning the encrypted response to the first computing device; and means for authenticating the user at said first computing device by processing the encrypted challenge within a limited amount of time. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for on-demand authentication of a user as an owner of an avatar interacting in a virtual world environment, said method comprising:
-
issuing, from a first computing device, a temporary challenge to the user interacting in said virtual world environment at a second computing device, said temporary challenge issued with limited time life for authenticating the user, and said temporary challenge being encrypted with a public key of said user, said public key employed as part of a public key encryption algorithm; receiving, at said second computing device, said temporary challenge with limited time life, said second computing device having a memory storage device including a protected memory storing a private key of the user; decrypting said received temporary challenge with said private key; capturing, at the user device, biometric information of the user in response to the received temporary challenge; hashing the biometric information at said second computing device; encrypting, using said stored private user key of the user, the hash of the captured biometric information concatenated with the received temporary challenge as an encrypted response; returning the encrypted response to the first computing device; and authenticating the user at said first computing device by processing the encrypted challenge within a limited amount of time. - View Dependent Claims (8, 9, 10, 11, 12)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeInternational Business Machines Corporation
-
Original AssigneeInternational Business Machines Corporation
-
InventorsBauchot, Frederic, Marmigere, Gerard, Truntschka, Carole, Tressols, Florence
-
Primary Examiner(s)Cervetti, David Garcia
-
Application NumberUS12/615,838Publication NumberTime in Patent Office1,232 DaysField of Search382/282, 380/282, 713/168, 713/186, 713/189, 713/176, 726/15, 726/4, 726/7US Class Current380/282CPC Class CodesG06F 21/32 using biometric data, e.g. ...H04L 2209/56 Financial cryptography, e.g...H04L 9/321 involving a third party or ...H04L 9/3231 Biological data, e.g. finge...H04L 9/3263 involving certificates, e.g...H04L 9/3271 using challenge-response
