Password generator

US 8,458,484 B2
Filed: 02/05/2009
Issued: 06/04/2013
Est. Priority Date: 09/12/2006
Status: Active Grant

First Claim

Patent Images

1. A system for providing secure access to a controlled software application, the system comprising:

a database of one or more biometric signatures;

a first sub-system comprising;

a biometric sensor for receiving a biometric signal associated with a user wherein each user is classified into one of a plurality of classes, each class being associated with one of a plurality of levels of access to the controlled application;

means for matching the biometric signal against members of the database of biometric signatures;

means for determining the class into which the user is classified, in an event that the biometric signal matches one of the members of the database of biometric signatures; and

means for selecting an encryption key for use in accessing the controlled application, the encryption key being selected from a plurality of predetermined encryption keys stored on said first sub-system, wherein the encryption key is selected depending on the class into which the user is classified;

means for generating a password according to an encryption process based on a dynamic input value and the selected encryption key; and

a second sub-system comprising;

means for receiving the password; and

means for providing access to the user to the controlled software application at a level of access dependent upon said password and on said class determined for the user.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system (100) for providing secure access to a controlled application is disclosed. The system (100) comprises a database (105) of one or more biometric signatures. The system (100) also comprises a first subsystem (116) comprising a biometric sensor (121) for receiving a biometric signal and means for matching the biometric signal against members of the database (105) of biometric signatures to thereby determine an authentication signal. The first subsystem (116) also comprises means for generating a password dependent upon the authentication signal, the password being generated according to an encryption process based on a dynamic input value. The system (100) also comprises a second sub-system (117) comprising means for receiving the password and means for providing access to the controlled application dependent upon the password.

20 Citations

View as Search Results

22 Claims

1. A system for providing secure access to a controlled software application, the system comprising:
- a database of one or more biometric signatures;
  
  a first sub-system comprising;
  
  a biometric sensor for receiving a biometric signal associated with a user wherein each user is classified into one of a plurality of classes, each class being associated with one of a plurality of levels of access to the controlled application;
  
  means for matching the biometric signal against members of the database of biometric signatures;
  
  means for determining the class into which the user is classified, in an event that the biometric signal matches one of the members of the database of biometric signatures; and
  
  means for selecting an encryption key for use in accessing the controlled application, the encryption key being selected from a plurality of predetermined encryption keys stored on said first sub-system, wherein the encryption key is selected depending on the class into which the user is classified;
  
  means for generating a password according to an encryption process based on a dynamic input value and the selected encryption key; and
  
  a second sub-system comprising;
  
  means for receiving the password; and
  
  means for providing access to the user to the controlled software application at a level of access dependent upon said password and on said class determined for the user.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. A system according to claim 1, wherein the controlled software application is executing on said second sub-system.
  - 3. A system according to claim 1, wherein the encryption process is a time dependent process.
  - 4. A system according to claim 1, wherein the encryption process is an event-synchronous process.
  - 5. A system according to claim 1, wherein the first sub-system further comprises means for populating the database of biometric signatures.
  - 6. A system according to claim 2, wherein the means for populating the database of biometric signatures comprises:
    - means for receiving a series of entries of the biometric signal, said series being characterised according to at least one of the number of said entries and a duration of each said entry;
      
      means for mapping said series into an instruction; and
      
      means for populating the database according to the instruction.
  - 7. A system according to claim 4, wherein the database of biometric signatures comprises signatures in at least one of a system administrator class and a system user class.
  - 8. A system according to claim 1, wherein the controlled software application is an Internet banking website.
  - 9. A system according to claim 1, wherein the biometric sensor is responsive to one of a fingerprint pattern, voice, retinal pattern, iris pattern, face pattern, vein pattern and palm configuration.
  - 10. A system according to claim 1, wherein the database of biometric signatures is located in the first sub-system.

11. A first sub-system for operating in a system for providing secure access to a controlled software application, the system comprising a database of biometric signatures, a second sub-system comprising means for receiving a password, and means for providing a user with access to the controlled software application dependent upon the password and on a class determined for the user, the first subsystem comprising:
- a biometric sensor for receiving a biometric signal associated with the user wherein each user is classified into one of a plurality of classes, each class being associated with one of a plurality of levels of access to the controlled application;
  
  means for matching the biometric signal against members of the database of biometric signatures;
  
  means for determining the class into which the user is classified, in an event that the biometric signal matches one of the members of the database of biometric signatures;
  
  means for selecting an encryption key for use in accessing the controlled application, the encryption key being selected from a plurality of predetermined encryption keys stored on said first sub-system, wherein the encryption key is selected depending on the class into which the user is classified; and
  
  means for generating the password according to an encryption process based on a dynamic input value and the selected encryption key.

12. A password generator for providing secure access to a controlled software application executing within a system, the system comprising a database of biometric signatures, a sub-system comprising means for receiving the password, and means for providing a user with access to the controlled software application at a level of access dependent upon the password and on a class determined for the user, said password generator comprising:
- a biometric sensor for receiving a biometric signal associated with the user, wherein each user is classified into one of a plurality of classes, each class being associated with one of a plurality of levels of access to the controlled application;
  
  a processor for executing a computer program, said computer program comprising instructions for;
  
  matching the biometric signal against members of the database of biometric signatures,determining the class into which the user is classified, in an event that the biometric signal matches one of the members of the matched database of biometric signatures,selecting an encryption key for use in accessing the controlled application, the encryption key being selected from a plurality of predetermined encryption keys stored in said password generator, wherein the encryption key is selected depending on the class into which the user is classified; and
  
  generating the password according to an encryption process based on a dynamic input value and the selected encryption key.

13. A method for providing secure access to a controlled software application using a password generator, the method comprising the steps of:
- receiving a biometric signal associated with a user wherein each user is classified into one of a plurality of classes, each class being associated with one of a plurality of levels of access to the controlled application;
  
  matching the biometric signal against members of a database of biometric signatures;
  
  determining the class into which the user is classified, in an event that the biometric signal matches one of the members of the database of biometric signatures;
  
  selecting an encryption key for use in accessing the controlled application, the encryption key being selected from a plurality of predetermined encryption keys stored on said password generator, wherein the encryption key is selected depending on the class into which the user is classified;
  
  generating a password according to an encryption process based on a dynamic input value and the selected encryption key, said password being dependent on the class into which the user is classified; and
  
  providing access to the user to the controlled software application at a level of access dependent upon said password and on said class determined for the user.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. A method according to claim 13, wherein the controlled software application is executing on a server.
  - 15. A method according to claim 13, wherein the encryption process is a time dependent process.
  - 16. A method according to claim 13, wherein the encryption process is an event-synchronous process.
  - 17. A method according to claim 13, wherein the database of biometric signatures comprises signatures in at least one of a system administrator class and a system user class.
  - 18. A method according to claim 13 said method further comprising:
    - receiving a series of biometric signal entries for the user;
      
      determining the number of said signal entries received and/or a period of time for which each of said signal entries was received;
      
      mapping said series of biometric signals into an instruction, depending on the determined number and/or determined period; and
      
      populating the database according to the instruction.

19. A method of generating a password in a system for providing secure access to a user to a controlled software application, the system comprising a database of biometric signatures, a first sub-system comprising means for receiving the password generated by a second sub-system, and means for providing access to the user to the controlled software application at a level of access dependent upon the password and on a class determined for the user,said method comprising:
- receiving a biometric signal by biometric sensor associated with the user wherein each user is classified into one of a plurality of classes, each class being associated with one of a plurality of levels of access to the controlled application;
  
  matching the biometric signal against members of the database of biometric signaturesmeans for determining the class into which the user is classified, in an event that the biometric signal matches one of the members of the database of biometric signatures;
  
  means for selecting an encryption key for use in accessing the controlled application, the encryption key being selected from a plurality of predetermined encryption keys stored on said second sub-system, wherein the encryption key is selected depending on the class into which the user is classified; and
  
  generating the password according to an encryption process based on a dynamic input value and the selected encryption key.

20. A non-transitory computer readable medium having a computer program recorded therein for directing a processor to provide secure access to a controlled software application, said computer program product comprising:
- code for receiving a biometric signal associated with a user wherein each user is classified into one of a plurality of classes, each class being associated with one of a plurality of levels of access to the controlled application;
  
  code for matching the biometric signal against members of a database of biometric signatures;
  
  code for determining the class into which user is classified, in an event that the biometric signal matches one of the members of the database of biometric signatures;
  
  code for selecting an encryption key for use in accessing the controlled application, the encryption key being selected from a plurality of predetermined encryption keys, wherein the encryption key is selected depending on the class into which the user is classified;
  
  code for generating a password according to an encryption process based on a dynamic input value and the selected encryption key; and
  
  code for providing access to the user to the controlled software application dependent upon said password and on said class determined for the user.
- View Dependent Claims (21)
- - 21. A computer readable medium according to claim 20,said program comprising:
    - code for receiving a series of entries of the biometric signal;
      
      code for determining of the number of said signal entries received and/or a period of time for which each of said signal entries was received;
      
      code for mapping said series of biometric signals into an instruction depending on the determined number and/or the determined period; and
      
      code for populating the database according to the instruction.

22. A non-transitory computer readable medium having a computer program recorded therein for directing a processor to generate a password for providing secure access to a controlled software application, said computer program product comprising:
- code for receiving a biometric sensor by biometric signal associated with a user, wherein each user is classified into one of a plurality of classes, each class being associated with one of a plurality of levels of access to the controlled application;
  
  code for matching the biometric signal against members of the database of biometric signatures;
  
  code for determining the class into which the user is classified, in an event that the biometric signal matches one of the members of the database of biometric signatures;
  
  code for selecting an encryption key for use in accessing the controlled application, the encryption key being selected from a plurality of predetermined encryption keys, wherein the encryption key is selected depending on the class into which the user is classified; and
  
  code for generating the password according to an encryption process based on a dynamic input value and the selected encryption.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
CPC Patent Technologies Pty., Ltd. (Charter Pacific Corporation Limited)
Original Assignee
Microlatch Pty Ltd
Inventors
Murray, David Victor, Burke, Christopher John
Primary Examiner(s)
Chea, Philip
Assistant Examiner(s)
DOLLY, KENDALL LYNN

Application Number

US12/366,101
Publication Number

US 20090282258A1
Time in Patent Office

1,580 Days
Field of Search

713/183, 713/184, 713/185, 713/186
US Class Current

713/184
CPC Class Codes

G06F 21/31   User authentication

G06F 21/32   using biometric data, e.g. ...

G06F 21/46   by designing passwords or c...

G06F 21/6281   at program execution time, ...

G06F 21/83   input devices, e.g. keyboar...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 63/0838   using one-time-passwords

H04L 63/0861   using biometrical features,...

H04L 9/3228   One-time or temporary data,...

H04L 9/3231   Biological data, e.g. finge...

Password generator

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

20 Citations

22 Claims

Specification

Use Cases

Quick Links

Others

Password generator

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

20 Citations

22 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others