In-circuit security system and methods for controlling access to and use of sensitive data
First Claim
1. A non-transitory processor-readable medium storing code representing instructions to cause a processor to perform a process, the code comprising code to:
- send a signal configured to prompt a user of an electronic device to provide a personal identity credential sample upon access request, the electronic device having an in-circuit security system on a single integrated circuit that includes the processor;
receive an authentication signal from an identity credential verification subsystem of the in-circuit security system when a processor of the identity credential verification subsystem matches the personal identity credential sample to at least one enrolled personal identity credential associated with the electronic device, the single integrated circuit including the processor of the identity credential verification subsystem;
identify at least one security privilege associated with the personal identity credential sample in response to the authentication signal being received, the at least one security privilege stored within a memory of the in-circuit security system; and
send a signal indicating that access is granted when the at least one security privilege provides access authorization and a security setting of the in-circuit security system allows the requested access.
4 Assignments
0 Petitions
Accused Products
Abstract
The invention disclosed herein is an in-circuit security system for electronic devices. The in-circuit security system incorporates identity credential verification, secure data and instruction storage, and secure data transmission capabilities. It comprises a single semiconductor chip, and is secured using industry-established mechanisms for preventing information tampering or eavesdropping, such as the addition of oxygen reactive layers. This invention also incorporates means for establishing security settings, profiles, and responses for the in-circuit security system and enrolled individuals. The in-circuit security system can be used in a variety of electronic devices, including handheld computers, secure facility keys, vehicle operation/ignition systems, and digital rights management.
160 Citations
21 Claims
-
1. A non-transitory processor-readable medium storing code representing instructions to cause a processor to perform a process, the code comprising code to:
-
send a signal configured to prompt a user of an electronic device to provide a personal identity credential sample upon access request, the electronic device having an in-circuit security system on a single integrated circuit that includes the processor; receive an authentication signal from an identity credential verification subsystem of the in-circuit security system when a processor of the identity credential verification subsystem matches the personal identity credential sample to at least one enrolled personal identity credential associated with the electronic device, the single integrated circuit including the processor of the identity credential verification subsystem; identify at least one security privilege associated with the personal identity credential sample in response to the authentication signal being received, the at least one security privilege stored within a memory of the in-circuit security system; and send a signal indicating that access is granted when the at least one security privilege provides access authorization and a security setting of the in-circuit security system allows the requested access. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method, comprising:
-
disabling a portion of a single integrated circuit of an electronic device, the portion of the single integrated circuit being associated with functionality of the single integrated circuit not used during operation of an identity credential verification subsystem of the single integrated circuit; identifying, at the identity credential verification subsystem, a user of the electronic device based on an identity credential; verifying the user of the electronic device based on a security privilege associated with the identity credential; enabling the portion of the single integrated circuit when the user is identified based on the identity credential associated with the user and verified based on the security privilege associated with the identity credential; and storing data generated by a real-time clock of the single integrated circuit when the portion of the single integrated circuit is enabled and the real-time clock is connected to a power source included on the single integrated circuit. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
-
-
15. A method, comprising:
-
producing, at a single integrated circuit of an electronic device, a biometric template based on a biometric input of a user; authenticating, at an identity verification subsystem of the single integrated circuit, the biometric template of the user based on a pre-enrolled biometric template stored at the electronic device; and disconnecting a power source on the single integrated circuit from a real-time clock on the single integrated circuit when a processor of the single integrated circuit denies access for a predetermined number of access attempts within a predetermined period of time based on the authenticating at the identity verification subsystem. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification