System, device and method for securing a user device component by authenticating the user of a biometric sensor by performance of a replication of a portion of an authentication process performed at a remote computing device
First Claim
1. A method comprising:
- sensing a biometric object of a user using a biometric object sensor;
transmitting sensed biometric object data corresponding to the sensed biometric object to a separate host separate from the biometric object sensor, configured to perform a plurality of authentication steps to authenticate the user as being identified from the sensed biometric object data; and
validating at least one result of at least one and less than all of the plurality of authentication steps, by the biometric object sensor utilizing at least part of and less than all of the biometric object data utilized by the separate host in performing the at least one of the plurality of authentication steps, received by the biometric object sensor from the separate host;
wherein the at least one and less than all of the plurality of authentication steps includes reconstructing by the biometric object sensor a portion of the biometric image with the biometric object data;
wherein the at least one and less than all of the plurality of authentication steps further includes extracting a swipe template from the biometric image;
receiving at the biometric object sensor the extracted swipe template from the host; and
matching by the biometric object sensor the received extracted swipe template with an enrollment template to produce a first result;
wherein the at least one and less than all of the plurality of authentication steps performed by the host further includes matching the extracted swipe template with an enrollment template to produce a second result;
receiving the second result from the host;
comparing at the biometric object sensor the second result with the first result to produce a comparison result; and
releasing credentials based on the comparison result.
8 Assignments
0 Petitions
Accused Products
Abstract
A novel system, device and method of validation is provided for sensing a biometric such as a fingerprint, where biometric data corresponding to the biometric entity such as a fingerprint is then transmitted to a host configured to perform a plurality of authentication processes to authenticate the biometric data. At least one, but not all, of the plurality of authentication steps is then validated by the sensor, utilizing a portion, but not all, of the biometric data. Alternatively, a portion of the biometric data may be retained, where biometric data corresponding to the biometric is then transmitted to a host configured to perform a plurality of authentication steps to authenticate the biometric data. At least one but not all of the plurality of authentication steps is then validated by the sensor, utilizing a portion, but not all, of the biometric data.
-
Citations
35 Claims
-
1. A method comprising:
-
sensing a biometric object of a user using a biometric object sensor; transmitting sensed biometric object data corresponding to the sensed biometric object to a separate host separate from the biometric object sensor, configured to perform a plurality of authentication steps to authenticate the user as being identified from the sensed biometric object data; and validating at least one result of at least one and less than all of the plurality of authentication steps, by the biometric object sensor utilizing at least part of and less than all of the biometric object data utilized by the separate host in performing the at least one of the plurality of authentication steps, received by the biometric object sensor from the separate host; wherein the at least one and less than all of the plurality of authentication steps includes reconstructing by the biometric object sensor a portion of the biometric image with the biometric object data; wherein the at least one and less than all of the plurality of authentication steps further includes extracting a swipe template from the biometric image; receiving at the biometric object sensor the extracted swipe template from the host; and matching by the biometric object sensor the received extracted swipe template with an enrollment template to produce a first result; wherein the at least one and less than all of the plurality of authentication steps performed by the host further includes matching the extracted swipe template with an enrollment template to produce a second result; receiving the second result from the host; comparing at the biometric object sensor the second result with the first result to produce a comparison result; and releasing credentials based on the comparison result. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method comprising:
-
sensing, at a fingerprint sensor, a fingerprint of a user using the fingerprint sensor to obtain sensed fingerprint data; transmitting the sensed fingerprint data corresponding to the sensed fingerprint from the fingerprint sensor to a separate host separate from the fingerprint sensor; receiving from the separate host, authentication information relating to at least one result and not all results of the host performing at least one of a plurality of authentication steps to authenticate the user as being identified from the sensed fingerprint data; validating, at the sensor, the at least one result and not all results of the at least one of the plurality of authentication steps performed by the separate host, the fingerprint sensor utilizing the authentication information relating to the at least one result and not all results of the host performing the at least one and not all of the plurality of authentication steps; wherein the plurality of authentication steps includes reconstructing a fingerprint image with the fingerprint data; wherein the plurality of authentication steps further includes extracting a swipe template from the fingerprint image; transmitting the extracted swipe template from the host to the fingerprint sensor; wherein validating includes matching, at the fingerprint sensor, the transmitted swipe template with an enrollment template to produce a first result; wherein the plurality of authentication steps further includes matching, at the host, the swipe template with an enrollment template to produce a second result; transmitting the second result from the host to the sensor; wherein validating includes comparing, at the sensor, the second result with the first result to produce a comparison result; and releasing credentials by the sensor to the host based on the comparison result. - View Dependent Claims (9, 10)
-
-
11. A method comprising:
-
sensing, at a fingerprint sensor, a fingerprint of a user using the fingerprint sensor to obtain sensed fingerprint data; transmitting the sensed fingerprint data corresponding to the sensed fingerprint from the fingerprint sensor to a separate host separate from the fingerprint sensor; receiving from the separate host, authentication information relating to at least one result and not all results of the host performing at least one of a plurality of authentication steps to authenticate the user as being identified from the sensed fingerprint data; validating, at the sensor, the at least one result and not all results of the at least one of the plurality of authentication steps performed by the separate host, the fingerprint sensor utilizing the authentication information relating to the at least one result and not all results of the host performing the at least one and not all of the plurality of authentication steps; retaining, at the fingerprint sensor, a portion of the sensed fingerprint data; wherein the plurality of authentication steps includes reconstructing by the host a fingerprint image with the sensed fingerprint data; and transmitting the fingerprint image from the host to the sensor; wherein the validating by the sensor includes the fingerprint sensor creating a portion of the fingerprint image from the portion of the sensed fingerprint image data retained at the fingerprint sensor and verifying similarity between the portion of the fingerprint image created by the fingerprint sensor utilizing the retained portion of the sensed fingerprint data and a corresponding portion of the fingerprint image created by the host and received by the fingerprint sensor; discarding the retained sensed portion of the fingerprint data; and
retaining the portion-of the fingerprint image.
-
-
12. A method comprising:
-
sensing, at a fingerprint sensor, a fingerprint of a user using the fingerprint sensor to obtain sensed fingerprint data; transmitting the sensed fingerprint data corresponding to the sensed fingerprint from the fingerprint sensor to a separate host separate from the fingerprint sensor; receiving from the separate host, authentication information relating to at least one result and not all results of the host performing at least one of a plurality of authentication steps to authenticate the user as being identified from the sensed fingerprint data; validating, at the sensor, the at least one result and not all results of the at least one of the plurality of authentication steps performed by the separate host, the fingerprint sensor utilizing the authentication information relating to the at least one result and not all results of the host performing the at least one and not all of the plurality of authentication steps; retaining, at the sensor, a portion of the fingerprint data; wherein the plurality of authentication steps includes reconstructing by the host a fingerprint image with the fingerprint data; and transmitting the fingerprint image from the host to the sensor; wherein the validating by the sensor includes verifying similarity between a portion of the fingerprint image created by the fingerprint sensor utilizing the retained portion of the fingerprint data and a corresponding portion of the fingerprint image created by the host and received by the fingerprint sensor;
discarding the portion of the fingerprint data; and
retaining the portion-of the fingerprint image;wherein the plurality of authentication steps further includes extracting a swipe template from the fingerprint image; wherein the extracted swipe template includes a series of minutiae; transmitting the extracted swipe template from the host to the sensor; validating by the sensor includes verifying a similarity between minutiae existing in the retained portion of the fingerprint image and the series of minutiae of the swipe template; discarding the portion of the fingerprint image; and
retaining the swipe template;wherein the plurality of authentication steps further includes matching the swipe template with an enrollment template; and wherein the enrollment template is encrypted during an enrollment process, and further comprising; sending a request from the host to the sensor to decrypt the enrollment template; and sending a decrypted enrollment template from the sensor to the host. - View Dependent Claims (13, 14, 15, 16)
-
-
17. A method comprising:
-
sensing, at a fingerprint sensor, a fingerprint of a user using the fingerprint sensor to obtain sensed fingerprint data; transmitting the sensed fingerprint data corresponding to the sensed fingerprint from the fingerprint sensor to a separate host separate from the fingerprint sensor; receiving from the separate host, authentication information relating to at least one result and not all results of the host performing at least one of a plurality of authentication steps to authenticate the user as being identified from the sensed fingerprint data; validating, at the sensor, the at least one result and not all results of the at least one of the plurality of authentication steps performed by the separate host, the fingerprint sensor utilizing the authentication information relating to the at least one result and not all results of the host performing the at least one and not all of the plurality of authentication steps; retaining, at the sensor, a portion of the fingerprint data; wherein the plurality of authentication steps includes reconstructing by the host a fingerprint image with the fingerprint data; and transmitting the fingerprint image from the host to the sensor; wherein the validating by the sensor includes verifying similarity between a portion of the fingerprint image created by the fingerprint sensor utilizing the retained portion of the fingerprint data and a corresponding portion of the fingerprint image created by the host and received by the fingerprint sensor; discarding the portion of the fingerprint data; and retaining the portion of the fingerprint image; wherein the plurality of authentication steps further includes extracting a swipe template from the fingerprint image; wherein the extracted swipe template includes a series of minutiae; transmitting the extracted swipe template from the host to the sensor; validating by the sensor includes verifying a similarity between minutiae existing in the retained portion of the fingerprint image and the series of minutiae of the swipe template; discarding the portion of the fingerprint image; and
retaining the swipe template;wherein the plurality of authentication steps further includes matching the swipe template with an enrollment template; wherein the matching produces a match parameter; transmitting the extracted swipe template and the match parameter from the host to the sensor; wherein validating includes comparing by the sensor the enrollment template with the swipe template, using the match parameter. - View Dependent Claims (18, 19)
-
-
20. A method, comprising:
-
sensing, at a fingerprint image sensor, an image of a fingerprint of a user; transmitting fingerprint image data corresponding to the fingerprint image from the fingerprint image sensor to a host separate from the fingerprint image sensor; receiving from the host, authentication information resulting from the host performing at least one and not all of a plurality of authentication steps to authenticate the user as being identified by the fingerprint image data, wherein the plurality of authentication steps include; reconstructing a fingerprint image with the fingerprint image data; extracting a first swipe template from the fingerprint image; matching by the host, utilizing an application matcher, the first swipe template with an enrollment template, stored at the host, to obtain a host match parameter; and receiving at the fingerprint image sensor from the host the host match parameter, the fingerprint image and the first swipe template; extracting at the fingerprint image sensor, a second swipe template from the fingerprint image; and validating, at the sensor, the authentication by the host by matching with an application matcher at the fingerprint image sensor the second swipe template with an enrollment template stored at the fingerprint image sensor to obtain a sensor match parameter and comparing the host match parameter to the sensor match parameter. - View Dependent Claims (21, 22)
-
-
23. A method, comprising:
-
sensing a fingerprint of a user; transmitting fingerprint data corresponding to the fingerprint to a host separate from the sensor, for the host to perform a plurality of authentication steps to authenticate the user as identified by the fingerprint data, wherein the plurality of authentication steps performed by the host includes; reconstructing a fingerprint image with the fingerprint data; extracting a swipe template from the fingerprint image; and matching the swipe template with an enrollment template stored at the host to produce a second result; receiving, at the sensor, the extracted swipe template from the host; and matching, at the sensor, the received extracted swipe template with an enrollment template stored at the sensor to produce a first result; receiving, at the sensor, the second result from the host; comparing, at the sensor, the second result with the first result to produce a comparison result; and releasing credentials by the sensor based on the comparison result.
-
-
24. A method comprising:
-
sensing a biometric image of a biometric of a user using a biometric image sensor; transmitting biometric data corresponding to the biometric image to a host separate from the biometric image sensor configured to perform a plurality of authentication steps to authenticate the user as being identified by the biometric data; and validating, by the sensor, at least one and not all of the plurality of authentication steps based upon authentication information received from the host relating to the results of the host performing the at least one and not all of the authentication steps; wherein the plurality of authentication steps includes reconstructing a biometric image with the biometric data; wherein the plurality of authentication steps further includes extracting a swipe template from the biometric image; wherein the plurality of authentication steps further comprises matching the extracted swipe template with an enrollment template stored at the host to produce a second result; receiving at the biometric image sensor the extracted swipe template from the host; and matching the received extracted swipe template with an enrollment template stored at the biometric image sensor to produce a first result; receiving at the biometric image sensor the second result from the host; comparing at the biometric image sensor the second result with the first result to produce a comparison result; and releasing credentials based on the comparison result. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31)
-
-
32. A system for authenticating and validating the authentication of biometric data, comprising:
-
a biometric sensor configured to; sense an image of a biometric from a user to obtain biometric data; communicate the biometric data corresponding to the image of the biometric to a host separate from the sensor; receive from the host authentication information relating to the host performing at least one and not all of a plurality of authentication steps performed by the host to authenticate the user as being identified from the biometric data; and validate at the biometric sensor the at least one and not all of the plurality of authentication steps utilizing the authentication information received from the host; wherein the plurality of authentication steps includes; reconstructing a biometric image with the biometric data; extracting an extracted swipe template from the biometric image; and matching the extracted swipe template with an enrollment template stored at the biometric sensor to produce a second result; wherein the biometric sensor is configured to; receive the extracted swipe template from the host, match the received extracted swipe template with an enrollment template stored at the biometric sensor to produce a first result, receive the second result from the host, and includes a matching unit configured to compare the second result with the first result to produce a comparison result, and is further configured to release credentials to the host based on the comparison result to the host for validation.
-
-
33. A system for authenticating and validating the authentication of biometric data, comprising:
-
a biometric sensor configured to; sense an image of a biometric from a user to obtain biometric data; communicate the biometric data corresponding to the image of the biometric to a host separate from the sensor; receive from the host authentication information relating to the host performing at least one and not all of a plurality of authentication steps performed by the host to authenticate the user as being identified from the biometric data; and validate at the biometric sensor the at least one and not all of the plurality of authentication steps utilizing the authentication information received from the host; wherein the plurality of authentication steps includes; reconstructing a biometric image with the biometric data; extracting a template from the biometric image; and matching the template with an enrollment template stored at the biometric sensor to produce a second result; wherein the extracted swipe template includes a series of minutiae; an encryption unit at the sensor configured to encrypt the enrollment template during an enrollment process; and a decryption unit configured to decrypt the enrollment template. - View Dependent Claims (34, 35)
-
Specification