Digital signatures for communications using text-independent speaker verification
First Claim
Patent Images
1. A method comprising, performing at an authentication service system:
- receiving an authentication session invitation request from a sender of an email, wherein the email is sent to a destination address of a recipient, and wherein the authentication session invitation comprises an email address of the sender and an invitation to create an authentication certificate for the sender and the email;
sending, to the sender, a session identification and a text-phrase prompt comprising a text phrase;
receiving, from the sender in response the text-phrase prompt, the destination address of the recipient and an audio signal;
retrieving, based on the email address of the sender, a voice template associated with the sender;
comparing the audio signal to the voice template, to yield a confidence score;
when the confidence score exceeds a threshold;
generating the authentication certificate; and
packaging the session identification with the authentication certificate, to yield authentication information;
when the confidence score does not exceed the threshold, packaging the session identification and the confidence score as the authentication information; and
transmitting the authentication information to the destination email address of the recipient.
5 Assignments
0 Petitions
Accused Products
Abstract
A speaker-verification digital signature system is disclosed that provides greater confidence in communications having digital signatures because a signing party may be prompted to speak a text-phrase that may be different for each digital signature, thus making it difficult for anyone other than the legitimate signing party to provide a valid signature.
-
Citations
17 Claims
-
1. A method comprising, performing at an authentication service system:
-
receiving an authentication session invitation request from a sender of an email, wherein the email is sent to a destination address of a recipient, and wherein the authentication session invitation comprises an email address of the sender and an invitation to create an authentication certificate for the sender and the email; sending, to the sender, a session identification and a text-phrase prompt comprising a text phrase; receiving, from the sender in response the text-phrase prompt, the destination address of the recipient and an audio signal; retrieving, based on the email address of the sender, a voice template associated with the sender; comparing the audio signal to the voice template, to yield a confidence score; when the confidence score exceeds a threshold; generating the authentication certificate; and packaging the session identification with the authentication certificate, to yield authentication information; when the confidence score does not exceed the threshold, packaging the session identification and the confidence score as the authentication information; and transmitting the authentication information to the destination email address of the recipient. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system comprising:
-
a processor; and a computer-readable storage medium having instructions stored which, when executed by the processor, cause the processor to perform operations being performed at an authentication service system, the operations comprising; receiving an authentication session invitation request from a sender of an email, wherein the email is sent to a destination address of a recipient, and wherein the authentication session invitation comprises an email address of the sender and an invitation to create an authentication certificate for the sender and the email; sending, to the sender, a session identification and a text-phrase prompt comprising a text phrase; receiving, from the sender in response the text-phrase prompt, the destination address of the recipient and an audio signal; retrieving, based on the email address of the sender, a voice template associated with the sender; comparing the audio signal to the voice template, to yield a confidence score; when the confidence score exceeds a threshold; generating the authentication certificate; and packaging the session identification with the authentication certificate, to yield authentication information; when the confidence score does not exceed the threshold, packaging the session identification and the confidence score as the authentication information; and transmitting the authentication information to the destination email address of the recipient. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A computer-readable storage device having instructions stored which, when executed by a processor of an authentication service system, cause the processor to perform operations comprising:
-
receiving an authentication session invitation request from a sender of an email, wherein the email is sent to a destination address of a recipient, and wherein the authentication session invitation comprises an email address of the sender and an invitation to create an authentication certificate for the sender and the email; sending, to the sender, a session identification and a text-phrase prompt comprising a text phrase; receiving, from the sender in response the text-phrase prompt, the destination address of the recipient and an audio signal; retrieving, based on the email address of the sender, a voice template associated with the sender; comparing the audio signal to the voice template, to yield a confidence score; when the confidence score exceeds a threshold; generating the authentication certificate; and packaging the session identification with the authentication certificate, to yield authentication information; when the confidence score does not exceed the threshold, packaging the session identification and the confidence score as the authentication information; and transmitting the authentication information to the destination email address of the recipient. - View Dependent Claims (14, 15, 16, 17)
-
Specification