Biometric personal data key (PDK) authentication

DC CAFC

US 8,886,954 B1
Filed: 12/10/2012
Issued: 11/11/2014
Est. Priority Date: 12/20/2004
Status: Active Grant

- Alert
- Pin

Associated Cases

Associated Defendants

First Claim

Patent Images

1. A method comprising:

persistently storing biometric data of a user and a plurality of codes and other data values comprising a device ID code uniquely identifying an integrated device and a secret decryption value in a tamper proof format written to a storage element on the integrated device that is not capable of being subsequently altered;

responsive to receiving a request for a biometric verification of the user, receiving scan data from a biometric scan;

comparing the scan data to the biometric data to determine whether the scan data matches the biometric data;

responsive to a determination that the scan data matches the biometric data, wirelessly sending one or more codes and other values from the plurality of codes and other data values for authentication to a third party that operates a trusted authority, wherein the one or more codes and other data values includes the device ID code; and

receiving, at an application, an access message from the trusted authority indicating that the trusted authority successfully authenticated the one or more codes and other data values sent to the third party and allowing the user access to the application.

View all claims

1 Assignment

Timeline View

Assignment View

Litigations

1 Petition

Accused Products

Abstract

Systems and methods verifying a user during authentication of an integrated device. In one embodiment, the system includes an integrated device and an authentication unit. The integrated device stores biometric data of a user and a plurality of codes and other data values comprising a device ID code uniquely identifying the integrated device and a secret decryption value in a tamper proof format, and when scan data is verified by comparing the scan data to the biometric data, wirelessly sends one or more codes and other data values including the device ID code. The authentication unit receives and sends the one or more codes and the other data values to an agent for authentication, and receives an access message from the agent indicating that the agent successfully authenticated the one or more codes and other data values and allows the user to access an application.

177 Citations

29 Claims

1. A method comprising:
- persistently storing biometric data of a user and a plurality of codes and other data values comprising a device ID code uniquely identifying an integrated device and a secret decryption value in a tamper proof format written to a storage element on the integrated device that is not capable of being subsequently altered;
  
  responsive to receiving a request for a biometric verification of the user, receiving scan data from a biometric scan;
  
  comparing the scan data to the biometric data to determine whether the scan data matches the biometric data;
  
  responsive to a determination that the scan data matches the biometric data, wirelessly sending one or more codes and other values from the plurality of codes and other data values for authentication to a third party that operates a trusted authority, wherein the one or more codes and other data values includes the device ID code; and
  
  receiving, at an application, an access message from the trusted authority indicating that the trusted authority successfully authenticated the one or more codes and other data values sent to the third party and allowing the user access to the application.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein the one or more codes and other data values are transmitted to the trusted authority over a network.
  - 3. The method of claim 1, further comprising:
    - registering an age verification for the user in association with the device ID code.
  - 4. The method of claim 1, wherein the one or more codes and other data values indicate that the biometric verification was successful.
  - 5. The method of claim 1, wherein the biometric data includes one or more of a fingerprint, palm print, a retinal scan, an iris scan, a hand geometry, a facial recognition, a signature recognition and a voice recognition.
  - 6. The method of claim 1, wherein the integrated device comprises one or more of a mobile phone, tablet, laptop, mp3 player, mobile gaming device, watch and a key fob.
  - 7. The method of claim 1, wherein the application includes one or more of a casino machine, a keyless lock, a garage door opener, an ATM machine, a hard drive, computer software, a web site, a file and a financial account.
  - 8. The method of claim 1, wherein the application includes a file including medical information.
  - 9. The method of claim 1, wherein the application includes a financial account.
  - 10. The method of claim 1, further comprising:
    - establishing a secure communication channel prior to sending the one or more codes and other data values for authentication.
  - 11. The method of claim 1, further comprising:
    - receiving a request for the one or more codes and other data values without a request for biometric verification; and
      
      responsive to receiving the request for the one or more codes and other data values without a request for biometric verification, sending the one or more codes and other data values without requesting the scan data.

12. An integrated device comprising:
- a persistent storage media that stores biometric data of a user and a plurality of codes and other data values comprising a device ID code uniquely identifying the integrated device and a secret decryption value in a tamper proof format written to the persistent storage media and not capable of being subsequently altered;
  
  a validation module, coupled to communicate with the persistent storage media, that receives scan data from a biometric scan for comparison against the biometric data, and that sends one or more codes and other data values from the plurality of codes and other data values for authentication by a third party that operates a trusted authority, wherein the one or more codes and other data values includes the device ID code; and
  
  a radio frequency communication module that receives an access message from the trusted authority indicating that the trusted authority successfully authenticated the one or more codes and other data values to the third party and allowing the user access to an application.
- View Dependent Claims (13, 14, 15)
- - 13. The integrated device of claim 12, wherein the one or more codes and other data values are transmitted to the trusted authority over a network.
  - 14. The integrated device of claim 12, wherein an age verification is registered in association with the device ID code.
  - 15. The integrated device of claim 12 comprising:
    - an LED to be activated for requesting the biometric scan.

16. A method for authenticating a verified user using a computer processor configured to execute method steps, comprising:
- wirelessly receiving one or more codes and other data values from a plurality of codes and other data values including a device ID code, wherein the plurality of codes and other data values comprises the device ID code uniquely identifying an integrated device associated with a biometrically verified user, the device ID code being registered with a trusted authority for authentication, the trusted authority operated by a third party;
  
  requesting authentication of the integrated device using the one or more codes and other data values by the trusted authority;
  
  receiving, at an application, an access message from the trusted authority indicating that the trusted authority successfully authenticated the one or more codes and other data values to the third party; and
  
  in response to receiving the access message, allowing the biometrically verified user access to the application.
- View Dependent Claims (17, 18, 19, 20, 21)
- - 17. The method of claim 16, further comprising:
    - registering a date of birth or age with the trusted authority.
  - 18. The method of claim 16, further comprising:
    - establishing a secure communications channel with the integrated device, wherein the one or more codes and other data values associated with the biometrically verified user is received from the integrated device.
  - 19. The method of claim 16, wherein the application includes one or more of a casino machine, a keyless lock, a garage door opener, an ATM machine, a hard drive, computer software, a web site, a file and a financial account.
  - 20. The method of claim 16, wherein the application includes a file including medical information.
  - 21. The method of claim 16, wherein the application includes a financial account.

22. A system, comprising:
- an integrated hardware device that stores biometric data of a user and a plurality of codes and other data values comprising a device ID code uniquely identifying the integrated hardware device and a secret decryption value in a tamper proof format written to a storage element in the integrated hardware device that is not capable of being subsequently altered, and that wirelessly sends one or more codes and other data values from the plurality of codes and other data values, wherein the one or more codes and other data values include the device ID code; and
  
  an authentication circuit that receives the one or more codes and other data values and sends the one or more codes and other data values to a third party that operates a trusted authority for authentication, and that receives an access message from the trusted authority indicating that the trusted authority successfully authenticated the one or more codes and other data values to the third party and allows the user to access an application.
- View Dependent Claims (23, 24, 25, 26, 27, 28, 29)
- - 23. The system of claim 22, wherein the integrated hardware device receives an authentication request from the authentication circuit, and in response, requests a biometric scan from the user to generate scan data.
  - 24. The system of claim 22, wherein when the integrated hardware device cannot verify scan data as being from the user, the integrated hardware device does not send the one or more codes and other data values.
  - 25. The system of claim 22, wherein the integrated hardware device comprises one or more of a mobile phone, tablet, laptop, mp3 player, mobile gaming device, watch and a key fob.
  - 26. The system of claim 22, wherein the biometric data includes one or more of a fingerprint, palm print, a retinal scan, an iris scan, a hand geometry, a facial recognition, a signature recognition and a voice recognition.
  - 27. The system of claim 22, wherein the application includes one or more of a casino machine, a keyless lock, a garage door opener, an ATM machine, a hard drive, computer software, a web site, a file and a financial account.
  - 28. The system of claim 22, wherein the application includes a file including medical information.
  - 29. The system of claim 22, wherein the application includes a financial account.

Specification

Resources

Litigation Campaign Assessment

Litigation Data

Current Assignee
Proxense, LLC
Original Assignee
Proxense, LLC
Inventors
Giobbi, John J.
Primary Examiner(s)
Shiferaw, Eleni
Assistant Examiner(s)
VU, PHY ANH TRAN

Application Number

US13/710,109
Time in Patent Office

701 Days
Field of Search
US Class Current

713/186
CPC Class Codes

G05B 1/00   Comparing elements, i.e. el...

G06F 21/32   using biometric data, e.g. ...

G06F 21/35   communicating wirelessly

G07C 9/257   electronically G07C9/26 tak...

H04L 9/321   involving a third party or ...

Biometric personal data key (PDK) authentication

First Claim

1 Assignment

Litigations

1 Petition

Accused Products

Abstract

177 Citations

29 Claims

Specification

Solutions

Use Cases

Quick Links

Biometric personal data key (PDK) authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

Litigations

1 Petition

Subscription Required

Accused Products

Subscription Required

Abstract

177 Citations

29 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links