Secure biometric verification of identity
First Claim
1. An identification card comprising:
- an on-board memory for storing reference data;
an on-board sensor for capturing live biometric data;
an on-board microprocessor for comparing the captured biometric data with corresponding stored reference data within a predetermined threshold and for generating a verification message only if there is a match within the predetermined threshold;
means for encrypting the verification message according to an encryption key generated by the identification card, the encryption key being substantially unique to the identification card; and
means for communicating the encrypted verification message to an external network.
2 Assignments
0 Petitions
Accused Products
Abstract
A high security identification card includes an on-board memory for stored biometric data and an on-board sensor for capturing live biometric data. An on-board processor on the card performs a matching operation to verify that the captured biometric data matches the locally stored biometric data. Only if there is a positive match is any data transmitted from the card for additional verification and/or further processing. Preferably, the card is ISO SmartCard compatible. In one embodiment, the ISO SmartCard functions as a firewall for protecting the security processor used for storing and processing the protected biometric data from malicious external attack via the ISO SmartCard interface. In another embodiment, the security processor is inserted between the ISO SmartCard Interface and an unmodified ISO SmartCard processor and blocks any external communications until the user'"'"'s fingerprint has been matched with a previously registered fingerprint. Real-time feedback is provided while the user is manipulating his finger over the fingerprint sensor, thereby facilitating an optimal placement of the finger over the sensor. The card may be used to enable communication with a transactional network or to obtain physical access into a secure area.
86 Citations
30 Claims
-
1. An identification card comprising:
-
an on-board memory for storing reference data; an on-board sensor for capturing live biometric data; an on-board microprocessor for comparing the captured biometric data with corresponding stored reference data within a predetermined threshold and for generating a verification message only if there is a match within the predetermined threshold; means for encrypting the verification message according to an encryption key generated by the identification card, the encryption key being substantially unique to the identification card; and means for communicating the encrypted verification message to an external network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. A method for identifying a user of an intelligent identification card, the intelligent identification card including an on-board memory storing reference data and an on-board biometric sensor, the method comprising:
-
capturing live biometric data using the on-board sensor; comparing the captured biometric data with corresponding reference data stored in the on-board memory within a predetermined threshold; generating a verification message only if there is a match within the predetermined threshold; encrypting the verification message according to an encryption key generated by the intelligent identification card, the encryption key being substantially unique to the intelligent identification card; and communicating the encrypted verification message to an external network. - View Dependent Claims (24, 25, 26, 27)
-
-
28. An apparatus for identifying a user of an intelligent identification card, the intelligent identification card including an on-board memory storing reference data and an on-board biometric sensor, the apparatus comprising:
-
means for capturing live biometric data using the on-board sensor; means for comparing the captured biometric data with corresponding reference data stored in the on-board memory within a predetermined threshold; means for generating a verification message only if there is a match within the predetermined threshold; and means for encrypting the verification message according to an encryption key generated by the intelligent identification card, the encryption key being substantially unique to the intelligent identification card; and means for communicating the encrypted verification message to an external network. - View Dependent Claims (29, 30)
-
Specification