Computer-implemented system and method for electronic personal identity verification

US 9,111,085 B1
Filed: 09/23/2013
Issued: 08/18/2015
Est. Priority Date: 09/21/2012
Status: Expired due to Fees

First Claim

Patent Images

1. A computer-implemented method for electronic personal identity verification, comprising:

establishing a biometric signature by an identification device worn by a user;

registering the user with an authentication service comprising providing to the authentication service the biometric signature associated with the user and information personally known to the user;

confirming by the authentication service that the biometric signature is associated with the user;

periodically generating a dynamic key and periodically sending the generated dynamic key from the authentication service to the identification device worn by the user after performing the confirmation;

forming identification data on the identification device, the identification data comprising the dynamic key and the biometric signature;

sending the identification data comprising the biometric signature and the dynamic key from the identification device worn by the user to a user device associated with the user;

receiving input personally known to the user into the user device;

sending encrypted credentials comprising the user input and the identification data from the user device to the authentication service;

comparing the received encrypted credentials to the biometric signature and the information provided to the authentication service during the registration;

sending a claims token from the authentication service to the user device upon the encrypted credentials matching the biometric signature and the information provided to the authentication service during the registration; and

accessing an application that requires user identity verification via a third party provider using the claims token.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for electronic personal identity verification is provided. A user is registered with an authentication service, which includes providing to the service a biometric signature associated with the user and information personally known to the user. Identification data that includes the biometric signature is sent from an identification device worn by the user to a user device associated with the user. An input personally known to the user is received into the user device. Encrypted credentials are sent from the user device to the authentication service. The received encrypted credentials are compared to the biometric signature and the information provided to the authentication service. A claims token is sent from the authentication service to the user device upon the encrypted credentials matching the biometric signature and the information provided to the authentication service. An application is accessed via a third party provider using the claims token.

Citations

19 Claims

1. A computer-implemented method for electronic personal identity verification, comprising:
- establishing a biometric signature by an identification device worn by a user;
  
  registering the user with an authentication service comprising providing to the authentication service the biometric signature associated with the user and information personally known to the user;
  
  confirming by the authentication service that the biometric signature is associated with the user;
  
  periodically generating a dynamic key and periodically sending the generated dynamic key from the authentication service to the identification device worn by the user after performing the confirmation;
  
  forming identification data on the identification device, the identification data comprising the dynamic key and the biometric signature;
  
  sending the identification data comprising the biometric signature and the dynamic key from the identification device worn by the user to a user device associated with the user;
  
  receiving input personally known to the user into the user device;
  
  sending encrypted credentials comprising the user input and the identification data from the user device to the authentication service;
  
  comparing the received encrypted credentials to the biometric signature and the information provided to the authentication service during the registration;
  
  sending a claims token from the authentication service to the user device upon the encrypted credentials matching the biometric signature and the information provided to the authentication service during the registration; and
  
  accessing an application that requires user identity verification via a third party provider using the claims token.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. A method according to claim 1, further comprising:
    - sending the claims token from the user device to the third party provider;
      
      verifying the claims token received by the third party provider with the authentication service;
      
      sending a third party token from the authentication service to the third party provider;
      
      confirming an identity of the user based on the received third party token; and
      
      allowing access to the application upon the confirmation of the identity.
  - 3. A method according to claim 2, further comprising:
    - sending by the third party provider the received third party token to the authentication service with a request for additional information;
      
      sending the requested additional information from the authentication service to the third party provider; and
      
      comparing the additional information to information stored by a storage associated with the third party provider,wherein the confirmation of the identity of the user is further performed based on the additional information matching the information stored by the third party provider.
  - 4. A method according to claim 1, further comprising:
    - storing the dynamic key most recently sent to the identification device worn by the user in a storage associated with the authentication service; and
      
      comparing the encrypted credentials to the stored dynamic key,wherein the claims token is sent to the user device upon the encrypted credentials further matching the stored dynamic key.
  - 5. A method according to claim 1, further comprising:
    - detecting biometric data from a body of the user via a biometric sensor comprised at least one of in the identification device worn by the user and on the identification device worn by the user; and
      
      generating the biometric signature by processing at the identification device worn by the user the detected biometric data.
  - 6. A method according to claim 5, wherein the biometric sensor comprises at least one of a retina scanner, heart rate sensor, accelerometer, toe print scanner, fingerprint scanner, DNA analyzer, facial feature scanner, blood vessel pattern scanner, handwriting scanner, and a voice scanner.
  - 7. A method according to claim 1, further comprising:
    - unlocking additional capabilities of the application based on the identification data.
  - 8. A method according to claim 1, wherein the identification data further comprises at least one of the user'"'"'s name, permissions, and location.
  - 9. A method according to claim 1, wherein the identification device worn by the user comprises at least one of a wristband, ring, belt clip, bangle, necklace, earring, bandana, and glasses.

10. A computer-implemented system for electronic personal identity verification, comprising:
- an identification device worn by a user to send identification data comprising a biometric signature to a user device associated with the user, wherein the identification device worn by the user establishes the biometric signature and forms the identification data on the identification device;
  
  the user device to receive input personally known to the user and to send encrypted credentials comprising the user input and the identification data to an authentication service;
  
  an authentication service configured to execute code, comprising;
  
  a registration module to register the user, comprising a receipt module to receive the biometric signature associated with the user and information personally known to the user;
  
  a confirmation module to confirm that the biometric signature is associated with the user;
  
  a periodic module to periodically generate a dynamic key and periodically send the generated dynamic key to the identification device worn by the user after performing the confirmation, wherein the identification data formed on the identification device further comprises the dynamic key;
  
  a comparison module to receive the encrypted credentials and to compare the received encrypted credentials to the biometric signature and the information provided to the authentication service during the registration; and
  
  a sending module to send to the user device a claims token upon the encrypted credentials matching the biometric signature and the information provided to the authentication service during the registration; and
  
  a third party provider to allow access to an application that requires user identity verification based on the claims token.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. A system according to claim 10, wherein:
    - the user device further sends the claims token to the third party provider;
      
      the third party provider verifies the claims token with the authentication service, receives a third party token from the authentication service upon the verification, confirms an identity of the user based on the received third party token, and allows access to the application upon the confirmation of the identity.
  - 12. A system according to claim 11, wherein:
    - the third party provider sends the received third party token to the authentication service with a request for additional information, receives the requested additional information from the authentication service, and compares the additional information to information stored by a storage associated with the third party provider; and
      
      the confirmation of the identity of the user is further performed based on the additional information matching the information stored by the third party provider.
  - 13. A system according to claim 10, further comprising:
    - a storage associated with the authentication service to store the dynamic key most recently sent to the identification device worn by the user,wherein the encrypted credentials are further compared to the stored dynamic key and the claims token is sent to the user device upon the encrypted credentials further matching the stored dynamic key.
  - 14. A system according to claim 10, wherein the identification device worn by the user further comprises:
    - a biometric sensor to detect biometric data from a body of the user; and
      
      a processor to generate the biometric signature by processing the user the detected biometric data.
  - 15. A system according to claim 14, wherein the biometric sensor comprises at least one of a retina scanner, heart rate sensor, accelerometer, toe print scanner, fingerprint scanner, DNA analyzer, facial feature scanner, blood vessel pattern scanner, handwriting scanner, and a voice scanner.
  - 16. A system according to claim 10, wherein additional capabilities of the application are unlocked based on the identification data.
  - 17. A system according to claim 10, wherein the identification data further comprises at least one of the user'"'"'s name, permissions, and location.
  - 18. A system according to claim 10, wherein the identification device worn by the user comprises at least one of a wristband, ring, belt clip, bangle, necklace, earring, bandana, and glasses.

19. A computer-implemented method for electronic personal identity verification for application access, comprising:
- registering a user with an authentication service comprising providing to the authentication service a biometric signature associated with the user and information personally known to the user;
  
  sending identification data comprising the biometric signature from an identification device worn by the user to a user device associated with the user;
  
  receiving input personally known to the user into the user device;
  
  sending encrypted credentials comprising the user input and the identification data from the user device to the authentication service;
  
  comparing the received encrypted credentials to the biometric signature and the information provided to the authentication service during the registration;
  
  sending a claims token from the authentication service to the user device upon the encrypted credentials matching the biometric signature and the information provided to the authentication service during the registration; and
  
  accessing an application that requires user identity verification via a third party provider using the claims token, comprising;
  
  sending the claims token from the user device to the third party provider;
  
  verifying the claims token received by the third party provider with the authentication service;
  
  sending a third party token from the authentication service to the third party provider;
  
  confirming an identity of the user based on the received third party token; and
  
  allowing access to the application upon the confirmation of the identity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Girling Kelly Design Group LLC
Original Assignee
Girling Kelly Design Group LLC
Inventors
Darmour, Jennifer Amy, Gelfuso, Jeffrey, Girling, Robert Marcus, Habarakada, Shyam Sujeewa
Primary Examiner(s)
Smithers, Matthew

Application Number

US14/034,397
Time in Patent Office

694 Days
Field of Search

713/186, 713/182, 382/115
US Class Current

1/1
CPC Class Codes

G06F 21/32 using biometric data, e.g. ...

G06F 21/34 involving the use of extern...

Computer-implemented system and method for electronic personal identity verification

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Computer-implemented system and method for electronic personal identity verification

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links