Computer-implemented system and method for electronic personal identity verification
First Claim
1. A computer-implemented method for electronic personal identity verification, comprising:
- establishing a biometric signature by an identification device worn by a user;
registering the user with an authentication service comprising providing to the authentication service the biometric signature associated with the user and information personally known to the user;
confirming by the authentication service that the biometric signature is associated with the user;
periodically generating a dynamic key and periodically sending the generated dynamic key from the authentication service to the identification device worn by the user after performing the confirmation;
forming identification data on the identification device, the identification data comprising the dynamic key and the biometric signature;
sending the identification data comprising the biometric signature and the dynamic key from the identification device worn by the user to a user device associated with the user;
receiving input personally known to the user into the user device;
sending encrypted credentials comprising the user input and the identification data from the user device to the authentication service;
comparing the received encrypted credentials to the biometric signature and the information provided to the authentication service during the registration;
sending a claims token from the authentication service to the user device upon the encrypted credentials matching the biometric signature and the information provided to the authentication service during the registration; and
accessing an application that requires user identity verification via a third party provider using the claims token.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for electronic personal identity verification is provided. A user is registered with an authentication service, which includes providing to the service a biometric signature associated with the user and information personally known to the user. Identification data that includes the biometric signature is sent from an identification device worn by the user to a user device associated with the user. An input personally known to the user is received into the user device. Encrypted credentials are sent from the user device to the authentication service. The received encrypted credentials are compared to the biometric signature and the information provided to the authentication service. A claims token is sent from the authentication service to the user device upon the encrypted credentials matching the biometric signature and the information provided to the authentication service. An application is accessed via a third party provider using the claims token.
-
Citations
19 Claims
-
1. A computer-implemented method for electronic personal identity verification, comprising:
-
establishing a biometric signature by an identification device worn by a user; registering the user with an authentication service comprising providing to the authentication service the biometric signature associated with the user and information personally known to the user; confirming by the authentication service that the biometric signature is associated with the user; periodically generating a dynamic key and periodically sending the generated dynamic key from the authentication service to the identification device worn by the user after performing the confirmation; forming identification data on the identification device, the identification data comprising the dynamic key and the biometric signature; sending the identification data comprising the biometric signature and the dynamic key from the identification device worn by the user to a user device associated with the user; receiving input personally known to the user into the user device; sending encrypted credentials comprising the user input and the identification data from the user device to the authentication service; comparing the received encrypted credentials to the biometric signature and the information provided to the authentication service during the registration; sending a claims token from the authentication service to the user device upon the encrypted credentials matching the biometric signature and the information provided to the authentication service during the registration; and accessing an application that requires user identity verification via a third party provider using the claims token. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer-implemented system for electronic personal identity verification, comprising:
-
an identification device worn by a user to send identification data comprising a biometric signature to a user device associated with the user, wherein the identification device worn by the user establishes the biometric signature and forms the identification data on the identification device; the user device to receive input personally known to the user and to send encrypted credentials comprising the user input and the identification data to an authentication service; an authentication service configured to execute code, comprising; a registration module to register the user, comprising a receipt module to receive the biometric signature associated with the user and information personally known to the user; a confirmation module to confirm that the biometric signature is associated with the user; a periodic module to periodically generate a dynamic key and periodically send the generated dynamic key to the identification device worn by the user after performing the confirmation, wherein the identification data formed on the identification device further comprises the dynamic key; a comparison module to receive the encrypted credentials and to compare the received encrypted credentials to the biometric signature and the information provided to the authentication service during the registration; and a sending module to send to the user device a claims token upon the encrypted credentials matching the biometric signature and the information provided to the authentication service during the registration; and a third party provider to allow access to an application that requires user identity verification based on the claims token. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer-implemented method for electronic personal identity verification for application access, comprising:
-
registering a user with an authentication service comprising providing to the authentication service a biometric signature associated with the user and information personally known to the user; sending identification data comprising the biometric signature from an identification device worn by the user to a user device associated with the user; receiving input personally known to the user into the user device; sending encrypted credentials comprising the user input and the identification data from the user device to the authentication service; comparing the received encrypted credentials to the biometric signature and the information provided to the authentication service during the registration; sending a claims token from the authentication service to the user device upon the encrypted credentials matching the biometric signature and the information provided to the authentication service during the registration; and accessing an application that requires user identity verification via a third party provider using the claims token, comprising; sending the claims token from the user device to the third party provider; verifying the claims token received by the third party provider with the authentication service; sending a third party token from the authentication service to the third party provider; confirming an identity of the user based on the received third party token; and allowing access to the application upon the confirmation of the identity.
-
Specification