Dynamic seed and key generation from biometric indicia
First Claim
1. A non-transitory computer-readable storage medium encoded with code segments for regenerating a destroyed seed, the computer-readable storage medium comprising:
- a comparison segment for comparing a live biometric template with an enrolled biometric template;
an interval-determining segment for determining a testing interval based upon a probability that the live biometric template and the enrolled biometric template are indicative of a specific user, and based upon an optimization value associated with the enrolled biometric template,wherein the testing interval has a plurality of values therein,wherein one of the plurality of values is indicative of or is the same as said destroyed seed;
an interval-filtering segment for applying a filter to the plurality of values within the testing interval so as to reduce noise within the testing interval, such that after application of the filter, the testing interval is a filtered testing interval,wherein subsequent to applying the filter, the one of the plurality of values indicative of or the same as the destroyed seed remains in the filtered interval; and
a testing segment for iteratively testing the plurality of values within the filtered testing interval to determine a decrypting value,wherein the testing comprises decrypting an encrypted item of test data,wherein upon testing a particular value within the filtered testing interval and determining that the particular value is operable to decrypt the encrypted item of test data, the destroyed seed is regenerated and the testing segment ceases iteratively testing,wherein said interval-filtering segment is executed subsequent to said interval determining segment but prior to iteratively testing the values within the filtered testing interval.
3 Assignments
0 Petitions
Accused Products
Abstract
A system, a method, and a computer program for generating a seed and/or a key from live biometric indicia, such that all the information necessary for generating the seed and/or the key is not stored on a storage medium. The method comprises receiving a biometric template from a user and enrolling the template; assigning an optimization value to the enrolled biometric template; encrypting an item of test data using the optimization value, such that the optimization value is an encryption seed; storing the encrypted item of test data on the storage medium; destroying the encryption seed after encrypting the item of test data; receiving a live biometric template; comparing the templates and determining an interval based on a probability that the templates are specific to the same user; iteratively testing values within the interval to identify the value in the interval for decrypting the encrypted item of test data, wherein the value used to decrypt the item of test data is the encryption seed; and generating the key using the seed.
-
Citations
20 Claims
-
1. A non-transitory computer-readable storage medium encoded with code segments for regenerating a destroyed seed, the computer-readable storage medium comprising:
-
a comparison segment for comparing a live biometric template with an enrolled biometric template; an interval-determining segment for determining a testing interval based upon a probability that the live biometric template and the enrolled biometric template are indicative of a specific user, and based upon an optimization value associated with the enrolled biometric template, wherein the testing interval has a plurality of values therein, wherein one of the plurality of values is indicative of or is the same as said destroyed seed; an interval-filtering segment for applying a filter to the plurality of values within the testing interval so as to reduce noise within the testing interval, such that after application of the filter, the testing interval is a filtered testing interval, wherein subsequent to applying the filter, the one of the plurality of values indicative of or the same as the destroyed seed remains in the filtered interval; and a testing segment for iteratively testing the plurality of values within the filtered testing interval to determine a decrypting value, wherein the testing comprises decrypting an encrypted item of test data, wherein upon testing a particular value within the filtered testing interval and determining that the particular value is operable to decrypt the encrypted item of test data, the destroyed seed is regenerated and the testing segment ceases iteratively testing, wherein said interval-filtering segment is executed subsequent to said interval determining segment but prior to iteratively testing the values within the filtered testing interval. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for regenerating a destroyed seed, comprising the steps of:
-
comparing a live biometric template with an enrolled biometric template to determine a probability that the live biometric template and the enrolled biometric template are indicative of a the same user; based on the probability, determining a plurality of values, one of said plurality of values being indicative of or the same as the destroyed seed; filtering the plurality of values to obtain a filtered plurality of values, one of said filtered plurality of values being indicative of or the same as the destroyed seed; testing a value of the filtered plurality of values by using the value to decrypt an encrypted item of test data; determining that the result of decrypting the encrypted item of test data matches an unencrypted item of test data; based on the value, regenerating the destroyed seed. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A system for regenerating a destroyed seed, comprising:
-
a biometric sensor operable to obtain a live biometric template; a computer storage medium storing an enrolled biometric template, an unencrypted item of test data, and an encrypted item of test data; and a seed regeneration module operable to; compare the live biometric template to the enrolled biometric template and determine a probability of match; based on the probability, determining a plurality of values, one of said plurality of values being indicative of or the same as the destroyed seed; filter the plurality of values to obtain a filtered plurality of values, one of said filtered plurality of values being indicative of or the same as the destroyed seed; test a value of the filtered plurality of values by using the value to decrypt an encrypted item of test data; determine that the result of decrypting the encrypted item of test data matches an unencrypted item of test data; based on the value, regenerate the destroyed seed. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification