Digital identity

US 9,785,764 B2
Filed: 02/13/2015
Issued: 10/10/2017
Est. Priority Date: 02/13/2015
Status: Active Grant

First Claim

Patent Images

1. A method of providing access to digital profiles held in persistent electronic storage of a digital identity system, the method, as performed by the digital identity system, comprising:

receiving from a requesting entity an electronic request message identifying a target entity;

in response to the request, publishing;

(i) a digital profile of the target entity by storing a version of that profile in an addressable memory location associated with the digital identity system, and (ii) a digital profile of the requesting entity by storing a version of that profile in another addressable memory location associated with the digital identity system;

generating two non-matching receipts, each comprising a transaction identifier, a first of which comprises a link identifying the memory location associated with the digital identity system to which the target entity'"'"'s profile is published, the second of which comprises a link identifying the other memory location associated with the digital identity system to which the requesting entity'"'"'s profile is published;

transmitting the first receipt to an address of a computing device associated with the requesting entity; and

transmitting the second receipt to an address of a computing device associated with the target entity.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The disclosure relates to a method of authenticating a digital credential of a bearer by a validating device, the method including capturing the bearer credential by the validating device and transmitting to a validation service the bearer credential with a validator credential bound to the validating device. The method also includes at the validation service, validating the bearer credential and the validation credential, and if the validator credential is valid, using the bearer credential to access a data item of a digital profile and creating an electronic message for transmission to the validating device, the electronic message indicating the data item and comprising a fresh validator credential generated by the validation service. The method further includes issuing a fresh bearer credential and creating an electronic message to transmit the fresh bearer credential to an address associated with the bearer.

147 Citations

View as Search Results

10 Claims

1. A method of providing access to digital profiles held in persistent electronic storage of a digital identity system, the method, as performed by the digital identity system, comprising:
- receiving from a requesting entity an electronic request message identifying a target entity;
  
  in response to the request, publishing;
  
  (i) a digital profile of the target entity by storing a version of that profile in an addressable memory location associated with the digital identity system, and (ii) a digital profile of the requesting entity by storing a version of that profile in another addressable memory location associated with the digital identity system;
  
  generating two non-matching receipts, each comprising a transaction identifier, a first of which comprises a link identifying the memory location associated with the digital identity system to which the target entity'"'"'s profile is published, the second of which comprises a link identifying the other memory location associated with the digital identity system to which the requesting entity'"'"'s profile is published;
  
  transmitting the first receipt to an address of a computing device associated with the requesting entity; and
  
  transmitting the second receipt to an address of a computing device associated with the target entity.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method according to claim 1 wherein a target credential is associated with the target entity'"'"'s profile and a requestor credential is associated with the requesting entity'"'"'s profile in a database of the digital identity system, and the step of publishing is conditional on matching target and requestor credentials being received in the electronic request message.
  - 3. The method according to claim 1 wherein the credentials are one-time use only, and the method comprises generating a fresh target and a fresh requestor credential and associating them with the target entity'"'"'s profile and the requesting entity'"'"'s profile in the database respectively, the fresh target and requestor credentials being included in the second and first receipt respectively.
  - 4. The method according to claim 1 comprising storing a master receipt at the digital identity system, the master receipt comprising data of both receipts and being stored in a master receipt book.
  - 5. The method according to claim 4 wherein the master receipt comprises both links and the transaction identifier but does not include the fresh credentials.
  - 6. The method according to claim 1 wherein the target entity is a bearer and the requesting entity is a validator, the bearer'"'"'s profile being a pre-existing digital profile which is accessed in the persistent electronic storage in response to the request.
  - 7. The method according to claim 1 wherein the target entity is a registrant and the requesting entity is an enrolment module executing on a processor of the digital identity system which has created the digital profile in the persistent electronic storage.
  - 8. The method of claim 1 wherein a respective confidence value is allocated to each profile which is published with that profile and accessible via the respective link.

9. A digital identity system comprising:
- persistent electronic storage holding digital profiles;
  
  a network interface configured to transmit and receive electronic messages; and
  
  at least one processor configured to;
  
  receive from a requesting entity an electronic request message identifying a target entity;
  
  in response to the request, publish;
  
  (i) a digital profile of the target entity by storing a version of that profile in an addressable memory location associated with the digital identity system, and (ii) a digital profile of the requesting entity by storing a version of that profile in another addressable memory location associated with the digital identity system;
  
  generate two non-matching receipts, each comprising a transaction identifier, a first of which comprises a link identifying the memory location associated with the digital identity system to which the target entity'"'"'s profile is published, the second of which comprises a link identifying the other memory location associated with the digital identity system to which the requesting entity'"'"'s profile is published;
  
  transmit the first receipt to a computing device associated with the requesting entity; and
  
  transmit the second receipt to a computing device associated with the target entity.

10. Non-transitory computer-readable media comprising computer readable instructions that, when executed at a digital identity system, implement a method comprising:
- receiving from a requesting entity an electronic request message identifying a target entity;
  
  in response to the request, publishing;
  
  (i) a digital profile of the target entity by storing a version of that profile in an addressable memory location associated with the digital identity system, and (ii) a digital profile of the requesting entity by storing a version of that profile in another addressable memory location associated with the digital identity system;
  
  generating two non-matching receipts, each comprising a transaction identifier, a first of which comprises a link identifying the memory location associated with the digital identity system to which the target entity'"'"'s profile is published, the second of which comprises a link identifying the other memory location associated with the digital identity system to which the requesting entity'"'"'s profile is published;
  
  transmitting the first receipt to a computing device associated with the requesting entity; and
  
  transmitting the second receipt to a computing device associated with the target entity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Yoti Holding Ltd
Original Assignee
Yoti Ltd (Yoti Holding Ltd)
Inventors
Loughlin-Mchugh, Eleanor Simone Frederika, Szczesniak, Roman Edward
Primary Examiner(s)
RAHIM, MONJUR

Application Number

US14/622,527
Publication Number

US 20160239653A1
Time in Patent Office

970 Days
Field of Search

726 7
US Class Current
CPC Class Codes

G06F 21/35 communicating wirelessly

Digital identity

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

147 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Digital identity

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

147 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links