Managing user data for software services
First Claim
1. A computer-readable medium that stores executable instructions which when executed by a device, causing the device to perform acts comprising:
- receiving encrypted user-specific data from a software service, the user-specific data comprising user files to be used with software, or metadata comprising user settings, or both;
receiving biometric data from a user of said device;
calculating a metric from the biometric data;
comparing the metric to boundaries of a plurality of biometric data clusters, each of the plurality of biometric data clusters representing a plurality of biometric data clustered together by reducing a statistic among the plurality of biometric data;
responsive to the comparison, selecting one of the plurality of biometric data clusters;
retrieving a cryptographic key from a cryptographic key database associated with the selected one of the plurality of biometric data clusters;
using the cryptographic key to decrypt the user-specific data; and
using, on the device, the user-specific data, in a decrypted form.
2 Assignments
0 Petitions
Accused Products
Abstract
User-specific data for use with a software service may be stored in an encrypted form, where the encryption and/or decryption keys used are associated with a user'"'"'s biometric data (that the user voluntarily provides after appropriate disclosure, to protect the user'"'"'s interest in privacy). When the user uses the software service on a device, the device may receive the user-specific data in an encrypted form, and then may use the biometric data to retrieve or generate the cryptographic key that is used to decrypt the user-specific data. The user-specific data is then decrypted and used on the device with the software service.
14 Citations
18 Claims
-
1. A computer-readable medium that stores executable instructions which when executed by a device, causing the device to perform acts comprising:
receiving encrypted user-specific data from a software service, the user-specific data comprising user files to be used with software, or metadata comprising user settings, or both; receiving biometric data from a user of said device; calculating a metric from the biometric data; comparing the metric to boundaries of a plurality of biometric data clusters, each of the plurality of biometric data clusters representing a plurality of biometric data clustered together by reducing a statistic among the plurality of biometric data; responsive to the comparison, selecting one of the plurality of biometric data clusters; retrieving a cryptographic key from a cryptographic key database associated with the selected one of the plurality of biometric data clusters; using the cryptographic key to decrypt the user-specific data; and using, on the device, the user-specific data, in a decrypted form. - View Dependent Claims (2, 3, 4, 5)
-
6. A method performed by a device to of utilizing user-specific data on the device, the method comprising:
-
receiving, from a software service, encrypted user data comprising at least one of;
data a user desires to utilize on the device;
or metadata the user desires to use to configure the device;receiving, via a biometric sensor associated with the device, biometric data associated with the user; calculating a metric from the biometric data; comparing the metric to boundaries of a plurality of biometric data clusters, each of the plurality of biometric data clusters representing a plurality of biometric data clustered together by reducing a statistic among the plurality of biometric data; responsive to the comparison, selecting one of the plurality of biometric data clusters; retrieving a cryptographic key associated with the selected biometric data cluster; decrypting the encrypted user data using the cryptographic key; and using the decrypted data on the device. - View Dependent Claims (7, 8, 9, 10, 11, 12)
-
-
13. A system for using a software-service with user-specific data, the system comprising:
-
a memory; a processor; a first component that is stored in said memory, that executes on said processor, that;
receives, from the software service, encrypted user data;solicits, from a user, biometric data; sends the biometric data to a second component and receives, in return, a metric derived from the biometric data; compares the metric to boundaries of a plurality of biometric data clusters stored in a biometric database, each of the plurality of biometric data clusters representing a plurality of biometric data clustered together by reducing a statistic among the plurality of biometric data; responsive to the comparison, selects one of the plurality of biometric data clusters; decrypts the encrypted user data using a selected cryptographic key; the biometric database storing a plurality of cryptographic keys for each of the plurality of biometric data clusters; and the second component that; receives the biometric data from the first component; calculates the metric from the biometric data; returns the metric to the first component. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification