System and Method for Electronic Certification and Authentification
First Claim
Patent Images
1. A system for electronic certification and authentication, comprising:
- a main module (11);
a first subordinate module (12);
a database (14) for storing personal data and biometric data, anda biometric device (22) for capturing biometric data;
wherein the main module (11) is configured to;
generate a first asymmetric key pair for encrypting and decrypting biometric data;
generate a second asymmetric key pair for encrypting and decrypting personal data;
enroll a client for the first subordinate module (12) by;
capturing personal data of the client;
encrypting personal data of the client with a first key of the second asymmetric key pair;
storing the encrypted personal data of the client in the database (14);
capturing biometric data of the client by means of the biometric device (22);
encrypting the captured biometric data of the client with a first key of the first asymmetric key pair;
storing the encrypted biometric data of the client in the database (14); and
providing a client identity and a client password;
and wherein the first subordinate module (12) is configured to;
certify an identity of a client by;
capturing biometric data of the client by means of the biometric device (22);
decrypting the biometric data of the client which is stored in the database (14) with a second key of the first asymmetric key pair; and
comparing the biometric data captured by the biometric device (22) with the decrypted biometric data stored in the database (14).
1 Assignment
0 Petitions
Accused Products
Abstract
The invention relates to electronic document security systems and in particular to user authentication and to the certification and secure transfer of sensitive document information of various type, like whole documents, certificates, signatures, stamps, etc., especially by verifying its correctness and safety/immunity from fraud.
44 Citations
20 Claims
-
1. A system for electronic certification and authentication, comprising:
-
a main module (11); a first subordinate module (12); a database (14) for storing personal data and biometric data, and a biometric device (22) for capturing biometric data; wherein the main module (11) is configured to; generate a first asymmetric key pair for encrypting and decrypting biometric data; generate a second asymmetric key pair for encrypting and decrypting personal data; enroll a client for the first subordinate module (12) by; capturing personal data of the client; encrypting personal data of the client with a first key of the second asymmetric key pair; storing the encrypted personal data of the client in the database (14); capturing biometric data of the client by means of the biometric device (22); encrypting the captured biometric data of the client with a first key of the first asymmetric key pair; storing the encrypted biometric data of the client in the database (14); and providing a client identity and a client password; and wherein the first subordinate module (12) is configured to; certify an identity of a client by; capturing biometric data of the client by means of the biometric device (22); decrypting the biometric data of the client which is stored in the database (14) with a second key of the first asymmetric key pair; and comparing the biometric data captured by the biometric device (22) with the decrypted biometric data stored in the database (14). - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for electronic certification and authentication for use in a system comprising a main module (11), first subordinate module (12), a second subordinate module (13), a database (14) for storing biometric data, and a biometric device (22) for capturing biometric data;
-
the method comprising the following steps carried out by the main module (11); generating a first asymmetric key pair for encrypting and decrypting biometric data; generating a second asymmetric key pair for encrypting and decrypting personal data; enrolling a client for the first subordinate module (12) by; encrypting personal data of the client with a first key of the second asymmetric key pair; storing the encrypted personal data of the client in the database (14); capturing biometric data of the client by the biometric device (22); encrypting the captured biometric data of the client with a first key of the first asymmetric key pair; and storing the encrypted biometric data of the client in the database (14); assigning a client password and a client identity to the client; the method further comprising the following steps carried out by the first subordinate module (12); certifying an identity of a client by; capturing biometric data of the client by means of the biometric device (22); decrypting the biometric data of the client which is stored in the database (14) with a second key of the first asymmetric key pair; comparing the biometric data captured by the biometric device (22) with the decrypted biometric data stored in the database (14). - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification