Method and apparatus for securely transmitting and authenticating biometric data over a network
First Claim
1. An apparatus for collecting and transmitting biometric data over a network, the apparatus comprised of:
- a sensor having a unique identifier, the sensor collecting biometric data;
a token generator, coupled to the sensor, the token generator sending a token to the sensor;
a digitizer coupled to the sensor, the digitizer converting the biometric data collected by the sensor into a digital file;
a combiner coupled to the sensor, the combiner creating a data package comprising the digital file, the unique identifier and the token;
a code generator coupled to the data package, the code generator creating a signed data package; and
an output interface coupled to the combiner, the interface outputting the signed data package to a network.
8 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for collecting and securely transmitting biometric data over a network contains a sensor, preferably a camera, for collecting biometric data and code generating hardware and software. The camera data is digitized and a unique code which is a function of the digitized camera data, a secret key and a transaction token is attached to the digital file. The code may identify the sensor which acquired the biometric information, a time at which the biometric information was acquired, or a time interval during which the data is considered to be valid, and a unique transaction code. The data and code are transmitted over a network to a server which authenticates that the data has not been altered by recomputing the code using its own knowledge of the secret key and transaction token needed to generate the code. If the data is authentic the server then computes a biometric template using the data. This biometric template is then compared to a previously defined biometric template to identify the user and give the user access to a secured resource. The system can be used for online banking and Internet commerce transactions.
611 Citations
41 Claims
-
1. An apparatus for collecting and transmitting biometric data over a network, the apparatus comprised of:
-
a sensor having a unique identifier, the sensor collecting biometric data;
a token generator, coupled to the sensor, the token generator sending a token to the sensor;
a digitizer coupled to the sensor, the digitizer converting the biometric data collected by the sensor into a digital file;
a combiner coupled to the sensor, the combiner creating a data package comprising the digital file, the unique identifier and the token;
a code generator coupled to the data package, the code generator creating a signed data package; and
an output interface coupled to the combiner, the interface outputting the signed data package to a network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 37)
-
-
14. A system for collecting and transmitting biometric data over a network comprised of:
-
a. at least one client system comprised of;
a sensor for collecting biometric data, the sensor having a unique identifier;
a token-generator coupled to the sensor, the token generator sending a token to the sensor;
a digitizer coupled to the sensor, the digitizer converting the biometric data collected by the sensor into a digital file;
a combiner coupled to the digital file and the sensor, the combiner creating a data package comprising the digital file, the unique identifier and the token;
a code generator coupled to the data package, the code generator creating a signed data package; and
an output interface coupled to the combiner, the interface outputting the signed data package to a network;
b. at least one server containing a program for receiving, authenticating biometric data, computing the biometric template and performing a verification/recognition function based on the data received from the at least one client system; and
c. a network connecting the at least one client system to the at least one server. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 38, 39, 40)
-
-
28. A method for collecting and transmitting biometric data over a network to a server comprising:
-
receiving a token from an authentication server;
acquiring biometric information from a sensor, the sensor having a unique identifier;
converting the biometric information into a biometric digital file;
combining the digital file, the token and the unique identifier into a data package;
signing the data package;
transmitting the signed data package over a network to a server; and
authenticating the signed data package. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36, 41)
a. comparing the biometric template to a stored biometric template; and
b. giving or refusing access to a secured resource based upon such comparison.
-
-
32. The method of claim 28 wherein the network is comprised of the Internet.
-
33. The method of claim 28 wherein the biometric information is acquired by a client system and also comprising the steps of:
-
a. requesting the server to authorize access to a secured resource by transmitting a request from the client system through the network to the server; and
b. giving or refusing access to a secured resource based upon a review of the biometric information.
-
-
34. The method of claim 28 also comprising the steps of:
-
a. issuing a token from the server to the client system;
b. appending the token to the digital file at the client system prior to transmitting the digital file to the server; and
c. checking for the presence of the token with the digital file at the server.
-
-
35. The method of claim 28 also comprising encrypting the data package before transmitting and then decrypting at the server.
-
36. The method of claim 28 also comprising at least one of the steps of cropping the digital file and compressing the digital file before transmitting.
-
41. The method of claim 28 wherein said token comprises a time component.
Specification