IPC분류정보
국가/구분 |
United States(US) Patent
등록
|
국제특허분류(IPC7판) |
|
출원번호 |
US-0613627
(2006-12-20)
|
등록번호 |
US-8190908
(2012-05-29)
|
발명자
/ 주소 |
- Jazayeri, Mehdi
- Werner, Jeremy Isaac Nathaniel
- Madhav, Kiran
|
출원인 / 주소 |
|
대리인 / 주소 |
|
인용정보 |
피인용 횟수 :
14 인용 특허 :
2 |
초록
▼
An architecture is presented that controls access to secure data via biometric verification. The system comprises a memory module that communicates with biometric data to establish a heightened level of security for controlling access to data stored in the non-volatile memory. The memory module incl
An architecture is presented that controls access to secure data via biometric verification. The system comprises a memory module that communicates with biometric data to establish a heightened level of security for controlling access to data stored in the non-volatile memory. The memory module includes a security processor, non-volatile memory, and volatile memory. The security processor provides for concurrent processing of security protocols, provides a secure execution environment within the memory module to evaluate and store biometric data, communicates with the biometric data sensors to fetch the biometric data, and analyzes the biometric data to control access to data stored in the non-volatile memory. Specifically, biometric data is input and communicated to the security processor, then compared against the existing biometric templates stored in the non-volatile memory. If the data matches, verification is sent to the external processor and the user is granted access to the secure assets.
대표청구항
▼
1. An apparatus that secures a transaction via biometric verification, comprising: a display configured to receive first input that selects a payment application in connection with a transaction;a biometric sensor configured to receive biometric data; anda security processor configured to compare th
1. An apparatus that secures a transaction via biometric verification, comprising: a display configured to receive first input that selects a payment application in connection with a transaction;a biometric sensor configured to receive biometric data; anda security processor configured to compare the biometric data against a biometric template stored in non-volatile memory and to determine whether the biometric data matches the biometric template within a defined degree of similarity;wherein the security processor is further configured to send information to the transaction terminal authorizing completion of the transaction in response to a determination that the biometric data matches the biometric template within the defined degree of similarity and if the apparatus is placed within a defined distance from the transaction terminal; andwherein the security processor is further configured to cancel the transaction if the apparatus is not placed within the defined distance within a defined time limit after the determination that the biometric data matches the biometric template within the defined degree of similarity. 2. The apparatus of claim 1, wherein the biometric data comprises at least one of iris data, face data, fingerprint data, or deoxyribonucleic acid (DNA) data. 3. The apparatus of claim 1, further comprising volatile memory configured to communicate with an external processor, and non-volatile memory configured to store secure data in at least one of a plurality of secure memory partitions having individually controllable access rights. 4. The apparatus of claim 3, wherein the security processor, the external processor, and the non-volatile memory are incorporated to form a mobile device. 5. The apparatus of claim 4, wherein the mobile device comprises one of a multimedia player, a Personal Digital Assistant (PDA), a cell phone, or a hand held computing device. 6. The apparatus of claim 3, wherein the security processor is configured to allow access to the secure data in the at least one of the plurality of secure memory partitions of the non-volatile memory in response to a determination that the biometric data matches the biometric template within the defined degree of similarity. 7. The apparatus of claim 6, wherein the security processor is configured to issue a notice of verification to the external processor in response to the determination that the biometric data matches the biometric template within the defined degree of similarity. 8. The apparatus of claim 3, wherein the non-volatile memory is configured to store security software on a first of the plurality of secure memory partitions, the secure data on a second of the plurality of secure memory partitions, and the biometric data on a third of the plurality of secure memory partitions, wherein the security software includes at least a biometric validation algorithm for use by the security processor. 9. The system of apparatus 8, wherein the security software is configured to identify points of data of the biometric data as match points, and to store the match points as a template for use by the security processor to authenticate subsequent biometric data. 10. The apparatus of claim 9, wherein the security processor is configured to collect the biometric data through a direct connection with a biometric sensor. 11. The apparatus of claim 10, wherein the security processor and biometric sensor are configured to communicate through an encrypted channel. 12. The apparatus of claim 11, wherein the encrypted channel is enabled through use of a common secret key. 13. The system of claim 3, wherein the security processor is configured to deny access to a subset of the plurality of secure memory partitions based on a comparison of the biometric data against the biometric template. 14. The apparatus of claim 1, wherein the display is further configured to receive second input that selects an account to be used for the transaction. 15. The apparatus of claim 1, wherein the security processor includes a voltage detector configured to indicate whether voltage levels of the security processor are outside an acceptable range, and an internal oscillator that provides a clock to the security processor, wherein the clock provides a clock signal employed by a separate near field communication (NFC) radio frequency (RF) chip or a biometric sensor utilized to obtain the biometric data. 16. A method of controlling access to secure data via biometric verification, comprising: selecting a payment application for conducting a payment transaction via a mobile device;inputting biometric data into the mobile device;converting the biometric data into specified match points;processing the match points into a numeric value;comparing the numeric value against a biometric template stored in a non-volatile memory of the mobile device; andif the comparing determines that the numerical value matches the biometric template within a defined tolerance: initiating a timer having a defined timeout value;in response to determining that the mobile device is located within a defined range of a transaction terminal before the timer has reached the defined timeout value: sending an indication from the mobile device to the transaction terminal validating the payment transaction, andin response to determining that the mobile device has not been located within the defined range before the timer has reached the defined timeout value: cancelling the payment transaction. 17. The method of claim 16, further comprising: identifying points of data within the biometric data as match points;storing the match points as a template; andemploying the match points to subsequently received biometric data. 18. The method of claim 17, further comprising: storing security software on a first partition of a non-volatile memory of the mobile device, the security software comprising at least a biometric validation algorithm for performing the comparing;storing secure data on a second partition of the non-volatile memory; andstoring the biometric data on a third partition of the non-volatile memory. 19. The method of claim 18, further comprising preventing access to the secure data in response to determining that a voltage level associated with a security processor controlling access to the non-volatile memory falls outside an acceptable range. 20. The method of claim 18, further comprising allowing access to the secure data if the comparing determines that the numerical value matches the biometric template within the defined tolerance. 21. A method of controlling access to account information via biometric data, comprising: selecting a payment application on a mobile device in connection with a purchase transaction;selecting an account to use for the purchase transaction, wherein information regarding the account is stored in a first secure partition of a non-volatile memory of the mobile device that is divided into multiple secure partitions;receiving biometric data at the mobile device;confirming that the biometric data matches a biometric template stored in a second secure partition of the non-volatile memory;initiating a timer in response to the confirming;determining that the mobile device has been placed within range of a transaction terminal before the timer reaches a defined timeout value;transmitting a validation output to a transaction terminal authorizing the purchase transaction in response to the determining; andcancelling the purchase transaction in response to determining that the mobile device has not been placed within range of the transaction terminal before the timer reaches the defined timeout value. 22. The method of claim 21, wherein the account comprises at least one of a credit account, a debit account, or a pre-paid cash account. 23. The method of claim 21, wherein the receiving the biometric data includes receiving the biometric data from at least one of an iris scanner, a fingerprint reader, a face scanner, or a deoxyribonucleic acid (DNA) scanner.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.