A reader element is associated with an identity verification element. The reader element has a biometric input device and is configured, through enrollment of a biometric element is used to encrypt a character sequence associated with the identity verification element. In a verification phase subseq
A reader element is associated with an identity verification element. The reader element has a biometric input device and is configured, through enrollment of a biometric element is used to encrypt a character sequence associated with the identity verification element. In a verification phase subsequent to the enrollment, a user may be spared a step of providing the character sequence by, instead, providing the biometric element. Responsive to receiving the biometric element, the reader element may decrypt the character sequence and provide the character sequence to the identity verification element.
대표청구항▼
1. A method of handling a factor of a multi-factor authentication sequence, said method comprising: receiving a biometric candidate at a device associated with an identity verification element, said device lacking access to a biometric template until received from said identity verification element;
1. A method of handling a factor of a multi-factor authentication sequence, said method comprising: receiving a biometric candidate at a device associated with an identity verification element, said device lacking access to a biometric template until received from said identity verification element;generating a cryptographic key from said biometric candidate;decrypting a previously stored, encrypted character sequence associated with said identity verification element, wherein said decrypting employs said cryptographic key and results in a decrypted character sequence;transmitting said decrypted character sequence to said identity verification element;receiving, from said identity verification element, an indication of character sequence verification;determining, from said indication, that said identity verification element has verified said decrypted character sequence; andresponsive to said determining, proceeding with said multi-factor authentication sequence by: extracting said biometric template from said identity verification element; anddetermining that said biometric candidate matches said biometric template. 2. The method of claim 1 wherein said biometric candidate comprises a candidate fingerprint. 3. The method of claim 1 wherein said identity verification element comprises a smart card. 4. The method of claim 3 wherein said character sequence comprises a personal identification number associated with said smart card. 5. The method of claim 1 wherein said proceeding with said multi-factor authentication sequence further comprises: receiving a random challenge from an associated device;transmitting said random challenge to said identity verification element;receiving a signed challenge from said identity verification element; andtransmitting said signed challenge to said associated device. 6. A smart card reader comprising: a storage component interface for receiving a smart card for communication therewith;a memory for storing an encrypted character sequence associated with said smart card, said memory lacking access to a biometric template until received from said smart card;a biometric input device; anda processor configured to: receive a biometric candidate from said biometric input device;generate a cryptographic key from said biometric candidate;decrypt said encrypted character sequence, wherein said decrypting employs said cryptographic key and results in a decrypted character sequence;transmit said decrypted character sequence to said smart card;receive, from said smart card, an indication of character sequence verification;determine, from said indication, that said smart card has verified said decrypted character sequence; andresponsive to said determining, proceed with a multi-factor authentication sequence by: extracting said biometric template from said smart card; anddetermining that said biometric candidate matches said biometric template. 7. The smart card reader of claim 6 wherein said biometric candidate comprises a candidate fingerprint. 8. The smart card reader of claim 6 wherein said character sequence comprises a personal identification number associated with said smart card. 9. The smart card reader of claim 6 wherein, to proceed with said multi-factor authentication sequence, said processor is further configured to: receive a random challenge from an associated device;transmit said random challenge to said identity verification element;receive a signed challenge from said identity verification element; andtransmit said signed challenge to said associated device. 10. A non-transitory computer readable medium containing computer-executable instructions that, when performed by a processor, cause said processor to: receive a biometric candidate at a device associated with an identity verification element, said device lacking access to a biometric template until received from said identity verification element;generate a cryptographic key from said biometric candidate;decrypt a previously stored, encrypted character sequence associated with an identity verification element, wherein said decrypting employs said cryptographic key and results in a decrypted character sequence;transmit said decrypted character sequence to said identity verification element;receive, from said identity verification element, an indication of character sequence verification;determine, from said indication, that said identity verification element has verified said decrypted character sequence; andresponsive to said determining, proceed with a multi-factor authentication sequence by: extracting said biometric template from said identity verification element; anddetermining that said biometric candidate matches said biometric template. 11. The non-transitory computer readable medium of claim 10 wherein said biometric candidate comprises a candidate fingerprint. 12. The non-transitory computer readable medium of claim 10 said identity verification element comprises a smart card. 13. The non-transitory computer readable medium of claim 12 wherein said character sequence comprises a personal identification number associated with said smart card. 14. The non-transitory computer readable medium of claim 10 wherein, to further proceed with said multi-factor authentication sequence, said instructions further cause said processor to: receive a random challenge from an associated device;transmit said random challenge to said identity verification element;receive a signed challenge from said identity verification element; andtransmit said signed challenge to said associated device.
Tomko George J.,CAX ; Stoianov Alexei,CAX, Method and apparatus for securely handling a personal identification number or cryptographic key using biometric techniq.
Fujii, Yusaku; Shinzaki, Takashi, Method and equipment for encrypting/decrypting physical characteristic information, and identification system utilizing the physical characteristic information.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.