Personal digital key initialization and registration for secure transactions
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06F-021/31
G07C-009/00
H04L-029/06
H04L-009/32
G06F-021/34
G06F-021/32
출원번호
US-0448891
(2014-07-31)
등록번호
US-9251326
(2016-02-02)
발명자
/ 주소
Giobbi, John J.
Brown, David L.
Hirt, Fred S.
출원인 / 주소
Proxense, LLC
대리인 / 주소
Patent Law Works LLP
인용정보
피인용 횟수 :
1인용 특허 :
102
초록▼
A system and method provide efficient, secure, and highly reliable authentication for transaction processing and/or access control applications. A personal digital key (PDK) is programmed using a trusted programming device to initialize and/or register the PDK for use. In one embodiment, the initial
A system and method provide efficient, secure, and highly reliable authentication for transaction processing and/or access control applications. A personal digital key (PDK) is programmed using a trusted programming device to initialize and/or register the PDK for use. In one embodiment, the initialization and registration processes are administered by a specialized trusted Notary to ensure the processes follow defined security procedures. In a biometric initialization, the programming device acquires a biometric input from a user and writes the biometric data to a tamperproof memory in the PDK. In registration, the Programmer communicates to one or more remote registries to create or update entries associated with the user PDK. Once initialized and registered, the PDK can be used for various levels of secure authentication processes.
대표청구항▼
1. A method comprising: reading, with a programming device, notary information from a notary personal digital key (PDK) to determine whether a notary is authorized to witness an initialization of a first PDK;determining, with the programming device, a status of the notary PDK based at least in part
1. A method comprising: reading, with a programming device, notary information from a notary personal digital key (PDK) to determine whether a notary is authorized to witness an initialization of a first PDK;determining, with the programming device, a status of the notary PDK based at least in part on a registry including data describing the status of the notary PDK;responsive to determining that the status of the notary PDK is in a good standing, determining, with the programming device, that the notary PDK is authorized to witness the initialization of the first PDK;acquiring a biometric input from a user, wherein the acquisition is witnessed by the notary; andresponsive to the notary being authorized, storing a biometric profile on the first PDK. 2. The method of claim 1, comprising: determining a status of the first PDK based at least in part on the registry including data describing the status of the first PDK; anddetermining that the first PDK is authorized for initialization responsive to determining the first PDK is in good standing,wherein one or more of determining that the first PDK is authorized for initialization, acquiring the biometric information from the user and storing the biometric profile on the first PDK is responsive to the status of the first PDK being in good standing. 3. The method of claim 2, wherein one or more of the notary PDK and the first PDK are in good standing when not reported as lost, stolen, expired or revoked. 4. The method of claim 2, wherein the first PDK is in good standing if the first PDK has not been initialized. 5. The method of claim 1, wherein acquiring the biometric input comprises: scanning the biometric input; andperforming a transformation on the biometric input to generate the biometric profile. 6. The method of claim 5, comprising: checking a quality of the scanned biometric input; andresponsive to the quality not being satisfactory, re-scanning the biometric input. 7. The method of claim 1, comprising storing initialization history data including at least one of an identifier of the first PDK, an identifier of the notary PDK, a programming device ID and a site ID. 8. The method of claim 1, comprising writing initialization history data to the first PDK, wherein initialization history data comprises at least one of a an identifier of the first PDK, an identifier of the notary PDK, a programming device ID and a site ID. 9. The method of claim 1, comprising: receiving a hardware authentication request from the first PDK;transmitting programming device information to the first PDK; andresponsive to the first PDK determining that the programming device is a valid device, receiving authorization from the first PDK to continue initialization. 10. The method of claim 1, comprising: receiving a PDK information request from the programming device;transmitting PDK information to the programming device; andresponsive to the programming device determining that the first PDK is a valid device, receiving authorization from the programming to continue initialization. 11. The method of claim 1, further comprising determining if the programming device is in good standing. 12. The method of claim 11, wherein the programming device is in good standing if the programming device has not been reported as lost, stolen, expired or revoked and the programming device does not comprise altered software. 13. The method of claim 1, wherein the notary associated with the notary PDK administers the initialization process from a remote location. 14. The method of claim 1, further comprising transmitting registry information to a remote registry to add or update a registry entry, wherein the registry information comprises at least one of a user PDK ID, purchasing information and personal information. 15. An apparatus comprising: a personal digital key (PDK) interface adapted to receive notary information from a notary PDK for determining whether a notary is authorized to witness initialization;a biometric reader adapted to acquire a biometric input from the user; anda processor coupled to the PDK interface and the biometric reader to determine that the notary PDK is authorized to witness an initialization based at least in part on the notary information and responsive to determining that a status of the notary PDK is in good standing, to instruct the PDK interface to write a biometric profile based on the biometric input to a user PDK responsive to authorization of the notary PDK. 16. The apparatus of claim 15 comprising: a network interface coupled to the processor, the network interface adapted to transmit notary information to a remote registry and receive data describing the status of the notary PDK from the remote registry; andwherein one or more of determining that the notary PDK is authorized, acquiring the biometric information from the user and storing the biometric profile on the user PDK is responsive to the status of the notary PDK being in good standing. 17. The apparatus of claim 15 comprising: a network interface coupled to the processor, the network interface adapted to transmit PDK information to a remote registry and receive the data describing the status of the user PDK from the remote registry; andwherein one or more of acquiring the biometric information from the user and storing the biometric profile on the PDK is responsive to the status of the user PDK being in good standing. 18. The apparatus of claim 15, wherein the biometric reader writes the biometric input to the user PDK responsive to determining that the programming device is in good standing. 19. The system of claim 15, wherein the biometric reader is adapted to obtain a representation of physical or behavioral characteristics derived from the user. 20. The system of claim 15, wherein the biometric reader comprises at least one of a fingerprint scanner, a retinal scanner, an iris scanner, a face scanner, a palm scanner, a DNA analyzer, a signature analyzer and a voice analyzer.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (102)
Yap, Sue-Ken; Yourlo, Zhenya Alexander, Apparatus and method for distributing audio and video content.
Van Tilburg Johan,NLX ; Hekstra Andries Pieter,NLX, Authentication system wherein definition signals of two devices are altered, communicated between the two devices, and compared.
Matsuyama, Shinako; Ishibashi, Yoshihito; Futamura, Ichiro; Kon, Masashi; Watanabe, Hideaki, Content distribution system, content distribution method, information processing apparatus, and program providing medium.
Hatakeyama, Takahisa; Yoshioka, Makoto; Miyazawa, Yuji, Content usage control system, content usage apparatus, computer readable recording medium with program recorded for computer to execute usage method.
Steven T. Ansell ; Andrew R. Cherenson ; Mark E. Paley ; Steven B. Katz ; John Michael Kelsey, Jr. ; Bruce Schneier, Copy security for portable music players.
Jones, Thomas C.; Brackenridge, Billy, Digital content distribution, transmission and protection system and method, and portable device for use therewith.
Johnson, Barry W.; Olvera, Kristen R.; Russell, David C.; Tillack, Jonathan A., In-circuit security system and methods for controlling access to and use of sensitive data.
Rosin Robert ; Hsu P. Robert ; Sonoda Yumie ; Niijima Makoto,JPX ; Nakano Hiroaki, Internet content and television programming selectively displaying system.
Hammersley Scott D. (Rochester MN) Smet Arthur D. (Rochester MN) Wottreng Peter M. (Rochester MN), Method and apparatus for intraprocess locking of a shared resource in a computer system.
Adams, William Mark; Coyne, John Robert; Coyne, Christopher Andrew; Wallace, Raymond Munson, Method and system for creating and operating biometrically enabled multi-purpose credential management devices.
Schena, Robert J.; Anderer, Mike; Ritz, Peter B.; Bernstein, Mike, Method for managing printed medium activated revenue sharing domain name system schemas.
Graunke Gary L. ; Carbajal John ; Maliszewski Richard L. ; Rozas Carlos V., Method for securely distributing a conditional use private key to a trusted entity on a remote system.
Kato Naotaka,JPX ; Kanada Yoshihisa,JPX, Methods and apparatus for downloading data between an information processing device and an external device via a wireless communications technique.
Naotaka Kato JP; Yoshihisa Kanada JP, Methods and apparatus for downloading data between an information processing device and an external device via a wireless communications technique.
Blair William (1154 W. Lunt ; Apt. 302 Chicago IL 60626) Brooks Stanley J. (P.O. Box 906 Douglas GA 31533), Microprocessor controlled security system for computers.
Maes Stephane Herman ; Sedivy Jan,CSX, Portable information and transaction processing system and method utilizing biometric authorization and digital certificate security.
Campinos Arnaldo,FRX ; Fischer Jean-Bernard,FRX, Process for protecting an information item transmitted from a security element to a decoder and protection system using such a process.
Handelman Doron (Givataim ILX) Kranc Moshe (Jerusalem ILX) Fink David (Jerusalem ILX) Zucker Arnold (Ramat Modiim ILX) Smith Perry (Jerusalem ILX) Bar-On Gerson (Kohav Hashahar ILX), Secure access systems and methods utilizing two access cards.
Kamibayashi,Tooru; Yamada,Hisashi; Iwasaki,Hiroshi; Tamura,Masafumi; Ishibashi,Yasuhiro; Kato,Taku; Tatebayashi,Makoto; Harada,Shunji; Katsuta,Noboru, Storage medium and contents protection method using the storage medium.
Michael S. Kupka ; Michael G. Lundgren, System for prepayment of electronic content using removable media and for prevention of unauthorized copying of same.
Getsin, Evgeniy M.; Lamkin, Allan B.; Collart, Todd R., System, method and article of manufacture for remote unlocking of local content located on a client device.
Bianco Peter Garrett ; Boon William Taylor ; Sterling Robert Brewster ; Ware Karl Roger, System, method and computer program product for allowing access to enterprise resources using biometric devices.
Reiter, Michael Kendrick; Kapadia, Apu Chandrasen; Libonati, Alana, Methods, systems, and computer readable media for combating device theft with user notarization.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.