System, portable device and method for digital authenticating, crypting and signing by generating short-lived cryptokeys
Abstract
A system for authentication, encryption and/or signing, as well as corresponding devices and methods, that use temporary but repeatable encryption keys uniquely connected to the user and generated from a unique set of input parameters. The system comprises an input device designed to extract predetermined characteristic values from value input by the user, which value is specific to the user, by means of a given algorithm, which algorithm is designed to remove the natural variation in the characteristic values in order to yield an identical set of characteristic values upon input of the same value, and a device designed to generate at least one user specific encryption key comprising said characteristic values.
Claims
exact text as granted — not AI-modified1 . A system for authentication, encryption and/or signing, characterised in that it includes an input device ( 105 ) designed by means of a given algorithm to extract predetermined characteristic values from a value input by a user, which value is specific to the user, where the characteristic values supplied exhibit a natural variation, which algorithm is designed to remove the natural variations in the characteristic values in order to yield an identical set of characteristic values on input of the corresponding values,
said algorithm being constituted by quantification means for quantification of the input signal sampled by said input device, by selecting a number of characteristic values represented in the sampled signal, splitting the sample space corresponding to said characteristic values into intervals or pockets of chosen sizes, the characteristic values thus being positioned in corresponding intervals or pockets, and a device ( 106 ) designed to generate at least one user specific encryption key comprising said characteristic values.
2 . A system according to claim 1 , characterised in that the input value consists of biometric data.
3 . A system according to claim 1 , characterised in that the device ( 106 ) for generation of at least one encryption key includes a prime number generator.
4 . A system according to claim 1 , 2 or 3 , characterised in that the device ( 106 ) for generation of at least one encryption key is connected to a device ( 102 ) for input of at least one user code, thereby to increase the complexity of the input to the generation of the encryption key(s) and consequently the level of security.
5 . A system according to claim 4 , characterised in that the device ( 106 ) for generation of at least one encryption key is given a system input (for instance a serial number) in addition to said user code, so as to increase further the complexity of the input to the generation of the encryption key (s) and consequently the level of security.
6 . A system according to claim 5 , characterised in that the device ( 106 ) for generation of at least one encryption key from characteristic values generates one or more sets of unique key sets for every user.
7 . A portable device for secure authentication, encryption and/or signing, comprising a system according to one of claims 1 - 6 , characterised in that it is designed so as on the basis of the input values to produce a user specific signal suitable for identifying the user.
8 . A portable device according to claim 7 , characterised in that the input value consists of biometric data.
9 . A portable device that forms a user assigned master key that will operate electronic locks/switches, characterised in that an input device ( 105 ) to the portable device is designed to extract predetermined characteristic values from an input value, in the form of e. g. the user's fingerprints, by means of an algorithm, which algorithm is designed to remove natural variations in the characteristic values in order to yield an identical set of characteristic values upon input of the same value, that a device ( 106 ) in the portable device is designed to generate at least one user specific encryption key comprising said characteristic values.
10 . A portable device according to claim 9 , characterised in that the input value consists of biometric data.
11 . A method of encryption/signing, characterised in that a variable security clearance is provided through a device ( 106 ) designed to generate at least one encryption key from characteristic values being supplied with at least one of or a combination of a user code, a stored system attribute (e. g. a serial number) and a biometric input, where the biometric input confirms that the user is authorised, the correct alphanumeric code confirms that a deliberate act has been carried out, and the proper hardware confirms that an authorised hand-held device is being used.
12 . A method according to claim 11 , characterised in that the device ( 106 ) for generation of at least one encryption key from characteristic values generates one or more sets of unique key sets for every user.
13 . A method according to claim 11 or 12 or any of the preceding claims, characterised in that the user dynamically changes a key set—without going through a new process of registration.
14 . A method according to one of claims 11 - 13 , characterised in that the key input is quantified by means of quantification techniques described.
15 . A method according to claim 14 , characterised in that information is stored in the public key.
16 . A method of categorising variable characteristic values for one user, characterised in the following steps:
through repeated measurements determination of the average value and any variation in at least one characteristic value for the user, comparison of the characteristic value with a pre-defined set of categorised values and determination of a user specific differential value that indicates the difference between the average of the characteristic value and the nearest category, storage of the user specific differential value in a suitable memory for use in processing of subsequent categorisation of supplied characteristic values.
17 . A method according to claim 16 , characterised in that information is stored in the public key.
18 . A method of generating repeatable characteristic values on the basis of user specific characteristic values and the differential value according to claim 16 , characterised in that the user specific characteristic values are displaced by an amount and in a direction corresponding to the stored differential value and then compared with the predetermined categories of characteristic valuesCited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.