US2014149295A1PendingUtilityA1

Universal secure registry

57
Assignee: WEISS KENNETH PPriority: Feb 21, 2006Filed: Nov 4, 2013Published: May 29, 2014
Est. expiryFeb 21, 2026(expired)· nominal 20-yr term from priority
G07C 9/27G07C 9/26G07C 9/257G06Q 30/06H04L 9/32H04L 9/3231G06Q 20/4012H04L 63/102H04L 63/0853G06F 21/35H04L 9/3271G06F 21/32H04L 2209/805G06Q 10/06G06F 2221/2115G06Q 20/3674H04L 9/30G06Q 20/3821G06Q 20/40H04L 63/0861G06Q 20/3676G06F 21/6245G06Q 40/02G06Q 20/382G06Q 20/385G06Q 20/3672H04L 2209/56G06Q 20/20G06Q 50/22G06Q 20/206G16H 10/60G06Q 20/40145
57
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

In one embodiment, a user device is configured to allow a user to select any one of a plurality of accounts associated with the user to employ in a financial transaction. In one embodiment, the user device includes a biometric sensor configured to receive a biometric input provided by the user, a user interface configured to receive a user input including secret information known to the user and identifying information concerning an account selected by the user from the plurality of accounts. In a further embodiment, the user device includes a communication link configured to communicate with a secure registry, and a processor coupled to the biometric sensor to receive information concerning the biometric input, the user interface, and the communication link. According to one embodiment, the processor is configured to generate a non-predictable value and to generate encrypted authentication information from the non-predictable value, the identifying information, and at least one of the information concerning the biometric input and the secret information, and to communicate the encrypted authentication information via the communication link to the secure registry.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
         1 - 20 . (canceled) 
     
     
         21 . An electronic ID device configured to provide encrypted authentication information to execute a secure operation, comprising:
 a biometric sensor configured to receive a biometric input provided by the user;   a user interface configured to receive a user input including secret information known to the user and information concerning a secure operation to be executed;   a communication interface configured to communicate with a system configured to execute the secure operation;   a processor coupled to the biometric sensor, the user interface, and the communication interface, the processor being programmed to activate the electronic ID device based on successful authentication by the electronic ID device of at least the biometric input or the secret information, the processor also being programmed such that once the electronic ID device is activated the processor is configured to generate a non-predictable value and to generate encrypted authentication information from the non-predictable value, from information derived from at least a portion of the biometric input, and from information derived from at least a portion of the secret information, and to communicate the encrypted authentication information via the communication interface to the system configured to execute the secure operation.   
     
     
         22 . The electronic ID device of  claim 21 , wherein the communication interface comprises a transmitter configured to wirelessly transmit the encrypted authentication information to the system configured to execute the secure operation. 
     
     
         23 . The electronic ID device of  claim 21 , wherein the system providing the secure operation is configured to transmit the encrypted authentication information to a secure registry software and to receive authorization to perform the secure operation from the secure registry software. 
     
     
         24 . The electronic ID device of  claim 21 , wherein the secure operation includes a secure transaction, and the system configured to perform the secure operation comprises a point-of-sale (POS) device. 
     
     
         25 . The electronic ID device of  claim 24 , wherein the user interface is configured to display options for purchase. 
     
     
         26 . The electronic ID device of  claim 24 , wherein the user interface is configured to accept user selection of at least one product or service for purchase. 
     
     
         27 . The electronic ID device of  claim 21 , wherein execution of the secure operation permits access to a secure location, and the system configured to execute the secure operation is further configured to manage access to the secure location. 
     
     
         28 . The electronic ID device of  claim 21 , wherein the electronic ID device comprises a discrete code associated with the electronic ID device. 
     
     
         29 . The electronic ID device of  claim 21 , wherein the user interface is configured to initiate authentication with the system configured to execute the secure operation responsive to the user manually entering a secret code. 
     
     
         30 . The electronic ID device of  claim 21 , wherein the user initiates authentication with the system configured to execute the secure operation. 
     
     
         31 . The electronic ID device of  claim 21 , wherein at least a portion of the biometric input received by the biometric sensor is communicated to secure registry software for authentication by the electronic device prior to generation of the encrypted authentication information. 
     
     
         32 . The electronic ID device of  claim 21 , wherein the secret information includes the identifying information. 
     
     
         33 . The electronic ID device of  claim 21 , further comprising a memory coupled to the processor, wherein the memory stores information employed by the electronic ID device to authenticate the biometric received by the biometric sensor. 
     
     
         34 . The electronic ID device of  claim 31 , wherein the electronic ID device does not permit the entry of the user input if the biometric input received by the biometric sensor is determined to not belong to an authorized user of the electronic ID device. 
     
     
         35 . The electronic ID device of  claim 32 , wherein the secret information known to the user includes a PIN, and wherein the authentication of both the secret information and the biometric input activate the electronic ID device for the secure operation. 
     
     
         36 . The electronic ID device of  claim 32 , wherein data stored in the memory is unavailable to an individual in possession of the electronic ID device until the electronic ID device is activated. 
     
     
         37 . The electronic ID device of  claim 34 , wherein the data stored in the memory is subject to a mathematical operation that acts to modify the data such that it is unintelligible until the electronic ID device is activated. 
     
     
         38 . The electronic ID device of  claim 33 , wherein the memory is configured to store an electronic code unique to the electronic ID device, wherein the processor is configured to generate a seed using at least two of the electronic serial number, a discrete code associated with the electronic ID device, the PIN, a time value, and information derived from the biometric input to generate the encrypted authentication information, and wherein the seed is employed by the processor to generate the non-predictable value. 
     
     
         39 . The electronic ID device of  claim 21 , wherein the electronic ID device and the system configured to execute the secure operation execute a challenge-response protocol as part of authentication. 
     
     
         40 . A method of controlling execution of a secure operation, the method comprising acts of:
 authenticating an identity of a user to an electronic ID device based on at least biometric data received by the electronic ID device from the user or secret information known to the user and provided to the electronic ID device;   activating the electronic ID device based on successful authentication;   generating, with the electronic ID device, a non-predictable value;   generating, with the electronic ID device, encrypted authentication information from the non-predictable value, from information derived from at least a portion of the biometric input, and from information derived from at least a portion of the secret information;   communicating the encrypted authentication information from the electronic ID device to the system configured to execute the secure operation.   
     
     
         41 . The method of  claim 40 , further comprising an act of receiving at least a portion of a users secret information manually within a user interfaces. 
     
     
         42 . The method of  claim 40 , further comprising an act of displaying, on a user interface indicators for the plurality of user accounts stored in a memory of the electronic ID device. 
     
     
         43 . The method of  claim 40 , further comprising an act of de-activating the electronic ID device without generating the encrypted authentication information if the identity of the user is not successfully authenticated to the electronic ID device. 
     
     
         44 . The method of  claim 40 , further comprising an act of generating a seed from which the authentication information is generated by employing at least two of the biometric data, the secret information known to the user, and a discrete code unique to the electronic ID device. 
     
     
         45 . The method of  claim 40 , further comprising an act of generating encrypted authentication information in a manner that allows the identification of the user and the selected one of the plurality of user accounts by secure registry software. 
     
     
         46 . The method of  claim 40 , further comprising displaying options for selection of the system configured to execute the secure operation on a user interface. 
     
     
         47 . The method of  claim 46 , further comprising selecting with the user interface at least one product, service, or secure operation. 
     
     
         48 . The method of  claim 46 , further comprising maintaining an audit trail of purchases made. 
     
     
         49 . The method of  claim 40 , where the user initiates an authentication request on the electronic ID device triggering communication of the encrypted authentication information from the electronic ID device to the system configured to execute the secure operation.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.