U.S. patent application number 09/780637 was filed with the patent office on 2002-10-03 for self-authenticating identification substrate with encoded packet output.
Invention is credited to Lane, William F..
Application Number | 20020141621 09/780637 |
Document ID | / |
Family ID | 25120186 |
Filed Date | 2002-10-03 |
United States Patent
Application |
20020141621 |
Kind Code |
A1 |
Lane, William F. |
October 3, 2002 |
Self-authenticating identification substrate with encoded packet
output
Abstract
A biometric fingerprint device for self-authenticating
identification of a user of the device including internal memory
and processing means within a substrate of the device and digitized
tonal output for communicating with a remote tone bank for
validation. The digitized tonal output further includes a unique
transaction identifier for increased security, particularly with
retail transactions made via phone, wireless device, Internet,
satellite, or other communication means.
Inventors: |
Lane, William F.; (Wilson,
NC) |
Correspondence
Address: |
JINAN GLASGOW
P O BOX 28539
RALEIGH
NC
276118539
|
Family ID: |
25120186 |
Appl. No.: |
09/780637 |
Filed: |
February 9, 2001 |
Current U.S.
Class: |
382/124 |
Current CPC
Class: |
G07C 9/257 20200101;
G07F 7/1008 20130101; G06Q 20/385 20130101; G07F 7/12 20130101;
G06Q 20/3415 20130101; G07C 9/37 20200101; G07F 7/08 20130101; G06F
21/32 20130101; G07C 2009/00801 20130101; G06Q 20/341 20130101;
G06Q 20/40145 20130101 |
Class at
Publication: |
382/124 |
International
Class: |
G06K 009/00 |
Claims
I claim:
1. A biometric device for self-authenticating identification of at
least one user comprising: a substrate having a fingerprint sensor,
internal memory means for storing digitized information related to
at least one fingerprint of the at least one user, activation means
for initiating internal storage of the information related to the
at least one fingerprint corresponding to the at least one user
upon activation by the at least one user for a first time thereby
creating and recording at least one registered user, an internal
controller, verification means for indicating that the information
related to the at least one fingerprint corresponding to the at
least one registered user has been successfully stored in the
internal memory means, and authentication means for comparing
information related to a sensed fingerprint corresponding to the at
least one user that has been sensed with the stored fingerprint
information of the registered user and for producing an
authentication signal if the sensed fingerprint information matches
the stored fingerprint information of the registered user; wherein
the fingerprint sensor is capable of sensing information related to
a fingerprint; wherein the internal memory means is electrically
connected to the fingerprint sensor, the authentication means, and
the verification means; wherein the activation means is
electrically connected to the fingerprint sensor and the internal
memory means; wherein the internal controller is capable of
independently programming the internal memory means with the
information related to a fingerprint corresponding to the at least
one user by generating an internal control signal to initiate
transfer of the information related to the fingerprint
corresponding to the at least one user to the internal memory means
for storage therein; wherein the verification means further
includes a transmitter for indicating that the information related
to a fingerprint has been successfully stored to create the at
least one registered user; and wherein the authentication signal
includes an encoded information packet for detection of the
confirmation.
2. The biometric device according to claim 1, wherein the encoded
information packet is capable of being transmitted to a remote
transaction facilitator as an encoded information packet
output.
3. The biometric device according to claim 2, wherein the encoded
information packet output includes a digitized tonal output for
detection of the confirmation.
4. The biometric device according to claim 1, further including
encoding means electrically connected to the activation means and
verification means for providing encrypted fingerprint information
corresponding to the stored fingerprint information and the
authentication signal.
5. The biometric device according to claim 1, further including a
unique transaction identifier that is appended to the encoded
information packet related to a fingerprint of the at least one
registered user for preventing duplicate and unauthorized use of
the device.
6. The biometric device according to claim 4, further including a
unique transaction identifier that is digitally appended to the
digitized information related to a fingerprint of the at least one
registered user thereby preventing duplicate and unauthorized use
of the device.
7. The biometric device according to claim 1, wherein the digitized
tonal output is an encoded, digitized tonal representation of the
fingerprint of the registered user.
8. The biometric device according to claim 5, wherein the unique
transaction identifier is attached to and integrated with an
encoded information packet output.
9. The biometric device according to claim 6, wherein the unique
transaction identifier is a predetermined value created relative to
a transaction facilitator with which the user makes a
transaction.
10. The biometric device according to claim 5, wherein the unique
transaction identifier is a date and time value, thereby ensuring
only one unique transaction identifier corresponds with any given
transaction.
11. The biometric device according to claim 7, wherein the date and
time value is determined by an atomic clock for providing a single,
unique date and time value, thereby preventing duplicate and
unauthorized use of the device.
12. The biometric device according to claim 5, wherein the unique
transaction identifier includes a date and time and spatial locator
value for locating the user of the device and the source of the
device making the transaction.
13. The biometric device according to claim 3, wherein the unique
transaction identifier is internally stored on the device substrate
within the internal memory of the device.
14. The biometric device according to claim 1, wherein the encoded
information packet including the representation of the fingerprint
is internally stored on the substrate.
15. The biometric device according to claim 1, wherein the encoded
information packet including the representation of the fingerprint
is converted from a digitized representation of the fingerprint to
a corresponding representation on a musical scale.
16. The biometric device according to claim 1, wherein the encoded
information packet including the representation of the fingerprint
is capable of being validated with a remote transaction
facilitator.
17. The biometric device according to claim 1, wherein the encoded
information packet including the representation of the fingerprint
is communicated to a remote transaction facilitator for conducting
a transaction using the device upon confirmation internally to the
device that the user is the registered user.
18. The biometric device according to claim 17, wherein the encoded
information packet including the representation of the fingerprint
is communicated via modem communication means selected from the
group consisting of digital, wireless, optical, analog, microwave,
EMF signal, and similar transmission means, and combinations
thereof.
19. The biometric device according to claim 17, wherein the encoded
information packet including information of the representation of
the fingerprint is communicated via modem communication devices
selected from the group consisting of telephone, cable, wireless
phone, handheld wireless devices, handheld computing devices,
computers, satellite, fax, and combinations thereof.
20. The biometric device according to claim 1, wherein the device
is capable of registering, reading, recognizing, and authenticating
a predetermined number of users.
21. The biometric device according to claim 1, wherein each user is
identified with fingerprint information corresponding to that
registered user.
22. A method for using a biometric device for self-authenticating
identification of at least one user comprising the steps of:
sensing information related to at least one fingerprint impressed
upon a fingerprint sensor of a substrate; independently generating
at least one control signal internal to the substrate to transfer
the sensed at least one fingerprint information internally from the
fingerprint sensor to an internal substrate memory and
electronically store the sensed fingerprint information within the
internal substrate memory for at least one registered user; and
producing a verification signal indicating that the sensed
fingerprint information has been successfully electronically stored
in the internal substrate memory, thereby providing a secure,
independent fingerprint authentication of at least one registered
user without requiring communication with an external
apparatus.
23. The method according to claim 22, wherein the step of producing
a verification signal comprises the step of generating an encoded
information packet output within the substrate for indicating that
the sensed fingerprint information has been successfully stored
within the memory of the substrate.
24. The method according to claim 23, further including the step of
generating a unique transaction identifier which is appended to the
encoded information packet.
Description
BACKGROUND OF THE INVENTION
[0001] (1) Field of the Invention
[0002] The present invention relates generally to biometric
identification devices and, more particularly, to a biometric
fingerprint device for providing self-authentication of the
identity of predetermined user(s).
[0003] (2) Description of the Prior Art
[0004] Prior art biometric devices commonly employ fingerprint
identification and verification as a means for protecting the use
of the device for proximity pass, apparatus activation, and access
to information. Furthermore, it is known in the prior art to use
portable information and transaction processing devices (PITP
devices). These devices can be used to perform secure financial
transactions, to allow the user access to another apparatus, or to
transmit information for various personal reasons. To perform these
functions, these devices are able to store data internally and
transmit data, including personal user data, over communication
lines. PITP devices may also employ biometric verification to
ensure the identity of the user. In these devices, biometric
verification may include finger, thumb, palm, and voice print,
handwriting sample, retinal vascular pattern, and combinations
thereof. Additionally, these devices have been constructed to
include card readers that read information storage cards. Also,
these devices can encrypt information and transmit it via dual-tone
multi-frequency, modem, radio frequency, and infrared media.
However, none of these devices are free-standing devices, in that
they require an external central data storage and processing unit
to verify the identity of the PITP device user. Additionally,
because the data is stored on a central data storage unit, the
security of these devices and information relating to their users
may be eventually compromised. In such a case, unauthorized use of
the PITP device may occur, allowing unauthorized transactions. A
single device has overcome this deficiency by incorporating the
storage means of the biometric information within the PITP device.
Thus, the device is free-standing and will not emit a signal unless
the appropriate user is using the device. However, this device does
not also emit tonal signals to confirm authentication of the user
via biometric identification means. Therefore, there remains a need
for a self-authenticating biometric identification device that can
be used in connection with an encoded packet output, e.g., a
digitized tonal output also having capacity to be used with
portable information and transaction processing devices.
Particularly where privacy issues are a significant concern, it is
advantageous to provide a biometric device within which the
individual fingerprint and other data or information is stored,
i.e., there is no requirement for transmitting the fingerprint
itself to a remote confirmation bank or source that stores the
registered information against which the sensed fingerprint is
verified.
[0005] More particularly, the following U.S. patent citations
provide a basis for establishing the prior art relevant to the
present invention:
[0006] 6,016,476 issued Jan. 18, 2000 to Maes, et al. for Portable
information and transaction processing system and method utilizing
biometric authorization and digital certificate security. This
patent teaches a portable client PDA with touch screen, microphone,
and CPU for processing voice commands, and processing biometric
data to verify user. Also it has memory for storing
personal/financial data, and capability for reading /writing
information to various smart cards, magnetic cards, etc.
[0007] 6,084,967 issued Jul. 4, 2000 to Kennedy, et al. for Radio
telecommunication device and method of authenticating a user with a
voice authentication token. The user must insert a PIN and utter
sounds; the radiotelephone device will activate secure functions
only if PIN is correct and uttered sounds are authenticated against
stored voice feature information.
[0008] 5,465,290 issued Nov. 7, 1995 to Hampton, et al. for
Confirming identity of telephone caller. Data stored in a
processing station corresponds to a signature and caller
identification information for users. A second processing station
includes speaker verification unit and processor, which receives
voice or tone signal representing signature of potential user and
processes this. Processor is connected to speaker verification unit
and connects to first processing station to test the signature of
user against valid signature of user.
[0009] 5,897,616 issued Apr. 27, 1999 to Kanevsky, et al. for
Apparatus and methods for speaker. Provides
verification/identification/classificat- ion employing non-acoustic
and/or acoustic models and databases. Secure method and apparatus
for access to service facility employing voice recognition; based
on personal information an individual is questioned, a voice sample
is obtained and verified. A score is generated based in comparison
to spoken answer and voice sample, and access is granted if score
is at or above a threshold. Alternatively, a series of questions
could be asked and potential matches to the speaker are eliminated
after comparison of voice/response analysis.
[0010] 5,806,040 issued Sep. 8, 1998 to Vensko for Speech
controlled telephone credit card verification system. The system
connects user to phone network, user enters a card number, a voice
verification template is retrieved and contains samples of user's
voice stating selected words/phrases/numbers. The user is prompted
to state one of these and comparison is made. User is authorized if
match is made.
[0011] None of the previously issued patents cited in the foregoing
provide a biometric device having internal memory and internal
controller means while also providing a tonal output for
authorizing transactions from the device via modem communication
means.
[0012] Thus, there remains a need for a biometric identification
device, specifically a self-authenticating, biometric fingerprint
identification device having internal memory and internal
controller, an encoded or encrypted information packet output,
e.g., a digitized tonal output, and a unique transaction
identifier, which are all provided in the present invention.
SUMMARY OF THE INVENTION
[0013] The present invention is directed to a biometric fingerprint
device for self-authenticating identification of at least one user
of the device including internal memory and controller means within
a substrate of the device and encoded packet(s) of information
output, e.g., a digitized tonal output, for communicating with a
remote transaction facilitator.
[0014] Additionally, the present invention is directed to a
biometric fingerprint device for self-authenticating identification
of at least one user including a unique transaction identifier for
increased security, particularly with retail transactions made via
phone, wireless device, Internet, satellite, or other communication
means.
[0015] Accordingly, one aspect of the present invention is to
provide a biometric fingerprint device for self-authenticating
identification of at least one user of the device including
internal memory and controller means within a substrate of the
device and an encoded or encrypted information packet output, e.g.,
a digitized tonal output, for communicating with a remote tone bank
for validation therewith.
[0016] Another aspect of the present invention is to provide a
biometric fingerprint device for self-authenticating identification
of at least one user including a unique transaction identifier for
increased security, particularly with retail transactions made via
phone, wireless device, Internet, satellite, or other communication
means.
[0017] These and other aspects of the present invention will become
apparent to those skilled in the art after a reading of the
following description of the preferred embodiment when considered
with the drawings.
DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS
[0018] According to the present invention, a biometric device is
provided for self-authenticating identification of at least one
user. Basic functions and configurations of the biometric device
are set forth by U.S. Pat. No. 5,623,552 issued Apr. 22, 1997 to
Lane for Self-authenticating identification card with fingerprint
identification, which is invented by the identical inventor and
owned by a common assignee and incorporated herein by reference in
its entirety. The device includes a substrate having a fingerprint
sensor, internal memory means for storing digitized information
related to a fingerprint of the at least one user, activation means
for initiating internal storage of the information related to at
least one fingerprint corresponding to the at least one user upon
activation by the at least one user for a first time thereby
creating and recording at least one registered user, an internal
controller, verification means for indicating that the information
related to the at least one fingerprint corresponding to the at
least one registered user has been successfully stored in the
internal memory means, and authentication means for comparing
information related to a sensed fingerprint corresponding to the at
least one user that has been sensed with the stored fingerprint
information of the registered user and for producing an
authentication signal if the sensed fingerprint information matches
the stored fingerprint information of the at least one registered
user.
[0019] The fingerprint sensor is capable of sensing information
related to at least one fingerprint and the sensed fingerprint is
either used to register a new user, if multiple users are permitted
for the particular device, or is used to verify that the
information relating to the sensed fingerprint matches the
information of the fingerprint of each of the registered users. In
the case where more than one user may be registered for a device,
each user has corresponding fingerprint identification information
that is unique to that user and registered similarly.
[0020] The internal memory means is electrically connected to the
fingerprint sensor, the verification means, the authentication
means, and the activation means is electrically connected to the
fingerprint sensor and the internal memory means. Also, the
internal controller is capable of independently programming the
internal memory means with the information related to a fingerprint
corresponding to the at least one user by generating an internal
control signal to initiate transfer of the information related to
the sensed fingerprint corresponding to the at least one user to
the internal memory means for storage therein. Additionally, the
verification means and/or authentication means further includes a
transmitter for indicating that the information related to a
fingerprint has been successfully stored to create the at least one
registered user. This verification and/or authentication signal
includes an encoded or encrypted information packet output for
verification and/or for authentication that the fingerprint matches
that of the at least one registered user that is transmitted or
communicated via an encoded information packet output transmitter
located within the biometric device substrate. For example, in a
preferred embodiment, the encoded information packet output
includes a digitized tonal output for audible and/or inaudible
transmission via a digitized tonal transmitter and detection by a
remote transaction facilitator.
[0021] Additionally, a tone generator is capable of converting the
digitized tonal representation and/or verification of the
fingerprint into corresponding notes on a musical scale.
Alternatively, the tone generator may produce either audible or
inaudible tones and/or a combination of both audible and inaudible
tones; the tones are converted into an encoded or encrypted
information packet that is output by a transmitter located within
the device.
[0022] According to a preferred embodiment of the present
invention, the biometric device also includes encoding means
electrically connected to the activation means and verification
means for providing encrypted fingerprint information corresponding
to the stored fingerprint information and the authentication
signal.
[0023] Use of the biometric device according to a preferred
embodiment of the present invention further includes a unique
transaction identifier that is appended to the encoded or encrypted
information packet, e.g., that is digitally appended to the
digitized information related to a fingerprint of the at least one
registered user, thereby preventing duplicate and unauthorized use
of the device. This unique transaction identifier is attached to,
connected or associated with, and/or integrated with the encoded
information packet output, e.g., digitally appended to the
digitized tonal output. The unique transaction identifier may
advantageously be a predetermined digital value created relative to
a tone bank or other transaction facilitator with which the user
makes a transaction. The unique transaction identifier is provided
by a unique transaction identifier generator that may either exist
within the substrate or may be remotely located from the substrate.
By way of example, the unique transaction identifier generator may
be the controller that generates a random number.
[0024] According to one embodiment of the claimed invention, the
unique transaction identifier may be a digitized date and time
value, thereby ensuring only one unique transaction identifier
corresponds with any given transaction. The date and time value
associated with the unique transaction identifier is generated by a
clock, preferably an atomic clock, for providing a single, unique
date and time value, thereby preventing duplicate and unauthorized
use of the device. Also preferably, the unique transaction
identifier may include a date and time and spatial locator value
for locating the user of the device and the location of the device
making the transaction to identify a source of the transaction. The
spatial locator value may be derived from communication with the
global positioning satellite system (GPS) for determining a
location on earth based on a locator signal sent by the GPS and the
locator signal being received by the device and/or tonal bank or
other transaction facilitator. Also, it is desirable that the
device be capable of communicating with the GPS via a contact
signal emitted by the device sent to the GPS for receipt and
transmission to a tone bank and/or transaction facilitator. Also,
the device transmits the locator signal to a remote transaction
facilitator and/or tone bank for documentation of the location of
the device with the time of the transaction. Additionally, a caller
identification-based system can be used. Also, a random value may
be generated internal to the device, e.g., by the controller, for
use as a unique transaction identifier without requiring
communication with an external apparatus or external unique
transaction identifier generator.
[0025] Preferably, the unique transaction identifier is internally
stored on the device substrate within the internal memory of the
device and can be selectively and/or automatically deleted. More
particularly, in a preferred embodiment of the present invention,
the encoded information packet, which may include a digitized tonal
representation of the fingerprint, is internally stored on the
substrate.
[0026] Furthermore, the encoded and/or encrypted information packet
preferably includes a digitized representation of the sensed and
registered at least one fingerprint; information related to the
verification of the digitized representation of the fingerprint,
which is capable of including a digitized tonal representation of
the fingerprint, is communicated to a remote transaction
facilitator for conducting a transaction using the device upon
verification and/or authentication internally to the device that
the user is the at least one registered user. The biometric device
also includes communication or transmission of the encoded and/or
encrypted information packet including information of the
fingerprint(s) of the user(s) via modern communication means
selected from the group consisting of digital, wireless, optical,
photonics, analog, microwave, laser, infrared, EMF signal, and
similar transmission means, and combinations thereof and by modern
communication devices selected from the group consisting of
telephone, cable, wireless phone, handheld wireless devices,
handheld computing devices, computers, satellite, fax, laser
device, light modulator, and combinations thereof. Thus, the
digitized tonal representation of the fingerprint is capable of
being validated with a remote tone bank.
[0027] The transaction facilitator, which may communicate with a
biometric device user is a potential source of revenue. For
example, credit card use via telephone or Internet requires payment
for processing. Typically, the card issuer and/or merchants are
assessed a fee for each transaction or purchase and verification of
credit card user. Similarly, for use of the present invention in
connection with a transaction, the transaction facilitator would be
required to pay a fee per transaction that is a function of or
percentage of the transaction.
EXAMPLE
[0028] In this example of the preferred embodiment of the
invention, the device has a fingerprint template, an amplifier, an
output device, and a clock. The device clock and the tone bank
clock are set to the same time. When the correct card user
initiates a transaction by authenticating his/her fingerprint on
the fingerprint template, the device emits from the output device a
tone that is related to the time of the device clock. The device
clock time is then compared to the tone bank clock time. The device
clock time is programmable by the user to a desired time variance;
by way of example, the user may program the device such that the
device clock time cannot differ from the tone bank clock time by
more than 4 minutes. If the times of the two clocks differ by more
than 4 minutes, the transaction will not be accepted. Examples of
acceptable and non-acceptable time differences are shown in Table
1, which follows.
1TABLE 1 Time difference acceptability for a device according to
the present invention when the tone clock time is 13:00:00. Device
Clock Time Time Difference Acceptability 12:56:12 Acceptable
12:55:00 Unacceptable 13:04:00 Acceptable 13:05:23 Unacceptable
[0029] In this example, the correct card holder communicates with
the tone bank at 12:56:00. The tone is illegally recorded by a
third party for the purposes of making illegal transactions. The
correct card holder stays on line for one minute. The third party
then makes an illegal call at 12:57:00, after the correct card
holder has terminated the call, and is accepted because the time
transmitted is within 4 minutes of the tone bank clock time.
However, after a call is 10 minutes long, the tone bank interrupts
and requests a reconfirmation of the time. The third party cannot
supply the accurate time, as the time tone that they possess by
illegal recording is 12:56:00 and the tone bank time is 13:07:00,
the difference of which is out of the range of acceptability and
the call is terminated.
[0030] Certain modifications and improvements will occur to those
skilled in the art upon a reading of the foregoing description. By
way of example, the substrate may be substantially compact such
that it can be used as or within a smart card, or credit card sized
device, including a magnetic swipe to be loaded with or containing
additional information about the registered user. Alternatively,
the substrate may be a larger embodiment, e.g., a computer circuit
board. All modifications and improvements have been deleted herein
for the sake of conciseness and readability but are properly within
the scope of the following claims.
* * * * *