News Column

Patent Issued for Personalized Biometric Identification and Non-Repudiation System

July 23, 2014



By a News Reporter-Staff News Editor at Electronics Newsweekly -- From Alexandria, Virginia, VerticalNews journalists report that a patent by the inventor Bidare, Prasanna (Bangalore, IN), filed on August 28, 2012, was published online on July 8, 2014.

The patent's assignee for patent number 8775814 is Tata Consultancy Services Ltd. (IN).

News editors obtained the following quote from the background information supplied by the inventors: "Security is one of the key areas of concern in today's time both at national and local levels. While breach of security systems at various ports of entry can lead to illegitimate people entering a country causing national threat. At a local level, a compromise on the Internet security can lead to huge financial losses for individuals or to their corporate.

"Biometric authentication systems have been around for a while now and slowly these systems are being implemented for gearing up security both at the national and local levels.

"At the local level, biometric based authentication devices have been in use. However, the scope of these devices is restricted to access control applications. In access control applications, biometric prints have been used to give users access to their homes, offices or personal property like electronic devices, cars, electronic safes and the like. However, these systems do not harness the true capability of biometric systems.

"Lately cyber-crimes are increasing by the hour with fraudulent individuals hacking into financial accounts, e-commerce sites and databases holding sensitive information. Hence, there is felt a need for not only a security mechanism which can safeguard the sensitive information and provide access to only genuine users, but also non-repudiate in terms law of a land's forensic requirements. Biometric based authentication for conducting e-commerce/e-banking transactions is one such mechanism. However, this form of authentication has not been widely accepted due to implementation challenges faced by retail markets for capturing and storing bio prints of users in advance and the need for specialized hardware in the form of biometric scanners to scan and transmit the bio prints to authenticate users.

"Many governmental agencies across the globe have now installed biometric reading gadgets at various ports of entry to obtain biometric prints of incumbent travelers, which offer `Go` or `No Go` to gate the entry. In addition to obtaining biometric prints, the government agencies are also issuing biometric visas which include a copy of the travelers' digital photo and selected biometric print. The biometric print in the visa is compared with the real-time scan of the individual's biometric prints, at the port of entry, to confirm the identity of the traveler.

"In one of such endeavors, Government of India is working under Unique Identification (UID) program to develop country vide bio print repository as a tool to identify the citizens of India and use the identification information for possible use in e-Commerce.

"To combat both the national and local level security issues biometric presents a strong authentication solution. Biometric mechanisms enable agencies at the national and local level to capture a combination of biometric prints of users including fingerprints, iris scan, voice scan and the like which can be stored at a central location. The users can be authenticated using the biometric scan stored at the central repository for granting access.

"However, users all over the world are skeptical about passing their biometric prints on any communication media during or even after the authentication process. As in the event that the biometric prints are compromised a user will completely loose his/her bio identity and future access to any of the biometric based systems because biometric based systems have no password reset mechanism unlike in number or picture based challenge response process.

"At the same length, the BFI's (Banking, Finance and Insurance) are the most affected parties in business due to cash loss as a result of false or imposter authentication. Hence, the BFI's demand a more clear and unambiguous non-repudiation process in place while offering ease of operation to their clients by bringing in the much required confidence to use the net based transaction.

"Further, currently at the national level in India, the UID or any equivalent agency doesn't undertake the task of capturing the biometric prints of travelling or visiting foreigners to determine their authenticity during their temporary relocation. Therefore, there is felt a need for a system which: harnesses the true capability of embedding the unambiguous non-repudiation process which remains agnostic to multiple OEM (Original Equipment Manufacturer) bio reading gadgets; overcomes the challenges faced in providing biometric based authentication and authorization mechanisms for critical transactions; prevents undue tampering of biometric prints of users; and ensures that a user's biometric prints are not transmitted over the Internet."

As a supplement to the background information on this patent, VerticalNews correspondents also obtained the inventor's summary information for this patent: "The present disclosure envisages a personalized biometric identification and non-repudiation system to facilitate in securing critical transactions for users, the system comprising: a server adapted to personalize designated biometric prints of a user to compute and register at least one set of personalized biometric signatures with a unique Device identification Number, wherein the set of personalized biometric signatures are represented by a Bio-print identification Number and a User identification Number, the server further adapted to execute a non-repudiation process to identify and authenticate a user and generate a non-repudiation certificate for authorizing a critical transaction; and a plurality of bio print readers discretely associated with the users and embedded with the set of personalized biometric signatures for a user by the server over a unidirectional non-Internet based channel, the bio print reader adapted to facilitate the non-repudiation process by verifying the identity of a user on matching a sensed biometric print of a user with the biometric signature.

"Typically, the unique Device identification Number is embossed on the bio print reader, the unique device identification number is selected from the group consisting of a 2D bar code, a twelve digit code and a Quick Response (QR) code.

"Preferably, the unidirectional non-Internet based communication channel is selected from the group consisting of a flicker window, an application programmable optical interface and a smart card reader/writer interface hardwired to the server.

"Further, the server comprises: a bio print capturing unit adapted to interface with a biometric scanner and capture at least one biometric print for a user over a non-Internet based channel in conformance with pre-selected governmental agency standards and further adapted to apply transformation function on the captured biometric print to make it compatible for data transfer on a corresponding user's bio print reader; a personalization unit having: feature extraction means adapted to digitize and extract salient features from the compatible biometric print and represent them as the Bio-print identification Number; and personalization means adapted to hash the salient features using a random number to generate at least one biometric hash represented as the User identification Number; a registration unit co-operating with the personalization unit having: random number generation means adapted to generate the unique Device identification Number for a bio print reader; registration means adapted to register and transfer the Bio-print identification Number, the User identification Number, and the Device identification Number to a bio print reader corresponding to a user; and gadget authentication means adapted to initiate a first self-authentication request to a bio print reader to activate the bio print reader registration; a bio repository adapted to store user details, the User identification Number and corresponding bio print reader's Device identification Number; an authentication unit adapted to generate at least one encrypted authentication token on receiving an incoming authentication request and further adapted to verify response for the token to authenticate identity of a user, generate a non-repudiation certificate and authorize a critical transaction, wherein the authentication unit encrypts the authentication token using the User identification Number stored in the bio repository in full or partial or using any challenge number which is compatible for non-symmetric cryptography; and a communication unit co-operating with the bio print capturing unit, the registration unit and the authentication unit and adapted to provide multiple communication channels including Internet and non-Internet based channels to transfer and receive information.

"In addition, the server for forensically repudiating a user further comprises: retrieving means adapted to retrieve the user's unique Device identification Number and corresponding User identification Number from the bio repository; triggering means adapted to instruct the bio print capturing unit and the personalization unit to trigger the process of recapturing the user's biometric prints and computing a new User identification Number; and verification means co-operating with the personalization unit, the retrieving means and the triggering means, the verification means adapted to compare the new User identification Number with the retrieved old User identification Number to confirm the identity of the user in the event that the old and new identification numbers match.

"Still further, the bio print reader comprises: a read-only memory adapted to store at least the Bio-print identification Number and the User identification Number; at least one sensor selected from the group consisting of a biometric sensor and an optical sensor, the sensor adapted to sense at least one encrypted authentication token and at least one designated biometric print of a user; a microprocessor embedded with custom applications including security protocols, biometric hash and key management application and co-operating with the memory and the sensor, the microprocessor adapted to process the sensed biometric print of the user and further adapted to decrypt the encrypted authentication token using the User identification Number in the event that the processed biometric print matches with the Bio-print identification Number; a display co-operating with the microprocessor adapted to receive and display the decrypted authentication token; and a rechargeable power supply co-operating with the microprocessor adapted to energize the bio print reader.

"In accordance with this disclosure, there is provided a method for identifying users via biometrics and performing non-repudiation for securing critical transactions, the method comprising the following steps: capturing designated biometric prints of a user at a server over a non-Internet based channel in conformance with pre-selected governmental agency standards; personalizing the captured biometric prints of the user at the server and computing at least a set of personalized biometric signatures, wherein the personalized biometric signatures are represented as a Bio-print identification Number and User identification Number; registering a bio print reader with the biometric signatures of the user and a unique Device identification Number; executing a non-repudiation process at the server to identify and authenticate a user; facilitating the non-repudiation process by verifying the identity of the user on matching a sensed biometric print of the user with the Bio-print identification Number stored on a bio print reader associated with the user; and generating a non-repudiation certificate at the server and authorizing a critical transaction in the event that the identity of the user is verified.

"Typically, the step of personalizing the captured biometric prints includes the following steps: applying a transformation function to make the captured biometric prints compatible with the corresponding user's bio print reader; extracting salient features from the captured biometric prints of the user and representing them as the Bio-print identification Number; generating and using a random number to apply a hash on the salient features of user's biometric prints to compute the User identification Number; and storing the Bio-print identification Number and the User identification Number on the bio print reader corresponding to the user over an unidirectional non-Internet based channel.

"Furthermore, the step of registering the personalized biometric prints of the user includes the following steps: generating a unique random number as the Device identification Number for a bio print reader; embossing the unique Device identification Number on the bio print reader in the form selected from the group consisting of a 2D barcode, a QR code and a twelve digit code; and storing the unique Device identification Number and the User identification Number, in a bio repository.

"Additionally, the step of facilitating the non-repudiation process includes the following steps: sensing the biometric prints of a user on a corresponding bio print reader; extracting salient features of the sensed biometric prints at the bio print reader; and comparing the extracting salient features with the Bio-print identification Number to verify the identity of the user.

"Preferably, the method comprises the following steps for forensically repudiating a user: retrieving the user's unique Device identification Number and corresponding User identification Number from the bio repository; recapturing the biometric prints of the user and extracting salient features from the biometric prints; generating a new random number and computing a new User identification Number based on the salient features and the random number; and comparing the new User identification Number with the retrieved old User identification Number to confirm the identity of the user in the event that the old and new identification numbers match."

For additional information on this patent, see: Bidare, Prasanna. Personalized Biometric Identification and Non-Repudiation System. U.S. Patent Number 8775814, filed August 28, 2012, and published online on July 8, 2014. Patent URL: http://patft.uspto.gov/netacgi/nph-Parser?Sect1=PTO1&Sect2=HITOFF&d=PALL&p=1&u=%2Fnetahtml%2FPTO%2Fsrchnum.htm&r=1&f=G&l=50&s1=8775814.PN.&OS=PN/8775814RS=PN/8775814

Keywords for this news article include: Electronics, Legal Issues, Microprocessors, Tata Consultancy Services Ltd.

Our reports deliver fact-based news of research and discoveries from around the world. Copyright 2014, NewsRx LLC


For more stories covering the world of technology, please see HispanicBusiness' Tech Channel



Source: Electronics Newsweekly


Story Tools






HispanicBusiness.com Facebook Linkedin Twitter RSS Feed Email Alerts & Newsletters