WO1998012670A1 - Biometric identification system for providing secure access - Google Patents

Biometric identification system for providing secure access Download PDF

Info

Publication number
WO1998012670A1
WO1998012670A1 PCT/CA1997/000663 CA9700663W WO9812670A1 WO 1998012670 A1 WO1998012670 A1 WO 1998012670A1 CA 9700663 W CA9700663 W CA 9700663W WO 9812670 A1 WO9812670 A1 WO 9812670A1
Authority
WO
WIPO (PCT)
Prior art keywords
biometric
data
biometric data
portable
signal
Prior art date
Application number
PCT/CA1997/000663
Other languages
French (fr)
Inventor
Stephen J. Borza
Gordon Freedman
Original Assignee
Dew Engineering And Development Limited
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Dew Engineering And Development Limited filed Critical Dew Engineering And Development Limited
Priority to AU41964/97A priority Critical patent/AU4196497A/en
Publication of WO1998012670A1 publication Critical patent/WO1998012670A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • G06F21/35User authentication involving the use of external additional devices, e.g. dongles or smart cards communicating wirelessly
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06VIMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
    • G06V40/00Recognition of biometric, human-related or animal-related patterns in image or video data
    • G06V40/10Human or animal bodies, e.g. vehicle occupants or pedestrians; Body parts, e.g. hands
    • G06V40/12Fingerprints or palmprints
    • G06V40/13Sensors therefor
    • G06V40/1306Sensors therefor non-optical, e.g. ultrasonic or capacitive sensing
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/22Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder
    • G07C9/25Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder using biometric data, e.g. fingerprints, iris scans or voice recognition
    • G07C9/257Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder using biometric data, e.g. fingerprints, iris scans or voice recognition electronically
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/22Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder
    • G07C9/25Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder using biometric data, e.g. fingerprints, iris scans or voice recognition
    • G07C9/26Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder using biometric data, e.g. fingerprints, iris scans or voice recognition using a biometric sensor integrated in the pass
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/28Individual registration on entry or exit involving the use of a pass the pass enabling tracking or indicating presence
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/30Security of mobile devices; Security of mobile applications
    • H04W12/33Security of mobile devices; Security of mobile applications using wearable devices, e.g. using a smartwatch or smart-glasses

Definitions

  • This invention relates generally to personal identification systems and more particularly relates to a biometric security identification system (BSIS).
  • BSIS biometric security identification system
  • Biometric security identification systems such as fingerprint scanning and input devices are becoming more commonplace as the need to validate authorized users of computers, databases, and secure spaces grows. As computers become more miniaturized, so too are other communication and security devices decreasing in size. One of the more important reasons, however, to miniaturize electronic devices is to lessen the burden of porting them.
  • U.S. Pat. No. 4, 951, 249 discloses a computer security system which protects computer software from unauthorized access by requiring the user to supply a name and a password during the operating system loading procedure ("boot-up") of a personal computer (PC). This is accomplished by the insertion of a special card into an input/output expansion slot of the PC.
  • the basic input/output system (BIOS) scans memory addresses of the card for an identification code, consisting of a 55AA hex code. When this hex code is located, the BIOS instructions are vectored to the address where the target hex code resides and instructions at the following addresses are executed as part of the initialization routines of the system boot-up procedure.
  • Multi-purpose and dedicated processors of various types control devices ranging from bank machines, to cash registers and automobiles. With ever increasing use of these processor based devices, there is greater concern that unauthorized use will become more prevalent. Thus, the verification and/or authentication of authorized users of processor based systems is a burgeoning industry.
  • the invention seeks to provide a portable biometric input device comprising: biometric sensing means for sensing biometric input information, generating biometric data therefrom, and providing the biometric data in relation to the sensed biometric input information; transmission means for receiving at least an aspect of the biometric data and for transmitting a signal in dependence upon the at least an aspect of the biometric data; and a battery for providing power to the device.
  • the transmission means is a wireless transmission means for transmitting a signal in dependence upon the at least an aspect of the biometric data.
  • the transmission means comprises a biometric data encoder and an infrared transmitter for transmitting a signal in dependence upon the at least an aspect of the biometric data.
  • the device further comprises storage means for storing data related to said biometric data.
  • the device further comprises processor means for processing the biometric data.
  • the processor means is for comparing the biometric data with previously stored biometric data to provide comparison results; and the signal in dependence upon at least an aspect of the biometric data comprises a signal in dependence upon the comparison results.
  • the device further comprises means to receive a password and wherein the transmission means is for transmitting a signal in dependence upon at least an aspect of the biometric data and the password.
  • the device further comprises means to receive a password and wherein the processor means is for comparing the biometric data with previously stored biometric data and the password and a previously stored password to provide comparison results; and the signal in dependence upon at least an aspect of the biometric data comprises a signal in dependence upon the comparison results.
  • the device further comprises means for encrypting at least an aspect the biometric data; and the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encrypted data.
  • the means for encrypting the biometric data comprise public/private key encryption means.
  • the means for encrypting the biometric data comprise session key encryption means.
  • the biometric input means is a fingerprint imaging device.
  • the device further comprises a housing in the form of a watch casement and a watch face.
  • the biometric input means comprises associated electronic circuitry and conductive pads disposed on the watch face.
  • the invention seeks to provide a portable biometric input sensor comprising: an array of sense elements spaced apart and comprising a sensing electrode for sensing biometric input; drive means coupled to at least some of the sense elements for controlling and addressing each of the at least some sense elements according to a predetermined sequence, for receiving a signal in dependence upon the biometric input, and for providing biometric data in dependence upon the sensed biometric input; processor means for processing biometric data; and, wireless transmission means for transmitting to a receiver a signal that corresponds to at least an aspect of the biometric data.
  • the device further comprises means for encrypting the biometric data further comprising means for encrypting at least an aspect the biometric data; and the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encrypted data.
  • the means for encrypting the biometric data comprise public/private key encryption means.
  • the means for encrypting the biometric data comprise session key encryption means.
  • the invention seeks to provide a biometric security identification system comprising: a portable transmitting module comprising a biometric sensing means, means for encoding biometric data and wireless transmission means for transmitting the encoded biometric data as an encoded signal; and a receiving module comprising means for receiving the encoded signal, means for extracting the encoded biometric data, and means for comparing the encoded biometric data with predetermined reference values, and means for authorizing access to a host system.
  • the biometric sensing means comprises a fingerprint scanner.
  • the device further comprises means for encrypting the biometric data further comprising means for encrypting at least an aspect the biometric data;
  • the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encrypted data; and
  • the means for extracting the encoded biometric data comprises means for decrypting and for extracting the encoded biometric data.
  • the means for encrypting the biometric data comprise public/private key encryption means.
  • the means for encrypting the biometric data comprise session key encryption means.
  • the invention seeks to provide a portable biometric input device comprising: sensing means including a platen upon which to rest a finger, said sensing means for sensing the presence and location of fingerprint ridges upon the device; processor means for processing sensed data; and, wireless transmission means for transmitting a signal that corresponds to at least an aspect of the sensed data; and a battery for providing power to the device.
  • the senor may be protected by the user, being his or her own personal device, and furthermore, a user's personalized sensor may communicate with several different devices that require validation in the form of a users biometric input data; for example, the input sensor may provide a valid access code in the form of a biometric key, to unlock a locked car door, a house door, and/or to provide access to a banking machine or a computer.
  • a user's personal sensor can be programmed with its own identification key which can accompany a user ' s biometric data in the validation process, to validate both the sensor and the user.
  • Fig. 1 is a block diagram of the biometric security identification system (BSIS) according to the invention
  • Fig. 2 is a simplified diagram of a sensing device for use with the present invention showing an array of sensing elements together with associated addressing circuitry;
  • Fig. 3 is a simplified diagram of a sensing element for use with the present invention
  • Fig. 4 is a schematic diagram of an amplifier circuit for use with the present invention
  • Fig. 5a is a digital watch according to the present invention
  • Fig. 5b is an analogue watch according to the invention
  • Fig. 6 is a block diagram of the transmitting module of Fig. 1 ;
  • Fig. 7 shows a block diagram of the receiving module of Fig. 1 ;
  • Fig. 8 is a flowchart for illustrating a mode of operation of an embodiment of a BSIS according to the present invention
  • Fig. 9 is a flowchart for illustrating a mode of operation of an embodiment of a BSIS according to the present invention.
  • Fig. 10 is a flowchart for illustrating a mode of operation of an embodiment of a BSIS according to the present invention further comprising bi-directional communication;
  • Fig. 1 1 is a flowchart for illustrating a mode of operation of an embodiment of a BSIS using bi-directional communication and a time out according to the present invention:
  • Fig. 12 is a biometric credit card according to the present invention;
  • Fig. 13 is a device according to the present invention incorporated into a keychain and using infrared wireless communication;
  • Fig. 14 is a device according to the present invention incorporated into a keychain and using RF wireless communication.
  • Fig. 1 illustrates the block diagram of a biometric security identification system (BSIS) according to the invention.
  • the system comprises a transmitting module 10 and a receiving module 20 connected over a transmission channel in the form of a wireless transmission channel.
  • the transmitting module 10 measures a biometric characteristic of a person requesting access to a protected host system and converts the biometric characteristic into a biomet ⁇ c identification (ID) code.
  • ID biomet ⁇ c identification
  • the transmitter module is adapted to be carried or worn by the user, and therefore can take any suitable form, such as a wrist watch, a badge, a wallet, etc.
  • the biometric information may be accompanied by a password for increased security of the identification process. In this way, access to the protected host system is denied to unauthorized users, who may have a similar biometric ID. Similar biometric ID may occur if the transducer has a low sensitivity, for example for cost or/and miniaturization reasons.
  • the password could be any machine readable code like a PIN, an account number, or a time- varying code. Selected passwords can be unique to the watch itself, or they can be chosen by the user.
  • the transmitting module is in the form of a wrist watch provided with a fingerprint reader and described in more detail below.
  • the biometric ID is transmitted to receiving module 20, which is attached to a host system.
  • the transmission is preferably made by modulating an infrared (IR) carrier with the biometric ID, but any other type of communication between the transmitting module 10 and receiving module 20 may be used.
  • IR infrared
  • wireless communication means are used as dictated by selected design parameters, such as the distance between the modules, the power budget, etc.
  • a wireless communication means employed should minimize the risk of interception and recording of a biometric ID.
  • the biometric ID is compared to a reference ID pre-stored in a memory. If the current biometric ID (IDC) matches a reference ID (IDREF), access to the host system is authorized.
  • the host system could be a computer system, an ATM banking machine, a door latch or any other system which must be secured against unauthorized access.
  • the biometric ID is compared in the transmitting module 10 and an access code is sent to the receiving module 20 for comparison.
  • a sensing device for use in an embodiment of the present invention and implemented on a semiconductor chip is shown comprising a single active matrix addressed sensing pad 119 having an X-Y array of sense elements consisting of r rows (1 to r) with c sensing elements 117 in each row.
  • a single active matrix addressed sensing pad 119 having an X-Y array of sense elements consisting of r rows (1 to r) with c sensing elements 117 in each row.
  • Sensor elements 117 are disposed in such a fashion that they are capable of distinguishing the smallest desired feature of a finge ⁇ rint.
  • the placement and spacing of the sensor elements allow an image of a finge ⁇ rint. once scanned, to contain all required features for analysis.
  • the sensing element 117 is smaller than half the smallest sensible feature size allowing a suitable image to be generated.
  • Empirical studies reveal that a square plate of about 50 ⁇ m edge length is suitable for finge ⁇ rint sensing.
  • the apparatus is described with reference to an array of sensing elements 117 having substantially square shape, it is possible to use different configurations of sensing elements 117 such as concentric circles or a spiral and different shapes such as triangles, circles, or rectangles.
  • the array of sensing elements 117 is connected through an analog switch matrix to facilitate reading the finge ⁇ rint image out of the sensing array 119.
  • Timing and sequencing logic 116 selects each element in the array in turn to produce a complete image of a finge ⁇ rint presented to the device.
  • the signal may be output directly as an analog signal or may be converted to a digital signal prior to output from the device.
  • the sensing pad 119 further comprises a ground ring 115 and bonding pads 118 designed for connection to other components or to packaging.
  • the ground ring 115 also serves to provide a common ground for the sensing pad. Accordingly, it is important that the ground ring 115 and integrated circuit elements be designed so as to minimize noise to each sensing element 117.
  • the signal to noise ratio that is acceptable will vary between applications and should be adjusted to meet the needs of a specific design. When possible, packaging should be selected to limit noise.
  • a single sensing plate 120 is shown. Such a sensing plate 120 is designed to be used in arrays and preferably is smaller than half the smallest sensible feature size as indicated above.
  • Charge sensing electrode 121 is connected to an active element which is shown as a three terminal switching device in the form of a field effect transistor (FET) having a source, a drain, and a gate 126.
  • FET field effect transistor
  • the gate 126 is connected to the sensing electrode 121 by an interconnect 124.
  • Disposed between the gate 126 and the transistor 130 is a gate oxide 127.
  • Such transistor configuration is known in the art.
  • an overglass 122 which serves to protect the charge sensing electrode 121 and to space the electrode and a fingertip presented thereto.
  • a field oxide 125 below the charge sensing electrode 121 is disposed a field oxide 125.
  • a finger placed against the overglass 122 induces charge in the charge sensing electrode 121.
  • a sensing pad 120 is electrically grounded.
  • a second side is connected through electrostatic discharge protection 131 in the form of resistors and diodes.
  • a filter circuit 132 and 133 improves circuit operation.
  • Transistors 134, 135, 136, and 137 provide amplification of induced voltages allowing a signal at an output of transistor 136 to be digitized by a low cost A/D converter.
  • a watch comprising (in part) the present invention.
  • the watch 50 is secured in place on a person's wrist for example by way of a strap 51.
  • Alternative methods such as a chain as is common in pocket watches, a pouch (not shown), velcro. a pin, or means for securing the watch to a sporting apparatus may also be used.
  • a time display means 52 in the form of an LCD display, an LED display, an analogue time display, a voice generated time, or a Braille time display is disposed upon the watch 50 in a conventional manner.
  • the time display means 52 is offset to allow for sufficient contiguous surface area for a biometric sensor 53.
  • the biometric sensor 53 is designed to be superimposed upon the time display means 52 and not interfere therewith as shown in Fig. 5b.
  • An emitter port in the form of an infra red emitter port 55 is located on the watch 50 such that light emitted from the infra red port 55 is directed toward a sensor (not shown) in use.
  • the infra red emitter port 55 is located on the top of the watch above the face and pointing substantially coplanar to the watch face. In this orientation, an emitted signal is directed away from the body of a user and forward during normal use.
  • the biometric sensor means 53 is of the form described above and shown in Figs. 2, 3, and 4.
  • the biometric sensor means 53 is a capacitive finge ⁇ rint scanner requiring pre-charging as are well known in the art.
  • the biometric sensing means 53 is an optical biometric scanning device in the form of a retinal scanner, an optical finge ⁇ rint scanner, an optical palm scanner, or any other suitable (and portable) biometric sensing device.
  • an analogue watch 150 is shown. Analogue watches of this type are well known and are in common use. On to the face of the analogue watch 150 are deposited a plurality of metal pads 155 and associated circuitry 156. The pads 155 and the associated circuitry 156 act as sensors and addressing circuitry and combine to form the sense electrode for a biometric input device. The analogue watch 150 is designed to be easily read in the presence of the pads 155 and the associated circuitry 156. This is accomplished by ensuring that a short hand on the watch 150 is long enough to be partially visible at each outside edge of the metal pads 150 in each possible orientation. Alternatively, this is accomplished by designing the hands of the watch to be visible through or between the pads 150.
  • the associated circuitry 156 is coupled to driver and sensing circuitry for reading the electrode in the form of metal pads 155 and for determining the presence of a finge ⁇ rint or other biometric input.
  • the analogue watch 150 also comprises an infra red emitter port 55.
  • the infra red emitter port 55 comprises a transceiver capable of transmitting and receiving information in the form of infra red signals.
  • An emitter is sufficient for carrying out the invention but a transceiver adds additional functionality.
  • a watch such as those shown in Figs. 5a and 5b can accept information to further enhance security of the invention during use.
  • a transceiver is useful in programming the device for password access or for new authorized users. Further, a transceiver is useful in storing a time log of accesses and providing same to a computer at intervals.
  • the emitter 55 is a wireless emitter other than infrared. Further alternatively, the emitter 55 is in the form of a coupling device for coupling to the receiving module 20 and sending a signal thereto via a non-wireless electrical connection.
  • the transceiver 55 is a wireless transceiver other than infrared. Further alternatively, the transceiver 55 is in the form of a coupling device for coupling to the receiving module 20 and sending a signal thereto or receiving a signal therefrom via a non- wireless electrical connection.
  • Fig. 6 shows a block diagram of the transmitting module 10 of the BSIS.
  • the module 10 comprises a power source in the form of a battery 5.
  • the battery provides power to electronic circuits within the transmitting module 10.
  • a reader 11 comprises a transducer, or sensor 15, 16, 17, and a drive circuit 18.
  • the sensor is in the form of a contact imaging device for scanning a finge ⁇ rint.
  • the contact imaging device may be in the form of Figs. 2. 3, and 4 or may be a conventional capacitive contact imaging device.
  • Conventional capacitive contact imaging devices use a silicon substrate with an array of capacitive pads, each capacitor being associated with a driver. The sensing pads are disposed in close but non-contacting relationship.
  • a small gap between adjacent elements ensures that adjacent edges of the elements do not wipe against one another when a finger is pressed against the sensing surface.
  • the sensing surface is formed by film deposition on the substrate surface. Sensing pads are regularly spaced apart equally sized electrodes built by metal deposition on an appropriate glass or quartz substrate. Alternatively, the sensing pads are irregular and/or unequally spaced.
  • a reader used for the transducer of an embodiment of the present invention is of a simplified design, adapted for large scale manufacture.
  • the reader comprises a glass substrate 15 for supporting a capacitive array 16 and a contact surface (sheet) 17.
  • the array 16 comprises Indium-Tungsten oxide traces which are overlapped with hard gold.
  • Each capacitive element has a sense electrode and a switching device such that, when a finger is pressed on the contact surface 17 each sense electrode and the respective overlying portion of the finger surface form opposite plates of a capacitor, the finger surface being at ground potential.
  • the insulating film and air gap when present, provides the capacitor dielectric.
  • the capacitances of these individual capacitors vary as a function of the spacing between the finger and the contact surface, with smaller capacitance values occurring where the troughs in the finger surface are aligned with a sensor than where ridges are so aligned.
  • Drive circuit 19 is, preferably, not disposed on the substrate as in conventional sensors. It is preferably coupled to switching devices for controlling and addressing each capacitive pad according to a mapping sequence whereby a predetermined potential is applied to each capacitive pad.
  • a finger When a finger is placed on sheet 17 charges are induced in array 16. Charge is induced in each capacitor in an uneven manner in dependence upon ridges and troughs in the fingertip. The sensor reads these induced charges in the form of changes in capacitance or capacitive charge and transforms them into a bitmap particular to the finge ⁇ rint or a group of finge ⁇ rints.
  • the array of capacitive plates 17 is applied to a plastic film using metal- film processing or photographic image processing techniques.
  • the plastic film is then applied to any surface, such as a wallet, a key chain, a pen knife, a personal digital assistant, a transportable computer or a watch.
  • Drive circuit 19 is then attached to the array of capacitive pads using conductive epoxy adhesives, or an anisotropic adhesive process. This allows for an inexpensive sensor substrate which can be produced on a large scale using conventional LCD techniques.
  • processor 12 is an 8-bit microprocessor, such as Intel 8051.
  • Processor 12 may include a standard encryption module which applies an encryption algorithm for generating an encoded biometric ID.
  • An infrared transmitter 19 receives the biometric ID, modulates an infrared carrier with this information and then transmits an authorization request signal to receiving module 20.
  • a keypad 13 and a display 14 are preferably provided at the transmitting module 10. Keypad 13 is used for providing further data or functionality in the form of ON/OFF functionality and a password. In the embodiment comprising a watch, display means 14 includes time information.
  • Receiving module 20 is shown in Fig. 7.
  • Receiving module 20 is provided with appropriate transducer means 21 for receiving the authorization request signal and converting it into an electrical signal.
  • Transducer 21 may be for example an IrDA diode.
  • the transducer is controlled by a control Unit 25 in dependence upon the current operating mode as determined by a mode selector 26. Modes of operation for the device are discussed below.
  • the converted electrical signal is applied to decoder 22 where the biometric ID is extracted in the conventional mode.
  • the recovered biometric IDC and a reference IDREF are applied to a comparator 23.
  • the reference ID is obtained from a memory 24, where it has been previously stored, using any of the conventional methods.
  • the password is extracted by decoder 22 in addition to the biometric IDC, and compared with a reference password in comparator 23. When the result of the comparison indicates that the biometric IDC and the password are acceptable, access to the host system is permitted.
  • the receiving module 20 is initially configured in an ENROLL mode for obtaining and for storing one or more reference biometric samples. Enrolling software is normally inaccessible after the first use, or in a multi-user system, re-entering the enroll mode is accomplished through a function key and is limited to an authorized person or authorized persons. After enrollment is completed, the module enters its NORMAL mode.
  • step 30 the biometric data is read at the transmission module 10 with reader 11.
  • reader 11 collects data indicative of the image of a finge ⁇ rint.
  • the biometric data is encoded in processing means 12, in step 31.
  • Transmitter 16 broadcasts the biometric data, as illustrated in step 32.
  • step 33 receiving module 20 receives the biometric data and decodes the biometric ID therefrom, and checks the mode indicator in step 34.
  • the biometric ID is stored in memory 24 in step 35, and the receiving module is switched to the "access" mode of operation in step 36.
  • the receiving module 20 When the receiving module 20 is in the "access" mode, the received biometric ID is compared with the reference biometric ID in step 37. If the received signal comprises also a password, receiving module 20 separates the password from the biometric ID, and additionally compares the password against a reference password in step 38. Finally, access to the host system is authorized or not, depending on the result of the comparison(s), as shown in steps 39 and 40 respectively.
  • the transmitting module 10 is provided with a a change password initiator in the form of a key or a button allowing a user of the transmitting module 10 to enter a mode to alter their password.
  • a a change password initiator in the form of a key or a button allowing a user of the transmitting module 10 to enter a mode to alter their password.
  • an initial arbitrary password (such as none or "password") is set. Entering the mode to alter the password requires user verification of the existing password, user entry of a new password and user verification of the new password. Password selection algorithms of this type are known in the art of computer network security and operating systems.
  • the password is stored in the receiving module 20. Alternatively, the password is stored in the transmitting module 10.
  • FIG. 9 a flow chart of an embodiment wherein biometric data authentication is performed within the transmitting module 10 and an access key is transmitted therefrom to the receiving module 20 is shown. Only “access” mode is described for this embodiment, “enroll” mode functions in a fashion similar to that set out above. This embodiment is particularly useful in that theft of the transmitting module 10 is discouraged.
  • the biometric data is read at the transmission module 10 with reader 11.
  • reader 11 collects data indicative of the image of a finge ⁇ rint.
  • the biometric data is decoded for comparison.
  • the decoding accounts for rotation and misalignment in the biometric input.
  • the decoded data is compared to at least previously stored biometric data.
  • password protection is also used, a password is required and verified.
  • a signal indicative of invalid registration is transmitted.
  • the signal contains information in the form of the biometric data to identify the unauthorized user of the device.
  • an access key is encoded in processing means 12.
  • Transmitter 16 broadcasts the encoded data to the receiving module 20 which receives the encoded data and decodes it. At the receiving module (not shown), the data is verified to be an acceptable user authorization and provides access to the host system or releases a host locking mechanism.
  • Biometric information is read from a biometric input means.
  • the information is decoded and then stored in an electronic storage means.
  • the electronic storage means is in the form of RAM.
  • the electronic storage means comprises magnetic storage means, optical storage means, mechanical storage means, or other suitable low power storage means.
  • the decoded information is analyzed to determine whether the information corresponds to an authorized user of the host system. When an authorized user is detected through a comparison, an access code is stored in a buffer. When the biometric information does not correspond to an authorized user, an error code is stored in the buffer. In response to a request from an external system for the code stored within the buffer, either the error code or the authorization code (whichever was last stored) is provided. The external system responds to the code in a predetermined fashion.
  • a flow chart for an embodiment similar to that of Fig. 10 is shown.
  • the flow chart of Fig. 1 1 shows only the lower portion of the flow chart - those parts associated with bi-directional communication.
  • a time-out is introduced upon storage of a code.
  • the buffer is erased and the method returns to a start. This prevents use of a device, embodying a method according to this invention, when found or taken by clearing any data related to the biometric input from the buffer.
  • a request from an external system comprises a further code parameter.
  • the code parameter may be in the form of an encryption key, an access category, a device number, etc.
  • a default code is provided to the external system when the received code parameter is unknown.
  • an access code in dependence upon the code parameter is provided to the external system. The method then returns to a start.
  • a credit card biometric input device comprises a substantially flat substrate 209.
  • a biometric input means 210 in the form of a finger print detector is disposed on the substrate as is a battery 211, an edge connector 212, actuating means 214 in the form of card edges, and electronic circuitry 215.
  • the circuitry comprises electronic storage and processing means for verifying biometric input and providing an access code.
  • the processor means is also for accepting a parameter code from an external system and encrypting the access code before transmitting same.
  • a user of such a device places their finger tip onto the biometric input means 210. Their finge ⁇ rint is recorded, analyzed, and verified in the electronic storage and processor means 215.
  • an access code is stored in a buffer and a time-out is put in place.
  • a request for the access code is provided prior to the time-out, the access code is transmitted.
  • the device may also function according to the flow charts of Figs. 8, 9, 10, and 1 1.
  • Fig. 12 The embodiment of Fig. 12, is useful as a credit card and for electronic finance.
  • Unattended electronic devices accept the card in a similar fashion to current automatic teller machines (ATM) and only return the card when it is not reported stolen.
  • Attended transaction locations such as stores, would erase the buffer and require input of the biometric information in their presence. In this way, the device serves the pu ⁇ ose of both a credit card and an electronic "cash" card.
  • a key chain embodiment of the invention is shown.
  • the key chain 220 is attached to a biometric input device 209a comprising biometric input means 210, buttons 218, an infrared transceiver 219a, and electronic circuitry (not shown) housed within the device.
  • the device acts like other devices described above.
  • the buttons may be used for password entry, function selection, or to distinguish operations such as opening a car door, a garage door, a trunk for a car, etc.
  • Fig. 14 a further key chain embodiment of the invention is shown.
  • the buttons may be used for password entry, function selection, or to distinguish operations such as opening a car door, a garage door, a trunk for a car, etc.
  • uni-directional communication is used between a portable biometric input device according to this invention and a receiving module.
  • biometric data authentication is performed using two way communications between the transmitting module 10 and the receiving module 20.
  • biometric data authentication is performed using multi-channel multi-party communications to add functionality such as access logs, central access control, access permission authorization from a third location, etc.
  • the transmitting module 10 and the receiving module 20 are programmed via a communication port using a computer.
  • the communication port is preferably bi-directional.
  • the communication port is the transceiver in the transmitting module 10 and the transducer in the receiving module 20.
  • a device may be used to provide secure access to computers, computer networks, buildings, safes, houses, portable electronic locks, automobiles, banking services in the form of automatic teller machines, electronic commerce, household cabinets for rendering them child safe, television services, pay per view television services, electrical appliance, garages, hotel rooms, educational facilities, health club facilities, etc.
  • the device is useful where passwords, magnetic strips, physical key and lock mechanisms, electronic locks, ID cards and other secure forms of identification are used.
  • the transmitter is an audio transmitter capable of transmitting tones in dependence upon the biometric data.
  • One form of the tones is a series of telephone tones indicative of the identity of an individual and capable of being understood by a telephone system.
  • a further form of tones are similar to those of a computer modem or fax machine, devices sending digital data across analogue telephone lines.
  • the encryption technologies are generally known and include public/private key encryption, session key encryption, and other encryption schemes for secure data transmission.
  • private/public key encryption a receiver sends a public key to a device according to the present invention and transmissions from the device to the receiver are encrypted using the public key. Only the receiver, having the private key, can decrypt the transmission.
  • a group of public keys can be used or public keys can vary regularly in order to prevent interception and replay of a transmission.
  • session key encryption an encryption key is selected for a particular session based on a predetermined algorithm or some other method. The key is used for the session and then discarded. In this fashion, interception and recording of transmitted signals is of no use as the session key will change for subsequent sessions.

Abstract

A portable device is disclosed for receiving biometric information and for providing a signal in dependence thereon to a remote receiver. The device comprises a biometric sensor for imaging fingerprints, a processor for encoding the input biometric information, an infrared transmitter for transmitting the encoded biometric information to a receiver, and a power source. The device can be implemented in a watch, key chain, ID badge or a credit card.

Description

BIOMETRIC roENTTFICATTON SYSTEM FOR PROVIDING SECURE ACCESS
Field of the Invention
This invention relates generally to personal identification systems and more particularly relates to a biometric security identification system (BSIS).
Background of the Invention
Biometric security identification systems, such as fingerprint scanning and input devices are becoming more commonplace as the need to validate authorized users of computers, databases, and secure spaces grows. As computers become more miniaturized, so too are other communication and security devices decreasing in size. One of the more important reasons, however, to miniaturize electronic devices is to lessen the burden of porting them.
The use of security systems is generally well known. Their use is increasing with greater availability of digital electronic components at a relatively low cost. Such systems are known for securing buildings, banks, automobiles, computers and many other devices. For example, U.S. Pat. No. 4, 951, 249 discloses a computer security system which protects computer software from unauthorized access by requiring the user to supply a name and a password during the operating system loading procedure ("boot-up") of a personal computer (PC). This is accomplished by the insertion of a special card into an input/output expansion slot of the PC. During the loading of the operating system of the PC. the basic input/output system (BIOS) scans memory addresses of the card for an identification code, consisting of a 55AA hex code. When this hex code is located, the BIOS instructions are vectored to the address where the target hex code resides and instructions at the following addresses are executed as part of the initialization routines of the system boot-up procedure.
This PC security system, utilizing password protection, is typical of many systems that are currently available. Password protection requires a user's name and a password associated with that user's name. Only once an associated password is detected for a valid user's name does the PC complete the boot-up routine. Though passwords may be useful in some instances, they are inadequate in many respects. For example, an unauthorized skilled user with a correct password in hand, can gain entry to such a processor based system. Yet another undesirable feature of the foregoing system is that passwords on occasion are forgotten; and furthermore, and more importantly, passwords have been known to be decrypted.
As of late one of the most ubiquitous electronic components is the digital processor. Multi-purpose and dedicated processors of various types control devices ranging from bank machines, to cash registers and automobiles. With ever increasing use of these processor based devices, there is greater concern that unauthorized use will become more prevalent. Thus, the verification and/or authentication of authorized users of processor based systems is a burgeoning industry.
Alarms and security systems to warn of unauthorized use of automobiles and other processor controlled systems are available, however, these security systems have been known to be circumvented. Unfortunately, many commercially available solutions aimed at preventing theft or unauthorized use of automobiles have also been circumvented. As of late, initiatives have been underway in the security industry, to provide biometric input devices to validate users of electronic and other systems, that are to have restricted access. One limitation associated with many typical commercially available biometric systems is the large physical size of the imaging devices. Concern with placing a biometric input device in an location that is accessible to the public is the risk of the input device being vandalized.
In the field of digital and analog communications, wireless devices are becoming more commonplace. Inexpensive computer systems are currently commercially available wherein printers communicate with computers which in turn communicate with other computers via infra red transmitters and receivers. Other devices, using other optical communication systems, such as data transmitting/receiving wrist watches are now available in department stores at substantially affordable prices; these wrist watches include processors and software for communication with a computer and for downloading and uploading small amounts of data as required. Object of the Invention
It is an object of this invention to provide a portable biometric input device for sensing input biometric data, and transmitting the data to a receiver. Summary of the Invention
In a first broad embodiment the invention seeks to provide a portable biometric input device comprising: biometric sensing means for sensing biometric input information, generating biometric data therefrom, and providing the biometric data in relation to the sensed biometric input information; transmission means for receiving at least an aspect of the biometric data and for transmitting a signal in dependence upon the at least an aspect of the biometric data; and a battery for providing power to the device.
In an embodiment, the transmission means is a wireless transmission means for transmitting a signal in dependence upon the at least an aspect of the biometric data.
In an embodiment, the transmission means comprises a biometric data encoder and an infrared transmitter for transmitting a signal in dependence upon the at least an aspect of the biometric data.
In an embodiment, the device further comprises storage means for storing data related to said biometric data.
In an embodiment, the device further comprises processor means for processing the biometric data.
In an embodiment, the processor means is for comparing the biometric data with previously stored biometric data to provide comparison results; and the signal in dependence upon at least an aspect of the biometric data comprises a signal in dependence upon the comparison results. In an embodiment, the device further comprises means to receive a password and wherein the transmission means is for transmitting a signal in dependence upon at least an aspect of the biometric data and the password.
In an embodiment, the device further comprises means to receive a password and wherein the processor means is for comparing the biometric data with previously stored biometric data and the password and a previously stored password to provide comparison results; and the signal in dependence upon at least an aspect of the biometric data comprises a signal in dependence upon the comparison results.
In an embodiment, the device further comprises means for encrypting at least an aspect the biometric data; and the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encrypted data.
In an embodiment, the means for encrypting the biometric data comprise public/private key encryption means.
Alternatively, the means for encrypting the biometric data comprise session key encryption means.
In an embodiment, the biometric input means is a fingerprint imaging device.
In an embodiment, the device further comprises a housing in the form of a watch casement and a watch face.
In an embodiment, the biometric input means comprises associated electronic circuitry and conductive pads disposed on the watch face.
In a further broad embodiment, the invention seeks to provide a portable biometric input sensor comprising: an array of sense elements spaced apart and comprising a sensing electrode for sensing biometric input; drive means coupled to at least some of the sense elements for controlling and addressing each of the at least some sense elements according to a predetermined sequence, for receiving a signal in dependence upon the biometric input, and for providing biometric data in dependence upon the sensed biometric input; processor means for processing biometric data; and, wireless transmission means for transmitting to a receiver a signal that corresponds to at least an aspect of the biometric data.
In an embodiment, the device further comprises means for encrypting the biometric data further comprising means for encrypting at least an aspect the biometric data; and the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encrypted data.
In an embodiment, the means for encrypting the biometric data comprise public/private key encryption means.
In an embodiment, the means for encrypting the biometric data comprise session key encryption means.
In another broad embodiment the invention seeks to provide a biometric security identification system comprising: a portable transmitting module comprising a biometric sensing means, means for encoding biometric data and wireless transmission means for transmitting the encoded biometric data as an encoded signal; and a receiving module comprising means for receiving the encoded signal, means for extracting the encoded biometric data, and means for comparing the encoded biometric data with predetermined reference values, and means for authorizing access to a host system.
In an embodiment, the biometric sensing means comprises a fingerprint scanner.
In an embodiment, the device further comprises means for encrypting the biometric data further comprising means for encrypting at least an aspect the biometric data; the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encrypted data; and the means for extracting the encoded biometric data comprises means for decrypting and for extracting the encoded biometric data.
In an embodiment, the means for encrypting the biometric data comprise public/private key encryption means.
In an embodiment, the means for encrypting the biometric data comprise session key encryption means.
In yet another broad aspect, the invention seeks to provide a portable biometric input device comprising: sensing means including a platen upon which to rest a finger, said sensing means for sensing the presence and location of fingerprint ridges upon the device; processor means for processing sensed data; and, wireless transmission means for transmitting a signal that corresponds to at least an aspect of the sensed data; and a battery for providing power to the device.
The advantages of a system in accordance with this invention are numerous. For example, providing a lightweight fingerprint input transducer capable of wireless communications with a remote system obviates the requirement of securing the input transducer from vandals and prevents tampering therewith. Providing an input sensor that serves as a user's personalized key, offers distinct and obvious advantages. Firstly, the sensor may be protected by the user, being his or her own personal device, and furthermore, a user's personalized sensor may communicate with several different devices that require validation in the form of a users biometric input data; for example, the input sensor may provide a valid access code in the form of a biometric key, to unlock a locked car door, a house door, and/or to provide access to a banking machine or a computer. Furthermore, a user's personal sensor can be programmed with its own identification key which can accompany a user's biometric data in the validation process, to validate both the sensor and the user.
Brief Description of the Drawings Exemplary embodiments of the invention will now be discussed in conjunction with the attached drawings in which: Fig. 1 is a block diagram of the biometric security identification system (BSIS) according to the invention;
Fig. 2 is a simplified diagram of a sensing device for use with the present invention showing an array of sensing elements together with associated addressing circuitry;
Fig. 3 is a simplified diagram of a sensing element for use with the present invention; Fig. 4 is a schematic diagram of an amplifier circuit for use with the present invention; Fig. 5a is a digital watch according to the present invention; Fig. 5b is an analogue watch according to the invention; Fig. 6 is a block diagram of the transmitting module of Fig. 1 ;
Fig. 7 shows a block diagram of the receiving module of Fig. 1 ; Fig. 8 is a flowchart for illustrating a mode of operation of an embodiment of a BSIS according to the present invention;
Fig. 9 is a flowchart for illustrating a mode of operation of an embodiment of a BSIS according to the present invention;
Fig. 10 is a flowchart for illustrating a mode of operation of an embodiment of a BSIS according to the present invention further comprising bi-directional communication;
Fig. 1 1 is a flowchart for illustrating a mode of operation of an embodiment of a BSIS using bi-directional communication and a time out according to the present invention: Fig. 12 is a biometric credit card according to the present invention;
Fig. 13 is a device according to the present invention incorporated into a keychain and using infrared wireless communication; and
Fig. 14 is a device according to the present invention incorporated into a keychain and using RF wireless communication.
Detailed Description
Fig. 1 illustrates the block diagram of a biometric security identification system (BSIS) according to the invention. The system comprises a transmitting module 10 and a receiving module 20 connected over a transmission channel in the form of a wireless transmission channel. The transmitting module 10 measures a biometric characteristic of a person requesting access to a protected host system and converts the biometric characteristic into a biometπc identification (ID) code. The transmitter module is adapted to be carried or worn by the user, and therefore can take any suitable form, such as a wrist watch, a badge, a wallet, etc.
The biometric information may be accompanied by a password for increased security of the identification process. In this way, access to the protected host system is denied to unauthorized users, who may have a similar biometric ID. Similar biometric ID may occur if the transducer has a low sensitivity, for example for cost or/and miniaturization reasons. The password could be any machine readable code like a PIN, an account number, or a time- varying code. Selected passwords can be unique to the watch itself, or they can be chosen by the user.
It is apparent that various types of transducers may be used, such as image or temperature transducers, electromagnetic field sensors, optical sensors, etc. Preferably, the sensitivity of the transducer allows for capture of biometric data which reasonably distinguishes the user. In an embodiment, the transmitting module is in the form of a wrist watch provided with a fingerprint reader and described in more detail below.
The biometric ID is transmitted to receiving module 20, which is attached to a host system. The transmission is preferably made by modulating an infrared (IR) carrier with the biometric ID, but any other type of communication between the transmitting module 10 and receiving module 20 may be used. Preferably wireless communication means are used as dictated by selected design parameters, such as the distance between the modules, the power budget, etc. Preferably, and for obvious security reasons, a wireless communication means employed should minimize the risk of interception and recording of a biometric ID.
At receiving module 20, the biometric ID is compared to a reference ID pre-stored in a memory. If the current biometric ID (IDC) matches a reference ID (IDREF), access to the host system is authorized. The host system could be a computer system, an ATM banking machine, a door latch or any other system which must be secured against unauthorized access. In an alternative embodiment, the biometric ID is compared in the transmitting module 10 and an access code is sent to the receiving module 20 for comparison.
Referring to Fig. 2. part of a sensing device for use in an embodiment of the present invention and implemented on a semiconductor chip is shown comprising a single active matrix addressed sensing pad 119 having an X-Y array of sense elements consisting of r rows (1 to r) with c sensing elements 117 in each row. In practice there may be about 300 rows and 200 columns of regularly-spaced elements occupying an area of approximately 2 cm x 3 cm. This area is for accepting a fingertip for scanning. Should such a sensing pad 119 be made larger, it could be used for scanning other items such as a palm of a hand.
Sensor elements 117 are disposed in such a fashion that they are capable of distinguishing the smallest desired feature of a fingeφrint. Preferably, the placement and spacing of the sensor elements allow an image of a fingeφrint. once scanned, to contain all required features for analysis. The sensing element 117 is smaller than half the smallest sensible feature size allowing a suitable image to be generated. Empirical studies reveal that a square plate of about 50 μm edge length is suitable for fingeφrint sensing. Although the apparatus is described with reference to an array of sensing elements 117 having substantially square shape, it is possible to use different configurations of sensing elements 117 such as concentric circles or a spiral and different shapes such as triangles, circles, or rectangles.
The array of sensing elements 117 is connected through an analog switch matrix to facilitate reading the fingeφrint image out of the sensing array 119. Timing and sequencing logic 116 selects each element in the array in turn to produce a complete image of a fingeφrint presented to the device. The signal may be output directly as an analog signal or may be converted to a digital signal prior to output from the device.
The sensing pad 119 further comprises a ground ring 115 and bonding pads 118 designed for connection to other components or to packaging. The ground ring 115 also serves to provide a common ground for the sensing pad. Accordingly, it is important that the ground ring 115 and integrated circuit elements be designed so as to minimize noise to each sensing element 117. The signal to noise ratio that is acceptable will vary between applications and should be adjusted to meet the needs of a specific design. When possible, packaging should be selected to limit noise.
Referring to Fig. 3, a single sensing plate 120 is shown. Such a sensing plate 120 is designed to be used in arrays and preferably is smaller than half the smallest sensible feature size as indicated above. Charge sensing electrode 121 is connected to an active element which is shown as a three terminal switching device in the form of a field effect transistor (FET) having a source, a drain, and a gate 126. The gate 126 is connected to the sensing electrode 121 by an interconnect 124. Disposed between the gate 126 and the transistor 130 is a gate oxide 127. Such transistor configuration is known in the art.
Above the charge sensing electrode 121 is disposed an overglass 122 which serves to protect the charge sensing electrode 121 and to space the electrode and a fingertip presented thereto. Below the charge sensing electrode 121 is disposed a field oxide 125. A finger placed against the overglass 122 induces charge in the charge sensing electrode 121. By amplifying the charges induced by a fingertip on the charge sensing electrode 121 with an amplifier circuit such as is shown in Fig. 4, the induced charges can be rendered easily distinguishable.
Referring to Fig. 4, a sensing pad 120 is electrically grounded. A second side is connected through electrostatic discharge protection 131 in the form of resistors and diodes. A filter circuit 132 and 133 improves circuit operation. Transistors 134, 135, 136, and 137 provide amplification of induced voltages allowing a signal at an output of transistor 136 to be digitized by a low cost A/D converter.
Assuming that the charge density on the fingertip is substantially even, induced charges on the charge sensing electrode 121 will depend solely on the distance between the charge sensing electrode 121 and the skin of the fingertip inducing the charge. Further, as the induced charge falls off with the distance, the closest skin of the fingertip will induce a larger proportion of the charge. The sensor is employed in the above fashion to image fingertips. Referring to Fig. 5a, a watch is shown comprising (in part) the present invention. The watch 50 is secured in place on a person's wrist for example by way of a strap 51. Alternative methods such as a chain as is common in pocket watches, a pouch (not shown), velcro. a pin, or means for securing the watch to a sporting apparatus may also be used. A time display means 52 in the form of an LCD display, an LED display, an analogue time display, a voice generated time, or a Braille time display is disposed upon the watch 50 in a conventional manner. Preferably, the time display means 52 is offset to allow for sufficient contiguous surface area for a biometric sensor 53. Alternatively, the biometric sensor 53 is designed to be superimposed upon the time display means 52 and not interfere therewith as shown in Fig. 5b. An emitter port in the form of an infra red emitter port 55 is located on the watch 50 such that light emitted from the infra red port 55 is directed toward a sensor (not shown) in use. In Fig. 5a and Fig. 5b, the infra red emitter port 55 is located on the top of the watch above the face and pointing substantially coplanar to the watch face. In this orientation, an emitted signal is directed away from the body of a user and forward during normal use.
The biometric sensor means 53 is of the form described above and shown in Figs. 2, 3, and 4. Alternatively, the biometric sensor means 53 is a capacitive fingeφrint scanner requiring pre-charging as are well known in the art. Further alternatively, the biometric sensing means 53 is an optical biometric scanning device in the form of a retinal scanner, an optical fingeφrint scanner, an optical palm scanner, or any other suitable (and portable) biometric sensing device.
Referring to Fig. 5b, an analogue watch 150 is shown. Analogue watches of this type are well known and are in common use. On to the face of the analogue watch 150 are deposited a plurality of metal pads 155 and associated circuitry 156. The pads 155 and the associated circuitry 156 act as sensors and addressing circuitry and combine to form the sense electrode for a biometric input device. The analogue watch 150 is designed to be easily read in the presence of the pads 155 and the associated circuitry 156. This is accomplished by ensuring that a short hand on the watch 150 is long enough to be partially visible at each outside edge of the metal pads 150 in each possible orientation. Alternatively, this is accomplished by designing the hands of the watch to be visible through or between the pads 150. Further alternatively, this is accomplished by designing the pads 150 such that information on positions of the watch hands is transmitted through or by the metal pads 150. Further alternatively, this is accomplished by designing the watch face with an offset analogue time indication providing sufficient space for the pads 150 as is shown in Fig. 5a.
The associated circuitry 156 is coupled to driver and sensing circuitry for reading the electrode in the form of metal pads 155 and for determining the presence of a fingeφrint or other biometric input. The analogue watch 150 also comprises an infra red emitter port 55.
Alternatively in Fig. 5a and Fig. 5b, the infra red emitter port 55 comprises a transceiver capable of transmitting and receiving information in the form of infra red signals. An emitter is sufficient for carrying out the invention but a transceiver adds additional functionality. A watch, such as those shown in Figs. 5a and 5b can accept information to further enhance security of the invention during use. Further, a transceiver is useful in programming the device for password access or for new authorized users. Further, a transceiver is useful in storing a time log of accesses and providing same to a computer at intervals.
Alternatively, the emitter 55 is a wireless emitter other than infrared. Further alternatively, the emitter 55 is in the form of a coupling device for coupling to the receiving module 20 and sending a signal thereto via a non-wireless electrical connection. Alternatively, the transceiver 55 is a wireless transceiver other than infrared. Further alternatively, the transceiver 55 is in the form of a coupling device for coupling to the receiving module 20 and sending a signal thereto or receiving a signal therefrom via a non- wireless electrical connection.
Fig. 6 shows a block diagram of the transmitting module 10 of the BSIS. The module 10 comprises a power source in the form of a battery 5. The battery provides power to electronic circuits within the transmitting module 10. A reader 11 comprises a transducer, or sensor 15, 16, 17, and a drive circuit 18. The sensor is in the form of a contact imaging device for scanning a fingeφrint. The contact imaging device may be in the form of Figs. 2. 3, and 4 or may be a conventional capacitive contact imaging device. Conventional capacitive contact imaging devices use a silicon substrate with an array of capacitive pads, each capacitor being associated with a driver. The sensing pads are disposed in close but non-contacting relationship. A small gap between adjacent elements ensures that adjacent edges of the elements do not wipe against one another when a finger is pressed against the sensing surface. The sensing surface is formed by film deposition on the substrate surface. Sensing pads are regularly spaced apart equally sized electrodes built by metal deposition on an appropriate glass or quartz substrate. Alternatively, the sensing pads are irregular and/or unequally spaced. A reader used for the transducer of an embodiment of the present invention is of a simplified design, adapted for large scale manufacture. The reader comprises a glass substrate 15 for supporting a capacitive array 16 and a contact surface (sheet) 17. The array 16 comprises Indium-Tungsten oxide traces which are overlapped with hard gold. Each capacitive element has a sense electrode and a switching device such that, when a finger is pressed on the contact surface 17 each sense electrode and the respective overlying portion of the finger surface form opposite plates of a capacitor, the finger surface being at ground potential. The insulating film and air gap, when present, provides the capacitor dielectric. The capacitances of these individual capacitors vary as a function of the spacing between the finger and the contact surface, with smaller capacitance values occurring where the troughs in the finger surface are aligned with a sensor than where ridges are so aligned.
Drive circuit 19 is, preferably, not disposed on the substrate as in conventional sensors. It is preferably coupled to switching devices for controlling and addressing each capacitive pad according to a mapping sequence whereby a predetermined potential is applied to each capacitive pad. When a finger is placed on sheet 17 charges are induced in array 16. Charge is induced in each capacitor in an uneven manner in dependence upon ridges and troughs in the fingertip. The sensor reads these induced charges in the form of changes in capacitance or capacitive charge and transforms them into a bitmap particular to the fingeφrint or a group of fingeφrints.
Alternatively, the array of capacitive plates 17 is applied to a plastic film using metal- film processing or photographic image processing techniques. The plastic film is then applied to any surface, such as a wallet, a key chain, a pen knife, a personal digital assistant, a transportable computer or a watch. Drive circuit 19 is then attached to the array of capacitive pads using conductive epoxy adhesives, or an anisotropic adhesive process. This allows for an inexpensive sensor substrate which can be produced on a large scale using conventional LCD techniques.
The bitmap collected from the capacitive array is then input to processing unit 12 which encodes the bitmap containing the fingeφrint information and generates a biometric ID. In one embodiment, processor 12 is an 8-bit microprocessor, such as Intel 8051. Processor 12 may include a standard encryption module which applies an encryption algorithm for generating an encoded biometric ID.
An infrared transmitter 19 receives the biometric ID, modulates an infrared carrier with this information and then transmits an authorization request signal to receiving module 20.
A keypad 13 and a display 14 are preferably provided at the transmitting module 10. Keypad 13 is used for providing further data or functionality in the form of ON/OFF functionality and a password. In the embodiment comprising a watch, display means 14 includes time information.
Receiving module 20 is shown in Fig. 7. Receiving module 20 is provided with appropriate transducer means 21 for receiving the authorization request signal and converting it into an electrical signal. Transducer 21 may be for example an IrDA diode. The transducer is controlled by a control Unit 25 in dependence upon the current operating mode as determined by a mode selector 26. Modes of operation for the device are discussed below. The converted electrical signal is applied to decoder 22 where the biometric ID is extracted in the conventional mode. The recovered biometric IDC and a reference IDREF are applied to a comparator 23. The reference ID is obtained from a memory 24, where it has been previously stored, using any of the conventional methods. If a password is also included in the received signal together with the biometric IDC, the password is extracted by decoder 22 in addition to the biometric IDC, and compared with a reference password in comparator 23. When the result of the comparison indicates that the biometric IDC and the password are acceptable, access to the host system is permitted.
The receiving module 20 is initially configured in an ENROLL mode for obtaining and for storing one or more reference biometric samples. Enrolling software is normally inaccessible after the first use, or in a multi-user system, re-entering the enroll mode is accomplished through a function key and is limited to an authorized person or authorized persons. After enrollment is completed, the module enters its NORMAL mode.
The flow chart of Fig. 8 shows the operation of an embodiment of the invention. In step 30. the biometric data is read at the transmission module 10 with reader 11. As indicated above, in a preferred embodiment, reader 11 collects data indicative of the image of a fingeφrint. Next, the biometric data is encoded in processing means 12, in step 31. Transmitter 16 broadcasts the biometric data, as illustrated in step 32. Next, in step 33. receiving module 20 receives the biometric data and decodes the biometric ID therefrom, and checks the mode indicator in step 34. When the receiving module is in the "enroll" mode, the biometric ID is stored in memory 24 in step 35, and the receiving module is switched to the "access" mode of operation in step 36.
When the receiving module 20 is in the "access" mode, the received biometric ID is compared with the reference biometric ID in step 37. If the received signal comprises also a password, receiving module 20 separates the password from the biometric ID, and additionally compares the password against a reference password in step 38. Finally, access to the host system is authorized or not, depending on the result of the comparison(s), as shown in steps 39 and 40 respectively.
Alternatively, the transmitting module 10 is provided with a a change password initiator in the form of a key or a button allowing a user of the transmitting module 10 to enter a mode to alter their password. In this embodiment, an initial arbitrary password (such as none or "password") is set. Entering the mode to alter the password requires user verification of the existing password, user entry of a new password and user verification of the new password. Password selection algorithms of this type are known in the art of computer network security and operating systems. The password is stored in the receiving module 20. Alternatively, the password is stored in the transmitting module 10.
Referring to Fig. 9 a flow chart of an embodiment wherein biometric data authentication is performed within the transmitting module 10 and an access key is transmitted therefrom to the receiving module 20 is shown. Only "access" mode is described for this embodiment, "enroll" mode functions in a fashion similar to that set out above. This embodiment is particularly useful in that theft of the transmitting module 10 is discouraged.
The biometric data is read at the transmission module 10 with reader 11. As indicated above, in a preferred embodiment, reader 11 collects data indicative of the image of a fingeφrint. Next, the biometric data is decoded for comparison. The decoding accounts for rotation and misalignment in the biometric input. The decoded data is compared to at least previously stored biometric data. When password protection is also used, a password is required and verified. When the verification of the password and the fingeφrint fails (i.e. the password is incorrect or the decoded biometric data failed to register correctly against any previously stored biometric data) no further action occurs. Alternatively, a signal indicative of invalid registration is transmitted. Further alternatively, the signal contains information in the form of the biometric data to identify the unauthorized user of the device. When the verification succeeds the biometric data is encoded in processing means 12. Alternatively, an access key is encoded in processing means 12.
Transmitter 16 broadcasts the encoded data to the receiving module 20 which receives the encoded data and decodes it. At the receiving module (not shown), the data is verified to be an acceptable user authorization and provides access to the host system or releases a host locking mechanism.
Referring to Fig. 10 a flow chart of an embodiment of the present invention using bi- directional communication is shown. Biometric information is read from a biometric input means. The information is decoded and then stored in an electronic storage means. The electronic storage means is in the form of RAM. Alternatively, the electronic storage means comprises magnetic storage means, optical storage means, mechanical storage means, or other suitable low power storage means. The decoded information is analyzed to determine whether the information corresponds to an authorized user of the host system. When an authorized user is detected through a comparison, an access code is stored in a buffer. When the biometric information does not correspond to an authorized user, an error code is stored in the buffer. In response to a request from an external system for the code stored within the buffer, either the error code or the authorization code (whichever was last stored) is provided. The external system responds to the code in a predetermined fashion.
Referring to Fig. 11 , a flow chart for an embodiment similar to that of Fig. 10 is shown. The flow chart of Fig. 1 1 shows only the lower portion of the flow chart - those parts associated with bi-directional communication. A time-out is introduced upon storage of a code. When a request is not presented within a predetermined time, the buffer is erased and the method returns to a start. This prevents use of a device, embodying a method according to this invention, when found or taken by clearing any data related to the biometric input from the buffer. Second, a request from an external system comprises a further code parameter. The code parameter may be in the form of an encryption key, an access category, a device number, etc. According to the flow chart, a default code is provided to the external system when the received code parameter is unknown. When the code parameter is known, an access code in dependence upon the code parameter is provided to the external system. The method then returns to a start.
Referring to Fig. 12, a credit card biometric input device is shown. The device comprises a substantially flat substrate 209. A biometric input means 210 in the form of a finger print detector is disposed on the substrate as is a battery 211, an edge connector 212, actuating means 214 in the form of card edges, and electronic circuitry 215. The circuitry comprises electronic storage and processing means for verifying biometric input and providing an access code. The processor means is also for accepting a parameter code from an external system and encrypting the access code before transmitting same. In use. a user of such a device places their finger tip onto the biometric input means 210. Their fingeφrint is recorded, analyzed, and verified in the electronic storage and processor means 215. When the user is authorized, an access code is stored in a buffer and a time-out is put in place. When a request for the access code is provided prior to the time-out, the access code is transmitted. The device may also function according to the flow charts of Figs. 8, 9, 10, and 1 1.
The embodiment of Fig. 12, is useful as a credit card and for electronic finance. Unattended electronic devices accept the card in a similar fashion to current automatic teller machines (ATM) and only return the card when it is not reported stolen. Attended transaction locations, such as stores, would erase the buffer and require input of the biometric information in their presence. In this way, the device serves the puφose of both a credit card and an electronic "cash" card.
In Fig. 13 a key chain embodiment of the invention is shown. The key chain 220 is attached to a biometric input device 209a comprising biometric input means 210, buttons 218, an infrared transceiver 219a, and electronic circuitry (not shown) housed within the device. In operation the device acts like other devices described above. The buttons may be used for password entry, function selection, or to distinguish operations such as opening a car door, a garage door, a trunk for a car, etc.
In Fig. 14 a further key chain embodiment of the invention is shown. The key chain
220 is attached to a biometric input device 209a comprising biometric input means 210. buttons 218. an RF transceiver 219b, and electronic circuitry (not shown) housed within the device. In operation the device acts like other devices described above. The buttons may be used for password entry, function selection, or to distinguish operations such as opening a car door, a garage door, a trunk for a car, etc. In an embodiment, uni-directional communication is used between a portable biometric input device according to this invention and a receiving module. Alternatively, biometric data authentication is performed using two way communications between the transmitting module 10 and the receiving module 20. Further alternatively, biometric data authentication is performed using multi-channel multi-party communications to add functionality such as access logs, central access control, access permission authorization from a third location, etc. In a further embodiment, the transmitting module 10 and the receiving module 20 are programmed via a communication port using a computer. The communication port is preferably bi-directional. Preferably, the communication port is the transceiver in the transmitting module 10 and the transducer in the receiving module 20.
A device according to the present invention may be used to provide secure access to computers, computer networks, buildings, safes, houses, portable electronic locks, automobiles, banking services in the form of automatic teller machines, electronic commerce, household cabinets for rendering them child safe, television services, pay per view television services, electrical appliance, garages, hotel rooms, educational facilities, health club facilities, etc. The device is useful where passwords, magnetic strips, physical key and lock mechanisms, electronic locks, ID cards and other secure forms of identification are used.
In a further embodiment and according to a method according to the present invention, the transmitter is an audio transmitter capable of transmitting tones in dependence upon the biometric data. One form of the tones is a series of telephone tones indicative of the identity of an individual and capable of being understood by a telephone system. A further form of tones are similar to those of a computer modem or fax machine, devices sending digital data across analogue telephone lines.
In order to improve the security of embodiments of this invention, it is possible to employ encryption technology. The encryption technologies are generally known and include public/private key encryption, session key encryption, and other encryption schemes for secure data transmission. In private/public key encryption, a receiver sends a public key to a device according to the present invention and transmissions from the device to the receiver are encrypted using the public key. Only the receiver, having the private key, can decrypt the transmission. A group of public keys can be used or public keys can vary regularly in order to prevent interception and replay of a transmission. In session key encryption an encryption key is selected for a particular session based on a predetermined algorithm or some other method. The key is used for the session and then discarded. In this fashion, interception and recording of transmitted signals is of no use as the session key will change for subsequent sessions.
It is also suggested to increase security by verifying the device type in use according to the invention. Establishing a device type and protocol allows some receivers to inhibit access to devices of certain security access levels or protocols.
Numerous other embodiments may be envisaged without departing from the spirit and scope of the invention.

Claims

ClaimsWhat we claim is:
1. A portable biometric input device comprising: biometric sensing means for sensing biometric input information, generating biometric data therefrom, and providing the biometric data in relation to the sensed biometric input information: transmission means for receiving at least an aspect of the biometric data and for transmitting a signal in dependence upon the at least an aspect of the biometric data; and a battery for providing power to the device.
2. A portable biometric input device as defined in claim 1 wherein the transmission means is a wireless transmission means for transmitting a signal in dependence upon the at least an aspect of the biometric data.
3. A portable biometric input device as defined in claim 1 wherein the transmission means comprises a biometric data encoder and an infrared transmitter for transmitting a signal in dependence upon the at least an aspect of the biometric data.
4. A portable biometric input device as defined in claim 1 further comprising storage means for storing data related to said biometric data.
5. A portable biometric input device as defined in claim 4 further comprising processor means for processing the biometric data.
6. A portable biometric input device as defined in claim 5 wherein the processor means is for comparing the biometric data with previously stored biometric data to provide comparison results; and the signal in dependence upon at least an aspect of the biometric data comprises a signal in dependence upon the comparison results.
7. A portable biometric input device as defined in claim 1 , further comprising means to receive a password and wherein the transmission means is for transmitting a signal in dependence upon at least an aspect of the biometric data and the password.
8. A portable biometric input device as defined in claim 1, further comprising means to receive a password and wherein the processor means is for comparing the biometric data with previously stored biometric data and the password and a previously stored password to provide comparison results; and the signal in dependence upon at least an aspect of the biometric data comprises a signal in dependence upon the comparison results.
9. A portable biometric input device as defined in claim 1 , further comprising means for encrypting at least an aspect the biometric data; and the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encrypted data.
10. A portable biometric input device as defined in claim 9 wherein the means for encrypting the biometric data comprise public/private key encryption means.
1 1. A portable biometric input device as defined in claim 9 wherein the means for encrypting the biometric data comprise session key encryption means.
12. A portable biometric input device as defined in claim 1 wherein the biometric input means is a fingeφrint imaging device.
13. A portable biometric input device as defined in claim 1 further comprising a housing in the form of a watch casement and a watch face.
14. A portable biometric input device as defined in claim 13 wherein the biometric input means comprises associated electronic circuitry and conductive pads disposed on the watch face.
15. A portable biometric input sensor comprising: a) an array of sense elements spaced apart and comprising a sensing electrode for sensing biometric input; b) drive means coupled to at least some of the sense elements for controlling and addressing each of the at least some sense elements according to a predetermined sequence, for receiving a signal in dependence upon the biometric input, and for providing biometric data in dependence upon the sensed biometric input;
(c) processor means for processing biometric data; and,
(d) wireless transmission means for transmitting to a receiver a signal that corresponds to at least an aspect of the biometric data.
16. A portable biometric input sensor as defined in claim 15. further comprising means for encrypting the biometric data further comprising means for encrypting at least an aspect the biometric data; and the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encrypted data.
17. A portable biometric input sensor as defined in claim 16 wherein the means for encrypting the biometric data comprise public/private key encryption means.
18. A portable biometric input sensor as defined in claim 16 wherein the means for encrypting the biometric data comprise session key encryption means.
19. A biometric security identification system comprising: a portable transmitting module comprising a biometric sensing means, means for encoding biometric data and wireless transmission means for transmitting the encoded biometric data as an encoded signal; and a receiving module comprising means for receiving the encoded signal, means for extracting the encoded biometric data, and means for comparing the encoded biometric data with predetermined reference values, and means for authorizing access to a host system.
20. A biometric security identification system as defined in claim 19, wherein said biometric sensing means comprises a fingeφrint scanner.
21. A biometric security identification system as defined in claim 19, further comprising means for encrypting the biometric data further comprising means for encrypting at least an aspect the biometric data; the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encrypted data; and the means for extracting the encoded biometric data comprises means for decrypting and for extracting the encoded biometric data.
22. A biometric security identification system as defined in claim 21 wherein the means for encrypting the biometric data comprise public/private key encryption means.
23. A biometric security identification system as defined in claim 21 wherein the means for encrypting the biometric data comprise session key encryption means.
24. A portable biometric input device comprising: sensing means including a platen upon which to rest a finger, said sensing means for sensing the presence and location of fingeφrint ridges upon the device; processor means for processing sensed data; and, wireless transmission means for transmitting a signal that corresponds to at least an aspect of the sensed data; and a battery for providing power to the device.
AMENDED CLAIMS /nj n no.
[received by the International Bureau on 4 February 1998 (04.02.98); original claims 1-24 replaced by new claims 1-18 (4 pages)]
1. A portable biometric input device comprising" biometric sensing means for sensing biometric input information, generating biometric daia therefrom, and providing the biometric data m relation to the sensed biometric input information: storage means for .storing data related to said biomctnc data; processor means for characterising the biometric data; and.
Lransm.3i.ior. means for receiving at least an aspect of the cnaraeteπsed biometric data and for transmitting a signal in dependence upon the at least an aspect or the characterised biometric data; and a battery for providing power to the device.
2 A portable biometric input device comprising: biometric sensing means for sensing biometric input information, generating biomctnc data therefrom, and
Figure imgf000027_0001
iding the biometric data in relation to the sensed biometric input information, a processor for comparing the biometric data with previously srored biometric data to provide comparison results: and. iransmissicn means for receiving at least an aspect of the biometric data and for transmuting a signal in dependence upon the comparison results.
3. A poπabie biometric input device as defined in claim 2, further comprising means to receive a password and wherein the transmission means is for transmitting a signal in dependence upon at least an aspect of the biomctnc data and the password.
4. A portable biometric input device as defined in claim 2 comprising means to receive a password and wherein the processor means is for comparing the password and a previously stored password to provide further comparison results; and wherein the signal in dependence upon at least an aspect of the comparison results is a signal in dependence upon a least an aspect of the comparison results and of the further comparison results.
5. Λ portable biometric input device comprising: biometric sensing means Cor sensing biometric inpui information, generating biometric data therefrom, and providing the biometric data in relation to the sensed biomctnc input information; means for encrypting at least an aspect the biometric data, transmission means for receiving at least an aspect of the encrypted biomctnc data and for transmitting a signal in dependence upon the ai least an aspect of the biometric data; and a batter)' for providing power to the device.
6. A poπablc biometπc input device as defined in claim 5 wherein hc means for encrypting the biomeinc data comprise public/private key encryption means
7. A portable biometric input device as defined in claim 5 wherein the means for encrypting the biometπc data comprise session key encryption means
8 A poπabie biometric input device as defined in claim i wherein the biometric input means is a fingerprint imaging device.
9 A portable biometric input device as defined in claim 1 further comprising a housing in the form of a watch casement and a watch face.
10. Λ portable biometric input device as defined in claim 9 wherein the biometric input means comprises associated electronic circuitry and conductive pads disposed on the watch face.
11. A portable biometric input sensor comprising: a) an array of sense elements spaced apart and comprising a sensing electrode fθ' sensing biometric input; b) drive means coupled to at least some of the sense elements for controlling and addressing each of the at least some sense elements according to a predetermined sequence, for receiving a signal in dependence upon the biometric input, and for providing biometric data in dependence upon the sensed biometric input; 5 (c) processor means for processing biometric data; and,
(d) wireless transmission means for transmitting to a receiver a sigαal that corresponds to at least an aspect of the biometric data.
12. A portable biometric input sensor a? defined in claim 11 , further comprising 10 means for encr pting the biometric data further comprising means for encrypting at least an aspect the biomctnc data; and the transmission means is for receiving the encrypted data and for transmitting a signal in dependence upon the at least an aspect of the encr pted data.
!5 13 A portable biometric input sensor as defined in claim 12 wherein the means for encrypting the biometric data comprise public/private key encryption means.
14. Λ portable biometric input sensor as defined in claim 12 wherein the means for encrypting the biometric data comprise session key encryption means. 0
15. A biometric security identification system comprising: a portable transmitting module comprising a biometric sensing, means for sensing biometric data, means for encrypting at least an aspect the biometric data, means for encoding the encrypted biometric data, and wireless transmission means for transmitting the encoded encrypted biometric data as an encoded signal; and a receiving module comprising means for receiving the encoded signal, means for extracting the encoded biometric data, means for decrypting the decoded biometric data, means for comparing the biomctnc data with predetermined reference values, and means for authorizing access to a host system. 0
16. A biometric security identification system as defined m claim 15. wherein said biometric sensing means comprises a fingerprint scanner.
17. A biometiic securuy identification system as defined in claim 15 wherein the means for encrypting the biometric data comprise public/private key encryption means
18. A biometric security identification system as defined in claim 15 wherein the means for encrypting the biometπc data comprise session key encryption means
PCT/CA1997/000663 1996-09-18 1997-09-15 Biometric identification system for providing secure access WO1998012670A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU41964/97A AU4196497A (en) 1996-09-18 1997-09-15 Biometric identification system for providing secure access

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US71543296A 1996-09-18 1996-09-18
US08/715,432 1996-09-18

Publications (1)

Publication Number Publication Date
WO1998012670A1 true WO1998012670A1 (en) 1998-03-26

Family

ID=24874030

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CA1997/000663 WO1998012670A1 (en) 1996-09-18 1997-09-15 Biometric identification system for providing secure access

Country Status (3)

Country Link
AU (1) AU4196497A (en)
CA (1) CA2233942A1 (en)
WO (1) WO1998012670A1 (en)

Cited By (102)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1998047096A1 (en) * 1997-04-17 1998-10-22 Cross Check Corporation Hand-held fingerprint recognition and transmission device
EP1006420A1 (en) * 1998-12-02 2000-06-07 BOTTERO S.p.A. Glassware molding machine with a machine operating data access level identification system
WO2000038118A1 (en) * 1998-12-21 2000-06-29 Digital Security Controls Ltd. Biometric input device for security system
WO2000045551A1 (en) * 1999-01-27 2000-08-03 International Business Machines Corporation Protection of biometric data via key-dependent sampling
WO2000046756A1 (en) * 1999-02-01 2000-08-10 BSH Bosch und Siemens Hausgeräte GmbH Electrically operated household appliance
EP1040616A1 (en) * 1998-10-14 2000-10-04 Ultra Information Systems LLC System and method of authenticating a key and transmitting secure data
US6178255B1 (en) 1998-04-28 2001-01-23 Cross Match Technologies, Inc. Individualized fingerprint scanner
WO2001020463A1 (en) * 1999-09-17 2001-03-22 Fingloq Ab Security arrangement
WO2001020560A1 (en) * 1999-09-16 2001-03-22 Lennart Eriksson Process and system for control
EP1113618A2 (en) * 1999-12-27 2001-07-04 Siemens Aktiengesellschaft Protection of sensor data
US6263090B1 (en) 1997-05-19 2001-07-17 Cross Match Technologies, Inc. Code reader fingerprint scanner
WO2001054074A1 (en) * 2000-01-19 2001-07-26 Skidata Ag Authorization control device
US6272562B1 (en) 1999-05-28 2001-08-07 Cross Match Technologies, Inc. Access control unit interface
KR20010080832A (en) * 2000-01-17 2001-08-25 안준영 Finger print cognition type door locking device having function of wireless transmitting finger print data
WO2001071462A2 (en) * 2000-03-21 2001-09-27 Widcomm, Inc. System and method for secure biometric identification
EP1191328A2 (en) * 2000-08-30 2002-03-27 Heimann Systems GmbH Control system for an x-ray testing device
WO2002037428A1 (en) * 2000-11-03 2002-05-10 Interbiometrics Zugangssysteme Gmbh Device for the control of functions by means of biometric data
WO2002044873A2 (en) * 2000-11-30 2002-06-06 Palm, Inc. Computer related access control
WO2002061693A3 (en) * 2001-01-30 2002-10-17 Bsh Bosch Siemens Hausgeraete Method and device for controlling domestic appliances
WO2002097717A2 (en) * 2001-05-30 2002-12-05 Hewlett-Packard Company Face and environment sensing watch
WO2003021523A1 (en) * 2001-08-28 2003-03-13 Hewlett-Packard Company User- wearable wireless transaction device with biometrical user validation
WO2003029942A2 (en) * 2001-10-01 2003-04-10 Chameleon Network, Inc. Portable electronic authorization device and associated method
WO2003049042A1 (en) * 1998-05-13 2003-06-12 Bioscrypt Inc. Portable device and method for accessing data key actuated devices
WO2003054814A2 (en) * 2001-12-05 2003-07-03 Hewlett-Packard Company Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use
US6592031B1 (en) * 1998-12-04 2003-07-15 Stocko Contact Gmbh & Co. Kg Authentication system for PC cards
KR100408785B1 (en) * 2000-01-24 2003-12-11 이승호 Fingerprint Recognition System
EP1408440A2 (en) * 2002-10-11 2004-04-14 NTT DoCoMo, Inc. Electromyographic user authentication apparatus, system and method
US6778688B2 (en) 2001-05-04 2004-08-17 International Business Machines Corporation Remote authentication of fingerprints over an insecure network
WO2004090763A1 (en) * 2003-04-14 2004-10-21 Marcus Eckerl Apparatus for storing and transferring personal data
WO2004104899A2 (en) * 2003-05-21 2004-12-02 Koninklijke Philips Electronics N.V. Method and system for authentication of a physical object
EP1485856A1 (en) * 2002-03-18 2004-12-15 Precision Dynamics Corporation Enhanced identification appliance
US6837422B1 (en) 2000-09-01 2005-01-04 Heimann Systems Gmbh Service unit for an X-ray examining device
WO2005020503A1 (en) 2003-08-25 2005-03-03 Research In Motion Limited System and method for securing wireless data
US6880054B2 (en) 2000-02-21 2005-04-12 Trek Technology (Singapore) Pte. Ltd. Portable data storage device having a secure mode of operation
WO2005057504A1 (en) * 2003-12-05 2005-06-23 Honeywell International Inc. Dual technology door entry person authentication
USH2120H1 (en) * 2002-10-10 2005-07-05 The United States Of America As Represented By The Secretary Of The Air Force Biometric personal identification credential system (PICS)
EP1563421A2 (en) * 2002-07-09 2005-08-17 American Express Travel Related Services Company Inc. System and method for incenting payment using radio frequency identification in contact and contactless transactions
US7003495B1 (en) 1999-09-28 2006-02-21 Chameleon Network Inc. Portable electronic authorization system and method
WO2007069935A1 (en) * 2005-12-15 2007-06-21 Evgeniy Aleksandrovich Grafeev Electronic system for managing a multi-address access
US7260221B1 (en) 1998-11-16 2007-08-21 Beepcard Ltd. Personal communicator authentication
US7334735B1 (en) 1998-10-02 2008-02-26 Beepcard Ltd. Card for interaction with a computer
US7337326B2 (en) 2002-03-28 2008-02-26 Innovation Connection Corporation Apparatus and method for effecting secure physical and commercial transactions in a contactless manner using biometric identity validation
US7340439B2 (en) 1999-09-28 2008-03-04 Chameleon Network Inc. Portable electronic authorization system and method
WO2008026878A1 (en) * 2006-08-30 2008-03-06 Electronics And Telecommunications Research Institute Wearable computer system and method controlling information/service in wearable computer system
EP1901238A2 (en) 2006-06-02 2008-03-19 Harris Corporation Authentication and access control device
US7412604B1 (en) 2000-03-28 2008-08-12 International Business Machines Corporation Using biometrics on pervasive devices for mobile identification
WO2008111012A1 (en) * 2007-03-14 2008-09-18 Dexrad (Proprietary) Limited Personal identification device for secure transactions
US8015592B2 (en) 2002-03-28 2011-09-06 Innovation Connection Corporation System, method and apparatus for enabling transactions using a biometrically enabled programmable magnetic stripe
US8073209B2 (en) 2002-01-17 2011-12-06 Cross Match Technologies, Inc Biometric imaging system and method
US8082575B2 (en) 2002-03-28 2011-12-20 Rampart-Id Systems, Inc. System, method and apparatus for enabling transactions using a user enabled programmable magnetic stripe
US8103881B2 (en) 2000-11-06 2012-01-24 Innovation Connection Corporation System, method and apparatus for electronic ticketing
WO2012078061A1 (en) * 2010-12-06 2012-06-14 Yonos, Lda. Wireless biometric access control system and operation method thereof
EP1914649A3 (en) * 2006-10-19 2012-12-12 STMicroelectronics, Inc Portable device for storing private information such as medical, financial or emergency information
US8380536B2 (en) 2003-11-13 2013-02-19 Hospira, Inc. System for maintaining drug information and communicating with medication delivery devices
EP2660749A1 (en) * 2012-05-03 2013-11-06 Siemens Aktiengesellschaft Operating device with authentication means
WO2014035548A1 (en) * 2012-08-31 2014-03-06 Apple Inc. Wireless pairing and communication between devices using biometric data
US8843057B2 (en) 1998-09-16 2014-09-23 Dialware Inc. Physical presence digital authentication system
US8935367B2 (en) 1998-10-02 2015-01-13 Dialware Inc. Electronic device and method of configuring thereof
EP2869528A1 (en) * 2013-10-31 2015-05-06 Samsung Electronics Co., Ltd Method for performing authentication using biometrics information and portable electronic device supporting the same
US9123077B2 (en) 2003-10-07 2015-09-01 Hospira, Inc. Medication management system
US9219708B2 (en) 2001-03-22 2015-12-22 DialwareInc. Method and system for remotely authenticating identification devices
US20160182507A1 (en) * 2012-08-31 2016-06-23 Apple Inc. Wireless Pairing and Communication Between Devices Using Biometric Data
FR3034599A1 (en) * 2015-04-03 2016-10-07 Oberthur Technologies METHOD FOR SECURELY CONTROLLING A MOBILE TELEPHONE BY A DOOR ELECTRONIC DEVICE AND ELECTRONIC DEVICE ADAPTED TO BEING THE DOOR THEREFOR
US9489949B2 (en) 1999-10-04 2016-11-08 Dialware Inc. System and method for identifying and/or authenticating a source of received electronic data by digital signal processing and/or voice authentication
US9971871B2 (en) 2011-10-21 2018-05-15 Icu Medical, Inc. Medical device update system
US9995611B2 (en) 2012-03-30 2018-06-12 Icu Medical, Inc. Air detection system and method for detecting air in a pump of an infusion system
US10022498B2 (en) 2011-12-16 2018-07-17 Icu Medical, Inc. System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy
US10042986B2 (en) 2013-11-19 2018-08-07 Icu Medical, Inc. Infusion pump automation system and method
US10046112B2 (en) 2013-05-24 2018-08-14 Icu Medical, Inc. Multi-sensor infusion system for detecting air or an occlusion in the infusion system
US10166328B2 (en) 2013-05-29 2019-01-01 Icu Medical, Inc. Infusion system which utilizes one or more sensors and additional information to make an air determination regarding the infusion system
US10238801B2 (en) 2009-04-17 2019-03-26 Icu Medical, Inc. System and method for configuring a rule set for medical event management and responses
US10242060B2 (en) 2006-10-16 2019-03-26 Icu Medical, Inc. System and method for comparing and utilizing activity information and configuration information from multiple medical device management systems
US10238799B2 (en) 2014-09-15 2019-03-26 Icu Medical, Inc. Matching delayed infusion auto-programs with manually entered infusion programs
US10311972B2 (en) 2013-11-11 2019-06-04 Icu Medical, Inc. Medical device system performance index
US10314974B2 (en) 2014-06-16 2019-06-11 Icu Medical, Inc. System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy
US10333843B2 (en) 2013-03-06 2019-06-25 Icu Medical, Inc. Medical device communication method
US10342917B2 (en) 2014-02-28 2019-07-09 Icu Medical, Inc. Infusion system and method which utilizes dual wavelength optical air-in-line detection
US10430761B2 (en) 2011-08-19 2019-10-01 Icu Medical, Inc. Systems and methods for a graphical interface including a graphical representation of medical data
US10463788B2 (en) 2012-07-31 2019-11-05 Icu Medical, Inc. Patient care system for critical medications
US10596316B2 (en) 2013-05-29 2020-03-24 Icu Medical, Inc. Infusion system and method of use which prevents over-saturation of an analog-to-digital converter
US10635784B2 (en) 2007-12-18 2020-04-28 Icu Medical, Inc. User interface improvements for medical devices
US10656894B2 (en) 2017-12-27 2020-05-19 Icu Medical, Inc. Synchronized display of screen content on networked devices
US10692595B2 (en) 2018-07-26 2020-06-23 Icu Medical, Inc. Drug library dynamic version management
US10741280B2 (en) 2018-07-17 2020-08-11 Icu Medical, Inc. Tagging pump messages with identifiers that facilitate restructuring
US10765799B2 (en) 2013-09-20 2020-09-08 Icu Medical, Inc. Fail-safe drug infusion therapy system
US10850024B2 (en) 2015-03-02 2020-12-01 Icu Medical, Inc. Infusion system, device, and method having advanced infusion features
US10861592B2 (en) 2018-07-17 2020-12-08 Icu Medical, Inc. Reducing infusion pump network congestion by staggering updates
US10898641B2 (en) 2014-04-30 2021-01-26 Icu Medical, Inc. Patient care system with conditional alarm forwarding
US11012438B2 (en) 2014-09-30 2021-05-18 Apple Inc. Biometric device pairing
US11135360B1 (en) 2020-12-07 2021-10-05 Icu Medical, Inc. Concurrent infusion with common line auto flush
US11246985B2 (en) 2016-05-13 2022-02-15 Icu Medical, Inc. Infusion pump system and method with common line auto flush
US11278671B2 (en) 2019-12-04 2022-03-22 Icu Medical, Inc. Infusion pump with safety sequence keypad
US11309070B2 (en) 2018-07-26 2022-04-19 Icu Medical, Inc. Drug library manager with customized worksheets
US11324888B2 (en) 2016-06-10 2022-05-10 Icu Medical, Inc. Acoustic flow sensor for continuous medication flow measurements and feedback control of infusion
US11328805B2 (en) 2018-07-17 2022-05-10 Icu Medical, Inc. Reducing infusion pump network congestion by staggering updates
US11344673B2 (en) 2014-05-29 2022-05-31 Icu Medical, Inc. Infusion system and pump with configurable closed loop delivery rate catch-up
US11344668B2 (en) 2014-12-19 2022-05-31 Icu Medical, Inc. Infusion system with concurrent TPN/insulin infusion
US11571508B2 (en) 2013-08-30 2023-02-07 Icu Medical, Inc. System and method of monitoring and managing a remote infusion regimen
US11574737B2 (en) 2016-07-14 2023-02-07 Icu Medical, Inc. Multi-communication path selection and security system for a medical device
US11587669B2 (en) 2018-07-17 2023-02-21 Icu Medical, Inc. Passing authentication token to authorize access to rest calls via web sockets
US11605468B2 (en) 2015-05-26 2023-03-14 Icu Medical, Inc. Infusion pump system and method with multiple drug library editor source capability
US11883361B2 (en) 2020-07-21 2024-01-30 Icu Medical, Inc. Fluid transfer devices and methods of use

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4577345A (en) * 1984-04-05 1986-03-18 Igor Abramov Fingerprint sensor
GB2181582A (en) * 1985-10-11 1987-04-23 Victor Campbell Blackwell Personal identification device
US4993068A (en) * 1989-11-27 1991-02-12 Motorola, Inc. Unforgeable personal identification system
EP0661675A2 (en) * 1993-12-29 1995-07-05 International Business Machines Corporation Access control apparatus and method

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4577345A (en) * 1984-04-05 1986-03-18 Igor Abramov Fingerprint sensor
GB2181582A (en) * 1985-10-11 1987-04-23 Victor Campbell Blackwell Personal identification device
US4993068A (en) * 1989-11-27 1991-02-12 Motorola, Inc. Unforgeable personal identification system
EP0661675A2 (en) * 1993-12-29 1995-07-05 International Business Machines Corporation Access control apparatus and method

Cited By (191)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1501039A1 (en) * 1997-04-17 2005-01-26 Cross Match Technologies, Inc. Hand-held fingerprint recognition and transmission device
US6111977A (en) * 1997-04-17 2000-08-29 Cross Match Technologies, Inc. Hand-held fingerprint recognition and transmission device
WO1998047096A1 (en) * 1997-04-17 1998-10-22 Cross Check Corporation Hand-held fingerprint recognition and transmission device
US6263090B1 (en) 1997-05-19 2001-07-17 Cross Match Technologies, Inc. Code reader fingerprint scanner
US6178255B1 (en) 1998-04-28 2001-01-23 Cross Match Technologies, Inc. Individualized fingerprint scanner
WO2003049042A1 (en) * 1998-05-13 2003-06-12 Bioscrypt Inc. Portable device and method for accessing data key actuated devices
US7437567B2 (en) 1998-05-13 2008-10-14 Bioscrypt Inc. Portable device and method for accessing data key actuated devices
US9830778B2 (en) 1998-09-16 2017-11-28 Dialware Communications, Llc Interactive toys
US8843057B2 (en) 1998-09-16 2014-09-23 Dialware Inc. Physical presence digital authentication system
US9607475B2 (en) 1998-09-16 2017-03-28 Dialware Inc Interactive toys
US9275517B2 (en) 1998-09-16 2016-03-01 Dialware Inc. Interactive toys
US9361444B2 (en) 1998-10-02 2016-06-07 Dialware Inc. Card for interaction with a computer
US8935367B2 (en) 1998-10-02 2015-01-13 Dialware Inc. Electronic device and method of configuring thereof
US7334735B1 (en) 1998-10-02 2008-02-26 Beepcard Ltd. Card for interaction with a computer
EP1040616A4 (en) * 1998-10-14 2000-12-27 Ultra Information Systems Llc System and method of authenticating a key and transmitting secure data
EP1040616A1 (en) * 1998-10-14 2000-10-04 Ultra Information Systems LLC System and method of authenticating a key and transmitting secure data
US7260221B1 (en) 1998-11-16 2007-08-21 Beepcard Ltd. Personal communicator authentication
EP1006420A1 (en) * 1998-12-02 2000-06-07 BOTTERO S.p.A. Glassware molding machine with a machine operating data access level identification system
US6592031B1 (en) * 1998-12-04 2003-07-15 Stocko Contact Gmbh & Co. Kg Authentication system for PC cards
WO2000038118A1 (en) * 1998-12-21 2000-06-29 Digital Security Controls Ltd. Biometric input device for security system
CN100414867C (en) * 1999-01-27 2008-08-27 国际商业机器公司 Protection of biometric data via key-dependent sampling
CZ300144B6 (en) * 1999-01-27 2009-02-25 International Business Machines Corporation Protection of biometric data by employing key-dependent sampling Key-dependent sampling of a biometric characteristic is performed at a client (110), to thereby generate key-dependent biometric data samples. The key-dependent biometric data samples a
US6507912B1 (en) 1999-01-27 2003-01-14 International Business Machines Corporation Protection of biometric data via key-dependent sampling
WO2000045551A1 (en) * 1999-01-27 2000-08-03 International Business Machines Corporation Protection of biometric data via key-dependent sampling
WO2000046756A1 (en) * 1999-02-01 2000-08-10 BSH Bosch und Siemens Hausgeräte GmbH Electrically operated household appliance
US6272562B1 (en) 1999-05-28 2001-08-07 Cross Match Technologies, Inc. Access control unit interface
WO2001020560A1 (en) * 1999-09-16 2001-03-22 Lennart Eriksson Process and system for control
WO2001020463A1 (en) * 1999-09-17 2001-03-22 Fingloq Ab Security arrangement
US7080037B2 (en) 1999-09-28 2006-07-18 Chameleon Network Inc. Portable electronic authorization system and method
US7003495B1 (en) 1999-09-28 2006-02-21 Chameleon Network Inc. Portable electronic authorization system and method
US7340439B2 (en) 1999-09-28 2008-03-04 Chameleon Network Inc. Portable electronic authorization system and method
US9489949B2 (en) 1999-10-04 2016-11-08 Dialware Inc. System and method for identifying and/or authenticating a source of received electronic data by digital signal processing and/or voice authentication
EP1113618A3 (en) * 1999-12-27 2003-02-12 Siemens Aktiengesellschaft Protection of sensor data
EP1113618A2 (en) * 1999-12-27 2001-07-04 Siemens Aktiengesellschaft Protection of sensor data
KR20010080832A (en) * 2000-01-17 2001-08-25 안준영 Finger print cognition type door locking device having function of wireless transmitting finger print data
WO2001054074A1 (en) * 2000-01-19 2001-07-26 Skidata Ag Authorization control device
US6799726B2 (en) 2000-01-19 2004-10-05 Skidata Ag Authorization control device including a wristwatch having a biometric sensor
KR100408785B1 (en) * 2000-01-24 2003-12-11 이승호 Fingerprint Recognition System
US6880054B2 (en) 2000-02-21 2005-04-12 Trek Technology (Singapore) Pte. Ltd. Portable data storage device having a secure mode of operation
WO2001071462A2 (en) * 2000-03-21 2001-09-27 Widcomm, Inc. System and method for secure biometric identification
WO2001071462A3 (en) * 2000-03-21 2003-05-15 Widcomm Inc System and method for secure biometric identification
US7412604B1 (en) 2000-03-28 2008-08-12 International Business Machines Corporation Using biometrics on pervasive devices for mobile identification
EP1191328A3 (en) * 2000-08-30 2004-04-07 Smiths Heimann GmbH Control system for an x-ray testing device
EP1191328A2 (en) * 2000-08-30 2002-03-27 Heimann Systems GmbH Control system for an x-ray testing device
US6837422B1 (en) 2000-09-01 2005-01-04 Heimann Systems Gmbh Service unit for an X-ray examining device
US7000827B2 (en) 2000-09-01 2006-02-21 Heimann Systems Gmbh Operator unit for an X-ray examining apparatus
WO2002037428A1 (en) * 2000-11-03 2002-05-10 Interbiometrics Zugangssysteme Gmbh Device for the control of functions by means of biometric data
US8103881B2 (en) 2000-11-06 2012-01-24 Innovation Connection Corporation System, method and apparatus for electronic ticketing
WO2002044873A2 (en) * 2000-11-30 2002-06-06 Palm, Inc. Computer related access control
WO2002044873A3 (en) * 2000-11-30 2003-01-30 Palm Inc Computer related access control
US8225381B2 (en) 2000-11-30 2012-07-17 Access Co., Ltd. Security technique for controlling access to a network by a wireless device
US7512806B2 (en) * 2000-11-30 2009-03-31 Palmsource, Inc. Security technique for controlling access to a network by a wireless device
US7774613B2 (en) 2000-11-30 2010-08-10 Palmsource Inc. Security technique for controlling access to a network by a wireless device
US7068145B2 (en) 2001-01-30 2006-06-27 Bsh Bosch Und Siemens Hausgeraete Gmbh Method and device for controlling household appliances
WO2002061693A3 (en) * 2001-01-30 2002-10-17 Bsh Bosch Siemens Hausgeraete Method and device for controlling domestic appliances
US9219708B2 (en) 2001-03-22 2015-12-22 DialwareInc. Method and system for remotely authenticating identification devices
US6778688B2 (en) 2001-05-04 2004-08-17 International Business Machines Corporation Remote authentication of fingerprints over an insecure network
WO2002097717A2 (en) * 2001-05-30 2002-12-05 Hewlett-Packard Company Face and environment sensing watch
WO2002097717A3 (en) * 2001-05-30 2003-02-13 Hewlett Packard Co Face and environment sensing watch
US6937135B2 (en) 2001-05-30 2005-08-30 Hewlett-Packard Development Company, L.P. Face and environment sensing watch
WO2003021523A1 (en) * 2001-08-28 2003-03-13 Hewlett-Packard Company User- wearable wireless transaction device with biometrical user validation
WO2003029942A2 (en) * 2001-10-01 2003-04-10 Chameleon Network, Inc. Portable electronic authorization device and associated method
WO2003029942A3 (en) * 2001-10-01 2004-02-26 Chameleon Network Inc Portable electronic authorization device and associated method
WO2003054814A2 (en) * 2001-12-05 2003-07-03 Hewlett-Packard Company Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use
WO2003054814A3 (en) * 2001-12-05 2004-03-11 Hewlett Packard Co Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use
US7474592B2 (en) 2001-12-05 2009-01-06 Hewlett-Packard Development Company, L.P. Secure operation of a versatile device based on whether an authenticated user continues to wear the versatile device after initiating its use
US8073209B2 (en) 2002-01-17 2011-12-06 Cross Match Technologies, Inc Biometric imaging system and method
EP1485856A1 (en) * 2002-03-18 2004-12-15 Precision Dynamics Corporation Enhanced identification appliance
US7204425B2 (en) 2002-03-18 2007-04-17 Precision Dynamics Corporation Enhanced identification appliance
US7849619B2 (en) 2002-03-18 2010-12-14 Mosher Jr Walter W Enhanced identification appliance for verifying and authenticating the bearer through biometric data
EP1485856B1 (en) * 2002-03-18 2017-11-29 Callahan Cellular L.L.C. Enhanced identification appliance
US8082575B2 (en) 2002-03-28 2011-12-20 Rampart-Id Systems, Inc. System, method and apparatus for enabling transactions using a user enabled programmable magnetic stripe
US8015592B2 (en) 2002-03-28 2011-09-06 Innovation Connection Corporation System, method and apparatus for enabling transactions using a biometrically enabled programmable magnetic stripe
US7337326B2 (en) 2002-03-28 2008-02-26 Innovation Connection Corporation Apparatus and method for effecting secure physical and commercial transactions in a contactless manner using biometric identity validation
US9016584B2 (en) 2002-03-28 2015-04-28 Innovation Connection Corporation System, method and apparatus for enabling transactions using a biometrically enabled programmable magnetic stripe
EP1563421A4 (en) * 2002-07-09 2006-06-28 American Express Travel Relate System and method for incenting payment using radio frequency identification in contact and contactless transactions
EP1563421A2 (en) * 2002-07-09 2005-08-17 American Express Travel Related Services Company Inc. System and method for incenting payment using radio frequency identification in contact and contactless transactions
USH2120H1 (en) * 2002-10-10 2005-07-05 The United States Of America As Represented By The Secretary Of The Air Force Biometric personal identification credential system (PICS)
EP1408440A3 (en) * 2002-10-11 2005-04-13 NTT DoCoMo, Inc. Electromyographic user authentication apparatus, system and method
US7181763B2 (en) 2002-10-11 2007-02-20 Ntt Docomo, Inc. Authentication apparatus, authentication system, and authentication method
CN100360079C (en) * 2002-10-11 2008-01-09 株式会社Ntt都科摩 Identification device, identification system and identification method
EP1408440A2 (en) * 2002-10-11 2004-04-14 NTT DoCoMo, Inc. Electromyographic user authentication apparatus, system and method
WO2004090763A1 (en) * 2003-04-14 2004-10-21 Marcus Eckerl Apparatus for storing and transferring personal data
WO2004104899A2 (en) * 2003-05-21 2004-12-02 Koninklijke Philips Electronics N.V. Method and system for authentication of a physical object
WO2004104899A3 (en) * 2003-05-21 2005-01-27 Koninkl Philips Electronics Nv Method and system for authentication of a physical object
WO2005020503A1 (en) 2003-08-25 2005-03-03 Research In Motion Limited System and method for securing wireless data
US8205091B2 (en) 2003-08-25 2012-06-19 Research In Motion Limited System and method for securing wireless data
US8533452B2 (en) 2003-08-25 2013-09-10 Blackberry Limited System and method for securing wireless data
EP1665626A4 (en) * 2003-08-25 2010-03-24 Research In Motion Ltd System and method for securing wireless data
EP1665626A1 (en) * 2003-08-25 2006-06-07 Research In Motion Limited System and method for securing wireless data
US9123077B2 (en) 2003-10-07 2015-09-01 Hospira, Inc. Medication management system
US10434246B2 (en) 2003-10-07 2019-10-08 Icu Medical, Inc. Medication management system
US9572923B2 (en) 2003-11-13 2017-02-21 Hospira, Inc. System for maintaining drug information and communicating with medication delivery devices
US8380536B2 (en) 2003-11-13 2013-02-19 Hospira, Inc. System for maintaining drug information and communicating with medication delivery devices
US11235100B2 (en) 2003-11-13 2022-02-01 Icu Medical, Inc. System for maintaining drug information and communicating with medication delivery devices
WO2005057504A1 (en) * 2003-12-05 2005-06-23 Honeywell International Inc. Dual technology door entry person authentication
WO2007069935A1 (en) * 2005-12-15 2007-06-21 Evgeniy Aleksandrovich Grafeev Electronic system for managing a multi-address access
EP1901238A3 (en) * 2006-06-02 2011-10-12 Harris Corporation Authentication and access control device
EP1901238A2 (en) 2006-06-02 2008-03-19 Harris Corporation Authentication and access control device
WO2008026878A1 (en) * 2006-08-30 2008-03-06 Electronics And Telecommunications Research Institute Wearable computer system and method controlling information/service in wearable computer system
US11194810B2 (en) 2006-10-16 2021-12-07 Icu Medical, Inc. System and method for comparing and utilizing activity information and configuration information from multiple device management systems
US10242060B2 (en) 2006-10-16 2019-03-26 Icu Medical, Inc. System and method for comparing and utilizing activity information and configuration information from multiple medical device management systems
EP1914649A3 (en) * 2006-10-19 2012-12-12 STMicroelectronics, Inc Portable device for storing private information such as medical, financial or emergency information
WO2008111012A1 (en) * 2007-03-14 2008-09-18 Dexrad (Proprietary) Limited Personal identification device for secure transactions
EP2365477A1 (en) * 2007-03-14 2011-09-14 Dexrad (Proprietary) Limited Personal identification device for secure transactions
US10635784B2 (en) 2007-12-18 2020-04-28 Icu Medical, Inc. User interface improvements for medical devices
US11654237B2 (en) 2009-04-17 2023-05-23 Icu Medical, Inc. System and method for configuring a rule set for medical event management and responses
US11013861B2 (en) 2009-04-17 2021-05-25 Icu Medical, Inc. System and method for configuring a rule set for medical event management and responses
US10238801B2 (en) 2009-04-17 2019-03-26 Icu Medical, Inc. System and method for configuring a rule set for medical event management and responses
WO2012078061A1 (en) * 2010-12-06 2012-06-14 Yonos, Lda. Wireless biometric access control system and operation method thereof
US11599854B2 (en) 2011-08-19 2023-03-07 Icu Medical, Inc. Systems and methods for a graphical interface including a graphical representation of medical data
US10430761B2 (en) 2011-08-19 2019-10-01 Icu Medical, Inc. Systems and methods for a graphical interface including a graphical representation of medical data
US11004035B2 (en) 2011-08-19 2021-05-11 Icu Medical, Inc. Systems and methods for a graphical interface including a graphical representation of medical data
US11626205B2 (en) 2011-10-21 2023-04-11 Icu Medical, Inc. Medical device update system
US9971871B2 (en) 2011-10-21 2018-05-15 Icu Medical, Inc. Medical device update system
US10022498B2 (en) 2011-12-16 2018-07-17 Icu Medical, Inc. System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy
US11376361B2 (en) 2011-12-16 2022-07-05 Icu Medical, Inc. System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy
US9995611B2 (en) 2012-03-30 2018-06-12 Icu Medical, Inc. Air detection system and method for detecting air in a pump of an infusion system
US11933650B2 (en) 2012-03-30 2024-03-19 Icu Medical, Inc. Air detection system and method for detecting air in a pump of an infusion system
US10578474B2 (en) 2012-03-30 2020-03-03 Icu Medical, Inc. Air detection system and method for detecting air in a pump of an infusion system
EP2660749A1 (en) * 2012-05-03 2013-11-06 Siemens Aktiengesellschaft Operating device with authentication means
US11623042B2 (en) 2012-07-31 2023-04-11 Icu Medical, Inc. Patient care system for critical medications
US10463788B2 (en) 2012-07-31 2019-11-05 Icu Medical, Inc. Patient care system for critical medications
US10171458B2 (en) 2012-08-31 2019-01-01 Apple Inc. Wireless pairing and communication between devices using biometric data
US20160182507A1 (en) * 2012-08-31 2016-06-23 Apple Inc. Wireless Pairing and Communication Between Devices Using Biometric Data
WO2014035548A1 (en) * 2012-08-31 2014-03-06 Apple Inc. Wireless pairing and communication between devices using biometric data
TWI509420B (en) * 2012-08-31 2015-11-21 蘋果公司 Wireless pairing and communication between devices using biometric data
US10333843B2 (en) 2013-03-06 2019-06-25 Icu Medical, Inc. Medical device communication method
US11470000B2 (en) 2013-03-06 2022-10-11 Icu Medical, Inc. Medical device communication method
US10046112B2 (en) 2013-05-24 2018-08-14 Icu Medical, Inc. Multi-sensor infusion system for detecting air or an occlusion in the infusion system
US10874793B2 (en) 2013-05-24 2020-12-29 Icu Medical, Inc. Multi-sensor infusion system for detecting air or an occlusion in the infusion system
US11433177B2 (en) 2013-05-29 2022-09-06 Icu Medical, Inc. Infusion system which utilizes one or more sensors and additional information to make an air determination regarding the infusion system
US10596316B2 (en) 2013-05-29 2020-03-24 Icu Medical, Inc. Infusion system and method of use which prevents over-saturation of an analog-to-digital converter
US10166328B2 (en) 2013-05-29 2019-01-01 Icu Medical, Inc. Infusion system which utilizes one or more sensors and additional information to make an air determination regarding the infusion system
US11596737B2 (en) 2013-05-29 2023-03-07 Icu Medical, Inc. Infusion system and method of use which prevents over-saturation of an analog-to-digital converter
US11571508B2 (en) 2013-08-30 2023-02-07 Icu Medical, Inc. System and method of monitoring and managing a remote infusion regimen
US10765799B2 (en) 2013-09-20 2020-09-08 Icu Medical, Inc. Fail-safe drug infusion therapy system
US9852277B2 (en) 2013-10-31 2017-12-26 Samsung Electronics Co., Ltd. Method for performing authentication using biometrics information and portable electronic device supporting the same
EP2869528A1 (en) * 2013-10-31 2015-05-06 Samsung Electronics Co., Ltd Method for performing authentication using biometrics information and portable electronic device supporting the same
US11501877B2 (en) 2013-11-11 2022-11-15 Icu Medical, Inc. Medical device system performance index
US10311972B2 (en) 2013-11-11 2019-06-04 Icu Medical, Inc. Medical device system performance index
US11037668B2 (en) 2013-11-19 2021-06-15 Icu Medical, Inc. Infusion pump automation system and method
US11763927B2 (en) 2013-11-19 2023-09-19 Icu Medical, Inc. Infusion pump automation system and method
US10042986B2 (en) 2013-11-19 2018-08-07 Icu Medical, Inc. Infusion pump automation system and method
US10342917B2 (en) 2014-02-28 2019-07-09 Icu Medical, Inc. Infusion system and method which utilizes dual wavelength optical air-in-line detection
US10898641B2 (en) 2014-04-30 2021-01-26 Icu Medical, Inc. Patient care system with conditional alarm forwarding
US11628246B2 (en) 2014-04-30 2023-04-18 Icu Medical, Inc. Patient care system with conditional alarm forwarding
US11344673B2 (en) 2014-05-29 2022-05-31 Icu Medical, Inc. Infusion system and pump with configurable closed loop delivery rate catch-up
US11628254B2 (en) 2014-06-16 2023-04-18 Icu Medical, Inc. System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy
US10314974B2 (en) 2014-06-16 2019-06-11 Icu Medical, Inc. System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy
US10646651B2 (en) 2014-06-16 2020-05-12 Icu Medical, Inc. System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy
US11289183B2 (en) 2014-09-15 2022-03-29 Icu Medical, Inc. Matching delayed infusion auto-programs with manually entered infusion programs
US11574721B2 (en) 2014-09-15 2023-02-07 Icu Medical, Inc. Matching delayed infusion auto-programs with manually entered infusion programs
US10238799B2 (en) 2014-09-15 2019-03-26 Icu Medical, Inc. Matching delayed infusion auto-programs with manually entered infusion programs
US10799632B2 (en) 2014-09-15 2020-10-13 Icu Medical, Inc. Matching delayed infusion auto-programs with manually entered infusion programs
US11012438B2 (en) 2014-09-30 2021-05-18 Apple Inc. Biometric device pairing
US11344668B2 (en) 2014-12-19 2022-05-31 Icu Medical, Inc. Infusion system with concurrent TPN/insulin infusion
US10850024B2 (en) 2015-03-02 2020-12-01 Icu Medical, Inc. Infusion system, device, and method having advanced infusion features
FR3034599A1 (en) * 2015-04-03 2016-10-07 Oberthur Technologies METHOD FOR SECURELY CONTROLLING A MOBILE TELEPHONE BY A DOOR ELECTRONIC DEVICE AND ELECTRONIC DEVICE ADAPTED TO BEING THE DOOR THEREFOR
US11605468B2 (en) 2015-05-26 2023-03-14 Icu Medical, Inc. Infusion pump system and method with multiple drug library editor source capability
US11246985B2 (en) 2016-05-13 2022-02-15 Icu Medical, Inc. Infusion pump system and method with common line auto flush
US11324888B2 (en) 2016-06-10 2022-05-10 Icu Medical, Inc. Acoustic flow sensor for continuous medication flow measurements and feedback control of infusion
US11574737B2 (en) 2016-07-14 2023-02-07 Icu Medical, Inc. Multi-communication path selection and security system for a medical device
US11868161B2 (en) 2017-12-27 2024-01-09 Icu Medical, Inc. Synchronized display of screen content on networked devices
US10656894B2 (en) 2017-12-27 2020-05-19 Icu Medical, Inc. Synchronized display of screen content on networked devices
US11029911B2 (en) 2017-12-27 2021-06-08 Icu Medical, Inc. Synchronized display of screen content on networked devices
US11139058B2 (en) 2018-07-17 2021-10-05 Icu Medical, Inc. Reducing file transfer between cloud environment and infusion pumps
US11152109B2 (en) 2018-07-17 2021-10-19 Icu Medical, Inc. Detecting missing messages from clinical environment
US11483402B2 (en) 2018-07-17 2022-10-25 Icu Medical, Inc. Maintaining clinical messaging during an internet outage
US10861592B2 (en) 2018-07-17 2020-12-08 Icu Medical, Inc. Reducing infusion pump network congestion by staggering updates
US11373753B2 (en) 2018-07-17 2022-06-28 Icu Medical, Inc. Converting pump messages in new pump protocol to standardized dataset messages
US11328804B2 (en) 2018-07-17 2022-05-10 Icu Medical, Inc. Health checks for infusion pump communications systems
US11328805B2 (en) 2018-07-17 2022-05-10 Icu Medical, Inc. Reducing infusion pump network congestion by staggering updates
US11587669B2 (en) 2018-07-17 2023-02-21 Icu Medical, Inc. Passing authentication token to authorize access to rest calls via web sockets
US11594326B2 (en) 2018-07-17 2023-02-28 Icu Medical, Inc. Detecting missing messages from clinical environment
US11923076B2 (en) 2018-07-17 2024-03-05 Icu Medical, Inc. Converting pump messages in new pump protocol to standardized dataset messages
US11881297B2 (en) 2018-07-17 2024-01-23 Icu Medical, Inc. Reducing infusion pump network congestion by staggering updates
US11152108B2 (en) 2018-07-17 2021-10-19 Icu Medical, Inc. Passing authentication token to authorize access to rest calls via web sockets
US11152110B2 (en) 2018-07-17 2021-10-19 Icu Medical, Inc. Tagging pump messages with identifiers that facilitate restructuring
US11483403B2 (en) 2018-07-17 2022-10-25 Icu Medical, Inc. Maintaining clinical messaging during network instability
US10741280B2 (en) 2018-07-17 2020-08-11 Icu Medical, Inc. Tagging pump messages with identifiers that facilitate restructuring
US11783935B2 (en) 2018-07-17 2023-10-10 Icu Medical, Inc. Health checks for infusion pump communications systems
US10964428B2 (en) 2018-07-17 2021-03-30 Icu Medical, Inc. Merging messages into cache and generating user interface using the cache
US11670416B2 (en) 2018-07-17 2023-06-06 Icu Medical, Inc. Tagging pump messages with identifiers that facilitate restructuring
US10950339B2 (en) 2018-07-17 2021-03-16 Icu Medical, Inc. Converting pump messages in new pump protocol to standardized dataset messages
US10692595B2 (en) 2018-07-26 2020-06-23 Icu Medical, Inc. Drug library dynamic version management
US11309070B2 (en) 2018-07-26 2022-04-19 Icu Medical, Inc. Drug library manager with customized worksheets
US11437132B2 (en) 2018-07-26 2022-09-06 Icu Medical, Inc. Drug library dynamic version management
US11278671B2 (en) 2019-12-04 2022-03-22 Icu Medical, Inc. Infusion pump with safety sequence keypad
US11883361B2 (en) 2020-07-21 2024-01-30 Icu Medical, Inc. Fluid transfer devices and methods of use
US11135360B1 (en) 2020-12-07 2021-10-05 Icu Medical, Inc. Concurrent infusion with common line auto flush

Also Published As

Publication number Publication date
CA2233942A1 (en) 1998-03-26
AU4196497A (en) 1998-04-14

Similar Documents

Publication Publication Date Title
WO1998012670A1 (en) Biometric identification system for providing secure access
US7111174B2 (en) Method and system for providing access to secure entity or service by a subset of N persons of M designated persons
US7278025B2 (en) Secure biometric verification of identity
US6484260B1 (en) Personal identification system
US6914517B2 (en) Fingerprint sensor with feature authentication
US6848052B2 (en) High security personalized wireless portable biometric device
AU736113B2 (en) Personal identification authenticating with fingerprint identification
US7774613B2 (en) Security technique for controlling access to a network by a wireless device
US8000506B2 (en) Fingerprint detecting wireless device
US7796013B2 (en) Device using histological and physiological biometric marker for authentication and activation
US20030131247A1 (en) System and method that provides access control to entertainment media using a personal identification device
ZA200502663B (en) Secure biometric verification of identity
CA2105404A1 (en) Biometric token for authorizing access to a host system
WO1999056429A1 (en) Personal identification system and method
US7200755B2 (en) Method and system for providing gated access for a third party to a secure entity or service
US6973565B2 (en) Biometrically secured memory IC
JP2002099515A (en) Fingerprint authentication system and fingerprint authentication device
US20040228507A1 (en) Authentication system
JP2002304230A (en) Person authentication system, and input device
KR20020060875A (en) Electronic seal for user authentication in service systems for closed customers

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV GH

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GH KE LS MW SD SZ UG ZW AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL

ENP Entry into the national phase

Ref document number: 2233942

Country of ref document: CA

Kind code of ref document: A

Ref document number: 2233942

Country of ref document: CA

121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

NENP Non-entry into the national phase

Ref document number: 1998514091

Country of ref document: JP

122 Ep: pct application non-entry in european phase