EP1116191A1 - Method and device for verifying the authorization to log onto a system - Google Patents
Method and device for verifying the authorization to log onto a systemInfo
- Publication number
- EP1116191A1 EP1116191A1 EP99969520A EP99969520A EP1116191A1 EP 1116191 A1 EP1116191 A1 EP 1116191A1 EP 99969520 A EP99969520 A EP 99969520A EP 99969520 A EP99969520 A EP 99969520A EP 1116191 A1 EP1116191 A1 EP 1116191A1
- Authority
- EP
- European Patent Office
- Prior art keywords
- code
- stored
- access authorization
- unit
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/30—Individual registration on entry or exit not involving the use of a pass
- G07C9/32—Individual registration on entry or exit not involving the use of a pass in combination with an identity check
- G07C9/37—Individual registration on entry or exit not involving the use of a pass in combination with an identity check using biometric data, e.g. fingerprints, iris scans or voice recognition
Definitions
- the present invention relates to a method and a device for checking access authorization to a system.
- Such a system can be a cell phone, for example.
- PIN code access authorization
- the user To be able to make calls, the user must enter a specific PIN code that is only known to him. The mobile phone checks this PIN code and, if the check is positive, releases the mobile phone for making calls.
- biometric identification methods have recently been developed in which biological features of a user are used for authentication. Such a biometric identification is not a simple, but comfortable and often very secure method of ensuring the assignment and access of a certain person to a service, thing or place.
- the advantage of biometric identification compared to the PIN code is that it cannot be forgotten and that the biometric feature or features can only be copied with great effort or not at all. Because while the PIN code is pure software, there is always a more or less unambiguous assignment to the hardware, ie to the body of the authorized user, for biometric features.
- the PIN code Since the PIN code is connected to a number or text entry, which usually requires a series of key presses, this always leads to a loss of comfort and thus, under certain circumstances, to circumventing the security measures. For example, with some cellular services, the user may have the PIN code on switch off at your own risk. All mobile services ver ⁇ do without for a confirmation ⁇ edes single telephone call by the PIN code. This leads to a mobile phone being switched on by any third party and thus also by unauthorized persons at the expense of the owner of the
- Mobile phones can be used. Modern mobile phones ver ⁇ looking more and more to restrict the numbers entering phone numbers in case of emergency. One is even endeavoring to do without a keyboard for some applications in mobile telephones. In this case, a distinctive biometric identification, if it can be done with little effort, is very advantageous.
- biometric identification is, for example, computers that communicate with external services via a network, such as the Internet. With such communication, for example with financial institutions, secure authentication is also required. So far, PIN codes have also been used here.
- This object is achieved according to the invention by a method with the features of claim 1 or by a device with the features of claim 9.
- the inventive method is marked in for checking an access authorization to a system characterized ⁇ characterized in that the system is a modified code which is different from the data stored in an inaccessible for the user part of the system access authorization code stored in advance, the biological characteristics of detects a user and are compared with data stored in the system characteristics and that at a match of the features from the modified code using a rake ⁇ prescribed code calculated, transmitted to the insufficient is accessible to the user part of the system and checked there by means of the stored access authorization code becomes.
- the inventive apparatus for testing asagensbe ⁇ emption to a system specifically comprises a first storage unit in which an access authorization code is stored and which is not accessible to users, a second memory unit in which a modified code which is different from the access authorization code, and biological features are stored, an input unit for entering and recording biological features of a
- a first comparator unit which is connected to the input unit and the second storage unit, for comparing the detected biological features with the stored biological features and for outputting an access authorization signal, if the biological features detected by the input unit with the biological stored in the second storage unit Features match
- a computing unit which is connected to the first comparator unit, the second storage unit and a second storage unit, for calculating a code from the modified code by means of a calculation rule depending on the receipt of the access authorization signal from the firstticianeremheit and for transmitting the calculated code to the secondwherein the second Ver ⁇ gleicheremheit is connected to the first storage unit and the calculated and transmitted from the computing unit code with the m of the first storage unit stored access authorization code and compares humor at a Convention ⁇ Access authorization granted for the device.
- Identification is made possible in connection with a system which uses conventional access authorization codes stored in a part of the system which is inaccessible to users.
- the invention can thus be applied particularly easily to already existing systems without changing standards.
- the code is calculated using the calculation rule as a function of the modified code and at least some of the biological characteristics.
- the system is a mobile telephone with a SIM card, the access authorization code advantageously being stored in encrypted form on the SIM card and the biological features to be tested and the modified code being stored in a read-only memory of the mobile telephone.
- system comprises a computer and an external unit, which via a
- the Interface communicate with each other, whereby theintersbe ⁇ emption of a user who applies over the computer to access the external unit is checked.
- the first memory to which the access authorization code is stored, can be provided in the external unit, which is not accessible to the user.
- the second memory which contains the biological features to be tested and the modified code, can be the read-only memory of the computer itself. In this case, too, the conventional check of the access authorization via PIN codes does not have to be changed, although the authentication of the user takes place via biological features.
- the biological features can be obtained from the fingerprint or from the iris of a user's eye.
- FIG. 1 shows a schematic image of an exemplary embodiment of the invention
- FIG. 2 shows a flow chart to explain an exemplary embodiment of the invention.
- the device is divided into two parts.
- E first part 8 is inaccessible or very difficult to access for a user.
- this part can be the SIM card of a mobile phone or the central computer of a bank.
- the second part 7 of the device is more easily accessible to a user.
- this part is a cell phone or computer that communicates with external services over the Internet.
- the second part 7 has an emission unit 1, via which biological characteristics can be recorded and implemented in such a way that they can be compared with stored characteristics.
- the emission unit 1 is a fingerprint detector or a detector for the iris of an eye.
- part 7 has a storage unit 2, in which the biological features, which are detected by the emitting unit 1, are stored as data when the device is initialized. Furthermore, when the device is initialized, modified code m is stored in the storage unit 2 or in a storage unit provided separately from this storage unit 2.
- a comparator unit 3 is connected both to the transmitter unit 1 and to the storage unit 2.
- the acquired biological features are transmitted from the receiving unit 1 to the comparing unit 3 and compared there with the stored features which the comparing unit 3 receives from the storage unit 2. If this comparison is positive, i. H. if the detected biological features match the stored features, the storage unit 3 transmits an e signal to a computing unit 4.
- the computing unit 4 calculates a code to be transmitted to the part 8, which is inaccessible to the user, from the modified code stored in the storage unit 2 and preferably at least some biological features which have been detected by the receiving unit.
- the devices 1 to 4 of the device according to the invention thus replace the direct input of, for example, a PIN code via an emit unit. For this reason, the following means of the device, that can insbeson ⁇ particular, the devices which n chen the user unzugängli ⁇ part 8 of the device are provided, remain unaltered as compared to conventional devices. This signified tet ⁇ that one set for this part 8 standard must not be changed.
- the computing unit 4 transmits the code calculated by it to a second comparing unit 5, which compares the calculated code with the access authorization code stored in the storage unit 6.
- this access authorization code can be the PIN number that is stored on the SIM card. If the comparison unit 5 determines a correspondence between the calculated code and the access authorization code stored in the storage unit 6, the comparison unit 5 outputs an access authorization signal via line 9. This access authorization signal informs the system that contains the device according to the invention that the user who has been measured biometrically via the emission unit is authorized
- step 10 the access authorization code is stored in a part of the system which is inaccessible or difficult to access for users. Furthermore, in another part of the system, which is more easily accessible for users, modified code is stored in step 11 and biological features in step 12. Steps 10 through 12 are performed during initialization.
- the access authorization of a user to a system is to be checked.
- biological characteristics of the user are recorded in step 13.
- step 14 the detected biological features are compared with the biological features previously saved in step 12. The comparison falls negative, ie, that there is provided ⁇ determined that the detected biological characteristics do not match the stored features, the method proceeds to step 13 returns, and an access permission is not granted.
- step 14 If the comparison in step 14 is positive, i. H. if the detected biological features match the previously stored biological features, a code is used to calculate a code from the modified code stored in step 11.
- the code is preferably calculated as a function of the stored modified code and the acquired biological characteristics of a user.
- This calculated code is then transmitted in step 16 to the part of the system which is inaccessible to users. There, this calculated code is then checked in a conventional manner in step 17 and then the access authorization is given in step 18.
Abstract
Description
Claims
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
DE19843440 | 1998-09-22 | ||
DE19843440 | 1998-09-22 | ||
PCT/DE1999/002828 WO2000017823A1 (en) | 1998-09-22 | 1999-09-06 | Method and device for verifying the authorization to log onto a system |
Publications (2)
Publication Number | Publication Date |
---|---|
EP1116191A1 true EP1116191A1 (en) | 2001-07-18 |
EP1116191B1 EP1116191B1 (en) | 2002-08-14 |
Family
ID=7881843
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EP99969520A Expired - Lifetime EP1116191B1 (en) | 1998-09-22 | 1999-09-06 | Method and device for verifying the authorization to log onto a system |
Country Status (5)
Country | Link |
---|---|
US (1) | US20010047479A1 (en) |
EP (1) | EP1116191B1 (en) |
CN (1) | CN1319217A (en) |
DE (1) | DE59902367D1 (en) |
WO (1) | WO2000017823A1 (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2013045506A1 (en) | 2011-09-27 | 2013-04-04 | Novo Nordisk A/S | Medical system configured to collect and transfer data |
Families Citing this family (33)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7751600B2 (en) | 2000-04-18 | 2010-07-06 | Semiconductor Energy Laboratory Co., Ltd. | System and method for identifying an individual |
DE60117197T2 (en) * | 2000-04-26 | 2006-07-27 | Semiconductor Energy Laboratory Co., Ltd., Atsugi | Communication system and method for identifying a person by means of biological information |
KR100771258B1 (en) | 2000-05-09 | 2007-10-29 | 가부시키가이샤 한도오따이 에네루기 켄큐쇼 | User identity authentication system and user identity authentication method and mobile telephonic device |
US20020049714A1 (en) * | 2000-05-11 | 2002-04-25 | Shunpei Yamazaki | Communication system |
WO2002005077A2 (en) * | 2000-07-07 | 2002-01-17 | Mink & Associates Inc. | Method and system for using biometric sample to electronically access accounts and authorize transactions |
US20030191703A1 (en) * | 2002-02-01 | 2003-10-09 | Ubs Painewebber Inc. | Method and system for providing interested party access to aggregated accounts information |
CZ2005209A3 (en) * | 2002-09-10 | 2005-12-14 | Ivi Smart Technologies, Inc. | Safe biometric verification of identity |
US8442276B2 (en) | 2006-03-03 | 2013-05-14 | Honeywell International Inc. | Invariant radial iris segmentation |
US8064647B2 (en) | 2006-03-03 | 2011-11-22 | Honeywell International Inc. | System for iris detection tracking and recognition at a distance |
US8098901B2 (en) | 2005-01-26 | 2012-01-17 | Honeywell International Inc. | Standoff iris recognition system |
US8705808B2 (en) | 2003-09-05 | 2014-04-22 | Honeywell International Inc. | Combined face and iris recognition system |
US7593550B2 (en) | 2005-01-26 | 2009-09-22 | Honeywell International Inc. | Distance iris recognition |
US8090157B2 (en) | 2005-01-26 | 2012-01-03 | Honeywell International Inc. | Approaches and apparatus for eye detection in a digital image |
US8050463B2 (en) | 2005-01-26 | 2011-11-01 | Honeywell International Inc. | Iris recognition system having image quality metrics |
US8918900B2 (en) * | 2004-04-26 | 2014-12-23 | Ivi Holdings Ltd. | Smart card for passport, electronic passport, and method, system, and apparatus for authenticating person holding smart card or electronic passport |
CN100428108C (en) * | 2005-09-30 | 2008-10-22 | 联想(北京)有限公司 | Data encryption storage method |
JP2009529197A (en) | 2006-03-03 | 2009-08-13 | ハネウェル・インターナショナル・インコーポレーテッド | Module biometrics collection system architecture |
WO2007101275A1 (en) | 2006-03-03 | 2007-09-07 | Honeywell International, Inc. | Camera with auto-focus capability |
EP1991947B1 (en) | 2006-03-03 | 2020-04-29 | Gentex Corporation | Indexing and database search system |
GB2450023B (en) | 2006-03-03 | 2011-06-08 | Honeywell Int Inc | An iris image encoding method |
GB2448653B (en) | 2006-03-03 | 2011-03-23 | Honeywell Int Inc | Single lens splitter camera |
US20100131414A1 (en) * | 2007-03-14 | 2010-05-27 | Gavin Randall Tame | Personal identification device for secure transactions |
US8063889B2 (en) | 2007-04-25 | 2011-11-22 | Honeywell International Inc. | Biometric data collection system |
US8436907B2 (en) | 2008-05-09 | 2013-05-07 | Honeywell International Inc. | Heterogeneous video capturing system |
US8213782B2 (en) | 2008-08-07 | 2012-07-03 | Honeywell International Inc. | Predictive autofocusing system |
US8090246B2 (en) | 2008-08-08 | 2012-01-03 | Honeywell International Inc. | Image acquisition system |
US8280119B2 (en) | 2008-12-05 | 2012-10-02 | Honeywell International Inc. | Iris recognition system using quality metrics |
US8406428B2 (en) * | 2008-12-11 | 2013-03-26 | International Business Machines Corporation | Secure method and apparatus to verify personal identity over a network |
US8043459B2 (en) * | 2009-02-24 | 2011-10-25 | GM Global Technology Operations LLC | Reversible dry adhesives for wet and dry conditions |
US8630464B2 (en) | 2009-06-15 | 2014-01-14 | Honeywell International Inc. | Adaptive iris matching using database indexing |
US8472681B2 (en) | 2009-06-15 | 2013-06-25 | Honeywell International Inc. | Iris and ocular recognition system using trace transforms |
US8742887B2 (en) | 2010-09-03 | 2014-06-03 | Honeywell International Inc. | Biometric visitor check system |
US8744974B2 (en) | 2011-03-12 | 2014-06-03 | Mocapay, Inc. | Systems and methods for secure wireless payment transactions when a wireless network is unavailable |
Family Cites Families (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP0444396B2 (en) * | 1990-01-30 | 2000-11-02 | AMPHENOL-TUCHEL ELECTRONICS GmbH | Connection device for a Si-module |
US5712912A (en) * | 1995-07-28 | 1998-01-27 | Mytec Technologies Inc. | Method and apparatus for securely handling a personal identification number or cryptographic key using biometric techniques |
US5613012A (en) * | 1994-11-28 | 1997-03-18 | Smarttouch, Llc. | Tokenless identification system for authorization of electronic transactions and electronic transmissions |
CA2156236C (en) * | 1995-08-16 | 1999-07-20 | Stephen J. Borza | Biometrically secured control system for preventing the unauthorized use of a vehicle |
WO1998011750A2 (en) * | 1996-09-11 | 1998-03-19 | Yang Li | Method of using fingerprints to authenticate wireless communications |
US6219793B1 (en) * | 1996-09-11 | 2001-04-17 | Hush, Inc. | Method of using fingerprints to authenticate wireless communications |
US6148094A (en) * | 1996-09-30 | 2000-11-14 | David J. Kinsella | Pointing device with biometric sensor |
EP0863491A1 (en) * | 1997-03-03 | 1998-09-09 | BRITISH TELECOMMUNICATIONS public limited company | Security check provision |
-
1999
- 1999-09-06 WO PCT/DE1999/002828 patent/WO2000017823A1/en active IP Right Grant
- 1999-09-06 DE DE59902367T patent/DE59902367D1/en not_active Expired - Lifetime
- 1999-09-06 CN CN99811220A patent/CN1319217A/en active Pending
- 1999-09-06 EP EP99969520A patent/EP1116191B1/en not_active Expired - Lifetime
-
2001
- 2001-03-22 US US09/815,200 patent/US20010047479A1/en not_active Abandoned
Non-Patent Citations (1)
Title |
---|
See references of WO0017823A1 * |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2013045506A1 (en) | 2011-09-27 | 2013-04-04 | Novo Nordisk A/S | Medical system configured to collect and transfer data |
Also Published As
Publication number | Publication date |
---|---|
WO2000017823A1 (en) | 2000-03-30 |
EP1116191B1 (en) | 2002-08-14 |
US20010047479A1 (en) | 2001-11-29 |
DE59902367D1 (en) | 2002-09-19 |
CN1319217A (en) | 2001-10-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP1116191B1 (en) | Method and device for verifying the authorization to log onto a system | |
EP1121668B1 (en) | Device and method for identifying a person by biometric characteristics | |
DE69839274T2 (en) | SYSTEM AND METHOD FOR PROTECTING LANGUAGE TRANSACTIONS | |
DE19722424C5 (en) | Method of securing access to a remote system | |
EP1264490B1 (en) | Method for establishing the authenticity of the identity of a service user and device for carrying out the method | |
EP0950229B1 (en) | Method, system and devices for authenticating persons | |
EP1188151B1 (en) | Devices and methods for biometric authentication | |
DE4406602C2 (en) | Security system for identifying and authenticating communication partners | |
EP1424659A1 (en) | Electronic device and method for authentication of a user of said device | |
EP1749395B1 (en) | Method for authorizing a telephone transaction and switching node | |
DE102005003208B4 (en) | Authentication of a user | |
EP1060607A1 (en) | Method and device for universal access to telephone networks | |
DE60023978T2 (en) | Method and system in a telephone switching system | |
EP1081911B1 (en) | Method and apparatus for authenticating multiple services | |
EP1887503A1 (en) | Method and system for performing a payment process with a means of payment | |
EP1935202A1 (en) | Unblocking of mobile telephone cards | |
DE19542732B4 (en) | Procedure for detecting the misuse of an access authorization | |
EP0886246B1 (en) | Method for operating a system using a multifunction smart card with voice print | |
DE10204436B4 (en) | Continuous speaker verification using voice input | |
WO2005106617A1 (en) | Authentication process | |
EP3358488B1 (en) | Method for detecting unauthorised copies of a digital security token | |
DE102021005350A1 (en) | Authorize an application on a security element | |
DE10140544A1 (en) | Mobile telecommunications unit has security chip in removable battery | |
DE10310257A1 (en) | User access verification method e.g. for application server via data network, involves setting up communication link to voice communication terminal of user | |
EP1158492A1 (en) | User authentication for home banking system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PUAI | Public reference made under article 153(3) epc to a published international application that has entered the european phase |
Free format text: ORIGINAL CODE: 0009012 |
|
17P | Request for examination filed |
Effective date: 20010104 |
|
AK | Designated contracting states |
Kind code of ref document: A1 Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LI LU MC NL PT SE |
|
GRAG | Despatch of communication of intention to grant |
Free format text: ORIGINAL CODE: EPIDOS AGRA |
|
GRAG | Despatch of communication of intention to grant |
Free format text: ORIGINAL CODE: EPIDOS AGRA |
|
GRAH | Despatch of communication of intention to grant a patent |
Free format text: ORIGINAL CODE: EPIDOS IGRA |
|
17Q | First examination report despatched |
Effective date: 20020204 |
|
GRAH | Despatch of communication of intention to grant a patent |
Free format text: ORIGINAL CODE: EPIDOS IGRA |
|
GRAA | (expected) grant |
Free format text: ORIGINAL CODE: 0009210 |
|
AK | Designated contracting states |
Kind code of ref document: B1 Designated state(s): DE FR GB |
|
REG | Reference to a national code |
Ref country code: GB Ref legal event code: FG4D Free format text: NOT ENGLISH |
|
REF | Corresponds to: |
Ref document number: 59902367 Country of ref document: DE Date of ref document: 20020919 |
|
GBT | Gb: translation of ep patent filed (gb section 77(6)(a)/1977) |
Effective date: 20021028 |
|
ET | Fr: translation filed | ||
PLBE | No opposition filed within time limit |
Free format text: ORIGINAL CODE: 0009261 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: NO OPPOSITION FILED WITHIN TIME LIMIT |
|
26N | No opposition filed |
Effective date: 20030515 |
|
REG | Reference to a national code |
Ref country code: FR Ref legal event code: PLFP Year of fee payment: 18 |
|
REG | Reference to a national code |
Ref country code: FR Ref legal event code: PLFP Year of fee payment: 19 |
|
REG | Reference to a national code |
Ref country code: FR Ref legal event code: PLFP Year of fee payment: 20 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: FR Payment date: 20180924 Year of fee payment: 20 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: GB Payment date: 20180911 Year of fee payment: 20 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: DE Payment date: 20181119 Year of fee payment: 20 |
|
REG | Reference to a national code |
Ref country code: DE Ref legal event code: R071 Ref document number: 59902367 Country of ref document: DE |
|
REG | Reference to a national code |
Ref country code: GB Ref legal event code: PE20 Expiry date: 20190905 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: GB Free format text: LAPSE BECAUSE OF EXPIRATION OF PROTECTION Effective date: 20190905 |