GB2385695A - Customer authentication using body feature information - Google Patents

Customer authentication using body feature information Download PDF

Info

Publication number
GB2385695A
GB2385695A GB0308715A GB0308715A GB2385695A GB 2385695 A GB2385695 A GB 2385695A GB 0308715 A GB0308715 A GB 0308715A GB 0308715 A GB0308715 A GB 0308715A GB 2385695 A GB2385695 A GB 2385695A
Authority
GB
United Kingdom
Prior art keywords
information
body feature
customer
generate
encrypted information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
GB0308715A
Other versions
GB0308715D0 (en
GB2385695B (en
Inventor
Toshikazu Miyashita
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
NEC Corp
Original Assignee
NEC Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from JP2001210024A external-priority patent/JP4665352B2/en
Application filed by NEC Corp filed Critical NEC Corp
Publication of GB0308715D0 publication Critical patent/GB0308715D0/en
Publication of GB2385695A publication Critical patent/GB2385695A/en
Application granted granted Critical
Publication of GB2385695B publication Critical patent/GB2385695B/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/30Individual registration on entry or exit not involving the use of a pass
    • G07C9/32Individual registration on entry or exit not involving the use of a pass in combination with an identity check
    • G07C9/37Individual registration on entry or exit not involving the use of a pass in combination with an identity check using biometric data, e.g. fingerprints, iris scans or voice recognition
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload

Abstract

A customer authentication system for use, e.g., after a customer makes a reservation for a ticket and is later authenticated when the ticket is handed to the customer. At a portable terminal (e.g. portable telephone or PDA) (20, Fig. 3), a body feature of the customer such as a fingerprint is read and quantized to generate body feature information, and reservation information is input. The body feature information is encrypted, and then transmitted (e.g. via radio and Internet links) to a customer authentication device (40A, Fig. 3) at the ticket reservation centre, which stores the encrypted information. The body feature is then also read at the authentication device. The previously stored encrypted information is decrypted and compared with this new body feature information to authenticate the customer.

Description

<Desc/Clms Page number 1>
CUSTOMER AUTHENTICATION SYSTEM, CUSTOMER AUTHENTICATION METHOD, AND CONTROL PROGRAM FOR CARRYING OUT SAID METHOD FIELD OF THE INVENTION The invention relates to an authentication system, such as a customer authentication system, an authentication method, and a control program for carrying out said method and more particularly to a customer authentication system, a customer authentication method, and a control program for carrying out said method, which are suitable for use in the case, for example, where, after a customer makes a reservation for a ticket through a portable terminal, the customer is authenticated in a reservation center at the time of the handing of the ticket to the customer.
BACKGROUND OF THE INVENTION In companies who provide customers, for example, with a reservation reception service for tickets through portable terminals such as portable telephones (cellular phones), at the time of handing of a ticket to a customer, authentication is done, for example, relying upon the number of the credit card of the customer to identify whether or not the customer is the person himself or herself who has reserved the ticket.
According to this customer authentication method using the number of the credit card, a person responsible for the sale of tickets inputs the number of the credit card into the terminal to confirm whether or not this number is in agreement with the number which has been registered in the system on the company
<Desc/Clms Page number 2>
side. In a service which requires strict security, the authentication of the customer is in some cases carried out by the number of the credit card in combination with a password.
The above conventional customer authentication method, however, suffers from the following problems.
Specifically, in the authentication using the number of credit card, in some cases, the credit card is a forged or stolen credit card, and, thus, in this conventional customer authentication method, there is a limitation on the reliability of confirming whether or not the customer is the person himself or herself who has reserved the ticket. On the other hand, authentication using the password involves an operation, through which the customer himself or herself inputs the password, that is, is carried out based on the memory of the customer himself or herself. Due to this nature, in general, since the number of characters of the password set is small, the password is often decoded and misappropriated by others. Further, the authentication using the password has another problem that others use a plurality of passwords one of which is identical by chance to the password of the customer. Therefore, in some cases, a mistake occurs in the authentication of the customer, and this disadvantageously makes it impossible to realize a high level of security.
SUMMARY OF THE INVENTION Accordingly, it is an object of the invention to provide a customer authentication system, a customer authentication method, and a control program for carrying out the customer
<Desc/Clms Page number 3>
authentication method which have a high level of security.
In a first aspect, the present invention provides an authentication system, comprising: means for processing a body feature of a person to generate body feature information; encryption means for encrypting the body feature information to generate encrypted information; a portable terminal for storing the encrypted information; and an authentication device, comprising: first decryption means for receiving the encrypted information and decrypting the encrypted information to generate first decrypted information; second decryption means for reading the encrypted information stored in said portable terminal and decrypting the encrypted information to generate second decrypted information; and means for comparing the first decrypted information with the second decrypted information and indicating the result of the comparison.
According to a first preferred embodiment of the invention, a customer authentication system comprises: body feature information generation means for quantizing a body feature of a customer to generate body feature information; encrypted information generation means for encrypting the body feature information to generate encrypted information; a portable terminal for storing and maintaining the encrypted information; and a customer authentication device, wherein the customer
<Desc/Clms Page number 4>
authentication device comprises first decoding means for receiving the encrypted information from the portable terminal through a communication line and decoding the encrypted information to generate first decoded information and second decoding means for reading the encrypted information, displayed on a screen of the portable terminal, from the screen and decoding the encrypted information to generate second decoded information, and wherein the customer authentication device collates the first decoded information with the second decoded information and, when the collation result is that the first decoded information is in agreement with the second decoded information, the customer authentication device authenticates the customer as a genuine customer.
Also according to this first preferred embodiment, a customer authentication system comprises: body feature information generation means for quantizing a body feature of a customer to generate body feature information; a portable terminal; and a customer authentication device, wherein the portable terminal comprises encrypted information generation means for permitting the input of the body feature information and encrypting the body feature information to generate encrypted information, first storage means for storing the encrypted information, and display means for displaying the encrypted information on a screen, and wherein the customer authentication device comprises second storage means for receiving and storing the encrypted information through a communication line, reading means for reading an image of the encrypted information displayed on the display means in the
<Desc/Clms Page number 5>
portable terminal to generate read information, decoding means for decoding the encrypted information stored in the second storage means to generate first decoded information and, in addition, decoding the read information to generate second decoded information, and collation means which collates the first decoded information with the second decoded information and authenticates the customer as a genuine customer when the collation result is that the first decoded information is in agreement with the second decoded information.
In a second aspect the present invention provides an authentication system comprising: first processing means for processing a body feature of a person to generate first body feature information; encryption means for encrypting the first body feature information to generate encrypted information; second processing means for processing a body feature of the person to generate second body feature information; and an authentication device comprising: means for receiving the encrypted information from the encryption means and decrypting the encrypted information to generate decrypted information; and means for comparing the second body feature information with the decrypted information and indicating the result of the comparison.
According to a second preferred embodiment, a customer authentication system comprises: first body feature information generation means for quantizing a body feature of a customer to generate first body feature information; encrypted information
<Desc/Clms Page number 6>
generating means for encrypting the first body feature information to generate encrypted information ; second body feature information generation means for quantizing a body feature of the customer to generate second body feature information; and a customer authentication device, wherein the customer authentication device comprises decoding means for receiving the encrypted information from the encrypted information generation means through a communication line and decoding the encrypted information to generate decoded information and collates the second body feature information with the decoded information and authenticates the customer as a genuine customer when the collation result is that the second body feature information is in agreement with the decoded information.
Also according to this second preferred embodiment, a customer authentication system comprises: first body feature information generation means for quantizing a body feature of a customer to generate first body feature information; encrypted information generation means for permitting the input of the first body feature information and encrypting the first body feature information to generate encrypted information; second body feature information generation means for quantizing a body feature of the customer to generate second body feature information ; and a customer authentication device, wherein the customer authentication device comprises storage means for receiving the encrypted information through a communication line and storing the encrypted information, decoding means for decoding the encrypted information stored in the storage means
<Desc/Clms Page number 7>
to generate decoded information, and collation means which collates the second body feature information with the decoded information and authenticates the customer as a genuine customer when the collation result is that the second body feature information is in agreement with the decoded information.
The body feature of the customer may be a fingerprint pattern of any finger of the customer.
In a third aspect the present invention provides a method of authentication, comprising the steps of: processing a body feature of a person to generate body feature information; encrypting the body feature information to generate encrypted information; storing the encrypted information in a portable terminal; and at an authentication device, the steps of: receiving the encrypted information and decrypting the encrypted information to generate first decrypted information; reading the stored encrypted information and decrypting the encrypted information to generate second decrypted information; and comparing the first decrypted information with the second decrypted information and indicating the result of the comparison.
According to the first embodiment, a method for customer authentication comprises the steps of: providing a customer authentication system comprising body feature information generation means, encrypted information generation means, a
<Desc/Clms Page number 8>
portable terminal, and a customer authentication device; quantizing a body feature of a customer in the body feature information generation means to generate body feature information; encrypting the body feature information in the encrypted information generation means to generate encrypted information ; displaying the encrypted information in the portable terminal on a screen ; and receiving the encrypted information in the customer authentication device through a communication line, reading an image of the encrypted information displayed on the portable terminal to generate read information, decoding the read information to generate first decoded information, decoding the received encrypted information to generate second decoded information, collating the first decoded information with the second decoded information, and authenticating the customer as a genuine customer when the collation result is that the first decoded information is in agreement with the second decoded information.
Also according to the first embodiment, a method for customer authentication comprises the steps of: providing a customer authentication system comprising body feature information generation means, a portable terminal, and a customer authentication device ; inputting a body feature of a customer into the body feature information generation means where the body feature is quantized to generate body feature information (body feature information generation processing); inputting the body feature information into the portable terminal and encrypting the body feature information to generate encrypted information (encrypted information generation
<Desc/Clms Page number 9>
processing); storing the encrypted information in the portable terminal (first storage processing); displaying the encrypted information on a screen of the portable terminal (display processing) ; receiving and storing the encrypted information in the customer authentication device through a communication line (second storage processing); reading an image of the encrypted information, displayed on the display means in the portable terminal, by the customer authentication device to generate read information (reading processing) ; decoding the encrypted information stored in the second storage processing to generate first decoded information and, in addition, decoding the read information in the customer authentication device to generate second decoded information (decoding processing); and collating the first decoded information with the second decoded information in the customer authentication device, and authenticating the customer as a genuine customer when the collation result is that the first decoded information is in agreement with the second decoded information (collation processing).
In a fourth aspect the present invention provides a method of authentication comprising the steps of: processing a body feature of a person to generate first body feature information; encrypting the first body feature information to generate encrypted information; processing a body feature of the person to generate second body feature information ; and at an authentication device, the steps of:
<Desc/Clms Page number 10>
receiving the encrypted information and decrypting the encrypted information to generate decrypted information; and comparing the second body feature information with the decrypted information and indicating the result of the comparison.
According to the second embodiment, a method for customer authentication comprises the steps of: providing a customer authentication system comprising first body feature information generation means, encrypted information generation means, second body feature information generation means, and a customer authentication device; inputting a body feature of a customer into the first body feature information generation means where the body feature is quantized to generate first body feature information; inputting the first body feature information into the encrypted information generation means where the first body feature information is encrypted to generate encrypted information ; inputting a body feature of the customer into the second body feature information generation means where the body feature of the customer is quantized to generate second body feature information; and receiving the encrypted information in the customer authentication device through a communication line, decoding the received encrypted information to generate decoded information, collating the second body feature information with the decoded information, and authenticating the customer as a genuine customer when the collation result is that the second body feature information is in agreement with the decoded information.
According to the second embodiment, a method for customer
<Desc/Clms Page number 11>
authentication comprises the steps of: providing a customer authentication system comprising first body feature information generation means, encrypted information generation means, second body feature information generation means, and a customer authentication device; inputting a body feature of a customer into the first body feature information generation means where the body feature of the customer is quantized to generate first body feature information (first body feature information generation processing); inputting the first body feature information into the encrypted information generation means where the first body feature information is encrypted to generate encrypted information (encrypted information generation processing); inputting a body feature of the customer into the second body feature information generation means where the body feature of the customer is quantized to generate second body feature information (second body feature information generation processing) ; receiving the encrypted information in the customer authentication device through a communication line and storing the encrypted information in the customer authentication device (storage processing); decoding the encrypted information stored in the storage processing to generate decoded information (decoding processing); and collating the second body feature information with the decoded information and authenticating the customer as a genuine customer when the collation result is that the second body feature information is in agreement with the decoded information (collation processing).
The body feature of the customer may be a fingerprint pattern of any finger of the customer.
<Desc/Clms Page number 12>
The present invention also provides a control program for carrying out the method of authentication as aforementioned, preferably in a computer.
BRIEF DESCRIPTION OF THE DRAWINGS The invention will be explained in more detail in conjunction with the appended drawings, wherein: Fig. 1 is a block diagram showing a customer authentication system in a first preferred embodiment of the invention ; Fig. 2 is a flow chart illustrating the operation of the customer authentication system shown in Fig. 1; Fig. 3 is a block diagram showing a customer authentication system in a second preferred embodiment of the invention; and Fig. 4 is a flow chart illustrating the operation of the customer authentication system shown in Fig. 3.
DESCRIPTION OF THE PREFERRED EMBODIMENTS Preferred embodiment of the invention will be explained in conjunction with the accompanying drawings.
First preferred embodiment Fig. 1 is a block diagram showing a customer authentication system in the first preferred embodiment of the invention.
As shown in the drawing, the customer authentication system in this preferred embodiment comprises: a fingerprint input device, that is, body feature information generation means, 10; a portable telephone, that is, a portable terminal, 20; a base station 31 ; the Internet, that is, a communication line, NW ; and a customer authentication device 40. The fingerprint input
<Desc/Clms Page number 13>
device 10 permits the input of a body feature of a customer, for example, a fingerprint pattern and quantizes the body feature to generate body feature information, for example, fingerprint pattern data, A. The portable telephone 20 comprises: an input device 21; a control unit, that is, encrypted information preparation means, 22; a storage unit, that is, first storage means, 23; a display unit, that is, display means, 24; and a radio section 25.
The input device 21 comprises a plurality of key switches and the like, and reservation information B representing customer number and the contents of the reservation are input into the input device 21 based on the operation of the customer.
In the control unit 22, the fingerprint pattern data A is input and encrypted, and the reservation information B is embedded to prepare encrypted information C. In this case, in the encryption, for example, a preset standardized scramble is applied to the fingerprint pattern data A. The storage unit 23 comprises, for example, RAM (random access memory), and stores the encrypted information C. The display unit 24 comprises, for example, LCD (liquid crystal display), and displays the encrypted information C on a screen. The radio section 25 sends the encrypted information C to the base station 31.
The customer authentication device 40 is, for example, an information processing device provided, for example, in a ticket reservation center and comprises: a reception terminal 41; a reading device, that is, reading means, 42 and a display unit 43 which are included in the reception terminal 41; a host terminal 44 ; a storage unit, that is, second storage means, 45, a
<Desc/Clms Page number 14>
decoder, that is, first and second decoding means, 46 which are included in the host terminal 44; and a control unit, that is, collation means, 47. The reading device 42 comprises, for example, an image sensor, and reads an image of the encrypted information C displayed on the display unit 24 of the portable telephone 20 to generate read information D. The display unit 43 displays information for guidance of operation for the customer. The storage unit 45 comprises, for example, RAM, and receives and stores the encrypted information C through the base station 31 and the Internet NW. Further, the storage unit 45 has, recorded thereon, a control program for operating the control unit 47. The decoder 46 decodes the encrypted information C stored in the storage unit 45 to generate first decoded information and, in addition, decodes the read information D to generate second decoded information. This decoding is carried out according to standards corresponding to the standards for the encryption. The control unit 47 controls the whole customer authentication device 40 and collates the first decoded information with the second decoded information.
In this case, when the collation result is that the first decoded information is in agreement with the second decoded information, the customer is authenticated as the person which has reserved the ticket.
Fig. 2 is a flow chart illustrating the operation of the customer authentication system shown in Fig. 1.
The contents of processing in the method for customer authentication in this embodiment will be explained in conjunction with Fig. 2.
<Desc/Clms Page number 15>
Based on the operation of the customer, reservation information B representing the customer number and the contents of reservation is input through the input device 21 (step Al). A fingerprint pattern of the customer is input into the fingerprint input device 10 and is quantized to generate fingerprint pattern data A (step A2, processing for the generation of body feature information). The fingerprint pattern data A is input into the control unit 22 and is encrypted, and encrypted information C is generated in the control unit 22. The encrypted information C is passed through the radio section 25 and the base station 31 and is sent to the Internet NW (step A3 and step A4, processing for the generation of encrypted information). The encrypted information C is stored in the storage unit 23 (first storage processing) and, in addition, is displayed on the screen of the display unit 24 (step A5, display processing). On the other hand, the encrypted information C is received in the customer authentication device 40 through the Internet NW and is stored in the storage unit 45 (step A6, second storage processing).
When the customer goes to the reservation center and shows the portable telephone 20, the image of the encrypted information C displayed on the display unit 24 of the portable telephone 20 is read by the reading device 42 to generate read information D (step A7, reading processing) which is then transferred to the decoder 46 in the host terminal 44 (step A8).
In the decoder 46, the encrypted information C stored in the storage unit 45 is decoded according to the same standards to generate first decoded information, and the read information D
<Desc/Clms Page number 16>
is decoded according to standards corresponding to the standards for the encryption to generate second decoded information (step A9, decoding processing). The control unit 47 regards the first decoded information as a stored pattern and the second decoded information as an input pattern and collates the stored pattern with the input pattern. When the collation result is that the stored pattern is in agreement with the input pattern, the customer is authenticated as the person who has reserved the ticket and the ticket is issued to the customer (step A10, collation processing). On the other hand, when the collation result is that the stored pattern is not in agreement with the input pattern, the rejection of issue of the ticket is notified.
Thus, in this first preferred embodiment, the authentication of a customer is carried out using the encrypted information C produced by encrypting the fingerprint pattern data A of the customer. This can specify the customer and, at the same time, can prevent others from posing as the customer and thus can realize the construction of a customer authentication system with a high level of security.
Second preferred embodiment Fig. 3 is a block diagram of a customer authentication system in the second preferred embodiment of the invention. In Fig. 1 (first preferred embodiment) and Fig. 3 (second preferred embodiment), like parts are identified with the same reference characters.
In this customer authentication system, instead of the customer authentication device 40 shown in Fig. 1, a customer authentication device 40A, which is different from the customer
<Desc/Clms Page number 17>
authentication device 40 in function, is provided, and, in addition, a fingerprint input device, that is, second body feature information generation means, 50 is provided. In the customer authentication device 40A, instead of the host terminal 44 shown in Fig. 1, a host terminal 44A, which is different from the host terminal 44 in function, is provided. In the host terminal 44A, instead of the decoder 46 and the control unit 47 shown in Fig. 1, a decoder 46A and a control unit 47A, which are different from the decoder 46 and the control unit 47 in function, are provided. In the fingerprint input device 50, the body feature of the customer, for example, fingerprint pattern, is input and quantized to generate body feature information, for example, fingerprint pattern data, E. The decoder 46A decodes the encrypted information C stored in the storage unit 45 to generate decoded information. The control unit 47A collates the fingerprint pattern data E with the decoded information, and when the collation result is that the fingerprint pattern data E is in agreement with the decoded information, the customer is
authenticated as the person who has reserved the ticket. The other construction is the same as the construction shown in Fig.
1.
Fig. 4 is a flow chart illustrating the operation of the customer authentication system shown in Fig. 3.
The contents of processing in the method for customer authentication in this embodiment will be explained in conjunction with Fig. 4.
Based on the operation of the customer, reservation information B representing the customer number and the contents
<Desc/Clms Page number 18>
of reservation is input through the input device 21 (step Bl).
A fingerprint pattern of the customer is input into the fingerprint input device 10 and is quantized to generate fingerprint pattern data A (step B2, processing for the generation of first body feature information). The fingerprint pattern data A is input into the control unit 22 and is encrypted, and encrypted information C is generated in the control unit 22. The encrypted information C is passed through the radio section 25 and the base station 31 and is sent to the Internet NW (step B3 and step B4, processing for the generation of encrypted information). On the other hand, the encrypted information C is received in the customer authentication device 40A through the Internet NW and is stored in the storage unit 45 (step B5, storage processing).
When the customer goes to the reservation center, in the fingerprint input device 50, the fingerprint pattern of the customer is input and quantized to generate fingerprint pattern data E (step B6, processing for the generation of second body feature information) which is then transferred to the decoder 46A in the host terminal 44A (step B7). In the decoder 46A, the encrypted information C stored in the storage unit 45 is decoded to generate decoded information (step B8, decoding processing).
The control unit 47A regards the fingerprint pattern data E as an input pattern and the decoded information as a storage pattern and collates the input pattern with the stored pattern.
When the collation result is that the input pattern is in agreement with the stored pattern, the customer is authenticated as the person who has reserved the ticket and the ticket is
<Desc/Clms Page number 19>
issued to the customer (step B9, collation processing). On the other hand, when the collation result is that the input pattern is not in agreement with the stored pattern, the rejection of issue of the ticket is notified.
Thus, in the second preferred embodiment, the fingerprint input device 50 is connected to the customer authentication device 40A. This can eliminate the need for the customer to show the portable telephone 20 at the reservation center, and the input of the fingerprint pattern through the fingerprint input device 50 suffices for the authentication. Therefore, a customer authentication system can be constructed which, in addition to the advantage of the first preferred embodiment, is advantageously simpler in operation and has a higher level of security.
Variants of the above preferred embodiments will be explained. For example, the portable telephone 20 may be a portable terminal having the same function, for example, a personal digital assistant (PDA). Body features of the customer usable herein include, in addition to the fingerprint pattern of any finger of the customer, for example, information representing voiceprint (sound spectrogram), retina pattern, iris, or handwriting. In the first preferred embodiment, the fingerprint pattern data A may be encrypted by other personal computer or the like and input into the control unit 22. In the second preferred embodiment, for example, a personal computer installed in the customer's home or the like may be used instead of the portable telephone 20. Further, the customer authentication devices 40, 40A are not limited to those provided
<Desc/Clms Page number 20>
in ticket reservation centers and the like and can be applied to systems, where the authentication of customers is required, in general.
As described above, according to the above construction of the invention, the authentication of a customer is carried out using encrypted information produced by encrypting body feature information of the customer. This can specify the customer and, at the same time, can prevent others from posing as the customer and thus can realize the construction of a customer authentication system with a high level of security. Further, the provision of the second body feature information generation means in the customer authentication device can eliminate the need for the customer to show his or her portable terminal, and the input of the body feature information suffices for the authentication. Therefore, a customer authentication system can be constructed which is simpler in operation and has a higher level of security.
The invention has been described in detail with particular reference to preferred embodiments, but it will be understood that variations and modifications can be effected within the scope of the invention as set forth in the appended claims.
Each feature disclosed in this specification (which term includes the claims) and/or shown in the drawings may be incorporated in the invention independently of other disclosed and/or illustrated features.
Statements in this specification of the"objects of the invention"relate to preferred embodiments of the invention, but not necessarily to all embodiments of the invention falling
<Desc/Clms Page number 21>
within the claims.
The description of the invention with reference to the drawings is by way of example only.
In summary, a customer authentication system has: body feature information generation means for quantizing a body feature of a customer to generate body feature information; encrypted information generation means for encrypting the body feature information to generate encrypted information; a portable terminal for storing and maintaining the encrypted information; and a customer authentication device for decoding and collating the encrypted information received from the portable terminal and the encrypted information displayed on the portable terminal.

Claims (11)

  1. CLAIMS 1. An authentication system comprising: first processing means for processing a body feature of a person to generate first body feature information; encryption means for encrypting the first body feature information to generate encrypted information; second processing means for processing a body feature of the person to generate second body feature information; and an authentication device comprising: means for receiving the encrypted information from the encryption means and decrypting the encrypted information to generate decrypted information; and means for comparing the second body feature information with the decrypted information and indicating the result of the comparison.
  2. 2. A system according to Claim 1, wherein said authentication device is arranged to receive the encrypted information via a communication line.
  3. 3. A system according to Claim 1 or 2, wherein said authentication device includes means for storing the received encrypted information.
  4. 4. A system according to any preceding claim, wherein the body feature is a fingerprint of the person.
    <Desc/Clms Page number 23>
  5. 5. A method of authentication comprising the steps of: processing a body feature of a person to generate first body feature information; encrypting the first body feature information to generate encrypted information; processing a body feature of the person to generate second body feature information; and at an authentication device, the steps of: receiving the encrypted information and decrypting the encrypted information to generate decrypted information; and comparing the second body feature information with the decrypted information and indicating the result of the comparison.
  6. 6. A method according to Claim 5, wherein the encrypted information is received by the authentication device via a communication line.
  7. 7. A method according to Claim 5 or 6, wherein the received encrypted information is stored by said authentication device.
  8. 8. A method according to any of Claims 5 to 7, wherein the body feature is a fingerprint of the person.
  9. 9. A control program for carrying out the method of authentication according to any of claims 5 to 8.
    <Desc/Clms Page number 24>
  10. 10. An authentication system substantially as herein described with reference to Figure 3 of the accompanying drawings.
  11. 11. A method of authentication substantially as herein described with reference to Figure 4 of the accompanying drawings.
GB0308715A 2001-07-10 2002-07-10 Customer authentication system,customer authentication method,and control program for carrying out said method Expired - Fee Related GB2385695B (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2001210024A JP4665352B2 (en) 2001-07-10 2001-07-10 Customer authentication system, customer authentication method, and control program for implementing the method
GB0215975A GB2381105B (en) 2001-07-10 2002-07-10 Customer authentication system,customer authentication method,and control program for carrying out said method

Publications (3)

Publication Number Publication Date
GB0308715D0 GB0308715D0 (en) 2003-05-21
GB2385695A true GB2385695A (en) 2003-08-27
GB2385695B GB2385695B (en) 2004-04-07

Family

ID=27624285

Family Applications (1)

Application Number Title Priority Date Filing Date
GB0308715A Expired - Fee Related GB2385695B (en) 2001-07-10 2002-07-10 Customer authentication system,customer authentication method,and control program for carrying out said method

Country Status (1)

Country Link
GB (1) GB2385695B (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5131038A (en) * 1990-11-07 1992-07-14 Motorola, Inc. Portable authentification system
US5469506A (en) * 1994-06-27 1995-11-21 Pitney Bowes Inc. Apparatus for verifying an identification card and identifying a person by means of a biometric characteristic

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5131038A (en) * 1990-11-07 1992-07-14 Motorola, Inc. Portable authentification system
US5469506A (en) * 1994-06-27 1995-11-21 Pitney Bowes Inc. Apparatus for verifying an identification card and identifying a person by means of a biometric characteristic

Also Published As

Publication number Publication date
GB0308715D0 (en) 2003-05-21
GB2385695B (en) 2004-04-07

Similar Documents

Publication Publication Date Title
CN107453862B (en) Scheme for generating, storing and using private key
US9529991B2 (en) Systems and methods for multi-factor remote user authentication
US7694130B1 (en) System and method to authenticate a user utilizing a time-varying auxiliary code
US6990586B1 (en) Secure data transmission from unsecured input environments
US7254619B2 (en) Apparatus for outputting individual authentication information connectable to a plurality of terminals through a network
EP2065798A1 (en) Method for performing secure online transactions with a mobile station and a mobile station
US20100115591A1 (en) Method and system for authenticating users with optical code tokens
US20080305769A1 (en) Device Method &amp; System For Facilitating Mobile Transactions
US10496806B2 (en) Method for secure operation of a computing device
WO2002069291A3 (en) Electronic transaction systems and methods therefor
US20050154671A1 (en) Systems and methods for mitigating identity theft associated with use of credit and debit cards
GB2381105A (en) Customer authentication using body feature information
US7177425B2 (en) Device and method for securing information associated with a subscriber in a communication apparatus
US20040230812A1 (en) Method for authentication of a user with an authorizing device, and a security apparatus for carrying out the method
EA010659B1 (en) Network information protection method and storage medium
JP4620307B2 (en) Technology for safely storing data in memory
JP4275323B2 (en) Mobile communication terminal and PIN authentication system
JP2008033805A (en) Personal information protection system, personal information protection method and personal information protection program
GB2385695A (en) Customer authentication using body feature information
KR20040087663A (en) System and the Method for electronic settlement of accounts by using fingerprint recognition of mobile phone
JP2006140543A (en) Mobile communications system, authentication server, portable telephone, and security method and program
KR20040082848A (en) Biometric information recognition mobile phone and biometric information recognition authentication method
JP2010122962A (en) Authentication system and authentication method
JP2006115162A (en) Authentication method, system, and program
KR20050020097A (en) A Method for preservation of banking service information recording means in mobile phone

Legal Events

Date Code Title Description
732E Amendments to the register in respect of changes of name or changes affecting rights (sect. 32/1977)

Free format text: REGISTERED BETWEEN 20141023 AND 20141029

PCNP Patent ceased through non-payment of renewal fee

Effective date: 20150710