|
| 
Get related patents on CD |
| United States Patent | 5712912 |
| Link to this page | http://www.wikipatents.com/5712912.html |
| Inventor(s) | Tomko; George J. (East York, CA);
Stoianov; Alexei (Toronto, CA) |
| Abstract | A method and apparatus using biometric information (such as a fingerprint,
an iris structure, etc.) as a cipher for encrypting and decrypting a
personal identification number (PIN) which is used as an input to a PIN
requiring device. The method of encryption of a PIN includes generating a
sequence of random characters representing a PIN to be encrypted;
obtaining a generating function such that the random characters are
coefficients in an expansion of a square of said generating function over
basis functions; and dividing a transform of the generating function by
Fourier transformed information image signal to obtain the encrypted PIN.
The latter is stored digitally or as a hologram in a personal card or a
database. To decrypt the PIN, a full-complex spatial light modulator is
illuminated with an optical beam carrying the Fourier transform of the
biometric image of an individual to be identified. The encrypted PIN may
be also stored in a reflective hologram which is nondestructively attached
to a personal card, and the decryption of a PIN comprises illuminating the
hologram with the beam carrying the Fourier transform of the biometric
image. In other embodiments of the invention, a cipher may be derived from
an intensity distribution (captured directly by a camera) of the Fourier
spectrum of the biometric image. The PIN may be encrypted and decrypted
either optically (with phase conjugation techniques) or digitally (using
an encryption algorithm). |
| |
 |
Title Information  |
|
|
|
|
|
|
| Publication Date |
January 27, 1998 |
|
|
|
|
|
| Filing Date |
July 28, 1995 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
 |
|
 |
Title Information |
|
|
|
References |
|
|
| *references marked with an asterisk below are user-added references |
 |
U.S. References |
|
|
| Add a new US reference: |
| | Reference | Relevancy | Comments | Reference | Relevancy | Comments | 3716301
|  Your vote accepted
[0 after 0 votes] | | 5541994
Tomko
380/30
Jul,1996 | Your vote accepted
[0 after 0 votes] | | 5469506
Berson
713/186
Nov,1995 | Your vote accepted
[0 after 0 votes] | | 5428683
Indeck
713/176
Jun,1995 | Your vote accepted
[0 after 0 votes] | | 5418380
Simon
250/550
May,1995 | Your vote accepted
[0 after 0 votes] | | 5386378
Itoh
708/816
Jan,1995 | Your vote accepted
[0 after 0 votes] | | 5347375
Saito
359/9
Sep,1994 | Your vote accepted
[0 after 0 votes] | | 5345508
Lynn
380/46
Sep,1994 | Your vote accepted
[0 after 0 votes] | | 5343415
Itoh
708/400
Aug,1994 | Your vote accepted
[0 after 0 votes] | | 5327286
Sampsell
359/561
Jul,1994 | Your vote accepted
[0 after 0 votes] | | 5280527
Gullman
713/184
Jan,1994 | Your vote accepted
[0 after 0 votes] | | 5268963
Monroe
713/186
Dec,1993 | Your vote accepted
[0 after 0 votes] | | 5245329
Gokcebay
340/5.33
Sep,1993 | Your vote accepted
[0 after 0 votes] | | 5159474
Franke
359/29
Oct,1992 | Your vote accepted
[0 after 0 votes] | | 5150229
Takesue
359/7
Sep,1992 | Your vote accepted
[0 after 0 votes] | | 5148157
Florence
345/84
Sep,1992 | Your vote accepted
[0 after 0 votes] | | 5138468
Barbanell
359/2
Aug,1992 | Your vote accepted
[0 after 0 votes] | | 5095194
Barbanell
235/379
Mar,1992 | Your vote accepted
[0 after 0 votes] | | 5050220
Marsh
382/124
Sep,1991 | Your vote accepted
[0 after 0 votes] | | 5040140
Horner
708/816
Aug,1991 | Your vote accepted
[0 after 0 votes] | | 4993068
Piosenka
Feb,1991 | Your vote accepted
[0 after 0 votes] | | 4876725
Tomko
382/126
Oct,1989 | Your vote accepted
[0 after 0 votes] | | 4837843
Owechko
Jun,1989 | Your vote accepted
[0 after 0 votes] | | 4532508
Ruell
340/5.83
Jul,1985 | Your vote accepted
[0 after 0 votes] | | 3771129
McMahon
382/127
Nov,1973 | Your vote accepted
[0 after 0 votes] | | | | | |
|
 |
|
|
|
U.S. References |
|
|
|
Foreign References |
|
|
|
|
|
|
|
|
Foreign References |
|
|
|
Other References |
|
|
|
|
|
|
|
|
Other References |
|
|
|
|
|
|
|
References |
|
|
|
|
|
|
|
|
|
|
|
|
Public's "Guesstimation" of Royalty Value
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Market Review |
|
|
|
Technical Review |
|
|
|
Claims |
|
|
We claim:
1. A method for securely storing at least a personal identification number
(PIN), comprising the following steps:
obtaining a biometric information signal bearing information from a body
part;
generating a sequence of random characters to obtain a PIN;
obtaining a generating function such that said random characters of said
PIN are parameters of said generating function;
obtaining a transform of said generating function;
encrypting said transform of said generating function with said biometric
information signal to obtain an encrypted PIN; and
writing said encrypted PIN into a store.
2. A method for recovering a personal identification number (PIN) for use
in a device requiring a PIN for operation comprising the following steps:
obtaining a biometric information signal bearing information from a body
part;
retrieving from storage an encrypted transform of a generating function,
said generating function having characters of a PIN as parameters, said
transform of said generating function previously encrypted with said
biometric information signal;
decrypting said previously encrypted transform of said generating function
utilising said biometric information signal as a key for decryption to
obtain a decrypted transformed generating function;
undertaking an inverse transform operation on said decrypted transformed
generating function to obtain an inverse transformed decrypted generating
function; and
obtaining parameters from said inverse transformed decrypted generating
function to obtain a PIN.
3. The method of claim 1 including the steps of:
encrypting information with a key which is a function of said PIN; and
storing said encrypted information on said storage means.
4. The method of claim 2 including the steps of:
retrieving encrypted information from said storage means; and
decrypting said information with a key which is a function of said PIN.
5. The method of claim 1 wherein said step of
obtaining a biometric information signal comprises obtaining a Fourier
transform of a signal bearing information from a body part, said step of
obtaining a transform of said generating function comprises obtaining a
transform such that the transform has an inverse transform which exists
and can be obtained optically and spatial frequencies which overlap with
spatial frequencies of said Fourier transform of said signal bearing
information from a body part and said step of encrypting said transform
comprises dividing said transform of said generating function by said
Fourier transform of said signal bearing information from a body part.
6. The method of claim 2 wherein said step of obtaining a biometric
information signal comprises:
obtaining a coherent optical beam modulated with a biometric image of a
body part; and
obtaining a beam carrying an optical Fourier transform of said biometric
image.
7. The method of claim 6 wherein said step of decrypting said previously
encrypted transform further comprises the steps of:
addressing a full-complex spatial light modulator (SLM) with said encrypted
transform; and
illuminating said SLM with said beam carrying the Fourier transform of the
biometric image to obtain an output beam;
wherein the step of undertaking an inverse transform operation on said
decrypted transformed generating function comprises obtaining an optical
transform of said output beam; and wherein the step of obtaining
parameters from said inverse transformed decrypted generating function to
obtain a PIN comprises the steps of:
registering an intensity distribution of said transformed output beam; and
retrieving said PIN from said intensity distribution.
8. The method of claim 5 wherein said step of writing the encrypted PIN
into storage means further comprises:
recording a hologram, a complex amplitude of a spatial grating of said
hologram being proportional to said encrypted PIN; and
attaching said hologram to storage means.
9. The method of claim 8 wherein said step of recording a hologram further
comprises the steps of:
determining a complex conjugate of said encrypted PIN;
determining an inverse Fourier transform of said complex conjugate to
obtain an inverse transformed addressing signal;
addressing a full-complex SLM with said inverse transformed addressing
signal;
illuminating said SLM with coherent light to produce an object beam;
obtaining an optical Fourier transform of said object beam; and
recording a reflective hologram by means of interference of said object
beam with a reference beam which is coherent with said object beam.
10. The method of claim 6 wherein said step of decrypting said transform of
said generating function further comprises the step of
illuminating a prerecorded hologram with said beam carrying the Fourier
transform of the biometric image;
wherein the step of undertaking an inverse transform operation on said
decrypted transformed generating function comprises
obtaining an optical transform of a beam diffracted from said hologram;
and wherein the step of obtaining parameters from said inverse transformed
decrypted generating function to obtain a PIN comprises:
registering an intensity distribution of said transformed diffracted beam;
and
calculating scalar products of said intensity distribution and each of a
plurality of basis functions to obtain a PIN, said basis functions being
the same as they were during encryption.
11. The method of claim 1 wherein said step of obtaining a biometric
information signal comprises:
obtaining a coherent optical beam modulated with a biometric image of a
body part; and
registering an intensity distribution of a Fourier spectrum of said
biometric image.
12. The method of claim 11 including the steps of:
(a) processing said intensity distribution of the Fourier spectrum of the
biometric image; and
(b) deriving a cipher function from said processed intensity distribution;
wherein the step of obtaining a generating function comprises obtaining a
generating function such that said random characters are coefficients in
an expansion of square of said generating function over basis functions;
wherein said step of obtaining a transform of said generating function
comprises obtaining a first transform of said generating function such
that the first transform has an inverse transform which exists and can be
obtained optically and spatial frequencies which overlap with spatial
frequencies of said Fourier spectrum of said biometric image;
and wherein the step of encrypting said transform of said generating
function comprises the steps of:
(i) obtaining a product of said first transform of the generating function
and a complex exponent of said cipher function; and
(ii) obtaining a second transform of said product such that said second
transform has an inverse transform which exists and can be performed
optically.
13. The method of claim 12 wherein step (a) comprises:
mapping said intensity distribution of the Fourier spectrum of the
biometric image with a saturation function;
further processing said intensity distribution with a randomizing operator;
and
obtaining a Gabor transform of said processed intensity distribution.
14. The method of claim 12 wherein step (b) comprises binarization or
quantization of said processed intensity distribution to derive a cipher
function.
15. The method of claim 4 wherein said step of obtaining a biometric
information signal comprises:
obtaining a coherent optical beam modulated with a biometric image of a
body part; and
registering an intensity distribution of Fourier spectrum of said biometric
image.
16. The method of claim 15 including the steps of:
(a) processing said intensity distribution of the Fourier spectrum of the
biometric image;
(b) deriving a cipher function from said processed intensity distribution;
wherein the step of decrypting said previously encrypted transform of said
generating function comprises the steps of:
(c) addressing a first full-complex SLM with said encrypted transform;
(d) addressing a second phase-only SLM with the sign-inversed cipher
function;
(e) illuminating said first SLM with a coherent light beam to obtain a beam
modulated with said encrypted transform;
(f) obtaining an optical transform of said modulation beam such that said
transform is inverse to a second transform which was performed during
encryption;
(g) illuminating said second SLM with said optically transformed beam to
obtain an output beam;
wherein the step of undertaking an inverse transform operation comprises;
(h) obtaining an optical transform of said output beam such that said
transform is inverse to a first transform which was performed during
encryption;
and wherein the step of obtaining parameters from said inverse transformed
decrypted generating function to obtain a PIN comprises the steps of:
(i) registering an intensity distribution of said transformed output beam;
and
(j) calculating scalar products of said intensity distribution and each of
a plurality of basis functions to obtain a PIN, said basis functions being
the same as basis functions used during encryption.
17. The method of claim 16 wherein step (a) comprises:
mapping said intensity distribution of the Fourier spectrum of the
biometric image with a saturation function;
further processing said intensity distribution with a randomizing operator;
and
obtaining a Gabor transform of said processed intensity distribution.
18. The method of claim 16 wherein step (b) comprises binarization or
quantization of said processed intensity distribution to derive a cipher
function.
19. The method of claim 12 wherein said step of writing the encrypted PIN
into storage means further comprises:
recording a hologram, a complex amplitude of a spatial grating of said
hologram being proportional to said encrypted PIN; and
attaching said hologram to storage means.
20. The method of claim 19 wherein said recording a hologram comprises the
steps of:
addressing a first amplitude-only SLM with said generating function;
addressing a second phase-only SLM with said cipher function;
illuminating said first SLM with a coherent light beam to obtain a beam
modulated with said generating function;
obtaining a first optical transform of said modulated beam;
illuminating said second SLM with said optically transformed beam to obtain
an object beam;
obtaining a second optical transform of said beam; and
recording a reflective hologram by means of interference of said
transformed object beam with a reference beam which is coherent with said
object beam.
21. The method of claim 15 wherein said step of decrypting said transform
of said generating function further comprises the steps of:
addressing a phase-only SLM with the sign-inversed cipher function;
illuminating a pre-recorded hologram with a coherent light beam;
obtaining an optical transform of a beam diffracted from said hologram such
that said transform is inverse to a second complex-conjugated transform
which was performed during encryption;
illuminating said SLM with said transformed diffracted beam to obtain an
output beam;
wherein the step of undertaking an inverse transform operation on said
decrypted transformed generating function comprising
obtaining an optical transform of said output beam such that said transform
is inverse to the first complex conjugated transform which was performed
during encryption;
and wherein the step of obtaining parameters from said inverse transformed
decrypted generating function to obtain a PIN comprises:
registering an intensity distribution of said transformed output beam; and
calculating scalar products of said intensity distribution and each of a
plurality of basis functions to obtain a PIN, said basis functions being
the same as they were during encryption.
22. The method of claim 11 including the steps of:
encrypting information with a key which is a function of said PIN; and
storing said encrypted information on said storage means; and
wherein said encrypting a transform of said generating function step
further comprises the steps of:
(a) processing said intensity distribution of the Fourier spectrum of the
biometric image;
(b) deriving a unique vector from said processed intensity distribution;
and
(c) encrypting said transform of said generating function with a symmetric
algorithm, said unique vector being a key to said algorithm.
23. The method of claim 22 wherein step (a) comprises mapping said
intensity distribution of the Fourier spectrum of the biometric image with
a saturation function.
24. The method of claim 23 wherein step (a) further comprises obtaining
Gabor transform of said processed intensity distribution.
25. The method of claim 22 wherein step (b) comprises the steps of:
selecting a pre-determined number of highest peaks in said processed
intensity distribution to generate a selected peaks array;
transforming said selected peaks array to a polar co-ordinate system, the
centre of which corresponds to the zeroth spatial frequency of said
Fourier spectrum, to generate a polar co-ordinates array, each element in
said polar co-ordinates array being represented by a vector comprising
polar co-ordinates and a peak amplitude; and
deriving said unique vector from said polar co-ordinates array such that
the number of elements in said unique vector are equal to a dimension of a
key required by said symmetric algorithm.
26. The method of claim 22 wherein step (b) comprises the steps of:
transforming said processed intensity distribution to a polar co-ordinates
system, the centre of which corresponds to the zeroth spatial frequency of
said Fourier spectrum, to generate a polar co-ordinates distribution;
calculating a pre-determined number of first coefficients in an expansion
of said polar co-ordinates distribution over spherical harmonics;
calculating a square of absolute value of each said coefficient, and
normalizing said squares to obtain a normalized array; and
deriving said unique vector from said normalized array such that the number
of elements in said unique vector are equal to a dimension of a key
required by said symmetric algorithm.
27. Apparatus for encrypting a PIN, comprising:
means for obtaining a biometric information signal bearing characteristics
of a body part;
means for generating a sequence of random characters to obtain a PIN;
means for obtaining a generating function comprising said random characters
as parameters;
means for obtaining a transform of said generating function;
means for encrypting said transform of said generating function with said
biometric information signal to obtain an encrypted PIN; and
means for writing said encrypted PIN into a store.
28. Apparatus for decrypting a PIN, comprising:
means for obtaining a biometric information signal bearing characteristics
of a body part;
means for reviewing from storage a transform of a generating function, said
generating function having characters of a PIN as parameters, said
transform of said generating function previously encrypted with said
biometric information signal;
means for decrypting said previously encrypted transform of said generating
function, said biometric information signal being a key to said encrypted
transform;
means for undertaking an inverse transform operation on said decrypted
transform to obtain an inverse transformed decrypted generating function;
and
means for obtaining parameters from said inverse transformed decrypted
generating function to obtain a PIN.
29. The method of claim 5 wherein the step of obtaining a generating
function comprises obtaining a plurality of orthogonal basis functions,
said characters being parameters of said basis functions.
30. The method of claim 5 wherein the step of obtaining a generating
function comprises obtaining a generating function such that said random
characters are coefficients in an expansion of square of said generating
function over basis functions.
31. The method of claim 7 wherein the step of retrieving said PIN from said
intensity distribution comprises calculating scalar products of said
intensity distribution and each of a plurality of basis function to obtain
a PIN, said basis functions being the same as basis functions used during
encryption of said encrypted PIN. |
|
|
|
|
|
|
Claims |
|
|
|
Description |
|
|
FIELD OF THE INVENTION
This invention relates to a method for securely storing a personal
identification number (PIN) or cryptographic key and a method for later
recovering the PIN (or key) as well as apparatus to carry out these
methods.
BACKGROUND OF THE INVENTION
The security of communications, data storage and access, use of credit and
other types of transaction cards depends on a proper use of personal
identification numbers. The problem is that the PIN does not confirm
identity. Furthermore, to the extent it does provide security, it has to
either be memorized (which is impractical in case of a PIN with many-digit
numbers) or stored in a secure place, which in turn can be compromised.
Alternatively, a positive identification of an individual prior to allowing
a transaction could be performed by various biometric techniques such as
fingerprint or iris verification, some of them having been described in
the prior art. A biometric can be any physiological characteristic
containing information which is unique for each individual. The biometric
techniques compare the information related to the individual's unique
characteristic with a pre-recorded template, and, if the result of the
comparison is positive, the individual is allowed access to the system,
e.g. use of an automatic banking machine. The pre-recorded template of the
individual's biometric can be stored either on a portable storage means
such as a smart card or in a centralized database and accessed for
comparison by a nonconfidential biometric identification number (BID).
Obvious advantages of the biometric techniques are that, first, a person
does not have to memorize a PIN; second, even if a person's card is lost
or stolen or his BID number is discovered, this will not affect the
security of the system.
However, biometric techniques have one essential drawback which has not
attracted proper attention so far: an output of a biometric verification
"black box" is usually a simple electrical signal like "true" or "false".
If such a "black box" were connected with an existing transaction or
security system, an imposter could simulate a positive verification by
sending an appropriate signal ("true") to the system. Moreover, the
infrastructure of many finance, commerce and security systems are based on
receiving a unique PIN from the user, and modifying such systems to
incorporate biometric verification in lieu of PINs would cause additional
expense. Accordingly, many systems requiring secure access will still
require a PIN even in case of positive biometric verification of an
individual.
SUMMARY OF THE INVENTION
This invention seeks to overcome some drawbacks of the prior art and to
expand the area of using biometric techniques. It is an object of the
present invention to provide a method and apparatus which utilize
biometric techniques to generate a PIN which does not have to be
remembered or even known by an individual.
The PIN generating apparatus consists of an encrypting device and a PIN
decrypting device. The generation of a PIN means that a sequence of random
characters representing a PIN and obtained, for example, from a random
character generator, is encrypted with biometric information from an
individual and stored in storage means (such as a personal card or a
database). To get access to a system which requires a PIN, the individual
places his personal card, for example, into a reading device which
retrieves the encrypted PIN. A biometric reading apparatus obtains an
information signal modulated with the biometric characteristic of the
individual which then deciphers the PIN, said biometric information being
a key to the encrypted PIN. The decrypted PIN is sent to a system which
uses the PIN to access information or provide a service.
The first embodiment of the invention comprises obtaining a digital image
of a biometric and deriving a two-dimensional Fourier transformed image
from said digital image; obtaining a generating function such that the
random characters representing the PIN to be encrypted are coefficients in
an expansion of a square of said generating function over a set of basis
functions; obtaining a transform of said generating function; and dividing
said transform of said generating function by said Fourier transformed
image to obtain the encrypted PIN. The decryption of a PIN comprises
obtaining a coherent optical beam modulated with an image of the
biometric; obtaining a beam carrying an optical Fourier transform of said
biometric image; addressing a full-complex spatial light modulator (SLM)
with the encrypted PIN; illuminating said SLM with said beam carrying the
Fourier transform of the biometric image to obtain an output beam;
obtaining an optical transform of said output beam; registering an
intensity distribution of said transformed output beam; and calculating
dot products of said intensity distribution with each basis function to
obtain the PIN.
In the second embodiment of the invention, the encrypted PIN is written
into a reflective hologram which is nondestructively attached to a
personal card, and the decryption of a PIN comprises illuminating the
hologram with the beam carrying the Fourier transform of the biometric
image.
The third embodiment of the invention comprises registering an intensity
distribution of Fourier spectrum of said biometric image; processing said
intensity distribution; deriving a c | | |
