Abstract: A method of authenticating a user on client equipment, the user equipped with a personal terminal, the method wherein it comprises implementing by data processing means in said client equipment the following steps: (a) When said user's personal terminal is in proximity to said client equipment, receiving from the terminal and temporarily storing on data storage means in the client equipment: —a reference biometric data item of the user; and—at least one alphanumeric user authentication data item; stored on the data storage means in the terminal; (b) Identifying said user via biometric recognition from a candidate biometric data item of the user and the reference biometric data item(s) stored on the data storage means in the client equipment; (c) Using at least one alphanumeric authentication data item of the identified user stored on the data storage means in the client equipment, for authentication of said user.

Abstract: The present invention relates to a method of processing a transaction sent from a proof entity (1) connected to a verification entity (2); the proof entity (1) having at least one secret key and a candidate authentication data, the verification entity (2) having the hash value of a reference authentication data; the method comprising the steps of: (a) generation by data processing means (11) of the proof entity (1) of: a signature of the proof entity (1) from said secret key; a zero-knowledge proof of the fact that the candidate authentication data and the reference authentication data match; (b) transmission to the verification entity (2) of transaction data comprising at least: said signature of the proof entity (1); said zero-knowledge proof; (c) verification by the data processing means (21) of the verification entity (2) that said signature of the proof entity (1) and the zero-knowledge proof are valid; (d) processing said transaction.

Abstract: A method and device for managing an emergency procedure of an emergency transaction mode that can be activated in the event of a computer attack on or a failure of a transaction network. The method may be carried out by an electronic device suitable for performing a transaction in a normal mode or in the emergency mode. The method performs operations that may include receiving an activation command for activating the emergency mode procedure, where the command includes an identifier of the procedure and first encrypted data; verifying the activation command, which includes verifying the first encrypted data; and if verification of the command is successful, activating the emergency procedure.

Abstract: A biometric data processing method implemented by a proof entity and a verification entity that are connected. The proof entity has a candidate biometric data, a reference biometric data, cryptographic footprints of the reference biometric data, and the candidate biometric data. The verification entity has a set of cryptographic footprints of reference biometric data of authorized users. The method includes generating the proof entity of a zero-knowledge proof of the fact that the candidate biometric data and the reference biometric data match. Transmitting to the verification entity the zero-knowledge proof of the cryptographic footprints of the candidate biometric data and the reference biometric data. Verifying that the zero-knowledge proof is valid, and the received cryptographic footprint of the reference biometric data belongs to the set of cryptographic footprints of reference biometric data in the possession of the verification entity.

Abstract: A method of authenticating a user on client equipment, the user equipped with a personal terminal, the method wherein it comprises implementing by data processing means in said client equipment the following steps: (a) When said user's personal terminal is in proximity to said client equipment, receiving from the terminal and temporarily storing on data storage means in the client equipment: a reference biometric data item of the user; and at least one alphanumeric user authentication data item; stored on the data storage means in the terminal; (b) Identifying said user via biometric recognition from a candidate biometric data item of the user and the reference biometric data item(s) stored on the data storage means in the client equipment; (c) Using at least one alphanumeric authentication data item of the identified user stored on the data storage means in the client equipment, for authentication of said user.

Abstract: A checking device and method performed by a microcircuit for dependency rules for objects updated in the microcircuit. The device and method include steps for receiving (B3) a command for updating a first object (105) stored in the microcircuit, the command giving an updated value for the first object; and verifying (B4, B4?) an updating rule (106) for the first object while taking account of the updated value for the first object. The device and method can be used in microcircuits that carry out transactions.

Abstract: The present invention relates to a method of processing a transaction sent from a proof entity (1) connected to a verification entity (2); the proof entity (1) having at least one secret key and a candidate authentication data, the verification entity (2) having the hash value of a reference authentication data; the method comprising the steps of: (a) generation by data processing means (11) of the proof entity (1) of: a signature of the proof entity (1) from said secret key; a zero-knowledge proof of the fact that the candidate authentication data and the reference authentication data match; (b) transmission to the verification entity (2) of transaction data comprising at least: said signature of the proof entity (1); said zero-knowledge proof; (c) verification by the data processing means (21) of the verification entity (2) that said signature of the proof entity (1) and the zero-knowledge proof are valid; (d) processing said transaction.

Abstract: The invention proposes a biometric data processing method implemented by a proof entity (1) and a verification entity (2) that are connected; the proof entity (1) having a candidate biometric data, a reference biometric data, a cryptographic footprint of the reference biometric data, a cryptographic footprint of the candidate biometric data; the verification entity (2) having only a set of cryptographic footprints of reference biometric data of authorized users; the method comprising the steps of: (a) generation by data processing means (11) of the proof entity (1), of a zero-knowledge proof of the fact that the candidate biometric data and the reference biometric data match; (b) transmission to the verification entity (2) of said zero-knowledge proof of the cryptographic footprint of the candidate biometric data, and of the cryptographic footprint of the reference biometric data; (c) verification by data processing means (21) of the verification entity (2) that: the zero-knowledge proof is valid, and the

Abstract: The present invention relates to a method for enrolling an individual with a view to processing biometric data of the individual by a processor and by a secure element, comprising the following steps implemented by the processor from a reference biometric data acquired on the individual: obtaining a logical object calculated from the reference biometric data and from a key, said logical object making it possible to subsequently reconstruct said key from an acquired biometric data if a distance between the reference biometric data and the acquired biometric data is less than a threshold, said logical object being referred to as helper data, transmitting the key to the secure element. The processor and the secure element are for example embedded on the same physical medium.

Abstract: A method and device for managing an emergency procedure of an emergency transaction mode that can be activated in the event of a computer attack on or a failure of a transaction network. The method may be carried out by an electronic device suitable for performing a transaction in a normal mode or in the emergency mode. The method performs operations that may include receiving an activation command for activating the emergency mode procedure, where the command includes an identifier of the procedure and first encrypted data; verifying the activation command, which includes verifying the first encrypted data; and if verification of the command is successful, activating the emergency procedure.

Abstract: A checking device and method performed by a microcircuit for dependency rules for objects updated in the microcircuit. The device and method include steps for receiving (B3) a command for updating a first object (105) stored in the microcircuit, the command giving an updated value for the first object; and verifying (B4, B4?) an updating rule (106) for the first object while taking account of the updated value for the first object. The device and method can be used in microcircuits that carry out transactions.