Abstract: A Radio Frequency Identification (RFID) reader containing a reader key authenticates an RFID tag containing a tag key by receiving a tag identifier from the tag; challenging the tag with a tag challenge; receiving a tag response based at least on the tag challenge and the tag key but not including the tag key; sending a second message including at least the tag identifier and the tag response to a verification authority; and receiving a reply from the verification authority. The reader and the verification authority may mutually authenticate each other before, during, or after the tag authentication process. The verification authority may notify a designated party if a response is incorrect.

Abstract: Disclosed are an apparatus and a method for managing access to a shared resource based on identity that is established by use of biometric data. A biometric locking device (i.e., a “b-lock”) can be used to restrict access to a shared resource, such as a house, a car, etc. In some embodiments, the b-lock can establish an identity of a user based on biometric data obtained by a biometric sensor of the b-lock, and can register the biometric data. After the biometric data is registered, the user can scan, e.g., his finger using the biometric sensor of the b-lock, and the b-lock can verify that the biometric data obtained based on the scan of the finger matches the registered biometric data. Once verified, the b-lock can unlock a locking mechanism of the b-lock to enable the user to access the shared resource.

Abstract: Methods and systems for authenticating a user and a consumer electronic device (CED) to a financial services provider (FSP) for purposes of communications initiated from the device and needing security, such as purchases and financial transactions, are provided. The FSP may compile information about a user's behavior from various sources, both public and private, including the CED. The information may be of a stochastic nature, being gathered by sampling user data and behavior at chosen times. The information may include indicators of user behavior—such as the user using the device to check various accounts and web-pages—and data from the device—such as GPS location. Based on the compiled stochastic information, and using a sliding scale, a throttling mechanism, acceptance variation, and pinging information, the FSP can compare current information from the device with what is known about the user and the device to provide a more accurate and reliable authentication process.

Abstract: A device to prevent, detect and respond to one or more security threats between one or more controlled hosts and one or more services accessible from the controlled host. The device determines the authenticity of a user of a controlled host and activates user specific configurations under which the device monitors and controls all communications between the user, the controlled host and the services. As such, the device ensures the flow of only legitimate and authorized communications. Suspicious communications, such as those with malicious intent, malformed packets, among others, are stopped, reported for analysis and action. Additionally, upon detecting suspicious communication, the device modifies the activated user specific configurations under which the device monitors and controls the communications between the user, the controlled host and the services.

Abstract: A mobile device comprising a touch screen display; at least one processor with computer executable instruction code executable by the at least one processor configured for detecting a finger gesture, heat or pressure exerted on the mobile device and for responding to the finger gesture, heat or pressure by activating a release mechanism for releasing biometric verification means to extend outward from the concealed housing positioned within the mobile device for user authorization for activating the mobile device with a valid biometric identifier, wherein upon activation the biometric verification means retracts into the concealed housing; and activating a verification module executable by the at least one processors configured for verifying an image of user's biometric identifier when the mobile device is in sleep mode or for communicating user's authorization to access at least one application program or a remote hardware device that requires biometric verification.

Abstract: A vehicle having a gearbox, a gear control unit and a manually operable selector device, which is electrically connected to the gear control unit and which is provided for selecting different states of the gearbox, includes a sensor device, by which it is possible on actuation of the selector device, to detect whether the selector device is being actuated by a human body part or in some other way.

Abstract: A suite of testing and evaluation tools that run in conjunction with a smartphone that can be used to both enroll, and for subsequent enrollees, to gain secure access so that the program may measure, track and report on tests, including activities, that may indicate general health and wellness status. Here, the word “smartphone” includes any handheld or mobile device containing at least one processor. The smartphone can be used as the platform for this suite of tools that can include applications that run independently on the smartphone device, but can also include sensors and other data acquisition tools that can be peripheral to the smartphone and connected by wire or wirelessly.

Abstract: The present invention is directed to a security device for securing computer ports that are in use and also for securing unused computer ports of an electronic device. The invention is also directed to physically blocking access to the computer port. The security device typically comprises a securing mechanism configured for releasably locking the security device within the computer port. The security device further comprises a controlling mechanism that is configured to cause the securing mechanism to move between a locked state and an unlocked state. The security device is further configured to establish an operative connection with an external computing device and authenticate the device via a communication port of the security device.

Abstract: A system and method remotely enrolls, authenticates and provides unified authentication services in an ASP setting to a user to access requested information via a communication medium. A filter is coupled to client side components via the communication medium and a user management component coupled to the client side components via the communication medium. The user management component allows end-users to register their credentials only once. In addition, the user management component allows end-users to define the level of protection of access to their web application accounts. This includes accounts that have been configured specifically for use with the present invention and particular user credentials and accounts that have been subsequently set up but configured to use the same user credentials. The present invention can then reuse those credentials to authenticate the user to one or more potentially unrelated web applications.

Abstract: A method for identifying a user is provided, including the following method operations: identifying at least three contact regions on a touch sensitive surface, the contact regions defined by simultaneous contact of at least three fingers of the user with the touch sensitive surface; for each contact region, determining a center point; determining distances between each of the determined center points of the contact regions; comparing the determined distances against predefined distances associated with a known user; based on the comparing, determining the user to be the known user or not the known user.

Abstract: A door access control system (9) includes a door lock (10) mounted to a door (435). A door lock controller (611) is mounted in the door (435) and is electrically connected to the door lock (10). A wireless charging device (511) is electrically connected to the door lock controller (611). A main control unit (659) is provided for operating the door lock controller (611). At least one passive door opening unit (673) is provided to conduct induction with the door lock controller (611) to unlock the door lock (10).

Abstract: The present invention is a system and method of enrolling potential system users for a biometric system for identity verification. Potential system user information is entered into the system, either by the user or a system operator, and is stored as a partially-enabled user record. The user of a partially-enabled user record fully enables the record by presenting information previously stored in the user record and presenting the remainder of user information necessary to complete record activation. Enrollment data is used to authenticate the system user's identity and authorize related transaction accesses in a biometric system for identity verification.

Abstract: Techniques for enabling a secure transaction with a remote site that uses voice interaction are provided. The techniques include authenticating a remote site to enable a secure transaction, wherein authenticating the remote site comprises using a dynamically generated audio signal.

Abstract: An electronic device may include a finger-operated input device, and a finger sensor carried by the finger-operated input device to sense a user's finger. The electronic device may further include a processor to perform applications and perform at least one device function responsive to an operation of the finger-operated input device. The processor may acquire finger-matching biometric data of the user's finger responsive to each operation of the finger-operated input device. The processor may further authenticate the user based upon an authentication request from one of the applications. The authentication may be based upon a match of most recently acquired finger-matching biometric data and finger-enrollment biometric data.

Abstract: A biometric authentication apparatus includes a storage unit which stores first shape data representing a shape of biometric information of a registered user's hand with fingers at a first posture and second shape data representing a shape of biometric information of the hand with the fingers at a second posture; a posture specification unit which calculates an index representing a third posture of fingers of a user's hand in a biometric image; a biometric information extraction unit which generates third shape data representing a shape of biometric information of the user's hand in the biometric image; and a correction unit which obtains corrected shape data by correcting the first or the second shape data to cancel a shape difference of the biometric information due to a difference between the third posture and the first or the second posture based on the index for matching.

Abstract: A computing device can capture audio data representative of audio content present in a current environment. The captured audio data can be compared with audio models to locate a matching audio model. The matching audio model can be associated with an environment. The current environment can be identified based on the environment associated with the matching audio model. In some embodiments, information about the identified current environment can be provided to at least one application executing on the computing device. The at least one the application can be configured to adjust at least one functional aspect based at least in part upon the determined current environment. In some embodiments, one or more computing tasks performed by the computing device can be improved based on information relating to the identified current environment. These computing tasks can include location refinement, location classification, and speech recognition.

Abstract: An image processing device includes a processor; and a memory which stores a plurality of instructions, which when executed by the processor, cause the processor to execute: obtaining a first image in which a user is included, a second image which is imaged in an imaging condition different from that of the first image, a third image which is continuously imaged at a different point of time from that of the first image, and in the same imaging condition as that of the first image, and a fourth image which is continuously imaged at a different point of time from that of the second image, and in the same imaging condition as that of the second image; extracting a first feature amount of a user which is included in the first image, a second feature amount of the user which is included in the second image, a third feature amount.

Abstract: A system, method, and apparatus for negotiating a communication link between first and second near field communication (NFC) devices is disclosed. A third NFC device is placed in close proximity with a first host device operatively containing the first NFC device to determine communication information including at least one of a communication mechanism and a data transfer protocol usable by the first host device. The communication information usable by the first host device is stored in a portable device operatively containing the third NFC device. The third NFC device is momentarily placed in close proximity with the second NFC device. The stored communication information of the first host device is transferred from the portable device to a second host device operatively containing the second NFC device.

Abstract: A system includes a fingerprint sensor and an auxiliary processor. The auxiliary processor is operable to arm the fingerprint sensor prior to the auxiliary processor entering a low power or sleep mode. The fingerprint sensor can detect a finger proximately located with the fingerprint sensor, capture and store fingerprint data from the finger, perform at least one pre-processing step after capturing the fingerprint data from the finger while the auxiliary processor is in the low power or sleep mode, and after the at least one pre-processing step and upon receiving a request from the auxiliary processor for the finger print data deliver the fingerprint data to the auxiliary processor. The auxiliary processor can compare the fingerprint data to reference data and determine whether the fingerprint data substantially matches the reference data.

Abstract: The present invention relates to improving the privacy of biometric information used in biometric authentication of identity by retaining all biometric information corresponding to a given user, and conducting all transactions related thereto (i.e., the actual authentication process) on a client (i.e., user) side of the system, thereby maximizing the user's control over biometric information corresponding to himself and preventing the storage of biometric templates on third-party servers outside of the control of the concerned individual. In a particular example of the present invention, security for the biometric information is further enhanced by encrypting the biometric template (used as a comparison reference during authentication, as is known) stored on the client side and completely destroying an original unencrypted version of the template. Also specified is secure storage of encryption keys for encrypting biometric data at the client.

Abstract: Apparatus for identifying a person who wishes to receive a computer file, or to input computer information, where identifying information for each of a plurality of registered individuals is stored in a database, calls for capturing images of an individual requesting to receive or alter computer information, and determining whether this individual is the same as one of the registered individuals whose identifying information is stored in the database. The stored identifying information includes both an alphanumeric identifier and images of a unique, visually observable biologic identifier on a body portion of each registered indvidual. The specificity of the identification process is enhanced by storing registered examples of altered biological information in the database, by causing the computer source to induce an alteration in a biologic indentifier of a requesting person at the time of the request, and by comparing the altered requesting person information to stored information.

Abstract: A method, electronic apparatus and computer program product for performing authentication operation is disclosed. An authentication request is received from user of computerized resource. The request comprises user identifier identifying user. The authenticity of user is verified based on user identifier. An access session is established in which user can access resource in response to successfully verifying user. An electronic input signal is received from electronic input device during session. The device is configured to take a biometric measurement from the user. Biometric data is derived from signal. A comparison is performed between biometric data and expected biometric data. An authentication result is generated based on comparison between biometric data and expected biometric data, wherein result can be used for further authentication of user during session.

Abstract: A method of authorizing a user at a location is disclosed. A user data input device is used for receiving of user information. In dependence upon stored policy data, a location of the workstation and other characteristics thereof, an authorization method for the user is determined. In the authorization method, the user is first identified with the security server and then optionally authorized thereby. The stored policy data results in different determined methods for different authorization procedures based upon the user data and the characteristic of the user data input device and the workstation.

Abstract: Methods and systems are presented for securing network access. One method includes operations for granting a user access to remote computer resources after authenticating a login request from the user sent from a secured computer device, and for receiving a network access request from a network access device to allow the user access through the network access device. A network access granted message is sent to the network access device when the user currently has been granted access to the remote computer resources, where the secured computer device performs periodic authentication operations to validate an identification of the user based on biometric data taken of the user. Further, the method includes operations for receiving notification from the secured computer device that one of the authentication operations has failed, and for sending a network access denied for the user to the network access device in response to the notification.

Abstract: A portable computer system contained within a housing that comprises an electronic muscle material for performing a plurality of functions. The electronic muscle can be used to replace buttons or keys used in many PDAs. The movement of the electronic muscle material can charge the battery. When handled, the electronic muscle material can further detect the left- or right-handedness of the user and, based on the handedness, can generate function buttons or other alterations to accommodate the user's hand preference and finger placement. The electronic muscle can change shape to accommodate the user's hand for comfort and, further, as a security function to identify and authorize the user. Additionally, the electronic muscle material in the housing can be caused to vibrate at given frequencies so that it can generate an alarm and can function as a speaker or a dynamically directional microphone.

Abstract: Embodiments are disclosed that relate to persistently identifying a user interacting with a computing device. For example, one disclosed embodiment provides a method comprising receiving biometric data regarding the user, determining a determined identity of the user based on the biometric data, outputting a notification of the determined identity of the user, and providing a mechanism to receive feedback regarding a correctness of the determined identity of from the user.

Abstract: A tool for determining whether to grant a current person access to a protected resource. A computer receives a plurality of touches performed by a current person on a touch screen. Each touch in the plurality of touches includes a location of the touch on the touch screen and a surface area measurement of the touch screen impacted by the current person. The computer determines whether each touch in the plurality of touches received matches a predetermined touch performed by a person authorized to access the protected resource. If each touch in the set of touches received matches a stored touch performed by a person authorized to access the protected resource the current person will be granted access to the protected resource.

Abstract: An enhanced vehicle key fob includes a controller that is coupled to a power source, an antenna, and an accelerometer that measures the acceleration of the enhanced vehicle key fob and outputs the measurement to the controller, wherein the enhanced vehicle key fob controls a vehicle function of a vehicle using the output of the accelerometer.

Abstract: A method, apparatus and computer-readable medium for handling incoming calls destined for a called party. The method comprises detecting arrival of an incoming call destined for the called party and attempting to reach the called party by causing a communication device associated with the called party to emit a voice message soliciting a spoken call handling command from the called party. This allows the called party not only to recognize the calling party, but also to decide whether to accept, reject or forward the incoming call without having to physically manipulate the communication device. The network-based example of implementation is compatible with many existing communication devices and has the ability to query the calling party for identification information, whereas the communication device-based example of implementation is compatible with many existing network architectures, and does not require the called party to subscribe to any particular network service.

Abstract: A biometric authentication apparatus is provided, the apparatus including: a comparator that performs authentication of the user by comparing biological information read from a user with registered biological information registered in a storage in advance; a high accuracy comparator that compares the biological information with the registered biological information with a higher accuracy instead of comparison using the comparator when the user is not authenticated by the comparator; and a comparison result storage that records a comparison result obtained by the high accuracy comparator in the storage.

Abstract: The present invention relates to a method, computer program product, and system for preventing an inadvertent configuration of an electrical device provided with an infrared interface (30). The method, computer program product, and system include activation of one or more infrared buttons (31, 32, 33, or 34) provided on the infrared interface (30) in order to configure the electrical device. The method, computer program product, and system include a display (40) that indicates an infrared button sequence), wherein said button sequence is entered before the configuration occurs and includes activation of at least a first infrared button (31, 32, 33, or 34) and at least a second infrared button (31, 32, 33, or 34).

Abstract: Embodiments are directed towards authenticating users using biometric devices. The biometric device may be arranged to capture one or more biometric feature of a user that may be wearing the biometric device such as biometric features that correspond to an electrocardiogram of the user. The user of the biometric device may be authenticated based on one or more biometric features, or a combination thereof. Authenticating the user of the biometric device, may include communicating information that includes biometric features to an authorized authentication device (AAD). When the user is authenticated, the biometric device may be preauthorized for the user. When the preauthorized biometric device senses at least one access point, an authorization signal may be provided to the access point. If the preauthorized biometric device is removed from the user, the biometric device is deauthorized, disabling access to access points by the user.

Abstract: Systems and methods which provide identification of a user in combination with mutual authentication between a user and identification host are shown. Embodiments further provide mutual authentication between the identification host and a resource for which access is controlled, thereby providing three-party authentication (e.g., user, identification host, resource). Although utilizing biometric data for user identification, embodiments store such biometric information within devices which remain in the control of users. Protocols implemented according to embodiments facilitate a decentralized approach to user identification and authentication to allow a user to interact with any of a number of identification hosts for user identification and authorization. Auditing and tracing of user identification and authentication and/or resource access is provided according to embodiments.

Abstract: A parking management system including a server, a plurality of mobile parking management devices mounted in cars, an plurality of parking area parking control devices mounted in a parking areas, and a plurality of portable parking control devices used by parking attendants, all communicating via one or more wireless networks. Upon request, the server provides a mobile parking management device with information pertaining to parking availability and to commercial establishments offering parking payment refunds. Upon request a commercial establishments sends a parking payment refund to the server. Upon request the server bills the account associated with the mobile parking management device according to the parking fee and period of parking.

Abstract: An information processing device includes a collecting unit which collects user's biological information. The information processing device includes a determining unit which determines an emotion of the user by using the biological information collected by the collecting unit. The information processing device includes an output unit which outputs in association with information representing the user and the emotion of the user determined by the determining unit to terminal devices which are used by other users.

Abstract: An information processing device includes a collecting unit that collects biological information of a first user and a second user. The information processing device includes a specifying unit that specifies an emotion of the first user toward the second user and an emotion of the second user toward the first user using the biological information acquired by the collecting unit. The information processing device includes a determining unit that determines whether or not to provide information on the second user to the first user based on respective emotions specified by the specifying unit.

Abstract: A mobile identification transmitter for activating a security system of a motor vehicle, particularly an access and/or ignition control system, having a housing in which electronics and a communication means are arranged, wherein the communication means can be brought into communication with a communication means of the security system on board the motor vehicle, a payment element is removably fastened in a receptacle of the housing, where a closure is separately arranged on the housing, the identification transmitter can be set in a normal state and in a secure state, in the normal state and in the secure state communication can be made with the security system, in the secure state the payment element is removed from the receptacle, and the closure seals and protects the receptacle.

Abstract: The disclosed embodiments provide a system that authenticates a user. During operation, the system obtains a sequence of facial gestures from the user. Next, the system authenticates the user based on a likeness of the sequence to a set of baseline representations of the facial gestures.

Abstract: A biometrically authenticated access control in which a wireless authentication signal is provided from a primary instrumentality of access, only after a dual-stage biometric verification of the user's identity is performed. In one embodiment, an accessing device includes memory for storing a device identification code and an authentication code, along with first and second biometric templates corresponding to biometric samples from a user. In another embodiment, an accessing device includes memory for storing a device identification code and more than one authentication code, for separate users, along with first and second biometric templates corresponding to biometric samples from multiple users. In order to gain access to a secured resource, a user undergoes first and second biometric sampling to generate biometric data to be compared with the first and second biometric templates.

Abstract: Biometrics identification module and personal wearable electronics network based authentication and transaction processing are disclosed. According to one embodiment, a method for biometric authentication may include (1) a biometric identification device connecting to a plurality of sensing devices, each of the plurality of sensing devices receiving a user characteristic from a user; (2) the biometric identification device receiving the user characteristics from the sensing devices; (3) the biometric identification device communicating the received user characteristics to a server; (4) the biometric identification device receiving a biometric profile for the user; and (5) the biometric identification device storing the biometric profile.

Abstract: A biometric access control system, and a weapon rack. The system may include an identification station including a biometric reader, an equipment identification reader, and a user interface, and an equipment structure in communication with the identification station and including a plurality of locks corresponding to a plurality of storage locations. The weapon rack may include a plurality of storage locations individually storing a plurality of weapons, and including a plurality of weapon stock receiving and supporting pockets to secure the weapons, a plurality of clamps corresponding to the plurality of storage locations to additionally secure the weapons, and a plurality of sensors aligned with the plurality of clamps to indicate presence or absence of the plurality of weapons.

Abstract: For user authentication, finger touch information from a user is accepted via a touch sensitive element, the finger touch information including at least a time series of finger touch samples that define a trace of the user's signature, and each of the finger touch samples including centroid coordinates and non-centroid information, the non-centroid information including at least one of (A) a shape of the finger touch sample, (B) a size of the finger touch sample, (C) an orientation of the finger touch sample, and (D) characteristics of a multi-touch finger touch sample. A similarity of such finger touch samples with previously entered and stored finger touch samples is determined and compared with a threshold for purposes of user authentication.

Abstract: An apparatus for managing biometric information for a vehicle is provided. The apparatus comprising a first key, a second key, and a vehicle controller. The first and the second key each for transmitting an access signal to the vehicle. The vehicle controller for receiving the access signal from one of the first key and the second key to enable operation of the vehicle. The vehicle controller being operably coupled to a biometric database for storing first data indicative of an administrator and second data indicative of at least one of a member and biometric information for the member. The vehicle controller being configured to receive the access signal from each of the first key and the second key and to determine that a user is the administrator in response to receiving the access signal from each of the first key and the second key.

Abstract: A method and system for the authentication of a user at a point of entry. Biometric data can be provided from a remote server after preliminary identification of the user based on identification information wirelessly provided from a portable electronic device carried with the user when the user is located near a point of entry, such as, for example, a border crossing or access point to a secure facility. Such a method and system can incorporate RFID tags, cellular wireless communications data and links, and/or Bluetooth communications link, etc.

Abstract: A tracking apparatus includes a face detection unit, a face corresponding region detection unit, a face tracking unit, a peripheral part tracking unit, a tracking switch unit. The face tracking unit tracks the face in accordance with a result detected by the face detection unit or a result detected by the face corresponding region detection unit. The peripheral part tracking unit tracks, as a part other than the face, a part of the subject having a preset positional relationship with the face. The tracking switch unit switches to the tracking of a part other than the face by the peripheral part tracking unit when the face is not tracked by the face tracking unit.

Abstract: A weapons container for releasing a defense weapon includes a cabinet, a cabinet door, and an interior securing the defense weapon. Upon detection of a fingerprint input by a biometric sensor, a surveillance camera captures video and an audio intercom provides communication with a central command center. A recording system saves the video and audio to a storage database. A delay release lock secures the defense weapon for an amount of time and releases the defense weapon depending on a signal from the central command center. A communications system is connected over a network to the central command center, a local authority, and an emergency responder. The communications system notifies the local authority or the emergency responder upon detection of the fingerprint input and streams the video and audio to the central command center and at least one of the local authority and the emergency responder over the Internet.

Abstract: A method of authenticating or declining to authenticate an asserted identity of a candidate-person. In an enrollment phase, a reference PQRST heart action graph is provided or constructed from information obtained from a plurality of graphs that resemble each other for a known reference person, using a first graph comparison metric. In a verification phase, a candidate-person asserts his/her identity and presents a plurality of his/her heart cycle graphs. If a sufficient number of the candidate-person's measured graphs resemble each other, a representative composite graph is constructed from the candidate-person's graphs and is compared with a composite reference graph, for the person whose identity is asserted, using a second graph comparison metric. When the second metric value lies in a selected range, the candidate-person's assertion of identity is accepted.

Abstract: Systems, apparatus, and methods for continuously authenticating individuals are provided. A continuous authentication system receives first biometric authentication information from an individual. The system compares the first biometric authentication information to stored first biometric information to identify the individual and links the identified individual to a device for obtaining second biometric authentication information. The device for obtaining second biometric authentication information continuously receives second biometric authentication information. The continuous authentication system compares the received second biometric authentication information to stored second biometric information that corresponds to the individual to determine if the received second biometric authentication information corresponds to the individual.

Abstract: Systems for performing on-line searching, and particularly, to searching with face recognition and social networking profiles. In one example, one or more systems may be provided with regard to searching with face recognition and social networking profiles.

Abstract: Enhanced biometric authentication is achieved by combining a user's inherent biometric data with the user's knowledge of a secret glyph. In one embodiment, a touchpad is provided on which the user may use a finger to indicate a plurality of strokes that form a distinct glyph. Image stabilization may be used to extract a readable fingerprint from the strokes, and the glyph and finger print are matched to a stored profile. The glyph may be one or more alphanumeric characters that represent a password. The user can then enter the password on the touch pad with his finger. If the fingerprint and password both match, the user is authenticated.