Search
Patexia Research
Patent No. US 08285991
Issue Date Oct 9, 2012
Claim this patent
PDF Unavailable

Patent 08285991 - Electronically signing a document > Claims

  • 1. For an electronic signature device comprising a processor, a memory, a user input device including a first biometric input device, and a device interface, all communicatively connected by at least one bus, a method of personalizing the electronic signature device to a user, comprising:nreceiving a digitized biometric signature of the user via the first biometric input device;generating a cryptographic key according to a predetermined cryptographic scheme;generating a biometric electronic template based on said digitized biometric signature; andstoring said cryptographic key and said biometric electronic template in the memory;wherein generating cryptographic keys includesgenerating a prime parameter, a sub-prime parameter, and a base parameter;generating a signing private key;generating a signing public key based on said prime, sub-prime, and base parameters; andgenerating a user public key based on said signing private key and said prime and base parameters; andfurther comprising storing said prime, sub-prime, and base parameters, and said signing private and public keys in the memory.
    • 2. The method of claim 1, wherein generating cryptographic keys includes generating keys according to a symmetric constructive key management scheme.
      • 3. The method of claim 2, wherein the symmetric constructive key management scheme utilizes credentials and only a random number key spin.
    • 4. The method of claim 1, wherein the user interface further comprises a password input device, and said method further comprises:nreceiving a user password via the password input device;generating a password encryption key based on the user password;encrypting a known value with the password encryption key to produce an encrypted output; andstoring the encrypted known value in the memory.
      • 5. The method of claim 4, wherein said known value is said biometrics electronic template.
    • 6. The method of claim 1, wherein receiving said digitized biometric signature is repeated at least once.
    • 7. The method of claim 1, wherein receiving said digitized biometric signature and generating said biometrics electronic template are repeated at least once.
    • 8. The method of claim 1, wherein said biometric electronic template is generated based on a mathematic transformation of said digitized biometric signature.
      • 9. The method of claim 8, wherein the mathematical transformation is a Fourier transformation.
    • 10. The method of claim 1, wherein the electronic signature device is communicatively connected to a certificate authority via the device interface, and said method further comprises:nsending a certificate request to the certificate authority;receiving a certificate package from the certificate authority; andstoring said certificate package in the memory.
      • 11. The method of claim 10, wherein said certificate package comprises a digital certificate.
      • 12. The method of claim 10, wherein said certificate package comprises a digital certificate and a root value.
    • 13. The method of claim 1, wherein the device interface is a card interface.
    • 14. The method of claim 1, wherein the electronic signature device further comprises a power source that is at least one of a battery and the computer interface.
    • 15. The method of claim 1, wherein the first signature input device is integral with the electronic signature device.
    • 16. The method of claim 1, wherein the first signature input device is connected to the at least one bus through the device interface.
    • 17. The method of claim 1, wherein at least a portion of said user interface is integral with the electronic signature device.
    • 18. The method of claim 1, wherein at least a portion of said user interface is connected to the at least one bus through the device interface.
    • 19. The method of claim 1, further comprising printing a graphic indicium that is based at least in part on at least one of the digitized biometric user signature of the user, the cryptographic key, and the biometric electronic template.
      • 20. The method of claim 19, wherein the graphic indicium is a bar code.
  • 21. For an electronic signature device comprising a processor, a memory having a biometric electronic template stored therein, a user interface comprising a biometric signature input device, a device interface adapted to interface a computer, and at least one bus operably connected to the processor, the memory, the user interface, and the device interlace, a method of originating an electronically signed transaction, said method comprising:nverifying whether a user is permitted to originate the electronically signed transaction with the electronic biometric signature device, comprisingnreceiving a digitized biometric originator signature via the user interface, andcomparing said digitized biometric originator signature against the biometric electronic template to produce a first verification result;receiving a transaction package through one of the user interface and the device interface;combining said transaction package and one of said digitized biometric signature and a digitized biometric user signature extracted from the biometric electronic template to produce an originator biometric signature block;generating a cryptographic key;encrypting said originator biometric signature block with said cryptographic key to produce an encrypted biometric signature block;combining said encrypted biometric signature block and said cryptographic key to produce an electronically signed transaction; andif the user is verified, providing said electronically signed transaction via the device interface;wherein the memory further has a biometric electronic template, a prime parameter, a sub-prime parameter, and a base parameter, user public data comprising a user public key, and a user private key stored therein, wherein generating a cryptographic key includesgenerating an ephemeral private key based on the prime, subprime, and base parameters;generating an ephemeral public key based on said ephemeral private key and the prime and base parameters; andgenerating a shared encryption key based on said ephemeral public key, the user public key, and the prime parameter;wherein the cryptographic key is a shared encryption key; andwherein said ephemeral private key, the prime parameter, and at least a portion of the user public data are combined with said encrypted biometric signature block and said cryptographic key to produce the electronically signed transaction.
    • 22. The method of claim 21, wherein generating a cryptographic key includes generating a key according to a symmetric constructive key management scheme.
      • 23. The Method of claim 22, wherein the symmetric constructive key management scheme utilizes credentials and only a random number key split.
    • 24. The method of claim 21, wherein the user interface further comprises a password input device, the memory has further stored therein an encrypted known value, and verifying whether the user is permitted to originate the electronically signed transaction with the electronic signature device further comprisesnreceiving a user password via the password input device;generating a password encryption key based on the user password; anddecrypting the encrypted known value with said cryptographic key to produce a second verification result.
      • 25. The method of claim 24, wherein the encrypted known value is the biometrics electronic template.
    • 26. The method of claim 21, wherein receiving said digitized biometric originator signature is repeated at least once.
    • 27. The method of claim 21, wherein receiving said digitized biometric originator signature and comparing said digitized biometric originator signature against the biometric electronic template to produce the first verification result are repeated at least once.
    • 28. The method of claim 21, wherein comparing said digitized biometric originator signature against the biometric electronic template comprises generating a temporary template based on said digitized biometric originator signature, and comparing said temporary template to the biometric electronic template.
      • 29. The method of claim 28, wherein said temporary template is generated based on a mathematic transformation of said digitized biometric originator signature.
        • 30. The method of claim 29, wherein the mathematical transformation is a Fourier transformation.
    • 31. The method of claim 21, wherein comparing said digitized biometric originator signature against the biometric electronic template comprises generating a temporary biometric signature based on the biometric electronic template, and comparing said temporary biometric signature to said digitized biometric originator signature.
      • 32. The method of claim 31, wherein said temporary biometric signature is generated based on a mathematic transformation of said digitized biometric originator signature.
        • 33. The method of claim 32, wherein the mathematical transformation is a Fourier transformation.
    • 34. The method of claim 21, further comprising printing a graphic indicium that is based at least in part on at least one of the digitized biometric user signature of the user, the cryptographic key, and the biometric electronic template.
      • 35. The method of claim 34, wherein the graphic indicium is a bar code.
Menu