SYSTEM AND METHOD FOR AUTHORIZING ACCESS TO ACCESS-CONTROLLED ENVIRONMENTS

摘要

Systems and methods are provided for authorizing a user to access an access-controlled environment. The system includes a system server platform that communicates with fixed PC's, servers and mobile devices (e.g., smartphones) operated by users. The systems and methods described herein enable a series of operations whereby a user attempting to access an access-controlled environment is prompted to biometrically authenticate using the user's preregistered mobile device. Biometric authentication can include capturing images of the user's biometric features, encoding the features as a biometric identifier, comparing the biometric identifier to a previously generated biometric identifier and determining liveness. In addition, the authentication system can further authorize the user and electronically grant access to the access-controlled environment. In this manner the secure authentication system can, based on biometric authentication, authorize a user's access to devices, online services, physical locations or any networked environment that require user authorization.

主权项

1. A method for authorizing access to an access-controlled environment, the method comprising:
receiving, by a computing device having a storage medium having instructions stored therein and a processor configured by executing the instructions therein, access-control information that identifies the access-controlled environment; accessing, by the computing device, at least one database that includes user profiles that include information to identify respective users, to identify respective mobile devices, and to identify respective transaction accounts that are associated with respective access-controlled environments; receiving, by the computing device from a mobile device over a network, a transaction request including:
a user identifier that identifies a user, anda mobile device identifier that identifies the mobile device,wherein the transaction request provides confirmation that the mobile device has biometrically authenticated the user; processing, by the computing device using the at least one database, the transaction request to authorize the user to access the access-controlled environment by determining:
that the user identifier is associated with at least one user profile stored in the at least one database,that the mobile device identifier is associated with the at least one user profile, andthat the at least one user profile identifies a transaction account associated with the access-controlled environment; generating, by the computing device, an authorization notification that facilitates the authorized user to access to the access-controlled environment; and transmitting, by the computing device to at least one remote computing device over a network, the authorization notification.