Intelligent peripheral device and system for the authentication and verification of individuals and/or documents through a secure multifunctional authentication service with data storage capability

摘要

A device possessing a secure multifunctional authentication service integrated with data storage capability, wherein the device is a multifunctional intelligent peripheral or accessory device, which, upon implementation into a system, is disposed to control a set of transactions that the system is designated to perform by the device, in conjunction with a data transfer medium which is under the control of the device.

主权项

1. A method to transfer and control a set of transactions designated to be performed by a data transfer medium in a system to an intelligent peripheral device comprising the steps of:
authenticating the intelligent peripheral device and the data transfer medium by a secure information exchange device, wherein the step of authenticating further comprises:
reading a plurality of authentication data of the intelligent peripheral device by the secure information exchange device;reading a plurality of authentication data of the data transfer medium by the secure information exchange device;comparing the digital certificate of the intelligent peripheral device by the secure information exchange device against an external certificate authority root certificate;comparing the digital certificate of the data transfer medium by the secure information exchange device against an external certificate authority root certificate;verifying the digital certificate of the intelligent peripheral device by the secure information exchange device;verifying the digital certificate of the data transfer medium by the secure information exchange device;searching a device database by the secure information exchange device for the intelligent peripheral device and the data transfer medium;enrolling the intelligent peripheral device and the data transfer medium in the device database;approving the authentication of the intelligent peripheral device and the data transfer medium once they are enrolled in the device database;creating a trusted and encrypted environment between the intelligent peripheral device and the data transfer medium for the transfer of information through a pairing of the intelligent peripheral device to the data transfer medium by the secure information exchange device, wherein the step of pairing further comprises:
capturing a fingerprint of an operator of the intelligent peripheral device to authenticate the operator by the secure information exchange device;transmitting a digital certificate of the secure information exchange device to the intelligent peripheral device and data transfer medium;authenticating the digital certificate of the secure information exchange against the root certificate of the external certificate authority by the intelligent peripheral device and data transfer medium;verifying the secure information exchange device by the intelligent peripheral device and data transfer medium;generating concurrently a key pair comprising a public key and a private key by the intelligent peripheral device and a key pair comprising a public key and a private key by the data transfer medium;transmitting the public key of the device and the data transfer medium to the secure information exchange device;transmitting a data communication address from the device and the data transfer medium to the secure information exchange device;transmitting the public keys of the device and the data transfer medium by the secure information exchange device to an external certificate authority device;receiving a signed certificate by the secure information exchange device from the external certificate authority;signing each certificate by the secure exchange information device with the private keys of the device and the data transfer medium;generating a random string by the secure information exchange device;utilizing the random string generated by the secure information exchange device as a password by the intelligent peripheral device and the data transfer medium;uploading the intelligent peripheral device certificate, the data transfer medium certificate, the data transfer medium address and the password to the intelligent peripheral device;storing the pairing of the intelligent peripheral device and the data transfer medium in a database on the secure information exchange device following a successful pairing;transferring control of the set of transactions designated to be performed by the data transfer medium in the system to the intelligent peripheral device following successful pairing of the intelligent peripheral device and the data transfer medium.