System and method for controlling access to network services using biometric authentication

摘要

A system, apparatus, or method for controlling access to a network and to the associated network resources or services. The invention may be used to provide a user authentication or authorization process for a computer network, a telecommunications network, or other suitable system, apparatus, device, process, operation, etc. In some embodiments, the present invention uses a combination of device identification data (such as a device identifier or other form of token) and user-specific biometric data (such as a physical characteristic associated with the user or data generated as a result of a signal being altered by a physical characteristic of a user) to identify a user and permit the user to access the network or network resources or services.

主权项

1. An apparatus for providing a user with access to an access-controlled element, comprising:
an electronic processor programmed to execute a set of instructions; and a data storage device coupled to the processor and having the set of instructions stored therein, wherein when the set of instructions are executed by the processor, the apparatus provides the user with access by transmitting a request from an access management element for a device identifier via a polling operation to detect a proximity of the user; receiving data identifying a device in the possession of the user; based on the received data, verifying that the device is authorized to access the access-controlled element; and initiating a biometric authentication process to authenticate the user based on a biometric characteristic of a user-dependent frequency response of a pinna of an ear of the user, wherein the biometric authentication process further comprises providing over a secure encrypted channel of a wireless communication link transmitted by a wireless communication element included in an access management element, an audio recording of low amplitude colored noise based on randomly-generated filter coefficients as input data for the biometric authentication process; changing the audio recording from one authentication attempt to another authentication attempt; receiving over the secure encrypted channel of the wireless communication link transmitted by another wireless communication element included in the device, output data for a biometric transducer in response to the input data, wherein the biometric transducer comprises a microphone facing the pinna and the microphone is included in the device; comparing the output data to a set of expected output data, the output data including data representing an echo signal derived from echo cancellation; and providing the user with access if the output data differs from the set of expected output data by less than a threshold amount.