| 摘要 |
Personalized input/output (I/O) device as trusted credential source is described. According to one exemplary embodiment of the invention, a personalized I/O device used as trusted credential source is configured with a personalized certificate that includes a combination of the user and device information. One or more user credentials are signed with the private key associated with the personalized certificate and sent to an authenticator. An optional secure link based on personalized certificate provides additional security for transmitting the credentials either signed or unsigned. User credentials may include biometric measures (something the user is) such as user's voiceprint sample or fingerprint sample, and passwords (something the user knows). When the user credentials must be originated from the personalized I/O device (something the user has), all three factors of authentication can be included.
|
