| 摘要 |
A method of providing verifiable identification credentials for a subject at a credential generation station (CGS) includes acquiring biometric information from the subject, incorporating the biometric information into a message, cryptographically processing the message to generate a cryptographic identifier that will serve to authenticate the message, and storing the message and the cryptographic identifier for subsequent authentication. The message may include additional information relating to one or more of the specific CGS, the subject, or the time of creating the message. A method of verifying the identification of a subject at a credential verification station (CVS) includes processing a cryptographic identifier and a message that includes previously acquired biometric information, where the cryptographic identifier and the message nominally correspond to the subject, and determining whether the cryptographic identifier authenticates the message. At least if the message is cryptographically authenticated, biometric information is acquired from the subject, and it is determined whether the newly acquired biometric information satisfies a proximity relationship to the biometric information from the message. <IMAGE>
|
