Security method using biometric and non-biometric data

摘要

A data access control method and system involves a trusted authority 40 reading identity data from a memory device 50 presented by an individual 70A. This identity data comprises both biometric data 51 of a specific individual 70 and additional identity data 52 concerning the same individual. The trusted authority 40 uses the biometric data 51 as a biometric reference for comparison with biometric characteristics of the individual 70A presenting the memory card 50 in order to determine 44 whether the latter is the individual 70 represented by the biometric data. The trusted authority 40 uses the additional identity data 52 or matching data, together with private data p,q of the trusted authority 40 to generate a decryption key KDEC. This decryption key is apt to decrypt data encrypted using both an encryption key string KENC comprising the additional identity data 52 of the specific individual 70 and public data N of the trusted authority.