| 摘要 |
A mobile biometric device and server are disclosed that permit biometric validation of a person that has initialized the biotoken and has communicated one or more codes generated by the bioktoken to a server over wither a secure or unsecure communications channel. The biometric device, or biotoken, includes a means for capturing biometric information, for hashing some portion of the biometric information, and for transmitting or displaying a code that is calculated using a clock value, a random number, a secure hash function and a counter. The server includes functions necessary for initializing the biometric device, for storing key values responsive to initialization, and for validating codes that are provided responsive to future use of the biometric device following a request for validation. Additional functions and features are also provided and disclosed for creating a secure, auditable and private application space on a device or machine, such as a computer or cell phone, following validation. |
