摘要 |
Privacy enhanced method for a customer to communicate personal data to an organization he has access to comprising the steps of: <UL ST="-"> <LI>receiving a request for personal information from a requesting entity belonging to said organization, such a request being presented into the form of an assertion admitting a response of the type "true" or "false"; <LI>providing to the requesting entity the response of such an assertion, such a response being transferred with the control of the customer. </UL> In a preferred embodiment a customer presents a smart-card containing personal information to a card terminal which enquires as to whether the customer is at least 21 years old. The enquiry may be displayed. The cardholder then approves the assertion by entering a correct PIN to the card. A processor on the card decrypts the relevant personal file on the card and compares it to the request, to return either a true or false response. |