| 摘要 |
A trusted sensor (14) for authenticating biometric information used in an encryption system is provided. The trusted sensor (14) is disposed on at least one integrated circuit and comprises a microprocessor (34), and a data memory (36) coupled to the microprocessor (34). The data memory (36) is configured to hold a plurality of templates representing enrolled biometric information, a biometric public key and private key pair corresponding to each of the plurality of templates, and a manufacturer public key and private key pair. The trusted sensor (14) further comprises a functions section (32), also coupled to the microprocessor (34), which is configured to cause the microprocessor (34) to perform various functions. The functions section (32) includes a cryptographic library module (60), which stores one or more public key private key encryption functions and population functions for populating the biometric public key and private key pairs corresponding to each of the plurality of templates. The functions section (32) also includes a feature extraction and template matching module (58), which stores instructions for extracting features created with a biometric image capture device (24) coupled to the trusted sensor (14), and for populating the plurality of templates. Additional functions are also included in the functions section (32) for matching sensed biometric information communicated from the biometric image capture device (24) to the enrolled biometric information stored the data memory (36) and, based on the match, for selecting a particular biometric private key and private key pair that will be used in the encryption system. The functions section (32) also includes an authentication module (56), which stores instructions for certifying the trusted sensor (14) to a host computer by executing the one or more encryption functions stored in the cryptographic module (60) using the manufacturer private key and a host computer public key. |
