US 11,675,884 B2
Authentication of a person using a virtual identity card
Jouri De Vos, Haarlem (NL); Joost Van Prooijen, Haarlem (NL); Vincent Bouatou, Issy-les Moulineaux (FR); and Cyril Wattebled, Issy-les Moulineaux (FR)
Assigned to IDEMIA THE NETHERLANDS B.V., Haarlem (NL)
Appl. No. 16/755,336
Filed by IDEMIA THE NETHERLANDS B.V., Haarlem (NL)
PCT Filed Oct. 10, 2018, PCT No. PCT/NL2018/050669
§ 371(c)(1), (2) Date Apr. 10, 2020,
PCT Pub. No. WO2019/074366, PCT Pub. Date Apr. 18, 2019.
Claims priority of application No. 2019698 (NL), filed on Oct. 10, 2017.
Prior Publication US 2020/0311237 A1, Oct. 1, 2020
Int. Cl. G06F 21/00 (2013.01); G06F 21/32 (2013.01); H04L 9/32 (2006.01); H04L 9/40 (2022.01); G06V 40/70 (2022.01)
CPC G06F 21/32 (2013.01) [G06V 40/70 (2022.01); H04L 9/3231 (2013.01); H04L 9/3297 (2013.01); H04L 63/0861 (2013.01)] 22 Claims
OG exemplary drawing
 
1. A method, implemented with an inspection terminal equipped with a digital camera, of authenticating a user of a mobile user terminal that is equipped with a display, the method comprising:
i) capturing, with the digital camera, information presented on the display of the user terminal, the information including each of:
a human-recognizable visual representation of biometric data of the user,
a document identifier that identifies an identity document that has been issued to the user,
a user profile specifying a subset of personalization data derived from the identity document issued to the user, to be provided to the inspection terminal, and
a one-time stamp;
ii) calculating a biometric feature descriptor from the captured human-recognizable visual representation of the biometric data of the user, where the human-recognizable visual representation of biometric data of the user corresponds to an image of the user stored in said identity document of the user;
iii) transmitting the captured document identifier, biometric feature descriptor, user profile, and the one-time stamp to an inspection server, the inspection server including or in communication with an Identity Document Server (IDS) which stores, for each identity document of a plurality of identity documents issued to different persons, personalization data about the person to which the identity document has been issued and an associated document identifier uniquely identifying the respective identity document, the inspection server configured to return a signal “authentication approved” together with a subset of the personalization data defined by the user profile, when
i) the transmitted biometric feature descriptor corresponds to a biometric feature descriptor of biometric data stored in the IDS for an identity document for which the associated document identifier corresponds to the transmitted document identifier, and
ii) the one-time stamp has not been received earlier for the transmitted document identifier; and
iv) at the inspection terminal, waiting for the “authentication approved” signal, and upon receipt of said “authentication approved” signal, generating at least one of an audible and a visual signal indicating that authentication of the user has been approved.