| CPC H04L 9/3247 (2013.01) [H04L 9/3231 (2013.01); H04L 9/3236 (2013.01); H04L 9/3297 (2013.01); H04L 2209/72 (2013.01); H04L 2463/121 (2013.01)] | 19 Claims |
|
1. A method, comprising:
receiving a signcrypted biometric electronic signature token (“SBEST”), the SBEST comprising a record and a first biometric sample from a signcrypting party and a time stamp token generated by a third party,
wherein the SBEST is generated by using the record, the first biometric sample, and the time stamp token as inputs to a signcryption algorithm, and
wherein each of the record and the first biometric sample are signcrypted by a public/private key pair associated with the signcrypting party and a public key associated with a recipient;
receiving a second biometric sample from a user;
generating a biometric reference template based on a plurality of biometric samples comprising the second biometric sample;
unsigncrypting the record and the first biometric sample from the SBEST using an unsigncryption algorithm, the unsigncryption algorithm using each of the public key of the recipient, a private key of the recipient, and the public key of the signcrypting party;
comparing the first biometric sample to the generated biometric reference template;
responsive to the first biometric sample matching the generated biometric reference template, authenticating that the user is the signcrypting party;
generating a first hash of the first biometric sample and the record;
retrieving a time stamp of the time stamp token, the time stamp associated with a time the SBEST was generated;
in response to generating the first hash of the first biometric sample and the record and retrieving the time stamp, calculating a second hash of the first hash and the time stamp; and
in response to the second hash of the first hash and the time stamp matching the hash of the time stamp token, authenticating the SBEST is fresh.
|