| CPC G06F 21/57 (2013.01) [G06F 21/31 (2013.01); G06F 21/316 (2013.01); G06F 21/32 (2013.01); G06F 21/445 (2013.01); G06F 21/45 (2013.01); G06F 21/53 (2013.01); G06F 21/575 (2013.01); G06F 21/6218 (2013.01); G06F 21/6245 (2013.01); G06F 21/64 (2013.01); H04L 63/0861 (2013.01); H04L 63/20 (2013.01); G06F 2221/2129 (2013.01); G06F 2221/2149 (2013.01)] | 32 Claims |
|
1. A secure identity device arrangement, such secure identity device arrangement enabling reliable secure human identification, the secure identity device arrangement comprising:
security hardened identity device arrangement packaging;
a sensor set arrangement including at least one sensor, for acquiring biometric identification information, configured to detect electromagnetic radiation and/or sound, the sensor set arrangement configured for at least in part establishing, and subsequently authenticating, a human subject's biometric identification information;
a biometric identification liveness testing arrangement including at least one processor and associated memory and configured to perform biometric identification physical presence liveness testing involving time stamped, correlated emitter and sensor information, such testing involving identification of (1) timing discontinuity, (2) timing overhead delay, and/or (3) other sensed signal inconsistencies with emitted signal information,
wherein the biometric identification liveness testing arrangement comprises: (a) an emitter arrangement including an emitter and configured to provide electromagnetic radiation and/or sound, (b) such emitter arrangement's emission control arrangement including at least one processor and associated memory, where such emission control arrangement controls such emitter arrangement's provision of electromagnetic radiation and/or sound to produce at least in part unpredictable emitter output for painting at least a portion of such human subject, (c) a sensor set arrangement, for acquiring information for timing analysis, configured at least in part for receiving information corresponding to such emitter radiation, and (d) a secure clock arrangement including a trusted clock and configured for time stamping emitter emission timing information and/or sensor receiving timing information;
at least one cryptographic arrangement including at least one processor and associated memory and including a protected repository, located within such security hardened identity device arrangement packaging, at least in part configured for enabling secure communication with a remote administrative and/or cloud service identity arrangement including a server, such secure communication enabling the performance of secure human identification information verification similarity matching using such human subject's registered and securely maintained identification information;
a processing device arrangement located within such security hardened identity device arrangement packaging, comprising a secure operatively isolated processor, at least in part configured for processing such human subject's biometric identification information,
wherein such processing device arrangement is contained in a parent computing device arrangement including at least one processor and associated memory, such processing device arrangement configured to:
operate one or more authenticated and authorized load modules configured for performing identity operations using one or more protected processing environments to enable trusted identity operations, at least one of any such protected processing environments isolated from external processes, and
isolate operating resource sets from corruption, misdirection, subversion, observation, and/or other forms of interference using external resource sets; and at least one memory component configured for securely storing at least a portion of such human subject's biometric identification information.
|