| CPC G06Q 20/40145 (2013.01) [G06Q 20/34 (2013.01); G06Q 20/382 (2013.01); G06V 40/50 (2022.01); G06V 40/53 (2022.01)] | 14 Claims |
|
1. A method, comprising:
receiving, by a device, a biometric from a user to generate first biometric data;
after the first biometric data is generated, sending, by the device, a request for second biometric data from a card, wherein the request includes a type of the first biometric data generated by the device;
randomly selecting and sending to the device, by the card, a subset of second biometric data, wherein the second biometric data comprises data that remains in the card after elimination of biometric data which is stored in the card but does not fulfill the type of the first biometric data in the request;
comparing the randomly selected subset of the second biometric data with the first biometric data;
when the randomly selected subset of the second biometric data matches the first biometric data, authorizing a transaction requested by a user using the card; and
when the randomly selected subset of the second biometric data does not match the first biometric data, denying the transaction request by the user using the card and locking the card,
wherein comparing the randomly selected subset of the second biometric data results in determining that an identity of the user cannot be derived from the randomly selected subset of the second biometric data, and
wherein the second biometric data encoded on the card comprises respective biometric datasets for each of a plurality of biometrics of the user.
|