	US 12,149,635 B2
	Method and apparatus of digital identity claims verification using NFC-enabled and HCE-enabled smart devices
Shyam Pratap Singh, Riyadh (SA); Arshad Ali Khan, Riyadh (SA); and Riad Souissi, Riyadh (SA)
Assigned to Elm Company, Riyadh (SA)
Filed by Elm Company, Riyadh (SA)
Filed on Aug. 15, 2022, as Appl. No. 17/888,050.
Claims priority of provisional application 63/295,354, filed on Dec. 30, 2021.
Prior Publication US 2023/0216693 A1, Jul. 6, 2023
Int. Cl. H04L 9/32 (2006.01); H04L 9/30 (2006.01)

CPC H04L 9/3249 (2013.01) [H04L 9/30 (2013.01); H04L 9/3234 (2013.01)]

10 Claims

1. A method for offline sharing and verifying identity claims among app enabled and Near Field Communication (NFC) enabled portable devices, comprising:

retrieving, by a first app installed and running on a first device that is held by an identity claim holder, a first set of identity claims that is pre-obtained and locally stored on the first device, wherein the first app is set to a claim holder mode, wherein the identity claim holder has onboarded with a backend system in an onboarding process of the identity claim holder with the backend system;

encoding and optimizing, by the first app, the first set of identity claims into a first payload, and emulating the first device as a Type 4 NFC Host Card Emulation (HCE) device;

moving, by an identity claim verifier, a second device enabled by a second app, to a distance less than 10 centimeter from the first device to allow the first device and the second device to establish an NFC communication, wherein the second device is a smartphone storing a public key of a claim issuer, and the second app is a smartphone-based app, wherein the second app is set to a claim verifier mode, wherein the public key of the claim issuer is previously retrieved from the backend system in an onboarding process of the identity claim verifier with the backend system, and wherein the public key of the claimer issuer is pre-assigned to the claim issuer by the backend system and stored in the backend system in an onboarding process of the claim issuer with the backend system;

sending, by the first device upon an establishment of the NFC communication, the first payload to the second device;

receiving and then decoding, by the second app, the first payload;

verifying, by the second app, the authenticity of the first set of identity claims that is included in first payload, by validating, by using the pre-stored public key of the claim issuer, a first digital signature included in the first payload, wherein the validating applies a Rivest-Shamir-Adleman (RSA) algorithm to validate the first digital signature by passing the pre-stored public key of the claim issuer, the first digital signature, and a checksum of the first set of identity claims created by using a hashing algorithm;

displaying, in the second app upon the authenticity of the first set of identity claims being verified, one or more identities and an image of the identity claim holder that are included in the first set of identity claims to the identity claim verifier.