| CPC H04L 63/0861 (2013.01) [H04L 9/3242 (2013.01); H04L 9/3247 (2013.01); H04L 63/061 (2013.01); H04L 63/083 (2013.01); H04L 63/0807 (2013.01)] | 20 Claims |
|
1. A system for verifying a biometric electronic signature authenticated key exchange (“BESAKE”) token comprising:
a storage location comprising a plurality of biometric reference templates;
a second storage location comprising a secret knowledge factor;
an authentication computing system, comprising a processor and instructions stored in non-transitory machine-readable media, the instructions configured to cause the authentication computing system to:
receive a signing party identifier and the BESAKE token from a signing party, the BESAKE token comprising a biometric sample encrypted using an encryption key;
retrieve a stored knowledge factor associated with the signing party identifier from the secret knowledge factor of the second storage location;
generate a decryption key using the stored knowledge factor as an input to a password authenticated key exchange protocol;
decrypt the encrypted biometric sample from the BESAKE token using the decryption key to retrieve the biometric sample;
match the biometric sample with a biometric reference template associated with the signing party identifier;
transmit to a biometric service provider computing system, a match request, the match request including the signing party identifier and the biometric sample; and
determine a signing party identity via a binary match value, the binary match value relating to a result, determined by the biometric service provider computing system, of matching the biometric sample with the biometric reference template associated with the signing party identifier.
|