Systems and methods for biometric authentication of transactions

Inventors

Hoyos, Hector • Streit, Scott

Assignees

Veridium IP Ltd

Abstract

Systems and methods are provided for authorizing a user in connection with a transaction at a transaction terminal. The systems and methods described herein enable a series of operations whereby a user using a mobile device can capture a code that uniquely identifies a transaction terminal. In addition the mobile device can also capture a user's biometrics, generate a biometric identifier and biometrically verify the user's identity by comparing the biometric identifier to a previously generated biometric identifier. If the user is biometrically authenticated the mobile device can generate a transaction request including, a user identifier, a mobile device identifier, and the transaction terminal code and transmit the transaction request to a system server. Based on the transaction request, the system server can further authenticate the user and/or approve the requested transaction. If the user is authenticated, the system server can instruct the terminal to advance the financial transaction.

Core Innovation

The mobile device biometric transaction authorization system authorizes a user for an electronic transaction conducted using a transaction device. The system biometrically authenticates the user by capturing face biometrics on the mobile device to generate or verify a biometric identifier and by optionally performing liveness detection using non-vision sensor or behavioral signals. The system uses the biometric information to support biometric authentication and associates the authenticated result with the transaction request.

The system establishes a secure communication session between the mobile device and a system server over a communication network. During the process, the system server generates a code that is machine readable and valid for a pre-defined duration. The server associates the generated code with a transaction device identifier and stores the code in a computer readable storage medium associated with the transaction device identifier, then transmits the stored associated code for output by the transaction device.

After the transaction device outputs the code and the mobile device captures the output code, the system server receives a transaction request during the secure communication session. The server validates the received code by determining correspondence to the stored associated code and determining that the stored associated code is valid, and then creates a record of the authorized transaction in storage. In response to biometrically authenticating and authorizing the user, the server transmits an authorization notification that advances the transaction and maintains a transaction history for auditing and non-repudiation.

Claims Coverage

The document contains one independent claim covering a full server-centric authorization workflow. The independent claim includes nine inventive features.

Across the independent claim, authorization is achieved by server-side biometric authentication, a secure communication session with the mobile device, issuance of a time-limited machine-readable code associated with a transaction device identifier, validation of a transaction request using the received code and stored-code validity, creation of a record of the authorized transaction, and transmission of an authorization notification that advances the transaction.

Stated Advantages

Documented Applications