Patent Auction lists patented inventions available for sale or licensing. Inventors can list their patented inventions (or patent pending) for sale. New inventions for sale are added on a daily basis !
Home    List your patent    My account     Help     Support us    

A FRAUD PROOF IDENTITY & AUTHENTICATION PATENT FOR ONLINE USERS

[Category : - Indentification and payment methods]
[Viewed 102 times]

ADDITIONAL CLARIFICATION on Patent No. 10810290.

A. CURRENT IDENTITY, AUTHENTICATION & ACCESS MANAGEMENT SYSTEMS.
Presently, most of online Non-Face-to-Face transactions are faced with four major obstacles, namely:
a) Security of the communications channel (eg attack by the “man in the middle),
b) Security of the User Personal Data (eg hacking and accessing of User data by unauthorised party),
c) Integrity & Accuracy of the User personal data on file,
d) Authenticity of online User ("Liveness" test to ensure that the online person is who claims to be),
e) Compliance to Privacy Regulations for user personal data,
f) Authenticity of the online computing device (eg stolen devices can be used to access User data).
Scam artists defraud millions of people each year by using internet services or software to access User personal data.

B. ADVANTAGES OF THIS PATENT
To the best of our knowledge there are NO KNOWN patents, solutions or products that can claim a fraud-proof solution to online transactions. This patent claims to be a fraud-proof solution that delivers simultaneously the following advantages:
TRUST IN ONLINE DATA,
GUARANTEE of a SECURE COMMUNICATIONS CHANNEL,
GUARANTEE of the SECURITY of the PERSONAL DATA,
GUARANTEE of the INTEGRITY of PERSONAL DATA,
GUARANTEE OF the IMMUTABILITY of PERSONAL DATA, and
MEET COMPLIANCE WITH PRIVACY REGULATIONS for PERSONAL DATA.

C. WHO CAN BUY THIS PATENT.
The patent is an ideal fit for companies that make digital identity products or offer online electronic services to support digital transformation in the public sector (Government) and private sector (e-Commerce). It is also a fit for companies that are developing digital identity solutions for use in e-Commerce transactions. A cross-section of potential companies that may be interested in our patent in order to incorporate this intellectual property into their solutions includes:
a) Blockchain Developers.
Blockchain Software Developers include Big Tech (namely Facebook, Amazon, Apple, Netflix, and Alphabet (formerly known as Google)) as well as new technology start-ups. For the most part these companies build decentralized applications (DApps) based on blockchain architecture and protocol for various sectors and service types.
b) E-commerce Products Developers
E-commerce involves buying and selling of goods and services over the internet. Among other products an E-Commerce company develops web applications and services to facilitate sales for online businesses. Under this business model it is necessary that a User’s personal data associated with online transactions must meet strict security and privacy compliance standards.
c) Identity & Authentication Management (IAM) Software Developer Companies.
Identity management provides security and governance by only allowing individuals, services, and processes with an authorized identity to access the appropriate resources at appropriate times. In order to authenticate the user, the personal data required to authenticate the user must be trusted and securely stored. This patent will enhance the developer’s application by providing means to secure the users data.
d) National electronic ID Products Developers.
Trusted identity is a vital component of a well-functioning society. That's why improving security, slashing ID fraud and identity theft, and creating an infrastructure of trust for new online access are high on every government's agenda, with a call for greater security and privacy features and the necessary legislation to implement them. Many countries are now upgrading their national identity documents and rolling out government-issued eID in the form of a credit card. The authentication of a user requires that the new eID card personal digital data residing in government or business servers be protected from hackers of all kinds. Developers of eID solutions can enhance their solutions using this patent’s IP to provide security and integrity of the personal data.

e) Non-Fungible Token (NFT) Products Developers.
A non-fungible token (NFT) is a unit of data stored on a digital ledger, called a blockchain, that certifies a digital asset to be unique and therefore not interchangeable. NFTs can be used to represent items such as photos, videos, audio, and other types of digital files. NFTs can be used to effect the sale of an asset without physically moving the asset. Sellers and buyers must exchange personal identification data to ensure that they are who they claim to be and to transfer the token from the seller to the buyer’s database. Developers of NFT can benefit from this patent’s ability to protect their personal identity as well as protect the asset token data.
f) Secure Computing Devices Products Developers.
Username/password, Fingerprint, Facial recognition, etc are but a few of the current credentials required log into personal computing devices, corporate or Government servers. Hackers and identity thieves have routinely broken into unsecured online accounts and websites to steal personal information. Stolen information can be used by these identity thieves to commit crimes such as using the victim's credit card or taking loans in their name.

The developers of secure computing devices can use this patent to provide enhanced security. The use of user Biometric Certificates, Signed Digital Certificates and Certified Device Digital Certificates will provide enhanced security by keeping cyber criminals at bay to minimize identity theft.

D. WHO WOULD BE THE BUYER OF THE END PRODUCT THAT HAS THIS PATENT?
The buyers of the end products that is based on this patent include Governments and e-Commerce product and service companies such as Amazon, Alibaba, E-Bay, Huawei, Samsung, Micro and others that are constantly looking to introduce the latest technologies to secure and increasing array of non-face-to-face online services.
Governments will be looking for advanced systems that can be used to issue passports, driver licenses, voter IDs, health insurance cards, land title deeds, birth certificates, death certificates, marriage certificates, divorce certificates, adoption certificate, etc. with the guarantee that the information is accurate and trustworthy.
In e-Commerce, online retailers such as Alibaba, Amazon etc. and banks will be looking for advanced system solutions that will secure their global supply chains as well as online financial transactions supported by the aggressive use of secure biometrics and digital signatures. The buyers include:
• Governments,
• Banking, Financial Services and Insurance,
• Energy and Utilities,
• Manufacturing,
• Healthcare and Life Sciences,
• Travel and Transportation,
• Telecom Companies,
• Retail and Consumer Goods Companies, and
• Media and Entertainment


E. DESIGN OF THIS PATENT.
The patent design objective is to have a Method and an Apparatus that when implemented provides a fraud-proof guaranteed solution to obstacles named above and allows the users to have trust in the online data,
This patent IP uses a combination of:
a) Blockchain Technology for storage and immutability of User Personal data,
b) Public Key Cryptography for the creation, storage, and distribution of User digital certificates,
c) User Biometric Digital Certificates,
d) Live Video sequences for "Liveness test” of online User,
e) User Biometric and Biographical data that is updated every time a blockchain transaction is made by the user.
The attached block diagram shows the key architectural components (Hardware, & Software Applications) for the implementation of solutions based on this patent.

a) The Apparatus
The apparatus consists of:
i) Users equipped with Secure Computing devices (eg users in a company or in a private settings),
ii) Certification Authorities (issue PKI type digital Certificates for individuals or devices and Biometric Certificates for individuals),
iii) Service Providers with Blockchain Databases (public/private blockchains for businesses, governments, etc), and
iv) Distributed or Centralized Data Analytics and Authentication Processor(s) (DAAP).

Actual implementation/realization will very much depend on the actual business type/service in the Blockchain.

b) The Method
The method used in this IP patent involves the following steps:

i) Request for Enrollment session
In this step, the user must voluntarily request for enrollment on a specific Blockchain service and supply specific personal data (Enrollment Data) and pass a “liveness test”.
ii) Enrollment Authentication
This personal data in conjunction with data from other Blockchain transactional databases is analyzed for integrity and accuracy. The user is enrolled upon meeting a preset criterion.
iii) Service Request session
The user may request for service(s) at anytime after enrollment. In this step the user must supply provides specific personal data (Service Request data) to the Blockchain Data Analytics Processor(s) and must pass “liveness test”.
iv) Service Request Authentication
This Service Request data in conjunction with the latest Enrollment Data and other data collected from other Blockchain transactional databases is analyzed for integrity and accuracy by the Blockchain Data Analytics Processor(s).
v) Update of all Blockchain Databases
All Blockchain Databases are updated with the latest user personal data.
vi) Grant or Denial of Service
The Blockchain Data Analytics Processor(s) will grant or deny a service to the user based on meeting a preset criterion. The criterion is set by service providers on the Blockchain.