Secure biometric data capture, processing and management for selectively prohibiting access to a data storage component from an application execution environment

Assignee

• Intel Corporation · US

Inventors

• Niraj Bali · Sunnyvale, US
• Kumar N. Dwarakanath · Folsom, US
• Asaf Haskel · Jerusalem, IL
• Gennadi Iosad · Jerusalem, IL
• Anoop K. Jayasankaran · Sunnyvale, US
• Victoria C. Moore · Phoenix, US
• Vinod Gomathi Nayagam · San Jose, US
• David Zahavi · 'Anata, IL

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L2209/805
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A system includes one or more biometric sensors, a sensor hub and a trusted application execution environment. The sensor hub has exclusive access to the sensors and also isolates untrusted/unauthenticated portions of the operating system from direct access to unencrypted biometric data acquired by the sensors. During a biometric scan/collection process, only the sensor hub and a security engine can access the sensors and a storage component. The sensor hub reads the sensors to obtain the biometric data associated with the scan/collection process and stores the biometric data in the storage component. The security engine encrypts the biometric data before the sensor hub removes the access restrictions. Various components transfer the encrypted biometric data from the storage component to the trusted environment, which hosts algorithms for processing the biometric data.