Ulllted States Patent
`[19]
`[11] Patent Number:
`6,016,476
`
`Maes et al.
`[45] Date of Patent:
`Jan. 18, 2000
`
`USOO6016476A
`
`[54] PORTABLE INFORMATION AND
`TRANSACTION PROCESSING SYSTEM AND
`METHOD UTILIZING BIOMETRIC
`AUTHORIZATION AND DIGITAL
`CERTIFICATE SECURITY
`
`Primary Examiner—James P. Trammell
`Assistant Examiner—Cuong H. Nguyen
`Attorney, Agent, or Firm4F. Chau & Associates, LLP
`[57]
`ABSTRACT
`
`[75]
`
`Inventors: Stephane Herman Maes, Danbury,
`Conn; Jan Sedivy, Praha,
`Czechoslovakia
`
`[73] Assignee:
`
`International Business Machines
`Corporation, Armonk, NY.
`
`[21] Appl. No.: 09/008,122
`
`[22]
`
`Filed:
`
`Jan. 16, 1998
`
`Related US. Application Data
`Provisional application No. 60/055,418, Aug. 11, 1997.
`
`[60]
`
`Int. Cl.7 ............................. H04L 9/32; G06F 157/00
`[51]
`[52] U8. CI.
`................................... 705/1; 705/26; 705/42;
`705/44; 380/23; 380/25
`[58] Field of Search ..................................... 704/270, 275;
`705/26, 35—38; 710/11; 713/200; 380/21,
`25, 30, 24, 9, 23
`
`[56]
`
`References Cited
`U.S. PATENT DOCUMENTS
`.
`6/1981 Hodgkinson et al.
`.................. 709/203
`
`3/1987 Watanabe et a].
`704/272
`6/1992 Hunt et a1.
`. 379/8802
`
`1/1993 Medamana et a1.
`. 379/9303
`
`6/1993 Naik et al-
`704/272
`
`12/1993 Green ........
`. 379/8802
`11/1994 Hunt et al.
`. 379/8802
`
`
`11,1995 Hampton et a1.
`379/8802
`'
`3/1996 Hunt et a1.
`379/8802
`
`4,274,139
`4,653,097
`5,127,043
`5,181,238
`5,216,720
`5,274,695
`5,365,574
`5 465 290
`5,499,288
`
`(List continued on next page.)
`
`OTHER PUBLICATIONS
`IBM Tech. Discl. Bulletin vol. 37 #9213 Feb. 1994 p. 189
`“VoicePrint Security for Credit Cards” Anon.
`Information Week Aug. 18, 1997 p. 36 Anon. “Biometrics—
`Body Language—Fingerprints, Faces, Even Eyes are The
`New Keys to Protecting .
`.
`.
`
`The present invention is a portable client PDA with a touch
`screen or other equivalent user interface and having a
`microphone and local central processing unit (CPU) for
`.
`.
`.
`.
`.
`processmg v01ce commands and for processmg blometric
`data to provide user verification. The PDA also includes a
`memory for storing financial and personal information of the
`user and I/O capability for reading and writing information
`to various cards such as smartcards, magnetic cards, optical
`cards or EAROM cards. The PDA includes a Universal
`.
`.
`.
`.
`.
`Card, Which ls common generic smartcard w1th a unique
`imprint provided by a service provider, on which selected
`financial or personal information stored in the PDA can be
`
`downloaded to perform certain consumer transactions. The
`PDA indudes a mom, a 569311130“ and/or a Parallel Port
`so as to provide direct communication capability with
`Peripheral devices (such as POS and ATM terminals) and is
`capable of transmitting or receiving information through
`wireless communications such as radio frequency (RF) and
`infrared (IR) communication. The present invention is pref-
`erably operated in two modes, i.e., a client/server mode and
`a local mode. The client/server mode is periodically per-
`formed to download a temporary digital certificate (which is
`t
`1
`t d . f
`t.
`t
`d .
`th PDA
`necessary. 0 access se ee e
`in orma ion 5 ore
`in
`e
`and to write such 1nformation to the Universal Card) from a
`central server of the service provider of the PDA and
`Universal Card. Next, the local mode of operation is per-
`f
`d b
`'d'
`th PDA .th b.
`t .
`d t
`d
`orme,
`y pro“ mg
`6
`W1 _
`iome “C a a an
`selecting one of the pre-enrolled credit cards that are stored
`in the PDA- Upon biometric Verification, the Universal Card
`is written with the selected card information, which is then
`used to initiate a consumer transaction. In the absence of an
`
`unexpired digital certificate, however,
`the selected card
`information will not be written to the Universal Card,
`notwithstanding that the user may have passed local bio-
`metric verification.
`
`20 Claims, 5 Drawing Sheets
`
` ,
`
`LSER PROMPTED
`USER SELECTS
`T0 SELECT
`CARD
`ALTERNATE CARD
`
`SELECTED CARD
`
`AVAILABLE”
`
`
`
`
`
`
`PROCESS
`BIOMETRIC DATA
`3‘2
`
`INFORMATION
`
`USER VERIFIED?
`”D
`AND
`AUTHORIZATION
`NUMBER WILL
`
`m
`NOT BE
`/ fl
`DIG TAL CERTIFICATE
`DISPLAVED
`
`
`VALID?
`
`YES
`/5|0
`
`INFORMATION
`RETREIVED AND DECRVP'TED
`
`5K
`CARD INFORMATION
`
`AND AUIHUHIZATIDN
`
`
`NU’IBER DISPLAYED
`alé
`USER VERIFIED Ev
`
`AUTHORIZA'ION AND
`CARD NUMBER
`sIa
`
`Apple 1213
`Apple 1213
`
`

`

`6,016,476
`
`Page 2
`
`U.S. PATENT DOCUMENTS
`
`OgOSlan,
`,
`,
`,
`I. .............
`J
`.
`4,19% B
`5 513 272
`382/116
`
`51,1996 Schalk ......
`595179558
`379/8802
`8/1997 Houvener
`5,657,389
`........................... 380/23
`
`5,696,827 12/1997 Brands ........
`5,721,781
`2/1998 Deo eta].
`
`
`5,742,845
`
`4/1998 Wagner
`
`..................................... 705/26
`
`.
`8/1998 Kawan ................................... 380/24
`5,796,832
`
`.. 380/21
`5,825,880 10/1998 Sud1a et a1.
`5,852,811
`12/1998 Atkms ~~~~~~
`705/36
`4/1999 Ginter et a1.
`..................... 713/200
`5,892,900
`5,893,063
`4/1999 Loatsetal.
`............................. 704/275
`
`

`

`U.S. Patent
`
`Jan.18,2000
`
`Sheet 1 0f 5
`
`6,016,476
`
`Eon5:82
`
`
`m.“6.888%H58:53%mmfimmmgmommmoomm
`-Eém:
`
`\mm._.n_>muzm
`
`awkmmSzou
`
`.H58:
`efifiuno
`
`
`
`59;«888%:88mzozmomof
`
`o—
`
`_.o_u_
`
`mzoznmjmp“2.53:82mum:
`
`awkm>momo
`
`
`
`
`
`
`mzfiimommmuomm\mo<mmmkz_
`
`
`
`mufimmi5:8:><._n_m_o
`
`2.53004
`
`mowmmuomm
`
`MADQOZ
`
`21.5205
`
`._mj|_<m<n_
`
`.Eom
`
`m-Eooz
`
`>m02m2
` mo<mo._.m
`
`13.1mmU_m._.m=>_o_m
`
`
`.Eon.mowmmoomn.om<u.E<Zm
`
`momzww
`
`._.m<Zm
`
`0140
`
`L--—_—————————_--1
`
`0N
`
`4<Mw_m_>_z:
`
`omdo
`
`
`
`
`
`
`
`
`
`

`

`US. Patent
`
`Jan.18,2000
`
`Sheet2 0f5
`
`6,016,476
`
`on
`
`zo_._.u<mz<m._.
`
`
`
`.._<Z_2mm;
`
`m.o_n_
`
`._<_uz<z_n_
`
`ZO_._.D._._._.wz_
`
`
`
`8m<o._._n_m_m_uv
`
`|_<_uz<z_n_
`
`zo_._.3._._._.mz_
`
`
`
`8m<u.2me
`
`|_<_uz<z_n_
`
`zo_._.3.:._.mz_
`
`
`
`8m<o2....3
`
`.._<m_._.zm_o
`
`mm>mmw
`
`
`
`EmoSommmoSmmmv
`
`N .
`
`o_n_
`
`3
`
`0N
`
`om
`
`
`
`
`
`
`
`

`

`US. Patent
`
`Jan. 18,2000
`
`Sheet 3 0f5
`
`6,016,476
`
`FIG 4
`0 COMMUNICATION ESTABLISHED
`BETWEEN CENTRAL SERVER
`AND USER PDA
`
`/
`I00
`
`USER PROMPTED TO
`PROVIDE VERIFICATION
`DATA
`
`02I
`
`I
`
`Oh
`
`/
`I08
`
`/
`IIO
`
`VERIFICATION DATA
`NO
`
`PROVIDED?
`
`VERIFICATION DATA
`PROCESSED BY
`CENTRAL SERVER
`
`
`
`
`USER VERIFIED?
`
`YES
`
`USER PROMPTED TO
`PROVIDE TRANSACTION
`LIMITATIONS
`
`/2
`
`II
`
`REQUESTED TRANSACTION
`LIMITATIONS PROCESSED
`
`/
`IIL
`
`I06
`
`|l6
`
`
`
`ENCRYPTED DIGITAL
`
`
`CERTIFICATE DOWNLOADED
`ONTO USER PDA
`
`
`VIA ESTABLISHED
`COMMUNICATION LINK
`
`
`
`
`
`
`
`DIGITAL
`CERTIFICATE
`IS NOT
`DOWNLOADED
`
`

`

`U.S. Patent
`
`Jan. 18, 2000
`
`Sheet 4 0f5
`
`6,016,476
`
`FIG. 5
`
`20°
`
`202
`
`206
`
`208
`
`226
`
`LOCAL MODE
`
`%
`
`”SERcifi'BECTS
`
`SELECTED CARD
`AVAILABLE?
`
`YES
`
`PROCESS
`BIOMETRIC DATA
`
`
`
`
`
`PROHIBITED
`FROM
`TRANSMITTING
`INFORMATION
`
`
`
`
`
`
`m
`
`
`USER PROMPTED
`T0 SELECT
`
`ALTERNATE CARD
`
`
`O
`
`ZIO
`
`INFORMATION
`WILL NOT BE
`WRITTEN TO
`UNIVERSAL
`
`CARD
`
`--
`
`'39 DIGITAL CERTIFICATE
`VALID?
`
`USER VERIFIED?IL PDA DEVICE
`
`YES
`INFORMATION
`
`‘\
`{2
`
`2n.
`
`RETREIVED AND DECRYPTED
`
`228
`
`INFORMATION
`TRANSMITTED
`TO TRANSACTION
`TERMINAL
`
`INFORMATION WRITTEN ’\.
`TO UNIVERSAL CARD
`
`2|6
`
`CARD READ BY
`
`TRANSACTION TERMINAL NZIB
`PDA DEVICE
`
`INFORMATION SENT
`TO FINANCIAL INSTITUTION “\220
`
`”SIEEWEIFFEII‘D
`WITH RECEIPT
`
`x222
`
`RECEIPT STORED
`
`x224
`
`REC IPT
`WRITTEN TO
`
`

`

`US. Patent
`
`Jan. 18,2000
`
`Sheet 5 0f5
`
`6,016,476
`
`%
`
`
`
`
`
`USER SELECTS
`CARD
`
`SELECTED CARD
`AVAILABLE?
`
`YES
`
`USER PROMPTED
`TO SELECT
`ALTERNATE CARD
`
`PROCESS
`BIOMETRIC DATA
`
`5.2
`
`500
`
`/
`50L
`
`/
`508
`
`506'\l USER VERIFIED?
`
`NO
`
`INFORMATION
`AND
`AUTHORIZATION
`NUMBER WILL
`NOT BE
`DISPLAYED
`
`DIGITAL CERTIFICATE
`VALID?
`
`50/
`
`YES
`
`INFORMATION
`RETREIVED AND DECRYPTED
`
`K)
`SIL
`
`/
`5|6
`
`/
`5'3
`
`CARD INFORMATION
`AND AUTHORIZATION
`NUMBER DISPLAYED
`
`USER VERIFIED BY
`AUTHORIZATION AND
`CARD NUMBER
`
`FIG. 6
`
`

`

`6,016,476
`
`1
`PORTABLE INFORMATION AND
`TRANSACTION PROCESSING SYSTEM AND
`METHOD UTILIZING BIOMETRIC
`AUTHORIZATION AND DIGITAL
`CERTIFICATE SECURITY
`
`This application is based on a provisional application
`Ser. No. 60/055,418, filed on Aug. 11, 1997.
`BACKGROUND OF THE INVENTION
`
`The present invention relates to a portable information
`and transaction processing system and method and, more
`particularly, to a portable information and transaction pro-
`cessing system and method which utilizes digital certificate
`security and biometric authorization to provide personal
`verification prior to processing user requested financial
`transactions and providing personal information.
`It is now widely accepted in the domestic consumer
`market that purchasing or selling goods or services with
`credit cards at point of sale (POS) terminals, as well as
`performing electronic transfer of funds at automated teller
`machine (ATM) terminals using ATM cards, is more efficient
`than using cash to pay for goods or services or paying debts.
`Utilizing cash as a means for purchasing goods or paying
`debts is generally viewed as burdensome for several reasons.
`First, in terms of accounting, the consumer must manually
`generate records and reconcile his or her accounts to keep
`track of such cash transactions. By utilizing a credit card
`issued by a financial institution, however, consumer trans-
`actions are recorded by such financial
`institution and
`accountings are provided to the consumer on a monthly
`basis, which provides improved accounting and reconcilia-
`tion.
`
`In addition, using cash is a financially insecure method for
`protecting consumers against fraud and theft. For example,
`if a consumer believes that he or she has been sold an
`inferior or over-priced product, which frequently occurs
`during quick consumer transactions where the consumer
`may not have adequate time to reflect on the purchase until
`some time after such purchase,
`it
`is much easier for the
`consumer to contact the financial institution to stop payment
`on goods purchased using a credit card than it is for the user
`to recover cash from the merchant from whom such goods
`were bought. Moreover,
`it
`is virtually impossible for a
`consumer to recover cash that has been stolen or lost. On the
`other hand, if the consumer’s credit cards are stolen or lost,
`the consumer can contact the corresponding financial insti-
`tution to cancel such cards and obtain new credit card
`accounts.
`
`there is a strong trend today in moving
`Accordingly,
`towards a “cashless society,” which has caused a substantial
`increase in the use of credit cards, ATM cards and direct
`debit cards (collectively, “financial cards”) for performing
`consumer transactions. Notwithstanding the perceived ben—
`efits of using financial cards rather than cash, there exists
`several disadvantages in using these cards. For example, if
`the consumer frequently uses a significant number of finan—
`cial cards, the consumer must physically possess all such
`cards in order to access a desired account. Having to carry
`such a large number of financial cards can be extremely
`burdensome to the consumer since a substantial amount of
`
`space is occupied by these cards in the consumer‘s wallet or
`purse. Moreover, if the wallet or purse is lost or stolen, the
`consumer must contact
`the financial institution for each
`financial card to cancel the account so as to prevent an
`unauthorized user from transacting business with such cards,
`which is also a burdensome task.
`
`10
`
`15
`
`30
`
`35
`
`40
`
`45
`
`50
`
`55
`
`60
`
`65
`
`2
`Another disadvantage in using financial cards is that
`consumers are not fully protected from the unauthorized use
`of lost or stolen cards. For example, a merchant can confirm
`the ownership of a credit card during a consumer transaction
`by comparing the authorized signature that is (or should be)
`written on the back of the credit card with the signature of
`the person signing the credit card receipt. Realistically,
`merchants generally do not compare these signatures during
`such a transaction, and even if they do,
`they may not
`compare such signatures with the level of scrutiny or skill
`needed to distinguish minor differences between the con-
`sumer’s signature and the unauthorized user’s forged sig-
`nature. Therefore, during the period of time between the
`time the consumer’s credit card is lost or stolen and the time
`the consumer realizes such loss or theft and cancels the
`account, an unauthorized user who has found or stolen the
`card may charge a substantial amount of money to the
`consumer’s card, leaving the consumer with the burden of
`having to dispute such unauthorized charges with the finan-
`cial institution.
`
`SUMMARY OF THE INVENTION
`
`It is therefore an object of the present invention to provide
`a portable information and transaction processing device
`(“personal digital assistant” or “PDA”) in which a user can
`store his or her credit card, ATM card and/or debit card (i.e.,
`financial) information, as well as personal information, and
`then access and write selected information to a smartcard
`
`(“Universal Card”), which is then used to initiate a POS,
`ATM, or consumer transaction.
`It is another object of the present invention to provide a
`PDAdevice which utilizes biometric security to provide user
`verification prior to accessing and writing the selected
`financial and personal information to the Universal Card.
`It is yet another object of the present invention to provide
`a PDA device with digital certificate security, whereby the
`user is required to periodically download a temporary digital
`certificate from a central server of the service provider of
`such Universal Card into the PDA device prior to accessing
`and writing the selected financial and personal information
`to the Universal Card.
`
`It is still another object of the present invention to provide
`a PDA device with digital certificate security which is
`compatible with the current infrastructure (i.e., immediately
`employed without having to change the existing
`infrastructure) and which brings biometric security to elec-
`tronic data transfer systems that are currently unable to
`perform biometric verification.
`It is yet another object of the present invention to provide
`a PDA device with digital certificate security which can be
`extended to all applications or systems wherein magnetic
`and/or smartcards are used such as access control cards for
`accessing a device service or building, cash cards for per-
`forming ATM transactions, calling cards or cellular cards
`(for e.g., GSM (Group Special Mobile) digital cellular
`mobile radio system)
`for making telephone calls and
`employee cards for accessing confidential information.
`In one aspect of the present invention, a portable infor-
`mation and transaction processing device, comprises: central
`processing unit
`for controlling the functioning and for
`processing a plurality of operations of the device; memory
`means, operatively coupled to the central processing unit,
`for storing financial and personal information and for storing
`a temporary digital certificate; communication means,
`operatively coupled to the central processing unit, for estab-
`lishing a communication link with a central server at a
`
`

`

`6,016,476
`
`3
`remote location to obtain the temporary digital certificate;
`user interface means, operatively coupled to the central
`processing means, for initiating at least one of the plurality
`of operations of the device and selecting a portion of one of
`the financial and personal information from the memory
`means; a universal card, detachably coupled to the central
`processing unit, for receiving the selected portion of one of
`the financial and personal information; and programming
`means, operatively coupled to the central processing unit
`and responsive to the temporary digital certificate, for writ-
`ing the selected portion of one of the stored financial and
`personal information to the universal storage card, whereby
`the programming means is prevented from writing the
`selected portion of one of the financial and personal infor-
`mation to the universal card when the temporary digital
`certificate is invalid.
`
`The present invention is a portable client PDA with a
`touch screen or other equivalent user interface, which
`includes a microphone and a local central processing unit
`(CPU) for processing voice activated commands and for
`processing biometric data to provide biometric verification
`of a user. The present invention includes a memory for
`storing financial and personal information of the user and
`I/O capability for writing and reading information to and
`from various cards such as smartcards, magnetic cards,
`optical cards or EAROM (electrically alterable read-only
`memory) cards. The present invention includes a Universal
`Card, which is a common generic smartcard with a unique
`imprint (i.e., an account number) provided by a service
`provider, on which selected financial or personal informa-
`tion stored in the PDA can be downloaded to perform
`various transactions. The PDA preferably includes a modem
`and a serif 1 port and/or a parallel port so as to provide direct
`communication capability with peripheral devices. The PDA
`is also capable of transmitting or receiving information
`through wireless communications such as radio frequency
`(RF) and infrared (IR) communication.
`The present
`invention is preferably operated in two
`modes,
`i.e., a client/server mode and a local mode. The
`client/server mode is periodically performed to download a
`temporary digital certificate from a central server of the
`service provider of the PDA and Universal Card. The
`client/server mode is performed by establishing communi-
`cation between the PDA and a central server of the service
`provider via modem or wireless communication. Once com-
`munication is established, the central server verifies the user
`either biometrically or through PIN or password or a com-
`bination thereof, and then generates a temporary digital
`certificate which is downloaded into the PDA. Atemporary,
`unexpired digital certificate is necessary to access selected
`information stored in the PDA and write such information to
`the Universal Card.
`
`Next, the local mode of operation of the PDA is per-
`formed to initiate a consumer transaction. Preferably, in the
`local mode, the user selects one of the pre-enrolled credit
`cards that are stored on the PDA by stating a verbal
`command into the microphone of the PDA, whereby the
`CPU processes the verbal command and performs user
`verification. Alternatively, user verification (i.e,
`local
`verification) may be performed by using either biometric
`data, PIN or password, or a combination thereof. Upon local
`verification,
`the selected information is retrieved from
`memory and written to the Universal Card which is then
`available to commence a transaction. In the absence of an
`unexpired digital certificate, however, the selected informa-
`tion will not be written to the Universal Card notwithstand-
`
`ing that the user may have passed local verification.
`
`10
`
`15
`
`30
`
`35
`
`40
`
`45
`
`50
`
`55
`
`60
`
`65
`
`4
`The present invention advantageously eliminates the bur-
`den of having to carry a multitude of financial cards and/or
`credit cards that a user may frequently utilize. The financial
`information for each card may be stored in the PDA and
`written to the Universal Card when needed. If the Universal
`
`Card is lost or stolen, the user will only have to contact the
`service provider to cancel and reissue a new account. In
`addition, due to the biometric and digital certificate security
`which protects against the unauthorized access to the user’s
`financial and personal information, a lost or stolen Universal
`Card is useless to an unauthorized user.
`
`invention may be immediately
`the present
`Further,
`employed without the need for changes in the existing
`infrastructure since the PDA and Universal Card may be
`utilized with any system which utilizes magnetic cards or
`smartcards for electronic data transfer such as point of sale
`(POS) terminals or automated teller machines (ATM) which
`provide direct debit capability.
`These and other objects, features and advantages of the
`present invention will become apparent from the following
`detailed description of illustrative embodiments, which is to
`be read in connection with the accompanying drawings.
`BRIEF DESCRIPTION OF THE DRAWINGS
`
`FIG. 1 is a block diagram illustrating elements of a
`portable information and transaction processing device
`according to an embodiment of the present invention;
`FIGS. 2a and 2b are diagrams of the Universal Card
`according to an embodiment of the present invention;
`FIG. 3 is a block diagram showing the interaction of the
`portable information and transaction processing device in
`connection with processing a transaction according to the
`present invention;
`FIG. 4 is a flow diagram illustrating the client/server
`mode of operation in accordance with the present invention;
`FIG. 5 is a flow diagram illustrating the local mode of
`operation in accordance with the present invention; and
`FIG. 6 is a flow diagram illustrating another local mode
`of operation in accordance with the present invention.
`DETAILED DESCRIPTION OF PREFERRED
`EMBODIMENTS
`
`It is to be understood that same or similar components
`illustrated throughout the figures are designated with the
`same reference numeral. It is to be further understood that
`the elements or functional modules described herein in
`
`accordance with the present invention may be implemented
`in various forms of hardware, software, or a combination
`thereof. Preferably, the main biometric verification elements
`and speech recognition elements are implemented in soft-
`ware and may include any suitable and preferred processor
`architecture for practicing the invention by programming
`one or more general purpose processors. It is to be further
`understood that, because some of the components of the
`invention described wherein are preferably implemented as
`software modules,
`the actual connections shown in the
`figures may differ depending upon the manner in which the
`invention is programmed. Of course, special purpose pro-
`cessors may be employed to implement the invention. Given
`the teachings of the invention herein, one of ordinary skill in
`the related art will be able to contemplate these and similar
`implementations of the elements of the invention.
`Referring initially to FIG. 1, a block diagram illustrating
`elements of the portable information and transaction pro-
`cessing (PDA) device 10 according to an embodiment of the
`
`

`

`6,016,476
`
`
`
`5
`present invention is shown. The heart of the device is a
`central processing Lnit (CPU) 12, which controls the opera-
`tions of the PDA device 10 via programs stored in a memory
`14 and executed by the CPU 12. Specifically, the CPU 12
`includes an acoustic processor module 16 for processing
`voice commands in 3utted into the PDA device 10 through a
`microphone 18. The acoustic processor module 16 is also
`used for performing local speaker verification. The CPU 12
`also includes a dig'tal certificate processor module 20, for
`processing a digital certificate obtained in the client/server
`mode of operation (to be discussed in detail below), and a
`biometric processor module 22 for processing biometric data
`in addition to, or a ternative to voice data, to provide user
`verification. The CPU 12 further includes an encrypter/
`decrypter module 24 for encrypting the personal and finan-
`cial information be ore being stored in memory 14 and for
`decrypting such information when accessed by the user.
`Although the illustrative embodiment herein shows the CPU
`12 comprising the digital certificate module 20,
`the
`encrypter/decrypter module 24, the acoustic processor mod-
`ule 16 and the biometric processor module 22, it is to be
`understood that such modules may also be implemented as
`special purpose modules each having a processor, associated
`memory and stored programs for performing such functions.
`The PDA device 10 includes a smartcard reader/writer 26
`(as is known in the art) for reading and writing information
`to and from various cards, e.g., magnetic cards, IC cards
`and/or EAROM cards (using known standards and
`techniques). During the local mode of operation of the PDA
`device 10, a Universal Card 26 of the present invention is
`inserted into the smartcard reader/writer 30 and, upon user
`verification, selected financial or personal information is
`writtcn to thc Univcrsal Card 26. thn not
`in usc,
`the
`Universal Card 26 may be stored in a smartcard storage
`compartment 32 of the PDA device 10.
`The FDA device 10 includes a user interface/display 34,
`which is preferably a liquid crystal display (LCD) touch
`screen display (or equivalent user interface), for displaying
`and/or inputting data associated with the operations or
`functions of the PDA device 10. Alternatively, the interface/
`display 24 may be comprised of a keyboard and a conven-
`tional LCD display. Additionally, thc PDA dcvicc 10 may
`audibly communicate with or request information from the
`user through a speaker 26 which is operatively connected to
`the CPU 12 via a text-to-speech converter 38. The text-to-
`speech converter 38 converts signals from the CPU 12 into
`synthesized speech which is then heard through the speaker
`36. The PDA device 10 may be configured to simultaneously
`display such information along with generating the synthe-
`sized speech. Furthermore, the PDA device 10 may operate
`without a display (or a limited display) and rely on the
`text-to-speech functions to communicate information to the
`user of such device.
`
`Abiometric sensor 40 of any conventional type may also
`be provided for collecting biometric data (other than voice
`data which is received by the microphone 18) such as a
`finger, thumb or palm print, a handwriting sample, a retinal
`vascular pattern, or a combination thereof, to provide bio-
`metric verification as an alternative to, or in addition to,
`voice biometric verification. This data is then processed by
`the biometric processor module 22 to provide user verifica-
`tion (i.e., biometric security) prior to accessing the financial
`and personal information stored in memory 14. It is to be
`appreciated by one of ordinary skill
`in the art
`that
`the
`biometric verification features of the PDA device may be
`replaced or supplemented with a PIN (personal identification
`number) or password to provide user verification.
`
`10
`
`15
`
`30
`
`35
`
`40
`
`45
`
`50
`
`55
`
`60
`
`65
`
`6
`The PDA device 10 may preferably be equipped with
`various communication ports such as a serial port 42 and a
`parallel port 44 (utilizing known computer interface
`standards), operatively coupled to the CPU 12, as well as a
`telephone line interface 46 (using a known interface
`connections), to provide means for establishing a commu-
`nication link between the PDA device 10 and other periph-
`eral devices such as computers, modems and printers. For
`establishing wireless communication, the device may pref-
`erably be equipped with an RF processor module 48, opera-
`tively connected between the CPU 12 and an RF port 50, for
`processing incoming RF information received by the RF
`port 50, and for generating transmission signals which are
`outputted from the RF port 50 using conventional construc-
`tions and techniques. The device may also be equipped with
`an IR processor module 52, operatively connected between
`the CPU 12 and an IR port 54, for processing incoming
`optical information and for generating output optical signals
`using conventional constructions and known techniques.
`Preferably, the PDA device 10 includes a DTMF (dual tone
`multi—frequency) processor module 56 and a modem 58,
`operatively coupled between the CPU 12 and the telephone
`line interface 46. Communication of financial information
`
`may be accomplished via modem communication and/or
`DTMF tone communication on a telephone line, using
`known methods. DTMF communication may be used for
`processing PINs for user verification and authorization.
`Referring now to FIGS. 2a and 2b, diagrams of the
`Universal Card 26 according to an embodiment of the
`present invention are shown. The Universal Card 26 is
`essentially a generic smartcard which includes either a
`magnetic band 28 (FIG. 2a) or integrated chip (IC) 29 (FIG.
`2b), or both, for storing thc sclcctcd information which is
`retrieved from the memory 14 and written to the Universal
`Card 26 through the smartcard reader/writer 30 during the
`local mode of operation of the PDA device 10. The Univer-
`sal Card 26 (issued by a service provider) contains a unique
`Universal Card number 27 imprinted thereon, which corre-
`sponds to the designated user account number provided by
`the service provider (which is analogous to the account
`number provided on a credit card or ATM card).
`As morc fully discusscd bclow, thc Univcrsal Card num-
`ber 27 may be utilized to provide user verification in
`consumer POS transactions utilizing a traditional mechani-
`cal sweeper instead of a magnetic sweeper which is capable
`of magnetically reading the magnetic band 28 of the Uni-
`versal Card 26. The unique Universal Card number 27 may
`also be used for to provide user verification in instances
`where consumer transactions are performed remotely over a
`telephone. In such instance, as explained below, an autho-
`rization number, which is unique to the current digital
`certificate, will be displayed on the PDA device 10 upon user
`verification. The authorization number, together with the
`unique Universal Card number 27, may be used to verify the
`user.
`
`Referring to FIG. 3, a block diagram illustrating the
`interaction of the PDA device 10 in connection with pro—
`cessing a transaction according to the present invention is
`shown. The user of the PDA device 10 and Universal Card
`
`26 (FIGS. 1 and 2) must first perform an enrollment proce-
`dure with a service provider. Enrollment involves obtaining
`a Universal Card 26 with a designated account number (i.e.,
`the unique imprint 27 on the Universal Card 26) and
`providing the service provider with the user’s credit card or
`ATM card information so that such information can be
`verified with the financial institutions 70 that issued such
`cards. This information is then stored on a central server 60
`
`

`

`6,016,476
`
`7
`of the service provider. The user may then subsequently
`download such information into the PDA device 10 by
`establishing a communication link (L1) with the central
`server 60. Alternatively, the credit cards or ATM cards may
`be loaded into the PDA device 10 by directly reading
`information contained on such cards through the smartcard
`reader/writer 30 of the PDA device 10. In such a situation,
`the PDA device 10 will compare the user ID of the credit
`cards with the user ID of the PDA device to verify the user
`so as to prevent a user from downloading the information
`from cards owned by another person into the user’s PDA
`device 10. In the event that the PDA device is unable to
`verify the owner of a card which is being directly down-
`loaded via the smartcard reader/writer 30 (i.e., the card does
`not contain the name of its owner), the user will be required
`to enroll the card by providing the service provider with the
`card information (to obtain verification from the appropriate
`financial institution) and then connect to the central server
`60 to download the card information.
`
`Enrollment also involves providing the service provider
`with personal information such as the user’s social security
`number, address, maiden name and date of birth, which is
`stored on the central server 60. Such information is then
`
`used to verify the user during the client/server mode prior to
`the issuance of a digital certificate. Apersonal identification
`number PIN and the Universal Card 26 with a unique
`account number 27 is provided by the service provider. This
`information, as well as biometric data such as voice prints
`(models) of the user, are also stored in central server 60 of
`the service provider for user verification during the client/
`server mode to obtain a digital certificate (to be discussed in
`detail below). The central server 60 is a computer which is
`programmed to perform the functions described herein such
`as biometric verification, speech recognition and generating
`and downloading a temporary digital certificate.
`Referring to FIGS. 1, 3 and 4, the client/server operating
`mode of the present invention is now described. As indicated
`above, the user must periodically connect the PDA device 10
`with the central server 60 of the service provider (Link L1,
`FIG. 3) in order to obtain a valid digital certificate from the
`central server 60 prior to initiating a consumer transaction.
`Specifically, the digital certificate is binary encrypted file
`that must be downloaded into the PDA device 10 before
`personal or financial information of the user can be written
`to the Universal Card 26. The digital certificate contains
`information relating to (but not
`limited to) the account
`number of the PDA device 10, the date on which the digital
`certificate was authenticated and its expiration date, as well
`as any constraints which exist for each enrolled card. The
`digital certificate is stored in the memory 14 of the PDA
`device 10. Prior to the execution of a transaction (i.e.,
`downloading selected card information from the memory 14
`to the Universal Card 26), the digital certif