`
`transmitted to the U.S.
`is being electronically
`I hereby certify that this correspondence
`Patent and Trademark Office, Commissioner for Patents, via the EFS on February 12,
`2008.
`
`, Jr., Reg. No. 57,844
`
`TRANSMITTAL LETTER TO THE UNITED STATES
`DESIGNATED/ELECTED OFFICE (D0/EO/US}
`CONCERNING A SUBMISSION UNDER 35 U.S.C. 371
`INTERNA TlONAL APPLICATION NO. I INTERNATIONAL FILING DATE
`
`August10,2006
`
`PCT/AU2006/001136
`TITLE OF INVENTION
`
`ATTORNEY'S DOCKET NO.
`1283815 {729727US)
`U.S. APPLICATION NO. (If known, see 37 CFR 1.5)
`
`PRIORITY DATE CLAIMED
`August12,2005
`
`IMPROVING CARO DEVICE SECURtTY USING BIOMETRICS
`
`the following items and other information:
`
`APPLICANT(S) FOR D0/EO/US
`
`BURKE. Christooher John
`Applicant herewith submits to the United States Designated/Elected Office (D0/EO/US)
`I&! This is a FIRST submission of items concerning a filing under 35 U.S.C. 371.
`1.
`2. D This is a SECOND or SUBSEQUENT submission of items concerning a filing under 35 U.S.C. 371.
`I&! This is an express request to begin national examination procedures (35 u.s.c. 371 (f)}.
`3.
`The submission must Include items (5), (6), (9), and (21) indicated below.
`4. 1'81 The US has been elected (Article 31 ).
`5. 181 A copy of the International Application as filed (35 U.S.C. 371 (c)(2)):
`a. I&! is transmitted herewitll (required only if not transmitted by the International Bureau}.
`b. D has been transmitted by the International Bureau.
`c. D is not required, as the application was filed in the United States Receiving Off1ee (RO/US).
`6. D An English language translation of the International Application into English {35 U.S.C. 371 (c)(2)):
`a. D is attached hereto.
`b. D has been previously submitted under 35 U.S.C. 154(d)(4).
`7. 1'81 Amendments to the claims of the International Application under PCT Article 19 (35 U.S.C. 371(c)(3)):
`a. I&! are transmitted herewith (required only if not transmitted by the International Bureau}.
`b. 0 have been transmitted by the International Bureau.
`c. D have not been made; however, the time limit for making such amendments has NOT expired.
`d. D have not been made and will not be made.
`8. D An English language translation of the amendments to the claims under PCT Article 19 (35 U.S.C. 371(c)(3)}.
`9. 181 An [unexecuted] Declaration for Patent
`10. D An EngHsh language translation of the annexes to the International Preliminary Examination Report under
`PCT Article 36 (35 U.S.C. 371(c)(5)) ami/or amendments under Article 34.
`
`Items 11 to 20 Below concern other document(s) or information included:
`11. 181
`An lnfonTiation Disclosure Statement under 37 CFR 1.97 and 1.98, PTO Form 1449; copies of cited references A3-A6.
`An assignment document for recording. A separate cover sheet in compliance with 37 CFR 3.28 and 3.31 is included.
`12. □
`13. 1'81
`A preliminary amendment.
`An Application Data Sheet under 37 CFR 1.76.
`14. □
`15. □
`16. □
`H. □
`18. □
`19. □
`20. □
`
`A substitute specification.
`
`A power of attorney and/or change of address letter.
`
`form of the sequence listing in accordance with PCT Rule 13ter.2 and 37 CFR 1.821-1.825.
`A computer-readable
`A second copy of the published International Application under 35 U.S.C. 154(d)(4).
`A second copy of the English language translation of the international application under 35 U.S.C. 154(d)(4).
`Other items or information: Return Postcard,
`
`SEND COMPLETED FORM TO: Mail Stop PCT, Commissioner
`
`ror r-a<ents, r-v Box 14511, Alexandria, VA 22313-1450.
`
`IPR2022-00600
`Apple EX1002 Page 1
`
`
`
`U.S. APPLICATION NO. (If known, see 37 CFR 1.50)
`
`INTERNATIONAL APPLICATION NO.
`PCT/AU2006/001136
`
`fees are submitted:
`The following
`21. 181 Basic National Fee (37 CFR 1.492(a)) ........................................................................................
`22. 181 Examination Fee (37 CFR 1.492(c))
`• If the written opilion prepared by ISAAJS or 1he international preliminary examilation report prepared by
`!PEA/US indicates all claims satisfy provisions of PCT Artk:le 33(1 )-(4) .......................................... $ 0
`• Al olher situations ............................................................................................................
`.•. $21 D
`. II the written opinion of lhe !SAAJS or the International preliminary examination report prepared by
`23. 18J Search Fee (37 CFR 1.492{b))
`. Search lee (37 CFR 1.445(a}(2)) has been paid on lhe international application to tie USPTO
`
`as an International Searching Authority ..............................................................................••...• $100
`• International Search Report prepared by an !SA other than Iha US and provided to lhe Office or
`previously communicated to the US by the IB ............................................................................ $410
`• Al other siruations. ..............................................................................................................
`$510
`
`IPEA/US indicates all claims satisfy provisions of PCT Article 33(1)-(4) .......................................... $ D
`
`....... $310
`
`TOTAL OF 21, 22 and 23 ..
`0 Fee of $260 for each additional 50 sheets for specification and drawings that exceed 100 sheets (excluding
`or comouternmnram lislina fled in an electronicmediuml (37 CFR 1.492fnl.
`~uence ,~
`D Surcharge of $130 for furnishing oa1h or declaration after 30 months from earliest claimed priority date
`(37 CFR 1.492/hll.
`Claims
`T olal Claims
`lncleoendent Claims
`Multi..,.. deoendent claim(sl if rumlicable)
`
`Number Extra
`
`3
`
`Number Filed
`20-20:o
`6 · 3::
`
`Rate
`x$ 50.00
`x$210.00
`+$370.00
`TOTAL OF ABOVE CALCUATIONS =
`18] Annlieant claims small entity status. See !fl CFfi 12.7. The fees indicated above are reduced bv one-half.
`SUBTOTAL:
`D Fee of $130 for furnishing 1he English language translation after 30 monlhs from earliest claimed priority date
`(37 CFR 1.492(i}J.
`
`ATTORNEY'S DOCKET NO.
`12838/5
`CALCULATIONS PTO USE ONLY
`
`$930
`
`$
`$
`
`$
`$630
`$
`$ 1560
`$780
`
`$
`
`$
`$
`
`$
`
`$780
`Amount to be refunded
`Amount to be charoed
`
`$
`$
`
`TOTAL NATIONAL FEE=
`D Aecordal Fee of $40 (per property) for recording lhe attached assignment (37 CFR 1.21 (h)).
`The assionment must be accomoanied bv an aaorepriate cover sheet {37 CFR 3.28, 3.31 ).
`TOTAL FEES ENCLOSED=
`
`a. LI A check in the amount of$ __
`lo cover the above fees is enclosed.
`b. 181 Please charge Deposit Account No. 23-1925 in the amount of $780.00 to cover the above fees.
`c. 181 The Commissioner is hereby authorized to charge any additional fees which ,nay be required, or cr~dit any overpayment to
`Deposit Account No. 23-1925.
`d. D Fees are to be charged to a credit card. WARNING: Information on this form may become public.
`Credit card information should not be included on this form. Provide credit card information and au1horization on PT0-2038.
`The PTO-2038 should only be mailed or taxed to the USPTO. Howevef, when paying the basic national lee, 1he PT0-2038 may
`NOTbefaxedto1he USPTO.
`
`Advisory: If filing by EFS-Web, do NOT attach the PT0-2038 form as a PDF along with your EfS-Web submission. Please be
`advised 1hat 1his is NOT recommended and by doing so your credit card information may be displayed via PAIR. To protect
`your information, it is recommended paying fees online by using the electronic payment method.
`
`NOTE: Where an appropriate time limit under 37 CFR 1.495 has not been met, a petition to revive (37 GFR 1.137(a) or (b))
`must be filed and granted to restore the International Application to pending status.
`
`Send all correspondence to the address associated with
`Customer No. 00757 • Brinks Hofer Gilson Lione
`
`//1
`hf/J
`f,vr-
`Signature
`
`•
`
`;
`-~
`
`Name
`Robert D. Summers, Jr.
`Registration No. 57,844
`
`IPR2022-00600
`Apple EX1002 Page 2
`
`
`
`Certificate Under 37 CFR 1.8
`
`transmitted to the U.S.
`is being electronically
`I hereby certify that this correspondence
`Patent and Trademark Office, Commissioner for Patents, via the EFS on February 12,
`2008.
`
`, Jr., Reg. No. 57,844
`
`TRANSMITTAL LETTER TO THE UNITED STATES
`DESIGNATED/ELECTED OFFICE (D0/EO/US}
`CONCERNING A SUBMISSION UNDER 35 U.S.C. 371
`INTERNA TlONAL APPLICATION NO. I INTERNATIONAL FILING DATE
`
`August10,2006
`
`PCT/AU2006/001136
`TITLE OF INVENTION
`
`ATTORNEY'S DOCKET NO.
`1283815 {729727US)
`U.S. APPLICATION NO. (If known, see 37 CFR 1.5)
`
`PRIORITY DATE CLAIMED
`August12,2005
`
`IMPROVING CARO DEVICE SECURtTY USING BIOMETRICS
`
`the following items and other information:
`
`APPLICANT(S) FOR D0/EO/US
`
`BURKE. Christooher John
`Applicant herewith submits to the United States Designated/Elected Office (D0/EO/US)
`I&! This is a FIRST submission of items concerning a filing under 35 U.S.C. 371.
`1.
`2. D This is a SECOND or SUBSEQUENT submission of items concerning a filing under 35 U.S.C. 371.
`I&! This is an express request to begin national examination procedures (35 u.s.c. 371 (f)}.
`3.
`The submission must Include items (5), (6), (9), and (21) indicated below.
`4. 1'81 The US has been elected (Article 31 ).
`5. 181 A copy of the International Application as filed (35 U.S.C. 371 (c)(2)):
`a. I&! is transmitted herewitll (required only if not transmitted by the International Bureau}.
`b. D has been transmitted by the International Bureau.
`c. D is not required, as the application was filed in the United States Receiving Off1ee (RO/US).
`6. D An English language translation of the International Application into English {35 U.S.C. 371 (c)(2)):
`a. D is attached hereto.
`b. D has been previously submitted under 35 U.S.C. 154(d)(4).
`7. 1'81 Amendments to the claims of the International Application under PCT Article 19 (35 U.S.C. 371(c)(3)):
`a. I&! are transmitted herewith (required only if not transmitted by the International Bureau}.
`b. 0 have been transmitted by the International Bureau.
`c. D have not been made; however, the time limit for making such amendments has NOT expired.
`d. D have not been made and will not be made.
`8. D An English language translation of the amendments to the claims under PCT Article 19 (35 U.S.C. 371(c)(3)}.
`9. 181 An [unexecuted] Declaration for Patent
`10. D An EngHsh language translation of the annexes to the International Preliminary Examination Report under
`PCT Article 36 (35 U.S.C. 371(c)(5)) ami/or amendments under Article 34.
`
`Items 11 to 20 Below concern other document(s) or information included:
`11. 181
`An lnfonTiation Disclosure Statement under 37 CFR 1.97 and 1.98, PTO Form 1449; copies of cited references A3-A6.
`An assignment document for recording. A separate cover sheet in compliance with 37 CFR 3.28 and 3.31 is included.
`12. □
`13. 1'81
`A preliminary amendment.
`An Application Data Sheet under 37 CFR 1.76.
`14. □
`15. □
`16. □
`H. □
`18. □
`19. □
`20. □
`
`A substitute specification.
`
`A power of attorney and/or change of address letter.
`
`form of the sequence listing in accordance with PCT Rule 13ter.2 and 37 CFR 1.821-1.825.
`A computer-readable
`A second copy of the published International Application under 35 U.S.C. 154(d)(4).
`A second copy of the English language translation of the international application under 35 U.S.C. 154(d)(4).
`Other items or information: Return Postcard,
`
`SEND COMPLETED FORM TO: Mail Stop PCT, Commissioner
`
`ror r-a<ents, r-v Box 14511, Alexandria, VA 22313-1450.
`
`IPR2022-00600
`Apple EX1002 Page 3
`
`
`
`U.S. APPLICATION NO. (If known, see 37 CFR 1.50)
`
`INTERNATIONAL APPLICATION NO.
`PCT/AU2006/001136
`
`fees are submitted:
`The following
`21. 181 Basic National Fee (37 CFR 1.492(a)) ........................................................................................
`22. 181 Examination Fee (37 CFR 1.492(c))
`• If the written opilion prepared by ISAAJS or 1he international preliminary examilation report prepared by
`!PEA/US indicates all claims satisfy provisions of PCT Artk:le 33(1 )-(4) .......................................... $ 0
`• Al olher situations ............................................................................................................
`.•. $21 D
`. II the written opinion of lhe !SAAJS or the International preliminary examination report prepared by
`23. 18J Search Fee (37 CFR 1.492{b))
`. Search lee (37 CFR 1.445(a}(2)) has been paid on lhe international application to tie USPTO
`
`as an International Searching Authority ..............................................................................••...• $100
`• International Search Report prepared by an !SA other than Iha US and provided to lhe Office or
`previously communicated to the US by the IB ............................................................................ $410
`• Al other siruations. ..............................................................................................................
`$510
`
`IPEA/US indicates all claims satisfy provisions of PCT Article 33(1)-(4) .......................................... $ D
`
`....... $310
`
`TOTAL OF 21, 22 and 23 ..
`0 Fee of $260 for each additional 50 sheets for specification and drawings that exceed 100 sheets (excluding
`or comouternmnram lislina fled in an electronicmediuml (37 CFR 1.492fnl.
`~uence ,~
`D Surcharge of $130 for furnishing oa1h or declaration after 30 months from earliest claimed priority date
`(37 CFR 1.492/hll.
`Claims
`T olal Claims
`lncleoendent Claims
`Multi..,.. deoendent claim(sl if rumlicable)
`
`Number Extra
`
`3
`
`Number Filed
`20-20:o
`6 · 3::
`
`Rate
`x$ 50.00
`x$210.00
`+$370.00
`TOTAL OF ABOVE CALCUATIONS =
`18] Annlieant claims small entity status. See !fl CFfi 12.7. The fees indicated above are reduced bv one-half.
`SUBTOTAL:
`D Fee of $130 for furnishing 1he English language translation after 30 monlhs from earliest claimed priority date
`(37 CFR 1.492(i}J.
`
`ATTORNEY'S DOCKET NO.
`12838/5
`CALCULATIONS PTO USE ONLY
`
`$930
`
`$
`$
`
`$
`$630
`$
`$ 1560
`$780
`
`$
`
`$
`$
`
`$
`
`$780
`Amount to be refunded
`Amount to be charoed
`
`$
`$
`
`TOTAL NATIONAL FEE=
`D Aecordal Fee of $40 (per property) for recording lhe attached assignment (37 CFR 1.21 (h)).
`The assionment must be accomoanied bv an aaorepriate cover sheet {37 CFR 3.28, 3.31 ).
`TOTAL FEES ENCLOSED=
`
`a. LI A check in the amount of$ __
`lo cover the above fees is enclosed.
`b. 181 Please charge Deposit Account No. 23-1925 in the amount of $780.00 to cover the above fees.
`c. 181 The Commissioner is hereby authorized to charge any additional fees which ,nay be required, or cr~dit any overpayment to
`Deposit Account No. 23-1925.
`d. D Fees are to be charged to a credit card. WARNING: Information on this form may become public.
`Credit card information should not be included on this form. Provide credit card information and au1horization on PT0-2038.
`The PTO-2038 should only be mailed or taxed to the USPTO. Howevef, when paying the basic national lee, 1he PT0-2038 may
`NOTbefaxedto1he USPTO.
`
`Advisory: If filing by EFS-Web, do NOT attach the PT0-2038 form as a PDF along with your EfS-Web submission. Please be
`advised 1hat 1his is NOT recommended and by doing so your credit card information may be displayed via PAIR. To protect
`your information, it is recommended paying fees online by using the electronic payment method.
`
`NOTE: Where an appropriate time limit under 37 CFR 1.495 has not been met, a petition to revive (37 GFR 1.137(a) or (b))
`must be filed and granted to restore the International Application to pending status.
`
`Send all correspondence to the address associated with
`Customer No. 00757 • Brinks Hofer Gilson Lione
`
`//1
`hf/J
`f,vr-
`Signature
`
`•
`
`;
`-~
`
`Name
`Robert D. Summers, Jr.
`Registration No. 57,844
`
`IPR2022-00600
`Apple EX1002 Page 4
`
`
`
`(12) INl'ERNATIONAL APPLICATION PUBLISHED UNDER THE PATENT COOPERATION TREATY (PCT)
`
`(19) World Intellectual Property Organization
`IntemarionaJ Bureau
`
`(43) International Publication Date
`22 February 2007 {22.02.2007)
`
`PCT
`
`(51) International Patent Classification:
`GfJ7F 7110 (2006.0l)
`G06K 9/00 (2006.01)
`G07F 7112 (2006.01)
`G07F 19/00 (2006.01)
`(21) International App.Hcatlon Nwnber:
`PCTIAU2006f001136
`(22) International Filing Date: 10 August 2006 (10.08.2006)
`(25) FiUng Language:
`English
`(26) Publication Language:
`English
`(30) Priority Data:
`AU
`12 August 2005 (12.08.2005)
`2005904375
`(71) Applicant (for all designared States except US): SECURI(cid:173)
`COM (NSW) PTY LTD [AU/AU]; 48 Margate Street,
`Ramgate, NSW 2217 (AU).
`(72) Inventor; and
`(for US only): BURKE, Christo(cid:173)
`(75) Inventor/Applkant
`pher, John [AU/AU]; 48 Margate Street, Ramsgate, NSW
`2217 (AU).
`(74) Agent: SPRUSON & FERGUSON; GPO Box 3898, Syd(cid:173)
`ney, NSW 2001 (AU).
`
`IIIUMII II IHIUll~lllll 1111111111111111111
`1■ 11111111111111
`(10) International Publication Number
`WO 2007/019605 Al
`(81) Designated States (unless othe,wise indicated, for every
`kind ofnati,:maJ protection available): AE, AG, AL, AM,
`AT, AU, AZ, BA, BB, BG, BR, BW, BY, BZ, CA, CH, CN,
`CO, CR, CU, CZ, DE, DK, DM, DZ, EC, EE, EG, ES, FI,
`GB, GD, GE, GH, GM, HN, HR, HU, ID, Il.., IN, IS, JP,
`KE, KG, KM, KN, KP, KR, KZ, LA, LC, LK, LR, LS, LT,
`LU, LV, LY, MA, MD, MG, MK, MN, MW, MX, MZ, NA,
`NG, NI, NO, NZ, OM, PG, PH, PL. PT, RO, RS, RU, SC,
`SD, SE, SO, SK, SL, SM, SY, TJ, TM, TN, TR, TI, TZ,
`UA, UG, US, UZ, VC, VN, ZA, ZM, ZW.
`
`(84) Designated States (unless othe,wise indicated, for every
`kind of regional protectwn available): ARIPO (BW, GH,
`GM, KE, LS, MW, MZ, NA, SD, SL, SZ, TZ, UG, ZM,
`'ZW), Eurasian (AM, AZ, BY, KG, KZ, MD, RU, TJ, TM},
`European (AT. BE, BG, CH, CY, CZ, DE, DK, EE, ES, FI,
`FR, GB, GR, HU, IB, IS, IT, LT, LU, LV, MC, 1'.'L, PL, PT,
`RO, SE, SI, SK, TR). OAP[ (BF, BJ, CF, CG, CI, CM, GA,
`GN, GQ, GW, ML, MR, NE, SN, TD, TG).
`
`Published:
`with i111ema1ional setJrch repon
`
`/Continued on next page]
`
`iiiiiiii -
`--
`iilllllll -= -
`= = = = =
`= --
`= -!!!!!!!!!!! ---
`
`iiiiiiiiiiij;-------------------------------------------
`(54) Title: lMPROVlNG CARD DEVICE SECURITY USING BIOMETRICS
`
`;;;;;
`
`,2()0
`
`biometric
`card
`pointer
`used for
`3rd party
`reader
`application
`
`(57) Abstruct: The disclosed Biometric Card Pointer
`arrangements store (207) a card user's biometric signa(cid:173)
`ture in a local memory (124) in a verification station
`( 127) the first time the card usec uses the verification sta(cid:173)
`tion (127) in question. The biometric signature is stored
`at a memory address (607) defined by the card infor(cid:173)
`mation (605) on the user's card (601). All future uses
`of the particular verification station (127) by someone
`submitting the aforementioned card (601) requires the
`card user to submit both the card and a biometric signa(cid:173)
`ture, which is verified against the signature stored al the
`memory address defined by the card info:rmation (605)
`thereby determining if the person submitting the card is
`amhorised
`to do so.
`
`201
`
`209
`
`202
`see Fig. 8
`
`Request &
`receive biometric
`signature
`
`203
`
`IPR2022-00600
`Apple EX1002 Page 5
`
`
`
`wo 2007 /019605 Al
`
`IIUlllll!IIIIIIIIIIIIIHIHIIIIUIIIIIIIIIIUIIIIHIIIIII
`
`"Guid(cid:173)
`For two-letter codes and other abbreviations, refer tot~
`ance NOies on Codes and Abbrei•iations" appearing ar the begin(cid:173)
`ning of each regular ls~·ue of the PCT Gazette.
`
`IPR2022-00600
`Apple EX1002 Page 6
`
`
`
`WO 2007/019605
`
`PCT/ AU2006/001136
`
`IMPROVING CARD DEVICE SECURITY USING BIOMETRICS
`
`w I -
`
`Field of the Invention
`
`The present invention relates generally to security issues and, in particular, to
`
`secwity issues associated with use of card devices such as credit cards, smart cards~ and
`
`s wireless card-equivalents such as wireless transmitting fobs.
`
`Background
`
`This description makes reference to various types of "card device" and their
`
`associated "reader devices'~ (respectively referred to merely as cards and readers). The
`
`card devices all contain card information that is accessed by "coupling" the card device to
`
`1 o
`
`an associated reader device. The card information is used for various secure access
`
`purposes including drawing cash from an Automatic Teller Machine (ATM), making a
`
`purchase on credit, updating a loyalty point account and so on. The card information is
`
`typically accessed from the card by a corresponding card reader which then sends the card
`
`information to a •~ack-end" system that completes the appropriate transaction or process.
`
`15
`
`One type of card is the .. standard credit card" which in this description refers to a
`
`traditional plastic card 701 as depicted in Fig. 1. The standard credit card is typically
`
`"swiped"
`
`through a slot in a standard credit card reader in order to access card
`
`information 702 on the card 701. The card information 702 can alternately be encoded
`
`using an optical code such as a bar code, in which case the reader is suitably adapted.
`
`20
`
`The standard credit card 701 also typically has the signature 703 of the card-owner
`
`written onto a paper strip on the card 701. This is used for verification of the identity of
`
`the person submitting the card when conducting a transaction using the card 701.
`
`Another type of card device is the smart card (not shown) that typically has an
`
`on-board processor and a memory. The smart card typically has electrical contacts that
`
`25 mate with corresponding contacts on a smart card reader (not shown) when accessing data
`
`in the memory of the smart card.
`
`IPR2022-00600
`Apple EX1002 Page 7
`
`
`
`WO 2007/019605
`
`PCT/AU2006/001136
`
`- 2 -
`
`Another type of card device is the wireless "key-fob" which is a small radio
`
`transmitter that emits a radio frequency (RF) signal when a button on the fob is pressed.
`
`The RF signal can be encoded using the Wiegand protocol. or any other suitable protocol.
`
`such as rolling code or Bluetooth ™ and can include encryption if desired. The key-fob
`
`5
`
`typically has a processor and memory storing data that is sent via the transmitted signal to
`
`a corresponding receiver. which is the "reader device" for this type of card device.
`
`The description also refers to "'card user" and "card owner". The card user is the
`
`person who submits the card for a particular transaction. The card user can thus be the
`
`(authorised) card owner or an (unauthorised) person who has found or stolen the card.
`
`IO
`
`Clearly the signature 703 on the standard credit card 701 in Fig. 1 can be forged.
`
`Thus, if the standard card 701 is stolen or lost, an unauthorised user can use the card
`
`provided that they can supply a sufficiently accurate version of the signature 703. The
`
`only recourse available to the card owner is to notify the card issuing company to
`
`"cancel" the carcl.
`
`15
`
`Current card devices such as the standard credit card. the smart card and the key(cid:173)
`
`fob can have their security enhanced by requiring the card user to provide PIN (Personal
`
`Identification Number)
`
`information through a keypad to verify their identity prior to
`
`completing a transaction. However, PIN information can also be "stolen" by surveillance
`
`of the card owner's hands as the card owner operates the keypad
`
`20
`
`Biometric verification can also be incorporated
`
`into current card systems to
`
`enhance security.
`
`In Fig. 2 the card user swipes the standard card 701 through an
`
`associated card reader (not shown) that accesses the card information 702 on the card 701.
`
`The card user also provides a biometric input 801, for example by pressing their thumb
`
`against a biometric (eg fingerprint) reader 802. The card information 702 that is read by
`
`25
`
`the card reader (not shown), together with the biometric signature that is read by the
`
`biometric (fingerprint) reader 802, are sent, as depicted by a dashed arrow 803; a
`
`IPR2022-00600
`Apple EX1002 Page 8
`
`
`
`WO 2007/019605
`
`PCT/AU2006/001136
`
`-3-
`
`computer network 804, and a further dashed arrow 805, to a backwend system including a
`
`database 806 and associated processor (not shown).
`
`In this arrangement, the card owner needs to have previously registered their
`
`biometric signature 801 and the card information 702 for pre-loading onto the back-end
`
`5
`
`database 806. Having done so, the back-end processor (not shown) compares the pre(cid:173)
`
`loaded information 011 the database 806 with the information received at 805, in order to
`
`check that the card holder of the card 701 is the (authorised) card owner and that the card
`
`itself is valid, in which case the transaction
`
`in question can proceed. Clearly this
`
`arrangement requires a central repository (806) of card information 702 and biometric
`
`10
`
`information 801. This is cumbersome and potentially compromises the privacy of the
`
`holder of the card 701. This arrangement also requires complex back-end database
`
`management and the communications network 804. Furthermore, the front~end biometric
`
`signature reader 802 requires storage and/or processing capabilities for the biometric
`
`signatures. This results in a complex and expensive solution.
`
`15
`
`Privacy concerns have also been raised against the arrangement of Fig. 2 which
`
`involves centralised storage and processing of personal information including biometric
`
`information. These concerns have slowed widespread use of biometrics to enhance user
`
`verification.
`
`Summary
`
`20
`
`It is an object of the present invention to substantially overcome, or at least
`
`ameliorate, one or more disadvantages of existing arrangements.
`
`Disclosed are arrangements,
`
`referred to as Biometric Card Pointer (BCP)
`
`arrangements or systems, which seek to address the above problems relating to secure
`
`access and/or secure processes, by automatically storing a card user's biometric signature
`
`25
`
`in a local memory in a verification station comprising a card reader. a biometric signature
`
`reader,
`
`the
`
`local biometric signature memory
`
`(preferably
`
`in a mechanically and
`
`IPR2022-00600
`Apple EX1002 Page 9
`
`
`
`WO 2007/019605
`
`PCT/ AU2O06/001136
`
`-4-
`
`electronically
`
`tamper-proof
`
`form.), an alphanumeric
`
`keypad
`
`(optional),
`
`and a
`
`communication module for communicating with back-end system that may be remotely
`
`accessible over a network.
`
`The card user's biometric signature is automatically stored the first time the card
`
`5
`
`user uses the verification station in question (this being referred to as the enrolment
`
`phase). TI1e biometric signature is stored at a memory address defined by the ("unique")
`
`card information on the user's card as read by the card reader of the verification station.
`
`Clearly the tenn "unique" means unique in the context of a permitted set of cards
`
`associated with the verification station. This is described in more detail in regard to
`
`10
`
`Fig. 8.
`
`All future uses (referred to as uses in the verification phase) of the particular
`
`verification station by someone submitting the aforementioned card requires the card user
`
`to submit both the card to the card reader and a biometric signature to the biometric
`
`reader, which is verified against the signature stored at the memory address defined by the
`
`15
`
`card information thereby determining if the person submitting the card is authorised to do
`
`so.
`
`Each use of the verification station is identical from the card user's perspective)
`
`requiring merely input of the card to the card reader, and provision of the biometric
`
`signature (eg thumb print or retinal scan etc.) to the biometric reader.
`
`20
`
`An authorised. card user will be automatically verified by the BCP arrangement
`
`in the verification station, and the corresponding
`
`transaction, be it an A TM cash
`
`withdrawal, a credit purchase, a loyalty point update etc. will simply proceed as normal.
`
`An unauthorised card user (ie a card user who misappropriated
`
`the card after the initial
`
`enrolment) will not receive authorisation~ and the intended. transaction will not proceed.
`
`25
`
`Furthermore,
`
`the biometric signature of the unauthorised user will be captured in the
`
`IPR2022-00600
`Apple EX1002 Page 10
`
`
`
`WO 2007/019605
`
`PCT/AU2006/O01136
`
`-5-
`
`verification station, and can be used by the authorities to track the unauthorised user and
`
`prove misappropriation of the card.
`
`The disclosed BCP arrangements require little if any modification of the back(cid:173)
`
`end systems or the (front-end) card. The additional administrative overheads associated
`
`5 with the BCP arrangements, above those already required for systems using (standard)
`
`cards and back-end systems, are minimal. The BCP arrangements also potentially have a
`
`reduced impact on privacy of card users. The biometric signatures stored in the local
`
`database of the verification station can be made off limits to anyone. or limited to law
`
`enforcement agencies, depending on the administrative environment in which the BCP
`
`10
`
`arrangements are implemented. Users of current card systems can learn to use BCP
`
`arrangements without much effort 1 needing only to provide a biometric signature when
`
`asked to do so at the verification station. The difference between the enrolment and
`
`verification phases are transparent to UBers, further reducing the effort in learning how to
`
`use the BCP arrangements.
`
`15
`
`According to a first aspect of the present invention, there is provided a method of
`
`enrolling in a biometric card pointer system. the method comprising the steps of:
`
`receiving card information;
`
`receiving the biometric signature; and
`
`storing, if a memory location defined by the card information is unoccupied, the
`
`20
`
`biometric signature at the defined memory location.
`
`According to another aspect of the present invention, there is provided a method
`
`of obtaining verified access to a process, the method comprising the steps of:
`
`storing a biometric signature according to the noted enrohnent method;
`
`subsequently presenting card information and a biometric signature; and
`
`25
`
`verifying the subsequently presented presentation of the card information and the
`
`biometric signature
`
`if the subsequently presented biometric signature matches
`
`the
`
`IPR2022-00600
`Apple EX1002 Page 11
`
`
`
`WO 2007/019605
`
`PCT/AU2006/001136
`
`-6-
`
`biometric signature at the memory location defined by the subsequently presented card
`
`information.
`
`According to another aspect of the present invention. there is provided a method
`
`of securing a process at a verification station, the method comprising the steps of:
`
`5
`
`(a) providing card information
`
`from a card device to a card reader in the
`
`verification station;
`
`(b) inputting a biometric signature of a user of the card device to a biometric
`
`reader in the verification station;
`
`( c) determining if the provided card information has been previously provided to
`
`1 O
`
`the verification station;
`
`( d) if the provided card information has not been previously provided to the
`
`verification station;
`
`( da) storing the inputted biometric signature in a memory at a memory
`
`location defined by the provided card information; and
`
`15
`
`(db) performing
`
`the process dependent upon
`
`the received card
`
`information;
`
`(e) if the provided card information has been previously provided
`
`to the
`
`verification station;
`
`(ea) comparing
`
`the inputted biometric
`
`signature
`
`to the biometric
`
`20
`
`signature stored in the memory at the memory
`
`location defined by the provided card
`
`information;
`
`( eb) if the inputted biometric signature matches the stored biometric
`
`signature, performing the process dependent upon the received card information; and
`
`(ec) if the inputted biometric signature does not match
`
`the stored
`
`25
`
`biometric signature, not performing
`
`the process dependent upon the received card
`
`information.
`
`IPR2022-00600
`Apple EX1002 Page 12
`
`
`
`WO 2007/019605
`
`PCT/AU2006/001136
`
`-7 -
`
`According
`
`to another aspect of the present
`
`invention,
`
`there is provided a
`
`verification station for securing a process, the verification station comprising:
`
`a card device reader for receiving card information from a card device coupled to
`
`the verification station;
`
`5
`
`a biometric signature reader for receiving a biometric signature provided to the
`
`verification station;
`
`means for determining
`
`if the provided card information has been previously
`
`provided to the verification station;
`
`means, if the provided card information has not been previously provided to the
`
`10
`
`verification station, for;
`
`storing the inputted biometric signature
`
`in a memory at a memory
`
`location defined by the provided card information; and
`
`performing the process dependent upon the received card information;
`
`means, if the provided card information has been previously provided to the
`
`15
`
`verification station. for;
`
`comparing th