The present disclosure relates to fingerprint authentication, and relates more particularly to an enrolment implemented by a smart card to allow a subsequent authentication of a user.
In a known manner, a smart card can use biometric data to authenticate a user, the result of this authentication making it possible for example to validate or reject a transaction implemented by this smart card. Particularly, the fingerprint verification allows securely authenticating the user of a smart card.
Thus, to authenticate a user, a smart card can acquire a fingerprint by means of any digital sensor and compare this fingerprint with a reference fingerprint template which is previously generated and stored in a memory of the smart card during a step called enrolment step. By verifying whether the acquired fingerprint and the reference fingerprint template match, the smart card can thus determine whether the authentication is successful or has failed.
For the digital authentication to offer reliable results, the reference fingerprint template pre-recorded in the smart card must be as faithful as possible regarding the user's finger(s). The enrolment step during which the user records his fingerprint is therefore critical.
However, the complexity of the enrolment step varies depending on the case and depends in particular on the sensitivity of the fingerprint sensor, on the number of fingerprints to be acquired by the smart card and, more generally, on the configuration of the smart card and of the digital sensor in question. It is not always easy for a user to carry out an enrolment of one or several fingers adequately, in particular due to the variable complexity of the enrolment procedure, to the variable sensitivity of the digital sensors, to the more or less limited time in which this enrolment must be done and, more generally, to the variable conditions in which the user may be to carry out this procedure. Climatic conditions (humidity, temperature, etc.) can also influence the quality of the acquired fingerprints during the enrolment step. The constraints in which the enrolment step takes place can particularly be strongly related to the resources, often limited, available to the smart cards.
There is consequently a need for a solution allowing a smart card to reliably and efficiently authenticate a user by means of his fingerprints. Particularly, it is necessary to allow a smart card to carry out authentications by fingerprint in an optimal manner, despite the variable contexts in which a user and the smart card may be. It is particularly necessary to allow a smart card to use reference fingerprint templates that are as faithful as possible regarding the users.
To this end, the present disclosure relates to a fingerprint enrolment (or processing) method implemented by a smart card comprising a memory, the method comprising the execution of a first enrolment by using an electrical power supply provided by a power supply source internal or external to said smart card, said first enrolment comprising:
The present disclosure advantageously allows the smart card to reliably and efficiently authenticate a user by means of fingerprints. Thanks to the disclosure, the smart card can carry out fingerprint authentications in an optimal manner despite the variable contexts in which a user and the smart card may be. This is in particular possible because the smart card of the disclosure can generate the richest and most complete fingerprint template possible, within the limits imposed by the electrical power supply (and therefore processing) resources available to the smart card to execute the enrolment.
According to one particular embodiment, the method comprises:
According to one particular embodiment, in which the electronic device acquires the fingerprints by means of a fingerprint sensor embedded in said electronic device or by cooperating with an external device comprising a fingerprint sensor.
According to one particular embodiment, the method comprises:
According to one particular embodiment, the smart card comprising at least one communication interface for cooperating with at least one external device, the smart card being able to receive, via said at least one communication interface, an electrical power supply from said at least one external device serving as a power supply source;
wherein the smart card determines the mode applied during said first enrolment according to the use of said at least one communication interface.
According to one particular embodiment, the method comprises:
According to one particular embodiment, the characteristic points comprise fingerprint minutiae.
According to one particular embodiment, the number N of first fingerprints obtained to carry out the first enrolment is adapted so as to be higher in the second mode than in the first mode, the amount of aggregated digital data to generate the fingerprint template being a function of the number N.
According to one particular embodiment, the predetermined resolution level applied during the analysis is adapted so as to be higher in the second mode than in the first mode, the amount of aggregated digital data to generate the fingerprint template being a function of said predetermined resolution level.
According to one particular embodiment, said analysis comprises:
According to one particular embodiment, said assessment of a color of each selected pixel is carried out from a reading of said selected pixel and a reading of X pixels neighboring said selected pixel, X being an integer greater than or equal to 0 which is adapted to be greater in the second mode than in the first mode.
According to one particular embodiment, said assessment comprises the generation, for each selected pixel, of a respective color encoded according to a predetermined encoding level, the predetermined encoding level being adapted so as to be of better quality in the second mode than in the first mode, the digital data being extracted from the encoded colors for each selected pixel.
According to one particular embodiment, the smart card acquires and analyzes the N first fingerprints in a predetermined time range, said time range being adapted so as to be greater in the second mode than in the first mode.
According to one particular embodiment, the first enrolment comprises:
According to one particular embodiment, the first enrolment is executed upon detection that an authentication has previously passed successfully.
According to one particular embodiment, the first enrolment is executed upon detection that an authentication has previously passed successfully, the authentication comprising:
According to one particular embodiment, the authentication comprises:
In one particular embodiment, the different steps of the enrolment method are determined by computer program instructions.
Consequently, the disclosure also relates to a computer program on an information medium (or recording medium), this program being capable of being implemented in a smart card and more generally in a computer, this program including instructions adapted to the implementation of the steps of an enrolment method as defined in this document.
This program can be formed of several sub-parts stored in the same memory or in separate memories.
This program can use any programming language, and be in the form of source code, object code, or intermediate code between source code and object code, such as in partially compiled form, or in any other desirable form.
The disclosure also relates to an information medium (or recording medium) readable by the smart card of the disclosure, and more generally by a computer, and including instructions of a computer program as defined in this document.
The information medium can be any entity or device capable of storing the program. For example, the medium can include a storage means, such as a rewritable non-volatile memory or ROM, for example a CD ROM or a microelectronic circuit ROM, or a magnetic recording means, for example a floppy disk or a hard drive.
On the other hand, the information medium can be a transmissible medium such as an electrical or optical signal, which can be conveyed via an electrical or optical cable, by radio or by other means. The program according to the disclosure can be particularly downloaded over an Internet-type network.
Alternatively, the information medium can be an integrated circuit in which the program is incorporated, the circuit being adapted to execute or to be used in the execution of the method in question.
The present disclosure also relates to a corresponding smart card, configured to implement the enrolment method of the disclosure. More specifically, the disclosure relates to a smart card configured to carry out a fingerprint enrolment by using an electrical power supply provided by a power supply source internal or external to said smart card, said smart card comprising:
It should be noted that the different embodiments defined in this document in relation to the enrolment method of the disclosure as well as the associated advantages apply analogously to the smart card of the disclosure.
According to one embodiment, the disclosure is implemented by means of software and/or hardware components. From this perspective, the term “module” can correspond in this document to a software component, a hardware component or a set of hardware and software components.
A software component corresponds to one or several computer programs, one or several sub-programs of a program, or more generally to any element of a program or software able to implement a function or a set of functions, according to what is described in this document for the module concerned.
In the same way, a hardware component corresponds to any element of a hardware assembly able to implement a function or a set of functions, according to what is described in this document for the module concerned. It can be a programmable hardware component or with an integrated processor for the execution of software, for example an integrated circuit, a smart card, a memory card, an electronic card for the execution of firmware, etc.
Other characteristics and advantages of the present disclosure will become apparent from the description given below, with reference to the appended drawings which illustrate exemplary embodiments without any limitation. On the figures:
As indicated above, the disclosure proposes according to various embodiments to allow the authentication of a user of a smart card from his fingerprints.
To do so, the disclosure particularly provides for an enrolment during which a smart card acquires fingerprints and analyzes them so as to extract therefrom digital data used to generate a digital fingerprint template. This fingerprint template can thus be stored by the smart card and then used later as a reference fingerprint to verify the validity of a fingerprint of a user wishing to authenticate himself with the smart card. The smart card is in particular able to operate according to two distinct operating modes—subsequently denoted first and second mode MD1, MD2—according to the level of electrical power supply (or electrical energy) it receives during the enrolment. The smart card determines one or several parameters to be applied during the enrolment according to the mode applied (that is to say according to the mode in which the smart card may be during said enrolment, and therefore according to the level of power supply it receives), so that the fingerprint template has a higher definition (or quality) in the second mode (high electrical power supply) than in the first mode (low electrical power supply).
As indicated in detail below, the disclosure aims in particular to adapt the quality of the fingerprint template generated by the smart card according to the context in which it may be, and more particularly according to the electrical power supply (electrical energy received) available to it to carry out the required analysis processing operations on the acquired fingerprints to produce the fingerprint template.
Given that a smart card generally does not have an internal power supply source, or at most a low-capacity internal power supply source, the disclosure aims to optimize the use of its resources according to the (internal and/or external) power supply source currently available to it during the enrolment, in order to generate a fingerprint template of the best possible quality given the power supply (and therefore processing) resources available to it.
In the present document, an “electrical power supply” refers to the electrical energy provided in any appropriate form (current, voltage, power), by an electrical power supply source (also called power supply source or electrical energy source), to the device to be powered (that is to say to the device of the disclosure in the following embodiments). An electrical power supply can be expressed for example in terms of provided power, provided voltage or provided current.
Aspects of the disclosure can be applied to any smart card, such as in particular a bank card (or payment card), a transport card, an access card, a health insurance card, an identity card, a voting card, a driver's license card, etc., able to carry out any transaction (for example a transaction to make an electronic voting, a transaction allowing access to identity data of the electronic device, a transaction to obtain physical or logical access, etc.).
According to one variant, aspects of the disclosure can apply more generally to electronic devices other than smart cards, able to process transactions, such as for example terminals (Smartphone, tablet, etc.). Aspects of the disclosure can be applied for example to terminals implementing a payment application to process a payment transaction in cooperation with an external terminal.
It should also be noted that the notion of transaction is understood in the broad sense in this document and comprises, for example, in the banking field, both a payment or transfer transaction and a consultation of a bank account on a bank terminal. Aspects of the disclosure are described below within the framework of a payment card intended to carry out bank transactions. It will be understood that other types of transactions or operations can be envisaged within the framework of the disclosure (electronic voting, transaction to access sensitive data, etc.).
Particularly, the disclosure applies to bank cards of the EMV (Europay Mastercard Visa) type or using other types of protocols.
Unless otherwise indicated, the elements common or similar to several figures bear the same reference signs and have identical or similar characteristics, so that these common elements are generally not described again for the sake of simplicity.
It is assumed in this example that the smart card CD1 is a bank card (or payment card). This smart card can have an ID-1 format specified in the ISO/IEC 7810 standard. The smart card CD1 can furthermore be a smart card with contacts (whose characteristics are detailed in the ISO/IEC 7816 standard) and/or a contactless smart card (whose characteristics are detailed in the ISO/IEC 14443 or NFC/ISO 15693 standard).
The smart card CD1 is for example configured to process payment transactions according to the EMV protocol.
As already indicated, other examples of smart cards and protocols are however possible.
In the example considered here, the smart card CD1 comprises a processor 2, a volatile memory (RAM) MR1, a rewritable non-volatile memory MR2, a fingerprint sensor (or fingerprint reader) 4, an internal electrical power supply source SC0 and communication interfaces INT1 and INT2.
The internal components of the smart card CD1 are monitored by the processor 2, for example by means of a data bus. Particularly, the processor 2 can use the volatile memory MR1 to temporarily store data generated during its operation, in particular to execute an enrolment (for example to temporarily store fingerprints FG1 acquired (or obtained) by the smart card CD1 as well as digital data DT1 generated during an enrolment from acquired fingerprints).
The rewritable non-volatile memory MR2 (for example of the Flash or EEPROM type) constitutes a recording medium (or information medium) in accordance with one particular embodiment, readable by the processor 2, and on which a first computer program PG1 is recorded in accordance with one particular embodiment. As a variant, the first program PG1 can be recorded in a read only memory (ROM) (not represented) of the smart card CD1.
The computer program (or application) PG1 include instructions for the execution of the steps of an enrolment method according to one particular embodiment, for example at least one of the exemplary methods described below.
As illustrated in
In the example considered here, the smart card CD1 includes a fingerprint sensor 4 allowing the acquisition of fingerprints FG1 of a user UR, in particular during an enrolment, then later when a user wishes to authenticate with the smart card CD1. However, the presence of a fingerprint sensor in the smart card CD1 is not mandatory. Alternatively or in addition, the smart card CD1 is configured to acquire fingerprints from an external terminal (for example T1 and/or T2 as described below) with which it cooperates, this external terminal (or device) including or using such a fingerprint sensor.
In the example considered here, the smart card CD1 also includes an internal electrical power supply source SC0 able to deliver an electrical power supply AL0 (of the electrical energy) to the smart card CD1. This internal source SC0 can thus be any battery embedded in the smart card CD1, such as for example a supercapacitor or a rechargeable battery, other examples being however possible. It should be noted that variants are also possible in which the smart card CD1 has no internal power supply source. As described below, the smart card CD1 is further configured to connect to at least one external electrical power supply source, the type may vary depending on the case. The way in which the smart card CD1 collects the electrical energy provided from outside may vary depending on the case (contact or contactless transmission, inductive transmission, etc.).
Still in this example, it is assumed that the smart card CD1 includes two communication interfaces INT1 and INT2 that allow communicating respectively with two external terminals (or devices) denoted T1 and T2, respectively. Thus, the smart card CD1 is capable in this example of cooperating with one among the two terminals T1 and T2 to carry out the method of the disclosure. It should be noted that the number and nature of the external devices with which the smart card CD1 can be coupled to carry out the disclosure may vary depending on the case.
Depending on the type of external terminals considered, the communication interfaces INT1 and INT2 can be contact or contactless communication interfaces. According to one particular example, the smart card CD1 has only one communication interface for communicating with the outside.
In the example considered here, the smart card CD1 is configured to communicate contactlessly with the terminal T1 via the communication interface INT1. To do so, the interface INT1 comprises an RF antenna for contactless communication, for example according to the ISO/IEC 14443 or NFC/ISO 15693 standard. The terminal T1 is for example a telecommunications terminal of the Smartphone or the like.
Furthermore, the smart card CD1 is configured in this example to communicate by contact with the external device T2 by means of the communication interface INT2. The interface INT2 comprises for example external contacts to establish a contact connection, according to the ISO/IEC 7816 standard or the like. The device T2 is for example a case (or the like) capable of at least partially accommodating the smart card to establish a contact connection.
According to one particular example, at least one among the devices T1 and T2 comprises a fingerprint sensor (not represented) allowing the smart card CD1 to acquire fingerprints remotely.
As already indicated, the smart card CD1 is able to collect a power supply received from outside the card. In the example envisaged here, the devices T1 and T2 both constitute external power supply sources—denoted respectively SC1, SC2—for the smart card CD1. Thus, once coupled with the smart card CD1, the external devices T1 and T2 are respectively capable of providing electrical power supplies (or electrical energy) AL1, AL2 to the smart card CD1. In this example, the electrical power supply AL1 is provided contactlessly to the smart card CD1 via the interface INT1 while the electrical power supply AL2 is provided by contact to the smart card CD1 via the interface INT2.
As understood by those skilled in the art, the smart card CD1 and its application environment as represented in
As represented in
The modules MU2-MU8 are in particular configured to execute a fingerprint enrolment, as described in more detail later. During such enrolment, the smart card CD1 uses an internal (SC0) or external (SC1 and/or SC2) power supply source to electrically power itself. According to one particular example, the smart card CD1 can use at least two separate power supplies at the same time to execute an enrolment. In this case, the power supply sources together form a global power supply source (internal, external, or mixed internal/external power supply source).
More specifically, the determination module MU2 is configured to determine a mode applied among a first mode MD1 and a second mode MD2. It is meant by “applied mode” the mode (MD1 or MD2) in which the smart card CD1 may be during the execution of the enrolment. According to the first mode MD1, the electrical power supply used by the smart card CD1 to execute the enrolment is below a predefined threshold ALm. On the other hand, according to the second mode MD2, the electrical power supply used by the smart card CD1 to execute the enrolment is above or equal to the predefined threshold ALm. In other words, if the electrical power supply received by the smart card CD1 to execute the enrolment is below the predefined threshold ALm, then it operates in the first mode MD1, otherwise it operates according to the second mode MD2. The threshold value ALm can be set by those skilled in the art on a case-by-case basis, depending in particular on the power supply needs of the smart card CD1 to carry out various processing operations during a fingerprint enrolment.
As described below, the determination module MU2 is also configured to determine at least one parameter PT to be applied during an enrolment.
The obtaining module MU4 is configured to acquire N fingerprints FG1, for example by means of the fingerprint sensor 4 or from one of the external devices T1, T2 with which it is likely to cooperate. As described below, the fingerprints are acquired in the form of image pixels representative of the fingerprints. In the example considered here, N is an integer greater than or equal to 2. Alternatively, N is an integer greater than or equal to 1.
The analysis module MU6 is configured to carry out an analysis of the N fingerprints FG1 acquired by the obtaining module MU4. During this analysis, digital data DT1 representative of characteristic points MT of the fingerprints FG1 are extracted by a reading of the image pixels at a predetermined resolution level RL. As described below, the smart card CD1 can act on this resolution level RL in different ways depending on the case.
The generation module MU8 is configured to generate a fingerprint template ML1 from at least the digital data DT1 extracted from the N first fingerprints. Particularly, the generation module MU8 can generate this template ML1 by aggregation of at least the digital data DT1 extracted by the analysis module MU6.
The generation module MU8 can thus record the fingerprint template ML1 in the non-volatile memory MR2 to allow the subsequent authentication of a user by comparison of at least one new fingerprint FG1 with the fingerprint template ML1 serving as reference.
Thus, the authentication module MU10 can be configured to authenticate a user UR by comparing a new fingerprint FG1 acquired by the obtaining module MU4 after the enrolment, with the fingerprint template ML1 stored in the memory MR2. If the new fingerprint matches the template ML1, then the authentication has passed successfully. Otherwise, the authentication fails or can possibly continue by performing the verification of at least another new fingerprint FG1.
As indicated above, the determination module MU2 is also configured to determine at least one parameter PT applied by the smart card CD1 during the enrolment. Thus, the determination module MU2 is configured to determine, according to the applied mode (MD1 or MD2), at least one parameter PT applied during the enrolment among the number N and the resolution level RL, said at least one parameter being set to be higher in the second mode MD2 than in the first mode MD1 so that the fingerprint template ML1 has a higher definition (or quality) in the second mode MD2 than in the first mode MD1.
In other words, the smart card CD1 can act on at least one of the parameters PT, namely the number N and the resolution level RL, to vary the complexity of the enrolment and thus adapt the quality of the fingerprint template ML1 depending on the electrical power supply level available during the enrolment.
According to one particular example, one of the parameter N and the resolution level RL is adapted (and therefore varies) during the enrolment according to the mode applied between MD1 and MD2, while the other parameter is set whatever the mode applied MD1/MD2.
According to another example, the two parameters N and RL are adapted (and therefore vary) during the enrolment according to the applied mode among MD1 and MD2.
Whatever the embodiment envisaged, the adaptation of one or of the two parameters N and RL is done so that the definition (or quality) of the fingerprint template ML1 thus generated is greater if the smart card CD1 operates in the second mode MD2 (high electrical power supply) than if it operates according to the first mode MD1 (lower electrical power supply).
As described below, several ways can be envisaged to allow the smart card CD1 to adapt the definition (or quality) of the fingerprint template ML1. This definition level is representative of the resolution and/or of the amount of information stored in the fingerprint template ML1, this information defining particularly characteristic points MT of a fingerprint. These characteristic points MT can particularly comprise minutiae characteristic of a fingerprint, as described below.
As also described later, the resolution level RL of the reading of the fingerprints FG1 during the enrolment can be monitored and adapted in various ways. The resolution level RL is characterized for example by at least the number of neighboring pixels that the smart card CD1 takes into account to read a pixel of the image representing the fingerprint, for example to determine the gray level (or the color) of said pixel. This particular case and variants are described below.
The configuration and operation of the modules MU2-MU10 of the smart card CD1 will appear more specifically in the exemplary embodiments described below with reference to
One particular embodiment is now described in particular with reference to
It is assumed that an authentication step S2 is carried out by the smart card CD1 in order to authenticate a user UR wishing to enroll with the smart card CD1. This authentication S2 can be carried out in any way, for example by means of a verification of a secret PIN code or by verifying the validity of a fingerprint FG1 acquired by the smart card CD1.
Upon detection that the authentication S2 has passed successfully, the smart card CD1 executes an enrolment S3 by using an electrical power supply AL provided by a power supply source internal or external to the card CD1. This enrolment S3 comprises steps S4 to S16 described below.
As already described, it is considered in this example that the smart card CD1 embeds an internal power supply source SC0. However, it is assumed here that this internal source SC0 has a limited power supply capacity that is to say below a threshold value ALm. Furthermore, the smart card CD1 is able to cooperate with the external device T1 and/or T2 in particular in order to collect the electrical power supply AL1 and/or AL2 provided respectively by these devices.
During step S4, the smart card CD1 determines the applied mode MD (that is to say the mode MD in which the smart card CD1 may be, or operates) during the enrolment S3 among the modes MD1 and MD2. As already indicated, if the electrical power supply (or electrical energy) AL collected by the smart card CD1 during the enrolment S3 is below a predefined threshold ALm, it then operates according to the first mode MD1 (low electrical power supply). If, on the other hand, the electrical power supply AL collected by the smart card CD1 during the enrolment S3 is above or equal to this predefined threshold ALm, it then operates according to the second mode MD2 (high electrical power supply).
In other words, it is the threshold value ALm that defines in the present case the type of a power supply source, namely whether it is a source providing an electrical power supply called “low” electrical power supply (MD1) or a source providing an electrical power supply called “strong” electrical power supply (MD2). This threshold value ALm can be defined for example in terms of delivered power (or voltage, or current), and can be adapted by those skilled in the art according in particular to the needs in terms of power supply of the smart card CD1, in view in particular of the processing operations likely to be carried out by the card during the enrolment.
For simplicity, it is assumed in this example that the electrical power supply AL collected by the smart card CD1 during the enrolment S3 only comes from a single source SC0, SC1 or SC2, although other implementations are possible where the smart card CD1 can simultaneously collect the electrical power supply delivered by a plurality of electrical power supply sources. Thus, it is assumed that if the smart card CD1 is coupled with the device T1 or T2, it receives the corresponding electrical power supply AL1 or AL2 so that it does not use its internal source SC0 to be powered. Other implementations are however possible.
Thus, it is considered in the present case that the sources SC0 and SC1 constitute “low” power supply sources while the source SC2 constitutes a “high” power supply source. In other words, the electrical power supplies AL0 and AL1 delivered by the sources SC0 and SC1 are below the predefined threshold ALm, while the electrical power supply AL2 delivered by the source SC2 is above or equal to the predefined threshold ALm. It is assumed particularly that the Smartphone T1 is configured to provide a limited electrical power supply AL1 contactlessly (even if it has a more substantial power supply source than the smart card CD1) while the case T2 embeds here a power supply source SC2 able to provide a high power supply AL2 to the smart card CD1 when these two elements cooperate by contact. Other examples are however possible.
Different ways can be adopted by the smart card CD1 to determine in S4 in which mode MD1 or MD2 it operates during the enrolment S3 depending on the electrical power supply AL it detects. The smart card CD1 can particularly determine at least one parameter characterizing (directly or indirectly) the power supply source it uses and applies predefined rules RL1 stored in its memory MR2 to deduce therefrom whether it is the mode MD1 or MD2 that is applicable.
According to a first example represented in
According to one particular example, in the absence of a signal SL received during the enrolment S3 for which a mode MD1 or MD2 is specified in the rules RL1, the smart card CD1 determines (S4) in accordance with the rules RL1 that it operates in the first mode MD1 (low electrical power supply), assuming that it is the internal power supply source SC0 that is used.
According to one variant of the first example above, the signal SG received from an external device (T1 or T2) identifies the electrical power supply (SC1 or SC2) provided to the smart card CD1 during the enrolment S3. From the predefined rules RL1, the smart card CD1 can thus determine which mode (MD1 or MD2) to apply as a function of the signal SG received.
More generally, in this first exemplary embodiment, the signal SG comprises any information allowing the smart card CD1 to determine which mode (MD1 or MD2) to apply during the enrolment S3. According to another variant, the signal SG received from an external device (T1 or T2) identifies the mode to be applied (MD1 or MD2), so that no predefined rule RL1 is necessary.
According to a second example represented in
According to the example represented in
According to a third example represented in
Still with reference to
During an acquisition step S8, the smart card CD1 acquires N fingerprints FG1, N being an integer greater than or equal to 2. These fingerprints FG1 obtained in S8 constitute “first” fingerprints digital within the meaning of the disclosure.
As schematically represented in
As indicated above, the number N of fingerprints FG1 acquired by the smart card CD1 at S8 can be adapted according to the applied mode MD1 or MD2. In other words, the smart card CD1 can apply in S8 a number N which is greater in the second mode MD2 than in the first mode MD1 to take into account the fact that the smart card CD1 has more energy in the mode MD2 and therefore can process more fingerprints FG1 during the enrolment S3.
According to one particular example, following the determination (S6) of the number N of fingerprints to be acquired in S8, the smart card CD1 sends to an external terminal a message including the number N to be applied in S8, in order to allow the external terminal to invite the user UR to carry out the fingerprint acquisitions requested. This external terminal can be for example the external device (T1 or T2) with which the smart card CD1 is coupled or any other terminal.
The smart card CD1 performs in S10 an analysis of the N acquired fingerprints FG1. During this analysis, digital data DT1 representative of characteristic points MT of the N fingerprints FG1 are extracted by a reading of the image pixels PX at a predetermined resolution level RL. The analysis S10 can start after completion of the acquisition step S8 or, alternatively, the analysis S10 can be executed while the acquisition S8 is still in progress.
In a known manner, each fingerprint FG1 constitutes a representation of the dermo-epidermal ridges (or friction ridges) of a finger of a user UR. The geometry of these ridges forms a template specific to each person and allows them to be authenticated with great reliability. This template is characterized by characteristic points (also called singular points) denoted MT (
During the analysis S10, the smart card CD1 thus reads all or part of the image pixels PX of the acquired fingerprints FG1 so as to extract therefrom the digital data DT1 mentioned above (
According to one particular example, during the analysis S10, the smart card CD1 selects (S12) all or part of the image pixels PX of each fingerprint FG1. The pixels selected by the smart card CD1 in S12 are denoted PX1 (
As described later, the smart card CD1 can act on various factors in S6 to adapt the resolution level RL (or resolution degree) applied during the reading S14 during the analysis S10.
During a generation step S16 (
It is assumed in the present case that there is no pre-existing fingerprint template ML stored in the memory MR2 of the smart card CD1 at the stage of the generation step S16. Also, the generation S16 amounts to creating a new fingerprint template ML1 from the digital data DT1 extracted in S10. In the case of generation of a new template, the digital data DT1 of the N fingerprints FG1 are aggregated together to form the new fingerprint template ML1.
According to one variant, during the generation step S16, the fingerprint template ML1 is generated from the digital data DT1 extracted in S10 and from a pre-existing fingerprint template ML, that to say a fingerprint template ML (for example ML2 described below) pre-recorded in the memory MR2. In this variant, the generation S16 therefore amounts to updating a pre-existing fingerprint template to generate the new fingerprint template ML1. In the case of a template update, the digital data DT1 of each fingerprint FG1 obtained in S8 are aggregated (S16), fingerprint-by-fingerprint, with (or in) the pre-recorded fingerprint template ML so as to obtain the updated fingerprint template ML1. The thus generated fingerprint template ML1 then replaces the pre-existing fingerprint template.
The fingerprint template ML1 generated in S16 (
During the generation step S16, the smart card CD1 records the fingerprint template ML1 in its memory MR2 to allow the subsequent authentication of fingerprints FG1 by comparison with the fingerprint template ML1 serving as a reference.
Thus, once the enrolment S3 is complete, the smart card CD1 can carry out an authentication step S18 based on the fingerprint template ML1 stored in memory. To do so, the smart card CD1 acquires one (or several) new fingerprint(s) FG1 by means of its fingerprint sensor 4 or an external device with which it cooperates. The smart card CD1 compares this new fingerprint FG1 with the fingerprint template ML. The smart card CD1 detects that the authentication S18 has passed successfully only if this fingerprint FG1 coincides with the template ML1. Otherwise, the authentication S18 fails or the authentication S18 continues based on another fingerprint acquisition FG1.
As indicated above, during the determination step S6 (
In accordance with the disclosure, at least one parameter PT among the number N and the resolution level RL is determined (or adapted) in S6 according to the applied mode (MD1 or MD2) during the enrolment (as detected in S6). Thus, said at least one parameter is set to be higher in the second mode MD2 than in the first mode MD1 so that the fingerprint template ML1 generated in S16 has a definition (or definition level, or quality) higher when the smart card CD1 operates in the second mode MD2 than when the smart card CD1 operates according to the first mode MD1 during the enrolment S3. The definition (or quality) of the fingerprint template ML1 is representative of the resolution and/or the amount of information stored in this template. The definition of the fingerprint template ML1 is for example characterized by the number of characteristic points MT (of minutiae for example) defined in the template ML, these points allowing a comparison with corresponding regions of a fingerprint to be verified. The definition of the fingerprint template ML1 can also be characterized by the amount or accuracy of the information characterizing each characteristic point MT, as described below.
According to a first particular example, the smart card CD1 adapts in S6 the number N according to the mode MD1/MD2 determined in S4. The resolution level RL can be kept constant regardless of the applied mode MD1/MD2. Particularly, the number N is adapted so that it is higher in the mode MD2 than in the mode MD1.
For example, the smart card CD1 is configured to require 8 fingerprint acquisitions FG1 in the second mode MD2 and only 5 fingerprint acquisitions FG1 in the first mode MD1, which allows speeding up the enrolment and limiting the resource and energy consumption when the smart card CD1 only has a limited power supply source (mode MD1). Conversely, the adaptation of the number N allows increasing the number of fingerprints FG1 used in the second mode MD2 to generate the fingerprint template ML, which leads to an increased quality of said template.
According to a second particular example, the smart card CD1 adapts in S6 the resolution level RL according to the mode MD1/MD2 determined in S4. The number N can be kept constant N regardless of the applied mode MD1/MD2. Particularly, the resolution level RL is adapted so that it is higher in the second mode MD2 than in the first mode MD1. The nature of this resolution level RL and the way in which it may be monitored are described below.
According to a third particular example, the smart card CD1 adapts in S6 the number N and the resolution level RL so that these are higher in the second mode MD2 than in the first mode MD1.
It is thus possible to act on various ways on the parameters N and/or RL, but insofar as the setting of the parameters PT leads to the generation in S16 of a fingerprint template ML1 having an increased definition or quality in the second mode MD2 compared to the first mode MD1.
Furthermore, it is possible to envisage various ways of monitoring the resolution level RL of the reading of the fingerprints FG1 carried out in S10 (
As described previously, during the analysis S10 (
According to one particular embodiment, the smart card CD1 assesses in S14 a gray level (or a color) characterizing each pixel PX1 selected in S12. This assessment is carried out from a reading of each selected pixel PX1 and a reading of X neighboring pixels—denoted PX2—of said selected pixel PX1. In other words, to determine the gray level (or color) of a selected pixel PX1, the smart card CD1 reads (or analyzes) this pixel as well as X neighboring pixels PX2 (for example X predetermined neighboring pixels adjacent to said pixel PX1) and combines the gray levels (or color) obtained for all these pixels in order to deduce therefrom the gray level (or color) of the selected pixel PX1.
The number X is an integer greater than or equal to 0 (in one particular example, X≥1). In this particular embodiment, the smart card DV1 adapts in S6 (
The smart card CD1 can for example apply a number X=20 in the first mode MD1 and X=200 in the second mode MD2.
Furthermore, during the assessment S14 (
According to one particular embodiment, this encoding level Y is adapted by the smart card CD1 in S6 (
By way of example, the smart card CD1 can encode the gray level (or color) of each pixel PX1 selected on Y=8 bits in the first mode MD1 and on Y=16 bits in the second mode MD2. The higher the number of encoding bits, the higher the resolution level RL of the reading S14 (and therefore of the digital data DT1 thus extracted). The algorithm implemented by the smart card CD1 to read the color of the image pixels PX can thus be parameterized appropriately by adapting the resolution of the color coding according to the mode MD1/MD2 applied during the enrolment S3.
According to one particular embodiment, the smart card CD1 defines (or adapts) in S6 the number (or the proportion) of pixels PX1 selected in S12 to carry out the reading of the gray levels. The smart card CD1 can adapt the number of selected pixels PX1 so that it is higher in the second mode MD2 than in the first mode MD1. The higher the number of pixels PX1 selected in S12, the higher the resolution level RL of the reading S14 (and therefore of the digital data DT1 thus extracted). In this case, this number of pixels PX1 per fingerprint FG1 characterizes the resolution level RL of the reading of image pixels PX carried out in S10.
According to one particular embodiment, the smart card CD1 carries out the acquisition S8 and the analysis S10 of the N fingerprints FG1 in a predetermined time range, this time range being adapted by the smart card CD1 during the enrolment S3 so as to be longer in the second mode MD2 than in the first mode MD1. By thus parameterizing the temporal aspect of the processing of the fingerprints FG1, the smart card CD1 advantageously has the allotted/allocated time to carry out the enrolment S3 according to the chosen resolution level RL.
The present disclosure advantageously allows the smart card CD1 to reliably and efficiently authenticate a user by means of fingerprints. Thanks to aspects of the disclosure, the smart card CD1 can carry out authentications by fingerprint in an optimal manner despite the variable contexts in which a user and the smart card may be.
It is common for a user not to correctly enroll his fingerprint with a smart card. Even if the enrolment procedure is followed, the quality of the fingerprint template thus generated is not always sufficient. Thus, many situations may require an increased fingerprint template quality to compensate for various disturbances affecting the performances of the authentication. For example, changing climatic conditions (temperature, humidity, etc.) or a variation over time of the performances of the fingerprint sensor may result in a fingerprint template not being sufficiently accurate to allow for a reliable authentication in all circumstances.
However, the generation of a high-definition fingerprint template requires time and processing resources that are not always available for a smart card. The resources available are intrinsically related to the electrical power supply available to the smart card to carry out the enrolment. Due to the various internal and external power supply sources that a smart card can use depending on the case, it is necessary to adapt the way in which a fingerprint enrolment is carried out according to the context in which the smart card may be.
Thus, the disclosure allows generating a fingerprint template as rich and as complete as possible, within the limits imposed by the electrical power supply (and therefore processing) resources available to the smart card to execute the enrolment.
A user can for example carry out a more faithful enrolment when his smart card is coupled by contact with a case (having a large battery) than when his smart card is contactlessly coupled with a Smartphone (configured to provide a limited electrical power supply).
The smart card of the disclosure is thus capable of generating faithful fingerprint templates vis-à-vis the users, while optimizing the use of the resources of the smart card. To do so, the smart card adapts the enrolment parameterization according to the level of the available power supply source. As described above, the number N of fingerprints used and/or the resolution level RL for the reading of these fingerprints can be adapted to guarantee a higher definition of the fingerprint image template in the second mode MD2 than in the first mode MD1. To increase or decrease the resolution level RL, various resolution factors described above can be adapted (either one or a plurality at the same time).
According to one particular embodiment represented in
The smart card CD1 then verifies, for each first fingerprint FG1 obtained during the enrolment S3, whether the determined level of overlap reaches a predetermined minimum level of overlap TH1. During the generation step S16 (
The verification of the level of overlap allows the smart card CD1 to verify whether it is capable of aggregating together the different fingerprints to form a fingerprint template ML1. The fingerprint common part is used during the generation of the fingerprint template ML to verify that each acquired fingerprint is a fingerprint of the same finger (possibly of the same finger as that of the pre-existing fingerprint template) and to accurately aggregate the digital data extracted from each fingerprint FG1 together and/or with a pre-existing fingerprint template (
According to this embodiment, the smart card CD1 adapts the minimum level of overlap TH1 during the first enrolment S3, so as to be higher if no initial enrolment (other than the enrolment S3) has been carried out prior to the enrolment S3 (
The smart card CD1 can thus act on the level of overlap TH1 required between the fingerprints FG1 acquired during the enrolment S3 to authorize the aggregation of the fingerprints, depending on the type of enrolment considered. The higher the minimum level of overlap TH1, the less the smart card CD1 tolerates significant movements of the finger of a user between each fingerprint acquisition, and possibly the pre-recorded fingerprint template ML2, during the enrolment S3.
During an initial enrolment, it can be assumed that the biometric fingerprint sensor has optimal performances. However, changes can degrade the performances of the sensor over time. The smart card CD1 can therefore advantageously adapt the minimum level of overlap TH1 during the first enrolment S3, so as to be higher if the enrolment S3 considered is an initial enrolment (no other enrolment has been carried out beforehand) than if the enrolment S3 considered is a subsequent enrolment (updated subsequently to the initial enrolment).
Thus, for the initial enrolment, a higher minimum level of overlap TH1 can be required in order to obtain a good quality initial fingerprint template. For the subsequent enrolments, the level of overlap required can be lower because anatomical changes may have affected the user's fingers and/or sensor changes may also have occurred.
One particular embodiment is now described with reference to
Following the preliminary enrolment S30, the smart card CD1 carries out the authentication S2 (
During the authentication S2, the smart card CD1 acquires (S34,
The enrolment S3 described above is then executed by the smart card CD1 upon detection that the authentication S2 has passed successfully.
As already described, during the enrolment S3, the fingerprint template ML1 is generated in S16 (
Thus, the smart card CD1 can obtain in S8 the N first fingerprints FG1 by selection of at least one fingerprint FG2 already acquired during the authentication S2 preceding the enrolment S3 and/or by acquisition of at least one new fingerprint FG1 during the enrolment S3. The use of all or part of the fingerprints FG2 acquired during the authentication S2 to generate in S16 (
In the example represented in
It should be noted that the order in which the steps of the enrolment method are linked to each other as described previously in particular with reference to
Those skilled in the art will understand that the embodiments and variants described above only constitute non-limiting exemplary implementations of the disclosure. Particularly, those skilled in the art may envisage any adaptation or combination of the embodiments and variants described above in order to meet a very specific need.
Number | Date | Country | Kind |
---|---|---|---|
FR1915263 | Dec 2019 | FR | national |
Filing Document | Filing Date | Country | Kind |
---|---|---|---|
PCT/FR2020/052561 | 12/18/2020 | WO |