Patent Application
20170337417
The present invention relates to a passive RFID device including a fingerprint scanner, and particularly to a self-contained, fingerprint identification RFID device in which both the enrolment and the matching of fingerprint data is performed by the same RFID device.
Data output from the control circuit 14 is connected to a field effect transistor 16 that is connected across the antenna 8. By switching on and off the transistor 16, a signal can be transmitted by the RFID device 2 and decoded by suitable control circuits 18 in the reader 4. This type of signalling is known as backscatter modulation and is characterised by the fact that the reader 4 is used to power the return message to itself.
As an additional security measure, some RFID devices have been adapted to additionally process biometric identification data to provide improved security. In such systems, the user is provided with an RFID card having a biometric template stored on it. A terminal, for example to enable the owner of the card to gain access to money or physical access to a building or office, is provided with a fingerprint sensor and, to authorise the user, a fingerprint read from the terminal is transmitted from the terminal to the RFID card, where a match is performed with the stored template on the card. The RFID card then wirelessly communicates to the terminal the results of the live matching, yes or no.
This type of device, however, has been found to be unreliable due to inconsistent scanning of the fingerprint between terminals. At least the preferred embodiments of the present invention seek to provide improved fingerprint matching when using a portable RFID fingerprint device.
In summary, the present invention provides a passive RFID device comprising a fingerprint authentication engine including a processing unit and a fingerprint scanner, where the fingerprint authentication engine is capable of performing both an enrolment process and a matching process on a fingerprint of a finger presented to the fingerprint scanner.
With fingerprint biometrics, one common problem has been that it is difficult to obtain repeatable results when the initial enrolment takes place in one place, such as a dedicated enrolment terminal, and the subsequent enrolment for matching takes place in another, such as the terminal where the matching is required. The mechanical features of the housing around each fingerprint sensor must be carefully designed to guide the finger in a consistent manner each time it is read. If a fingerprint is scanned with a number of different terminals, each one being slightly different, then errors can occur in the reading of the fingerprint. Conversely, if the same fingerprint sensor is used every time then the likelihood of such errors occurring is reduced.
In accordance with the proposed device, both the matching and enrolment scans may be performed using the same fingerprint sensor and within the same RFID device. As a result, scanning errors can be balanced out because, if a user tends to present their finger with a lateral bias during enrolment, then they are likely to do so also during matching.
Thus, the use of the onboard fingerprint sensor for all scans used with the RFID device significantly reduces errors in the enrolment and matching, and hence produces more reproducible results.
Furthermore, by performing all processing in the fingerprint authentication engine, security can be improved because the fingerprint data of the user need not be made available to another device (as is the case with separate enrolment). Preferably the RFID device is also configured such that the fingerprint data cannot be transmitted from the RFID device.
In prior art systems, fingerprint sensors have not been included in RFID devices themself, but rather as part of a separate terminal; this is because of the relatively high power requirements of the fingerprint sensor. Particularly, due to the fact that most RFID terminals pulse their excitation fields, the power received by an RFID device is often too low to passively drive a fingerprint sensor. As such, separate batteries may have needed to be included in the RFID device (i.e. making it a semi-passive RFID device), which increases the cost of manufacturing the RFID devices. Further, even in a device with an onboard fingerprint sensor, the enrolment process has previously been performed separately with a different device.
Thus, viewed from a first aspect, the present invention provides a passive RFID device comprising: an antenna for harvesting energy from an RF excitation field; and a fingerprint authentication engine including a processing unit, a fingerprint scanner and a memory, the fingerprint authentication engine and the antenna being arranged such that the fingerprint authentication engine is powered by the energy harvested by the antenna, wherein the fingerprint authentication engine is capable of performing an enrolment process in which data representing a fingerprint of a finger presented to the fingerprint scanner is stored in the memory; and wherein the fingerprint authentication engine is capable of performing a matching process in which a fingerprint of a finger presented to the fingerprint scanner is compared with fingerprint data stored in the memory.
In a preferred aspect, the passive RFID device further comprises an RFID device controller arranged to perform a method, comprising: receiving, by the antenna, a command from a powered RFID reader; receiving, by the antenna, a substantially continuous radio-frequency excitation field whilst the RFID reader waits for a response to the command; performing the enrolment process or the matching process in the fingerprint authentication engine; determining a period that the RFID device has been waiting for a response; and responsive to determining that the period exceeds a predetermined threshold if the process has not been completed, sending by the antenna a request for a wait time extension to the RFID reader.
As discussed above, typical RFID readers pulse their excitation signal on and off so as to conserve energy, rather than steadily emitting the excitation signal. Often this pulsing results in a duty cycle of useful energy of less than 10% of the power emitted by steady emission. This may be insufficient to power a fingerprint authentication engine, and particularly where the fingerprint authentication engine includes an area-type fingerprint scanner, which has relatively high power consumption. Indeed, in a preferred embodiment, the fingerprint scanner is an area-type fingerprint scanner.
The above method performed by the RFID device controller overcomes this problem by taking advantage of certain aspect of the standard functionality of a RFID reader complying with, for example, international standard ISO/IEC 14443. Particularly, whilst the RFID reader waits for a response to a command, it must maintain a non-pulsing, preferably a substantially continuous, radio frequency (RF) excitation field.
Thus, in accordance with this method, when the RFID reader sends a command to the RFID device, the device does not respond, but rather waits and harvests the power to drive the functionality of the fingerprint authentication engine.
The process performed by the fingerprint authentication engine is preferably one not required for responding to the command, for example the command may be a “request to provide identification code” command. That is to say, a response to the command from the RFID device is intentionally delayed so as to allow the processing to be performed.
In the preferred embodiments, the RFID device does not respond to the command whilst the fingerprint authentication engine is performing the process. Furthermore, the method preferably further comprises: after the fingerprint authentication engine completes the process, responding by the RFID device to the command.
The steps of “determining a period that the RFID device has been waiting for a response; and responsive to determining that the period exceeds a predetermined threshold if the process has not been completed, sending by the RFID device a request for a wait time extension to the RFID reader” are preferably repeated until the process is completed and/or a response to the command has been sent. For example, after the process has been completed, the RFID device may allow the wait time to expire, if no further communication with the RFID reader is required. Alternatively, a response to the RFID reader may be sent, for example if the process was part of an authorisation step before responding to the command.
Preferably, the period is a time since the command was received or since the last wait time extension request was made. Thus, the request for a wait time extension can be sent before expiry of the current wait time to ensure that the RFID reader continues to maintain the RF excitation field until the process is complete.
Without using a request for a wait time extension, the maximum default time that a non-pulsing RF excitation field could be supplied is 4.949 seconds for an RFID reader complying with international standard ISO/IEC 14443. Thus, the method performed by the RFID device controller is particularly applicable to fingerprint matching and enrolment, as these processes require input from the user (i.e. one or more fingerprint scans), which can only be processed at the rate that they are supplied by the user of the RFID device. The method particularly allows these processes to be performed by the fingerprint authentication engine when the process requires greater than 5.0 seconds to be completed.
As discussed above, the method is particularly applicable to devices and readers complying with international standard ISO/IEC 14443 (although the method may be applicable also to other standards operating in a similar manner), and thus the RFID device is preferably a proximity integrated circuit card (PICC) and the RFID reader is preferably a proximity coupling device (PCD). The PICC and PCD preferably comply with the definitions set forth in the international standard ISO/IEC 14443. The predetermined threshold is preferably below a pre-arranged first wait time of the PICC and the PCD.
Viewed from a second aspect, the present invention also provides a method comprising: providing a passive RFID device including a fingerprint authentication engine including a memory and a fingerprint scanner; at a first time, passively powering the fingerprint scanner of the RFID device using energy harvested from an RF excitation field; and enrolling a fingerprint of a finger presented to fingerprint scanner onto the memory of an RFID device; and at a second, subsequent time, passively powering the fingerprint scanner of the RFID device using energy harvested from an RF excitation field; scanning a fingerprint of a finger presented to fingerprint scanner; and comparing, by the fingerprint authentication engine, the scanned fingerprint to the fingerprint enrolled onto the memory.
During the enrolment and matching steps, the fingerprint authentication engine is preferably powered only by the energy harvested by the antenna.
The fingerprint scanner is preferably an area-type fingerprint scanner.
As discussed above, typical RFID readers pulse their excitation signal on and off so as to conserve energy, rather than steadily emitting the excitation signal, which can result in a duty cycle that is insufficient to power a fingerprint authentication engine, particularly one including an area-type fingerprint scanner. Therefore, the energy is preferably harvested by a method comprising: receiving, by the RFID device, a command from a powered RFID reader; receiving, by the RFID device, a non-pulsing continuous radio-frequency excitation field whilst the RFID reader waits for a response to the command; harvesting, by the RFID device, power from the excitation field; supplying the power extracted from the excitation field to the fingerprint authentication engine; performing the matching or the enrolment process in the fingerprint authentication engine; determining a period that the RFID device has been waiting for a response; and responsive to determining that the period exceeds a predetermined threshold if the process has not been completed, sending, by the RFID device, a request for a wait time extension to the RFID reader.
Thus, in accordance with this method, when the RFID reader sends the command to the RFID device, the device preferably does not respond, but rather waits and harvests the power to drive the enrolment or matching functionality of the fingerprint authentication engine.
The process performed by the fingerprint authentication engine is one not required for responding to the command, for example the command may be a “request to provide identification code” command. That is to say, a response to the command from the RFID device is intentionally delayed so as to allow the processing to be performed.
In the preferred embodiments, the RFID device does not respond to the command whilst the fingerprint authentication engine is performing the process. Furthermore, the method preferably further comprises: after the fingerprint authentication engine completes the process, responding by the RFID device to the command.
The steps of “determining a period that the RFID device has been waiting for a response; and responsive to determining that the period exceeds a predetermined threshold if the process has not been completed, sending by the RFID device a request for a wait time extension to the RFID reader” are preferably repeated until the process is completed and/or a response to the command has been sent.
Preferably, the period is a time since the command was received or since the last wait time extension request was made.
The matching or enrolment process preferably requires greater than 5.0 seconds to be completed.
The RFID device is preferably a proximity integrated circuit card (PICC) and the RFID reader is preferably a proximity coupling device (PCD). The PICC and PCD preferably comply with the definitions set forth in the international standard ISO/IEC 14443. The predetermined threshold is preferably below a pre-arranged first wait time of the PICC and the PCD.
The RFID device of the method may be an RFID device as described in the first aspect, optionally including any or all of the preferred features.
The RFID device may be any one of: an access card, a credit card, a debit card, a pre-pay card, a loyalty card, an identity card, a cryptographic card, or the like.
Certain preferred embodiments of the present invention will now be described in greater detail, by way of example only and with reference to the accompanying Figures, in which:
The RFID reader 104 is a conventional RFID reader and is configured to generate an RF excitation field using a reader antenna 106. The reader antenna 106 further receives incoming RF signals from the RFID device 102, which are decoded by control circuits 118 within the RFID reader 104.
The RFID device 102 comprises an antenna 108 for receiving an RF (radio-frequency) signal, a passive RFID chip 110 powered by the antenna, and a passive fingerprint authentication engine 120 powered by the antenna 108.
As used herein, the term “passive RFID device” should be understood to mean an RFID device 102 in which the RFID chip 110 is powered only by energy harvested from an RF excitation field, for example generated by the RFID reader 118. That is to say, a passive RFID device 102 relies on the RFID reader 118 to supply its power for broadcasting. A passive RFID device 102 would not normally include a battery, although a battery may be included to power auxiliary components of the circuit (but not to broadcast); such devices are often referred to as “semi-passive RFID devices”.
Similarly, the term “passive fingerprint/biometric authentication engine” should be understood to mean a fingerprint/biometric authentication engine that is powered only by energy harvested from an RF excitation field, for example an RF excitation field generated by the RFID reader 118.
The antenna comprises a tuned circuit, in this arrangement including an induction coil and a capacitor, tuned to receive an RF signal from the RFID reader 104. When exposed to the excitation field generated by the RFID reader 104, a voltage is induced across the antenna 108.
The antenna 108 has first and second end output lines 122, 124, one at each end of the antenna 108. The output lines of the antenna 108 are connected to the fingerprint authentication engine 120 to provide power to the fingerprint authentication engine 120. In this arrangement, a rectifier 126 is provided to rectify the AC voltage received by the antenna 108. The rectified DC voltage is smoothed using a smoothing capacitor and supplied to the fingerprint authentication engine 120.
The fingerprint authentication engine 120 includes a processing unit 128 and a fingerprint reader 130, which is preferably an area fingerprint reader 130 as shown in
The fingerprint authentication engine 120 is arranged to scan a finger or thumb presented to the fingerprint reader 130 and to compare the scanned fingerprint of the finger or thumb to pre-stored fingerprint data using the processing unit 128. A determination is then made as to whether the scanned fingerprint matches the pre-stored fingerprint data. In a preferred embodiment, the time required for capturing a fingerprint image and accurately recognising an enrolled finger is less than one second.
If a match is determined, then the RFID chip 110 is authorised to transmit a signal to the RFID reader 104. In the
Prior to use the user of the RFID device 102 must first enrol his fingerprint date onto a “virgin” device, i.e. not including any pre-stored biometric data. This may be done by presenting his finger to the fingerprint reader 130 one or more times, preferably at least three times and usually five to seven times. An exemplary method of enrolment for a fingerprint using a low-power swipe-type sensor is disclosed in WO 2014/068090 A1, which those skilled in the art will be able to adapt to the area fingerprint sensor 130 described herein.
The housing may include indicators for communication with the user of the RFID device, such as the LEDs 136, 138 shown in
After several presentations, the fingerprint will have been enrolled and the device 102 may be forever responsive only to its original user.
With fingerprint biometrics, one common problem has been that it is difficult to obtain repeatable results when the initial enrolment takes place in one place, such as a dedicated enrolment terminal, and the subsequent enrolment for matching takes place in another, such as the terminal where the matching is required. The mechanical features of the housing around each fingerprint sensor must be carefully designed to guide the finger in a consistent manner each time it is read. If a fingerprint is scanned with a number of different terminals, each one being slightly different, then errors can occur in the reading of the fingerprint. Conversely, if the same fingerprint sensor is used every time then the likelihood of such errors occurring is reduced.
As described above, the present device 102 includes a fingerprint authentication engine 120 having an onboard fingerprint sensor 130 as well as the capability of enrolling the user, and thus both the matching and enrolment scans may be performed using the same fingerprint sensor 130. As a result, scanning errors can be balanced out because, if a user tends to present their finger with a lateral bias during enrolment, then they are likely to do so also during matching.
Thus, the use of the same fingerprint sensor 130 for all scans used with the RFID device 102 significantly reduces errors in the enrolment and matching, and hence produces more reproducible results.
In the present arrangement, the power for the RFID chip 110 and the fingerprint authentication engine 120 is harvested from the excitation field generated by the RFID reader 104. That is to say, the RFID device 102 is a passive RFID device, and thus has no battery, but instead uses power harvested from the reader 104 in a similar way to a basic RFID device 2.
The rectified output from second bridge rectifier 126 is used to power the fingerprint authentication engine 120. However, the power required for this is relatively high compared to the power demand for the components of a normal RFID device 2. For this reason, is has not previously been possible to incorporate a fingerprint reader 130 into a passive RFID device 102. Special design considerations are used in the present arrangement to power the fingerprint reader 130 using power harvested from the excitation field of the RFID reader 104.
One problem that arises when seeking to power the fingerprint authentication engine 120 is that typical RFID readers 104 pulse their excitation signal on and off so as to conserve energy, rather than steadily emitting the excitation signal. Often this pulsing results in a duty cycle of useful energy of less than 10% of the power emitted by steady emission. This is insufficient to power the fingerprint authentication engine 120.
RFID readers 104 may conform to ISO/IEC 14443, the international standard that defines proximity cards used for identification, and the transmission protocols for communicating with them. When communicating with such RFID devices 104, the RFID device 102 can take advantage of a certain feature of these protocols, which will be described below, to switch the excitation signal from the RFID reader 104 to continuous for long enough to perform the necessary calculations.
The ISO/IEC 14443-4 standard defines the transmission protocol for proximity cards. ISO/IEC 14443-4 dictates an initial exchange of information between a proximity integrated circuit card (PICC), i.e. the RFID device 102, and a proximity coupling device (PCD), i.e. the RFID reader 104, that is used, in part, to negotiate a frame wait time (FWT). The FWT defines the maximum time for PICC to start its response after the end of a PCD transmission frame. The PICC can be set at the factory to request an FWT ranging from 302 μs to 4.949 seconds.
ISO/IEC14443-4 dictates that, when the PCD sends a command to the PICC, such as a request for the PICC to provide an identification code, the PCD must maintain an RF field and wait for at least one FWT time period for a response from the PICC before it decides a response timeout has occurred. If the PICC needs more time than FWT to process the command received from the PCD, then the PICC can send a request for a wait time extension (S(WTX)) to the PCD, which results in the FWT timer being reset back to its full negotiated value. The PCD is then required to wait another full FWT time period before declaring a timeout condition.
If a further wait time extension (S(WTX)) is sent to the PCD before expiry of the reset FWT, then the FWT timer is again reset back to its full negotiated value and the PCD is required to wait another full FWT time period before declaring a timeout condition.
This method of sending requests for a wait time extension can be used to keep the RF field on for an indefinite period of time. While this state is maintained, communication progress between the PCD and the PICC is halted and the RF field can be used to harvest power to drive other processes that are not typically associated with smart card communication, such as fingerprint enrolment or verification.
Thus, with some carefully designed messaging between the card and the reader enough power can be extracted from the reader to enable authentication cycle. This method harvesting of power overcomes one of the major problem of powering a passive fingerprint authentication engine 120 in a passive RFID device 102, particularly for when a fingerprint is to be enrolled.
Furthermore, this power harvesting method allows a larger fingerprint scanner 130 to be used, and particularly an area fingerprint scanner 130, which outputs data that is computationally less intensive to process.
As discussed above, prior to use of the RFID device 102, the user of the device 102 must first enrol themself on the “virgin” device 102. After enrolment, the RFID device 102 will then be responsive to only this user. Accordingly, it is important that only the intended user is able to enrol their fingerprint on the RFID device 102.
A typical security measure for a person receiving a new credit or chip card via the mail is to send the card through one mailing and a PIN associated with the card by another. However for a biometrically-authenticated RFID device 102, such as that described above, this process is more complicated. An exemplary method of ensuring only the intended recipient of the RFID device 102 is able to enrol their fingerprint is described below.
As above, the RFID device 102 and a unique PIN associated with the RFID device 102 are sent separately to the user. However, the user cannot use the biometric authentication functionality of the RFID card 102 until he has enrolled his fingerprint onto the RFID device 102.
The user is instructed to go to a point of sale terminal which is equipped to be able to read cards contactlessly and to present his RFID device 102 to the terminal. At the same time, he enters his PIN into the terminal through its keypad.
The terminal will send the entered PIN to the RFID device 102. As the user's fingerprint has not yet been enrolled to the RFID device 102, the RFID device 102 will compare the keypad entry to the PIN of the RFID device 102. If the two are the same, then the card becomes enrolable.
The card user may then enrol his fingerprint using the method described above. Alternatively, if the user has a suitable power source available at home, he may take the RFID device 102 home and go through a biometric enrolment procedure at a later time.
The RFID device 102, once enrolled may then be used contactlessly using a fingerprint, with no PIN, or with only the PIN depending on the amount of the transaction taking place.
| Number | Date | Country | Kind |
|---|---|---|---|
| 1508288.6 | May 2015 | GB | national |
| Filing Document | Filing Date | Country | Kind |
|---|---|---|---|
| PCT/EP2015/073596 | 10/12/2015 | WO | 00 |
| Number | Date | Country | |
|---|---|---|---|
| 62062262 | Oct 2014 | US |
