Method for Securely Providing a Personalized Electronic Identity on a Terminal

Simple SummaryContent extracted from patent full text and abstract with AI.

This patent describes a method for securely providing a personalized electronic identity (eID) on a user device (such as a smartphone or computer). The approach involves specialized applications and secure cryptographic keys to issue, store, and use a digital identity for reliable authentication with online services. The method removes the need for pre-shared secrets, uses secure certificate infrastructure, and ensures that identity information is exchanged and stored in a protected way, even in untrusted or insecure environments.

Use CasesContent extracted from patent full text and abstract with AI.

• Digital onboarding and identification for banking or government services via a mobile device.
• Secure logins to web-based services using a digital identity instead of traditional password-based systems.
• Enabling mobile phones or laptops to act as strong ID providers for e-government, healthcare, or enterprise platforms.
• Personalizing access credentials for workplace systems or secure facilities.
• Enabling secure, user-controlled authentication for remote digital signatures or contract approvals.

BenefitsContent extracted from patent full text and abstract with AI.

• Enhanced security: The approach avoids pre-shared secrets and uses asymmetric cryptography and certificates, greatly boosting protection against hacking and impersonation.
• User privacy: Identity verification and certificate handling can be distributed and segmented, limiting traceability and central data collection of user activity.
• Universal and flexible: A single electronic identity can be used across multiple online services, reducing the hassle of managing many login credentials.
• Device independence: Can work on any user device, including smartphones, laptops, desktops, or tablets.
• Protection in untrusted environments: Safeguards sensitive identity data even if parts of the system or data connections are potentially insecure.
• Support for multi-factor and biometric authentication.
• Reduces risk of phishing and man-in-the-middle attacks due to mutual authentication and certificate verification.

Technical Classifications (CPCs)

Inventors & Applicants

Patent Abstract

The invention relates to a method for securely providing a personalized electronic identity on a terminal (2), which can be used by a user (1) for identification purposes when using an online service. In the method, an identification application is run on a terminal (2), which is assigned to a user (1), in a system comprising data processing devices (9; 10; 11; 12) and said terminal (2), and additionally a registration application, a personalization application, and an identity provider application are run.