US20160191511A1 - Wearable device authentication - Google Patents

Abstract

A wearable device is used to authenticate a user into a user account at a user device of the user. In particular, the wearable device may include a sensor configured to detect a body chemistry of the user. The wearable device may send a signal, such as a short range wireless signal, Bluetooth Low Energy or the like, to the user device to communicate the detected body chemistry to the user device. The user device may authenticate the user based on the body chemistry condition detected at the wearable device. In an embodiment, the wearable device may include an olfactory sensor configured to detect certain smell or scent of the user.

Description

BACKGROUND
• 1. Field of the Invention
• The present invention generally relates to wearable devices, and more particularly, to systems and methods for implementing authentication at the wearable devices.
• 2. Related Art
• With the popularity of internet and online commerce, consumers increasingly are using online services for various transactions and interactions. For example, consumers may shop online, make electronic payments, and/or communicate electronically via email services or instant message services. Many of the online services require consumers to set up an account and login credentials. Consumers are then required to log in, such as entering a login ID and password, to be authenticated before consumers may use the services. Thus, the authentication process may be inconvenient for a consumer, especially when the consumer has a plurality of different service accounts that require different authentication credentials. Consequently, there is a need for an easier way to authenticate a consumer that is both secure and convenient.
BRIEF DESCRIPTION OF THE FIGURES
• FIG. 1 is a block diagram of a networked system suitable for implementing wearable devices for user authentication according to an embodiment.
• FIG. 2 is a block diagram of a wearable device suitable for implementing user authentication according to one embodiment.
• FIG. 3A is a diagram illustrating a perspective front view of a watch type wearable device according to one embodiment.
• FIG. 3B is a diagram illustrating a perspective rear view of the watch type wearable device ofFIG. 3A according to one embodiment.
• FIG. 3C is a diagram illustrating a perspective view of a band type wearable device according to one embodiment.
• FIG. 3D is a diagram illustrating a perspective view of a ring type wearable device according to one embodiment.
• FIG. 3E is a diagram illustrating perspective view of a glasses type wearable device according to one embodiment.
• FIG. 3F is a diagram illustrating perspective view of a belt type wearable device according to one embodiment.
• FIG. 4 is a block diagram of a computer system suitable for implementing one or more components inFIG. 1 according to one embodiment.
• FIG. 5 is a flow chart illustrating a set up process for implementing user authentication via a wearable device according to one embodiment.
• FIG. 6 is a flow chart illustrating a method for implementing user authentication via a wearable device according to one embodiment.
• Embodiments of the present disclosure and their advantages are best understood by referring to the detailed description that follows. It should be appreciated that like reference numerals are used to identify like elements illustrated in one or more of the figures, wherein showings therein are for purposes of illustrating embodiments of the present disclosure and not for purposes of limiting the same.
DETAILED DESCRIPTION
• According to an embodiment, a wearable device is used to authenticate a user into a user account at a user device of the user. In particular, the wearable device may include a sensor configured to detect body chemistry conditions of the user. The system may authenticate the user based on the body chemistry conditions detected at the wearable device.
• The system may compare the body chemistry conditions detected at the wearable device with the body chemistry profile of the user. The system may determine a similarity score indicating how closely the body chemistry conditions detected at the wearable device match those of the body chemistry profile of the user. The system may authenticate the user based on the similarity score.
• In an embodiment, the wearable device may include an olfactory sensor configured to detect certain smells or scents of the user. For example, a smell or scent may be a natural smell or scent emitted from the user's body. In another example, a smell or scent may be a perfume or cologne worn by the user. When the olfactory sensor detects smells or scents that match those of the user's smells or scents, the wearable device may authenticate the user or send signals for authenticating the user to the user device. Based on the detected scent or smell at the wearable device, the wearable device or the user device may authenticate the user.
• In an embodiment, the sensor may be a skin conductance sensor configured to detect a conductance of the user's skin. The sensor may be provided at an inner surface of the wearable device facing the user to contact the skin of the user when the wearable device is worn by the user. When the wearable device is worn by the user, the skin conductance sensor may detect and monitor the skin conductance of the user and the wearable device may determine whether the detected skin conductance matches that of the body chemistry profile of the user and whether the wearable device is still worn by the user. When the detected skin conductance no longer matches that of the user or the wearable device is taken off from the user, the wearable device may indicate to the user device that the wearable device is no longer worn by the user.
• In an embodiment, the sensor of the wearable device may be a heart rate sensor configured to measure a heart rate and/or patterns of heart beats of the user. The heart rate sensor may detect and monitor the user's heart rate and/or patterns of the user's heart beat and may determine whether the wearable device is still worn by the user and whether the detected heart beat or heart rates match that of the user's heart beat or heart rate.
• In an embodiment, the sensor may be a blood chemistry sensor, such as a blood glucose sensor (optical type) or blood chemistry sensor that detects histamine response of the user. In some embodiments, the sensor may be a blood oxygen level sensor or a blood pressure sensor. As such, the blood chemistry sensor may detect whether the wearable device is still worn by the user and whether the detected blood chemistry matches the blood chemistry defined in the user's body chemistry profile.
• In an embodiment, the sensor may be a temperature sensor configured to detect a temperature. For example, the temperature sensor may detect a body temperature of the user and the ambient temperature of the user when the wearable device is worn by the user. The wearable device may detect how the user's body temperature responds to respective ambient temperature.
• In an embodiment, a plurality of different sensors may be implemented together to detect various types of body chemistry of the user. A combination of different types of body chemistry may be used to provide risk/security assessment and/or user authentication. In an embodiment, a user may set up the wearable device to be used for user authentication with the user device. The user may designate or associate the wearable device for user authentication with certain accounts of the user. In an embodiment, one wearable device may be used for user authentication of multiple different user accounts. In another embodiment, multiple wearable devices may be used in combination for user authentication of a particular user account. As such, various combinations of wearable devices may be used for user authentication of different user accounts.
• In an embodiment, the user device may automatically authenticate the user for a user account without requiring the user to enter credentials, such as passwords or login IDs, when the user device receives the signals from the wearable device indicating that the wearable device is worn by the user. In another embodiment, the user device may require a login credential for the initial login and may keep the user logged in as long as the user device receives the signals from the wearable device indicating that the wearable device is still worn by the user. The user device may log the user out of the account when the user device receives signals from the wearable device indicating that the wearable device is no longer worn by the user or is separated from the user. In an embodiment, if the user is logged out and the user device receives the unique signal from the wearable device, the user device may still require the user to provide credentials for logging in. The user device may keep the user logged in thereafter as long as the user device continues to receive the unique wireless signals from the wearable device.
• In an embodiment, the wearable device may be a watch type device configured to provide time related information and be worn by the user. In another embodiment, the wearable device may be a jewelry type item, such as a ring, a necklace, a wrist band, and the like. In still another embodiment, the wearable device may be a belt, a neck tie, a tie pin, a collar stay, and any other wearable accessories. In still another embodiment, the wearable may be a clip or a tab configured to be attached to the user or other items carried by the user.
• Using one or a combination of detected body chemistry or body data related to the user, the user can thus make a payment more easily without proactively entering an authenticator. In other embodiments, the various body data can be weighted differently, such that one type (more uniquely associated with the user) is weighted more than another type (such as perfume, soap, or cologne smell that can be associated with many different users).
• FIG. 1 is a block diagram of a networked system suitable for implementing wearable devices for user authentication according to an embodiment.Networked system100 may comprise or implement a plurality of servers and/or software components that operate to perform various payment transactions or processes. Exemplary servers may include, for example, stand-alone and enterprise-class servers operating a server OS such as a MICROSOFT® OS, a UNIX® OS, a LINUX® OS, or other suitable server-based OS. It can be appreciated that the servers illustrated inFIG. 1 may be deployed in other ways and that the operations performed and/or the services provided by such servers may be combined or separated for a given implementation and may be performed by a greater number or fewer number of servers. One or more servers may be operated and/or maintained by the same or different entities.
• System100 may include a user device110, amerchant server140, and a payment provider server170 in communication over anetwork160. Awearable device104 may be worn by user105 and may communicate with user device110. Payment provider server170 may be maintained by a payment service provider, such as PayPal, Inc. of San Jose, Calif. A user105, such as a sender or consumer, utilizes user device110 to perform a transaction using payment provider server170. User105 may utilize user device110 to initiate a payment transaction, receive a transaction approval request, or reply to the request. Note that transaction, as used herein, refers to any suitable action performed using the user device, including payments, transfer of information, display of information, etc. For example, user105 may utilize user device110 to initiate a deposit into a savings account. Although only one merchant server is shown, a plurality of merchant servers may be utilized if the user is purchasing products or services from multiple merchants.
• In some embodiments, the user105 may have a payment account at the payment provider server170. The payment account may allow user105 to purchase and/or pay for various products or services at a merchant. The user105 may be required to enter credentials for user authentication at the user device110 to access and use the payment account. Thewearable device104 may be associated with the payment account of the user105 and be used for user authentication. Thewearable device104 may emit a wireless signal, such as Bluetooth signal, Bluetooth Low Energy (BLE) signal, or other Near-Field Communication (NFC) signals, to communicate body chemistry detected at thewearable device104 or to indicate that thewearable device104 is worn by the user105. The user device may authenticate the user105 based on the signal emitted from thewearable device104.
• User device110,merchant server140, payment provider server170, andwearable device104 may each include one or more processors, memories, and other appropriate components for executing instructions such as program code and/or data stored on one or more computer readable mediums to implement the various applications, data, and steps described herein. For example, such instructions may be stored in one or more computer readable media such as memories or data storage devices internal and/or external to various components ofsystem100, and/or accessible overnetwork160.Network160 may be implemented as a single network or a combination of multiple networks. For example, in various embodiments,network160 may include the Internet or one or more intranets, landline networks, wireless networks, and/or other appropriate types of networks.
• User device110 may be implemented using any appropriate hardware and software configured for wired and/or wireless communication overnetwork160. For example, in one embodiment, user device110 may be implemented as a personal computer (PC), a smart phone, laptop computer, a wearable computing device, and/or other types of computing devices capable of transmitting and/or receiving data, such as an iPad™ from Apple™.
• User device110 may include one ormore browser applications115 which may be used, for example, to provide a convenient interface to permit user105 to browse information available overnetwork160. For example, in one embodiment,browser application115 may be implemented as a web browser configured to view information available over the Internet, such as a user account for setting up a shopping list and/or merchant sites for viewing and purchasing products and services. User device110 may also include one ormore toolbar applications120 which may be used, for example, to provide client-side processing for performing desired tasks in response to operations selected by user105. In one embodiment,toolbar application120 may display a user interface in connection withbrowser application115.
• User device110 may further includeother applications125 as may be desired in particular embodiments to provide desired features to user device110. For example,other applications125 may include security applications for implementing client-side security features, programmatic client applications for interfacing with appropriate application programming interfaces (APIs) overnetwork160, or other types of applications.
• Applications125 may also include email, texting, voice and IM applications that allow user105 to send and receive emails, calls, and texts throughnetwork160, as well as applications that enable the user to communicate, transfer information, make payments, and otherwise utilize a smart wallet through the payment provider as discussed above. User device110 includes one or more user identifiers130 which may be implemented, for example, as operating system registry entries, cookies associated withbrowser application115, identifiers associated with hardware of user device110, or other appropriate identifiers, such as used for payment/user/device authentication. In one embodiment, user identifier130 may be used by a payment service provider to associate user105 with a particular account maintained by the payment provider. Acommunications application122, with associated interfaces, enables user device110 to communicate withinsystem100.
• User device110 may include a short distance communication device, such as a Bluetooth device or a Near-Field Communication (NFC) device configured to communicate with other devices located near the user device110. The Bluetooth device may implement low energy Bluetooth (BLE) communication. For example, user device110 may communicate withwearable device104 via BLE or NFC communication to receive information regarding body chemistry detected at thewearable device104.
• Merchant server140 may be maintained, for example, by a merchant or seller offering various products and/or services. The merchant may have a physical point-of-sale (POS) store front. The merchant may be a participating merchant who has a merchant account with the payment service provider.Merchant server140 may be used for POS or online purchases and transactions. Generally,merchant server140 may be maintained by anyone or any entity that receives money, which includes service providers as well as banks and retailers.Merchant server140 may include adatabase145 identifying available products (including digital goods) and/or services (e.g., collectively referred to as items) which may be made available for viewing and purchase by user105. Accordingly,merchant server140 also may include amarketplace application150 which may be configured to serve information overnetwork160 tobrowser115 of user device110. In one embodiment, user105 may interact withmarketplace application150 through browser applications overnetwork160 in order to view various products, food items, or services identified indatabase145.
• Merchant server140 also may include acheckout application155 which may be configured to facilitate the purchase by user105 of goods or services online or at a physical POS or store front.Checkout application155 may be configured to accept payment information from or on behalf of user105 through payment service provider server170 overnetwork160. For example,checkout application155 may receive and process a payment confirmation from payment service provider server170, as well as transmit transaction information to the payment provider and receive information from the payment provider (e.g., a transaction ID).Checkout application155 may be configured to receive payment via a plurality of payment methods including cash, credit cards, debit cards, checks, money orders, or the like.
• Payment provider server170 may be maintained, for example, by an online payment service provider which may provide payment between user105 and the operator ofmerchant server140. In this regard, payment provider server170 includes one ormore payment applications175 which may be configured to interact with user device110 and/ormerchant server140 overnetwork160 to facilitate the purchase of goods or services, communicate/display information, and send payments by user105 of user device110.
• Payment provider server170 also maintains a plurality of user accounts180, each of which may includeaccount information185 associated with consumers, merchants, and funding sources, such as banks or credit card companies. For example, accountinformation185 may include private financial information of users of devices such as account numbers, passwords, device identifiers, user names, phone numbers, credit card information, bank information, or other financial information which may be used to facilitate online transactions by user105. In an embodiment, theaccount information185 also may include information about wearable devices of the user105 that are associated with the user account of the user105 and that may be used to provide user authentication for accessing the user account. Theaccount information185 also may include body chemistry profile of the user105. Advantageously,payment application175 may be configured to interact withmerchant server140 on behalf of user105 during a transaction withcheckout application155 to track and manage purchases made by users and which and when funding sources are used.
• Atransaction processing application190, which may be part ofpayment application175 or separate, may be configured to receive information from user device110 and/ormerchant server140 for processing and storage in apayment database195.Transaction processing application190 may include one or more applications to process information from user105 for processing an order and payment using various selected funding instruments, including for initial purchase and payment after purchase as described herein. As such,transaction processing application190 may store details of an order from individual users, including funding source used, credit options available, etc.Payment application175 may be further configured to determine the existence of and to manage accounts for user105, as well as create new accounts if necessary.
• FIG. 2 is a block diagram of a wearable device suitable for implementing user authentication according to one embodiment.Wearable device104 may be a wearable item that may be worn by the user105 or be attached to the user105 or other items carried by the user105. As such, thewearable device104 may be a personal item to the user105 that is worn or carried by the user105. The wearable device105 may include one or more of asensor210 configured to detect and/or monitor a body chemistry of the user105, such as a smell, a scent, heart rate, blood chemistry, and the like.
• In an embodiment, thesensor210 may include an olfactory sensor. The olfactory sensor may be configured to detect smells or scents of the user105 or smells or scents around the user105. In particular, the olfactory sensor may include an electronic “nose” configured to detect smells, scents, or odors. The olfactory sensor may include an array of sensors that are reactive to certain chemical compounds. When the certain chemical compounds are absorbed by the sensors, a chemical reaction may occur that changes a physical or electrical property of the sensor. The change may be recorded by an electronic interface that transforms the response into an electrical signal. The generation of the electrical signals may indicate the detection of certain chemical compounds, such as certain smells, scents, or odors.
• The olfactory sensor may be a metal-oxide-semiconductor (MOSFET) type sensor. The MOSFET type sensor may include a transistor configured to amplify or switch electronic signals. When chemical molecules or compounds are captured by a sensing portion, the chemical molecules or compounds may electrically charge (positively or negatively) the sensing portion or the electric field inside the MOSFET. Based on the electric signal pattern detected by the MOSFET, the system may analyze and determine a type, intensity, or concentration of the detected chemical compound or chemical molecule.
• The olfactory sensor may be an organic polymer type sensor. The organic polymer may be configured to conduct electricity. The olfactory sensor may be a quartz crystal microbalance type sensor. The quartz crystal microbalance type sensor may be configured to measure mass per unit area by measuring the change in frequency of a quartz crystal resonator. In another embodiment, the olfactory sensor may be a micro-electro-mechanical device (MEMS) configured to implement surface acoustic wave to sense a physical phenomenon. In some embodiments, thesensors210 may include one or more of the different types of olfactory sensors to provide a broad range of sensing ability.
• The olfactory sensors may first be trained to recognize or distinguish certain smells, scents, or odors of the user105 or perfumes/colognes worn by the user105. In particular, thecontroller220 or the user device110 may learn the specific signal patterns generated by the olfactory sensors from detecting the smell or scent of the user105 when thewearable device104 is worn by the user105. The specific signal pattern may be updated over time as the smells or scents of the user105 or the perfumes or colognes worn by the user105 (or interactions of perfumes or colognes with the user body chemistry) may change over time. In some embodiments, thecontroller220 or the user device110 may learn and store different scent profiles of the user105 for different times of the day, days of the week or different seasons of the year. For example, the user105 may wear a perfume on week days, but not on weekends. In another example, the user may typically work out at a certain time of the day. Thus, the user105 may have a scent profile for week days and another scent profile for weekends. The user device110 or the payment provider server170 may select a body chemistry profile based on different environmental settings, locations, or settings. For example, based on the location detected, the user device110 or the payment provider server170 may select a body chemistry profile of the user105 to compare with the body chemistry conditions detected at thewearable device104 for user authentication.
• Thesensors210 may include a blood chemistry sensor. In particular, thesensors210 may include a blood glucose sensor configured to perform non-invasive detection of glucose level in the user105's blood. The blood glucose sensor may be an optical type blood glucose sensor configured to measure blood glucose level by using near infrared detection techniques. In some embodiments, the blood glucose sensor may utilize ultrasound or dielectric spectroscopy to detect blood glucose level.
• The blood chemistry sensor may include a blood-oxygen sensor. The blood-oxygen sensor may include a light emitting device that shines light onto the user105 and light sensing devices that detect how much light is reflected back absorbed by the user105 to detect how much oxygen is in the user105's blood. Darker blood absorbs more light and has less oxygen level while lighter blood absorbs less light and has higher oxygen level.
• The blood chemistry sensor may include a blood pressure sensor configured to measure a blood pressure of the user105. The blood pressure sensor may measure an electrocardiogram (EKG) of the user105 to measure the blood pressure of the user105. In some embodiments, the blood pressure sensor may measure the user105's pulse wave velocity between two points of user105's body to measure the user105's blood pressure.
• Thesensors210 may include a heart rate sensor configured to detect a heart rate or a heart beat pattern of the user105. The heart rate sensor may include a sensor configured to detect the electrical signals emitted from the user105's heart when the heart beats. Thecontroller220 or the user device110 may then determine the rate, the pattern, the frequency and other characteristics of the heart conditions of the user105 based on the detection at the heart rate sensor.
• Thesensors210 may include a skin conductance sensor configured to detect a skin conductance of the user105. The skin conductance sensor may include a galvanic skin sensor configured to measure a galvanic skin response of the user105. The galvanic skin sensor may detect a resistance between two points of the user105's skin. The galvanic skin sensor also may detect a voltage difference between two points of the user105's skin. The user105's galvanic skin response may vary based on the user105's mental state, physical state, and body response to ambient environments.
• Thesensors210 may include a body temperature sensor configured to detect a body temperature of the user105. In an embodiment, the body temperature sensor may include an ambient temperature sensor configured to detect an ambient temperature around the user105. As such, the user's body temperature response to the ambient temperature may be detected.
• In some embodiments, different types of sensors may be used in coordination with each other to provide better detection. For example, multiple types of body chemistry may be detected and the more types of body chemistry detected that match the body chemistry of the user, the higher probability that thewearable device104 is worn by the user.
• Thewearable device104 may include acommunication device230 configured to communicate with other devices. Thecommunication device230 may include a short range communication device, such as a Bluetooth or Bluetooth Low Energy (BLE) communication device, a Near-Field Communication (NFC) device, WiFi, or a combination thereof. In an embodiment, thecommunication device230 may include a signal emitter configured to emit a wireless signal, without receiving communication from others. Thecommunication device230 may be configured to emit a unique wireless signal including unique patterns and/or frequencies, without a signal receiver. As such, thewearable device104 may remain compact and low cost. In another embodiment, thecommunication device230 may be configured to include a signal transmitter and a signal receiver to emit and receive communication signals. The signal range of thecommunication device230 may be limited to a few feet, such that nearby devices may detect and/or communicate wirelessly.
• Thewearable device104 may include acontroller220 configured to manage and control various operations of thewearable device104. Thecontroller220 may include a microprocessor, an integrated circuit, or a combination thereof Thecontroller220 may be configured or programmed to receive signals from thesensors210 and make determinations or decisions regarding controlling the operations of other devices, such as acommunication device230 and/or theoutput device240. For example, based on the signals received from the sensors, thecontroller220 may determine whether thewearable device104 is still worn by the user and may control thecommunication device230 to emit signals accordingly. Thecontroller220 also may control thecommunication device230 to communicate detection results to the user device110.
• Thewearable device104 may include anoutput device240 configured to communicate with user105. For example,output device240 may be an audio signal emitter configured to emit audio signals to the user105. In another example,output device240 may be an LED component configured to provide visual output. In still another example,output device240 may be a vibration device configured to vibrate to communicate with user105. In some embodiments,output device240 may include one or more types of different output devices, such as a combination of an LED component and an audio signal emitter to provide different types of outputs to the user105.
• Thewearable device104 may be powered by a battery, which may be a rechargeable battery. For example, thewearable device104 may be powered by solar battery or by kinetic energy, such as the movement of user105. In another example, thewearable device104 may be powered by replaceable batteries.
• FIG. 3A is a diagram illustrating a perspective front view of a watch typewearable device104aaccording to one embodiment. The watch typewearable device104amay include awatch case310 within which various components, such assensors210,controller220,communication device230 andoutput device240, are disposed. Thewatch case310 may include a front surface configured to display time. The front surface may be a glass surface and may include a touch screen configured to receive inputs from the user105. The watch typewearable device104aalso may includefastening portions312 configured to fasten the watch typewearable device104ato the user105.
• FIG. 3B is a diagram illustrating a perspective rear view of the watch typewearable device104aofFIG. 3A according to one embodiment. The rear surface of thewatch case310 may include asensor210b.When the watch typewearable device104ais worn by the user105 or fastened to the user105, the rear surface may contact the user105, such as a wrist of the user105. Thesensor210bprovided on the rear surface also may contact the user105. Thesensor210bmay include one or more types of body chemistry sensors configured to detect the body chemistry of the user105 when the watch typewearable device104ais worn by the user105 and thesensor210bcomes into contact with the user105.
• FIG. 3C is a diagram illustrating a perspective view of a band typewearable device104baccording to one embodiment. The band typewearable device104bmay include aband body320 within which various components, such assensors210,controller220,communication device230 andoutput device240, are disposed. Theband body320 may include aninner surface322 configured to contact the user105 when the band typewearable device104bis worn by the user105.
• Theinner surface322 of theband body320 may include asensor210c.When the band typewearable device104bis worn by the user105 or fastened to the user105, theinner surface322 may contact the user105, such as a wrist of the user105. Thesensor210cprovided on theinner surface322 also may contact the user105. Thesensor210cmay include one or more types of body chemistry sensors configured to detect and monitor various types of body chemistry of the user105 when the band typewearable device104bis worn by the user105 and thesensor210ccomes into contact with the user105. The band typewearable device104bmay be a functional wrist band or a jewelry piece, such as a wrist band, a neck collar, and the like.
• FIG. 3D is a diagram illustrating a perspective view of a ring type wearable device104caccording to one embodiment. The ring type wearable device104cmay include aring body330 and a setting332. Various components, such assensors210,controller220,communication device230 andoutput device240, may be disposed in thering body330 and/or setting332. Asensor210dmay be provided at the setting332. When the ring type wearable device104cis worn by the user105, a bottom surface or inner surface of the ring body33 and setting332 may contact the user105. Thesensor210dprovided on the inner surface also may contact the user105. Thesensor210dmay include one or more types of body chemistry sensor be one or more of a pressure sensor, a contact sensor, a temperature sensor, an actuator type sensor, and the like that is configured to detect the user105 when the ring type wearable device104cis worn by the user105 and thesensor210dcomes into contact with the user105.
• FIG. 3E is a diagram illustrating perspective view of a glasses typewearable device104daccording to one embodiment. The glasses typewearable device104dmay include an eyeglass frame includingtemple portions342 connected to lens frames340 via hinges346.
• The lens frames340 include abridge portion344. Various components, such assensors210,controller220,communication device230 andoutput device240, may be disposed in the glass frame. In an example,sensors210emay be provided on thebridge portion344 to detect user contacts.Sensors210ealso may be provided on inner surfaces oftemple portions342 to detect user contacts. Thesensor210emay include one or more types of body chemistry sensors that are configured to detect various types of body chemistry of the user105.
• FIG. 3F is a diagram illustrating perspective view of a belt typewearable device104eaccording to one embodiment. The belt typewearable device104emay include abelt buckle portion350 and abelt portion352. Various components, such assensors210,controller220,communication device230 andoutput device240, may be disposed inbelt buckle portion350. In an example, asensor210fmay be provided at thebelt buckle portion350. Thesensor210fmay include one or more types of body chemistry sensors configured to detect various types of body chemistry of the user105.
• Other types ofwearable devices104 that may be attached to or carried by the user105 also may be utilized. For example, thewearable device104 may be earrings, ear buds, or a clip configured to attach to the user105 or items carried by the user105. In another example, thewearable device104 may be a tab that may be inserted or placed inside a bag or a wallet of the user105.
• FIG. 5 is a flow chart illustrating a set upprocess500 for implementing user authentication via a wearable device according to one embodiment. Initially, the105 may put thewearable device104 on and may turn on, if needed, thewearable device104. The user may also be required to enter authentication information, such as a password or PIN, so that the system can associate the user (and corresponding account(s)) with body chemistry data. Thewearable device104 may then detect, by one ormore sensors210, that thewearable device104 is being worn by the user105. Thecontroller220 of thewearable device104 may encode the detected body chemistry conditions into a signal and control thecommunication device230 to send the signal including information regarding the user105's body chemistry conditions to the user device110. The wireless signals may be emitted at a particular frequency or pattern associated with thewearable device104. For example, different types of wearable devices may have different frequencies or patterns. In another example, the signal may be encrypted and may include information representing a unique device ID of thewearable device104. The signal may include the detected body chemistry conditions of the user105, such as body temperature, heart beats, smells, scents, and the like. The signal may be emitted periodically, such as every 5 seconds or every 10 seconds, as long as thewearable device104 is worn by the user105. The signal also may carry information related to thewearable device104, such as type, name, ID, description, specification, and/or status (whether worn by the user) of thewearable device104.
• At step502, the user device110 may detect the signal emitted from thewearable device104. For example, the user device110 may be carried by the user105 or the user105 is currently using the user device110. As such, the user device110 may be located within the wireless broadcast range of thewearable device104. Atstep504, the user device110 may register or receive the signal. The user device110 may analyze the signal from thewearable device104 and may determine that the signal is from a wearable device for user authentication. The user device110 may ask the user105 whether the user105 would like to register the wireless signal for user authentication. If so, the user105 may be allowed to designate one or more user accounts which may use the signal for user authentication. For example, the user may associate the wireless signal with user105's payment account at a payment service provider. As such, the wireless signal may be used to authenticate user for that payment account.
• In an embodiment, the user device110 or the payment provider server170 may set up various body chemistry profiles for the user105. In particular, based on the types of sensors available on thewearable device104, body chemistry profiles may be set up for detected conditions by the sensors at thewearable device104. For example, thewearable device104 may include a body temperature sensor, a heart beat sensor, an ambient temperature sensor, and an olfactory sensor. The system may set up a body chemistry profile for storing these measurements of the user105. For example, a body chemistry profile may include the user105's body temperature, heart beat, and smell or scent that are specific to the user105. In an embodiment, different body chemistry profiles may be set up for the user105 for different environments or situations as the user105 may have different body chemistry measurements for different environments or situations, including at different times of the day, different days of the week, different months/seasons of the year, and/or different locations (e.g., a vacation location, a work location, a home location, a specific store location, etc.). For example, the user105 may have a body chemistry profile for when the user105 is exercising, a body chemistry profile for when the user105 is working in the office, a body chemistry profile for when the user105 is shopping, and the like. The system may learn the user105's body chemistry by monitoring the user105's various body chemistry conditions in different settings and environments. The system may analyze and determine patterns or signatures of body chemistry conditions specific to the user105. These specific patterns or signatures may be used to distinguish the user105 from others and may be used to authenticate the user105. For example, the user105 may have a specific heart beat pattern, a specific heart beat response to change in ambient temperature, a specific body temperature response to change in ambient temperature, and the like.
• In some embodiments, the system also may analyze different types of body chemistry conditions and other environmental factors, such as temperature, humidity, atmosphere pressure, weather, and the like. The system may determine correlations between different type types of body chemistry conditions and environmental factors. These correlations may be specific to the user105. For example, the user105 may have a specific change or rate of change in body temperature in response to change in ambient temperature. In another example, the user105 may have a specific change or rate of change in galvanic skin response in response to change in body temperature or change in heart rate.
• Atstep506, the user device110 may authenticate user105 for the designated account. For example, the user device110 may ask for the user's login ID, password, finger-print scan, and the like. When the user105 is authenticated successfully, the user device110 may then associate the body chemistry conditions measured at thewearable device104 with the user105 or with the user's designated accounts atstep508. As such, the body chemistry conditions measured at thewearable device104 may be associated with the user105 or with the user105's account and may later be used to authenticate the user105 automatically.
• Atstep510, the user device110 may allow the user105 to select or input authentication settings for the designated accounts with regard to the signals. In particular, the user105 may customize the authentication process for the designated accounts with regard to how the user105 should be authenticated for different user accounts. For example, the user105 may designate accounts that require lower security requirement, such as email accounts, social media account, and the like. The system may have less security requirement for user authentication to access these accounts. As such, the system may require less body chemistry measurements to authenticate the user. For example, the system may measure the current body chemistry conditions and determine how many types of body chemistry conditions match those in the user105's profile. The system may require at least two out of five types of currently measured body chemistry conditions to match the body chemistry conditions of the user105's profile to automatically authenticate the user105 into these accounts. The system may require more matches (four or five out of five types of body chemistry) for accounts that require higher security requirements, such as financial accounts, bank accounts, payment accounts, and the like.
• In an embodiment, different types of body chemistry may be weighted different for the purpose of user authentication. In particular, the types of body chemistry that are more unique or specific to the user105 may be weighted more than other types of body chemistry that are not as unique or specific to the user105. For example, the user105's heart beat patterns or EKG may be weighted more than the user105's heart rate for the purpose of user authentication, cause the user105's heart beat pattern or EKG is more unique to the user105 than the heart rate of the user105, which is simply a number. In another example, the user105's body temperature response to changes in ambient temperature may be weighted more than the user105's static body temperature, because the user105's body response to change in ambient temperature is more unique than a static measurement of the user105's body temperature. Therefore, the types of body chemistry that are more unique or specific to the user105 may be weighted more to provide better assessment for user authentication.
• In an embodiment, the system may allow the user105 to set how long the user105 should be kept logged in at an account. For example, if the user device110 determines that the user105 is wearing thewearable device104 based on the signals received from thewearable device104, the user device110 may keep the user105 logged in as long as the user device110 determines that the user105 is still wearing thewearable device104. The user device110 may log user105 out after a predetermined amount of time (which can be immediately) if the user device110 determines that the user105 no longer is wearing thewearable device104. In other embodiments, the system sets this time period, such as based on various security factors.
• In an embodiment, if the user device110 detects the signals from thewearable device104 indicating that the user105 is wearing thewearable device104, the user device110 may automatically authenticate the user105 or log the user105 into the designated account without requiring credentials, such as passwords or login IDs. In still another embodiment, if the user device110 detects the signals from thewearable device104 indicating that the user105 is wearing thewearable device104, the user device110 may require less credentials for authentication or have less strict security requirements. The user105 may select and customize how thewearable device104 may provide different features of user authentication for different user accounts.
• In an embodiment, the user device110 may allow the user to designate a combination of different signals from different wearable devices for a particular account. For example, different wearable devices may be worn by the user105 to detect different types of body chemistry conditions. Automatic user authentication may be implemented for a particular account when the user device110 detects that the user105 is wearing both a particular ring type wearable device and a particular watch type wearable device. In an embodiment, different combinations of wearable devices may be designated for different authentication requirements. For example, when the user105 is wearing a particular combination of three wearable devices, the authentication requirement may be less than when the user105 is wearing two of the three wearable devices.
• In an embodiment, onewearable device104 may be used to provide authentication for multiple of user's accounts. For example, when the user105 is wearing a particular watch typewearable device104a,the user device110 may keep the user105 logged in at the user105's bank account and at the user105's shopping account. In another embodiment, different types of body chemistry measurements may provide different levels of authentication requirement. For example, measurements from a wearable device with heart beat monitors may allow automatic access to an account, while measurements from another wearable device with a body temperature sensor may still require the user105 to enter his/her user ID.
• At step512, the user device110 may confirm set up with the user105. For example, a notification may be provided on the user device110 to inform the user105 that a particularwearable device104 is now set up for user authentication of a particular user's account. In another example, theoutput device240 at thewearable device104 may confirm the set up by beeping, LED flashing or color change, vibrations, or information display (on a screen). The user device110 may store and update the authentication settings of various accounts of the user105 and their respective associated wearable devices. The user device110 may provide a user interface for the user105 to update, add, delete, and/or modify the authentication settings related to wearable devices.
• FIG. 6 is a flow chart illustrating amethod600 for implementing user authentication via a wearable device configured to detect body chemistry according to one embodiment. Atstep602, the user device110 may detect signals from awearable device104. For example, when the user105 puts on thewearable device104, thewearable device104 may detect the user105 viasensors210 and may begin to emit signals indicating the user105's body chemistry conditions. In an embodiment, thewearable device104 may previously have been registered with the user device110, such that thewearable device104 may automatically be paired with the user device110, e.g., via Bluetooth communication.
• Atstep604, the user device110 may determine whether the signals contain information regarding body chemistry conditions of the user105 for user authentication. In particular, the user device110 may check and see if the received signals are associated with one or more of the user105's registered wearable devices. If so, the user device110 also may look up the authentication settings to determine the user105's body chemistry profile which defines the user105's unique body chemistry conditions. The system also may check to see how the measured body chemistry conditions may alter the authentication process for the account.
• In an embodiment, the system may calculate a similarity score indicating how similar the body chemistry conditions measured at thewearable device104 are to the body chemistry conditions of the user105 defined in the user105's body chemistry profile. The similarity score may be calculated based on how many types of body chemistry are measured, how many of them are closely matched to the ones in the user105's profile, how closely each body chemistry condition is matched, and the like. Based on the similarity score and the security requirement of a particular user account, the system may determine how the user105 should be authenticated. For example, the user105's bank account may have higher security requirement and may require a higher similarity score threshold to automatically log in the user105. The user105's social networking account may have a lower security requirement and may require a lower similarity score threshold to automatically log in the user105. In an embodiment, different similarity score may result in different user authentication requirements. For example, a higher similarity score may result in the system requiring the user name to log in while a lower similarity score may require both the user name and the password to log in. The system may also base authentication on other data in conjunction with the body chemistry data, such as, but not limited to, a user location, a time of day, a day of the year, and transaction details (amount of transaction, merchant information, item description(s), etc.
• Atstep606, the user device110 may authenticate the user105 based on the authentication settings for the designated account in view of the measured body chemistry conditions. For example, if the user105 has not been logged into the account, the user device110 may log the user105 in automatically without requiring user credentials when the measured body chemistry conditions very closely match that of the user's body chemistry defined in the user's profile. If the user105 already is logged into the account, the user device110 may maintain the logged in session in view of the signals received from thewearable device104.
• Atstep608, the user device110 or thewearable device104 may continue to measure and monitor the body chemistry conditions of the user105 or the wearer at thewearable device104. For example, thewearable device104 may measure the body chemistry and communicate the results periodically, e.g., every few seconds. The user device110 may determine whether the signals are received periodically from thewearable device104 and whether the body chemistry conditions measured at thewearable device104 still match those defined in the user105's profile atstep610.
• If the user device110 continues to receive the signals from thewearable device104 and the body chemistry conditions measured at thewearable device104 still match the user105's body chemistry conditions defined in user profile, the user device110 may keep the user105 authenticated atstep612. For example, the user device110 may keep the user105 logged in at the account. In another example, the user device110 may continue to allow a lower security requirement or authentication requirement for logging in. The process then may go back to step610 where the user device110 continues to check whether the signals from thewearable device104 still are detected at the user device110.
• If the user device110 stops receiving the signals from thewearable device104 or the measured body chemistry conditions at the wearable device103 are changed, which indicates that the wearable device is taken off from the user105 or someone else is wearing thewearable device104, the user device110 may log user105 out of the account or stop authenticating the user105 immediately or within a certain time period, which may depend on user, system, and/or account settings. In another example, the user device110 may require higher or stricter authentication requirements when the user105 is not wearing thewearable device104.
• After thewearable device104 has been taken off from the user105, the user device110 may require that the user105 provide authentication credentials to log in again even if thewearable device104 has been put back on the user105. This may ensure that thewearable device104 is not worn by another user for the purpose of unauthorized access to the user's account.
• By implementingprocesses500 and600, awearable device104 may be provided to facilitate easier and safer authentication process for the user105. In particular, thewearable device104 may include sensors that may detect and/or monitor the user105's body chemistry conditions. Thewearable device104 may be configured to emit signals indicating body chemistry conditions measured at thewearable device104. Based on how the measured body chemistry conditions are matched to the body chemistry conditions of the user105 defined in the user105's body chemistry profiles, the user device110 may allow automatic or easier authentication process for the user's account. The automatic or easier authentication may end once the measured body chemistry conditions no longer match those of the user105's profiles or when thewearable device104 is taken off from the user105.
• In the above embodiments, thewearable device104 is utilized for authentication into user's accounts at theuser device104. In another embodiment, thewearable device104 may be utilized for user authentication for access into buildings, areas, events, vehicles, transportation networks, and any location where user authentication is required.
• FIG. 4 is a block diagram of acomputer system400 suitable for implementing one or more embodiments of the present disclosure. In various implementations, the user device may comprise a personal computing device (e.g., smart phone, a computing tablet, a personal computer, laptop, Bluetooth device, key FOB, badge, wearable computing device, etc.) capable of communicating with the network. The merchant and/or payment provider may utilize a network computing device (e.g., a network server) capable of communicating with the network. It should be appreciated that each of the devices utilized by users, merchants, and payment providers may be implemented ascomputer system400 in a manner as follows.
• Computer system400 includes a bus402 or other communication mechanism for communicating information data, signals, and information between various components ofcomputer system400. Components include an input/output (I/O)component404 that processes a user action, such as selecting keys from a keypad/keyboard, selecting one or more buttons or links, etc., and sends a corresponding signal to bus402. I/O component404 may also include an output component, such as adisplay411 and a cursor control413 (such as a keyboard, keypad, mouse, etc.). An optional audio input/output component405 may also be included to allow a user to use voice for inputting information by converting audio signals. Audio I/O component405 may allow the user to hear audio. A transceiver ornetwork interface406 transmits and receives signals betweencomputer system400 and other devices, such as another user device, a merchant server, or a payment provider server vianetwork160. In one embodiment, the transmission is wireless, although other transmission mediums and methods may also be suitable. Aprocessor412, which can be a micro-controller, digital signal processor (DSP), or other processing component, processes these various signals, such as for display oncomputer system400 or transmission to other devices via acommunication link418.Processor412 may also control transmission of information, such as cookies or IP addresses, to other devices.
• Components ofcomputer system400 also include a system memory component414 (e.g., RAM), a static storage component416 (e.g., ROM), and/or adisk drive417.Computer system400 performs specific operations byprocessor412 and other components by executing one or more sequences of instructions contained insystem memory component414. Logic may be encoded in a computer readable medium, which may refer to any medium that participates in providing instructions toprocessor412 for execution. Such a medium may take many forms, including but not limited to, non-volatile media, volatile media, and transmission media. In various implementations, non-volatile media includes optical or magnetic disks, volatile media includes dynamic memory, such assystem memory component414, and transmission media includes coaxial cables, copper wire, and fiber optics, including wires that comprise bus402. In one embodiment, the logic is encoded in non-transitory computer readable medium. In one example, transmission media may take the form of acoustic or light waves, such as those generated during radio wave, optical, and infrared data communications.
• Some common forms of computer readable media includes, for example, floppy disk, flexible disk, hard disk, magnetic tape, any other magnetic medium, CD-ROM, any other optical medium, punch cards, paper tape, any other physical medium with patterns of holes, RAM, PROM, EEPROM, FLASH-EEPROM, any other memory chip or cartridge, or any other medium from which a computer is adapted to read.
• In various embodiments of the present disclosure, execution of instruction sequences to practice the present disclosure may be performed bycomputer system400. In various other embodiments of the present disclosure, a plurality ofcomputer systems400 coupled bycommunication link418 to the network (e.g., such as a LAN, WLAN, PTSN, and/or various other wired or wireless networks, including telecommunications, mobile, and cellular phone networks) may perform instruction sequences to practice the present disclosure in coordination with one another.
• Where applicable, various embodiments provided by the present disclosure may be implemented using hardware, software, or combinations of hardware and software. Also, where applicable, the various hardware components and/or software components set forth herein may be combined into composite components comprising software, hardware, and/or both without departing from the spirit of the present disclosure. Where applicable, the various hardware components and/or software components set forth herein may be separated into sub-components comprising software, hardware, or both without departing from the scope of the present disclosure. In addition, where applicable, it is contemplated that software components may be implemented as hardware components and vice-versa.
• Software, in accordance with the present disclosure, such as program code and/or data, may be stored on one or more computer readable mediums. It is also contemplated that software identified herein may be implemented using one or more general purpose or specific purpose computers and/or computer systems, networked and/or otherwise. Where applicable, the ordering of various steps described herein may be changed, combined into composite steps, and/or separated into sub-steps to provide features described herein.
• The foregoing disclosure is not intended to limit the present disclosure to the precise forms or particular fields of use disclosed. As such, it is contemplated that various alternate embodiments and/or modifications to the present disclosure, whether explicitly described or implied herein, are possible in light of the disclosure. Having thus described embodiments of the present disclosure, persons of ordinary skill in the art will recognize that changes may be made in form and detail without departing from the scope of the present disclosure. Thus, the present disclosure is limited only by the claims.

Claims (20)

What is claimed is:

1. A system comprising:

a memory storing an account of a user including a body chemistry profile of the user;

one or more processors in communication with the memory and adapted to:

receive, from a wearable device of the user, body chemistry conditions detected at the wearable device;

compare the body chemistry conditions measured at the wearable device with the body chemistry profile of the user;

determine a similarity score based from comparing; and

authenticate the user based on the similarity score.

2. The system ofclaim 1, wherein one or more types of body conditions are measured at the wearable device comprising one or more of a heart rate, a heartbeat pattern, a body temperature, a scent, a smell, an odor, a blood glucose, a blood oxygen level, a blood pressure, a galvanic skin response, and an ambient temperature.

3. The system ofclaim 1, wherein the one or more processors are further adapted to automatically authenticate the user without requiring user credentials when the similarity score exceeds a threshold.

4. The system ofclaim 1, wherein the user is authenticated and wherein the one or more processors are further adapted to:

continue monitoring and comparing the body chemistry conditions measured at the wearable device with the body chemistry profile of the user; and

keep the user authenticated as long as the similarity score remains above a threshold.

5. The system ofclaim 1, wherein the user is authenticated and wherein the one or more processors are further adapted to:

continue monitoring and comparing the body chemistry conditions measured at the wearable device with the body chemistry profile of the user; and

stop authenticating the user when the similarity score decreases below a threshold.

6. The system ofclaim 1, wherein the one or more processors are further adapted to require less user credentials to authenticate the user when the similarity score is above a threshold.

7. The system ofclaim 1, wherein the account of the user comprises different body chemistry profiles for different situations or environmental settings and the one or more processors are further adapted to select a body chemistry profile for comparison with the body chemistry conditions detected at the wearable device.

8. The system ofclaim 1, wherein the similarity score is determined based on a number of types of body chemistry conditions matching those of the body chemistry profile of the user.

9. The system ofclaim 1, wherein types of body chemistry that are more unique to the user are weighted more in determining the similarity score than types of body chemistry that are less unique to the user.

10. The system ofclaim 1, wherein the one or more processors are further adapted to:

analyze the body chemistry conditions detected at the wearable device when the user is authenticated;

determine patterns of the body chemistry conditions; and

update the body chemistry profile of the user based on the patterns.

11. The system ofclaim 1, wherein the one or more processors are further adapted to:

determine that the wearable device is separated from the user based on the body;

chemistry conditions detected at the wearable device; and

stop authenticating the user when the wearable device is separated from the user.

12. The system ofclaim 1, wherein the one or more processors are further adapted to:

determine a correlation between a first type of body chemistry and a second type of body chemistry; and

authenticate the user based on the correlation.

13. A wearable device comprising:

a sensor configured to detect a body chemistry condition of a user;

a communication device configured to communicate body chemistry conditions measured by the sensor to a user device of the user; and

a controller configured to:

encode the body chemistry condition in a signal; and

control the communication device to emit the signal for user authentication at the user device.

14. The wearable device ofclaim 13,

wherein the wearable device comprises a watch comprising:

a watch case; and

a fastening portion configured to fasten the watch case to the user;

wherein the sensor is disposed on an inner surface of the watch case contacting the user when the wearable device is worn by the user.

15. The wearable device ofclaim 13,

wherein the wearable device comprises a band; and

wherein the sensor is disposed on an inner surface of the band contacting the user when the wearable device is worn by the user.

16. The wearable device ofclaim 13,

wherein the wearable device comprises a ring comprising:

a ring body; and

a setting; and

wherein the sensor is disposed on an inner surface of the setting contacting the user when the wearable device is worn by the user.

17. The wearable device ofclaim 13,

wherein the wearable device comprises a pair of eye glasses comprising:

a glass frame; and

temple portions connected to the glass frame via hinges; and

wherein the sensor is disposed on an inner surface of the glass frame contacting the user when the wearable device is worn by the user.

18. The wearable device ofclaim 13, wherein the sensor comprises one or more of an olfactory sensor, a body temperature sensor, a blood glucose sensor, a blood pressure sensor, a blood oxygen level sensor, a heartbeat sensor, and a galvanic skin response sensor.

19. The wearable device ofclaim 13, wherein the communication device comprises one or more of a Bluetooth communication device, a Bluetooth Low Energy (BLE) communication device, a Near-Field Communication (NFC) device, and a WiFi communication device.

20. The wearable device ofclaim 13, wherein the controller is adapted to continuously emit the signal to the user device at a predetermined frequency to update the body chemistry detected by the sensor.

Images