×

Policy-managed physical access authentication

  • US 10,404,714 B1
  • Filed: 08/11/2015
  • Issued: 09/03/2019
  • Est. Priority Date: 08/11/2015
  • Status: Active Grant
First Claim
Patent Images

1. An access control system associated with an access-controlled area of a distributed site of an electric power delivery system, the system comprising:

  • a credential input interface configured to receive first authentication credentials from a first user and second authentication credentials from a second user;

    a communications interface communicatively coupled to an access control device associated with the access-controlled area;

    processing circuitry communicatively coupled to the credential input interface and the communications interface;

    a non-transitory computer-readable storage medium communicatively coupled to the processing circuitry, the computer-readable storage medium storing instructions that when executed by the processing circuitry cause the processing circuitry to;

    retrieve an access control policy, the access control policy comprising first authentication requirements and second authentication requirements, wherein the second authentication requirements have at least one factor of authentication and the second authentication requirements have at least one factor of authentication less than the first authentication requirements when the second authentication credentials are received within a defined period following receipt of the first authentication credentials to enforce a physical presence requirement between the first user and the second user;

    determine that the first authentication credentials satisfy the first authentication requirements;

    send, based on the determination that the first authentication credentials satisfy the first authentication requirements, a first access control signal to cause the access control device to allow the first user physical access to the access-controlled area;

    determine that the second authentication credentials satisfy the second authentication requirements; and

    send, based on the determination that the second authentication credentials satisfy the second authentication requirements, a second access control signal to cause the access control device to allow the second user physical access to the same access-controlled area with the at least one factor of authentication less than the first user while enforcing the physical presence requirement between the first user and the second user.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×