Method of Authorizing a Person, an Authorizing Architecture and a Computer Program Product

US 20130117815A1
Filed: 06/03/2011
Published: 05/09/2013
Est. Priority Date: 06/04/2010
Status: Active Grant

First Claim

Patent Images

1. A method of authorizing a person, comprising the steps of:

receiving authentication data from a personal authentication device transmitting said data to a reader associated with a central authorization system;

including the received authentication data in a request message and transmitting the request message to the central authorization system;

receiving the request message at the central authorization system and retrieving the authentication data from the request message;

performing an authentication process at a central authentication system using said authentication data; and

executing an authorization process at the central authorization system based on the authentication process result.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention relates to a method for authorizing a person. The method comprises the step of receiving authentication data from a personal authentication device transmitting said data to a reader associated with a central authorization system. Further, the method comprises the steps of including the received authentication data in a request message and transmitting the request message to the central authorization system, receiving the request message at the central authorization system and retrieving the authentication data from the request message. The method also comprises the steps of performing an authentication process at a central authentication system using said reader authentication data and executing an authorization process at the central authorization system based on the authentication process result.

27 Citations

View as Search Results

20 Claims

1. A method of authorizing a person, comprising the steps of:
- receiving authentication data from a personal authentication device transmitting said data to a reader associated with a central authorization system;
  
  including the received authentication data in a request message and transmitting the request message to the central authorization system;
  
  receiving the request message at the central authorization system and retrieving the authentication data from the request message;
  
  performing an authentication process at a central authentication system using said authentication data; and
  
  executing an authorization process at the central authorization system based on the authentication process result.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 2. A method according to claim 1, comprising transmitting the request message to the central authorization system via the personal authentication device and the central authentication system.
  - 3. A method according to claim 1, wherein the authentication process includes identifying an identity or capacity.
  - 4. A method according to claim 3, wherein the authorization process includes checking whether the identified identity or capacity is authorized to have access to a physical space and/or to information.
  - 5. A method according to claim 1, wherein the step of performing an authentication process includes the steps of:
    - generating a query message including the authentication data and transmitting the query message to the central authentication system associated with the person authentication device;
      
      verifying the query message at the central authentication system by checking the authentication data in the query message; and
      
      generating a query response message containing data associated with the personal authentication device and transmitting the query response message to the central authorization system.
  - 6. A method according to claim 5, wherein the step of executing an authorization process includes the steps of:
    - verifying the query response message at the central authorization system by checking the data associated with the personal authentication device;
      
      generating an authorization message if the verification of the query response was successful; and
      
      transmitting the authorization message to an actuator associated with the central authorization system.
  - 7. A method according to claim 1, wherein the personal authentication device includes a cellular phone, PDA, smart card, token or electronic key.
  - 8. A method according to claim 6, wherein the actuator is arranged for operating a lock, switch, light or door, for dispensing a good or for making a sound.
  - 9. A method according to claim 1, wherein the step of generating the request message includes adding localization data or additional ambient information to the received authentication data.
  - 10. A method according to claim 1, wherein the step of generating a request message includes a step of protecting data.
  - 11. A method according to claim 10, wherein the central authorization system is arranged for decrypting and/or verifying the request message.
  - 12. A method according to claim 5, wherein the step of checking the authentication data in the query message comprises a step of comparing the authentication data with corresponding data in a central authentication database.
  - 13. A method according to claim 6, wherein the step of checking, in the query response message, the data associated with the personal authentication device comprises a step of comparing said data with corresponding data in a central authorization database.
  - 14. A method according to claim 1, comprising transmitting the request message to the central authorization system via the reader.
  - 15. A method according to claim 1, wherein the central authentication system is arranged for communicating with a multiple number of central authorization systems.
  - 16. A method according to claim 1, including a multiple number of central authentication systems.
  - 17. A method according to claim 1, including generating and transmitting additional request messages to a clearing system.

18. An authorizing architecture, comprising a central authorization system for authorizing a person, at least one reader and at least one actuator, the reader and the actuator being associated with the central authorization system, further comprising a central authentication system communicatively connected to the central authorization system, wherein the architecture is arranged for performing the steps of:
- receiving authentication data from a personal authentication device transmitting said data to a reader associated with a central authorization system;
  
  including the received authentication data in a request message and transmitting the request message to the central authorization system;
  
  receiving the request message at the central authorization system and retrieving the authentication data from the request message;
  
  performing an authentication process at a central authentication system using said authentication data; and
  
  executing an authorization process at the central authorization system based on the authentication process result.
- View Dependent Claims (19)
- - 19. An authorizing architecture according to claim 18, wherein the at least one reader includes a positioning system for determining whether the reader is located in a pre-determined location.

20. A computer program product for authorizing a person, the computer program product comprising computer readable code stored on a nontransitory computer-readable medium for causing a processor to perform the steps of:
- receiving authentication data from a personal authentication device transmitting said data to a reader associated with a central authorization system;
  
  including the received authentication data in a request message and transmitting the request message to the central authorization system;
  
  receiving the request message at the central authorization system and retrieving the authentication data from the request message;
  
  performing an authentication process at a central authentication system using said authentication data; and
  
  executing an authorization process at the central authorization system based on the authentication process result.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Ubiqu B.V.
Original Assignee
Ubiqu B.V.
Inventors
Goranov, Boris Petrov Dokov

Granted Patent

US 9,705,861 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/3
CPC Class Codes

G07C 9/00182   operated with unidirectiona...

G07C 9/28   the pass enabling tracking ...

H04L 63/08   for authentication of entit...

Method of Authorizing a Person, an Authorizing Architecture and a Computer Program Product

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

27 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method of Authorizing a Person, an Authorizing Architecture and a Computer Program Product

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

27 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links