System and method for remotely assigning and revoking access credentials using a near field communication equipped mobile phone
First Claim
Patent Images
1. A method of controlling physical access to a secure asset, comprising:
- detecting a change in access rights to the secure asset associated with a mobile device, the mobile device storing credential information including a first expiration date;
determining a first location of the mobile device;
based upon the determined first location, wirelessly transmitting a credential information update to the mobile device, the credential information update including a second expiration date that is different from the first expiration date;
receiving an authentication request related to the credential information update while the mobile device resides in a second location that is different from the first location, the authentication request comprising data stored at a reader of a physical access control system associated with a physical access point of the secure asset; and
executing an access control decision with respect to the reader based on data included in the authentication request.
0 Assignments
0 Petitions
Accused Products
Abstract
The present invention is generally directed toward a mobile device that can be used in a secure access system. More specifically, the mobile device can have credential data loaded thereon remotely updated, enabled, disabled, revoked, or otherwise altered with a message sent from, for example, a control panel and/or controller in the system.
-
Citations
24 Claims
-
1. A method of controlling physical access to a secure asset, comprising:
-
detecting a change in access rights to the secure asset associated with a mobile device, the mobile device storing credential information including a first expiration date; determining a first location of the mobile device; based upon the determined first location, wirelessly transmitting a credential information update to the mobile device, the credential information update including a second expiration date that is different from the first expiration date; receiving an authentication request related to the credential information update while the mobile device resides in a second location that is different from the first location, the authentication request comprising data stored at a reader of a physical access control system associated with a physical access point of the secure asset; and executing an access control decision with respect to the reader based on data included in the authentication request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of controlling physical access to a secure asset, comprising:
-
detecting, by a server, a change in access rights to the secure asset associated with a mobile device, the mobile device storing credential information including a first expiration date; determining, by the server, a first location of the mobile device; transmitting a credential information update from the server to the mobile device, the credential information update including a second expiration date that is different from the first expiration date; receiving, at the mobile device from a reader of a physical access control system associated with a physical access point of the secure asset, an authentication request related to the credential information update while the mobile device resides in a second location that is different from the first location, the second location being within a radio frequency (RF) communication range of the reader and the authentication request comprising data stored at the reader; and executing, by the mobile device, an access control decision with respect to the reader based on one or more of;
the credential information update or data included in the authentication request. - View Dependent Claims (12, 13, 14)
-
-
15. A mobile device, comprising:
-
a receiver; a transmitter; and a processor operable to perform operations comprising; transmitting, using the transmitter, a first location of the mobile device to a server; receiving, using the receiver, a credential information update corresponding to credential information stored at the mobile device, the credential information update including a second expiration date that is different from a first expiration date included in the stored credential information, and wherein the credential information update is received from the server based on detecting a change in access rights to a secure asset associated with the mobile device receiving, using the receiver, an authentication request related to the credential information update while the mobile device resides in a second location that is different from the first location, the authentication request comprising data stored at a reader of a physical access control system associated with a physical access point of the secure asset; and executing an access control decision with respect to the reader based on data included in the authentication request. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
-
-
23. An apparatus for controlling physical access to a secure asset, comprising:
-
one or more processors; and a storage medium storing instructions that, when executed, are configured to cause the one or more processors to perform operations comprising; detecting a change in access rights to the secure asset associated with a mobile device, the mobile device storing credential information including a first expiration date; determining a first location of the mobile device; wirelessly transmitting a credential information update to the mobile device, the credential information update including a second expiration date that is different from the first expiration date; receiving an authentication request related to the credential information update while the mobile device resides in a second location that is different from the first location, the authentication request comprising data stored at a reader of a physical access control system associated with a physical access point of the secure asset; and executing an access control decision with respect to the reader based on data included in the authentication request.
-
-
24. A system for controlling physical access to a secure asset, comprising:
-
a mobile device that is configured to store credential information including a first expiration date; a reader of a physical access control system associated with a physical access point of the secure asset; and a server that is wirelessly communicable with the mobile device, wherein the server is operable to perform operations comprising; detecting a change in access rights to the secure asset associated with the mobile device; determining a first location of the mobile device; and transmitting a credential information update to the mobile device, the credential information update including a second expiration date that is different from the first expiration date; and wherein the mobile device is operable to perform operations comprising; receiving, from the reader, an authentication request related to the credential information update while the mobile device resides in a second location that is different from the first location, the second location being within a radio frequency (RF) communication range of the reader and the authentication request comprising data stored at the reader; and executing an access control decision with respect to the reader based on one or more of;
the credential information update or data included in the authentication request.
-
Specification