Using temporary access codes

US 9,659,422 B2
Filed: 11/12/2013
Issued: 05/23/2017
Est. Priority Date: 11/09/2012
Status: Active Grant

First Claim

Patent Images

1. A method of managing access by a user, comprising:

requesting an access code from an external server;

the external server providing the access code to the user only if the user is authorized for access;

the access code being provided to an input unit; and

the user being granted access by a security component if the access code is valid, wherein the security component determines validity of the access code without accessing any user authorization information, wherein the access code is based, at least in part, on a master key at the external server and wherein the security component determines validity of the access code using a unique symmetric key that is derived from the master key and wherein the unique symmetric key is derived from the master key in combination with one of;

a serial number of the security component and a serial number of a component associated with the security component.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Managing access by a user includes requesting an access code from an external server, the external server providing the access code to the user only if the user is authorized for access, the access code being provided to an input unit, and the user being granted access by a security component if the access code is valid. The input unit may be a keypad. The access code maybe provided using RF communication, such as NFC, Bluetooth, and/or Bluetooth Smart. The device may request the access code from the external server. The device may be a mobile device. Managing access by a user may also include the user entering a PIN in addition to the access code. The pin may be entered by the user'"'"'s device. The access may be to a physical area and the user may be granted access by having a door open.

Citations

23 Claims

1. A method of managing access by a user, comprising:
- requesting an access code from an external server;
  
  the external server providing the access code to the user only if the user is authorized for access;
  
  the access code being provided to an input unit; and
  
  the user being granted access by a security component if the access code is valid, wherein the security component determines validity of the access code without accessing any user authorization information, wherein the access code is based, at least in part, on a master key at the external server and wherein the security component determines validity of the access code using a unique symmetric key that is derived from the master key and wherein the unique symmetric key is derived from the master key in combination with one of;
  
  a serial number of the security component and a serial number of a component associated with the security component.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. A method, according to claim 1, wherein the input unit is a keypad.
  - 3. A method, according to claim 1, wherein the access code is provided using RF communication from a device.
  - 4. A method, according to claim 3, wherein the RF communication is one of:
    - NFC, Bluetooth, or Bluetooth Smart.
  - 5. A method, according to claim 3, wherein the device is a mobile device.
  - 6. A method, according to claim 3, wherein the device requests the access code from the external server.
  - 7. A method, according to claim 1, further comprising:
    - the user entering a PIN in addition to the access code.
  - 8. A method, according to claim 7, wherein the PIN is entered via a mobile device.
  - 9. A method, according to claim 1, wherein the access is to a physical area and the user is granted access by having a door open.
  - 10. A method, according to claim 1, wherein the access code depends, at least in part, on a time.
  - 11. A method, according to claim 1, wherein access codes are pseudo-random so that a prior access code may not be used to predict a future access code.
  - 12. A method, according to claim 1, wherein the access is to a machine and the user is granted access by the machine turning on.

13. A non-transitory computer-readable medium containing software that manages access by a user, the software comprising:
- executable code that requests an access code from an external server;
  
  executable code that receives the access code from the external server, wherein the external server provides the access code only if the user is authorized for access; and
  
  executable code that provides the access code to an input unit, wherein the user is granted access by a security component if the access code is valid, wherein the security component determines validity of the access code without accessing any user authorization information, wherein the access code is based, at least in part, on a master key at the external server and wherein the security component determines validity of the access code using a unique symmetric key that is derived from the master key and wherein the unique symmetric key is derived from the master key in combination with one of;
  
  a serial number of the security component and a serial number of a component associated with the security component.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 14. A non-transitory computer-readable medium, according to claim 13, wherein the access code is provided using RF communication from a device.
  - 15. A non-transitory computer-readable medium, according to claim 14, wherein the RF communication is one of:
    - NFC, Bluetooth, or Bluetooth Smart.
  - 16. A non-transitory computer-readable medium, according to claim 14, wherein the device is a mobile device.
  - 17. A non-transitory computer-readable medium, according to claim 14, wherein the device requests the access code from the external server.
  - 18. A non-transitory computer-readable medium, according to claim 13, further comprising:
    - executable code that receives a PIN from the user in addition to the access code.
  - 19. A non-transitory computer-readable medium, according to claim 18, wherein the PIN is entered via a mobile device.
  - 20. A non-transitory computer-readable medium, according to claim 13, wherein the access is to a physical area and the user is granted access by having a door open.
  - 21. A non-transitory computer-readable medium, according to claim 13, wherein the access code depends, at least in part, on a time.
  - 22. A non-transitory computer-readable medium, according to claim 13, wherein access codes are pseudo-random so that a prior access code may not be used to predict a future access code.
  - 23. A non-transitory computer-readable medium, according to claim 13, wherein the access is to a machine and the user is granted access by the machine turning on.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Assa Abloy AB
Original Assignee
Assa Abloy AB
Inventors
Lovelock, Julian Eric, Berg, Daniel, Robinton, Mark
Primary Examiner(s)
Kim, Kevin

Application Number

US14/440,621
Publication Number

US 20150254915A1
Time in Patent Office

1,288 Days
Field of Search

340 5, 340 2, 340 521, 340 552, 340 554, 340 573, 340 58, 340 581
US Class Current
CPC Class Codes

G07C 9/21   having a variable access code

G07C 9/33   by means of a password

G07C 9/38   with central registration

H04W 12/082   using revocation of authori...

H04W 4/80   Services using short range ...

Using temporary access codes

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Using temporary access codes

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links