Method of authorizing a person, an authorizing architecture and a computer program product

US 9,705,861 B2
Filed: 06/03/2011
Issued: 07/11/2017
Est. Priority Date: 06/04/2010
Status: Active Grant

First Claim

Patent Images

1. A method of authorizing a person, comprising the steps of:

receiving authentication data from a personal authentication device transmitting said authentication data to a reader associated with a central authorization system;

including, by the reader, the received authentication data in a request message and transmitting, by the reader, the request message to the central authorization system;

transmitting the request message to the central authorization system via the personal authentication device and a central authentication system;

receiving the request message at the central authorization system and retrieving the authentication data from the request message;

performing an authentication process at a central authentication system using said authentication data;

executing an authorization process at the central authorization system based on the authentication process result; and

executing an authorization process at the central authorization system based on the authentication process result, wherein performing an authentication process includes generating a query message including the authentication data and transmitting the query message to the central authentication system associated with the personal authentication device, verifying the query message at the central authentication system by checking the authentication data in the query message, verifying the authentication data, generating an authorization message if the verification of the authentication data was successful and transmitting the authorization message to an actuator associated with the central authorization system.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention relates to a method for authorizing a person. The method comprises the step of receiving authentication data from a personal authentication device transmitting said data to a reader associated with a central authorization system. Further, the method comprises the steps of including the received authentication data in a request message and transmitting the request message to the central authorization system, receiving the request message at the central authorization system and retrieving the authentication data from the request message. The method also comprises the steps of performing an authentication process at a central authentication system using said reader authentication data and executing an authorization process at the central authorization system based on the authentication process result.

Citations

17 Claims

1. A method of authorizing a person, comprising the steps of:
- receiving authentication data from a personal authentication device transmitting said authentication data to a reader associated with a central authorization system;
  
  including, by the reader, the received authentication data in a request message and transmitting, by the reader, the request message to the central authorization system;
  
  transmitting the request message to the central authorization system via the personal authentication device and a central authentication system;
  
  receiving the request message at the central authorization system and retrieving the authentication data from the request message;
  
  performing an authentication process at a central authentication system using said authentication data;
  
  executing an authorization process at the central authorization system based on the authentication process result; and
  
  executing an authorization process at the central authorization system based on the authentication process result, wherein performing an authentication process includes generating a query message including the authentication data and transmitting the query message to the central authentication system associated with the personal authentication device, verifying the query message at the central authentication system by checking the authentication data in the query message, verifying the authentication data, generating an authorization message if the verification of the authentication data was successful and transmitting the authorization message to an actuator associated with the central authorization system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method according to claim 1, wherein the authentication process includes identifying an identity or capacity.
  - 3. The method according to claim 2, wherein the authorization process includes checking whether the identified identity or capacity is authorized to have access to a physical space and/or to information.
  - 4. The method according to claim 1, wherein the personal authentication device includes a cellular phone, PDA, smart card, token or electronic key.
  - 5. The method according to claim 1, wherein the actuator is arranged for operating a lock, switch, light or door, for dispensing a good or for making a sound.
  - 6. The method according to claim 1, wherein the step of generating the request message includes adding localization data or additional ambient information to the received authentication data.
  - 7. The method according to claim 1, wherein the step of generating a request message includes a step of protecting data.
  - 8. The method according to claim 7, wherein the central authorization system is arranged for decrypting and/or verifying the request message.
  - 9. The method according to claim 1, wherein the step of checking the authentication data in the query message comprises a step of comparing the authentication data with corresponding data in a central authentication database.
  - 10. The method according to claim 1, wherein the step of checking, in the query response message, the data associated with the personal authentication device comprises a step of comparing the data associated with the personal authentication device with corresponding data in a central authorization database.
  - 11. The method according to claim 1, comprising transmitting the request message to the central authorization system via the reader.
  - 12. The method according to claim 1, wherein the central authentication system is arranged for communicating with a multiple number of central authorization systems.
  - 13. The method according to claim 1, including a multiple number of central authentication systems.
  - 14. The method according to claim 1, including generating and transmitting additional request messages to a clearing system.

15. An authorizing architecture, comprising a central authorization system for authorizing a person, at least one reader and at least one actuator, the reader and the actuator being associated with the central authorization system, further comprising a central authentication system communicatively connected to the central authorization system, wherein the architecture is arranged for performing the steps of:
- receiving authentication data from a personal authentication device transmitting said authentication data to a reader associated with the central authorization system;
  
  including, by the reader, the received authentication data in a request message and transmitting the request message, by the reader, to the central authorization system via the personal authentication device and the central authentication system;
  
  receiving the request message at the central authorization system and retrieving the authentication data from the request message;
  
  performing an authentication process at a central authentication system using said authentication data; and
  
  executing an authorization process at the central authorization system based on the authentication process result, wherein executing an authentication process includes generating a query message including the authentication data and transmitting the query message to the central authentication system associated with the personal authentication device, verifying the query message at the central authentication system by checking the authentication data in the query message, verifying the authentication data, generating an authorization message if the verification of the authentication data was successful and transmitting the authorization message to an actuator associated with the central authorization system.
- View Dependent Claims (16)
- - 16. The authorizing architecture according to claim 15, wherein the at least one reader includes a positioning system for determining whether the reader is located in a pre-determined location.

17. A computer program product for authorizing a person, the computer program product comprising computer readable code stored on a non-transitory computer-readable medium for causing a processor to perform the steps of:
- receiving authentication data from a personal authentication device transmitting said authentication data to a reader associated with a central authorization system;
  
  including, at the reader, the received authentication data in a request message and transmitting the request message, by the reader, to the central authorization system via the personal authentication device and a central authentication system;
  
  receiving the request message at the central authorization system and retrieving the authentication data from the request message;
  
  performing an authentication process at a central authentication system using said authentication data; and
  
  executing an authorization process at the central authorization system based on the authentication process result, wherein executing an authentication process includes generating a query message including the authentication data and transmitting the query message to the central authentication system associated with the personal authentication device, verifying the query message at the central authentication system by checking the authentication data in the query message, verifying the authentication data, generating an authorization message if the verification of the authentication data was successful and transmitting the authorization message to an actuator associated with the central authorization system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Ubiqu B.V.
Original Assignee
Ubiqu B.V.
Inventors
Goranov, Boris Petrov Dokov
Primary Examiner(s)
Homayounmehr, Farid
Assistant Examiner(s)
Bucknor, Olanrewaju

Application Number

US13/701,639
Publication Number

US 20130117815A1
Time in Patent Office

2,230 Days
Field of Search

None
US Class Current
CPC Class Codes

G07C 9/00182   operated with unidirectiona...

G07C 9/28   the pass enabling tracking ...

H04L 63/08   for authentication of entit...

Method of authorizing a person, an authorizing architecture and a computer program product

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Method of authorizing a person, an authorizing architecture and a computer program product

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links