Anonymous decisions in an access control system

US 9,860,216 B2
Filed: 09/16/2013
Issued: 01/02/2018
Est. Priority Date: 09/16/2013
Status: Active Grant

First Claim

Patent Images

1. A method, performed by a controller device, the method comprising:

accessing, by the controller device, a global database that includes access control information for a plurality of controller devices,wherein the controller device belongs to a distributed system that includes the plurality of controller devices, andwherein the global database corresponds to a consensus-based distributed dataset in the distributed system and identifies users and access rules for granting access to a plurality of entities;

deriving, by the controller device, a local access rules table from the global database,wherein the controller device uses the local access rules table to determine whether or not to grant access to an entity associated with the controller device,wherein the controller device stores the local access rules table,wherein the local access rules table lists a plurality of users and associates a rule for each corresponding user to access the entity associated with the controller device, andwherein the local access rules table is encrypted with a local access rules key;

deriving, by the controller device, a local credentials table from the global database,wherein the local credentials table relates each of the plurality of users to a corresponding hashed credential, andwherein the local credentials table stores, for each of the plurality of users, the local access rules key encrypted with the corresponding unhashed credential associated with the corresponding user;

receiving, by the controller device, a credential value from a reader device;

identifying, by the controller device, one of the plurality of users from among the plurality of users listed in the derived local credentials table based on the received credential value, when a hashed credential associated with the one of the plurality of users exists in the derived local credentials table, wherein the corresponding unhashed credential is not stored in the controller device as being associated with the corresponding one of the plurality of users before identifying the one of the plurality of users; and

executing, by the controller device, one or more access rules associated with the identified one of the plurality of users based on the derived local access rules table, when an access rules entry exists for the user in the derived local access rules table.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A controller device may correspond to a physical access controller in a distributed physical access control system. The controller device may include logic configured to obtain access to a global database that include access control information for a plurality of controller devices. The logic may be further configured to derive a local access rules table from the global database, wherein the local access rules table relates users to access rules, and wherein the local access rules table is encrypted with a local access rules key; and derive a local credentials table from the global database, wherein the local credentials table relates hashed credentials to users, wherein the local credentials table stores, for a user, the local access rules key encrypted with unhashed credentials associated with the user, wherein the unhashed credentials are not stored in the controller device.

Citations

26 Claims

1. A method, performed by a controller device, the method comprising:
- accessing, by the controller device, a global database that includes access control information for a plurality of controller devices,wherein the controller device belongs to a distributed system that includes the plurality of controller devices, andwherein the global database corresponds to a consensus-based distributed dataset in the distributed system and identifies users and access rules for granting access to a plurality of entities;
  
  deriving, by the controller device, a local access rules table from the global database,wherein the controller device uses the local access rules table to determine whether or not to grant access to an entity associated with the controller device,wherein the controller device stores the local access rules table,wherein the local access rules table lists a plurality of users and associates a rule for each corresponding user to access the entity associated with the controller device, andwherein the local access rules table is encrypted with a local access rules key;
  
  deriving, by the controller device, a local credentials table from the global database,wherein the local credentials table relates each of the plurality of users to a corresponding hashed credential, andwherein the local credentials table stores, for each of the plurality of users, the local access rules key encrypted with the corresponding unhashed credential associated with the corresponding user;
  
  receiving, by the controller device, a credential value from a reader device;
  
  identifying, by the controller device, one of the plurality of users from among the plurality of users listed in the derived local credentials table based on the received credential value, when a hashed credential associated with the one of the plurality of users exists in the derived local credentials table, wherein the corresponding unhashed credential is not stored in the controller device as being associated with the corresponding one of the plurality of users before identifying the one of the plurality of users; and
  
  executing, by the controller device, one or more access rules associated with the identified one of the plurality of users based on the derived local access rules table, when an access rules entry exists for the user in the derived local access rules table.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The method of claim 1, further comprising:
    - hashing the received credential value;
      
      determining whether a credential entry exists for the hashed credential value in the local credentials table; and
      
      identifying the one of the plurality of users associated with the received credential value in the local credentials table, when the credential entry exists for the hashed credential value in the local credentials table.
  - 3. The method of claim 2, further comprising:
    - decrypting the local access rules key, associated with the credential entry, using the received credential value;
      
      decrypting the local access rules table using the decrypted local access rules key; and
      
      determining whether the access rules entry exists in the decrypted local access rules table for the one of the plurality of users.
  - 4. The method of claim 1, further comprising:
    - receiving an update to the global database from an administrator device;
      
      distributing the update to other ones of the plurality of controller devices; and
      
      updating the global database using the received update, wherein the global database is updated at the other ones of the plurality of controller devices.
  - 5. The method of claim 1, further comprising:
    - storing the global database by the controller device; and
      
      enabling the plurality of controller devices to access the global database.
  - 6. The method of claim 1, wherein the controller device is not a member of the consensus-based distributed dataset of the global database and the global database is stored in another controller device of the plurality of controller devices, and wherein obtaining access to the global database includes:
    - accessing the global database at the other controller device.
  - 7. The method of claim 1, further comprising:
    - obtaining an update for the global database;
      
      determining that the update is relevant to at least one of the local access rules table or the local credentials table; and
      
      updating the at least one of the local access rules table or the local credentials table using the updated global database, based on determining that the update is relevant to the local access rules table or the local credentials table.
  - 8. The method of claim 7, wherein the local credentials table is encrypted using a local credentials key, the method further comprising:
    - decrypting the local credentials table using the local credentials key;
      
      updating a hashed credential value in the local credentials table;
      
      obtaining an unencrypted local access rules key from the global database; and
      
      encrypting the local access rules key with an unhashed credential value, wherein the encrypted local access rules key is associated with the hashed credential value.
  - 9. The method of claim 7, further comprising:
    - obtaining an unencrypted local access rules key from the global database;
      
      decrypting the local access rules table using the obtained unencrypted local access rules key;
      
      updating the local access rules table; and
      
      encrypting the updated local access rules table.
  - 10. The method of claim 1, wherein the local access rules table associates a particular access location with a particular group of users and with a particular set of access rules.
  - 11. The method of claim 1, further comprising:
    - deriving a remote local access rules table from the global database for another controller device of the plurality of controller devices;
      
      deriving a remote local credentials table from the global database for the other controller device; and
      
      enabling the other controller device to access the remote local access rules table and the remote local credentials table.
  - 12. The method of claim 1, wherein a user is associated with a global database row number in the global database, wherein the user is associated with the global database row number in the local access rules table, and wherein the user is associated with the global database row number in the local credentials table.
  - 13. The method of claim 6, wherein the controller device is located in an area designated as a high risk area and where the other controller device is located outside the area designated as a high risk area.
  - 14. The method of claim 1, wherein the plurality of controller devices corresponds to a distributed physical access control system, and wherein the controller device corresponds to a physical access control unit.

15. A controller device comprising:
- a memory storing instructions; and
  
  a processor configured to execute the instructions to;
  
  access a global database that includes access control information for a plurality of controller devices, wherein the global database identifies users and access rules for granting access to a plurality of entities, and wherein the controller device belongs to a distributed system that includes the plurality of controller devices, and wherein the global database corresponds to a consensus-based distributed dataset in the distributed system;
  
  derive a local access rules table from the global database,wherein the controller device uses the local access rules table to determine whether or not to grant access to an entity associated with the controller device,wherein the controller device stores the local access rules table,wherein the local access rules table lists a plurality of users and associates a rule for each corresponding user to access the entity associated with the controller device, andwherein the local access rules table is encrypted with a local access rules key;
  
  derive a local credentials table from the global database,wherein the local credentials table relates each of the plurality of users to a corresponding hashed credential,wherein the local credentials table stores, for each of the plurality of users, the local access rules key encrypted with the corresponding unhashed credential associated with the user receive a credential value from a reader device;
  
  identify one of the plurality of users from among the plurality of users listed in the derived local credentials table based on the received credential value, when a hashed credential associated with the one of the plurality of users exists in the derived local credentials table, wherein the corresponding unhashed credential is not stored in the controller device as being associated with the corresponding one of the plurality of users before identifying the one of the plurality of users; and
  
  execute one or more access rules associated with the identified one of the plurality of users based on the derived local access rules table, when an access rules entry exists for the user in the derived local access rules table.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23)
- - 16. The controller device of claim 15, wherein the processor is further configured to execute the instructions to:
    - hash the received credential value;
      
      determine whether a credential entry exists for the hashed credential value in the local credentials table; and
      
      identify the one of the plurality of users associated with the received credential value in the local credentials table, when the credential entry exists for the hashed credential value in the local credentials table.
  - 17. The controller device of claim 15, wherein the credential value includes one or more of:
    - a sequence of keypad characters;
      
      a value obtained from a keycard;
      
      a feature vector obtained from an iris scan;
      
      a feature vector obtained from a voice sample;
      
      ora feature vector obtained from a fingerprint scan.
  - 18. The controller device of claim 16, wherein the processor is further configured to execute the instructions to:
    - decrypt the local access rules key, associated with the credentials entry, using the received credentials value;
      
      decrypt the local access rules table using the decrypted local access rules key; and
      
      determine whether the access rules entry exists in the decrypted local access rules table for the one of the plurality of users.
  - 19. The controller device of claim 15, wherein the processor is further configured to execute the instructions to:
    - receive an update to the global database from an administrator device;
      
      distribute the update to other ones of the plurality of controller devices; and
      
      update the global database using the received update, wherein the global database is updated at the other ones of the plurality of controller devices.
  - 20. The controller device of claim 15, wherein the processor is further configured to execute the instructions to:
    - store the global database by the controller device; and
      
      enable a plurality of other controller devices to access the global database.
  - 21. The controller device of claim 15, wherein the controller device is not a member of the consensus-based distributed dataset of the global database and the global database is stored in another controller device of the plurality of controller devices, and wherein the processor is further configured to execute the instructions to:
    - access the global database at the other controller device.
  - 22. The controller device of claim 15, wherein the processor is further configured to execute the instructions to:
    - derive a remote local access rules table from the global database for another controller device;
      
      derive a remote local credentials table from the global database for the other controller device; and
      
      provide the remote local access rules table and the remote local credentials table to the other controller device.
  - 23. The controller device of claim 15, wherein the plurality of controller devices corresponds to a distributed physical access control system, wherein the controller device corresponds to a physical access control unit, and wherein the reader device is connected to the controller device via a peripheral interface.

24. A distributed system comprising:
- a plurality of physical access control devices, wherein a particular one of the plurality of physical access control devices is configured to;
  
  access a global database that includes access control information for a plurality of controller devices, wherein the global database identifies users and access rules for granting access to a plurality of entities, and wherein the plurality of physical access control devices belong to a distributed system, and wherein the global database corresponds to a consensus-based distributed dataset in the distributed system;
  
  derive a local access rules table from the global database,wherein the controller device uses the local access rules table to determine whether or not to grant access to an entity associated with the controller device,wherein the controller device stores the local access rules table,wherein the local access rules table lists a plurality of users and associates a rule for each corresponding user to access the entity associated with the controller device, andwherein the local access rules table is encrypted with a local access rules key;
  
  derive a local credentials table from the global database, wherein the local credentials table relates each of the plurality of users to a corresponding hashed credential,wherein the local credentials table stores, for each of the plurality of users, the local access rules key encrypted with the corresponding unhashed credential associated with the user receive a credential value from a reader device;
  
  identify one of the plurality of users from among the plurality of users listed in the derived local credentials table based on the received credential value, when a hashed credential associated with the one of the plurality of users exists in the derived local credentials table, wherein the corresponding unhashed credential is not stored in the controller device as being associated with the corresponding one of the plurality of users before identifying the one of the plurality of users; and
  
  execute one or more access rules associated with the identified one of the plurality of users based on the derived local access rules table, when an access rules entry exists for the user in the derived local access rules table.
- View Dependent Claims (25, 26)
- - 25. The distributed system of claim 24, wherein the received credential value includes one or more of:
    - a sequence of keypad characters;
      
      a value obtained from a keycard;
      
      a feature vector obtained from an iris scan;
      
      a feature vector obtained from a voice sample;
      
      ora feature vector obtained from a fingerprint scan.
  - 26. The distributed system of claim 24, wherein the particular one of the plurality of physical access control devices is further configured to:
    - receive an update to the global database from an administrator device;
      
      distribute the update to other ones of the plurality of physical access control devices; and
      
      update the global database using the received update, wherein the global database is updated at the other ones of the plurality of physical access control devices.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Axis AB (Canon Inc.)
Original Assignee
Axis AB (Canon Inc.)
Inventors
Bruce, Mathias, Johansson, Marcus
Primary Examiner(s)
Dinh, Minh

Application Number

US14/028,236
Publication Number

US 20150082033A1
Time in Patent Office

1,569 Days
Field of Search

713168
US Class Current
CPC Class Codes

G06F 2221/2141   Access rights, e.g. capabil...

G06F 9/54   Interprogram communication

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 63/20   for managing network securi...

Anonymous decisions in an access control system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Anonymous decisions in an access control system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links