Access system for a vehicle and method for managing access to a vehicle
First Claim
1. An access system for an aircraft, comprising:
- a central rights management unit for interlinking and providing user identification and associated user rights,at least a first access control terminal situated outside of the aircraft, wherein the at least a first access control terminal comprises a data connection to the central rights management unit,a second access control terminal that does not comprise a direct connection to the central rights management unit,at least one portable identification medium that includes an authentication unit and is configured, in the authentication unit, to run through verification mechanisms for user authentication, and to transmit to the at least a first access control terminal information relating to a user authentication that has been carried out, andat least one input means for interacting with a user,wherein the at least a first access control terminal includes a connecting means for connection to the at least one portable identification medium and the at least a first access control terminal is configured to enable the associated user rights for an authorized user,wherein the at least one portable identification medium comprises an independent data part for storing updated user privilege data related to multiple users, which may or may not include the actual holder of the portable identification medium, the user privilege data being obtained from the central rights management unit via the at least a first access control terminal,wherein the second access control terminal is configured to retrieve and store the updated user privilege data from the independent data part to acquire knowledge of current associated user rights on the basis of the stored user privilege data that are called up from the portable identification medium,wherein the first and second access control terminals are configured to perform functions related to user authentication based on security data stored on the portable identification medium and accessed by the access control terminals during a user authentication procedure, andwherein the at least one portable identification medium is configured to store time stamp priority information associated with the updated user privilege data stored by the at least one portable identification medium, and wherein the at least one access control terminal is configured to;
call up the time stamp priority information from the at least one portable identification medium, compare the called up time stamp priority information with other time stamp priority information relating to other known user privilege data, and make a decision as to which set of user privilege data to use, based on comparing the called up time stamp priority information with the other time stamp priority information.
1 Assignment
0 Petitions
Accused Products
Abstract
An access system for a vehicle is provided. The access system includes a central rights management unit, an access control device, and a portable identification medium. The access control device makes it possible to run verification mechanisms on the identification medium with the use of input means for interacting with a user. To this effect the identification medium includes an authentication unit and also a data part that depends on it which for viral epidemic propagation of privilege data may forward this data to access control devices without its own data connection. Even in the case of an incomplete infrastructure, extensive vehicle movements and very substantial fluctuations in personnel it is nevertheless possible to achieve very high security and reliability of enabling access and vehicle functions.
-
Citations
9 Claims
-
1. An access system for an aircraft, comprising:
-
a central rights management unit for interlinking and providing user identification and associated user rights, at least a first access control terminal situated outside of the aircraft, wherein the at least a first access control terminal comprises a data connection to the central rights management unit, a second access control terminal that does not comprise a direct connection to the central rights management unit, at least one portable identification medium that includes an authentication unit and is configured, in the authentication unit, to run through verification mechanisms for user authentication, and to transmit to the at least a first access control terminal information relating to a user authentication that has been carried out, and at least one input means for interacting with a user, wherein the at least a first access control terminal includes a connecting means for connection to the at least one portable identification medium and the at least a first access control terminal is configured to enable the associated user rights for an authorized user, wherein the at least one portable identification medium comprises an independent data part for storing updated user privilege data related to multiple users, which may or may not include the actual holder of the portable identification medium, the user privilege data being obtained from the central rights management unit via the at least a first access control terminal, wherein the second access control terminal is configured to retrieve and store the updated user privilege data from the independent data part to acquire knowledge of current associated user rights on the basis of the stored user privilege data that are called up from the portable identification medium, wherein the first and second access control terminals are configured to perform functions related to user authentication based on security data stored on the portable identification medium and accessed by the access control terminals during a user authentication procedure, and wherein the at least one portable identification medium is configured to store time stamp priority information associated with the updated user privilege data stored by the at least one portable identification medium, and wherein the at least one access control terminal is configured to;
call up the time stamp priority information from the at least one portable identification medium, compare the called up time stamp priority information with other time stamp priority information relating to other known user privilege data, and make a decision as to which set of user privilege data to use, based on comparing the called up time stamp priority information with the other time stamp priority information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for managing access for an aircraft, comprising the steps of:
-
connecting an identification medium comprising an authentication unit to a connecting means of a first access control terminal, the first access control terminal being situated outside the aircraft and having a data connection to a central rights management unit; inquiring features of a user for authentication by way of an input means by the authentication unit; verifying the correctness of the inquired features on the basis of data in the authentication unit; after successful verification, transmitting information stating that the user has successfully authenticated themselves and stating the particular group of which the user forms part, from the authentication unit to the access control device; correlating the user group with privilege data for receiving concrete user rights; authorizing the user with concrete user rights; calling up updated privilege data related to multiple users, which may or may not include the actual holder of the portable identification medium, from the central rights management unit by the access control terminal; transmitting the updated privilege data to the identification medium; calling up and storing updated privilege data from the identification medium by a second access control terminal to acquire knowledge of current associated user rights, provided no data connection exists between the second access control terminal and the central rights management unit; providing time stamp priority information by the at least one portable identification medium, the time stamp priority information associated with the updated privilege data; calling up time stamp priority information from the at least one portable identification medium by the at least one access control terminal; comparing the called up time stamp priority information from the at least one portable identification medium with other time stamp priority information relating to to other known user privilege data; and making a decision as to which set of user privilege data to use, based on comparing the called up time stamp priority information with the other time stamp priority information; wherein the first and second access control terminals are configured to perform functions related to user authentication based on security data stored on the portable identification medium and accessed by the access control terminals during a user authentication procedure.
-
Specification