Method and system for providing identity, authentication, and access services
First Claim
1. A method for providing identity, authentication, and access control services in a mobile environment utilizing data encoded tags, the method comprising:
- receiving, by a server computing device, tag data and user data from a mobile device via a secure connection, the tag data being read from a data-encoded tag in proximity to the mobile device using short-range communication circuitry embedded in the mobile device, the user data being stored on the mobile device, and the data-encoded tag being logically associated with a physical point of entry to a secure area;
authenticating, by the server computing device, a user of the mobile device based on the user data;
determining, by the server computing device, a location of the physical point of entry using the received tag data;
determining, by the server computing device, whether the user of the mobile device is authorized to pass through the physical point of entry at the location using permissions data associated with the user;
transmitting, by the server computing device, a message to a control panel associated with the physical point of entry that instructs the control panel to grant access to pass through the physical point of entry at the location if the user is authorized;
receiving, by the server computing device, a response from the control panel indicating that access is granted to pass through the physical point of entry at the location; and
transmitting, by the server computing device, a message to the mobile device indicating to the user that access is granted to pass through the physical point of entry at the location.
4 Assignments
0 Petitions
Accused Products
Abstract
Described herein are methods and systems for providing identity, authentication, and access control services in a mobile environment utilizing data encoded tags. A server computing device receives tag data and user data from a mobile device, the tag data read from a data-encoded tag in proximity to the mobile device using a short-range communication protocol, and the user data stored on the mobile device. The server computing device authenticates a user of the mobile device based on the user data, determines whether the user is authorized to access an access point associated with the data-encoded tag, transmits a message to the access point that instructs the access point to grant user access if the user is authorized, receives a response from the access point indicating that user access is granted and transmits a message to the mobile device indicating to the user that access is granted to the access point.
43 Citations
25 Claims
-
1. A method for providing identity, authentication, and access control services in a mobile environment utilizing data encoded tags, the method comprising:
-
receiving, by a server computing device, tag data and user data from a mobile device via a secure connection, the tag data being read from a data-encoded tag in proximity to the mobile device using short-range communication circuitry embedded in the mobile device, the user data being stored on the mobile device, and the data-encoded tag being logically associated with a physical point of entry to a secure area; authenticating, by the server computing device, a user of the mobile device based on the user data; determining, by the server computing device, a location of the physical point of entry using the received tag data; determining, by the server computing device, whether the user of the mobile device is authorized to pass through the physical point of entry at the location using permissions data associated with the user; transmitting, by the server computing device, a message to a control panel associated with the physical point of entry that instructs the control panel to grant access to pass through the physical point of entry at the location if the user is authorized; receiving, by the server computing device, a response from the control panel indicating that access is granted to pass through the physical point of entry at the location; and transmitting, by the server computing device, a message to the mobile device indicating to the user that access is granted to pass through the physical point of entry at the location. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system for providing identity, authentication, and access control services in a mobile environment utilizing data encoded tags, the system comprising a server computing device configured to:
-
receive tag data and user data from a mobile device via a secure connection, the tag data being read from a data-encoded tag in proximity to the mobile device using short-range communication circuitry embedded in the mobile device, the user data being stored on the mobile device, and the data-encoded tag being logically associated with a physical point of entry to a secure area; authenticate a user of the mobile device based on the user data; determine a location of the physical point of entry using the received tag data; determine whether the user of the mobile device is authorized to pass through the physical point of entry at the location using permissions data associated with the user; transmit a message to a control panel associated with the physical point of entry that instructs the control panel to grant access to pass through the physical point of entry at the location if the user is authorized; receive a response from the control panel indicating that access is granted to pass through the physical point of entry at the location; and transmit a message to the mobile device indicating to the user that access is granted to pass through the physical point of entry at the location. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A computer program product, tangibly embodied in a non-transitory computer readable storage device, for providing identity, authentication, and access control services in a mobile environment utilizing data encoded tags, the computer program product including instructions operable to cause a server computing device to:
-
receive tag data and user data from a mobile device via a secure connection, the tag data being read from a data-encoded tag in proximity to the mobile device using short-range communication circuitry embedded in the mobile device, the user data being stored on the mobile device, and the data-encoded tag being logically associated with a physical point of entry to a secure area; authenticate a user of the mobile device based on the user data; determine a location of the physical point of entry using the received tag data; determine whether the user of the mobile device is authorized to pass through the physical point of entry at the location using permissions data associated with the user; transmit a message to a control panel associated with the physical point of entry that instructs the control panel to grant access to pass through the physical point of entry at the location if the user is authorized; receive a response from the control panel indicating that access is granted to pass through the physical point of entry at the location; and transmit a message to the mobile device indicating to the user that access is granted to pass through the physical point of entry at the location.
-
Specification