JP2004537884A - Data network - Google Patents

Abstract

A method and system are provided for providing selective access to devices by a terminal in a smart environment. A unique identification code (UID) is assigned to each terminal and device. The devices and terminals wirelessly transmit their UIDs and receive UIDs transmitted from other devices and terminals. Upon receiving the UID of the terminal, the device queries the database and determines whether the terminal is authorized to control the device based on the permission information stored in the database. If a terminal without permission attempts to control the device or enters the environment, the owner can be notified.

Description

【Technical field】
[0001]
The present invention relates to security, and more particularly, to a wireless lock and key system used to selectively prevent an individual from operating a device when a predetermined set of criteria is met.
[Background Art]
[0002]
Traditionally, physical locks are commonly used to restrict access to articles, equipment, tools, and the like. Storing restricted items in a locked room is another well-known means of restricting access to items and areas. Conventional physical locks include a combination lock and a key lock, and various types are commercially available.
[0003]
Combination tablets are well known. The combination lock opens only when the user enters the correct combination code (usually a series of numbers). However, combination tablets have a number of disadvantages. That is, many of the combination locks have a combination set at the factory, and this combination cannot be changed by the purchaser of the lock. Also, once the combination information is given, it is impossible to collect it. Therefore, the only way to restrict access by someone who knows the combination is to physically replace the lock, in which case other traditional users of the lock other than the restricted person , It is necessary to redistribute new combination information to each of them. Also, there is potentially an unlimited number of people who can know about the right combination, as they can be communicated indefinitely about the right combination. After a person receives the combination information, there is no means by which the person can be physically restricted from transmitting the combination to other people. Also, in the case of a combination lock, it is impossible to notify the owner when the combination lock is used without permission.
[0004]
Locksmiths are also well known in the art. The lock is inserted with the correct physical key into the lock and rotated, and unlocks only when the locking mechanism is opened. However, locks also have several disadvantages. First, physical keys can be easily duplicated, and potentially there is the possibility that unwanted duplicates will be made and given to unauthorized persons. Also, if all the physical keys for a given lock are lost, a locksmith must manufacture a replacement key, often forcing the lock owner to pay a great deal of money. Become. Similarly to the combination lock, when an unauthorized user opens the lock, the owner of the lock is not usually notified.
[0005]
In addition, there is a common problem that access to either “zero” or “all” exists in both the key and the combination lock. That is, there is only access to the lock (i.e., having the key or knowing the combination) or not. Also, there is no way to differentiate access between users. The accessible users have the same access content, and one lock and key are used to give the first user specific access privileges and the second user other access privileges. There is no way to provide
[0006]
Conventionally, when trying to restrict access to devices such as a cable control box and a television control device, a conventional physical lock is usually used, and a physical barrier whose access is restricted by the lock is usually used as a control device. In recent years, electronic control devices for parents have been developed. According to these systems, a user typically uses a hand-held remote control to enter a first code key that allows viewing of programs that satisfy a first set of predetermined criteria, A second code key may be entered that allows viewing of programs that satisfy two predefined sets of criteria. As a result, it is possible to restrict children from viewing programs that the parent has determined to be inappropriate. However, this solution is only applicable to televisions and cable set-top boxes, and parents cannot use these systems to restrict access to other devices in the home.
[0007]
Also, for televisions, another known means of restricting access to equipment is the use of V-chips in the art. However, even with V-chips, only access to the television is limited, not access to other devices such as computers, ovens, stoves, lights, and the like.
[0008]
Traditionally, access to a computer is restricted using special software installed on the computer system. However, in the case of these software packages, the use of the computer system is limited only, and the use of other devices is not limited.
DISCLOSURE OF THE INVENTION
[Problems to be solved by the invention]
[0009]
Therefore, there is a need for a lock and key system that provides different levels of access to different users, thereby limiting access to multiple devices and being easily adaptable. Allows the owner to grant different rights to use different devices to family and other people, such as visitors, and controls who can use the devices and when they can use them There is a need for a system that provides a method to the owner and provides immediate notification to the owner when equipment is used contrary to the authority of the owner.
[Means for Solving the Problems]
[0010]
According to the first aspect of the present invention, in a smart environment, a terminal can selectively control devices. There are a plurality of devices, and each device is assigned a unique identifier (UID). There are also a plurality of terminals, and each terminal is assigned a unique identifier. There is also a database of permission information having information corresponding to which terminal can control the device and when. Before each device allows control by one of the terminals, it queries for permission information and verifies that the terminal is authorized to control that device.
[0011]
According to a second aspect of the present invention, there is provided a method in which one or more terminals can selectively control one or more devices in a smart environment. Each terminal and each device has a UID. One of the terminals wirelessly transmits its UID to one of the devices. The device queries the permission database for the received UID. Then, when the predetermined permission information corresponding to the UID of the terminal is stored in the database, the device recognizes the control by the terminal. As a result, the terminal can wirelessly control the device.
[0012]
According to a third aspect of the present invention, there is provided a wireless terminal having a transceiver for communicating with a device. The wireless transceiver repeatedly transmits its own unique identifier (UID) and listens for the device UID transmitted from the device. The terminal also has a memory for storing computer data. The computer data includes a unique identifier (UID) of the terminal; a device database for storing information corresponding to device control; and when executed, inquiring the device database for information corresponding to the received device UID. And computer readable instructions for execution by the terminal.
[0013]
According to a fourth aspect of the present invention, there is provided a computer readable medium having computer readable instructions that, when executed in a device, cause the device to perform a series of steps. The device transmits a unique device identifier (UID) and receives the terminal UID. The device queries the permission database for permission information corresponding to the terminal UID. Then, based on the permission information returned in response to the inquiry, the device selectively permits the terminal corresponding to the received terminal UID to access the device.
[0014]
According to a fifth aspect of the present invention, there is provided an apparatus having a wireless transceiver for communicating with at least one terminal. The wireless transceiver repeatedly transmits the unique identifier (UID) associated with the device and listens for the terminal UID transmitted from the terminal. The device also has a memory for storing computer data. The computer data includes a unique identifier (UID) associated with the device; and computer readable instructions that, when executed, cause the device to perform a series of steps. The device queries the permission database for information corresponding to the received terminal UID. Then, when the inquiry result satisfies the predetermined criterion, the device allows the terminal associated with the received terminal UID to control the device.
BEST MODE FOR CARRYING OUT THE INVENTION
[0015]
Wireless connection of devices is becoming increasingly popular. According to the present invention, a smart environment, such as a home, in which various devices in the home are remotely controlled by one or a plurality of control terminals using a wirelessly connected device is generated. These terminals use wireless technologies such as Bluetooth, wireless LAN, or HomeRF to communicate with and control devices. Any wireless communication technology can be used.
[0016]
The present invention can be implemented in a system that allows an environment owner to control and monitor who uses each device and when each person can use it. The system according to the present invention may also be used when a person who does not have the right to use the device in the environment attempts to use one or more devices (or optionally does not have the right to access it). The owner can be notified when the user enters the environment). This notification can be sent by short message service (SMS), email, direct network access, instant messaging, alphanumeric pager, WAP (Wireless Application Protocol) service, or the like. .
[0017]
In a smart environment, it is often important for the owner of the environment that only those who can control the environment are trusted and only those whom the owner has authorized. The "owner" of the environment is the person who has administrative rights to the environment, whether it is the actual owner or authorized to act as a manager. May be. The owner can limit the right and time of each user's access to each device.
[0018]
In this specification, the term “device” is generally used to mean an article to be controlled or operated by a user using a terminal (but not necessarily, as described later). I have. Examples of this equipment include televisions, video cassette recorders and players, DVD players, conventional ovens, microwave ovens, kitchen appliances, lighting systems, heating systems, air conditioning systems, garage door openers, lawn sprinkler systems, stereos Includes, but is not limited to, equipment, cable TV boxes, video game consoles, computers, and the like. A user using the controller terminal can control each device for which the user has an appropriate access right. In this specification, the terms “controller” and “terminal” are used to mean a device having a wireless function used for operating or controlling a device, and are interchangeable. The terminal may be a computer system, a palmtop computer, a personal digital assistant, a mobile phone, or any other device having a wireless communication function.
[0019]
Referring to FIGS. 1 to 3, the smart environment 100 may include a central server 103, devices 105a to 105e, and wireless controller terminals 107a to 107e. Further, additional devices and terminals can be easily added, and the only thing that limits the number of terminals or devices in the environment is the physical space. The device can communicate with the server 103 using the wireless communication technology used in the environment (or via conventional network wiring). The terminal typically communicates with the server by wireless communication unless docked at a docking station (not shown) connected to the server.
[0020]
The server 103 includes a processor 121, a volatile memory 123, and a nonvolatile memory 125. The database 109 is stored in the non-volatile memory of the server 103. In another variation, server functions including storage of the database 109 are provided by a third party via a network such as the Internet. It is also possible to store this database in one or more mobile terminals. In this specification, a terminal storing this database is called a database terminal. When the database is stored in the mobile terminal, usually, other devices and terminals must be able to connect to the terminal storing the database. This connection may be a communication means such as WLAN, Bluetooth, GSM with short message service (SMS), or the like. Storing the database in the terminal provides additional security because removing the terminal from the environment renders the device unusable.
[0021]
Permission information is stored in the database, and includes a unique identifier (UID) information 129 and access right information 127 as described later. This database may optionally include neighbor UID information (shown in FIG. 3C). Also, in the non-volatile memory 125, it is possible to store application software 131 including an optional user interface for changing access right information and UID information.
[0022]
Each terminal 107 has a wireless transceiver 226, a processor 227, and a memory 229. The transceiver is used for transmitting and receiving information such as UID and control information. Processor 227 is used to execute computer readable instructions 235 stored in memory 229. The memory stores a terminal UID 231, device information 233, and optionally a permission database 109.
[0023]
Each device 105 has a wireless transceiver 252, a processor 254, and a memory 256. The transceiver is used for transmitting and receiving information such as UID and control information. Processor 254 is used to execute computer readable instructions 260 stored in memory 256. The memory also stores a device UID 258 and, optionally, a permission database 109.
[0024]
Each wireless terminal and device is assigned a unique identification code (UID), which can have a MAC (Media Access Control) address for each device connected to the wireless network. This UID is stored in the database 109 (optionally, along with the group access level of each UID (eg, owner, manager, family, friend, employee, visitor, etc.)). FIG. 3A shows a UID information table. In FIG. 3A, terminals having UIDs 1123 and 1124 are owner terminals. Then, the terminal having the UID 0220 is connected to the child J.M. A terminal belonging to Smith Jr. and having a UID 0230 is an R.S. Belongs to Jones. The table also shows the UIDs of other devices.
[0025]
If the terminal and the device are within the wireless communication range, their UIDs can be automatically exchanged according to the network protocol. The device can query the database 103 using the UID to determine whether the terminal has the right to command the device. The terminal can use the UID to read information on the control method of the device accessed by the terminal.
[0026]
Usually, the device has a second user interface in addition to the terminal interface, so that the device can be physically controlled without going through the terminal. For example, a coffee maker may include an on / off switch so that a user can switch on and activate the coffee maker even if there is no terminal. In some aspects of the invention, it is determined that the user's terminal does not have the authority to access the device, or disables the physical control when the terminal does not exist. I do.
[0027]
Each device can be associated with a specific terminal access right. Access right information 127 is stored in the database 109 and can be changed by a user interface with the database via a computer network such as the Internet. FIG. 3B shows a sample of this access right information table. The owner can grant different access rights to different devices and / or terminals according to different predefined sets of criteria. Access rights may be based on terminal or time, or both. The terminal-based access right is a right that a designated terminal can always access a device, but other terminals cannot access the device. On the other hand, the time-based access right is a right that a terminal can access a device only at a predetermined time, and access and control of the device are restricted at other times. The term “access right based on the terminal and the time” refers to a right in which the time during which each terminal can access and control a specified device is limited to a predetermined range.
[0028]
For example, as shown in FIG. 3B, in a smart environment at home, one user's terminal (owner terminal with UID 1123) may always have access to the television and oven. However, the second user's terminal (e.g., the "family" terminal of a child with UID 0220) is only available from Monday to Friday from 7:00 pm to 9:00 pm, and on weekends from 7:00 am to pm At 9:00, it is possible to have access to the television and no access to the oven. A third user's terminal (eg, a babysitter's "friend" terminal with UID 0230) may have access to the television only from 9:00 am to 8:00 pm, regardless of the day of the week. Inaccessible to the oven. As shown in FIG. 3B, the access rights may be terminal-specific or group-specific. That is, for example, terminals in the "owner", "family", or "friend" groups will have access to the same television as all other terminals in their respective groups. However, the access of each terminal to the oven is unique. Thus, one family member (eg, an older child (not shown)) can access the oven, while a second family member (a younger child (shown)) can access the oven. Cannot access. It is also possible to make the access right based on the week or month, and to change the access right according to the week of the month, the month of the year, or the like.
[0029]
In addition, some devices do not set an access restriction, and the only requirement is that a terminal exists to use or control the device. For example, as shown in FIG. 3B, the owner can grant all users the right to turn the lights on / off. In these cases, it is not necessary to determine whether the terminal is authorized (or even whether it is known). It is sufficient that the terminal is present in the environment, and that alone has the right to turn the light on / off. Optionally, before the user controls the device, the device may query a database to determine at least whether the terminal has access rights in the environment.
[0030]
When a device is added to the environment, the device is registered in the environment. That is, the device records the identity of the environment so that the unique environment can be distinguished from other environments. This allows the device to determine whether it has moved to another environment. The identity of the environment can be established by recording the UID sent from the device in proximity to the new device (neighboring device). For example, device 105e (oven) knows that it is in close proximity to devices 105a (answering machine) and 105c (scanner). Each device can store its own neighbor information in the flash memory, and only the terminal (owner terminal or special maintenance device) having the authority can clear the information. This neighborhood UID information can also be stored collectively in the database 109, a sample of which is shown in FIG. 3C.
[0031]
After registration is completed, only the owner can remove the device from the environment, otherwise the device will not function. Optionally, equipment in the environment may be immovable, except by the owner. A device can determine that it is moving from its original environment by determining that it is surrounded by another neighboring device. Then, in the observation of the wireless environment, if the environment changes dramatically (for example, if three or more neighboring devices different from the predicted ones are detected), the devices themselves are stolen. It can be estimated that If the device is stolen or otherwise removed from its original environment, it is optionally possible to lock itself and refuse operation until unlocked. In this case, the owner key is usually required to unlock the device. The device may also attempt to contact the owner (which is not the owner of the environment in which the device is currently located) to inform the owner that he or she is moving out of the environment. It is possible.
[0032]
In embodiments that use a database terminal, a secure link is created between the database terminal and the device as new devices are added to the environment. This allows the device to safely determine whether the control terminal has the rights (ie, whether the control terminal is a reliable database terminal). The secure link is created by placing the database terminal and the device physically close to each other. The device and the database terminal exchange their respective public keys and other encrypted data. Thereafter, the device and the terminal listen and communicate only with each other, which results in the device being safely added to the environment.
[0033]
In the case of a network structure where the database is stored on a central server or other location, the mobile device (eg, owner terminal) and the newly added device are registered as in the case where the database is stored in the mobile device. . That is, as in the previous example, the owner terminal and the device establish a secure link. However, in this case, the terminal establishes a secure link with the database. This secure link can be created by placing the terminal and server in physical proximity to each other. That is, the portable terminal establishes a secure link with the newly added device, and the same portable terminal establishes a secure link with the database server. In such a scenario, registering the environment for the device is a two-step procedure, where the server and the device use the terminal as a trusted introducer to establish a secure link. First, the terminal exchanges the public key with the device, and further exchanges the public key of the database with the device. The terminal then moves closer to the database and exchanges the public key with the database and exchanges the device's public key with the database. After this exchange is completed, the device will not trust another terminal as an introducer unless reset by a maintenance procedure.
[0034]
Referring to FIG. 4, when a user wants to control a device, the device authenticates the terminal as a terminal permitted to control the device. In this case, the UID of the controller terminal is used as a key for the device. First, in steps 201 and 203, the device continuously listens to the UID of the terminal. Upon receiving the UID, in step 205, the device queries the database 109 to determine the group of the UID. If the result of the determination in step 207 is that the UID belongs to the owner terminal, then in step 209 the device is Allow control by terminal. If, on the other hand, the UID is not the owner, then in step 211 the device queries the database for the UID's access rights to that particular device (and for the entire environment). Then, if the UID has access to the device at the current date and time, at step 209 the device grants control by the terminal. On the other hand, if the UID does not have access, at step 215, the device determines whether the terminal has any access in the environment. If the terminal does not have any access rights in the environment, then in step 217, the device alerts the owner that an unauthorized terminal is present in the environment. Attempt to emit. This can be achieved by sending the message by email, SMS, wireless pager, or the like. However, if the UID does not have access rights in the environment, the device can simply ignore the terminal and continue listening for another UID. Optionally, the server may also perform steps 215 and 217 after receiving the UID from the device at step 205 (not shown).
[0035]
In one embodiment, the owner terminal can be used to grant or change access rights for other terminals. Such other terminals may have different access levels, as described above. In order to permit a new terminal, when updating the database, both the terminal having management authority (that is, the owner) and the terminal to which the access right is to be granted are arranged close to each other. This allows only authorized persons to grant access rights to the terminal, providing a further security level. UID codes are exchanged between terminals via a short distance link. Additional security measures such as passwords can be used in this authorization process. In another embodiment, the database can be updated with new information without having the terminals physically located close to each other.
[0036]
In some aspects of the invention, regardless of the wireless implementation, the terminal and device continue to transmit their UID and listen for other UIDs. As a result, the terminal and the device can automatically "listen" to each other if they are in close proximity to each other. These UIDs allow the listening device to determine if it has previous knowledge of other nearby devices and react accordingly. For example, when the terminal receives the UID, the terminal uses the UID to determine whether the terminal has information on a method of controlling the device.
[0037]
A central server in the smart environment polls the devices. This can be done continuously at intervals such as hourly or daily. Then, if the server determines that the device has disappeared from the network (i.e., what to respond is not responding), the server contacts the owner controller (or, optionally, all controllers). You can be notified automatically.
[0038]
Using the present invention, the revocation or change of the key (UID) can be easily performed by reprogramming or resetting the information in the terminal and / or the database. Further, as described above, it is easy to set keys so as to have various access levels. The key may be a built-in function in an existing terminal, so that no new wireless hardware is required to implement the present invention. However, it is easy to recall a special terminal used in the present invention that can store at least key information and can execute short-range wireless communication.
[0039]
The owner or administrator can also use the system of the present invention as a child lock for the selected device. For example, the system can be used to prevent a child from operating an oven (or other equipment) without the explicit permission of the parent. That is, if a child attempts to turn on the oven, the oven will only listen to the child's keys (in this example, they do not have permission to use the oven) and the oven will not respond . However, when the parent enters the kitchen and detects the parent by receiving the parent's key, the oven operates (because the parent's key has authority to use the oven). In one aspect of the invention, while the oven (or other equipment for which protection is sought) is under the authority of the parent, the authorized keys are moved from the range unless the enable switch is activated for it. Upon exit, the oven (or other equipment) will switch off. Using the system according to the invention, various similar protection schemes can easily be envisaged, and in another aspect, the oven (or other equipment) has an authorized key performed out of range. It will remain in the ON state later.
[0040]
In one aspect of the invention, the device reports to the database about the time the device was used, who used it, and the purpose for which it was used. For example, some devices, such as coffee makers, report only the time and person used the device (since the sole purpose is to make coffee). However, in the case of other equipment, such as televisions, cable television control boxes, computers and the like, programs watched, games played, applications executed, websites visited, and the like Can be reported. As a result, a user such as a parent can judge how to use the device based on the reported information and improve the access right.
[0041]
All method steps appearing in the preceding description may be encoded as computer readable instructions stored in memory that, when executed by a processor, cause the apparatus on which the processor is located to perform the method steps. It is possible.
[0042]
While the invention has been described with reference to specific examples including the presently preferred mode of carrying out the invention, those skilled in the art will appreciate that the foregoing systems and techniques are described in the appended claims. It will be understood that there are numerous variations and permutations that fall within the spirit and scope of the invention as described.
[Brief description of the drawings]
[0043]
FIG. 1 shows a smart environment.
FIG. 2A shows a block diagram of a server.
FIG. 2B shows a block diagram of a terminal.
FIG. 2C shows a block diagram of the instrument.
FIG. 3A shows unique identifier (UID) information.
FIG. 3B shows a part of the access right information of the UID of FIG. 3A.
FIG. 3C shows neighboring UID information of the UID of FIG. 3A.
FIG. 4 shows a flowchart of a user authorization process for using the device.

Claims (38)

A smart environment that provides selective access to devices,
A plurality of devices each assigned a unique identifier (UID);
A plurality of terminals, each assigned a UID, adapted to wirelessly communicate with the device and control the device;
A database adapted to store authorization information;
A smart environment in which each device queries the permission information before allowing control by one of the terminals and verifies that the one terminal is authorized to control the device. The smart environment according to claim 1, wherein the database is stored in a server computer. The smart environment according to claim 1, wherein the database is stored in one of the terminals. The smart environment according to claim 1, wherein the database is stored in one of the devices. The smart environment of claim 1, wherein the devices and terminals are adapted to transmit a UID assigned to them. The smart environment according to claim 1, wherein the device sends a warning notification when the device queries the database for a UID satisfying a predetermined condition. The smart environment according to claim 1, wherein the terminal sends a warning notification when the device queries the database for a UID satisfying a predetermined condition. The smart environment according to claim 2, wherein the server sends a warning notification when the device queries the database for a UID satisfying a predetermined condition. The smart environment according to claim 8, wherein the predetermined condition is that the terminal does not have an access right to control any device at any time. The permission information of the first terminal corresponds to a first access right set, and the permission information of the second terminal corresponds to a second access right set different from the first access right set. The smart environment according to claim 1, wherein: The said 1st set of access rights has what is always accessible to an apparatus, The said 2nd set of access rights corresponds to the thing which cannot access an apparatus. The smart environment according to claim 10. The smart environment according to claim 1, wherein control of the device for the first predetermined period is granted to the first terminal. The smart environment according to claim 12, wherein control for the device in a second predetermined period different from the first predetermined period is granted to the second terminal. The smart environment according to claim 1, wherein the UID is a network address used for wireless communication. A method for providing selective access to one or more devices by one or more terminals in a smart environment, wherein each terminal and each device have a unique identifier (UID);
(I) wirelessly transmitting a UID from one of the terminals to one of the devices;
(Ii) querying a database for permission information of the received UID;
(Iii) permitting the terminal to control the one device when the database stores predetermined permission information corresponding to the terminal;
(Iv) controlling the one device using the one terminal;
A method comprising: The method of claim 15, wherein the database is stored on a server computer. The method of claim 15, wherein the database is stored on one of the terminals. The method of claim 15, wherein the database is stored on one of the devices. (V) transmitting a notification to a predetermined location when it is determined in the inquiry in the step (ii) that the UID of the terminal satisfies a predetermined condition;
The method of claim 15, comprising: 20. The method according to claim 19, wherein the predetermined condition is that in the smart environment, the one terminal does not have access to control any device at any time. The method of claim 15, wherein the permission information of the first terminal corresponds to a first set of access rights, and the permission information of the second terminal corresponds to a second set of access rights. The method of claim 15, wherein control of the device for a first predetermined period is granted to the first terminal. 23. The method according to claim 22, wherein control of the device during a second predetermined period different from the first predetermined period is granted to the second terminal. A wireless terminal,
A wireless transceiver that communicates with at least one device and transmits a unique identifier (UID) and repeats listening for a device UID transmitted from the device;
A unique device identifier (UID); a device database having information corresponding to control of at least one device; and when executed, querying the device database for information corresponding to the received device UID. A memory for storing data having computer readable instructions to be executed;
A wireless terminal comprising: The wireless terminal of claim 24, wherein the wireless transceiver communicates using wireless communication. The data stored in the memory further comprises an authorization database, wherein the computer readable instructions include:
(Ii) receiving a permission request from the device;
(Iii) querying the permission database based on the permission request;
(Iv) transmitting a query result to the device;
The wireless terminal according to claim 24, further comprising: A computer readable medium having computer readable instructions, wherein
The computer-readable instructions, when executed on the device, cause the device to:
(I) transmitting a unique device identifier (UID);
(Ii) receiving a terminal UID;
(Iii) querying a permission database for permission information corresponding to the terminal UID;
(Iv) selectively allowing access to the device by a terminal corresponding to the received terminal UID based on the permission information returned in step (iii);
A computer-readable medium for executing the program. 28. The computer readable medium of claim 27, wherein the computer readable instructions further perform the step of sending a notification if the query of step (iii) returns information that satisfies predetermined criteria. The computer-readable medium of claim 28, wherein the criteria is that the returned information indicates that the terminal does not have access to any known devices. Equipment,
A wireless transceiver that communicates with at least one terminal and transmits a unique identifier (UID) and repeats listening for a terminal UID transmitted from the terminal;
The unique identifier (UID) associated with the device; and, when executed, the device: (i) querying an authorization database for information corresponding to the received terminal UID; and (ii) the step (ii) allowing the terminal associated with the received terminal UID to control the device if the query result of i) satisfies a predetermined criterion. And a memory for storing
Equipment equipped with. 31. The device of claim 30, wherein the transceiver communicates using wireless communications. 31. The device of claim 30, wherein the permission database is stored in the memory. The transceiver listens for a device UID transmitted from another device, and the computer readable instructions cause the device to:
(Iii) recording a first received set of device UIDs for a predetermined period;
(Iv) comparing a second set of received device UIDs with the first set of device UIDs during a period other than the predetermined period;
31. The apparatus of claim 30, further comprising: The computer readable instructions further comprise transmitting to the device an alert notification to a predefined location if the number of different UIDs between the first set and the second set satisfies predefined criteria. 31. The device according to claim 30, which is executed. The computer readable instructions further cause the device to perform a predetermined operation if the number of different UIDs between the first set and the second set satisfies a predetermined criterion. Item 30. The apparatus according to Item 30, 36. The device of claim 35, wherein the predetermined action is to deactivate the device. 36. The device according to claim 35, wherein the predetermined operation is not to grant control to a terminal normally allowed to control the device. 36. The device of claim 35, wherein the default action is to lock the device so that no terminal can control the device unless an owner terminal unlocks the device.

Images