CH713687A1 - Method and system for ordering and using access rights. - Google Patents

Abstract

The invention relates to a method for ordering and using access rights for access to access-controlled service devices (3), in which method access rights are ordered from a reservation center (4) by transmitting order information via an order channel, the order information identifying the user of the access rights include to which mobile communication terminal (1) whose transmitted the access rights via a communication network (5) and stored there in a memory module. The data exchange between this memory module (21) and a control device (31) of a said service device (3) takes place via a contactless or optical interface (13, 13 '). Decisions about the access authorization of the user of said communication terminal (1) are made taking into account ticket information contained in said access right and according to the decision, the user access to the service device (3) by an access control device (32) connected to said control device. confirmed or rejected. Furthermore, the invention relates to a system for ordering and using access rights.

Description

Description TECHNICAL FIELD The present invention relates to a method and system for ordering and using access rights. More particularly, the present invention relates to a method and system for ordering and using access rights using a block chain.

Background Art A block chain (blockchain or block chain in English) is a kind of database whose integrity is saved by storing a checksum of the preceding record in the respective subsequent record. This method is the prerequisite for the implementation of crypto messages such as bitcoin, ethereum, ripple, etc. A block chain allows unity to be achieved between the nodes in a decentralized network. The transaction area of a block chain denotes blocks of payload data whose checksum is stored in the block chain.

In WO 2000/062 260 a method and a system for ordering and using access ticket is described, in which access tickets for access to access-controlled service devices, from a reservation center by transmitting order information via an order channel to this Reservationszentra-le ordered, wherein the order information includes the number of a mobile communication terminal, wherein the mobile Kommunikationsendgeràt that ordered access tickets via a mobile network to the Kommunikationsend gerat to which the said number is assigned, are transmitted that received access tickets stored in a memory module of said communication terminal be exchanged data between the memory module and a control device of said service device via a contactless interface that decisions on the access authorization of Benut In the case of said communication terminal, taking into account ticket information contained in said admission ticket, and in accordance with the successful decision, the access of the user to the relevant service device is granted or denied by an access device connected to said control device. The patent does not provide any security measures for secure process management, for example in open and heterogeneous environments.

BRIEF SUMMARY OF THE INVENTION It is an object of this invention to propose a new and improved method and system for ordering and using access rights, which in particular can be used safely and flexibly for a wide variety of access controlled service devices in open and heterogeneous environments.

According to the present invention, these objects are achieved in particular by the elements of the characterizing part of the independent claims. Further advantageous embodiments are also evident from the dependent claims and the description.

In particular, this object is achieved by the invention in that - Access rights for access to access-controlled service devices are ordered from a reservation center by transmitting order information via an order channel to this reservation center, the order information comprising an identification of the user of the access rights, that the access rights to a mobile communication terminal are transmitted by entering the user's identification and are stored in a memory module of the mobile communication terminal, - that access rights data are exchanged between the memory module of the mobile communication terminal and a control device of said service device via a contactless interface, - Deciding on the access authorization of the user of said communication terminal taking into account I contained in said access rights data - that according to the successful decision, the user's access to the relevant service device is confirmed or rejected by an access device connected to said control device, and - that said access rights and / or identification data of said control device are respectively stored in the transaction area of a block chain are.

[0007] This has the advantage that access rights for the most diverse access-controlled service devices can be ordered via a wide variety of order channels, that the ordered access rights are securely and unfeasibly stored in the transaction area of a block chain, and that the ordered access right is loaded into a memory module of the mobile communication terminal device, by means of which mobile communication terminal the user in question can visit a relevant access-controlled service device without further effort and without time delay.

In one embodiment, the block chain consists of a series of data blocks, in each of which one or more transactions are combined and provided with a checksum (hash value). A checksum is an image that maps a large input set to a smaller target set. The input set may contain elements of different lengths, whereas the elements of the target set usually have a test length. Thus, the data blocks are combined into a hash tree, for example a Merkle tree. The root of the tree is stored in the associated header. A checksum of the entire header is also calculated and stored in the following header. This ensures that no transaction can be changed without changing the associated header and subsequent blocks as well. As transactions on the one hand checksums of access rights and on the other hand checksums of identification data of the access control devices are stored in the block chain.

In one embodiment, access rights each contain a ticket number, which is provided with a digital Si-gnatur, respectively a checksum. An access right stored in the memory module is transmitted to said control device. Access data are transmitted from said reservation center to the said control device and the decision about the access authorization is made taking into account this access data and by checking said signature. This embodiment variant is advantageous if the data structure of the access rights is to be kept simple and if the operations for the processing of the access rights are to be outsourced to the control device of the service device. The disadvantage is at most that the control device of the service device has to be supplied with current access data by the reservation center, so that a communication connection is necessary between the control device of the service device and the reservation center.

In one embodiment, the access rights include ticket information via at least one access-controlled service device, for example the identity of a theater or a sports stadium, the date of a performance or a sporting event. The decision on the access authorization is made in consideration of this ticket information, and in the case of a positive decision, the access right stored in the memory module is invalidated and stored as a transaction in the block chain. The advantage of this variant is that access-controlled service devices do not have to be updated with access data and therefore can be set up autonomously without a communication connection.

In a first sub-variant of the latter embodiment, ticket information is transmitted to said control device and the decision about the access authorization of the user in question is made in this control device. In a second sub-variant of the latter variant embodiment, the control device transfers a unique device identification to the relevant communication terminal. The decision on the access authorization of the user concerned is made in this communication terminal, with the additional consideration of the named device identification, and the result of this decision is transmitted to the said control device. The second sub-variant is particularly advantageous if the control device of the access-controlled service device should be designed as simply as possible, in particular without networking the control device.

In one embodiment, at least certain access rights are assigned to a particular user and when deciding on the access authorization, it is checked whether a given certain access right is assigned to the user who is identified by a memory module stored user identification.

In one embodiment, the control device transmits a digitally signed unique, or a checksum for device identification to the Kommunikationsendgerât and the control device is authenticated using this device identification in Kommunikationsendgerât before data stored in the memory module data are transmitted to the control device. This has the particular advantage that access rights are not received or invalidated by unauthorized control device.

In one embodiment, after a positive authentication of the control device stored in the memory module user identification is transmitted with a digital signature to said control device and the control device authenticates the user of said communication terminal based on this user identification.

In one embodiment, after a successful positive decision by the control device, an access confirmation concerning the successful access to the said memory module is transmitted and stored on the block chain as a transaction. This has the advantage that the user in question can prove access to the relevant service device at a later time on the basis of this access confirmation without, for example, having to connect the mobile communication terminal to the reservation center at the time of transmission of the access rights to the control access device.

In an embodiment variant, after a successful decision has been successfully completed, the control device stores an access confirmation relating to the successful access to the transaction area of the block chain. This has the advantage that the relevant user or operator of the access-controlled service device can use this access confirmation to prove access to the relevant service device at a later point in time.

In one embodiment, said contactless interface energetically, for example by induction, fed by said control device. This has the particular advantage that a data exchange between the memory module and the control device can take place even when the communication terminal is switched off.

In one embodiment, said control device carries a unique device identification which is stored in a block chain and, after a successful decision has been successfully completed by the control device, transmits an access confirmation concerning the successful access to the corresponding transaction of the block chain. This has the advantage that the user in question and / or the operator of the relevant control device can prove his access to the relevant service device at a later time on the basis of this access confirmation.

In one embodiment variant, the user enters the access-controlled service device and, at a later point in time, confirms his authorization in the event of full control when presenting said mobile communication terminal to said control device. This has the advantage that the access process into the access-controlled or access-limited service device can be accelerated.

In one embodiment variant, the user is an animal or a living being equipped with a communication terminal. The access rights are ordered from a reservation center and transmitted via a communication network to the communication device of the living being. Access to the access controlled service device is acknowledged or rejected as the subject approaches the control device. This has the advantage that the access of the individual living beings to the respective access-controlled service devices can be granted or denied, for example to differentiate different living-thing categories living on the same terrain.

In one embodiment, the user is a molecule which is equipped with a communicating part, for example a group of atoms communicating at a frequency in the microwave range. This has the advantage that the transfer of access rights to the molecule can result in some atoms of the molecule being able to reorganize, allowing interaction with other atoms of the environment, and thus new, backbeatable, chain-chain-protected ones Allow therapies.

In one embodiment, the user is a self-driving car that receives corresponding access rights data via a communication network for access to access-controlled service devices, such as private or public garages, toll roads, etc., and exchanges it with the control device of the access-controlled service device. This has the advantage that it is possible to secure the access rights in a block chain in a secure manner, for example for insurance purposes.

In one embodiment, the user is an airship, such as an unmanned airship or drone, that receives corresponding access rights data over a communication network for access to access-controlled service devices, such as private or public air or ground facilities such as hangars, runways, etc. and exchanged with the control device of the access-controlled service device. This has the advantage that the security of the access rights in a block chain is possible in a secure manner for traffic-safe or for insurance purposes.

In addition to the process according to the invention, the invention also relates to a suitable system for carrying out this process.

Brief Description of the Drawings An embodiment of the present invention will now be described by way of example. The invention will be explained in more detail below with reference to exemplary embodiments shown schematically in the accompanying drawings. In these show:

Fig. 1 is a schematic block diagram of the system according to the invention;

FIG. 2 shows a schematic block diagram of the block chain according to the invention; FIG.

Fig. 3 shows a possible control device of an access-controlled service device.

Implementation Variants of the Invention An interested customer may have access rights to a wide variety of access-controlled or access-restricted service devices 3, such as public transport (eg buses, trains, airplanes), event venues (eg, drama or opera houses), function rooms (eg, cinema or business) Concert halls), or venues (eg trade fairs or sports facilities), by submitting order information via various order channels. Reference numeral 40 refers to an input terminal connected to a reservation center 4 via a communication link. Such input terminals 40 may be located in publicly accessible locations, in shopping malls, train stations, or other public places frequented by many people, and may, for example, be used by interested customers to order access rights from the reservation center 4. The order to the reservation center 4 can also be made directly from an app in a smartphone 40. The order can be made at the suggestion of an advertising campaign in which the user picks up a billboard on the road with his smartphone, in which a reference is taken from the recorded billboard, for example by an image recognition from reference images or image content. The entry terminal 40 may also refer to a personal communication terminal, such as a smart phone with communication modules connected to the reservation center 4 via a telecommunications network 5, such as the public switched telephone network or the Internet, and used by interested customers. order rights from the reservation center 4. Other options for order channels should include personal verbal order at a counter of the operator of the reservation center 4 or a specialized sales organization, telephone calls with verbal order or order under spoken menu guidance or with speech recognition or also the written order or order by means of a mobile communication terminal 1 via a mobile network 5 (for example, verbally or by means of SMS, USSD messages, or data packets, such as an IP network), or ordering via an app on the mobile communication terminal 1 via a data network as examples. The order information transmitted by the interested user to the reservation center 4 includes, for example, information about a specific event, for example a theatrical premiere in the Stadttheater on March 26 at 8 pm, information about the desired seat row or, if applicable, the driving class, the number of desired tickets, information the type of access rights, such as personal name tickets, multiple tickets (subscriptions, day tickets, weekly tickets, etc.), or transferable tickets, and information on the mode of payment, for example by written invoice by post, by credit card, specifying the credit card number, by billing via the telephone bill, by specifying a crypto-account, for example, a block-based crypto-password such as a Bitcoin account or, if necessary, by cash payment, etc. For each order is also in the order information, the user identification un If applicable, the user authentication, for example via the input of a password, or biometric data for the opening of a user account, indicates to which account the ordered access rights are to be loaded.

The transmitted order information is received in the reservation center 4 by an order module 41 and stored in a database of the reservation center 4. The reservation center 4 is implemented, for example, on a conventional communication server having known hardware and software components to connect to and communicate through communication networks 5. The reservation center 4 has functional modules, for example the already mentioned order module 41 or further functional modules, which are described in the following sections and which are embodied, for example, as programmed software modules. According to the order information obtained, an access rights generator module 42 of the reservation center 4 generates the access rights and transmits a transmission module 45 of the reservation center 4 generated access rights via the telecommunication network 5, for example an IP network, to the specified mobile communication terminal 1, for example a mobile telephone or a Laptop computer or a smartphone with a suitable communication module for the telecommunications network 5. The access rights generated by the reservation center 4 can also be loaded on the memory module 21,21 'of the mobile communication terminal 1 via the telecommunication network 5 at the request of the user by entering his identification.

The access rights are generated by an access rights generator module 42 of the reservation center 4 based on order information from the order module 41. The access rights are stored as a transaction in a data block 70. From the data block 70, a check sum H (70) is calculated, which is stored as the data block 602 of the block 60, with the checksum Η (60μ) of the block H (60m) as block 601, as block 60, the block chain 6. At most, further data, such as a time stamp, may be stored in the data block 70. This has the advantage that the access rights 70 and thus the checksum H (70) can no longer be changed without having to recalculate the block chain 6. Such a recalculation would be extremely time-consuming because the block chain is usually implemented as a distributed database and thus highly replicated.

The person skilled in the art will understand that, as for the storage of transaction data 70, for example the checksums of access rights, other features such as identifications of access-controlled service devices 3 or control devices 31 or of mobile communication terminals 1 are respectively stored as checksum 71 in a block chain 6 can be. This in turn has the advantage that the access rights 70 and further features 71 and thus the checksum H (70), H (71) can no longer be changed without having to recalculate the block chain 6.

The transmission of access rights from the reservation center 4 to mobile Kommunikationsendgerâte 1 takes place for example via a KommunikationsnetzS, such as a mobile network, an IP data network according to the TCP / IP protocol, an electromagnetic communication network, a Skalarwellennetz etc. The transmission can also otherwise, for example via SMS, Unstructured Supplementary Services Data (USSD) messages, via a 3G, 4G, LTE, 5G, 6G network as specified by the ETSI (European Telecommunications Standards Institute).

The transmitted access rights are accepted in the relevant mobile Kommunikationsendgerât 1 and there by a loading module 211, 211 'in a memory module 21,21', for example on a hardware module 21 such as a SIM card (Subscriber Identity Module) or an embedded or a secure element of the mobile communication terminal 1, or on a software module 21 'such as the memory area of an app of the mobile communication terminal 1, for example, stored in a wallet.

Depending on the embodiment and / or application access rights each contain a ticket number, which is provided for example with a digital signature, or they include ticket information about at least one access-controlled service device 3, for example, the Identitât of a theater or a sports stadium and the The date of a performance or sporting event and, where appropriate, other additional information such as a reserved seat row or seat number or, in particular for multiple tickets, a period of validity or period and, where applicable, a number of authorized entrys. Advantageously, a respective customer can in particular control the more detailed execution of an access right in the display 14 of his mobile communication terminal 1, as if he had a physical access right. Access rights can be loaded, for example, in the form of small application programs, so-called app, on the communication terminal 1, which can handle such apps. For example, such apps may be automatically deleted upon invalidation, which will be described later.

Depending on the embodiment and / or application based on the stored in the memory module 21, 21 'of the telecommunication device 1 Identitât of the user of the telecommunication terminal 1 a communication channel between the reservation center 4 and the control device 31 via the Kommunikationsendgerât 1 is established. After establishing this communication channel, the access rights are transmitted from the reservation center 4 to the control device 31, for example as stream (streaming) via the said communication channel.

The user of a mobile communication terminal 1 adopts a mobile communication terminal 1 of a control device 31 of an access-controlled service device 3 for which he has an access right stored in a memory module 21.2V of the mobile communication terminal 1. In the following paragraphs, various embodiments of the ticket control process between the mobile communication terminal 1 and the access control device control device 31 will be described, to which all data exchange via a contactless interface 13 between the mobile communication terminal 1 and the control device 31 is common, for which the control device 31 and the mobile communication terminal 1 are designed with suitable transceivers 33, respectively 11, 14. These transceivers 11, 14, 33 are suitable, for example, for an infrared interface, an inductive interface, a Digital Européen Cordless Telecommunications (DECT or CTS) interface, or an electromagnetic radio interface, for example a so-called "Bluetooth interface" or RFID / NFC interface (Radio Frequency IDentification / Near Field Communication), or an optical interface such as the optical reading of a code, such as a bar code or a QR code, on the display device 14 of the mobile communication terminal 1 for which a data transmission channel 13 does not necessarily have to be established. Depending on the type of contactless interface, the suitable transceiver may be integrated in the mobile communication terminal 1 in the housing or on the memory module 21, 21 'of the communication terminal 1. For the data exchange with the control device 31 via this contactless interface 13, the mobile communication terminal 1 has a communication module 212, 212 ", which is embodied, for example, as a programmed software module on the identification module of the mobile communication terminal 1, which for example has a SIM card with a It should be noted at this juncture that the access rights can be transmitted via this contactless interface 13 in a 2-step process, mostly for the purpose of energy optimization Kommunikationsendgerâts 1 contact with the transceiver 33 of the control device 31 via a first data exchange, for example via an RFID interface to wake up the communication ability of the control device 31 for the second step and the parameters of the transceivers 11,33 in the right way to adjust. In a second step, the access rights are transmitted as ticket information via a second type of contactless interface, for example Bluetooth Low Energy.

In all described embodiments of the decision on the access authorization of a respective user of a mobile communication terminal 1 in a decision module 213.312 is required, according to the decision made the said user access to the relevant access-controlled service device 3 by an associated with the control device 31 access device 32, for example an automatic door or barrier or a signal lamp or other suitable device, is granted or denied.

In a first embodiment variant with access rights, each containing a ticket number, which is provided for example with a digital signature or a checksum, a stored in the memory module 21 access right to the control device 31 is transmitted. The control device 31 is supplied by an update module 43 of the reservation center 4, for example a programmed software module, with current access data stored in a table 44 or the block chain 6 of the reservation center 4. The transmission of this access data takes place via a telecommunications network 5, for example a landline network, for example the public switched telephone network, the Internet, a Local Area Network (LAN) or WAN (Wide Area Network), or a mobile network. The supply of the control device 31 with current access data takes place, for example, periodically or on request by the control device 31. The access data include, for example, additional ticket information for a specific ticket number or for all access rights reserved for the relevant access-controlled service device 3. Such ticket information includes, for example, information about a particular event, such as location and time, a reserved place, such as seat number or number, and possibly information and / or identification information regarding the authorized user. According to this first embodiment variant, the decision about the access authorization of the relevant user is made by the decision module 312 of the control device 31, for example a programmed software module, taking into account the access data corresponding to the relevant ticket number and by checking the above-mentioned digital signature or checksum. In this embodiment, access rights that have been used for authorized access to a respective access-controlled device 3 may, for example, be invalidated by updating the access data stored in the reservation center 4, which has been appropriately informed by the control device 31, for example.

In a second embodiment variant with access rights, each containing ticket information about at least one access-controlled service device 3, decisions are made in the decision modules 213, 312 on the access authorization taking into account this ticket information. In this second embodiment variant, the mobile communication terminals 1 in each case comprise a validation module 214, 214 ', for example a programmed software module, for example in the hardware memory module 21 of a SIM card or in the software memory module 21' of an app, which in the case of a positive decision the corresponding access rights stored in the memory module 21, 21 'are invalidated, whereby only a single access authorization is invalidated in the case of multiple tickets. In this embodiment, the decision in a first sub-variant can be made by a decision module 312 in the control device 31, for example with the help of additional information, such as a reference clock, after the access right as described above from the mobile Kommunikationsendgerât 1 via the contactless interface 13th , 13 'has been transmitted to the control device 31, wherein the control device 31, after a positive decision, instructs the abovementioned invalidation module 214, 214' via the contactless interface 13, 13 'to invalidate the relevant access right. In a second sub-variant, the control device 31 comprises an identification module 314, by means of which the control device 31 identifies itself in the relevant mobile communication terminal 1, by the identification module 314, for example a programmed software module, by means of the transceiver 33 a unambiguous device identification via the contactless interface to this mobile communication terminal 1 transmits. In this second sub-variant, the access right does not need to be transmitted to the control device 31, since the decision about the access authorization of the relevant user is made in the decision module 213, 213 'of the mobile communication terminal 1 with additional consideration of the device identification received from the control device 31, wherein the Decision module 213, 213 ', for example, a programmed software module in the hardware memory module 21 of the SIM card or in the software memory module 21' of the app and wherein the Résultat the decision is transmitted via the contactless interface 13 to the control device 31.

At this point, it should be mentioned that the data exchange between the memory module 21, 21 'of the mobile communication terminal 1 and the control device 31 can be done even with switched off Kommunikationsendgerât 1, if necessary for the data transfer components, especially the contactless interface, external from the control device 31, for example by means of induction of a magnetic coil of the mobile communication terminal 1, for example in the housing or inside the communication terminal 1, for example on the SIM card 21. The protocol used for the data exchange can for example provide that the initiation a corresponding dialogue between the mobile Kommunikationsendgerât 1 and the control device 31 is initiated by the mobile Kommunikationsendgerât 1 by sending an initiation sequence.

In one embodiment, certain access rights are assigned to a specific user, that is, the mentioned ticket information or the access data stored in the table 44 of the reservation center 4 contain identification information about the associated authorized user, for example, its IMSI number (International Mobile Subscriber Identity) or its IDUI (International Débit User Identification). Consequently, when deciding on the access authorization, it is also checked whether a relevant access right is assigned to the user by means of a memory module 21, 21 ', for example on the SIM card or on a secure element or an embedded element , stored user identification is identified. If this check is carried out in the control device 31, for example in the decision module 312, the user identification stored in the memory module 21, 21 'is transmitted to the control device 31 via the contactless interface 13. On the other hand, if this check is performed in the mobile communication terminal 1, for example in the decision module 213, 213 ', the user identification stored in the memory module 21 need not be transmitted to the control device 31.

In one embodiment, the control device 31 always transmits via the contactless interface 13 a digitally signed unique device identification to the mobile communication terminal 1, for example in response to an initiation sequence mentioned above, which initiates the dialogue between the control device 31 and the mobile communication terminal 1. On the basis of this digitally signed device identification, the control device 31, referencing the associated access-controlled service device 3, can be authenticated by an authentication module 215, 215 'of the mobile communication terminal 1, wherein the authentication module 215, 215' is, for example, a programmed software module, for example on the hardware Memory module 21 of the SIM card or on the software memory module 21 'of the app. This makes it possible that access rights are not accepted or invalidated by unauthorized control devices 31, since data stored in the memory module 21, 21 'is only transmitted to the control device 31 when this control device 31 has been uniquely authenticated. Similarly, the control device 31 may authenticate a respective user by, for example, after a positive authentication of the control device 31, from the mobile communication terminal 1, for example by the authentication module 215, 215 ', a user identification stored in the memory module 21, 21' with a digital signature is transmitted via the contactless interface 13,13 'to said control device 31 and there by the authentication module 311 of the control device 31, for example, a programmed software module, is authenticated.

In one embodiment, after a successful decision has been made by a confirmation module 313 of the control device 31, for example a programmed software module, an access confirmation to acknowledge the successful access to the access-controlled service device 3 is transmitted via the contactless interface 13 to the mobile communication terminal 1 and stored there in the memory module 21, 21 '. On the basis of this access confirmation, which is preferably provided by the confirmation module 313 of the checking device 31 with a digital signature or a checksum and is stored as a corresponding transaction in the block chain 6, the relevant user can, for example, prove access to the relevant service device 3 at a later point in time.

At this point, it should also be mentioned that the mobile communication terminal 1, in particular the memory module 21, 21 ', can have additional software functions which make it possible for an access authorization stored in the memory module 21, 21' of a first mobile communication terminal 1 to be stored the memory module can be transmitted to a second mobile communication terminal, for example by means of the transceiver 11 via the contactless interface 13 or via the communication network 5 or via an optical data interface, or via the reading of the on the display device 14 of the first mobile communication terminal 1 by a camera the second mobile communication terminal, or other suitable connection between the first and second mobile communication terminals. Similarly, it is also possible that a stored in the memory module 21, 21 'of a mobile communication terminal 1 access right can be transferred to an external smart card, which itself has a contactless interface, for example in the form of an integrated electromagnetic coil, or for This purpose is connected via a (second) contact interface, so-called dual-slot mobile devices, with the Kommunikationsendgerât 1.

At this point, it should also be mentioned that the transmission of the access rights via an optical interface 13 'can take place, for example by the access rights on the display device 14 of the communication terminal 1, for example, as a QR code, are displayed, and by an optical Reading device 34, such as a scanner, the control device 31 are read, for example, just before access to the access-controlled service device. This is particularly suitable for access rights to security zones from an airport or at the gate to a scheduled airliner.

At this point it should also be mentioned that the security module of the mobile communication terminal 1 as a hardware module 21, for example a SIM card or an SD card or a security element or an embedded element or any memory module, such as a flash Module, a RAM module, can be implemented. In other communication terminals 1, for example smartphones, the security module can be implemented as a software module 21 'of the mobile communication terminal 1 in an app or applet or program. In the case of an app, the app provider is, for example, the operator of the access-controlled service devices, for example a hotel operator or a transport company or an airline. In this app, memory areas can be reserved as a software memory module 21 'for the storage of the access rights. These access rights are then transmitted by entering the identification of the user from the reservation center 4 to the software memory module 21 'of the mobile communication terminal 1, either in a fetching process in which the user of the mobile communication device 1 fetches the appropriate access rights at the reservation center 4 or in a bring-in method in which the access rights are transferred to the memory module 21, 21 'of the mobile communication device 1 as soon as the user identifies with the operator's app. In order to identify itself, the user enters his user identification and password, much as he opened his account when ordering the access rights at the reservation center 4.

The person skilled in the art will understand that for the secure transmission and to ensure the authenticity of the access rights, as well as other wirelessly transmitted identifications, such as the mentioned device identification or user identification or elements of the user, for example biometric features of User, the mobile communication terminal 1, in particular the memory module 21, and the control device 31 are provided with the necessary functions, for example programmed software functions, for suitable signing and / or cryptographic methods. It is also possible for authentication instances to be involved in the authentication, for example with the aid of Trusted Third Party (TTP) services, for example for the digital signing of identification numbers and / or access rights.

The settlement of ordered access rights can be done, for example, by the reservation center 4 in accordance with the payment mode desired by the respective user.

The field of application of the present invention is very large and in no way limited only to the specified application examples. The field of application of the invention includes access rights in areas such as door closing systems for hotels, cruise liners, doors for residential buildings and corporate buildings, for public, terrestrial or public access means of transport, secured buildings, rooms or event facilities, for lockers. Depending on the design of the access areas, the access authorization of the user of the communication terminal is entered before or after access to the access area. For example, it is common that the train tickets are controlled according to the present invention only when the user has boarded the car and, where appropriate, after departure of the train.

In addition to the sale, licensing and operation of overall systems described, it may also be intéressant to sell or rent data carriers with programmed software modules stored thereon which control a conventional communication server to behave like a described reservation center 4, or which, in particular in the form of a SIM card, enable a mobile communication terminal 1 to participate in the described method. In addition, the sale, rental or operation of control devices 31 for access-controlled service devices 3 can also be economically very interesting. Even the sale, rental or operation of input terminals 40 may be worthwhile.

References [0049] I Communication Terminal II Transceiver 12 Communication Interface 13,13 'Contactless Interface 14 Display Device 21 Hardware Memory Module 21' Software Memory Module 211,211 'Load Module 212,212' Communication Module 213,213 'Decision Module 214,214' Validation Module 215,215 'Authentication Module 3 Access Control Service Device, 31 Control Device 311 Authentication Module 312 Decision module 313 Confirmation module 314 Identification module 32 Access device 33 Transceiver 34 Optical reader 4 Reservation center 40 Ordering device 41 Ordering module 42 Accessing rights generator module 43 Update module 44 Table 45 Transmission module 5 Communication network 6 Block chain 60j Block i 60m, 60i + 1 Previous block i-1, Subsequent block i + 1 601, checksum from previous block 602 hash tree from access right 603 hash tree from access controlled service device 70 identification from access right 71 Identification of the access-controlled service device H (70) Checksum of access right block H (71) Checksum from the access-controlled service device block

1. A method for ordering and using by a user of access rights for access to access-controlled service devices (3), - in which method access rights for access to access-controlled service devices (3) from a reservation center (4) by transmitting order information about an order channel (5) to this Reservationszen- trale (4) are ordered, the order information includes an identification of the user of the access rights, - in which method the access rights to a mobile Kommunikationsendgerât (1) with input of the identification of the user transmitted and in one Memory module (21, 21 ') of the mobile communication terminal (1), in which method access data is stored between the memory module (21, 21') of the mobile communication terminal (1) and a control device (31) of said service device (3) via a contactless interface (1 3, 13 ') are exchanged, in which method decisions about the access authorization of the user of said communication terminal (1) are made taking into account information contained in said access rights data, in which method according to the completed decision the user's access to the respective service device (3) is confirmed or rejected by an access device (32) connected to said control device (31), and - in which method said access rights and / or identification data of said control device (31) are respectively in the transaction area (70) of a block chain (6) are stored. A method according to claim 1, characterized in that the transmission of said access rights data between two transceivers (11, 33) via a contactless interface or from an optical reader (34) of said control device (31) to a mobile device (14) Kommunikationsendgeràts (1) takes place. 3. The method according to any one of claims 1 to 2, characterized in that said access rights from the said reservation center (4) on a hardware storage module (21) or a software storage module (21 ') of said mobile communication terminal (1) transmit become. 4. Method according to one of claims 1 to 3, characterized in that said access rights are transmitted from said reservation center (4) to a memory module (21, 21 ') of said mobile communication terminal (1) by entering the user identification. 5. A method according to any one of claims 1 to 4, characterized in that after a successful positive decision by said control device (31) an access confirmation in the transaction area (70, 71) of the block chain (6) is stored. 6. Method according to one of claims 1 to 5, characterized in that the user's authorization to enter said service device (3) is acknowledged only after entering the access-controlled service device (3) on the basis of the transfer of said access rights to a control device. 7. system for ordering and use by a user of access rights, - which system comprises a communication network (5), to which communication network (5) a plurality of mobile communication terminals (1) are connected and to which communication network (5) at least one reservation center (5) 4) is connected to at least one block chain (6), which system comprises access-controlled service devices (3) for access to which access devices (3) are used, said service devices (3) being provided with control devices (31 ), which transceivers (33,34) for the exchange of data via a contactless or optical

Claims (7)

A method for ordering and using by a user access rights for access to access-controlled service devices (3), in which method access rights for access to access-controlled service devices (3) from a reservation center (4) by transmitting order information via a Ordering channel (5) to this Reservationszen- trale (4) are ordered, the order information includes an identification of the user of the access rights, - in which method the access rights to a mobile Kommunikationsendgerât (1) transmitted by entering the identification of the user and in a memory module (21, 21 ') of the mobile communication terminal (1), in which method access rights data are transferred between the memory module (21, 21') of the mobile communication terminal (1) and a control device (31) of said service device (3) a contactless interface (13, 13 ') replaced - in which method decisions about the access authorization of the user of said communication terminal (1) are made taking into account information contained in said access rights data, - in which method according to the successful decision the user's access to the relevant service device (3) is confirmed or rejected by an access device (32) connected to said control device (31), and - in which method said access rights and / or identification data of said control device (31) are respectively stored in the transaction area (70) of a block chain (6) , A method according to claim 1, characterized in that the transmission of said access rights data between two transceivers (11, 33) via a contactless interface or from an optical reader (34) of said control device (31) to a mobile device (14) Kommunikationsendgeràts (1) takes place. 3. The method according to any one of claims 1 to 2, characterized in that said access rights from the said reservation center (4) on a hardware storage module (21) or a software storage module (21 ') of said mobile communication terminal (1) transmit become. 4. Method according to one of claims 1 to 3, characterized in that said access rights are transmitted from said reservation center (4) to a memory module (21, 21 ') of said mobile communication terminal (1) by entering the user identification. 5. A method according to any one of claims 1 to 4, characterized in that after a successful positive decision by said control device (31) an access confirmation in the transaction area (70, 71) of the block chain (6) is stored. 6. Method according to one of claims 1 to 5, characterized in that the user's authorization to enter said service device (3) is acknowledged only after entering the access-controlled service device (3) on the basis of the transfer of said access rights to a control device. 6 block chain 60j block i 60m, 60i + 1 previous block i-1, subsequent block i + 1 601, checksum from previous block 602 hash tree from access right 603 hash tree from access-controlled service device 70 identification from access right 71 identification from access-controlled service device H (70) check rectangle access block H (71) checksum from access-controlled service device block claims 7. system for ordering and use by a user of access rights, - which system comprises a communication network (5), to which communication network (5) a plurality of mobile communication terminals (1) are connected and to which communication network (5) at least one reservation center (5) 4) is connected to at least one block chain (6), which system comprises access-controlled service devices (3) for access to which access devices (3) are used, said service devices (3) being provided with control devices (31 ), which comprise transceivers (33, 34) for data exchange via a contactless or optical interface (13, 13), said communication terminals (1) each comprising a charging module (211, 211 '), which charging module (211, 211 ') stores access rights received in a memory module (21, 21') of the relevant communication terminal (1), wherein the Communication devices (1) each comprise a communication module (212, 212 '), which by means of a transceiver (11,14) via said non-contact or optical interface (13,13') data between said memory module (21,21 ' ) and one of said control devices (31), which system comprises decision modules (213, 213 ', 312), which decision modules (213, 213', 312) make decisions on the access authorization of the user of one of said communication terminals (1). taking account of ticket information contained in said access rights, and wherein said control devices (31) are connected to access devices (32) which, in accordance with the successful decision, confirm or deny said user access to one of said service devices (3), - Which system said reservation center (4) an order module (41), which orders with Bestelli information that is given by a user for access rights, and - which system said reservation center (4) comprises a transmission module (45) which requests access rights via a communication network (5) to the mobile communication terminal (1) by entering the identification transmitted by the user, characterized in that - said access rights and / or identification data of said control device (31) in each case in the transaction area (7) of a block chain (6) from the reservation center (4) are stored.