DE102017213876A1 - Method for operating a parcel machine and parcel machine - Google Patents

Abstract

The invention relates to a method for operating a parcel machine (1) having at least one parcel compartment (2) and a control device (3) for controlling access to the at least one parcel compartment (2) based on information supplied via a user interface (4), wherein at least At times there is a communication path between the control device (3) and a central server (14), for depositing a parcel into a parcel compartment (2) and subsequently removing the parcel, the steps comprise: c) supplying the parcel which is to be stored or deposited unambiguously Package ID via the user interface (4); d) generating a pickup code for the dropped or dropped packet; e) generating a check information for checking the PIN codes associated with the user ID stored or deposited packet; f) storing the generated pickup codes and the generated check information as a packet data set in a data memory (9) of the St g) transmission of the generated and stored pick-up code to the user assigned to the user ID, h) after supplying a pick-up code and a PIN code via the user interface (4) of the packet machine (1), checking by the control device (3), whether the supplied pick-up code stored in the data memory (9) and the associated check information confirms the correctness of the supplied PIN code and, if so, granting access to the parcel compartment (2) in which The invention further relates to a parcel machine (1), which is designed to carry out this method.

Description

The invention relates to a method for operating a parcel machine and a parcel machine designed for carrying out the method.

Parcel machines are known in the art. These are stationary machines with usually a variety of lockable by doors storage compartments for packages. The doors are secured by electronic locks and can be opened by authorized persons to store or remove packages. At the parcel machines input devices are provided, through which identify people and then the slots for which they are authorized to open.

For the removal of parcels, it is known for the identification of a person at parcel machines that they communicate both their user number and a transaction number via the input device to the parcel machine. The user number is, for example, a unique number of the authorized person also forming part of the recipient address, which can be entered manually or transmitted semi-automatically with the aid of a magnetic stripe card pulled by a suitable reading device. The transaction number is communicated to the authorized person separately, for example by short message, e-mail or push message. The period of validity of a transaction number can be limited, for example, until the last packet, which was stored during the validity of the transaction number in any parcel machine was removed. If there is no valid transaction number when filing a parcel, a new transaction number will be generated and communicated to the authorized person.

A disadvantage of such parcel machines is that the identification of a person solely on the basis of a non-secret, as, for example, part of the recipient address forming user number and a basically interceptible in the transmission to the authorized person or divertable to an unauthorized person transaction number. As a result, unlawful removal of packages from a parcel machine by an unauthorized person with manageable effort possible.

The invention has for its object to provide a method for operating a parcel machine and trained to carry out this process parcel machine, in which the disadvantages of the prior art no longer or at least occur only to a lesser extent.

This object is achieved by a method according to the main claim and a parcel machine according to the independent claim 13. Advantageous further developments are the subject of the dependent claims.

• c) Zuführen der das abgelegte oder abzulegende Paket eindeutig identifizierende Paket-ID über die Benutzerschnittstelle;
• d) Erzeugen eines Abhol-Codes für das abgelegte oder abzulegende Paket;
• e) Erzeugen einer Prüfinformation zur Überprüfung des der dem abgelegten oder abzulegenden Paket zugehörigen Nutzer-ID zugeordneten PIN-Codes;
• f) Speichern des erzeugten Abhol-Codes und der erzeugten Prüfinformation als Paketdatensatz in einem Datenspeicher der Steuerungsvorrichtung;
• g) Übermitteln des erzeugten und gespeicherten Abhol-Codes an den der Nutzer-ID zugeordneten Nutzer;
• h) Nach Zuführung eines Abhol-Codes und eines PIN-Codes über die Benutzerschnittstelle des Paketautomaten, überprüfen durch die Steuervorrichtung, ob der zugeführte Abhol-Code in dem Datenspeicher hinterlegt und die dazugehörige Prüfinformation die Richtigkeit des zugeführten PIN-Codes bestätigt und, wenn ja, gewähren des Zugangs zu dem Paketfach, in dem das Paket abgelegt ist, durch die Steuervorrichtung.

Accordingly, the invention relates to a method for operating a parcel machine with at least one parcel compartment and a control device for controlling the access to the at least one parcel compartment on the basis of supplied via a user interface information, at least temporarily a communication path between the control device and a central server, said Put a package in a package tray and then remove the package, which includes the steps:

• c) supplying the package ID uniquely identifying the pack or packet to be deposited via the user interface;
• d) generating a pickup code for the dropped or dropped packet;
• e) generating a check information for checking the PIN code associated with the user ID stored or to be deposited;
• f) storing the generated pick-up code and the generated check information as a packet data record in a data memory of the control device;
• g) transmitting the generated and stored pickup code to the user associated with the user ID;
• h) After supplying a pick-up code and a PIN code via the user interface of the parcel machine, check by the control device, if the supplied pick-up code stored in the data store and the corresponding check information confirms the accuracy of the supplied PIN code and, if so , grant access to the parcel compartment in which the parcel is stored by the control device.

Furthermore, the invention relates to a parcel machine with at least one parcel compartment and a control device for controlling the access to the at least one parcel compartment based on information supplied via a user interface, the parcel machine having interfaces and / or modules for a communication path between the control device and a central server, and wherein the control device is designed for carrying out the method according to the invention.

First, some terms used in connection with the invention will be explained.

With "parcel machine" is an automated parcel station for receiving and sending or dropping of shipments and goods, esp. In the form of packages and parcels, in the following, for reasons of clarity, generalizing only the term "package" is used. A parcel machine comprises at least one, often a plurality (ie, for example, more than two, four or ten) of - for example. With electronic locks - electronically secured parcel compartments. The access to individual packet compartments or their content is controlled by a control device based on information supplied via a user interface on the parcel machine. Access to a parcel compartment may e.g. be granted by opening a lock securing this parcel compartment. In other embodiments of parcel machines access to a parcel compartment is selected by the contents of the parcel compartment is transported by a transport device to a central discharge opening and provided there for removal.

"ID" stands as an abbreviation for identifier, with which an unambiguous assignment to real or virtual persons or objects is possible. An identifier can be purely numeric or alphanumeric. An identifier can also be provided with a numeric or alphanumeric prefix, via which the type of the assigned person or the assigned object can be determined.

„Paketautomaten-ID“

zur eindeutigen Bestimmung eines Paketautomaten

„Paketfach-ID“

zur eindeutigen Bestimmung eines Paketfachs eines Paketautomaten mit mehreren Paketfächern

„Paket-ID“

zur eindeutigen Bestimmung eines Pakets

„Nutzer-ID“

zur eindeutigen Bestimmung eines Paketautomaten-Nutzers umfassend Paketempfänger und Zusteller

„Empfänger-ID“

eine Teilmenge der Nutzer-IDs zur eindeutigen Bestimmung eines Paketempfängers

„Zusteller-ID“

eine Teilmenge der Nutzer-IDs zur eindeutigen Bestimmung von autorisierten Zustellern, Logistikunternehmen und vergleichbaren Markteilnehmern

In connection with the invention, the following IDs are used:

"Parcel machine ID"

for the clear determination of a parcel machine

"Parcel box ID"

for the unambiguous determination of a parcel compartment of a parcel machine with several parcel compartments

"Package ID"

to uniquely identify a package

"User ID"

for the unambiguous determination of a parcel machine user comprising parcel recipient and deliverer

"Receiver ID"

a subset of the user IDs for uniquely identifying a packet recipient

"Deliverer id"

a subset of the user IDs for the unique identification of authorized carriers, logistics companies and comparable market participants

"Code" denotes a numeric or alphanumeric password or other string. Codes can be permanently valid or have only a limited validity. The validity may be limited by time limits or by the maximum number of allowed uses of a code. Thus, for example, codes that are valid only on certain days and / or times to be determined, as well as codes that can be used only a predetermined number of times (for example, once) and thus a corresponding number of uses their validity to lose. It is u.a. It is also possible for a code to reflect a unique biometric identification feature of a person, for example the fingerprint or iris features. In these cases, a code can be detected by means of suitable scanners, for example fingerprint or iris scanners.

„PIN-Code“

ein persönlicher Geheimcode oder ein auf biometrischen Merkmalen eines Nutzers basierender Code; ein PIN-Code ist zwingend einer Nutzer-ID zugeordnet

„Abhol-Code“

ein zur Abholung eines bestimmten Paketes berechtigender Code

„Ablage-Code“

ein zur Ablage von Paketen berechtigender Code

In connection with the invention, the following codes are used:

"PIN"

a personal secret code or a code based on biometric features of a user; a PIN code is necessarily assigned to a user ID

"Pick-up code"

a code authorizing the collection of a particular package

"Storage Code"

a code authorizing the storage of parcels

The "supply of IDs and / or codes via the user interface" comprises the manual input of IDs and / or codes, for example via a keyboard or a touch-sensitive screen of the user interface, the optical transmission of IDs and / or codes, for example by scanning a machine-readable Codes (eg bar or QR code) by a scanner assigned to the user interface (it being possible for the machine-readable code to be displayed only on the display of a mobile terminal), and / or the wireless transmission of IDs and / or Codes by radio, eg via near field communication or Bluetooth. Due to the nature of the PIN codes as a personal secret code is preferred if it is preferably supplied to the user interface only via a manual input or via biometric scanner.

The term "central server" indicates that the server in question is not associated with a single packing machine, but rather that multiple packing machines can access the data stored on the central server and the central server can communicate with each of the packing machines. The term "server" refers to a logical unit and, more particularly, is not limited to a single physical hardware unit. Rather, it is possible that the server is also divided into several, possibly physically separate physical hardware units.

The invention is based on the finding that the security against unauthorized removal of packages from parcel machines can be significantly increased by using a package-individual and in connection with the removal of a package generated pickup code together with a personal PIN code of an authorized user. It uses a two-factor authentication with two different codes, one of which - the pick-up code - is transmitted to the user, the other - the PIN code - a personal and not in connection with the filing of a packet transmitted Code is. Compared to a virtually publicly visible user number and a basically interceptable transaction number, a higher security level is achieved because even if intercepting a pickup code this is worthless without simultaneous knowledge of the personal PIN code of a user.

The availability of an operated parcel machine according to the invention for the removal of parcels depends decisively on the availability of the two-factor authentication. The two-factor authentication in turn is only possible if the control device of the parcel machine on collection of a package sufficient information to verify the identity of the two supplied codes are available. The invention has found that - even if parcel machines are regularly connected via mobile or cable connections to a data network such as the Internet - the use of a dedicated, accessible via the data network authentication server for parcel machines is unsuitable because in case of failure of the communication connection to the authentication server a Collection of parcels is not possible. In particular, since parcel machines are partially set up at locations that are only weakly covered by mobile networks, sometimes at locations with regularly overloaded mobile networks, an immediate accessibility of an authentication server via a mobile network at any time of a desired pickup is not guaranteed with sufficient security. As a result, a user despite principle valid pick-up and PIN codes can not remove the package intended for him the parcel machine. Although this risk can be reduced by a cable connection of a parcel machine, but not completely excluded. In addition, a corresponding cable connection is not possible in principle or at a reasonable cost at each installation site of a parcel machine.

According to the invention, it is therefore provided to store test information in the control device of the parcel machine itself with which the validity and togetherness of supplied pick-up and PIN codes can be checked so that the actual two-factor authentication has no direct communication link to a server or the like , must exist. The availability of the parcel machine is thereby independent of the current availability of a connection to a data network and can be increased.

Although a central server is provided in the invention, with which the parcel machine is basically connected via a communication path, but is not required according to the invention that when removing a package there is an immediate communication connection between the parcel machine and the central server.

At the beginning of the method, at least the packet ID, which uniquely identify the packet already stored or to be subsequently deposited, is supplied via the user interface of the packet machine. In addition, the user ID can also be supplied. The user ID is usually a recipient ID that uniquely identifies the recipient of the dropped or dropped package. However, it is also possible that, for example, in the case of returns, the user ID is a delivery agent ID, with the associated logistics company identifying the actual recipient at a later time on the basis of the package ID.

After the delivery of the package ID, a fetch code for the dropped or dropped packet is generated. The pickup code can be generated by a random number generator or by extracting a pickup code from a list of possible pickup codes. But it is also possible to generate the pickup code based on the previously supplied packet ID. It can alternatively or additionally also nor the user ID attributable to the package ID or directly supplied to the control device, the parcel machine ID and / or the parcel compartment ID of the parcel compartment in which the parcel has been or will be taken into account in the generation of the pickup code. The pickup code can basically be generated by the control device of the parcel machine. This also applies to the generation on the basis of the mentioned IDs, provided that they are supplied to the control device (eg user ID, package ID) or are immediately available (parcel machine ID, parcel compartment ID) or can be determined by this (Query the belonging to a package ID user ID at the central server or read the user ID from a later explained in more detail package announcement).

Regardless of how the pickup code is ultimately generated, it is preferred if it differs from the pickup codes of the parcel machine packages already deposited and not yet withdrawn. As a result, the uniqueness of the subsequently stored in the data memory of the packing machine package data sets is guaranteed at least for the currently located in the packing machine packages.

After the delivery of at least the packet ID, a check information is also generated with which the affiliation of a PIN code supplied at a later time to a pick-up code can be checked. The PIN code in question is determined on the basis of the user ID that can be assigned to the packet ID in question. Either the user ID of the control device is supplied directly via the control panel or it is first carried out an assignment of the user ID to the package ID. In the simplest case, the check information is the PIN code itself, the PIN code preferably being encrypted for security reasons. In this case, a supplied PIN code for verification only has to be compared with the (decrypted) check information. However, it is preferred if the check information for a PIN code is a noninjective scatter value of the PIN code. A PIN code supplied at a later time can then be verified by analog calculation of a spread value and subsequent comparison of this value with the check information. It is particularly preferred if the injective scatter value is calculated for a combination of PIN code with pick-up code, user ID, package ID and / or parcel machine ID. This offers the advantage that the check information for each stored or to be deposited package are individual, so that a manipulative intervention in the inventive method is further complicated.

The PIN code required for generating the check information and belonging to the stored or to be deposited packet is regularly not immediately available to the packet automat but is stored in a user database with user IDs and associated PIN codes at the central server. If the user ID of the control device has been supplied, the associated PIN code can be determined immediately. If only one parcel ID has been supplied, an assignment of the user ID to the parcel ID of the parcel deposited or to be deposited must first be performed, but this is also regularly possible by means of corresponding information stored on the central server. Alternatively or additionally, it is also possible for the user ID of the control device, which matches the particular packet ID, to have already been notified in advance with a packet announcement, as described below. As a result, the information required to generate the check information must be exchanged between the packet machine and the central server over the existing communication path. If the check information is generated by the control device of the parcel machine, this must for the user ID in question, appropriate information about the PIN code or the PIN code itself receive. The generated check information can then be stored directly in the data memory of the storage device. If the check information is generated by the central server, this must then be transmitted to the control device for storage. In particular, in the latter case, it is also possible that the central server generates the pick-up code and transmitted together with the test information to the control device. If the information required to generate the pick-up code is not available at the central server, it can be transmitted to it by the control device of the parcel machine.

As can be seen, a communication between the control device of the parcel machine and the central server is required at least for generating the check information and / or their storage in the data memory of the parcel machine. However, it should be noted that this communication can be done detached from the deposit or removal of a package. In the case of a randomly interrupted or basically only occasionally possible communication nevertheless packets can be stored, with generation of pick-up codes and test information is delayed until the required communication with the server is available. It is also possible to remove packets without passing through a communication connection as soon as a data record relating to a stored packet, including pick-up code and checking information, has been stored in the data memory of the control device.

The communication path may include a data communication connection between the control device and the central server. The data communication connection can be established, for example, via a mobile radio network or a wired connection. It is possible that the data communication connection basically exists permanently, so that the advantages of the method according to the invention only emerge particularly if the data communication connection fails. But it is also possible that the data communication connection is established only at predetermined intervals or as needed and terminated after the transfer of the data to be exchanged again. The central server is regularly permanently available to be available for several parcel machines, and the parcel machine establishes a connection to the central server at regular intervals or, if it requires information from the central server.

Alternatively or additionally, for example as a backup in the event of a prolonged failure of the data communication connection, it is also possible that the communication path comprises a mobile data memory which is optionally connected to the control device and the central server. For example, the mobile data memory may be part of a mobile terminal of a delivery person who communicates via a wireless connection with the user interface of the control device in order to transmit data stored on the data memory for the associated parcel service to the control device and to receive data from this for the central server , As soon as the mobile terminal has access to the data network, for example because it is entering an area with an existing mobile network or is connected to a data cable in a depot, the data intended for the central server can be transmitted to it and new data relevant to the parcel machine can appear be transferred to the mobile data storage. Since a logistics company can regularly foresee which deliverer on his tour anfährt which parcel machines, the data storage of the mobile terminal of this deliverer can be filled specifically with the data for him to be approached by parcel machines.

It goes without saying that both the control device of the parcel machine and the central server are equipped with suitable interfaces and / or modules for using the communication paths which are fundamentally provided for carrying out the method.

The generation of pick-up code and check information is basically possible before the actual filing of the pack to be deposited. However, it is preferred if at least the transmission of the fetch code takes place after the packet has been deposited. This ensures that the user receives the pickup code only when the affected package has actually been stored in the parcel machine.

The transmission of the pick-up code to the user can be done by the central server or the control device of the parcel machine. The former variant offers the advantage that in the central server, the information required for the transmission of the pick-up code - for example, email address or mobile phone number - is regularly available to the user. The last-mentioned variant offers the advantage that a user can be informed about the storage of a parcel even if the central server fails. For this case, the information required for the transmission of the pick-up code must have previously been transmitted to the control device of the parcel machine, for example, together with the test information or data required to generate the test information.

The data set stored in the data memory of the control device preferably further comprises the user ID, the package ID and / or a parcel compartment ID in addition to the pick-up code and the check information. If these data are stored together in a data record, it is possible to quickly and easily assign a supplied pick-up and PIN code to a parcel stored in a parcel compartment of the parcel machine.

1. a) übermitteln einer Paketankündigung umfassend Paket-ID und/oder Nutzer-ID eines an den Paketautomaten adressierten Pakets von dem Server an die Steuerungsvorrichtung über den Kommunikationsweg;
2. b) speichern der Paketankündigung im Datenspeicher der Steuerungsvorrichtung;

It is particularly preferred if the following steps take place before the step of depositing a packet in step c):

1. a) transmitting a packet announcement comprising packet ID and / or user ID of a packet addressed to the packet machine from the server to the control device via the communication path;
2. b) storing the packet advertisement in the data memory of the control device;

In other words, the control device of the parcel machine receives information about a package which is to be stored in the foreseeable future in this. The central server receives thereby for the production of a corresponding package announcement from the sender of the package or the package transporting logistics company. In addition to the package ID and / or the user ID, which can be used in the generation of the check information as described above, the package advertisement may also contain further information, for example the expected storage time and the size of the package. The control device of the parcel machine can then enter Keep the parcel compartment for the package in question at the expected time of storage and / or in the appropriate size, so that the storage of the parcel can actually be carried out. For this purpose, the control device can, for example, prevent the storage of another parcel in a parcel compartment suitable for the announced parcel for a predefined period of time before (and possibly after) the prospective storage time. This ensures that a suitable parcel compartment is actually available for the filing of the announced package at the anticipated filing date.

Upon transmission of a packet announcement from the central server to the control device-if they are generated by the central server-pick-up codes and check information, or at least the information required for the generation of check information by the control device of the packet machine can be additionally transmitted. After transmission of this information then a further exchange of information between the control device and the central server regarding the announced package is no longer mandatory.

The transmission of the pick-up code to the user can be effected by the control device (if the contact information of the user has been communicated with it, for example, together with the package announcement) or by the central server. In the latter case, the pick-up code, when generated by the control device of the parcel machine, must be transmitted to the central server.

• c1) nach Anmeldung eines zur Paketablage berechtigen Nutzers über die Benutzerschnittstelle, abfragen von Paketinformationen umfassend Paket-ID und/oder Nutzer-ID über die Benutzerschnittstelle;
• c2) ablegen des Pakets in ein Paketfach des Paketautomaten;
• c3) überprüfen durch die Steuerungsvorrichtung, ob die abgefragten Paketinformationen mit einer der im Datenspeicher abgelegten Paketankündigungen übereinstimmen und, wenn ja, übermitteln einer der Paketankündigung zuordenbare Ablagebestätigung durch die Steuerungsvorrichtung an den zentralen Server über den Kommunikationsweg.

If the central server is responsible for the transmission of the pick-up code, it is in principle possible for him to transmit the pick-up code to the user for or possibly also after a predetermined time after the anticipated storage time. This offers the advantage that, after the initial transmission of the packet announcement and possibly required information exchange for generating the check information and / or the pick-up code, no further communication between the control device and the central server regarding the announced packet is required anymore. The disadvantage here is that when transmitting the pickup code there is no guarantee that the advertised package is actually already stored. It is therefore further preferred if the removal of a package in step c) comprises the following substeps:

• c1) after registration of a user entitled to package deposit via the user interface, requesting package information comprising the package ID and / or user ID via the user interface;
• c2) placing the parcel in a parcel compartment of the parcel machine;
• c3) check by the control device whether the queried packet information matches one of the packet advertisements stored in the data memory and, if so, transmit a deposit confirmation by the control device to the central server via the communication path assignable to the packet advertisement.

By the central server receives a storage confirmation, the transmission of the pick-up code to the user can be delayed until the package in question is actually stored in the parcel machine.

The registration of a user entitled to package storage via the user interface can take place with the aid of a user ID, in particular a delivery agent ID, possibly in combination with a PIN or special storage code which is, for example, matched to the parcel machine ID , It is also possible that the registration takes place only on the basis of a pickup code. The validity of the pick-up code or a specified together with a user ID PIN code is preferably carried out on the basis of a checksum calculation by the control device of the parcel machine, so that the application for parcel storage no communication link with the central server is required.

To explain the parcel machine according to the invention, reference is made to the above statements.

• 1: ein Ausführungsbeispiel eines erfindungsgemäßen Paketautomaten;
• 2a-e: einzelne Details und Verfahrensschritte bei einer beispielhaften Durchführung des erfindungsgemäßen Verfahrens.

The invention will now be described by way of example with reference to an advantageous embodiment with reference to the accompanying drawings. Show it:

• 1 : an embodiment of a parcel machine according to the invention;
• 2a-e : individual details and method steps in an exemplary implementation of the method according to the invention.

In 1 is an embodiment of a parcel machine according to the invention 1 shown. For reasons of clarity, a representation of the connections between the individual components of the parcel machine is dispensed with.

The parcel machine 1 includes a variety of lockable with parcel compartments 2 in different sizes. The doors are each provided with an electronic lock (not shown) provided by the control device 3 can be accessed, so as to optionally access to a parcel compartment 2 to grant.

The control device 3 is with a user interface 4 connected. This includes a touch-sensitive screen 5 a numeric keypad 6 , an optical scanner 7 for scanning bar and QR codes as well as an NFC transmitting and receiving unit 8th for communication with suitable devices, if they are sufficiently close to the NFC transmitting and receiving unit 8th are located.

The control device 3 is still using a data store 9 and a mobile radio transmitting and receiving unit 10 connected. Via the mobile radio transmitting and receiving unit 10 has the control device 3 basically access to a mobile network 11 and the internet 12 , About this data communication connection 13 there is a communication path between the control device 3 and the central server 14 ,

Starting from 1 Now, a preferred embodiment of the method according to the invention will be described, with individual details and method steps in the 2a-f are shown.

Unless a package is sent to a user for pickup at the parcel machine 1 is sent, this is first with a suitable shipping label 20 provided as it is in 2a is shown by way of example. The shipping label includes a QR code 21 and an alphanumeric address block 22 , In the address block 22 is the name of the recipient as well as his user ID. The address is the street address of the parcel machine 1 , The delivery agent can therefore use the address block 22 recognize the target of the resulting package immediately and in a known manner.

In the QR code 21 is in machine-readable form next to the user ID even a unique package ID, with the with the shipping label 20 provided package can be clearly identified, deposited. It is also possible that in the QR code 21 the parcel machine ID of the parcel machine whose address is in the address block 22 is included.

The user ID, the package ID and if necessary the parcel machine ID are also stored in the central server 14 deposited.

To make sure when creating the shipping label 20 If a valid user and / or parcel machine ID and a unique parcel ID are used, a suitable data reconciliation with the central server takes place during the creation 14 , This is the one to create the shipping label 20 trained device (not shown) with the central server 14 in connection, for example via the Internet 12 ,

Alternatively it is possible that the shipping label 20 through the central server 14 self-generated and then transmitted electronically to the shipper or logistics company for printing and attaching. The required check for correctness or uniqueness of the IDs on the shipping label 20 can then be created directly by the central server 14 be performed.

In the central server 14 For each valid user ID further information is stored. These include in particular the personal PIN code of the user and contact information for the subsequent transmission of a pickup code.

On the basis of the package ID, possibly taking into account the user ID and / or the parcel station ID, the data is stored in the central server 14 deposited PIN code of the user an injective scatter value calculated as check information.

The check information, along with the user ID and the packet ID, is used as a packet advertisement via the data communication link 13 to the control device 3 on the shipping label 20 Packet machines specified as the address and / or parcel ID 1 transmitted and there in the data memory 9 stored.

In the meantime, that will be with the shipping label 20 provided package through a logistics company to the parcel machine 1 transported and by a deliverer in the parcel machine 1 stored. The storage of the package takes place in the embodiment described here only after the parcel machine 1 an associated package advertisement from the central server 14 had received.

To deposit the package, the deliverer first logs on the parcel machine 1 at. For this he has the control device 1 via suitable menu navigation on the touch-sensitive screen 5 the user interface 4 the parcel machine ID is in the form of a QR code on the touch-sensitive screen 5 display. This QR code is then from the deliverer with a trained mobile terminal 15 read in (cf. 2 B) ,

Based on the imported parcel machine ID generated by the mobile device 15 considering one in the mobile terminal 15 deposited deliverer ID a filing code, in the form of a QR code on the display 16 of the mobile terminal 15 is shown. This QR code is about the optical scanner 7 the user interface 4 supplied and from the control device 3 checked for validity by means of test algorithms stored there. Depending on the filing code, the deliverer may either only be entitled to file parcels with the present parcel notice and / or unannounced parcels.

Is the filing code from the control device 3 recognized as valid, then the QR code 21 on the shipping label 20 of the package with the optical scanner 7 the user interface 4 scanned (cf. 2d) , Thereby, the control device 3 at least the parcel ID, possibly also the user ID and / or the parcel station ID supplied, so that they can check the presence of a Paketankündigung in the data memory. Depending on the permissions granted by the filing code for parcel storage, it may be possible to continue with the parcel depository only if there is a corresponding parcel notice.

Since in the present embodiment, however, the parcel notification pertaining to the parcel is present, the parcel deliverer can then communicate via the touch-sensitive screen in a known manner 5 the user interface 4 select a parcel compartment size suitable for the parcel, whereupon the control device 3 the door of an empty parcel compartment 2 in the appropriate size releases or opens. The closing of the door is done by the control device 3 registered via the electronic lock, whereupon the deliverer via the user interface 4 and in particular via the touch-sensitive screen 5 A confirmation is requested that he actually put the package in the parcel compartment 2 has filed. The delivery process by the deliverer is completed.

After the control device 3 The confirmation of the actual filing of a package is obtained by referring to the package in the data store 9 stored information and / or generated using a random number generator, a unique pickup code. This fetch code is stored in the record associated with the packet in the data store 9 deposited.

Furthermore, via the data communication connection 13 the fetch code together with the packet ID for unique assignment from the control device 3 to the central server 14 transmitted. The receipt of the pick-up code by the central server 14 comes a filing confirmation by the control device 3 equal. The central server 14 then sends the user uniquely identifiable via the packet ID a message comprising the pick-up code, for example the push message to a mobile terminal 17 of the user. The pickup code can be transmitted both alphanumerically and in the form of a QR code (cf. 2e) ,

To pick up the package, the user leads the parcel machine 1 first the pickup code too. He can either manually pick up the code via the keypad 6 enter the user-specific or the on his mobile device 17 displayable QR code via the optical scanner 7 Read. The control device 1 then checks to see if the supplied pickup code is in the data store 9 is deposited. If so, the user is prompted to enter his personal PIN code via the keypad 6 asked. After the input has been made, a scatter value is calculated from the supplied PIN code analogously to the generation of the test information and compared with the test information stored in the data memory. If the scatter values match, the user will have access to the parcel compartment 2 granting the package associated with the pickup code.

Claims (12)

Method for operating a parcel machine (1) having at least one parcel compartment (2) and a control device (3) for controlling access to the at least one parcel compartment (2) on the basis of information supplied via a user interface (4), wherein at least temporarily a communication path between the control device (3) and a central server (14), wherein the placing of a parcel into a parcel compartment (2) and the subsequent removal of the parcel comprises the steps: c) supplying the package ID uniquely identifying the packaged or to be deposited via the user interface (4); d) generating a pickup code for the dropped or dropped packet; e) generating a check information for checking the PIN code associated with the user ID stored or to be deposited; f) storing the generated pick-up code and the generated check information as a packet data record in a data memory (9) of the control device (3); g) transmission of the generated and stored pickup code to the user assigned to the user ID; h) After supplying a pick-up code and a PIN code via the user interface (4) of the parcel machine (1), checking by the control device (3), if the supplied pick-up code stored in the data memory (9) and the associated check information confirms the correctness of the supplied PIN code and, if so, granting access to the parcel compartment (2) in which the parcel is stored by the control device (3). Method according to Claim 1 , characterized in that the pick-up code based on user ID, package ID, parcel compartment ID and / or parcel machine ID, preferably by the control device (3) is generated. Method according to one of the preceding claims, characterized in that the check information is a non-injective scatter value of the PIN code, preferably a combination of PIN code with pick-up code, user ID, packet ID and / or parcel machine ID. Method according to one of the preceding claims, characterized in that the generation of the fetch code and / or the check information by the central server (14) and transmitted via the communication path to the control device (3). Method according to one of the preceding claims, characterized in that the communication path comprises a communication connection (13) between the control device (3) and the central server (11). Method according to one of the preceding claims, characterized in that the communication path comprises a mobile data memory which is optionally connected to the control device (3) and the central server (14). Method according to Claim 1 , characterized in that the transmission of the fetch code after the removal of the package takes place. Method according to one of the preceding claims, characterized in that the transmission of the pick-up code to the user by the central server (14) or the control device (3) of the parcel machine (1). Method according to one of the preceding claims, characterized in that the data record comprising the pick-up code and the check information further comprises the user ID, the packet ID and / or a parcel compartment ID. Method according to one of the preceding claims, characterized in that the supply of IDs and / or codes via the user interface (4) manually, optically and / or wireless, wherein the PIN code is preferably supplied only manually or via biometric scanner. Method according to Claim 1 characterized in that before the step of dropping a parcel (step c) the steps are carried out: a) transmitting parcel announcements comprising parcel ID and / or user ID of the parcels (1) addressed parcels from the central server (14 ) to the control device (3) via the communication path; b) storing the packet announcements in the data memory (9) of the control device (3); and / or the removal of a package (step c) comprising the sub-steps: c1) after registration of a user entitled to package storage via the user interface (4), requesting package information comprising package ID and / or user ID via the user interface (4) ; c2) placing the parcel in a parcel compartment (2) of the parcel machine (1); c3) check by the control device (3) whether the requested packet information matches one of the packet announcements stored in the data memory (9) and, if so, transmits a storage confirmation that can be assigned to the packet advertisement by the control device (3) to the central server (14) the communication path. Parcel machine (1) with at least one parcel compartment (2) and a control device (3) for controlling access to the at least one parcel compartment (2) on the basis of information supplied via a user interface (4), wherein the parcel machine (1) interfaces and / or Module for a communication path between the control device (3) and a central server (14), characterized in that the control device (3) for performing the method according to one of Claims 1 to 11 is trained.

Images