EP2203863A1 - Verfahren zum schutz mindestens von teilen von auf mindestens einem server und/oder in mindestens einer datenbank abgelegten, einem durch ein rfid-tag identifizierten produkt zugeordnete produktdaten vor unberechtigtem zugriff - Google Patents
Verfahren zum schutz mindestens von teilen von auf mindestens einem server und/oder in mindestens einer datenbank abgelegten, einem durch ein rfid-tag identifizierten produkt zugeordnete produktdaten vor unberechtigtem zugriffInfo
- Publication number
- EP2203863A1 EP2203863A1 EP08804271A EP08804271A EP2203863A1 EP 2203863 A1 EP2203863 A1 EP 2203863A1 EP 08804271 A EP08804271 A EP 08804271A EP 08804271 A EP08804271 A EP 08804271A EP 2203863 A1 EP2203863 A1 EP 2203863A1
- Authority
- EP
- European Patent Office
- Prior art keywords
- access token
- access
- rfid tag
- server
- product
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
- G06F21/35—User authentication involving the use of external additional devices, e.g. dongles or smart cards communicating wirelessly
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/107—Network architectures or network communication protocols for network security for controlling access to devices or network resources wherein the security policies are location-dependent, e.g. entities privileges depend on current location or allowing specific operations only from locally connected terminals
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/108—Network architectures or network communication protocols for network security for controlling access to devices or network resources when the policy decisions are valid for a limited amount of time
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/08—Access security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/60—Context-dependent security
- H04W12/63—Location-dependent; Proximity-dependent
- H04W12/64—Location-dependent; Proximity-dependent using geofenced areas
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/40—Security arrangements using identity modules
- H04W12/47—Security arrangements using identity modules using near field communication [NFC] or radio frequency identification [RFID] modules
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/60—Context-dependent security
- H04W12/61—Time-dependent
Definitions
- Radio Frequency Identification (RFID) tags are used to handle goods flows more efficiently.
- products are identified by an individual RFID tag.
- product data itself is often stored on a server.
- An information stored on the RFID tag serves only to identify a product, a good or a good, whereas further data describing the product are stored on a central server, for example.
- security solutions for the interface between RFID reader and RFID tag are known. This ensures that only an authorized RFID reader can read or write data from an RFID tag or that the data read originates from a non-manipulated, authenticated RFID tag. Such security solutions merely check the authorization to read or change data from the RFID tag itself.
- a Verification can take into account, for example, the given logistics chain, ie if the product provided with an RFID tag should be just for a particular subscriber, then only this particular subscriber may access the data of the, for example, central server with the stored product data.
- these are only static security mechanisms that do not take into account whether the subscriber accessing the database or the server actually has access to the product or the associated RFID tag.
- a product identified by an RFID tag against unauthorized access in which method an authentication and authorization check of a person accessing a Server and / or database access takes place in the event of server and / or database access
- Proof requires that the product is within the reach of the accessing person, which proof of the RFID tag, when it is detected by an RFID reader, is provided by an access token in the form of a data structure by which the RFID tag Tag authorizes the accessing, at least to parts of the RFID tag associated, stored on the server and / or in the database product data to inquire, so depending on the application query the product data and / or change.
- the product data associated with a product can only be queried or changed by a server and / or a database if the RFID tag associated with the product can actually be accessed that is, if the product is actually within the scope of access of a person accessing.
- the accessing person is not able to query product data of products that are outside his control area.
- no data can be queried which, for example, allow conclusions to be drawn about the economic activity of competitors, such as which competitors have ordered and sold which, and how many products of a particular type. In the case of the state of the art, this is at least estimated by means of the EPC.
- the invention reduces the manipulation possibilities, for example in logistics chains. If the current location of a product is stored on a server or in a database, for example “taken from stock”, “loaded on truck”, “delivered to the middleman", this information can be updated or changed according to the invention only with the proof, for example. that the RFID tag and thus the product is actually located in the specified area, which in this case forms the access area of the accessing person.
- the access token refers to a specific RFID tag, where it is valid for querying the product data of that product that is assigned to the RFID tag.
- this is a static password.
- the resulting level of security is comparable to the knowledge of the product ID, such as the Electronic Product Code (EPC), provided that this is not given continuously but randomly.
- EPC Electronic Product Code
- the access token refers to a specific RFID reader and / or to an organizational unit of the RFID reader. It is also a group of readers conceivable.
- the RFID reader transmits a query identification in the query, which identifies the RFID reader or its organizational unit, or a group of RFID readers. This is built into the access token by the RFID tag. This further restricts the possibility of use and thus also a potential abuse possibility.
- an authentication of the accessing entity for example an RFID reader or a server of the organizational unit, is additionally carried out, and it is checked whether the identity of the person accessing the authentication checked by the accessing entity in the Access-token containing query identification.
- the access token has a time limitation.
- a counter value which is increased for each issued access token is used.
- the database stores the next counter value and only allows access tokens with a higher counter value than the stored counter value. This ensures that all previously issued access tokens are invalid.
- a further advantageous embodiment of the invention provides that the access token contains a number of allowed queries to allow an RFID reader to perform a certain number of read / write operations without re-reading the RFID tag. This number can for example be specified by the server.
- the access token authorization to access only certain components of the product data or only certain elements of the product data comprehensive record includes, such as only the name and date of manufacture of the product, but not last reading time of the RFID tag.
- the access token contains authorization for specific actions, such as read / write access to data on the server or in the database.
- the access token can also identify the access token
- the access token behaves like a one-time password.
- the access token is constructed, for example, in the form of ⁇ ID, CTR, CKS>, where ID stands for an RFID tag identification, CTR for a counter and CKS for a checksum.
- the checksum CKS is a cryptographic checksum, also known as message authentication code, which is calculated using a cryptographic key known to the database and the RFID tag.
- the access token increments the counter CTR each time an access token is issued.
- CKS: F (key, ⁇ ID, CTR>)
- F is a so-called keyed one-way function.
- the access token consists of the data ⁇ ID, CTR, CKS>.
- the server or database checks the access token for correctness using its ID associated with the ID. Is the CKS value correct? of the RFID token matches the self-calculated and if the CTR is greater than an ID already assigned to the ID, access is accepted.
- the age of an access token can be determined by a counter value, also referred to as counter value.
- the age or the validity of an access token can also be determined by a nonce and / or a pseudo-random number instead of a counter value, also referred to as a counter value.
- the server can send a nonce N in the form of, for example, a pseudorandom number to the RFID reader, which transmits it to the RFID tag.
- An advantageous embodiment of the invention provides that the access token is issued automatically.
- Another advantageous embodiment of the invention provides that the access token is issued on request, for example, only when the server and / or the database requires proof that the product is within the control of the accessing party.
- the server or the database can make the selection on the basis of known static rules and demand only for questionable accesses a further authentication or authorization by the RFID tag.
- An additional advantageous embodiment of the invention provides that the server or the database determines the rights of a particular subscriber or accessing person on the basis of several access tokens, for example either from one RFID tag or from several different ones.
- a particularly advantageous embodiment of the invention provides that a first RFID tag creates an access token representative of a second RFID tag. It is conceivable that the access token created by the first RFID tag is also valid for server and / or database access on a product data identified by the second RFID tag.
- the advantage here is that only a first RFID tag within a group or a composite of several RFID tags must be able to issue an access token.
- the remaining second RFID tags within the group or cluster may be simple RFID tags that only report their identity, such as their EPC.
- a further advantageous embodiment of the invention provides that identification and access tokens are transmitted separately between RFID tag and RFID reader.
- An additional, particularly advantageous embodiment of the invention provides that identification and access tokens are transmitted in common between RFID tag and RFID reader, wherein the identification is contained in the access token, and therefore does not need to be transmitted separately.
- the identification is a number, such as an EPC, identifying a product tagged with an RFID tag and the product data associated with the product.
- FIG. 1 is a schematic representation of a reduced to the essential components means for performing a method according to the invention
- Fig. 2 is a schematic representation of a distributed network for carrying out an inventive
- FIG. 3 shows a schematic representation of the time sequence of RFID events occurring between the RFID tag, the RFID reader and the product data server or database in the implementation of the method according to the invention.
- An apparatus 1 1 shown in FIG. 1 consists of an RFID tag 02, an RFID reader 03 and a product data server 04 on which product data are stored, for example, in a product data database.
- the RFID tag applied, for example, to a product package, for example in a label, is essentially a transponder comprising an antenna, an analogue circuit for receiving and transmitting, as well as a digital circuit and a permanent memory.
- RFID tags 02 can have a rewriteable memory in which information can be stored during the lifetime. At least the digital circuit and the memory are preferably designed in the form of a microchip.
- the RFID reader 03 generates a high-frequency electromagnetic alternating field of short range, preferably with inductive coils, which illuminates the antenna of the RFID tag. This not only transmits data, but also supplies the RFID tag 02 with energy.
- an induction current In the antenna coil, as soon as it enters the electromagnetic alternating field comes, an induction current. This induction current is rectified and thus charged a capacitor as a short-term energy storage, which provides the power supply of the microchip for the reading process.
- active RFID tags with their own power supply can also be used. With active RFID tags, a built-in battery takes over the power supply. With half-active RFID tags, the battery only takes over the supply of the microchip.
- the thus activated microchip in the RFID tag 02 receives commands from the RFID reader 03, which it modulates in its electromagnetic alternating field.
- the microchip generates a response and modulates, for example, by field weakening in a contactless short circuit or by reflection of the alternating field emitted by the RFID reader 03.
- the RFID tag 02 sends its own, preferably unchangeable serial number, other numbers such as the EPC of the product provided with the RFID tag 02 and thus marked product and other queried by the RFID reader 03 data, in particular an access token.
- the RFID reader 03 preferably contains software in the form of a microprogram which controls the actual reading process and an RFID middleware with interfaces to further EDP systems and databases, in particular to the product data database on the product data server 04.
- the device 01 is a processing of the RFID events, that is query or change of data stored on the RFID tag, query an access token and request a database query or change directly from the RFID reader instead. It is important to emphasize that the reading and editing functions can also be implemented on separate components.
- a distributed network 05 shown in FIG. 2 for querying and changing product data consists of three RFID readers 06 to query RFID tags 12 in a partner network 07.
- the RFID event processing is managed by a separate server 13 in the partner network 07.
- a product data server 09 Separated by firewalls 08, a product data server 09, on which product data is stored in a product data database and which is located in a manufacturer network 10, is remotely queried via a connection network 11, for example via the Internet 11.
- a Virtual Private Network may be established between the firewalls 08 to protect the data during transmission over the interconnect network 11.
- VPN Virtual Private Network
- a method according to the invention runs in the device 01 shown in FIG. 1 as well as in the distributed network illustrated in FIG. 2 as follows:
- the product data of one or more products are stored in a product data database on a product data server.
- a product is identified by a product identification, in short a product ID, for example by an EPC, which makes it possible to identify the data record associated with a product.
- the product ID is provided by an RFID tag. In this way, access to the product data of the database associated with a product can be made, for reading and writing, or for reading or writing, depending on the application. In this case, an authentication and authorization check of the accessing party takes place when accessing the database.
- the RFID tag provides the RFID reader with an access token.
- the access token is a data structure by which the RFID tag authorizes the recipient, for example the RFID reader, on the RFID tag assigned to a server Request product data, which means, depending on the application, to query or change the product data.
- This access token is submitted to the database or server with the request to gain access to the record associated with the product.
- the access token can be designed in different complex ways:
- the RFID reader transmits a query identification in the query, which identifies the RFID reader or its organizational unit, or a group of RFID readers. This is built into the access token by the RFID tag. This further restricts the possibility of use and thus also a potential abuse possibility.
- an authentication of the accessing person for example an RFID reader or a server of the organizational unit, is additionally carried out, and it is checked whether the identity of the person accessing the authentication checked in the access Token contained query identification, such as identity.
- the access token may also include the number of allowed queries to allow the RFID reader to perform a specified number of read / write operations without re-reading the RFID tag. This number can also be specified by the server.
- the access token may also be granted permission to access only certain portions of the product data or only certain items of the product data record, such as only the name and date of manufacture of the product, not the last read time of the RFID tag.
- the access token can also include authorization for certain actions, such as read / write access to data on the server. If there are several different servers which store the product data in one or more distributed databases, the access token can also contain an identification (ID) of the server for which the access token is valid. A restriction or limitation of the access authorization takes place with regard to the server. In principle, it is conceivable that components of the product data with different security classifications are stored on different servers.
- An access token is structured as follows:
- ID stands for an RFID tag identification (Identifier; ID)
- CTR for a counter
- CKS for a checksum (CKS).
- the checksum CKS is a cryptographic checksum, also known as a message authentication code, which is calculated using a cryptographic key known to the database and the RFID tag.
- the access token increments counter CTR every time an access token is issued.
- CKS: F (key, ⁇ ID, CTR>)
- F is a so-called keyed one-way function.
- the access token consists of the data ⁇ ID, CTR, CKS>. This access token behaves like a one-time password.
- the server or database checks the access token for correctness using its ID associated with the ID. If the CKS value of the RFID token agrees with the self-calculated one, and if the CTR is greater than an ID already assigned to the ID, the access is accepted. Further possibilities for a validity check of the CTR are:
- each counter value is only accepted once.
- the server can send a nonce N in the form of, for example, a pseudorandom number to the RFID reader, which transmits it to the RFID tag.
- the access token can be issued automatically or upon request, for example, only when the server and / or database requires proof that the product is within the reach of the accessing party.
- the server or the database can make the selection on the basis of known static rules and demand only for questionable accesses a further authentication or authorization by the RFID tag.
- Possibility for the server or database to determine the rights of a particular subscriber or accessor based on multiple access tokens, for example, either from an RFID tag or from several different ones.
- a first RFID tag creates an access token representative of a second RFID tag. It is conceivable that the access token created by the first RFID tag is also valid for server and / or database access on a product data identified by the second RFID tag.
- the advantage here is that only a first RFID tag within a group or a composite of multiple RFID tags must be able to issue an access token.
- the remaining second RFID tags within the group or federation may be simple RFID tags that only report their identity, for example their EPC.
- the timing of the RFID events in an RFID query is shown in Fig. 3.
- the RFID reader in a first RFID event 17 sends a request 17 to the RFID tag 14.
- the request 17 contains a query or request for an identification ID, for example the EPC, and a request for an access token T.
- the RFID tag 14 has received the request 17, it responds with a second RFID event 18 in the form of a response 18 to the request 17.
- the response 18 contains the requested identification ID and an access token T.
- the RFID reader 15 is now authorized to associate product data PD associated with a product identified by the transmitted identification ID with a product data server 16 retrieve.
- the RFID reader 15 executes a third RFID event 19 in the form of a read access 19.
- the RFID reader 15 transmits the identification ID and the access token T to the server 16.
- the server 16 checks the authentication of the accessing, here the RFID reader 15.
- the server 16 then performs in a Check step 21 is a check of the access token T by.
- the server 16 recognizes on the basis of the access token T that the product or the RFID tag 14 is located in the area of contact of the RFID reader 15. With a valid access token, the server 16 then transmits the requested product data PD or parts thereof in a fourth RFID event 20 in a response 20 to the RFID reader 15.
- Identification ID and access token T are transmitted separately between RFID tag 14 and RFID reader 15. It is important to emphasize that identification ID and access token T are also common between
- RFID tag 14 and RFID reader 15 can be transmitted, the identification ID is then included in the access token T, and therefore does not need to be transmitted separately.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
DE102007045776A DE102007045776A1 (de) | 2007-09-25 | 2007-09-25 | Verfahren zum Schutz mindestens von Teilen von auf mindestens einem Server und/oder in mindestens einer Datenbank abgelegten, einem durch ein RFID-Tag identifizierten Produkt zugeordnete Produktdaten vor unberechtigtem Zugriff |
PCT/EP2008/062314 WO2009040273A1 (de) | 2007-09-25 | 2008-09-16 | Verfahren zum schutz mindestens von teilen von auf mindestens einem server und/oder in mindestens einer datenbank abgelegten, einem durch ein rfid-tag identifizierten produkt zugeordnete produktdaten vor unberechtigtem zugriff |
Publications (1)
Publication Number | Publication Date |
---|---|
EP2203863A1 true EP2203863A1 (de) | 2010-07-07 |
Family
ID=40239704
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EP08804271A Withdrawn EP2203863A1 (de) | 2007-09-25 | 2008-09-16 | Verfahren zum schutz mindestens von teilen von auf mindestens einem server und/oder in mindestens einer datenbank abgelegten, einem durch ein rfid-tag identifizierten produkt zugeordnete produktdaten vor unberechtigtem zugriff |
Country Status (4)
Country | Link |
---|---|
US (1) | US8224852B2 (de) |
EP (1) | EP2203863A1 (de) |
DE (1) | DE102007045776A1 (de) |
WO (1) | WO2009040273A1 (de) |
Families Citing this family (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102356559B (zh) * | 2008-12-02 | 2016-03-02 | 高通股份有限公司 | 无线品牌化 |
DE102009022850A1 (de) * | 2009-05-27 | 2010-12-02 | Siemens Aktiengesellschaft | Authentifikation eines RFID-Tags mit einem asymmetrischen Kryptographieverfahren |
US20110029432A1 (en) * | 2009-07-30 | 2011-02-03 | Hildred Richard N | Computer-implemented methods of processing payments for a merchant selling goods or services to a consumer |
EP2495690B1 (de) * | 2011-03-01 | 2015-05-13 | Nxp B.V. | Transponder und Verfahren zur Überwachung des Zugriffs auf Anwendungsdaten im Transponder |
SG11201500524WA (en) | 2012-07-31 | 2015-04-29 | Felica Networks Inc | Information processing device, server device, and information processing system |
US20150046237A1 (en) * | 2012-09-30 | 2015-02-12 | Awear Solutions Ltd. | Methods and apparatus for advertising and sale promotion |
EP3108403A1 (de) * | 2014-02-21 | 2016-12-28 | Sony Corporation | Erkennung von unberechtigten etiketten |
US9600548B2 (en) * | 2014-10-10 | 2017-03-21 | Salesforce.Com | Row level security integration of analytical data store with cloud architecture |
DE102015000895B3 (de) * | 2015-01-23 | 2016-07-07 | Giesecke & Devrient Gmbh | Verteiltes Bearbeiten von zentral verschlüsselt gespeicherten Daten |
DE102016007832A1 (de) | 2016-06-27 | 2017-12-28 | Giesecke+Devrient Mobile Security Gmbh | Effizientes Authentifizieren |
RU170549U1 (ru) * | 2016-10-31 | 2017-04-28 | Иван Сергеевич Стовбун | Устройство для предотвращения несанкционированного доступа к информации, содержащейся в объекте, оснащенном транспондером |
US11213773B2 (en) | 2017-03-06 | 2022-01-04 | Cummins Filtration Ip, Inc. | Genuine filter recognition with filter monitoring system |
US10659451B2 (en) * | 2017-07-18 | 2020-05-19 | Bank Of America Corporation | System and method for injecting a tag into a computing resource |
WO2019055478A1 (en) * | 2017-09-12 | 2019-03-21 | Visa International Service Association | SYSTEM AND METHOD FOR SECURE AND ACCURATE DELIVERY |
US20210014228A1 (en) * | 2019-07-08 | 2021-01-14 | Rong-Der HONG | Method of delegating data editing authority of product items |
US20240211847A1 (en) * | 2022-12-23 | 2024-06-27 | Intertrust Technologies Corporation | Product Rights Management Systems and Methods Using Secure Tags and Cryptographic Tokens |
Family Cites Families (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6522770B1 (en) * | 1999-05-19 | 2003-02-18 | Digimarc Corporation | Management of documents and other objects using optical devices |
US6650761B1 (en) * | 1999-05-19 | 2003-11-18 | Digimarc Corporation | Watermarked business cards and methods |
US6311214B1 (en) * | 1995-07-27 | 2001-10-30 | Digimarc Corporation | Linking of computers based on optical sensing of digital data |
WO2001072107A2 (en) | 2000-03-24 | 2001-10-04 | International Paper | Rfid tag for authentication and identification |
GB0315156D0 (en) | 2003-06-28 | 2003-08-06 | Ibm | Identification system and method |
EP1577824A1 (de) * | 2004-03-16 | 2005-09-21 | Swisscom Mobile AG | Verfahren zur Bereitstellung von Informationen über ein Produkt |
EP1571591B1 (de) * | 2004-03-03 | 2017-09-27 | Swisscom AG | Verwendung eines RFID-Tags um mit einem Mobilgerät auf eine Hypertext-Seite zuzugreifen |
US20070136585A1 (en) * | 2005-12-12 | 2007-06-14 | Impinj, Inc. | Determining authentication of RFID tags for indicating legitimacy of their associated items |
US8046588B2 (en) * | 2006-02-23 | 2011-10-25 | Rockwell Automation Technologies, Inc. | Audit trail in a programmable safety instrumented system via biometric signature(s) |
NZ577694A (en) * | 2006-12-07 | 2012-04-27 | Ticketmaster L L C | Methods and systems for access control using a networked turnstele |
US8107406B2 (en) * | 2008-05-20 | 2012-01-31 | Oracle International Corporation | Offline mobile RFID event persistency and synchronization |
-
2007
- 2007-09-25 DE DE102007045776A patent/DE102007045776A1/de not_active Ceased
-
2008
- 2008-09-16 US US12/679,780 patent/US8224852B2/en not_active Expired - Fee Related
- 2008-09-16 WO PCT/EP2008/062314 patent/WO2009040273A1/de active Application Filing
- 2008-09-16 EP EP08804271A patent/EP2203863A1/de not_active Withdrawn
Non-Patent Citations (1)
Title |
---|
See references of WO2009040273A1 * |
Also Published As
Publication number | Publication date |
---|---|
DE102007045776A1 (de) | 2009-04-23 |
US20100198873A1 (en) | 2010-08-05 |
WO2009040273A4 (de) | 2009-05-14 |
WO2009040273A1 (de) | 2009-04-02 |
US8224852B2 (en) | 2012-07-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP2203863A1 (de) | Verfahren zum schutz mindestens von teilen von auf mindestens einem server und/oder in mindestens einer datenbank abgelegten, einem durch ein rfid-tag identifizierten produkt zugeordnete produktdaten vor unberechtigtem zugriff | |
DE60221700T2 (de) | Systeme zum sicheren markieren von daten | |
DE102007016467B3 (de) | Transponder mit Zugriffsschutz und Verfahren zum Zugriff auf den Transponder | |
CH716091B1 (de) | Verfahren zum Nachverfolgen von Objekten unter Benutzung von verteilten Computernetzen. | |
WO2011147433A1 (de) | Verfahren uns vorrichtungen zur erstellung und verwendung eines auf einem mobilen gerät darstellbaren ausweisdokuments | |
DE102013201027A1 (de) | Verfahren zur Authentisierung eines Nutzers gegenüber einem Automat | |
DE102008023914A1 (de) | Verfahren zur Authentifizierung eines RFID-Tags | |
DE102006032129A1 (de) | Skalierbares Verfahren zur Zugriffssteuerung | |
DE3523237A1 (de) | Anordnung zum sichern des transports von chipkarten | |
DE102004061452A1 (de) | Mehrfaches RFID-Antikollisions-Abfrageverfahren | |
WO2006015573A1 (de) | Datenträger zur kontaktlosen übertragung von verschlüsselten datensignalen | |
EP1735760B1 (de) | Datenschutzgerechtes radio frequency identification (rfid)-system durch besitzerkontrollierte rfid-tag funktionalität | |
DE102015220798A1 (de) | Zugangskontrollsystem für einen Lagerbereich sowie Verfahren zur Zugangskontrolle | |
EP2774074B1 (de) | Dokument, verfahren zur authentifizierung eines benutzers, insbesondere zur freischaltung einer chipkartenfunktion, und computersystem | |
DE102007023003A1 (de) | Verfahren zum mobilen Bezahlen sowie Computerprogrammprodukt | |
EP1635302A1 (de) | Speicherkarte und Verfahren zum Abfragen von Informationen von einer Speicherkarte | |
EP1365363B1 (de) | Verfahren zur Ausführung einer Datentransaktion mittels einer aus einer Haupt- und einer trennbaren Hilfskomponente bestehenden Transaktionsvorrichtung | |
DE60213375T2 (de) | Kontaktloses elektronisches Identifizierungssystem | |
EP3465511B1 (de) | Biometrisch basiertes auslösen einer nutzaktion mittels eines id-tokens | |
DE102004026933B4 (de) | System und Verfahren zur Authentifizierung eines Benutzers | |
WO2007062888A1 (de) | Mobile chipkarteneinrichtung und verfahren zur authentifizierung mittels chipkarte gegenüber mindestens einer einrichtung | |
EP3053077B1 (de) | Verfahren zur datenzugriffsteuerung | |
DE102014104532B4 (de) | Kontaktloses Identifikationssystem | |
DE102021101521A1 (de) | Verfahren zur Zutrittskontrolle und Zutrittskontrollsystem | |
DE10113828A1 (de) | Prozessor zum sicheren Verarbeiten von Daten unter Verwendung einer Datensicherheitsmarke und/oder von Befehlen unter Verwendung einer Befehlssicherheitsmarke |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PUAI | Public reference made under article 153(3) epc to a published international application that has entered the european phase |
Free format text: ORIGINAL CODE: 0009012 |
|
17P | Request for examination filed |
Effective date: 20100210 |
|
AK | Designated contracting states |
Kind code of ref document: A1 Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MT NL NO PL PT RO SE SI SK TR |
|
AX | Request for extension of the european patent |
Extension state: AL BA MK RS |
|
DAX | Request for extension of the european patent (deleted) | ||
17Q | First examination report despatched |
Effective date: 20110407 |
|
APBK | Appeal reference recorded |
Free format text: ORIGINAL CODE: EPIDOSNREFNE |
|
APBN | Date of receipt of notice of appeal recorded |
Free format text: ORIGINAL CODE: EPIDOSNNOA2E |
|
APBR | Date of receipt of statement of grounds of appeal recorded |
Free format text: ORIGINAL CODE: EPIDOSNNOA3E |
|
APAF | Appeal reference modified |
Free format text: ORIGINAL CODE: EPIDOSCREFNE |
|
RAP1 | Party data changed (applicant data changed or rights of an application transferred) |
Owner name: SIEMENS AKTIENGESELLSCHAFT |
|
APBT | Appeal procedure closed |
Free format text: ORIGINAL CODE: EPIDOSNNOA9E |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: THE APPLICATION HAS BEEN WITHDRAWN |
|
18W | Application withdrawn |
Effective date: 20151019 |