Classifications

• • G—PHYSICS
  • G07—CHECKING-DEVICES
  • G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
  • G07C9/00—Individual registration on entry or exit
  • G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
  • G07C9/00817—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the lock can be programmed
• • G—PHYSICS
  • G07—CHECKING-DEVICES
  • G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
  • G07C9/00—Individual registration on entry or exit
  • G07C9/20—Individual registration on entry or exit involving the use of a pass
  • G07C9/27—Individual registration on entry or exit involving the use of a pass with central registration
• • G—PHYSICS
  • G07—CHECKING-DEVICES
  • G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
  • G07C9/00—Individual registration on entry or exit
  • G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
  • G07C2009/00753—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated by active electrical keys
  • G07C2009/00769—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated by active electrical keys with data transmission performed by wireless means
  • G07C2009/00777—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated by active electrical keys with data transmission performed by wireless means by induction
• • G—PHYSICS
  • G07—CHECKING-DEVICES
  • G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
  • G07C9/00—Individual registration on entry or exit
  • G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
  • G07C9/00817—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the lock can be programmed
  • G07C2009/00841—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the lock can be programmed by a portable device
• • G—PHYSICS
  • G07—CHECKING-DEVICES
  • G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
  • G07C9/00—Individual registration on entry or exit
  • G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
  • G07C9/00857—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the data carrier can be programmed
  • G07C2009/00865—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the data carrier can be programmed remotely by wireless communication

Definitions

• the invention relates to locks controlled by means of a portable key-forming object cooperating with the lock by a non-galvanic mutual coupling of the NFC type (near-field communication).
• This portable object can be a card or a contactless badge, but it can also be a mobile phone equipped with an NFC chip and an NFC antenna, the SIM card of the phone being used as a security element.
• the NFC technology consists in coupling the portable object and the lock by varying a magnetic field produced by a coil (so-called "induction method” technique).
• the lock comprises for this purpose an inductive circuit excited by an alternating signal which produces a variable magnetic field, detectable over a range of a few centimeters at most.
• the portable object in this space receives the energy of the field (which makes it possible in particular to remote power the portable object, generally devoid of own power source) and modulates an internal load.
• This modulation encoded by various data from the portable object (identifier, encryption key, etc.) is detected in turn by the lock, establishing the bidirectional communication sought.
• the object of the invention is to propose a technique for programming and managing contactless locks of the NFC type, which has a level of increased security, particularly adapted to the use of a mobile phone with NFC circuits as the key to control this lock.
• the principle of the invention is to provide a unique algorithm generated randomly for each lock at the time of manufacture thereof, and kept by a secure, non-public site.
• this algorithm can be downloaded by a mobile phone from this secure site, after checking all the conditions required to authenticate the user and the lock.
• the phone will be able to download from the secure site other security elements such as cryptographic keys, identifiers, etc. that can be used to ensure, when programming the lock, the integration of all the security elements providing the security. maximum level of protection sought.
• the principle of secure management of the invention is based on the division between two groups of entities 10, 12 that can communicate with each other only in a restricted and secure manner as is symbolized by the screen 14.
• Group 10 gathers specific secure entities, including the lock manufacturer 16 and a site 18 specific to the lock manager.
• Group 12 includes a number of non-user-specific entities, including a mobile network operator 20.
• This operator includes a service provider module (block 22) which communicates a number of non-user-specific entities. part (interface 24) with the secure site 18 and secondly (interface 26) with a user 28 via an ordinary communication means 30 such as web, WAP, "hotline", etc.
• the telephone 32 of the user 28 is, in turn, interfaced with the service provider 22 of the mobile network operator via a trusted service provider (TSM) 34, able to ensure efficiently and safely the various data downloading procedures between the remote management site 18 and the mobile phone 32 via the service provider 22 of the mobile network operator.
• TSM trusted service provider
• the portable object is a mobile phone, it is an unmarked object, which is not a priori associated with a given lock. It includes a SIM card that identifies the user, and an IMEI identifier that uniquely identifies the phone, but initially the lock does not know these identifiers and will not recognize them when a phone is approached the lock.
• the secure management site 18 contains a cryptographic engine capable of generating for each lock to manufacture a unique, random algorithm, as well as a unique identifier and transport keys.
• the unique random algorithm adds to the conventional cryptographic mechanism, and adds an extra level of security to existing cryptographic techniques.
• the unique identifier, designated PUID (Public Unique IDentifier) is a non-modifiable identifier allowing to recognize the lock between all in a unique and definitive way.
• the manufacturer 16 When the manufacturer 16 manufactures a lock, it receives from the management site 18, via a secure encrypted communication, the corresponding PUID identifier and the associated transport keys (this information can possibly be generally acquired in the form of batches) . It will be noted that the unique algorithm is not transmitted to the manufacturer 16 by the management site 18, which stores it internally, knowing however which identifier PUID it corresponds to. The manufacturer 16 then programs each lock 36 with its unique identifier and its corresponding transport key. I! program also cards called "emergency cards" 38 with the same key transport. These cards will make it possible to maneuver the lock during its installation, by involving only simplified algorithms based on the temporary transport key, this until the definitive programming where this key will be neutralized and replaced by a definitive cryptographic key. The locks can then be shipped in order to be installed by the user 28 at their final location 40. Once this has been done, the lock must be "programmed” to implement the algorithms, the elements of the lock. advanced cryptography and the definitive keys to obtain the high degree of security sought.
• This programming can be carried out by means of a portable telephone 32 provided with NFC circuits, which can be coupled by bidirectional NFC communication with the lock 40, as shown schematically by the wireless link 42.
• the user To proceed with the programming, the user must identify himself and register with the management site 18, which he contacts by any appropriate means via the interface 26 of the mobile network operator.
• the user provides the operator 22 with the unique identifier PUID of the lock 40, which information is transmitted to the management site 18 by the secure interface 24.
• the manager site 18 recognizes the identifier PUID in its database and sends in return to the mobile network operator, via the secure interface 24: the unique algorithm of the lock, the cryptographic keys corresponding to this lock, and the corresponding transport key.
• the site also verifies that the telephone 32 used is a telephone equipped with NFC functionalities.
• the exchanges between the telephone and the managing site, as well as between the telephone and the lock, can be managed by means of a specific application of the "applet" type (applet) previously downloaded by the telephone.
• This applet once loaded and activated, will automatically implement the various steps necessary for the exchange of data with the management site 18 and the programming of the lock 40, in a perfectly secure manner.
• the user Once all the required data loaded into the phone 32, it is sufficient for the user to simply present the phone in front of the lock 40 to be programmed so as to establish the bidirectional coupling 42 by NFC.
• the phone first clears the lock by disabling the transport key, thus rendering inoperative the emergency cards delivered with the lock. It then loads into the lock the necessary elements to implement the security procedures, including the unique random algorithm, the final cryptographic key and the user key.
• the secure cryptographic procedure can then be activated, and the programming phase is completed.
• the applet of the phone can then read the contents of the card, recognize in it the transport key (loaded at the time of manufacture of the lock) and check that this key corresponds to that transmitted by the manager 18 at the same time. time as the definitive cryptographic key. If this is the case, the applet disables the transport key and replaces it with the cryptographic key and a copy of the user key.

Landscapes

• Physics & Mathematics (AREA)
• General Physics & Mathematics (AREA)
• Lock And Its Accessories (AREA)
• Mobile Radio Communication Systems (AREA)

Applications Claiming Priority (2)

Publications (1)

Family

ID=41138755

Family Applications (1)

Country Status (4)

Families Citing this family (18)

Family Cites Families (9)

• 2009
  • 2009-04-30 FR FR0952857A patent/FR2945177A1/fr active Pending
• 2010
  • 2010-04-28 EP EP10727057A patent/EP2425405A1/de not_active Withdrawn
  • 2010-04-28 US US13/266,929 patent/US20120114122A1/en not_active Abandoned
  • 2010-04-28 WO PCT/FR2010/050809 patent/WO2010125309A1/fr not_active Ceased

Non-Patent Citations (2)

Also Published As

Similar Documents

Legal Events