EP3032845B1 - Hearing device configured to authenticate a mode request and related method - Google Patents

Hearing device configured to authenticate a mode request and related method Download PDF

Info

Publication number
EP3032845B1
EP3032845B1 EP14197819.7A EP14197819A EP3032845B1 EP 3032845 B1 EP3032845 B1 EP 3032845B1 EP 14197819 A EP14197819 A EP 14197819A EP 3032845 B1 EP3032845 B1 EP 3032845B1
Authority
EP
European Patent Office
Prior art keywords
hearing device
mode
mode request
processing unit
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
EP14197819.7A
Other languages
German (de)
French (fr)
Other versions
EP3032845A1 (en
Inventor
Brian Dam Pedersen
Allan Munk VENDELBO
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
GN Hearing AS
Original Assignee
GN Hearing AS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Family has litigation
First worldwide family litigation filed litigation Critical https://patents.darts-ip.com/?family=52016530&utm_source=google_patent&utm_medium=platform_link&utm_campaign=public_patent_search&patent=EP3032845(B1) "Global patent litigation dataset” by Darts-ip is licensed under a Creative Commons Attribution 4.0 International License.
Application filed by GN Hearing AS filed Critical GN Hearing AS
Priority to EP20155342.7A priority Critical patent/EP3668120B1/en
Priority to EP24184373.9A priority patent/EP4440158A2/en
Priority to EP14197819.7A priority patent/EP3032845B1/en
Priority to DK14197819.7T priority patent/DK3032845T3/en
Priority to US14/573,233 priority patent/US10785578B2/en
Priority to JP2015232427A priority patent/JP6752013B2/en
Priority to CN201510924567.2A priority patent/CN105704114B/en
Publication of EP3032845A1 publication Critical patent/EP3032845A1/en
Priority to US16/682,791 priority patent/US11206496B2/en
Publication of EP3032845B1 publication Critical patent/EP3032845B1/en
Application granted granted Critical
Priority to US17/344,955 priority patent/US11546699B2/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04RLOUDSPEAKERS, MICROPHONES, GRAMOPHONE PICK-UPS OR LIKE ACOUSTIC ELECTROMECHANICAL TRANSDUCERS; DEAF-AID SETS; PUBLIC ADDRESS SYSTEMS
    • H04R25/00Deaf-aid sets, i.e. electro-acoustic or electro-mechanical hearing aids; Electric tinnitus maskers providing an auditory perception
    • H04R25/55Deaf-aid sets, i.e. electro-acoustic or electro-mechanical hearing aids; Electric tinnitus maskers providing an auditory perception using an external connection, either wireless or wired
    • H04R25/558Remote control, e.g. of amplification, frequency
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04RLOUDSPEAKERS, MICROPHONES, GRAMOPHONE PICK-UPS OR LIKE ACOUSTIC ELECTROMECHANICAL TRANSDUCERS; DEAF-AID SETS; PUBLIC ADDRESS SYSTEMS
    • H04R2225/00Details of deaf aids covered by H04R25/00, not provided for in any of its subgroups
    • H04R2225/55Communication between hearing aids and external devices via a network for data exchange
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04RLOUDSPEAKERS, MICROPHONES, GRAMOPHONE PICK-UPS OR LIKE ACOUSTIC ELECTROMECHANICAL TRANSDUCERS; DEAF-AID SETS; PUBLIC ADDRESS SYSTEMS
    • H04R25/00Deaf-aid sets, i.e. electro-acoustic or electro-mechanical hearing aids; Electric tinnitus maskers providing an auditory perception
    • H04R25/55Deaf-aid sets, i.e. electro-acoustic or electro-mechanical hearing aids; Electric tinnitus maskers providing an auditory perception using an external connection, either wireless or wired
    • H04R25/554Deaf-aid sets, i.e. electro-acoustic or electro-mechanical hearing aids; Electric tinnitus maskers providing an auditory perception using an external connection, either wireless or wired using a wireless connection, e.g. between microphone and amplifier or using Tcoils
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04RLOUDSPEAKERS, MICROPHONES, GRAMOPHONE PICK-UPS OR LIKE ACOUSTIC ELECTROMECHANICAL TRANSDUCERS; DEAF-AID SETS; PUBLIC ADDRESS SYSTEMS
    • H04R25/00Deaf-aid sets, i.e. electro-acoustic or electro-mechanical hearing aids; Electric tinnitus maskers providing an auditory perception
    • H04R25/70Adaptation of deaf aid to hearing loss, e.g. initial electronic fitting

Definitions

  • the present disclosure relates to a hearing device and in particular to hearing device and related method for configuration or operation of a hearing device.
  • a hearing device becomes increasingly advanced.
  • Wireless communication between a hearing device and external devices such as hearing device fitting apparatus, remote controllers, tablets and smart phones, has evolved.
  • a wireless communication interface of a hearing device uses open standard-based interface.
  • a hearing device may assume any incoming data as legitimate, and may allow memory to be written or changed by an unauthorized party. Any such attacks may result in a malfunction of the hearing aid, or a battery exhaustion attack.
  • US 2005/0069161 relates to a method and apparatus for improving interference suppression processing and control in hearing aids communicating with a mobile station over a short-range wireless network.
  • the hearing aid includes an acoustic echo canceller to suppress acoustic echo from the input audio signals.
  • the mobile station also includes an echo canceller, and may include one or more switching circuits to bypass the echo canceller when the mobile station communicates with the hearing aid via the short-range wireless network.
  • US 2008/0165994 relates to a hearing aid device enabled with a Bluetooth transceiver, allowing the user to communicate with linked, Bluetooth enabled mobile radio or telephone.
  • Mobile phone receives a communication, encodes it in accordance with the Bluetooth protocol and links with the transceiver, which is housed with the hearing aid.
  • US 2014/0211972 relates to a method of fitting a hearing aid connected to a mobile terminal.
  • the method may include acquiring location information of a location of the mobile terminal, transmitting the location information to a server, receiving, from the server, information about at least one recommended fitting parameter model adapted to hearing conditions of the location and hearing characteristics of a user of the hearing aid, and displaying the information about the at least one recommended fitting parameter model.
  • the method may also include receiving a fitting parameter model selected by the user from among the at least one recommended fitting parameter model, and controlling the hearing aid to function according to the received fitting parameter model.
  • US2007/0230711 shows a system of a fitting device and several hearing aids which can be fitted by the fitting device. An identification procedure which is executed before a wireless link is established between the fitting device and the hearing aids makes sure that only a desired hearing aid is fitted.
  • a hearing device comprising a processing unit configured to compensate for hearing loss of a user of the hearing device, a memory, and an interface.
  • the processing unit/hearing device may be configured to receive a mode request via the interface; authenticate the mode request; and place the hearing device into the requested mode if authentication of the mode request succeeds.
  • a method for configuration of a hearing device comprising a processing unit configured to compensate for hearing loss of a user of the hearing device, a memory, and an interface.
  • the method may comprise receiving a mode request via the interface; authenticating the mode request; and placing the hearing device into the requested mode if authentication of the mode request succeeds.
  • the method and hearing device as disclosed provide secure configuration of the hearing device, such as secure access to the memory of the hearing device. It is an advantage of the present disclosure that the hearing device can only be configured or updated by authorized parties. The disclosed hearing device thus has the advantage of detecting and preventing any modification by unauthorized parties.
  • the hearing device disclosed herein is advantageously protected against attacks such as spoofing attacks, man-in-the-middle attacks, and/or replay-attacks.
  • the method and apparatus as disclosed provides a secure configuration and/or update of a hearing device.
  • the present disclosure provides improved security of a hearing device.
  • Security comprise assessing threats, vulnerabilities and attacks and developing appropriate safeguards and countermeasures to protect against threats and attacks.
  • the hearing device comprises a processing unit.
  • the processing unit is configured to compensate for hearing loss or other hearing disability of a user of the hearing device.
  • the hearing device may be operated in one or more modes.
  • the one or more modes may include a first mode and/or a second mode.
  • the one or more modes may include a third mode and/or a fourth mode.
  • the one or more modes may include a default mode.
  • the first mode may be a service mode.
  • a service mode may be characterized in that a firmware part of the memory can be written in the service mode.
  • the firmware part of the memory may be write-protected in at least one other mode of the hearing device.
  • the second mode may be a fitting mode.
  • a fitting mode may be characterized in that a fitting part of the memory can be read and/or written in the fitting mode.
  • a fitting mode may be characterized in that a firmware part of the memory is write-protected.
  • the fitting part of the memory may comprise fitting data, such as hearing loss parameters, compressor parameters, filter coefficients, and/or gain coefficients.
  • the third mode may be a debug mode.
  • a debug mode may be characterized in that a debug part of the memory can be read and/or written in the fitting mode.
  • a debug mode may be characterized in that a fitting part of the memory can be read and/or written in the debug mode.
  • a debug mode may be characterized in that a firmware part of the memory can be read and/or written in the debug mode.
  • the debug part of the memory may be read-protected and/or write-protected in at least one other mode of the hearing device, such as in the default mode and/or the fitting mode.
  • the default mode may be a boot mode.
  • a boot mode may be characterized in that the hearing device is operated according to operating parameters set during booting and/or in response to user input, e.g. program selection, volume up/down, etc.
  • the default mode may be characterized in that the firmware part (or at least a part thereof) and/or the fitting part of the memory (or at least a part thereof) is write-protected and/or read-protected in the default mode.
  • the default mode may be characterized in that the debug part of the memory (or at least a part thereof) is read-protected and/or write-protected in the default mode.
  • the hearing device comprises a memory.
  • the memory may be embedded in the processing unit and/or be employed in a memory unit connected to the processing unit.
  • the memory may comprise a first memory part.
  • the first memory part may be a firmware part of the memory.
  • the firmware part of the memory may be configured to be accessed in the service mode e.g. to be written to and/or read from in the service mode.
  • the firmware part of the memory may additionally be configured to be accessed in the debug mode.
  • the memory may comprise a second memory part.
  • the second memory part may be a fitting part of the memory.
  • the fitting part of the memory may be configured to be accessed in the fitting mode e.g. to be written to and/or read from in the fitting mode.
  • the fitting part of the memory may additionally be configured to be accessed in the service mode and/or the debug mode.
  • the memory may comprise a third memory part.
  • the third memory part may be a debug part of the memory.
  • the debug part of the memory may be configured to be accessed in the debug mode e.g. to be written to or read from in the debug mode.
  • the hearing device may comprise an interface configured for enabling communication between the hearing device and another device.
  • the interface may comprise a wireless transceiver, e.g. configured for wireless communication at frequencies in the range from 2.4 to 2.5 GHz.
  • the wireless transceiver may be a Bluetooth Low Energy transceiver.
  • the interface may comprise a connector for forming a wired connection to the hearing device.
  • the interface may form a connection to one or more other devices such as a tablet and/or a smart phone and/or a fitting device.
  • the processing unit/hearing device is configured to receive a mode request via the interface.
  • the mode request may comprise a mode identifier indicative of the requested mode.
  • the mode request may be a service mode request, e.g. the mode identifier is indicative of a first/service mode.
  • the mode request may be a fitting mode request, e.g. the mode identifier is indicative of a second/fitting mode.
  • the mode request may be a debug mode request, e.g. the mode identifier is indicative of a third/debug mode. Accordingly, the mode request may be one of a service mode request, a fitting mode request, and a debug mode request.
  • the mode request may comprise a sender identifier indicative of the mode request sender.
  • the mode request may comprise a certificate, such as a digital signature, for certifying the mode request sender. This allows for direct authentication of the mode request.
  • the mode request may comprise a session identifier, e.g. an encrypted session identifier.
  • the hearing device may be paired with a sender of the mode request prior to receipt of the mode request.
  • the hearing device and the sending/client device device may have exchanged one or more of hearing device identifier, sender identifier, session identifier, etc.
  • the processing unit/hearing device is configured to authenticate the mode request and to place the hearing device into the requested mode if authentication of the mode request succeeds.
  • the processing unit may be configured to place the hearing device into a mode different from the requested mode, such as the default mode, if authentication of the mode request fails.
  • the hearing device disclosed herein has the advantage of verifying integrity of received mode requests and/or senders thereof, detecting any alteration and disregard altered mode requested.
  • the hearing device disclosed herein may advantageously allow access to specific parts of the memory only with authenticated parties, such as an authenticated fitting device, an authenticated accessory device, an authenticated external device and/or an authenticated server.
  • the processing unit may be configured to authenticate the mode request by authenticating the sender of the mode request.
  • the processing unit/hearing device may be configured to authenticate the mode request by verifying integrity of a digital signature of the mode request.
  • the processing unit may be configured to authenticate the mode request by verifying integrity of the mode request.
  • the mode request may comprise a message authentication code.
  • To verify integrity of the mode request may comprise to verify the message authentication code, e.g. with a session identifier stored in the hearing device.
  • the mode request may comprise a digital signature or certificate.
  • To verify integrity of the mode request may comprise verifying the digital signature or certificate.
  • the processing unit/hearing device may be configured to send a mode response. For example, to place the hearing device into the requested mode if authentication of the mode request succeeds may comprise sending a mode response.
  • the processing unit/hearing device may be configured to generate and/or send a mode response in response to the mode request.
  • the processing unit may be configured to obtain and/or store a session identifier (may also be denoted session key) and include the session identifier and/or an encrypted version thereof in the mode response.
  • To obtain the session identifier may comprise to generate the session identifier, e.g. as a random or pseudo-random number.
  • the hearing device and/or the processing unit may comprise a number generator, e.g.
  • a session identifier configured to generate a random or pseudo-random number as a session identifier.
  • the processing unit may be configured to encrypt the session identifier, optionally based on a hearing device key.
  • the session identitier may be a session key in the form of a symmetric key.
  • a symmetric session key may provide a lightweight processing of the security algorithms on the processing unit, such as lightweight encryption, lightweight decryption, lightweight integrity protection, etc.
  • the hearing device key may be a symmetric key or a public key of a private-public key pair.
  • the hearing device key may be stored in a permanent memory of the hearing device, e.g. during manufacture or during a fitting session.
  • the mode response may comprise the encrypted session key.
  • the session response may comprise a hearing device identifier and/or the session key.
  • the processing unit may be configured to send a hearing device identifier and/or the session key in the mode response.
  • a mode response comprising a hearing device identifier may enable the sender of the mode request to obtain the hearing device key, either from a database or by requesting the hearing device key from the manufacturer, which in turn enables the sender of the mode request to decrypt an encrypted session identifier/key and use the session identifier when sending data to the hearing device.
  • the mode request may be received in a session.
  • the processing unit/hearing devic may be configured to terminate the session if authentication of the mode request fails.
  • the mode request may comprise a signature
  • to authenticate the mode request may comprise to verify the signature of the mode request.
  • the processing unit may be configured to obtain, e.g. generate a session identifier, e.g. upon receipt of the mode request or when the hearing device is in a service mode, a fitting mode, or a debug mode.
  • the processing unit may be configured to encrypt the session identifier, e.g. with a hearing device key.
  • the processing unit may be configured to transmit the session identifier or the encrypted session identifier via the interface, e.g. as a part of the mode response or a session setup message.
  • the processing unit may be configured to store the session identifier in the hearing device.
  • the processing unit may be configured to receive data via the interface, e.g. when the hearing device is in a mode, e.g. the service mode, the fitting mode and/or the debug mode.
  • the processing unit may be configured to authenticate the received data, e.g. when the hearing device is in one or more modes, e.g. the service mode, the fitting mode and/or the debug mode.
  • the processing unit may be configured to store hearing device data in a part of the memory based on the received data if authentication of the data succeeds. For example, when the hearing device is in a service mode, the processing unit may store hearing device data, such as e.g. firmware, based on the received data in the firmware part of the memory.
  • the processing unit may, when the hearing device is in a fitting mode, store hearing device data (fitting data) based on the received data in the fitting part of the memory. In an exemplary hearing device, the processing unit may, when the hearing device is in a debug mode, store hearing device data (debug data) based on the received data in the debug part of the memory.
  • the processing unit may be configured to authenticate the received data by verifying integrity of the received data. Verifying integrity of the received data may be based on the session identifier stored in the hearing device.
  • the received data may comprise a message authentication code. To verify integrity of the received data may comprise to verify the message authentication code, e.g. with the stored session identifier.
  • the received data may comprise a digital signature. To verify integrity of the received data may comprise verifying the digital signature.
  • the data may comprise a session identifier
  • to authenticate the data may comprise to compare the session identifier of received data with the session identifier stored in the hearing device.
  • the data may be received in a session.
  • the processing unit may be configured to terminate the session if authentication of the received data fails, e.g. the processing unit may be configured to terminate the session if integrity of the received data is corrupted, i.e. verification of the integrity fails.
  • the processing unit may be configured to place the hearing device in another mode, such as the default mode, if authentication of the received data fails,
  • the hearing device/processing unit may be configured to receive a mode exit request and to place the hearing device in another mode, such as the default mode, e.g. if an authentication of the mode exit request succeeds.
  • a client device may send a mode exit request when fitting or transfer of firmware is done.
  • the disclosed method provides secure configuration and/or update of a hearing device.
  • the method may comprise placing the hearing device into a default mode if authentication of the mode request fails.
  • the method may comprise determining if operation in default mode fails, and switching to service mode if operating the hearing device in default mode fails,
  • authenticating the mode request may comprise authenticating the sender of the mode request.
  • the mode request may comprise a digital signature
  • authenticating the mode request may comprise verifying the digital signature
  • authenticating the mode request may comprise verifying integrity of the mode request.
  • the method may comprise receiving data via the interface, e.g. when the hearing device is in one or more modes, e.g. the service mode, the fitting mode and/or the debug mode.
  • the method may comprise authenticating the received data, e.g. when the hearing device is in one or more modes, e.g. the service mode, the fitting mode and/or the debug mode.
  • the method may comprise storing hearing device data in a part of the memory based on the received data if authentication of the data succeeds. For example, when the hearing device is in a service mode, the method may comprise storing hearing device data (firmware) based on the received data in the firmware part of the memory.
  • the method may, when the hearing device is in a fitting mode, comprise storing hearing device data (fitting data) based on the received data in the fitting part of the memory.
  • the method may, when the hearing device is in a debug mode, comprise storing hearing device data (debug data) based on the received data in the debug part of the memory.
  • the method may comprise placing the hearing device in another mode, such as the default mode, if authenticating the received data fails.
  • the processing unit may be configured to operate the hearing device in default mode, and switch to service mode if operating the hearing device in default mode fails,
  • Fig. 1 schematically illustrates an exemplary architecture 100 according to this disclosure.
  • the architecture 100 comprises a hearing device 101, a client device 110, and a server device 111.
  • the client device 110 may comprise a computing device acting as a client, a fitting device, a handheld device, a relay, a tablet, a personal computer, a mobile phone, and/or USB dongle plugged into a personal computer.
  • the server device 111 may comprise a computing device configured to act as a server, i.e. to serve requests from the client device 110 and/or from the hearing device 101.
  • the server device 111 may be controlled by the hearing device manufacturer.
  • the hearing device 101 may be connected to the client device 110 via a communication link 113, such as a bidirectional communication link and/or a wireless communication link.
  • the wireless communication link may be carried over a short-range communication system, such as Bluetooth, Bluetooth low energy, IEEE 802.11, Zigbee.
  • the hearing device 101 may be connected to the client device 110 over a network.
  • the hearing device 101 may be connected to the server device 111 via a communication link 114 over a network 114a, such as a bidirectional and/or wireless communication link over a network.
  • the client device 110 may be connected to the server device 111 via a communication link 112 over a network 112a, such as a bidirectional and/or wireless communication link over a network.
  • a network 112a such as a bidirectional and/or wireless communication link over a network.
  • the network 112a may be the Internet.
  • Fig. 2 schematically illustrates an exemplary hearing device 101.
  • the exemplary hearing device 101 comprises a processing unit 202 configured to compensate for hearing loss of a user of the hearing device 101.
  • the exemplary hearing device 101 comprises a memory and an interface 204.
  • the memory is in Fig. 1 illustrated in the form of a memory unit 203 external to the processing unit 202.
  • the memory may in other exemplary hearing devices be at least partly embedded in the processing unit 202 and/or in the memory unit 203.
  • the processing unit 202 is configured to receive a mode request via the interface 204.
  • the processing unit 202 comprises a receive/send unit 205 configured to send and/or receive via the interface 204.
  • the receive/send unit 205 is configured to send and receive via the interface 204 to/from an external device, such as a server device, a client device, a fitting device, an accessory, a relay device, a smart phone.
  • the processing unit 202 is configured to authenticate the mode request.
  • the processing unit 202 may comprise an authenticator 206 configured to authenticate the mode request.
  • the processing unit 202 is configured to place the hearing device into the requested mode, such as a service mode, a fitting mode or debug mode, if authentication of the mode request succeeds.
  • the processing unit 202 comprises a mode controller configured to place the hearing device into the requested mode, e.g. based on an output from the authenticator 206.
  • the processing unit 202 is configured to place the hearing device into a default mode if authentication of the mode request fails, the default mode comprising booting the hearing device and operating the hearing device according to operating parameters set during booting.
  • the operating parameters set during booting may be stored in a non-volatile part of the memory unit 203.
  • the operating parameters set during booting may comprise a default setting enabling the hearing aid to function according to a default setting programmed during production of the hearing device.
  • the hearing device comprises a microphone 210 for receiving a sound signal and converting it into converted sound signal.
  • the converted sound signal may be an electrical and digital version of the sound signal.
  • the processing unit is configured to receive and process the converted sound signal into a processed sound signal according to a hearing loss of a user of the hearing device.
  • the processed sound signal may be compressed and/or amplified or the like.
  • the hearing device further comprises an output transducer/loudspeaker, known as a receiver 212.
  • the receiver 212 is configured to receive the processed sound signal and convert it to an output sound signal for reception by an eardrum of the user.
  • Fig. 3 shows an exemplary signalling diagram 300 between a hearing device 101, and a client device 110.
  • the client device may be in the form of a fitting device.
  • the hearing device 101 receives a fitting mode request 301 via the interface 204 from the client device 110, the mode request comprising a digital signature and a mode identifier.
  • the digital signature may be a signature according to the Digital Signature Standard or other suitable standards, such as RSA. for digital signatures known in the art..
  • the hearing device 101 authenticates the mode request by verifying the digital signature. In the illustrated signalling diagram 300, the authentication succeeds, and the processing unit places the hearing device in the fitting mode including sending a fitting mode response 302 to the client device via the interface 204.
  • a firmware part of the memory is write-protected and a fitting mode part of the memory is write-enabled.
  • the client device 110 Upon receipt of the fitting mode response 302, the client device 110 sends data 303 to the hearing device 101 which receives the data and authenticates the received data 303, e.g. by use of digital signature or a session identifier/key as described earlier. If authentication of data 303 succeeds, the processing unit 202 derives hearing device data (fitting data) from the data 303 and stores hearing device data (fitting data) in a fitting part of the memory. If authentication of data 303 fails, the processing unit 202 places the hearing device in default mode.
  • the client device may send a mode exit request and the hearing device is configured to optionally authenticate the mode exit request and to place the hearing device in the default mode, optionally if authentication of the mode exit request succeeds.
  • the client device may be in the form of a smart phone or a tablet and may comprise software configured to provide the functionality of a fitting device.
  • Fig. 4 shows an exemplary signalling diagram 300' where a client device 110 is used for updating firmware of the hearing device 101, and a client device 110 in the form of a fitting device.
  • the hearing device 101 receives a service mode request 304 via the interface 204 from the client device 110.
  • the hearing device 101 authenticates the service mode request.
  • the processing unit 202 places the hearing device in the service mode including sending a service mode response 305 to the client device via the interface 204.
  • the processing unit 202 is allowed to write to a firmware part of the memory.
  • the client device 110 Upon receipt of the service mode response 305, the client device 110 sends data 306 to the hearing device 101 which receives the data and authenticates the received data 306, e.g. by use of digital signature or a session identifier/key as described earlier. Before sending data to the hearing device, the client device 110 may correspond with a server device 111 as illustrated with dotted arrows 307, 308, e.g. in order to determine the data 306 to be sent to the hearing device. If authentication of data 306 succeeds, the processing unit 202 derives hearing device data (firmware data) from the data 306 and stores hearing device data (firmware data) in a firmware part of the memory. If authentication of data 306 fails, the processing unit 202 may place the hearing device in default mode and/or terminate the session.
  • hearing device data firmware data
  • the processing unit 202 may place the hearing device in default mode and/or terminate the session.
  • the client device may send a mode exit request and the hearing device is configured to optionally authenticate the mode exit request and place the hearing device in the default mode, optionally if authentication of the mode exit request succeeds.
  • Fig. 5 illustrates an exemplary flowchart of a method 400, e.g. for configuration of a hearing device, such as hearing device 101, comprising a processing unit configured to compensate for hearing loss of a user of the hearing device, a memory, and an interface.
  • the method 400 comprises receiving 401 a mode request via the interface and authenticating 402 the mode request.
  • Authenticating 402 the mode request comprises authenticating the sender of the mode request and verifying integrity of the mode request. If authentication of the mode request succeeds 404, the method proceeds to placing 403 the hearing device into the requested mode. If authentication of the mode request fails 404, the method optionally proceeds to placing 405 the hearing device into a default mode.
  • the method After placing the hearing device in the requested mode, the method optionally proceeds to receiving 408 data via the interface, authenticating 410 the received data; and storing 412 hearing device data in a part of the memory corresponding to the requested mode and based on the received data if authentication of the data succeeds. If authenticating 410 the received data fails, the method may proceed to placing 405 the hearing device in default mode or another mode and/or terminating the session. Upon storing, the method 400 optionally comprises to evaluate 414 whether a mode exit request has been received. If so, the method proceeds to placing 405 the hearing device in default mode. If not, the method proceeds to receiving 408 data.
  • first, second, third and fourth does not imply any particular order, but are included to identify individual elements.
  • first, second, etc. does not denote any order or importance, but rather the terms first, second, etc. are used to distinguish one element from another.
  • first and second are used here and elsewhere for labelling purposes only and are not intended to denote any specific spatial or temporal ordering.
  • labelling of a first element does not imply the presence of a second element and vice versa.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Neurosurgery (AREA)
  • Otolaryngology (AREA)
  • Physics & Mathematics (AREA)
  • Acoustics & Sound (AREA)
  • Signal Processing (AREA)
  • Telephone Function (AREA)
  • Storage Device Security (AREA)

Description

  • The present disclosure relates to a hearing device and in particular to hearing device and related method for configuration or operation of a hearing device.
    • BACKGROUND
  • The functionality of a hearing device becomes increasingly advanced. Wireless communication between a hearing device and external devices, such as hearing device fitting apparatus, remote controllers, tablets and smart phones, has evolved. Typically, a wireless communication interface of a hearing device uses open standard-based interface. However, this poses many challenges in terms of security. A hearing device may assume any incoming data as legitimate, and may allow memory to be written or changed by an unauthorized party. Any such attacks may result in a malfunction of the hearing aid, or a battery exhaustion attack.
  • US 2005/0069161 relates to a method and apparatus for improving interference suppression processing and control in hearing aids communicating with a mobile station over a short-range wireless network. The hearing aid includes an acoustic echo canceller to suppress acoustic echo from the input audio signals. The mobile station also includes an echo canceller, and may include one or more switching circuits to bypass the echo canceller when the mobile station communicates with the hearing aid via the short-range wireless network.
  • US 2008/0165994 relates to a hearing aid device enabled with a Bluetooth transceiver, allowing the user to communicate with linked, Bluetooth enabled mobile radio or telephone. Mobile phone receives a communication, encodes it in accordance with the Bluetooth protocol and links with the transceiver, which is housed with the hearing aid.
  • US 2014/0211972 relates to a method of fitting a hearing aid connected to a mobile terminal. The method may include acquiring location information of a location of the mobile terminal, transmitting the location information to a server, receiving, from the server, information about at least one recommended fitting parameter model adapted to hearing conditions of the location and hearing characteristics of a user of the hearing aid, and displaying the information about the at least one recommended fitting parameter model. The method may also include receiving a fitting parameter model selected by the user from among the at least one recommended fitting parameter model, and controlling the hearing aid to function according to the received fitting parameter model.
  • US2007/0230711 shows a system of a fitting device and several hearing aids which can be fitted by the fitting device. An identification procedure which is executed before a wireless link is established between the fitting device and the hearing aids makes sure that only a desired hearing aid is fitted.
    • SUMMARY
  • There is a need for a hearing device with reduced risk of a third party accessing any part of the hearing device. In particular there is a need for a hearing device that is protected against unauthorized modification of the hearing device and operation thereof.
  • Disclosed is a hearing device comprising a processing unit configured to compensate for hearing loss of a user of the hearing device, a memory, and an interface. The processing unit/hearing device may be configured to receive a mode request via the interface; authenticate the mode request; and place the hearing device into the requested mode if authentication of the mode request succeeds.
  • Also disclosed is a method for configuration of a hearing device comprising a processing unit configured to compensate for hearing loss of a user of the hearing device, a memory, and an interface. The method may comprise receiving a mode request via the interface; authenticating the mode request; and placing the hearing device into the requested mode if authentication of the mode request succeeds.
  • The method and hearing device as disclosed provide secure configuration of the hearing device, such as secure access to the memory of the hearing device. It is an advantage of the present disclosure that the hearing device can only be configured or updated by authorized parties. The disclosed hearing device thus has the advantage of detecting and preventing any modification by unauthorized parties. The hearing device disclosed herein is advantageously protected against attacks such as spoofing attacks, man-in-the-middle attacks, and/or replay-attacks.
  • The method and apparatus as disclosed provides a secure configuration and/or update of a hearing device.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • The above and other features and advantages will become readily apparent to those skilled in the art by the following detailed description of exemplary embodiments thereof with reference to the attached drawings, in which:
    • Fig. 1
    schematically illustrates an exemplary architecture according to this disclosure,
    Fig. 2
    schematically illustrates an exemplary hearing device,
    Fig. 3
    schematically illustrates an exemplary signalling diagram,
    Fig. 4
    schematically illustrates an exemplary signalling diagram, and
    Fig. 5
    schematically illustrates a flowchart of an exemplary method
    DETAILED DESCRIPTION
  • Various embodiments are described hereinafter with reference to the figures. Like reference numerals refer to like elements throughout. Like elements will, thus, not be described in detail with respect to the description of each figure. It should also be noted that the figures are only intended to facilitate the description of the embodiments. They are not intended as an exhaustive description of the claimed invention or as a limitation on the scope of the claimed invention. In addition, an illustrated embodiment needs not have all the aspects or advantages shown. An aspect or an advantage described in conjunction with a particular embodiment is not necessarily limited to that embodiment and can be practiced in any other embodiments even if not so illustrated, or if not so explicitly described.
  • Throughout, the same reference numerals are used for identical or corresponding parts.
  • It is an object of the present disclosure to provide a hearing device, and a method which seeks to mitigate, alleviate, or eliminate one or more of the above-identified deficiencies in the art and disadvantages singly or in any combination.
  • The present disclosure provides improved security of a hearing device. Security comprise assessing threats, vulnerabilities and attacks and developing appropriate safeguards and countermeasures to protect against threats and attacks.
  • The hearing device comprises a processing unit. The processing unit is configured to compensate for hearing loss or other hearing disability of a user of the hearing device.
  • The hearing device may be operated in one or more modes. The one or more modes may include a first mode and/or a second mode. The one or more modes may include a third mode and/or a fourth mode. The one or more modes may include a default mode.
  • The first mode may be a service mode. A service mode may be characterized in that a firmware part of the memory can be written in the service mode. The firmware part of the memory may be write-protected in at least one other mode of the hearing device.
  • The second mode may be a fitting mode. A fitting mode may be characterized in that a fitting part of the memory can be read and/or written in the fitting mode. A fitting mode may be characterized in that a firmware part of the memory is write-protected. The fitting part of the memory may comprise fitting data, such as hearing loss parameters, compressor parameters, filter coefficients, and/or gain coefficients.
  • The third mode may be a debug mode. A debug mode may be characterized in that a debug part of the memory can be read and/or written in the fitting mode. A debug mode may be characterized in that a fitting part of the memory can be read and/or written in the debug mode. A debug mode may be characterized in that a firmware part of the memory can be read and/or written in the debug mode. The debug part of the memory may be read-protected and/or write-protected in at least one other mode of the hearing device, such as in the default mode and/or the fitting mode.
  • The default mode may be a boot mode. A boot mode may be characterized in that the hearing device is operated according to operating parameters set during booting and/or in response to user input, e.g. program selection, volume up/down, etc. The default mode may be characterized in that the firmware part (or at least a part thereof) and/or the fitting part of the memory (or at least a part thereof) is write-protected and/or read-protected in the default mode. The default mode may be characterized in that the debug part of the memory (or at least a part thereof) is read-protected and/or write-protected in the default mode.
  • The hearing device comprises a memory. The memory may be embedded in the processing unit and/or be employed in a memory unit connected to the processing unit. The memory may comprise a first memory part. The first memory part may be a firmware part of the memory. The firmware part of the memory may be configured to be accessed in the service mode e.g. to be written to and/or read from in the service mode. The firmware part of the memory may additionally be configured to be accessed in the debug mode. The memory may comprise a second memory part. The second memory part may be a fitting part of the memory. The fitting part of the memory may be configured to be accessed in the fitting mode e.g. to be written to and/or read from in the fitting mode. The fitting part of the memory may additionally be configured to be accessed in the service mode and/or the debug mode. The memory may comprise a third memory part. The third memory part may be a debug part of the memory. The debug part of the memory may be configured to be accessed in the debug mode e.g. to be written to or read from in the debug mode.
  • The hearing device may comprise an interface configured for enabling communication between the hearing device and another device. The interface may comprise a wireless transceiver, e.g. configured for wireless communication at frequencies in the range from 2.4 to 2.5 GHz. The wireless transceiver may be a Bluetooth Low Energy transceiver. The interface may comprise a connector for forming a wired connection to the hearing device. The interface may form a connection to one or more other devices such as a tablet and/or a smart phone and/or a fitting device.
  • The processing unit/hearing device is configured to receive a mode request via the interface. The mode request may comprise a mode identifier indicative of the requested mode. The mode request may be a service mode request, e.g. the mode identifier is indicative of a first/service mode. The mode request may be a fitting mode request, e.g. the mode identifier is indicative of a second/fitting mode. The mode request may be a debug mode request, e.g. the mode identifier is indicative of a third/debug mode. Accordingly, the mode request may be one of a service mode request, a fitting mode request, and a debug mode request.
  • The mode request may comprise a sender identifier indicative of the mode request sender. The mode request may comprise a certificate, such as a digital signature, for certifying the mode request sender. This allows for direct authentication of the mode request. The mode request may comprise a session identifier, e.g. an encrypted session identifier.
  • The hearing device may be paired with a sender of the mode request prior to receipt of the mode request. In the pairing, the hearing device and the sending/client device device may have exchanged one or more of hearing device identifier, sender identifier, session identifier, etc.
  • The processing unit/hearing device is configured to authenticate the mode request and to place the hearing device into the requested mode if authentication of the mode request succeeds. The processing unit may be configured to place the hearing device into a mode different from the requested mode, such as the default mode, if authentication of the mode request fails.
  • The hearing device disclosed herein has the advantage of verifying integrity of received mode requests and/or senders thereof, detecting any alteration and disregard altered mode requested. The hearing device disclosed herein may advantageously allow access to specific parts of the memory only with authenticated parties, such as an authenticated fitting device, an authenticated accessory device, an authenticated external device and/or an authenticated server.
  • The processing unit may be configured to authenticate the mode request by authenticating the sender of the mode request.
  • The processing unit/hearing device may be configured to authenticate the mode request by verifying integrity of a digital signature of the mode request.
    The processing unit may be configured to authenticate the mode request by verifying integrity of the mode request. The mode request may comprise a message authentication code. To verify integrity of the mode request may comprise to verify the message authentication code, e.g. with a session identifier stored in the hearing device. The mode request may comprise a digital signature or certificate. To verify integrity of the mode request may comprise verifying the digital signature or certificate.
  • The processing unit/hearing device may be configured to send a mode response. For example, to place the hearing device into the requested mode if authentication of the mode request succeeds may comprise sending a mode response. The processing unit/hearing device may be configured to generate and/or send a mode response in response to the mode request. The processing unit may be configured to obtain and/or store a session identifier (may also be denoted session key) and include the session identifier and/or an encrypted version thereof in the mode response. To obtain the session identifier may comprise to generate the session identifier, e.g. as a random or pseudo-random number. Thus the hearing device and/or the processing unit may comprise a number generator, e.g. configured to generate a random or pseudo-random number as a session identifier. By using a unique session identifier or session identifier from a large number of available session identifiers, the processing power requirements in the hearing device may be reduced. Further, simple encryption is facilitated and replay-attacks are prevented.
  • The processing unit may be configured to encrypt the session identifier, optionally based on a hearing device key. The session identitier may be a session key in the form of a symmetric key. A symmetric session key may provide a lightweight processing of the security algorithms on the processing unit, such as lightweight encryption, lightweight decryption, lightweight integrity protection, etc. The hearing device key may be a symmetric key or a public key of a private-public key pair. The hearing device key may be stored in a permanent memory of the hearing device, e.g. during manufacture or during a fitting session.
  • The mode response may comprise the encrypted session key. The session response may comprise a hearing device identifier and/or the session key. Thus, the processing unit may be configured to send a hearing device identifier and/or the session key in the mode response. A mode response comprising a hearing device identifier may enable the sender of the mode request to obtain the hearing device key, either from a database or by requesting the hearing device key from the manufacturer, which in turn enables the sender of the mode request to decrypt an encrypted session identifier/key and use the session identifier when sending data to the hearing device.
  • The mode request may be received in a session. The processing unit/hearing devic may be configured to terminate the session if authentication of the mode request fails.
  • The mode request may comprise a signature, and to authenticate the mode request may comprise to verify the signature of the mode request.
  • The processing unit may be configured to obtain, e.g. generate a session identifier, e.g. upon receipt of the mode request or when the hearing device is in a service mode, a fitting mode, or a debug mode. The processing unit may be configured to encrypt the session identifier, e.g. with a hearing device key. The processing unit may be configured to transmit the session identifier or the encrypted session identifier via the interface, e.g. as a part of the mode response or a session setup message. The processing unit may be configured to store the session identifier in the hearing device.
  • The processing unit may be configured to receive data via the interface, e.g. when the hearing device is in a mode, e.g. the service mode, the fitting mode and/or the debug mode. The processing unit may be configured to authenticate the received data, e.g. when the hearing device is in one or more modes, e.g. the service mode, the fitting mode and/or the debug mode. The processing unit may be configured to store hearing device data in a part of the memory based on the received data if authentication of the data succeeds. For example, when the hearing device is in a service mode, the processing unit may store hearing device data, such as e.g. firmware, based on the received data in the firmware part of the memory. In an exemplary hearing device, the processing unit may, when the hearing device is in a fitting mode, store hearing device data (fitting data) based on the received data in the fitting part of the memory. In an exemplary hearing device, the processing unit may, when the hearing device is in a debug mode, store hearing device data (debug data) based on the received data in the debug part of the memory.
  • The processing unit may be configured to authenticate the received data by verifying integrity of the received data. Verifying integrity of the received data may be based on the session identifier stored in the hearing device. The received data may comprise a message authentication code. To verify integrity of the received data may comprise to verify the message authentication code, e.g. with the stored session identifier. The received data may comprise a digital signature. To verify integrity of the received data may comprise verifying the digital signature.
  • The data may comprise a session identifier, and to authenticate the data may comprise to compare the session identifier of received data with the session identifier stored in the hearing device.
  • The data may be received in a session. The processing unit may be configured to terminate the session if authentication of the received data fails, e.g. the processing unit may be configured to terminate the session if integrity of the received data is corrupted, i.e. verification of the integrity fails. The processing unit may be configured to place the hearing device in another mode, such as the default mode, if authentication of the received data fails,
  • The hearing device/processing unit may be configured to receive a mode exit request and to place the hearing device in another mode, such as the default mode, e.g. if an authentication of the mode exit request succeeds. For example, a client device may send a mode exit request when fitting or transfer of firmware is done.
  • The disclosed method provides secure configuration and/or update of a hearing device. The method may comprise placing the hearing device into a default mode if authentication of the mode request fails. The method may comprise determining if operation in default mode fails, and switching to service mode if operating the hearing device in default mode fails,
  • In the method, authenticating the mode request may comprise authenticating the sender of the mode request.
  • In the method, the mode request may comprise a digital signature, and authenticating the mode request may comprise verifying the digital signature.
  • In the method, authenticating the mode request may comprise verifying integrity of the mode request.
  • The method may comprise receiving data via the interface, e.g. when the hearing device is in one or more modes, e.g. the service mode, the fitting mode and/or the debug mode. The method may comprise authenticating the received data, e.g. when the hearing device is in one or more modes, e.g. the service mode, the fitting mode and/or the debug mode. The method may comprise storing hearing device data in a part of the memory based on the received data if authentication of the data succeeds. For example, when the hearing device is in a service mode, the method may comprise storing hearing device data (firmware) based on the received data in the firmware part of the memory. In an exemplary method, the method may, when the hearing device is in a fitting mode, comprise storing hearing device data (fitting data) based on the received data in the fitting part of the memory. In an exemplary method, the method may, when the hearing device is in a debug mode, comprise storing hearing device data (debug data) based on the received data in the debug part of the memory. The method may comprise placing the hearing device in another mode, such as the default mode, if authenticating the received data fails.
  • The processing unit may be configured to operate the hearing device in default mode, and switch to service mode if operating the hearing device in default mode fails,
  • Fig. 1 schematically illustrates an exemplary architecture 100 according to this disclosure. The architecture 100 comprises a hearing device 101, a client device 110, and a server device 111. The client device 110 may comprise a computing device acting as a client, a fitting device, a handheld device, a relay, a tablet, a personal computer, a mobile phone, and/or USB dongle plugged into a personal computer. The server device 111 may comprise a computing device configured to act as a server, i.e. to serve requests from the client device 110 and/or from the hearing device 101. The server device 111 may be controlled by the hearing device manufacturer.
  • The hearing device 101 may be connected to the client device 110 via a communication link 113, such as a bidirectional communication link and/or a wireless communication link. The wireless communication link may be carried over a short-range communication system, such as Bluetooth, Bluetooth low energy, IEEE 802.11, Zigbee. The hearing device 101 may be connected to the client device 110 over a network.
  • The hearing device 101 may be connected to the server device 111 via a communication link 114 over a network 114a, such as a bidirectional and/or wireless communication link over a network.
  • The client device 110 may be connected to the server device 111 via a communication link 112 over a network 112a, such as a bidirectional and/or wireless communication link over a network. In an embodiment, the network 112a may be the Internet.
  • Fig. 2 schematically illustrates an exemplary hearing device 101. The exemplary hearing device 101 comprises a processing unit 202 configured to compensate for hearing loss of a user of the hearing device 101. The exemplary hearing device 101 comprises a memory and an interface 204. The memory is in Fig. 1 illustrated in the form of a memory unit 203 external to the processing unit 202. The memory may in other exemplary hearing devices be at least partly embedded in the processing unit 202 and/or in the memory unit 203.
  • The processing unit 202 is configured to receive a mode request via the interface 204. Hence, the processing unit 202 comprises a receive/send unit 205 configured to send and/or receive via the interface 204. The receive/send unit 205 is configured to send and receive via the interface 204 to/from an external device, such as a server device, a client device, a fitting device, an accessory, a relay device, a smart phone. The processing unit 202 is configured to authenticate the mode request. Hence, the processing unit 202 may comprise an authenticator 206 configured to authenticate the mode request. The processing unit 202 is configured to place the hearing device into the requested mode, such as a service mode, a fitting mode or debug mode, if authentication of the mode request succeeds. Hence the processing unit 202 comprises a mode controller configured to place the hearing device into the requested mode, e.g. based on an output from the authenticator 206. In the hearing aid in Fig. 2, the processing unit 202 is configured to place the hearing device into a default mode if authentication of the mode request fails, the default mode comprising booting the hearing device and operating the hearing device according to operating parameters set during booting. In an embodiment, the operating parameters set during booting may be stored in a non-volatile part of the memory unit 203. In an embodiment, the operating parameters set during booting may comprise a default setting enabling the hearing aid to function according to a default setting programmed during production of the hearing device.
  • The hearing device comprises a microphone 210 for receiving a sound signal and converting it into converted sound signal. The converted sound signal may be an electrical and digital version of the sound signal. The processing unit is configured to receive and process the converted sound signal into a processed sound signal according to a hearing loss of a user of the hearing device. The processed sound signal may be compressed and/or amplified or the like. The hearing device further comprises an output transducer/loudspeaker, known as a receiver 212. The receiver 212 is configured to receive the processed sound signal and convert it to an output sound signal for reception by an eardrum of the user.
  • Fig. 3 shows an exemplary signalling diagram 300 between a hearing device 101, and a client device 110. In an embodiment, the client device may be in the form of a fitting device. The hearing device 101 receives a fitting mode request 301 via the interface 204 from the client device 110, the mode request comprising a digital signature and a mode identifier. The digital signature may be a signature according to the Digital Signature Standard or other suitable standards, such as RSA. for digital signatures known in the art.. The hearing device 101 authenticates the mode request by verifying the digital signature. In the illustrated signalling diagram 300, the authentication succeeds, and the processing unit places the hearing device in the fitting mode including sending a fitting mode response 302 to the client device via the interface 204. In the fitting mode of hearing device 101, a firmware part of the memory is write-protected and a fitting mode part of the memory is write-enabled.
  • Upon receipt of the fitting mode response 302, the client device 110 sends data 303 to the hearing device 101 which receives the data and authenticates the received data 303, e.g. by use of digital signature or a session identifier/key as described earlier. If authentication of data 303 succeeds, the processing unit 202 derives hearing device data (fitting data) from the data 303 and stores hearing device data (fitting data) in a fitting part of the memory. If authentication of data 303 fails, the processing unit 202 places the hearing device in default mode.
  • When the fitting data have been transferred, the client device may send a mode exit request and the hearing device is configured to optionally authenticate the mode exit request and to place the hearing device in the default mode, optionally if authentication of the mode exit request succeeds.
  • In another embodiment, the client device may be in the form of a smart phone or a tablet and may comprise software configured to provide the functionality of a fitting device.
  • Fig. 4 shows an exemplary signalling diagram 300' where a client device 110 is used for updating firmware of the hearing device 101, and a client device 110 in the form of a fitting device. The hearing device 101 receives a service mode request 304 via the interface 204 from the client device 110. The hearing device 101 authenticates the service mode request. In the illustrated signalling diagram 300', the authentication succeeds, and the processing unit 202 places the hearing device in the service mode including sending a service mode response 305 to the client device via the interface 204. In the service mode of hearing device 101, the processing unit 202 is allowed to write to a firmware part of the memory.
  • Upon receipt of the service mode response 305, the client device 110 sends data 306 to the hearing device 101 which receives the data and authenticates the received data 306, e.g. by use of digital signature or a session identifier/key as described earlier. Before sending data to the hearing device, the client device 110 may correspond with a server device 111 as illustrated with dotted arrows 307, 308, e.g. in order to determine the data 306 to be sent to the hearing device. If authentication of data 306 succeeds, the processing unit 202 derives hearing device data (firmware data) from the data 306 and stores hearing device data (firmware data) in a firmware part of the memory. If authentication of data 306 fails, the processing unit 202 may place the hearing device in default mode and/or terminate the session.
  • When the firmware has been transferred, the client device may send a mode exit request and the hearing device is configured to optionally authenticate the mode exit request and place the hearing device in the default mode, optionally if authentication of the mode exit request succeeds.
  • Fig. 5 illustrates an exemplary flowchart of a method 400, e.g. for configuration of a hearing device, such as hearing device 101, comprising a processing unit configured to compensate for hearing loss of a user of the hearing device, a memory, and an interface. The method 400 comprises receiving 401 a mode request via the interface and authenticating 402 the mode request. Authenticating 402 the mode request comprises authenticating the sender of the mode request and verifying integrity of the mode request. If authentication of the mode request succeeds 404, the method proceeds to placing 403 the hearing device into the requested mode. If authentication of the mode request fails 404, the method optionally proceeds to placing 405 the hearing device into a default mode. After placing the hearing device in the requested mode, the method optionally proceeds to receiving 408 data via the interface, authenticating 410 the received data; and storing 412 hearing device data in a part of the memory corresponding to the requested mode and based on the received data if authentication of the data succeeds. If authenticating 410 the received data fails, the method may proceed to placing 405 the hearing device in default mode or another mode and/or terminating the session. Upon storing, the method 400 optionally comprises to evaluate 414 whether a mode exit request has been received. If so, the method proceeds to placing 405 the hearing device in default mode. If not, the method proceeds to receiving 408 data.
  • The use of the terms "first", "second", "third" and "fourth", etc. does not imply any particular order, but are included to identify individual elements. Moreover, the use of the terms first, second, etc. does not denote any order or importance, but rather the terms first, second, etc. are used to distinguish one element from another. Note that the words first and second are used here and elsewhere for labelling purposes only and are not intended to denote any specific spatial or temporal ordering. Furthermore, the labelling of a first element does not imply the presence of a second element and vice versa.
  • Although particular features have been shown and described, it will be understood that they are not intended to limit the claimed invention.
    • LIST OF REFERENCES
    • 100 architecture
    • 101 hearing device
    • 111 server device
    • 202 processing unit
    • 203 memory unit
    • 204 interface
    • 205 receive/send unit
    • 206 authenticator
    • 207 mode controller
    • 210 microphone
    • 212 receiver
    • 300, 300' signalling diagram
    • 301 fitting mode request
    • 302 fitting mode response
    • 303 data
    • 304 service mode request
    • 305 service mode response
    • 306 data
    • 307 firmware request
    • 308 firmware response
    • 400 method for configuration of a hearing device
    • 401 receiving mode request
    • 402 authenticating mode request
    • 403 placing hearing device in requested mode
    • 404 authentication ok?
    • 405 placing hearing device in default mode
    • 408 receiving data via the interface
    • 410 authenticating the received data
    • 412 storing hearing device data
    • 414 evaluating if mode exit request has been received

Claims (17)

  1. A hearing device (101) comprising
    - a processing unit (202) configured to compensate for hearing loss of a user of the hearing device;
    - a memory (203); and
    - an interface (204),
    wherein the processing unit (202) is configured to:
    - receive a mode request via the interface, wherein the mode request is one or more of a service mode request for a service mode, a fitting mode request; and a debug mode request, wherein the service mode is characterized in that a firmware part of the memory (203) is writable;
    - authenticate the mode request; and
    - place the hearing device into the requested mode if authentication of the mode request succeeds.
  2. A hearing device according to claim 1, wherein the processing unit is configured to place the hearing device into a default mode if authentication of the mode request fails.
  3. A hearing device according to claim 2, wherein the default mode comprises booting the hearing device and operating the hearing device according to operating parameters set during booting.
  4. A hearing device according to any of claims 1-3, wherein the processing unit is configured to authenticate the mode request by authenticating the sender of the mode request.
  5. A hearing device according to any of the preceding claims, wherein the processing unit is configured to authenticate the mode request by verifying integrity of the mode request.
  6. A hearing device according to any of the preceding claims, wherein to place the hearing device into the requested mode if authentication of the mode request succeeds comprises sending a mode response.
  7. A hearing device according to any of the preceding claims, wherein the mode request is received in a session and the processing unit is configured to terminate the session if authentication of the mode request fails.
  8. A hearing device according to any of the preceding claims, wherein the mode request comprises a signature, and wherein to authenticate the mode request comprises to verify the signature of the mode request.
  9. A hearing device according to any of the preceding claims, wherein when the hearing device is in a service mode, the processing unit is configured to generate a session identifier, to transmit the session identifier via the interface and to store the session identifier in the hearing device.
  10. A hearing device according to any of the preceding claims, wherein when the hearing device is in a service mode, the processing unit is configured to receive data via the interface, wherein the processing unit is configured to authenticate the received data and store hearing device data in a part of the memory based on the received data if authentication of the data succeeds.
  11. A hearing device according to claim 10 as dependent on claim 9, wherein the data comprises a session identifier, and wherein to authenticate the data comprises to compare the received session identifier with the session identifier stored in the hearing device.
  12. A hearing device according to claim 10, wherein the data is received in a session and the processing unit is configured to terminate the session if authentication of the received data fails.
  13. Method (400) for configuration of a hearing device comprising a processing unit configured to compensate for hearing loss of a user of the hearing device, a memory, and an interface, the method comprising:
    receiving (401) a mode request via the interface, wherein the mode request is one or more of a service mode request for updating firmware data, a fitting mode request; and
    a debug mode request;
    - authenticating (402) the mode request; and
    - placing (403) the hearing device into the requested mode if authentication of the mode request succeeds.
  14. Method according to claim 13, the method comprising placing (405) the hearing device into a default mode if authentication of the mode request fails.
  15. Method according to any of claims 13-14, wherein authenticating the mode request comprises authenticating the sender of the mode request.
  16. Method according to any of claims 13-15, wherein authenticating the mode request comprises verifying integrity of the mode request.
  17. Method according to any of claims 13-16, wherein when the hearing device is in a service mode, the method comprises:
    - receiving (408) data via the interface,
    - authenticating (410) the received data; and
    - storing (412) hearing device data in a part of the memory based on the received data if authentication of the data succeeds.
EP14197819.7A 2014-12-12 2014-12-12 Hearing device configured to authenticate a mode request and related method Active EP3032845B1 (en)

Priority Applications (9)

Application Number Priority Date Filing Date Title
EP20155342.7A EP3668120B1 (en) 2014-12-12 2014-12-12 Hearing device with service mode and related method
EP24184373.9A EP4440158A2 (en) 2014-12-12 2014-12-12 Hearing device with service mode and related method
EP14197819.7A EP3032845B1 (en) 2014-12-12 2014-12-12 Hearing device configured to authenticate a mode request and related method
DK14197819.7T DK3032845T3 (en) 2014-12-12 2014-12-12 HEARING DEVICE WITH SERVICE MODE AND RELATED METHOD
US14/573,233 US10785578B2 (en) 2014-12-12 2014-12-17 Hearing device with service mode and related method
JP2015232427A JP6752013B2 (en) 2014-12-12 2015-11-27 Hearing devices with service modes and related methods
CN201510924567.2A CN105704114B (en) 2014-12-12 2015-12-14 Hearing device with service mode and related method
US16/682,791 US11206496B2 (en) 2014-12-12 2019-11-13 Hearing device with service mode and related method
US17/344,955 US11546699B2 (en) 2014-12-12 2021-06-11 Hearing device with service mode and related method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
EP14197819.7A EP3032845B1 (en) 2014-12-12 2014-12-12 Hearing device configured to authenticate a mode request and related method

Related Child Applications (2)

Application Number Title Priority Date Filing Date
EP24184373.9A Division EP4440158A2 (en) 2014-12-12 2014-12-12 Hearing device with service mode and related method
EP20155342.7A Division EP3668120B1 (en) 2014-12-12 2014-12-12 Hearing device with service mode and related method

Publications (2)

Publication Number Publication Date
EP3032845A1 EP3032845A1 (en) 2016-06-15
EP3032845B1 true EP3032845B1 (en) 2020-02-05

Family

ID=52016530

Family Applications (3)

Application Number Title Priority Date Filing Date
EP20155342.7A Active EP3668120B1 (en) 2014-12-12 2014-12-12 Hearing device with service mode and related method
EP24184373.9A Pending EP4440158A2 (en) 2014-12-12 2014-12-12 Hearing device with service mode and related method
EP14197819.7A Active EP3032845B1 (en) 2014-12-12 2014-12-12 Hearing device configured to authenticate a mode request and related method

Family Applications Before (2)

Application Number Title Priority Date Filing Date
EP20155342.7A Active EP3668120B1 (en) 2014-12-12 2014-12-12 Hearing device with service mode and related method
EP24184373.9A Pending EP4440158A2 (en) 2014-12-12 2014-12-12 Hearing device with service mode and related method

Country Status (2)

Country Link
EP (3) EP3668120B1 (en)
DK (1) DK3032845T3 (en)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10785578B2 (en) 2014-12-12 2020-09-22 Gn Hearing A/S Hearing device with service mode and related method
DK201570433A1 (en) 2015-07-02 2017-01-30 Gn Hearing As Hearing device with model control and associated methods
US10104522B2 (en) 2015-07-02 2018-10-16 Gn Hearing A/S Hearing device and method of hearing device communication
US9877123B2 (en) 2015-07-02 2018-01-23 Gn Hearing A/S Method of manufacturing a hearing device and hearing device with certificate
US10158955B2 (en) 2015-07-02 2018-12-18 Gn Hearing A/S Rights management in a hearing device
US10158953B2 (en) 2015-07-02 2018-12-18 Gn Hearing A/S Hearing device and method of updating a hearing device
DK3113513T3 (en) * 2015-07-02 2020-07-20 Gn Hearing As ACCESS RIGHT CONTROL IN A HEARING AID
US10318720B2 (en) 2015-07-02 2019-06-11 Gn Hearing A/S Hearing device with communication logging and related method
EP3913930A1 (en) * 2016-12-08 2021-11-24 GN Hearing A/S Hearing devices, user accessory devices and method for updating a hearing device configuration
WO2023242391A1 (en) * 2022-06-17 2023-12-21 3Shape A/S An intraoral scanning device configured to authenticate mode request
WO2023242390A1 (en) * 2022-06-17 2023-12-21 3Shape A/S An intraoral scanning device configured to authenticate mode request

Citations (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5083312A (en) 1989-08-01 1992-01-21 Argosy Electronics, Inc. Programmable multichannel hearing aid with adaptive filter
WO1997001314A1 (en) 1995-06-28 1997-01-16 Cochlear Limited Apparatus for and method of controlling speech processors and for providing private data input via the same
US6556686B1 (en) 1999-04-14 2003-04-29 Siemens Audiologische Technik Gmbh Programmable hearing aid device and method for operating a programmable hearing aid device
US20050069161A1 (en) 2003-09-30 2005-03-31 Kaltenbach Matt Andrew Bluetooth enabled hearing aid
US20070230711A1 (en) * 2006-03-31 2007-10-04 Phonak Ag Method and system for adjusting a hearing device
US20080165994A1 (en) 2007-01-10 2008-07-10 Magnadyne Corporation Bluetooth enabled hearing aid
US20100016922A1 (en) 2001-07-06 2010-01-21 Cochlear Limited Configuration of implanted devices
US20110188684A1 (en) 2008-09-26 2011-08-04 Phonak Ag Wireless updating of hearing devices
US8302159B2 (en) 2004-03-30 2012-10-30 Semiconductor Components Industries, Llc Method and system for protecting content in a programmable system
US8437860B1 (en) * 2008-10-03 2013-05-07 Advanced Bionics, Llc Hearing assistance system
US20140211972A1 (en) 2013-01-31 2014-07-31 Samsung Electronics Co., Ltd. Method of fitting hearing aid connected to mobile terminal and mobile terminal performing the method
EP2804401A1 (en) 2013-05-15 2014-11-19 GN Resound A/S Hearing instrument with an authentication protocol
WO2015028050A1 (en) 2013-08-27 2015-03-05 Phonak Ag Method for controlling and/or configuring a user-specific hearing system via a communication network

Patent Citations (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5083312A (en) 1989-08-01 1992-01-21 Argosy Electronics, Inc. Programmable multichannel hearing aid with adaptive filter
WO1997001314A1 (en) 1995-06-28 1997-01-16 Cochlear Limited Apparatus for and method of controlling speech processors and for providing private data input via the same
US6556686B1 (en) 1999-04-14 2003-04-29 Siemens Audiologische Technik Gmbh Programmable hearing aid device and method for operating a programmable hearing aid device
US20100016922A1 (en) 2001-07-06 2010-01-21 Cochlear Limited Configuration of implanted devices
US20050069161A1 (en) 2003-09-30 2005-03-31 Kaltenbach Matt Andrew Bluetooth enabled hearing aid
US8302159B2 (en) 2004-03-30 2012-10-30 Semiconductor Components Industries, Llc Method and system for protecting content in a programmable system
US20070230711A1 (en) * 2006-03-31 2007-10-04 Phonak Ag Method and system for adjusting a hearing device
US20080165994A1 (en) 2007-01-10 2008-07-10 Magnadyne Corporation Bluetooth enabled hearing aid
US20110188684A1 (en) 2008-09-26 2011-08-04 Phonak Ag Wireless updating of hearing devices
US8437860B1 (en) * 2008-10-03 2013-05-07 Advanced Bionics, Llc Hearing assistance system
US20140211972A1 (en) 2013-01-31 2014-07-31 Samsung Electronics Co., Ltd. Method of fitting hearing aid connected to mobile terminal and mobile terminal performing the method
EP2804401A1 (en) 2013-05-15 2014-11-19 GN Resound A/S Hearing instrument with an authentication protocol
WO2015028050A1 (en) 2013-08-27 2015-03-05 Phonak Ag Method for controlling and/or configuring a user-specific hearing system via a communication network

Also Published As

Publication number Publication date
EP3668120A1 (en) 2020-06-17
DK3032845T3 (en) 2020-05-04
EP3668120B1 (en) 2024-08-14
EP3032845A1 (en) 2016-06-15
EP4440158A2 (en) 2024-10-02

Similar Documents

Publication Publication Date Title
EP3032845B1 (en) Hearing device configured to authenticate a mode request and related method
US10681082B2 (en) Hearing device with communication protection and related method
US10027474B2 (en) Hearing device with communication protection and related method
US11546699B2 (en) Hearing device with service mode and related method
US11284249B2 (en) Apparatus for secure hearing device communication and related method
CN107070659B (en) Authentication of base station and headset
EP3032858B1 (en) Apparatus for secure hearing device communication and related method
DK201470778A1 (en) Hearing device with service mode and related method
DK201470780A1 (en) Apparatus for secure hearing device communication and related method

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR

AX Request for extension of the european patent

Extension state: BA ME

RIN1 Information on inventor provided before grant (corrected)

Inventor name: PEDERSEN, BRIAN DAM

Inventor name: VENDELBO, ALLAN MUNK

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: REQUEST FOR EXAMINATION WAS MADE

17P Request for examination filed

Effective date: 20161214

RBV Designated contracting states (corrected)

Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: EXAMINATION IS IN PROGRESS

17Q First examination report despatched

Effective date: 20170818

RAP1 Party data changed (applicant data changed or rights of an application transferred)

Owner name: GN HEARING A/S

GRAP Despatch of communication of intention to grant a patent

Free format text: ORIGINAL CODE: EPIDOSNIGR1

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: GRANT OF PATENT IS INTENDED

INTG Intention to grant announced

Effective date: 20190724

GRAS Grant fee paid

Free format text: ORIGINAL CODE: EPIDOSNIGR3

GRAA (expected) grant

Free format text: ORIGINAL CODE: 0009210

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE PATENT HAS BEEN GRANTED

RIN1 Information on inventor provided before grant (corrected)

Inventor name: VENDELBO, ALLAN MUNK

Inventor name: PEDERSEN, BRIAN DAM

AK Designated contracting states

Kind code of ref document: B1

Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR

REG Reference to a national code

Ref country code: GB

Ref legal event code: FG4D

REG Reference to a national code

Ref country code: AT

Ref legal event code: REF

Ref document number: 1230755

Country of ref document: AT

Kind code of ref document: T

Effective date: 20200215

REG Reference to a national code

Ref country code: DE

Ref legal event code: R096

Ref document number: 602014060583

Country of ref document: DE

REG Reference to a national code

Ref country code: IE

Ref legal event code: FG4D

REG Reference to a national code

Ref country code: CH

Ref legal event code: EP

REG Reference to a national code

Ref country code: DK

Ref legal event code: T3

Effective date: 20200428

REG Reference to a national code

Ref country code: NL

Ref legal event code: MP

Effective date: 20200205

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: PT

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200628

Ref country code: RS

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: FI

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: NO

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200505

REG Reference to a national code

Ref country code: LT

Ref legal event code: MG4D

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: IS

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200605

Ref country code: BG

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200505

Ref country code: GR

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200506

Ref country code: LV

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: SE

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: HR

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: NL

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: LT

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: SK

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: RO

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: CZ

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: EE

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: SM

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: ES

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

REG Reference to a national code

Ref country code: DE

Ref legal event code: R026

Ref document number: 602014060583

Country of ref document: DE

PLBI Opposition filed

Free format text: ORIGINAL CODE: 0009260

REG Reference to a national code

Ref country code: AT

Ref legal event code: MK05

Ref document number: 1230755

Country of ref document: AT

Kind code of ref document: T

Effective date: 20200205

PLAX Notice of opposition and request to file observation + time limit sent

Free format text: ORIGINAL CODE: EPIDOSNOBS2

26 Opposition filed

Opponent name: OTICON A/S

Effective date: 20201104

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: IT

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: AT

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: SI

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: PL

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

PLBB Reply of patent proprietor to notice(s) of opposition received

Free format text: ORIGINAL CODE: EPIDOSNOBS3

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: MC

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

REG Reference to a national code

Ref country code: BE

Ref legal event code: MM

Effective date: 20201231

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: LU

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20201212

Ref country code: IE

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20201212

PGFP Annual fee paid to national office [announced via postgrant information from national office to epo]

Ref country code: GB

Payment date: 20211221

Year of fee payment: 8

Ref country code: DK

Payment date: 20211217

Year of fee payment: 8

Ref country code: FR

Payment date: 20211215

Year of fee payment: 8

PGFP Annual fee paid to national office [announced via postgrant information from national office to epo]

Ref country code: CH

Payment date: 20211217

Year of fee payment: 8

RDAF Communication despatched that patent is revoked

Free format text: ORIGINAL CODE: EPIDOSNREV1

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: TR

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: MT

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: CY

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

APBM Appeal reference recorded

Free format text: ORIGINAL CODE: EPIDOSNREFNO

APBP Date of receipt of notice of appeal recorded

Free format text: ORIGINAL CODE: EPIDOSNNOA2O

APAH Appeal reference modified

Free format text: ORIGINAL CODE: EPIDOSCREFNO

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: MK

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

Ref country code: AL

Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT

Effective date: 20200205

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: BE

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20201231

APBQ Date of receipt of statement of grounds of appeal recorded

Free format text: ORIGINAL CODE: EPIDOSNNOA3O

P01 Opt-out of the competence of the unified patent court (upc) registered

Effective date: 20230525

REG Reference to a national code

Ref country code: DK

Ref legal event code: EBP

Effective date: 20221231

REG Reference to a national code

Ref country code: CH

Ref legal event code: PL

GBPC Gb: european patent ceased through non-payment of renewal fee

Effective date: 20221212

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: LI

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20221231

Ref country code: GB

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20221212

Ref country code: CH

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20221231

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: FR

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20221231

APAH Appeal reference modified

Free format text: ORIGINAL CODE: EPIDOSCREFNO

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: DK

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20221231

PGFP Annual fee paid to national office [announced via postgrant information from national office to epo]

Ref country code: DE

Payment date: 20231218

Year of fee payment: 10