JP2021527904A - Universal personal identification signal - Google Patents

Abstract

The system includes a device, which is a short-range transceiver for capturing a temporary ID signal within a geographic area close to the device and detecting the temporary ID signal output from the user device. The temporary ID signal is associated with a short-range transceiver and a remote server associated with the temporary ID signal, a portion of the temporary ID signal, and a device that does not include the user's personal identification information. A wide area network interface that transmits a first identifier and receives a first response from a remote server that responds to a portion of the temporary ID signal and the first identifier associated with the device, and a first response. An output unit for providing an electronic approval signal to a first external unit connected to the device, the first external unit performing a first physical action in response to the first response. Includes an output unit, which is configured as such.

Description

Cross-reference to related applications This application is a non-provisional application of US Provisional Application No. 62/685292 filed June 15, 2018, which provisional application is incorporated by reference for all purposes.

The present invention generally relates to systems, methods and devices for first party identification, and more specifically to systems, methods and devices for universal IDs.

Currently, attempts by the present inventor to create what we call a universal identification (ID) signal for an individual are a framework or basis in which the individual bears the burden of carrying out the signal of transmitting the signal and detecting it by the device. Accompanied by a model. This task of creating personal signals or what the inventor calls transponders or beacons goes beyond the technical realm of the majority of users. This is the growth of universal identification signals for individuals (universal in the sense that they are only detectable or relevant by a particular manufacturer, social media or network provider or company). It is one of the obstacles.

One of the inventor's goals for universal identification signals is to allow users to identify and interact with devices or objects in different physical worlds by different manufacturers in a way that allows strict data management, security and privacy. It is to be. In contrast, the current user ID model follows a "silo" model. In a typical silo model, a user emits a specific ID signal through a specific application on a specific device such as a smartphone, and the specific ID signal is a home appliance maker, an automobile maker, an online social media provider, etc. It can only be detected by a specific entity. Therefore, the specific ID is not universal. For example, a Hilton user ID cannot be used for United Airlines flights. These silo systems do not provide sufficient mapping to the physical real-world environment and space that needs to be useful, secure and secure.
Some practices, which are currently of limited use, basically utilize one online ID or profile to interact with various types of devices. Other than security and data management / privacy concerns, such a single online personality does not truly reflect how an individual behaves or behaves in the real physical world. Human interactions with the physical environment have evolved over thousands of years, and we should not expect such behavior to be reflected in our online personality.

Other factors that have hindered the widespread adoption of universal or quasi-universal signaling technologies are generally motivations for manufacturers and businesses to create their own apps, portals, back-end infrastructures, etc. that may need to implement signal or beacon frameworks with their customers. The general lack of attachments can be mentioned. Again, this leads to a silo-type approach that is not worth the expense and maintenance for many entities. Returning to the first point that the technical burden of implementing universal signals is heavy for users, it is certainly possible to create sensing points in the environment, but in this framework users do their actions. Change, act differently, and require users to actually take additional actions. There is a need for a framework that does not require users to do this, and that the physical world or environment is inherently smarter and that minimizes the additional burden on the user to enable seamless and natural interaction. ..

One aspect disclosed is a method of enabling a universal identification signal, also called a universal personal transponder, by using a beacon device and a detector device that operates as a scanner or sensor. In various embodiments, the beacon is a smartphone, wearable device or other smart device carried by the user, transmitting what is called a temporary identifier. This temporary ID is usually enabled by an app installed on a smartphone or smart device. The temporary ID is then detected or detected by a detector device that can constantly scan the environment for the temporary ID and related data. In various embodiments, the detector can be incorporated into a wide variety of devices such as home appliances, electronics, public kiosks, controlled access points, and the like. As described below, the detector device resolves the temporary ID of the user of a particular beacon device. That is, the temporary ID matches a particular registered individual or user. Normally, a dedicated server operated by a (eg, universal) signal service provider receives at least a portion of a temporary ID and provides an access control list associated with a particular registered user associated with the temporary ID. Validate (ie determine the stored user data). Next, the first set of user data is transmitted from the dedicated server to the detector device, for example, to a controlled access point (for example, a door lock), a coffee machine, a kitchen appliance, a TV monitor, or the like. The detector device then operates on the basis of the first set of user data, enabling substantial and meaningful interaction with the beacon (ie, the user), such as unlocking, lighting of intelligence, user registration, etc. do. In some embodiments, the actions required by the beacon device are reduced or minimized, and most of the actions are performed by the detector device. That is, the user and the user's smartphone perform any positive action or action in order to make the door lock recognize the user's universal ID signal or to have a meaningful exchange with the door lock such as unlocking the door lock for the user. There is no need to do. In other embodiments, the beacon device may automatically perform some access functions with a dedicated server without any specific interaction by the user.

In another aspect of the invention, the system for implementing a universal personal transponder environment includes a beacon device that includes universal personal ID transponder software carried by the user. The user enters an environment or space having one or more scanner devices that constantly scan the universal ID signal emitted by the beacon by the transponder software. Detection of the universal ID signal is performed with minimal action or action required by the user or beacon device. The software module on the beacon allows interaction with almost any type of detector device that has the required transponder software and hardware connectivity components. The dedicated server has a database for storing various types of data and a plurality of software modules for implementing a universal personal transponder environment. In some cases, the server is a universal personal transponder service that operates the system for the benefit of the manufacturer or operator of the scanner or detector device, which may include a wide variety of devices ranging from users and door locks to electronic devices. Operated and owned by the provider (SAAS). In other cases, the server is operated and / or owned by the manufacturer of the detector device (eg, a controlled access point) and is still compatible with Universal ID signals from Universal ID software. In some embodiments, most of the processing and aggressive steps required to implement the environment query or monitor the beacon (eg, smartphone) for temporary ID data and communicate with the server. Performed by a scanner device that performs responsive physical actions. In various embodiments, the beacon takes some steps to ensure the security and authentication of the user via a biometric scanner, password, etc. In some embodiments, the burden of initiating a process and establishing a session is borne by a scanner device that senses a temporary ID.

According to one aspect of the invention, the method is described. One process involves scanning a temporary ID signal within a geographic area close to the first device using the first device's short-range transceiver, and the temporary ID signal output from the user device. Is to be detected using the short-range transceiver, and the temporary ID signal does not include the personal identification information of the user. One method uses the wide area network communication unit of the first device to associate at least a portion of the temporary ID signal with the remote server associated with the temporary ID signal and the first device. To transmit the first identifier and to receive a part of the temporary ID signal and the first response from the remote server in response to the first identifier using the wide area network communication unit. And include. One technique comprises providing an electronic approval signal to a first external unit coupled to the first device in response to the first response, wherein the first external unit responds to the first response. It is configured to perform the first physical action in response to.

According to another aspect of the invention, a system comprising a first device is disclosed. In one device, the first device is configured to capture a temporary ID signal within a geographic area close to the first device, as well as a temporary ID output from the user device. A short-range transceiver configured to detect a signal, the temporary ID signal including a short-range transceiver that does not include the user's personal identification information. In another device, the first device transmits at least a portion of the temporary ID signal and a first identifier associated with the first device to the remote server associated with the temporary ID signal. Includes a wide area network interface configured to receive a portion of the temporary ID signal and a first response from the remote server in response to the first identifier. In yet another device, the first device is an output unit configured to provide an electronic approval signal to a first external unit coupled to the first device in response to the first response. The first external unit includes an output unit, which is configured to perform a first physical action in response to the first response.

Refer to the accompanying drawings for a more complete understanding of the invention. By understanding that these drawings should not be considered as limitations within the scope of the invention, additional embodiments of the present invention and currently understood best embodiments may be added through the use of the accompanying drawings. It will be explained together with the details.
FIG. 1 is an overview flow diagram of processes according to various embodiments. FIG. 2 is a diagram of a physical environment showing a user with a beacon and a different type of device. FIG. 3 is a block diagram showing some components for various embodiments of the present invention. FIG. 4A is a flow diagram of a process in which a user connects to a universal ID signal framework implemented by a service provider, according to some embodiments. FIG. 4B is a flow diagram of the process of registering and initializing a device so that it can be a universal ID signal sensing device in the physical space of some embodiments. FIG. 5 is a flow chart of a process for passively detecting the presence of a universal signal according to some embodiments. FIG. 6 is a flow chart of a process of transmitting a universal ID signal between a beacon and a device and initiating an exchange between them, according to some embodiments. FIG. 7 is a flow chart of a process of operation that occurs on a device when the device is online, according to some embodiments. FIG. 8 is a flow chart of a process that occurs on a device when the device is offline, according to some embodiments. FIG. 9 is a block diagram showing an example of a computer system capable of carrying out various processes in some embodiments.

The following description provides a number of specific details to provide a complete understanding of the concepts presented. The concepts presented may be practiced without some or all of these particular details. In other cases, well-known process behavior is not described in detail so that the concepts being described are not unnecessarily obscured. Although some concepts are explained with specific embodiments, it will be understood that these embodiments are not intended to be limiting. Rather, as defined by the appended claims, it is intended to cover the spirit and scope of the embodiments described, as alternatives, modifications and equivalents may be included.

For example, methods and systems are described in the context of creating, using and authenticating universal personal ID signals and managing security. The following description provides a number of specific details to provide a complete understanding of the various embodiments. Certain exemplary embodiments may be implemented without some or all of these specific details. In other cases, well-known process operations are not described in detail so that the embodiments described are not unnecessarily obscured. Various techniques and mechanisms may be described in the singular for clarity.

Note that some embodiments include multiple iterations of the technique or multiple instantiations of the mechanism or technique, unless otherwise stated. For example, the system uses processors in various contexts. However, it will be appreciated that the system may use multiple processors while remaining within the scope of the described embodiments, unless otherwise stated. In addition, techniques and mechanisms may describe the connection between two entities. Note that a connection between two entities does not necessarily mean an unobstructed direct connection, as various other entities may exist between the two entities. For example, it will be understood that a processor can be connected to memory, but there can be various bridges and controllers between the processor and memory. Therefore, unless otherwise stated, the connection does not necessarily mean that it is an unobstructed direct connection.

Various embodiments describe providing universal identification and detection of physical presence in the form of a personal universal signal. This signal allows users to interact with the device in their environment without being limited to downloading vendor-specific apps, setting up vendor-specific accounts, or being limited to the manufacturer's branded siled ecosystem. It can be so. Such personal universal signals representing an individual allow devices and software to detect and query beacons that transmit signals for information that is relevant to the user and extended to the physical environment. It provides users with a more personalized, efficient and sometimes safe experience.

These embodiments reduce or minimize the user's workload, for example, allowing the user to approach the television and have the television detect the user (using the user's universal signal) anywhere in the world. Focus on enabling seamless interaction with the user's environment, such as being able to query the user's personal preferences and accounts. Then, the user can play a favorite TV program on the TV by using a voice command, for example, by saying "Play Game of Thrones" on the TV. The television can use the user's authenticated universal signal to access the user's personal preferences and account (eg, Netflix account), pick up the program and play it automatically. This can be done without the user having to use a specific app on the TV, set up a TV-specific account, log in to the account, or own the TV. In another example, the user can go close to the door and automatically unlock the door for the user when the user reaches a sufficiently close distance, and the user passively unlocks the door without having to do anything. You can go through. In such an example, the door senses the user's universal signal ID, verifies that the user has access to pass through the door, and unlocks the door for the user. Again, the user can do so without being tied to the door manufacturer or device or to the specific account or app required to play the role of such interaction. As such, various embodiments provide and enable universal signals for user-device interaction, and all parties benefit from seamless and natural forms of interaction in the physical world.

Various drawings describe methods and systems for realizing a smart environment in which the presence of the user is detected by the scanner. In one embodiment, the environment is a physical space in which the scanner detects the presence of the user via a universal identification signal emitted from the user's mobile device acting as a personal beacon. In this framework, the scanner does most of the back-end work, significantly reducing the workload for the beacon (eg, the user's phone or clock). In this regard, by removing the burden of implementing the universal ID signal, the environment or physical space that provides the framework can be described as intelligent or smart. The user only has to move around and behave normally. The device around the user in the space or environment in which the user is moving detects the user, and the smart space performs the communication and processing necessary to realize the advantages described herein.

FIG. 1 is an overview flow diagram of a process according to an embodiment. At step 102, the entity acts as a beacon and moves around in physical space. In the embodiments described, the entity may be human and the space can be any environment such as a home, office, retail store, lobby, public space, sidewalk, to name a few. In other words, the entity can be any object or object for which universal ID signals such as automobiles, bicycles or animals are useful. In step 104, an environment or space is created in which at least one scanner operates. Scanners can be manifested or implemented in many ways. In the embodiments described, a scanner (also referred to herein as a "device", a beacon that is usually a mobile device is referred to herein as a "beacon", "user" or "smartphone") is a home appliance, door lock, monitor. , Automobiles, kiosks, consumer electronics, etc. The type of device found in the environment or space naturally depends on the nature of the space. In step 104, the manufacturer or other entity that manufactures or operates or manages the scanner contracts and registers the scanner in its environment. Homes have different types of devices than retail stores or office lobbies. A common feature of most devices or scanners in the embodiments described is that they are generally deferred. They are not expected to move around in physical space, but they can also move around, and the concept of invention described herein still applies. At step 106, the device detects the beacon with a beacon signal and the initial interaction between the device and the beacon may be disclosed.

The initial interaction can be one of two types. One is called the passive interaction shown in step 108. Here, the device detects the presence of a beacon signal. The device does not have to identify the user. That is, the user remains anonymous. In another passive mode embodiment, the user can only be identified on a dedicated server normally operated by the service provider described below, not on the device itself. Generally, the back-end server is online, but in one embodiment, the server, i.e. the service provider, can be accessible without an internet connection or online (eg, via Ethernet, Zigbee, etc.). Passive scanning or detection of the presence of this beacon can be useful in various contexts such as counting the number of people in a room or space or whether someone has entered the space. In essence, the device wants to sense the users around it, but the individual has the right to make decisions about privacy. The user is the administrator of his identity. Devices that detect or sense the presence of a user can interact with or do something, but the nature of the interaction is passive because the behavior has no privacy concerns and does not require user authentication.

Another type of exchange that can be initiated is called a secured exchange with the user's authentication as shown in step 110. Here, a token is used for authentication and the device can request authentication. An example that illustrates this clearly is in the case of a door lock where the device detects the presence of the user and unlocks it only if the user has the authority to open the door. The user must prove to the device (door lock) that he or she has the authority to open the door. In one embodiment, tokens are used to prove that the user has authority. The beacon signal has at least one signed token from a backend server that authenticates the user to the device. Once this authentication is done, the device takes the relevant action and interacts with the user. It should be noted that in either the passive or secure exchange scenario, the device can interact with the user as shown in step 112, but the level or degree of interaction will of course vary.

FIG. 2 is a diagram of a physical environment showing different types of devices and users with beacons. Beacons can take many forms, most of which are internet connectable, the most common are smartphones and wearable devices such as watches or bracelets, with bioimplants and other forms of personal wearable equipment. Can include. As mentioned above, the user is most likely an individual, but may also be a moving object or an animal such as a pet. Devices that can take many forms have also been shown, but most have internet connectivity. Devices can be refrigerators, coffee makers, door locks, televisions, vending machines, kiosks, automobiles, home appliances such as monitors, electronic devices, office equipment. As described in more detail below, the device may have its own server included in the device (to perform universal signaling actions) or may not require a service provider server at all. In the embodiments described, the device accesses the service provider server to perform some or all of the operations required for the present invention. It also shows a service provider server, also known as a backend server. This server has many roles, but one of its main roles is to authenticate users and maintain access control lists for beacons and devices. This back-end server is maintained and operated by a universal ID signal service provider responsible for implementing the universal ID signal and smart environment of the present invention. Providers may turn their smartphones or wearables into personal beacons by providing software modules or apps that users install on their smartphones or wearables. Providers also provide device manufacturers and operators with software, hardware, or both. For example, if the provider can provide the manufacturer with a software development kit (SDK) or if the manufacturer or device operator requires detector / scan hardware such as a Bluetooth module or sensor to incorporate into those devices. Such hardware components can be provided. For example, the service provider may provide the sensor hardware to the lock manufacturer because the lock manufacturer may not have the technical means or desire to obtain the desired suitable sensor for the present invention. , You can tell how to install it. The device manufacturer determines the type of functionality required for those devices to interact with the user and the type of security and authentication required by the user. The manufacturer directs what data is needed from the beacon so that it can interact safely and with peace of mind with its users.

FIG. 3 is a block diagram showing three main components required to implement various embodiments of the present invention. The user behaves like Beacon 302. In almost all cases, a user is a single individual holding a device that acts as a beacon (in some cases, a "user" can be a group of people, such as a family member, a group of colleagues, a team, etc.). .. As mentioned above, the device can be a smartphone, bracelet, watch or any suitable wearable device. A service provider software module 304 that implements the personal universal ID signal of the present invention is installed on the beacon 302.

Device 306 functions as a detector or scanner in the environment. As described above, the device 306 can take the form of one of a large number of objects ranging from home appliances to electronic devices to public vending machines. Almost all have software modules 308 provided by the service provider and installed by either the provider or the manufacturer. In addition to the software module 308, the module 304 performs many of the operations described in the flow diagram below. In some embodiments, the device 306 is hardware such as a beacon 302, a dedicated server, a Bluetooth component or other hardware (eg, transmitter and receiver) required to connect to the other components in FIG. It may also have a wear component and 310. This hardware component may be provided by the service provider.

The service provider server 312 is operated and managed by a universal ID signal provider and includes a wide range of software modules such as the universal signal app 316 and data about beacons (users), devices, access control tables and the universal signal environment of the present invention. It may have at least one database 314 that stores a wide range of data needed for implementation.

FIG. 4A is a flow diagram of a process in which a user joins a universal ID signal framework implemented by a service provider according to an embodiment. Users (usually individuals) have decided to join the Universal ID Signaling Framework. In one context, employers may be required to join all employees to realize the benefits of universal signaling in an office or company campus environment. The first steps taken by the user are shown in step 401, where the user refers the service provider universal ID signal app (“app”) to his or her smartphone or wearable device (collectively “smartphone” for ease of explanation). Download to). In general, the app can run on the most widely used personal devices, platforms or operating systems such as Android, iOS, etc. running on phones, watches, bracelets, tablets, biochips and the like.

Once downloaded and installed, in step 403 the user enters at least some necessary basic information about himself. Depending on the device on which the app is installed, some information can be entered later. In one embodiment, a subset of the data entered by the user results in the creation of various identifiers. One of them is generically called a unique ID whose use is restricted because it is mainly used by the service provider, though not only by the service provider. This unique ID is not transmitted to devices such as devices, door locks and coffee machines. Another is a randomly generated identifier, referred to herein as a temporary or ephemeral ID. In one embodiment, this temporary ID is transmitted from an app on the user's smartphone. This temporary ID can be used, for example, for anonymous detection by the user's device. Another identifier created from user data is called a persistent ID, which can be characterized as stable and is an ID created for each user / device manufacturer pair. For example, a user has a different permanent ID in relation to a monitor and another permanent ID in relation to a coffee machine, car, door lock, etc. The manufacturer of each device obtains a unique persistent ID for each user (assuming one device from each manufacturer). This can be described as a permanent or permanent version of the temporary ID. In step 405, the data input and created in step 403 is stored on the service provider's or manufacturer's own dedicated server (in most cases, this is the service provider's server).

FIG. 4B is a flow diagram of a process of registering and initializing a device so that it can become a universal ID signal sensing device in physical space, according to an embodiment. At step 402, the service provider determines if the device has the necessary hardware to be the scanner needed to implement the invention (the device is entirely new to the spatial and universal identity framework). So the service provider knows that the device does not yet have a universal ID app). Service providers acquire a wide range of data and metadata about devices and items such as device names, categories, locations, identifiers, manufacturers, models, and time zones. Part of this data can be used to inform the user what the device is when the user encounters the device in the physical real world space and decide whether or not they want to interact with it. However, the question of the threshold determined in step 402 is whether the device has the appropriate hardware. If so, the service provider only needs to supply and install the universal ID signal software, which is in the form of a software development kit (SDK) in the embodiments described, as shown in step 404. If the device does not have the appropriate hardware for scanning (some small manufacturers may not have the means or technical skills to incorporate this hardware into their products), the service provider will do so. I will provide a. In this case, software modules and sensor hardware are installed on the device, which can be done by the device manufacturer or service provider.

At step 406, the information describing the device is stored in the database by the service provider. This data can be used to enable interaction between the device and the beacon. In some scenarios, the data for this interaction is stored on the device itself and the service provider does not play an active role. Some examples of stored data include device IDs, single keys, private / public key pairs, a set of commands and interactions, actions that a user or device can take, and templates that can be customized to different devices. .. In one embodiment, the template can be described as a predefined schema of attributes and metadata. In a simple example, a template for a door lock can have "lock" and "unlock", whereas a template for a car can have more options. At step 408, metadata describing the device and template is sent to the device and stored there.

At the end of FIG. 4B, the device can detect or detect the beacon when the beacon running the universal ID signal app is in the presence of the device. FIG. 5 is a flow chart of a passive detection process for the presence of a universal signal according to an embodiment. In step 502, the user (as mentioned above, the term "user" is synonymous with "beacon" and "smartphone") enters the environment or physical space in which the scanning device is located. What is important here is that the user manages his / her own personal universal ID signal. The user may or may not turn on the signal (by running the app downloaded in step 401). There are also measures that can be taken to ensure that the universal signal is from the right individual rather than from spoofing or other intentional or unintentional unauthorized persons. At step 502, the user turns on the signal via a smartphone or wearable device if another factor passes. For example, the signal is turned on only after the smartwatch detects the user's heart rate pattern or other biometric means to verify the identity of the user wearing the smartwatch or holding the smartphone. The signal is turned on only at this point. This prevents other individuals from impersonating the user by wearing their smartwatch or other wearable device. At step 504, the beacon in the environment transmits a temporary ID. At step 506, the device detects or senses the beacon and reads the temporary ID of the beacon. A non-persistent and minimal connection is first established between the beacon and the device. Universal ID signal apps do not exclusively bind devices (unlike other IoT devices). The connection is non-persistent, which avoids some typical scaling issues. Permanent bonding or constraints are not required in the implementation and framework of the personal universal ID signal of the present invention.

Steps 502 to 506 describe what can be called a subprocess for ambient sensing of the beacon by the device. It can be characterized as the simplest use case scenario for universal ID signals. Ambient sensing can be used in scenarios where users are simply distinguished, such as counting how many users are near a device or in a room. This ambient sensing can also be seen as a way for the user to potentially communicate with the device, if desired. If communication is possible and a dedicated server such as a service provider server is accessible, the process continues to step 508. In another embodiment, the dedicated server can be accessed via other communication means such as Bluetooth, Ethernet. At step 508, the service provider server knows private data about the user. The service provider server is done by taking a temporary ID and deciding it to be a real or real user (as mentioned above, before this step, the user is just an anonymous but distinguishable entity. rice field). At step 512, the backend verifies the permissions granted to the user by examining the access control list. At step 514, the backend sends user data based on the access control list to the device. That is, it only sends data to the device about the users that the device is allowed to see. The backend stores a matrix of permissions, policies, preferences, etc. for users and devices. In one embodiment, the backend uses a persistent ID of the user and the user specific to the pairing of the particular device, as described above. Returning to step 506, if the temporary ID does not exist or the required data already exists on the device and is characterized as a "local only" option, the data needed to detect the beacon is the device itself. User data is requested from the device rather than from the service provider server.

The passive branch shown in FIG. 1 is described in FIG. 5 as steps 502-514. Steps 510, 516 and 518 show the secure branch of FIG. As mentioned above, in step 510, if the device is a "local only" step in which the device does not access the service provider server over the Internet, the device requests user data. Steps 516 and 518 are required because the service provider cannot authenticate user data from the smartphone or any type of data. The action and query perspectives taken in steps 516 and 518 are from the device perspective. At step 516, the device, or more specifically the universal ID signal software module on the device, needs to be able to verify that the data received from the beacon at some point has been verified by the service provider and is still valid. .. The device is verified that the data (the data basically tells, for example, "This is John Smith's smartphone") is backed by a back-end server and that the authentication and identification data received by the device is verified. I want to confirm that. In one embodiment, this is done without using any of the IDs (temporary, permanent, unique, etc.) described above. Instead, the data used to verify the identity depends on the scanning device. For example, the data may be a user's authenticated driver's license or a biometric of the user being a legitimate, intended user (eg, stored on the user's smartphone) as an image of the user's face or of the user. It may be user voice verification or face recognition that matches a known hash of voice recording. If the device receives this proof or is confident that the data it is receiving is authentic, control proceeds to step 518. Here, from the smartphone, the device takes actions such as unlocking the door, changing the TV to the user's favorite channel, making coffee according to the user's preference, etc. Receive proof that you can.

FIG. 6 is a flow chart of a process of transmitting a universal ID signal between a beacon and a device and initiating an exchange between them, according to an embodiment. In step 602, the user-held smartphone or wearable device enters the physical space where the universal signal enabled device is located and passively transmits the universal ID signal. In one embodiment, this is substantially done by an app in the background when the beacon device is powered on. In another embodiment, the app is terminated or, in contrast, in the foreground, transmitting a universal personal ID signal. It can also detect and respond to requests from devices. Beacon has a universal ID signal app from the service provider, but does not require anything from the device manufacturer to receive and respond to requests from the device. As mentioned above, the present invention bypasses some form of "silo" configuration or framework. Sensors in the device being scanned can connect to the beacon.

At step 604, the beacon receives the request from the device. The app either recognizes or does not recognize the request. If the app does not recognize the request from the device or does not see the request from the device for a long period of time (time beyond a predetermined threshold), control proceeds to step 606. The app requires a non-reproducible value or nonce from the device and a fixed unique ID for that device. In other embodiments, the ID is obtained from a service provider server or via other means, such as via an iBeacon® or ID tag via near field communication associated with the device. At step 606, the app receives these values. At step 608, the application connects to the service provider server and sends these two values to the server. The server grants access between the device and the beacon, assuming that the server can identify a unique ID as belonging to the device. The server uses a nonce to derive the token as described below. More specifically, access control and security are realized by transmitting a series of tokens (array of tokens) to a smartphone. If the server cannot recognize the device from the ID or the user is not interested in accessing or interacting with the device, the token will not be passed to the smartphone. In some cases, metadata that provides publicly insecure information about the device is passed to the smartphone, and the user can act on that information. For example, the device is a public device such as a kiosk or parking meter, and the user can almost always ignore the device, but if the user wants to know more about the device (eg, remaining parking time or fee), the user You can do so with the data returned by the dedicated server. In one embodiment, the token has one component obtained by combining nonces, unique device IDs, device-specific data, time-limited data, user restrictions, and the like. In one aspect of the invention, communication between the device and the user is secure. All values and factors invested in token creation play an important role in securing the entire universal ID signaling framework. The second component of a token, called the payload section, contains data about user preferences and generally data for users and devices. In one embodiment, each token in a series of tokens is valid for a limited period of time, such as minutes, hours or days. A series of tokens may have hundreds of tokens and can be used to justify for hours to days. For example, tokens last 4-5 hours for access to commercial buildings and are often replenished to ensure that users have tokens that last all day.

In another embodiment, if access to the service provider server is not available, the device using other factors such as biometrics fingerprint, voice recognition, facial recognition or the retinal scanner portion of the device, geographic location, expiration date, etc. You can generate tokens on (lock). These features can be used to provide greater security even if the service provider server is accessible. As is known in the art, a token is a signed data item intended to be used only once and discarded (as well as a set of tokens). Returning to the importance of security in the universal identity signaling framework, the set of tokens sent from the service provider server to the smartphone can be hacked or cheated along with other security features, such as "replaying" or, among other things. Prevent imitation (harmful devices that imitate valid and approved devices).

At step 612, the app passes one token from the set of tokens or the entire set of tokens to the device. The device can validate the token and initiate an interaction between the user and the device. More specifically, the universal ID signal software module on the device validates the tokens and sends a message to the smartphone indicating that they are communicable. Upon receiving this message, the beacon creates a session in step 614, and the device and the beacon can interact.

Returning to step 604, if the Beacon app recognizes the request from the device, control continues with step 616, where the session between the smartphone and the device is already active. This session is of the same type as that created in step 614. A series of tokens can be stored in the smartphone cache or local storage. As a result, the smartphone does not have to be online and can operate at high speed offline. At step 618, the smartphone continues to pass the token to the device. Smartphones maintain tokens for a predetermined period of time, eg, several hours, which is a time threshold that balances security and user convenience. After this time elapses, the app gets a new set of tokens from the service provider. If they are not expired, the smartphone can continue to use the tokens of this series of tokens. At step 620, the interaction between the user and the device can be resumed. In this way, ie, by performing the operations in steps 604 to 614 or steps 604, 616, 618 and 620, it is safe to use by many different types of devices and users (from various manufacturers). A truly universal ID signal can be implemented.

FIG. 7 is a flow chart of an operation process that occurs on the device when the device is online according to the embodiment. At step 702, the service provider server receives a request to authenticate the user from a device, such as a car or appliance. It is useful to note that a device can only see users who are authorized to recognize or see that particular device (the category of the device or a particular manufacturer or member group may also be identified). Similarly, in some physical environments, such as at work or in other security areas, users may only see devices that are authorized to be viewed or recognized by the supervising entity (eg, employer). In other contexts, the device manufacturer may want that only users with specific features or features can see or recognize the device. Various types of scenarios are possible in which either the user or the manufacturer or owner of the device, the manager, etc. can set a security protocol regarding who or what can be recognized using the universal ID signal. For example, one advantage of this type of security is that it prevents the equivalent of spam on both sides. In all scenarios, the underlying security principles implemented in the various embodiments of the invention allow either the user or the device to see and receive only what is needed to interact. , The point can only be reached if the user or device is allowed to see the other. At step 704, the service provider server checks user access control to see if the user is allowed to use the device and, if so, what controls or restrictions there are. There are different technologies or transport mechanisms to allow service providers to verify this user access management. For example, in one embodiment, there may be out-of-band token exchanges or token servers. A common factor is to translate the random non-identifying ID for the user originally sent to the device into a complete set of information about the user. This information can be used in the authorization check process. Assuming that the user has been authenticated in step 706, the service provider server sends the payload to the device, so that the device knows the user's preferences, permissions, interaction history and other information. At step 708, the user and device can initiate a substantial interaction.

FIG. 8 is a flow chart of a process that occurs on a device when the device is offline according to the embodiment. The ultimate goal of this process is substantially the same as that of FIG. 7 except that the device does not communicate with the service provider server. At step 802, the device requests a series of tokens from the user. The properties and characteristics of this series of tokens are the same as the series of tokens described above. At step 804, the device receives a token from the beacon. At step 806, the device proceeds to validate the token using only local resources. In various embodiments, the signature within the token can be verified or verified to ensure that the token has not expired or has not been previously used. Through these and other means, if available locally, the device authenticates the user and initiates interaction between the user (whether online or not) and the offline device. can. As mentioned earlier, one notable aspect of security is that it is embedded in the token validation period. This period varies from minutes to weeks. Tokens for coffee machines last for 20 days, while tokens for locks and payments expire after an hour. This security feature is typically set by the device manufacturer and determines how long to wait for the user to reauthenticate with the device. In general, users have little input in this regard. Another scenario not shown in FIGS. 7 and 8 is when both the device and the smartphone are unable to contact the service provider or dedicated server and have not previously connected or interacted with each other. In this scenario, the smartphone has a universal ID signal app, and the devices are registered with the service provider, but they cannot recognize each other, let alone interact.

FIG. 9 is a diagram of a data processing system 900 described according to some embodiments. The data processing system 900 can be used to implement one or more computers used in the controllers or other components of the various systems described above. In some embodiments, the data processing system 900 is a communication framework that provides communication between a processor unit 904, a memory 906, a persistent storage device 908, a communication unit 910, an input / output (I / O) unit 912, and a display 914. 902 is included. In this example, the communication framework 902 may take the form of a bus system.

The processor unit 904 serves to execute instructions for software that may be loaded into memory 906. Processor unit 904 can be a large number of processors, multiprocessor cores or other types of processors, depending on the particular implementation. The memory 906 and the permanent storage device 908 are examples of the storage device 916. A storage device is hardware that can store information, such as, but not limited to, data, functional forms of program code and / or other suitable information on a temporary and / or permanent basis. The storage device 916 may also be referred to as a computer-readable storage device in these exemplary examples. In these examples, the memory 906 can be, for example, a random access memory or any other suitable volatile or non-volatile storage device. Permanent storage 908 can take various forms depending on the particular practice. For example, the permanent storage device 908 may include one or more components or devices. For example, the permanent storage device 908 can be a hard drive, a flash memory, a rewritable optical disc, a rewritable magnetic tape, or a combination thereof. The medium used by the permanent storage device 908 may also be removable. For example, a removable hard drive may be used for permanent storage 908.

In these exemplary examples, the communication unit 910 provides communication with other data processing systems or devices. In these example examples, the communication unit 910 is a network interface card. The input / output unit 912 enables data input / output with other devices that may be connected to the data processing system 900. For example, the input / output unit 912 may provide a connection for user input via a keyboard, mouse and / or other suitable input device. Further, the input / output unit 912 may transmit the output to the printer. The display 914 provides a mechanism for displaying information to the user.

Instructions for an operating system, application and / or program may be located within storage device 916 communicating with processor unit 904 via communication framework 902. Processes of different embodiments may be performed by processor unit 904 with computer-executed instructions that may be located in memory, such as memory 906.

These instructions are referred to as program code, computer-enabled program code, or computer-readable program code that can be read and executed by the processor in processor unit 904. The program code in different embodiments may be implemented on different physical or computer readable storage media such as memory 906 or permanent storage device 908.

The program code 918 is located in a functional form on the computer readable medium 920. The computer-readable medium 920 is selectively removable and may be mounted on or transmitted to the data processing system 900 for execution by the processor unit 904. In these exemplary examples, the program code 918 and the computer readable medium 920 form the computer program product 922. In one example, the computer-readable medium 920 may be a computer-readable storage medium 924 or a computer-readable signal medium 926.

In these exemplary examples, the computer-readable storage medium 924 is not a medium that propagates or transmits the program code 918, but a physical or tangible storage device that is used to store the program code 918.

Alternatively, the program code 918 may be transmitted to the data processing system 900 using a computer-readable signal medium 926. The computer-readable signal medium 926 can be, for example, a propagated data signal containing program code 918. For example, the computer readable signal medium 926 can be an electromagnetic signal, an optical signal and / or any other suitable type of signal. These signals may be transmitted via communication channels such as wireless communication channels, fiber optic cables, coaxial cables, wires and / or any other suitable type of communication channel.

The different components presented for the data processing system 900 are not meant to provide architectural restrictions on the modes in which different embodiments can be implemented. Different exemplary embodiments may be implemented in a data processing system that includes components in addition to and / or alternatives to those shown for the data processing system 900. The other components shown in FIG. 9 may differ from the illustrated exemplary examples. Different embodiments may be implemented using any hardware device or system capable of executing program code 918. In the following, the "signal" is the above-mentioned universal ID signal, and the first party is a person who has a universal ID.

In one embodiment, systems and methods for the detection and interaction of universal beings are provided. As a non-limiting example, a universal ID signal representing a client, person or other object (hereinafter referred to as the "first party") is created, and any system, sensor or software can detect the signal and serve the person or object. Inquire about relevant information for. As a non-limiting example, it emits a unique signal via Bluetooth low energy, for example, to represent the presence of an individual, eg, a user, such as a mobile device, wearable device or biochip (hereinafter referred to as "device"). Includes methods for personal transponders (eg transceivers). Those around the user can detect the signal and convert it into significant metadata that represents an individual or object of the signal.

In one embodiment, a system and method for performing an operation immediately via a wireless connection is provided. As a non-limiting example, it incorporates the peripheral and central mode of operations used to obtain tokens. Tokens are only executed if they are within the threshold for immediate action. By scanning the device's address or other identifier and keeping the token cached locally within the embedded system, the embedded system responds immediately to any command / intent triggered by the mobile client and with the intent. There is no lag between the actions performed.

In one embodiment, a system and method for sensing the presence of an identifiable object is provided. As a non-limiting example, sensor technology is used to scan and prime nearby objects that emit a unique universal ID signal. As a non-limiting example, the sensor can be operated so that the emitter provides specific information about it, or the emitter of an existing universal ID signal can detect the scanner and do the same. This embodiment provides a system and method of making a sensor both a peripheral and a central device for the purpose of detecting the presence of nearby objects. It can be used to ensure handshaking and reduce the load of the first party by doing most of the difficult work with the scanner on the sensor to avoid overloading the peripheral mode. can.

In another embodiment, systems and methods are provided for the passive detection and identification of passengers (first parties) in a moving vehicle. As a non-limiting example, this includes the use of accelerometers and signal protocols, and it can be concluded that the sensed object is actually moving with the vehicle fitted with the sensor. The step is performed using a universal ID signal and commands are shared between the sensor and the passenger to trigger confirmation that the passenger is moving in the vehicle. Its main use is to detect a person traveling by bus or train and automatically process payments for passengers, track passenger routes, and so on.

In another embodiment, systems and methods are provided for secure offline interaction. As a non-limiting example, a method of collecting multiple commands for the first party is provided, and a bloom filter is used on the sensor side to enable secure commands to BLE (Bluetooth Low Energy) without fallback on the Internet. Authenticate what happened through. As a non-limiting example, this method uses any kind of command, including but not limited to payment, metadata, etc., between an object and a nearby sensor with limited storage capacity without the need for internet connection. Can be used to issue.

In another embodiment, a system and method for secure and physical payment processing on a wireless local network is provided. As a non-limiting example, a method of handshaking the connection between the POS / terminal and the first-party mobile device is used, both of which are safely verified. When the amount is entered into the terminal and applied to the discovered entity, the payment is batched and processed on the backend. Thus, for safer and more secure payment processing, payment information is not exchanged between the terminal and the first party. In this embodiment, the system defines that things are done in a unique way, for anything that could be Google Hands-Free, Apple Pay, etc., as a non-limiting example.

In one embodiment, a system and method for wireless identification for connecting a second party account service access via a proxy agent is provided. As a non-limiting example, the system and method causes the device to detect the first party and, via a proxy agent, to a first party account, including but not limited to Pandora, Netflix, one or more calendars, Amazon accounts, etc. Access it. As an unrestricted use case, you could approach a device like Echo, immediately recognize it and say "Hello, First Party X", and First Party X had previously used the device. You can say "Play my Easy Music Station on Pandora" to it without the need for or without setting up a specific account for First Party X on your Echo device. This is an improvement over the need to set up accounts and limit these devices to only the users for whom accounts are set up. Another use case is that any television screen and X avatar show can be used. As a non-limiting example, the first party X taps and immediately plays all of the Netflix program, YouTube® video, etc. displayed for the first party X. Everything disappears when the first person X leaves. All of these swear to the Netflix account of the first party X to start playback on the TV software without forcing the first party X to log in with a separate Netflix account.

In another embodiment, systems and methods for wireless identification of fixed and moving objects are provided. As a non-limiting example, an object is detected wirelessly. As a non-limiting example, by using this, a radio (bar code such as an identifier) that can be emitted to identify each device, including, but not limited to, the VIN of the car, the serial number of the customer's electronic device, etc. This can be achieved by covering usage examples that can generate. This identification can then be used for situations such as automatic payment of parking meters and parking lots and access to buildings. As another non-limiting example, this can be used to make people a beacon. In this way, each individual object has its own identification beacon.

In another embodiment, the system and method are used for a two-way communication beacon. As a non-limiting example, it can not only emit advertising packets, but also query for useful information or metadata that can be used to scan ads and serve the object to those around them. It is one of the two-way beacons that can be performed. The limitation of beasons is that they all require a corresponding app to use a particular beacon for some purpose. By creating a two-way beacon, you can serve the user who owns the app. Even if you don't have the app, you can detect and serve those presence signatures. It provides a self-contained beacon device similar to current beacons and operates in both peripheral and central modes for bidirectional characteristics of detection and communication.

In another embodiment, a wireless digital driver's license and a system and method for verified identification are provided. As a non-limiting example, this creates an electronic driver's license that emits as a radio signal. The police, etc. can detect the driver's license by standing next to the first person and make an immediate inquiry. The first party no longer needs to carry a driver's license or present any information, and their privacy is not compromised by the use of universal ID signals. As a non-limiting example, this is how the first party enters his information into his account, how his identity is verified through several methods, as well as the authorities' mobile. Provides how the relevant universal ID signal provides security in order for the universal ID signal to be securely available to the authorities via the device.

In another embodiment, a system and method for automatically paying for public transportation is provided. As a non-limiting example, (i) it automatically detects passengers in public transport vehicles, (ii) detects it when passengers get on and off, and (iii) backs up without the user doing anything. Automatically process passenger fare payments at the end.

In another embodiment, a system and method for secure distributed radio identification is provided. As a non-limiting example, this provides verification of identity against other systems using the fingerprint, voice, appearance, etc. of the first party without sharing information with the second party's system. .. In one embodiment, this is achieved by using the application of the invention as a primary validator on the device, including but not limited to mobile devices. Proxy detectors (fingerprint / scanner, voice / microphone, appearance / camera) so that the identity and biometric information of the first party remains within the control of the first party and is never shared with the central server or the system of the second party. The presence protocol is used to bounce the validation steps between and the first-party proxy app, which is securely decentralized without the need to share the first-party information with others. Provides a method of identification. It can be used for high security needs. It is also used for additional situations, including, but not limited to, purchasing a new device and creating an account with a device service provider without having to log in with a first-party fingerprint and fill out any form. be able to. The device instantly sees the name of the first person and says, "Hello, first person X. I'm your new radio. How are you?" Non-limiting examples include, but are not limited to:
Vision: Detecting a face, confirming that it belongs to the first person by hashing, and matching the face with that of the first person X on the device,
Voice: Detecting voice, confirming that it belongs to the first party by hashing, and checking with a proxy server to verify that it is the first party,
Fingerprints, and other biometrics.

Never leave the first device.

In another embodiment, a system and method for a universal people sensor microchip for universally sensing and identifying a person interacting with a product or service is provided.

As a non-limiting example, this is a stand-alone dedicated microchip designed to be embedded in any household appliance or product so that the product can detect who is using it. A "universal people sensor" can be included. It can also be used by the user to download a particular app or to extract information from the user without the device creating its own sensor. As a non-limiting example, this provides how to create a sensor and how the sensor does to identify and extract data from the first party. In one embodiment, this is a universal people for the purpose of how microchips are designed and their systems and methods can be incorporated into their products as plug-and-play systems by other manufacturers. Includes whether it can behave as a sensor microchip.

In another embodiment, a system and method for wirelessly transmitting the preference of the first person's individual is provided. As a non-limiting example, this can include a method in which any first party issues their reference to the surrounding device. As a non-limiting example, this is an app where the first party's account holds a personal preference, where the first party enters how he likes to drink coffee, and the app gives that information. Make it available to coffee machines or coffee shops where first parties stop by. In this embodiment, collecting, organizing and transmitting the personal preferences of the first party is now universal rather than the locked or vertically divided way that all apps / iota devices do things. Provided in a way.

In another embodiment, a system and method for physical access identification using face recognition is provided. As a non-limiting example, as a first factor, a method of identifying a first party and granting access to the first party based on the first party sending a universal ID signal to the reader to prove who he or she is. Is provided. As a second factor, the camera-equipped reader uses the camera image to match the face that the first party has in his account. Learning algorithms can be used to better match the face each time the first person enters the door.

In another embodiment, voice recognition is used to provide a system and method for first-party physical access identification. As a non-limiting example, as a first factor, access is granted based on issuing a universal ID signal to the reader that identifies the first party and verifies who the first party is. As part of the first-party sign-up process, the reader has a microphone that causes the first-party user to say "open" to match the voice pattern with the pre-recorded voice pattern. Next, as a second factor, the reader matches the voice pattern that the first party has in the account. Learning algorithms can be used to better match the speech each time the first person enters the door.

In another embodiment, the system and method use wireless sensors and personal devices to detect tailgating activities. As a non-limiting example, all residents are required to hold a mobile device that emits a unique universal ID signal representing them to a reader paired with another sensor, such as an infrared sensor or anthropomorphic sensor. However, by allowing the combined data to count the presence of two proxy users, a method is provided for detecting possible tailgating events. If there are three people passing through the door, one is tailgating. Several techniques are available for measuring the number of people, including but not limited to WIFI, ultrasound and the like. As a non-limiting example, a combination of such techniques in conjunction with a universal ID signal helps to bring tailgating events to the surface.

In another embodiment, systems and methods for passenger self-driving vehicle identification for intentional locking, unlocking and personalization are provided. As a non-limiting example, this provides a method of using a universal ID signal to detect whether an autonomous vehicle is the correct passenger to be picked up by a first party without having to do anything. Since self-driving vehicles need to be locked while in motion, self-driving vehicles need a way to unlock only the correct passengers on the sidewalk to prevent anyone from boarding the vehicle. .. The car can also use the universal ID signal to personalize the driving experience and display a screen to the passengers that the car is assigned to a first party. Thus, one carmaker's problem and one app's problem are the associations that vehicle software needs to provide passengers with both a personalized experience and a safe / efficient pick-up and open experience. The solution is to allow all vehicles to use the same universal ID signal so that information can be retrieved.

In another embodiment, a system and method for causing a machine to make a machine proximity payment transaction is provided. As a non-limiting example, this covers the way independent machines transfer money to each other without the need for a credit card or first party intermediary. This makes it possible to make transactions between machines. As a non-limiting example, this includes, for example, the self-driving vehicle paying the parking fee directly to the parking meter without the involvement of a first party, and is achieved, for example, passively.

In one embodiment, electromagnetic induction charging of the lock via a cylindrical latch mechanism is provided. As a non-limiting example, the charge lock device is provided by an induction coil in the latch mechanism and a coil around the slot through which the latch enters to lock the door.

In one embodiment, the electromagnetic induction charge of the lock is provided via the lock face plate and the lock device is charged by an induction coil located around the door / frame face plate.

In one embodiment, the vehicle body is provided with electromagnetic induction charging of the telephone device. As a non-limiting example, in the case of a future car that uses the first party phone as a backup key, put the first party phone on the hood of the car if the phone battery is dead but rechargeable. This will allow you to charge and enter the car.

In one embodiment, any AI (assistant AI and voice command AI) can be tapped by a universal ID signal representing the first party to seek useful information useful to the first party.

In one embodiment, a knock can be provided on the first party phone to trigger a command to unlock an adjacent door.

In one embodiment, the sensor of the first party's telephone is used to fingerprint the first party so that access to the building is only allowed where the owner of the telephone is. As a non-limiting example, this is specifically applicable to access control and use cases where the first party needs to be identified by the phone.

In one embodiment, the sensing of a first party driver having a universal ID signal and a vehicle, first party, vehicle and garage having a universal ID signal sensor authenticating that the first party can drive the vehicle and start the engine. The combination provides the vehicle and the first-class driver with access for safe vehicle access.

In one embodiment, an organization having a group of vehicles may allow a driver with insurance information to switch between vehicles and drivers during a trip. This can also be used in car rental situations.
In one embodiment, energy harvesting is realized via weight and coil for the beacon in a high vibration environment including, but not limited to, buses, automobiles and the like.

In one embodiment, energy harvesting is provided for a charging door device that charges by opening and closing a swing door via a gear using a door hinge.

In the idea of one embodiment, the first-party universal ID signal (from a pedestrian's telephone) in transit for automobiles and public transport detects pedestrians and cyclists on the road. The transport / transport system can be used to optimize public and road transport.

In one embodiment, the system presence hub is plugged into a power socket in the garage and then emits an RF signal to open the garage door when the first party enters the garage. This requires no installation and is like how a guru programs the garage against getting a new transponder.

In one embodiment, the edge system includes a system and method that allows controllerless access control that facilitates installation and integration into any electric door system.

In one embodiment, an OTA update system and method for firmware is provided.

In one embodiment, the system and method allow the first party to utilize the system presence system to detect its beacon without having to download its own app.

In one embodiment, a biochip is provided that detects a universal ID signal and emits a universal ID signal so that any system can use it to serve a first party in a safe and private manner.

In one embodiment, a universal method is provided that allows an automobile to give a personalized experience to a first party by detecting a universal ID signal.

In one embodiment, the universal ID signal allows the augmented reality system to use the universal ID signal to identify and provide relevant information about people extended within the system.

In one embodiment, a cache token system and method is provided via a universal ID signal.

In one embodiment, the MAC address of the mobile device is rotated to ensure that a permanent signal is obtained using the universal ID signal. Such systems can use universal ID signals without tracking and monitoring Mac addresses, such as challenge-response exchanges.

In one embodiment, the universal ID signal is used for logical access as a second factor authentication.

In one embodiment, the FPGA is used to make the universal sensor universally compatible with any embedded system by programming the FPGA to work with any interface protocol. Can be done.

In one embodiment, a process using a telephone magnetometer is provided to determine the direction at the access point, i.e., whether to enter or exit the door.

In one embodiment, each device is represented individually by a card, but is collectively accessed via an app container view. Each can be selected individually and can be extended to see details and send and receive commands from related devices.

In one embodiment, the two BLE radios work in a way that solves the limitation that the BLE cannot connect to and interact with hundreds of other devices / telephones. As a non-limiting example, one radio scans and tracks advertising addresses, and the other radio acts as a connector that connects, queries, and disconnects devices one at a time.

Therefore, it should be understood that the present disclosure is not limited to the particular examples described and is intended to include modifications and other examples within the appended claims. In addition, the aforementioned description and related drawings illustrate examples of the present disclosure in the context of certain exemplary combinations of elements and / or functions, but without departing from the appended claims. It can be seen that / or different combinations of functions can be provided by alternative implementation. Therefore, the reference numbers in parentheses in the appended claims are provided for illustrative purposes only and are intended to limit the subject matter of the claims to the particular examples provided in this disclosure. No.

After reading this disclosure, one of ordinary skill in the art can imagine further embodiments. Other embodiments, combinations or subcombinations of the invention disclosed above can be advantageously made. The architectural block diagrams and flowcharts are grouped for ease of understanding. However, it should be understood that combinations of blocks, addition of new blocks, rearrangement of blocks, etc. can be considered in alternative embodiments of the present invention.

Therefore, the specification and drawings should be considered as exemplary rather than limiting. However, it will be clear that various modifications and modifications can be made to it without departing from the broader spirit and scope of the invention described in the claims.

Claims (20)

It ’s a method for the system,
A step of scanning a temporary ID signal within a geographic area close to the first device using the first device's short-range transceiver.
A step of detecting a temporary ID signal output from a user device using the short-range transceiver, wherein the temporary ID signal does not include the user's personal identification information.
Using the wide area network communication unit of the first device, at least a part of the temporary ID signal and a first identifier related to the first device are sent to the remote server related to the temporary ID signal. And the steps to send,
A step of receiving a part of the temporary ID signal and a first response from the remote server in response to the first identifier using the wide area network communication unit, and a step of receiving the first response.
In response to the first response, the step of providing an electronic approval signal to the first external unit connected to the first device, wherein the first external unit responds to the first response. A method comprising steps, which are configured to perform a first physical action. The short range transceiver includes a Bluetooth low energy transceiver.
The method of claim 1, wherein the step of scanning with the short-range transceiver comprises scanning a transient ID signal with a Bluetooth low energy transceiver using the Bluetooth standard. The method of claim 1, wherein the step of transmitting at least a part of the temporary ID signal to the remote server using the wide area network communication unit is performed via a wired or wireless network. A step of scanning a temporary ID signal in a geographic area close to a second device using the second device's short-range transceiver, wherein the first device is associated with a first entity. , The second device is associated with a second entity, the first entity and the second entity are independent, step and
A step of detecting the temporary ID signal output from the user device using the short-range transceiver of the second device, wherein the temporary ID signal does not include the user's personal identification information. Steps and
Using the wide area network communication unit of the second device, at least a part of the temporary ID signal to the remote server related to the temporary ID signal and a second related to the second device. Steps to send the identifier and
A step of receiving a part of the temporary ID signal and a second response from the remote server in response to the second identifier using the wide area network communication unit, and a step of receiving the second response.
In response to the second response, a step of providing an electronic approval signal to the second external unit coupled to the second device, wherein the second external unit responds to the second response. The method of claim 1, further comprising a step, which is configured to perform a second physical action. The first external unit includes a first security door associated with the first entity.
The first physical action involves unlocking the first security door associated with the first entity.
The second external unit includes a second security door associated with the second entity.
The method of claim 4, wherein the second physical action comprises unlocking the second security door associated with the second entity. The first external unit and the first physical action are to unlock the security door and the security door, turn on the lighting controller and lighting, and operate the entertainment unit and the entertainment unit. The method according to claim 1, which is selected from the group consisting of a vending machine and purchasing a product. The method of claim 1, wherein the first external device is selected from the group consisting of automobiles, home appliances and kiosks. The first response includes authorization data related to the first external unit and the first user, and user configuration data related to the first external unit and the first user.
The step of providing the electronic authorization signal to the first external unit is
Providing the approval data to the first external unit and
Providing the user setting data to the first external unit and
The method according to claim 1, wherein the method comprises. The first external unit includes a television and
The method according to claim 8, wherein the user setting data includes application approval data of a third party. Further including the step of capturing biometric data related to the user using the biometric capture unit of the first device.
The step of transmitting using the wide area network communication unit of the first device uses the wide area network communication unit of the first device to express the representation of biometric data related to the user by the temporary ID signal. Including sending to the remote server related to
The method of claim 1, wherein the first response from the remote server also responds to a representation of biometric data related to the user. A system that includes a first device, wherein the first device is
A short-range transceiver configured to capture a temporary ID signal within a geographic area close to the first device and to detect a temporary ID signal output from the user device. And the temporary ID signal does not include the user's personal identification information, the short-range transceiver and
It is configured to transmit at least a part of the temporary ID signal and a first identifier related to the first device to the remote server related to the temporary ID signal, and the temporary ID signal is transmitted. A wide area network interface configured to receive a portion of a typical ID signal and a first response from the remote server in response to the first identifier.
An output unit configured to provide an electronic approval signal to a first external unit coupled to the first device in response to the first response, wherein the first external unit is said to be the first. An output unit that is configured to perform a first physical action in response to a response of 1.
Including the system. 11. The system of claim 11, wherein the short range transceiver comprises a Bluetooth transceiver configured to use the Bluetooth low energy standard. 11. The system of claim 11, wherein the wide area network interface includes a wired or wireless interface. The second device further comprises a second device.
Nearly configured to capture the temporary ID signal within a geographic area close to the second device and to detect the temporary ID signal output from the user device. A short-range transceiver, wherein the temporary ID signal does not include the user's personal identification information.
The remote server associated with the temporary ID signal is configured to transmit at least a portion of the temporary ID signal and a second identifier associated with the second device, as well as said. A wide area network interface configured to receive a portion of the temporary ID signal and a second response from the remote server in response to the second identifier.
An output unit configured to provide an electronic approval signal to a second external unit coupled to the second device in response to the second response, wherein the second external unit is said. 11. The system of claim 11, comprising an output unit, which is configured to perform a second physical action in response to a response of 2. The first external unit includes a first security door associated with the first entity.
The first physical action involves unlocking the first security door associated with the first entity.
The second external unit includes a second security door associated with the second entity.
14. The system of claim 14, wherein the second physical action comprises unlocking the second security door associated with the second entity. The first external unit and the first physical action are to unlock the security door and the security door, turn on the lighting controller and lighting, and operate the entertainment unit and the entertainment unit. The system according to claim 11, which is selected from the group consisting of a vending machine and purchasing a product. 11. The system of claim 11, wherein the first external device is selected from the group consisting of automobiles, home appliances and kiosks. The first response includes both authorization data and user configuration data related to the first external unit and the first user.
11. The system of claim 11, wherein the output unit is configured to provide the approval data and the user-related data to the first external unit in response to the first response. The first external unit includes a television and
The system according to claim 18, wherein the user setting data includes third party application approval data. The first device further comprises a biometric capture unit configured to capture biometric data relevant to the user.
The wide area network communication interface is also configured to transmit a representation of biometric data related to the user to the remote server associated with the temporary ID signal.
The system of claim 11, wherein the first response from the remote server also responds to a representation of biometric data related to the user.

Images