WO2022008806A1 - Wireless communication method and system - Google Patents
Wireless communication method and system Download PDFInfo
- Publication number
- WO2022008806A1 WO2022008806A1 PCT/FR2021/000071 FR2021000071W WO2022008806A1 WO 2022008806 A1 WO2022008806 A1 WO 2022008806A1 FR 2021000071 W FR2021000071 W FR 2021000071W WO 2022008806 A1 WO2022008806 A1 WO 2022008806A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- terminal
- mobile
- data transfer
- mobile terminal
- application
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
-
- G—PHYSICS
- G01—MEASURING; TESTING
- G01S—RADIO DIRECTION-FINDING; RADIO NAVIGATION; DETERMINING DISTANCE OR VELOCITY BY USE OF RADIO WAVES; LOCATING OR PRESENCE-DETECTING BY USE OF THE REFLECTION OR RERADIATION OF RADIO WAVES; ANALOGOUS ARRANGEMENTS USING OTHER WAVES
- G01S1/00—Beacons or beacon systems transmitting signals having a characteristic or characteristics capable of being detected by non-directional receivers and defining directions, positions, or position lines fixed relatively to the beacon transmitters; Receivers co-operating therewith
- G01S1/02—Beacons or beacon systems transmitting signals having a characteristic or characteristics capable of being detected by non-directional receivers and defining directions, positions, or position lines fixed relatively to the beacon transmitters; Receivers co-operating therewith using radio waves
- G01S1/04—Details
- G01S1/042—Transmitters
-
- G—PHYSICS
- G01—MEASURING; TESTING
- G01S—RADIO DIRECTION-FINDING; RADIO NAVIGATION; DETERMINING DISTANCE OR VELOCITY BY USE OF RADIO WAVES; LOCATING OR PRESENCE-DETECTING BY USE OF THE REFLECTION OR RERADIATION OF RADIO WAVES; ANALOGOUS ARRANGEMENTS USING OTHER WAVES
- G01S11/00—Systems for determining distance or velocity not using reflection or reradiation
- G01S11/02—Systems for determining distance or velocity not using reflection or reradiation using radio waves
- G01S11/06—Systems for determining distance or velocity not using reflection or reradiation using radio waves using intensity measurements
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/32—User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/606—Protecting data by securing the transmission between two devices or processes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
- G06Q20/40145—Biometric identity checks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0442—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0861—Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0869—Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/069—Authentication using certificates or pre-shared keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/50—Secure pairing of devices
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/80—Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W76/00—Connection management
- H04W76/10—Connection setup
Definitions
- the invention relates to the field of wireless communication and its use to facilitate the exchange of data between customers and the information system of a commercial site. It aims more specifically to facilitate the authentication of customers with a mobile digital application specific to the commercial site and also to be able to assess their position inside the commercial site and vis-à-vis an exit terminal with which it can be expected that authenticated clients can be recognized automatically.
- the invention first of all provides for a wireless communication system to be implemented to ensure, in a physical commercial site, the connection between the mobile terminals of customers coming to make purchases on said site and a set of information processing and communication means such as at least:
- a supervision processor made up of an electronic calculator of any kind (computer or electronic card, for example) which can alternatively be separate from or integrated into the site server, and whose function is to supervise all the means of wireless communication of said commercial site,
- wireless communication equipment hereinafter referred to as data transfer stations, linked to the server of the commercial site and each capable of exchanging data with a mobile terminal to which it will be connected, and
- This system can also be advantageously equipped with a terminal installed near its exit and comprising biometric identification means able to calculate from the image of a customer presenting himself in the visibility zone of said terminal different measurements of its physiognomic characteristics.
- the information system of the physical commercial site can offer more functionalities to some of its customers equipped with a mobile terminal, it is planned that customers who so wish can, in a stage prior to the entry of said customers in the physical commercial site, install on their terminal a specific mobile application able to interact with the wireless communication system of the site and to memorize various personal information concerning them.
- biometric data specific to the customer concerned may be stored there.
- the specific mobile application loaded in the memory of some of the customers of the commercial site must then be able to be activated when the customer whose mobile terminal includes said application enters the commercial site.
- the invention provides that this activation can be carried out alternately in two different ways:
- said specific mobile application loaded in the customer's mobile terminal is activated manually by the customer once back in the commercial site.
- At least one wireless beacon regularly transmits a signal to all the mobile terminals present in said commercial site, so that the mobile terminals of customers who have previously installed said specific mobile application automatically launch the executing said application as soon as they have detected said signal emitted by the at least one wireless beacon.
- a variant of the invention provides that said mobile application which has detected any signal emitted by at least one wireless beacon responds to it with a first reception message.
- the supervision processor assigns to each terminal having transmitted for the first time said first reception message a site data transfer station determined so that said station only exchanges data with this single terminal for the duration of its presence in the commercial site. This then allows an exclusive connection to be established via said specific mobile application between the mobile terminal that implements it and the data transfer station that the supervision processor has assigned to it.
- the supervision processor detects that a mobile terminal which was in communication with a determined data transfer station, has ceased to respond to the signal emitted by the at least one wireless beacon for a predetermined period, said supervision processor is programmed to interrupt all communication between said mobile terminal and the data transfer station to which it was connected.
- a complementary variant of the invention provides that the reception signal sent by any mobile terminal transported by a customer in said commercial site and in the memory of which said application has been loaded is a measurement of the power in reception of a signal received from type "Received Signal Strength Indication (RSSI)".
- RSSI Receiveived Signal Strength Indication
- the invention also provides for strengthening the security of the wireless communication method and respect for the personal data of customers by implementing various technical improvements which are described in the detailed description of the invention below which presents several modes of embodiment of the invention with examples and reference to the drawings.
- FIG. 1 schematically represents the wireless communication system according to the invention.
- the invention protects a wireless communication system between a server 10 and at least one mobile terminal of a customer 15 present in a physical commercial site which is equipped with at least the following elements: a server 10 installed in the said commercial site or connected to it by any means of digital communication by wire or wireless,
- each data transfer station 12 is able to connect to a said mobile terminal 14 and to establish communication between said mobile terminal 14 and said server 10 and by any means of wired or wireless communication, and that
- the processor supervises said data transfer stations and determines which of said stations will establish a connection with a determined mobile terminal 14 present on the site.
- the invention also provides that the commercial site can be equipped with a terminal installed near its exit and comprising biometric identification means capable of calculating from the image of a customer 15 presenting himself in the zone of visibility of said terminal different measurements of its physiognomic characteristics, and that - moreover - said biometric measurements are transmitted by at least one transfer station data 12 towards at least one mobile terminal 14 of a customer 15 present on the site.
- the invention also covers the fact that at least one mobile terminal 14 of at least one customer 15 implements a specific mobile application previously installed in said terminal, that at least one wireless beacon is installed in said commercial site and capable of transmitting a signal detectable by said at least one mobile terminal 14, and that said application is programmed to be able to interact with the elements of the aforementioned wireless communication system via a data transfer station 12.
- said specific mobile application is able to memorize on the mobile terminal 14 where it is installed biometric measurements specific to the client 15 using the terminal and to compare them with the biometric measurements which will be calculated by the identification means biometrics of said terminal and transmitted by at least one data transfer station 12.
- the invention covers a wireless communication method which implements such a wireless communication system according to its various aforementioned embodiments and which comprises on the one hand a preliminary step and on the other hand an on-site activation step, such as: during the step prior to their entry into the commercial site, customers 15 have loaded said specific digital application into the memory of their mobile terminal 14,
- each customer 15 concerned has configured said specific mobile application by recording various personal information therein such as biometric measurements of the face of the customer 15, then
- the activation of said specific mobile application on the mobile terminal 14 of each customer 15 having previously installed and configured it initiates communication between said mobile terminal 14 and said wireless communication system.
- the activation of said specific mobile application can be performed manually by the customer 15 having previously installed and configured it in his mobile terminal 14 when the latter enters the commercial site.
- the activation of said specific mobile application can be automated as follows:
- At least one wireless beacon regularly emits a signal to all the mobile terminals present in said commercial site, the at least one mobile terminal 14 of at least one customer 15 having previously installed and configured said specific mobile application automatically launches the execution of said application as soon as it detects said signal emitted by the at least one wireless beacon. Once activated, said mobile application responds to the signal transmitted by at least one wireless beacon by transmitting a first reception message.
- the supervision processor 13 then assigns to each terminal having transmitted for the first time said first reception message a data transfer station 12 of the site determined so that said station only exchanges data with this single terminal during for the entire duration of its presence on the commercial site, each mobile application, once launched, then ensures the exclusive connection between the mobile terminal 14 which implements it and the data transfer station 12 that the supervision processor 13 has assigned to it. This exclusive connection is maintained as long as the mobile terminal
- the supervision processor 13 is therefore programmed to interrupt all communication between any mobile terminal 14 which ceases to respond to the signal emitted by the at least one wireless beacon for a predetermined duration and the determined data transfer station 12 which was in communication with said mobile terminal 14.
- the invention indeed also provides in one of its improvements that the distance of each customer 15 having installed and configured on his mobile terminal 14 a specific authenticated mobile digital application, with respect to the data transfer station 12 to which said mobile terminal 14 is connected, or calculated at regular intervals from a measurement by the processor of the power of the signal received from said mobile terminal 14 by said data transfer station 12.
- Another aspect of the invention relates to securing the method of implementing the wireless communication system by resorting to various generally known cryptographic means.
- This authentication process can in particular implement an asymmetric public key cryptographic process and is carried out according to the following steps:
- the specific mobile application installed in the mobile terminal 14 receives from the data transfer station 12 to which said terminal is connected a public key corresponding to the private key of said station, said specific mobile application generates a random number
- said mobile application encrypts said random number with the public key of the data transfer station 12 to which said terminal is connected and transmits the result of this encryption to it, • the data transfer station 12 decrypts the encrypted data it has received with its private key,
- said data transfer station 12 establishes an exclusive communication session with said mobile terminal 14 to which it is connected.
- the authentication of the specific mobile application loaded in the terminal of a client 15 can also be reinforced by an additional authentication phase of the data transfer station 12 to which said terminal is connected.
- said data transfer station 12 again encrypts the random number resulting from the decryption of the data previously received with its own private key and sends its result back to the connected terminal.
- the specific mobile application loaded in said terminal then decrypts with the public key of the data transfer station 12 said result. If the decryption is successful and the decrypted data is equal to the random number initially generated by said application, the data transfer station 12 to which it is connected is then considered authenticated.
- the reception signal sent by any mobile terminal 14 transported by a customer 15 in said commercial site and in which said application has been installed and configured is a measurement of the power in reception of a signal received of the Received Signal Strength Indication (RSSI) type.
- RSSI Received Signal Strength Indication
- the method according to the invention can advantageously also comprise a calculation at regular intervals of the distance of each client 15 having installed and configured on his mobile terminal 14 the specific authenticated mobile digital application, with respect to the data transfer station 12 at which said mobile terminal 14 is connected, using the signal strength measurement received from said mobile terminal 14 by said data transfer station 12.
- the processor calculates an assessment of the distance between the position of each customer 15 concerned and the output terminal, the position of which the system knows in relation to those of each of the data transfer stations.
- Said exit terminal is therefore programmed in a variant of the invention to perform biometric measurements of any customer 15 approaching said terminal at a distance not exceeding a predetermined distance and substantially close. It is also programmed so that the biometric measurements calculated from each client 15 located at a distance less than or equal to the predetermined distance are only transmitted by the data transfer stations responsible for communication with the mobile terminals implementing a specific mobile digital application authenticated and whose position vis-à-vis said terminal is located at a distance less than or equal to the same predetermined distance.
- the biometric measurements calculated by the facial recognition means of the terminal on each customer 15 approaching the terminal are not addressed to all the customers 15 located in the physical commercial site, but, for reasons of confidentiality and protection of personal data, are only communicated to a small number of terminals corresponding to previously enrolled customers (having downloaded the specific mobile application) and located in the same area near the exit terminal.
- the method according to the invention further provides that said mobile terminals transmit a second reception message which takes up the random number used during the authentication of said mobile digital application.
- an advantageous variant provides that the exchange of information between each data transfer station 12 and the digital application installed on the mobile terminal 14 with which it is in communication takes place according to a packet communication protocol in which the acknowledgment of each packet received is carried out by said specific mobile digital application.
- the rate of this exchange is then adjusted by each data transfer station 12 according to the speed with which said mobile application to which it is connected regularly, after a predetermined number of packets received, sends a packet of control equivalent to acknowledgment of each new group of packets received.
- each specific mobile application loaded into a mobile terminal 14 having received biometric measurements from the terminal compares said measurements with those previously recorded in the memory of the terminal in which it is loaded. If there is identity between the biometric measurements received and the biometric measurements previously recorded, the specific mobile application concerned and the server 10 of the commercial site can then initiate a secure transaction, such as in particular an electronic payment order.
- the invention also covers the computer program which allows a wireless communication system according to the invention to implement the method according to the invention in its various variants. Finally, it provides that all the wireless equipment of the wireless communication system communicate with the mobile terminals of the customers 15 of the commercial site by using a standardized radio communication protocol, such as in particular Bluetooth low energy (Bluetooth Low Energy (BLE)).
- Bluetooth low energy Bluetooth Low Energy (BLE)
Abstract
Description
Claims
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
BR112023000197A BR112023000197A2 (en) | 2020-07-10 | 2021-07-08 | WIRELESS COMMUNICATION METHOD |
EP21746771.1A EP4179494A1 (en) | 2020-07-10 | 2021-07-08 | Wireless communication method and system |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
FRFR2007363 | 2020-07-10 | ||
FR2007363A FR3112415B1 (en) | 2020-07-10 | 2020-07-10 | Wireless communication method and system |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2022008806A1 true WO2022008806A1 (en) | 2022-01-13 |
Family
ID=74045493
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/FR2021/000071 WO2022008806A1 (en) | 2020-07-10 | 2021-07-08 | Wireless communication method and system |
Country Status (4)
Country | Link |
---|---|
EP (1) | EP4179494A1 (en) |
BR (1) | BR112023000197A2 (en) |
FR (1) | FR3112415B1 (en) |
WO (1) | WO2022008806A1 (en) |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20140006286A1 (en) * | 2012-07-02 | 2014-01-02 | Mark Gerban | Process to initiate payment |
US20170134902A1 (en) * | 2015-04-09 | 2017-05-11 | Datalogic Ip Tech S.R.L. | High accuracy indoor locating system |
US20180137729A1 (en) * | 2016-11-14 | 2018-05-17 | Datalogic IP Tech, S.r.l. | Systems, methods and articles to prevent unauthorized removal of mobile processor-based devices from designated areas |
US20180248694A1 (en) * | 2014-02-10 | 2018-08-30 | Qualcomm Incorporated | Assisted device provisioning in a network |
-
2020
- 2020-07-10 FR FR2007363A patent/FR3112415B1/en not_active Expired - Fee Related
-
2021
- 2021-07-08 WO PCT/FR2021/000071 patent/WO2022008806A1/en unknown
- 2021-07-08 BR BR112023000197A patent/BR112023000197A2/en unknown
- 2021-07-08 EP EP21746771.1A patent/EP4179494A1/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20140006286A1 (en) * | 2012-07-02 | 2014-01-02 | Mark Gerban | Process to initiate payment |
US20180248694A1 (en) * | 2014-02-10 | 2018-08-30 | Qualcomm Incorporated | Assisted device provisioning in a network |
US20170134902A1 (en) * | 2015-04-09 | 2017-05-11 | Datalogic Ip Tech S.R.L. | High accuracy indoor locating system |
US20180137729A1 (en) * | 2016-11-14 | 2018-05-17 | Datalogic IP Tech, S.r.l. | Systems, methods and articles to prevent unauthorized removal of mobile processor-based devices from designated areas |
Also Published As
Publication number | Publication date |
---|---|
EP4179494A1 (en) | 2023-05-17 |
FR3112415A1 (en) | 2022-01-14 |
BR112023000197A2 (en) | 2023-04-25 |
FR3112415B1 (en) | 2023-09-01 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP1549011A1 (en) | Communication method and system between a terminal and at least a communication device | |
EP3238474B1 (en) | Method for securing contactless transactions | |
WO2006125885A1 (en) | Method for controlling connection of a peripheral to an access point, corresponding access point and peripheral | |
WO2019094071A1 (en) | Biometric validation process utilizing access device and location determination | |
US20210282019A1 (en) | Proximity based user identification and authentication system and method | |
WO2012164368A1 (en) | Method and system for securing data exchanges between a client module and a server module | |
EP2912594A1 (en) | Method of providing a secured service | |
WO2011110436A1 (en) | Protection against rerouting in an nfc circuit communication channel | |
WO2011128142A1 (en) | Detection of the rerouting of a communication channel of a telecommunication device connected to an nfc circuit | |
US20200008251A1 (en) | System and method for peer-to-peer wireless communication | |
EP3625928A1 (en) | Method for securing communication without management of states | |
EP1851901A1 (en) | Method for fast pre-authentication by distance recognition | |
EP3552327B1 (en) | Method of personalizing a secure transaction during a radio communication | |
EP2469904A1 (en) | Electronic device and communication method | |
EP3963823A1 (en) | Method for securely connecting to an onboard web service and corresponding device | |
EP4179494A1 (en) | Wireless communication method and system | |
FR2869745A1 (en) | SYSTEM AND METHOD FOR SECURE ACCESS OF VISITOR TERMINALS TO AN IP-TYPE NETWORK | |
FR3083627A1 (en) | METHOD FOR SECURE TRANSMISSION OF CRYPTOGRAPHIC DATA | |
EP3479325A1 (en) | Method for authenticating payment data, corresponding devices and programs | |
EP1802026A2 (en) | Method of unblocking a resource using a contactless device | |
FR2924843A1 (en) | Access control system for e.g. computer in public/private enterprise, has authentication architecture comprising control procedure for providing access to computing system based on identity and contextual information relative to person | |
EP3890214A1 (en) | Acquisition of temporary right by transmission of near-field radio wave | |
EP4081989A1 (en) | Method and system for sharing authentication data for an access control and deletion of the data after use | |
CN109145561A (en) | The method for authenticating and its equipment and storage medium of computer | |
FR3108996A1 (en) | Grant of rights by near-field radio wave transmission |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 21746771 Country of ref document: EP Kind code of ref document: A1 |
|
REG | Reference to national code |
Ref country code: BR Ref legal event code: B01A Ref document number: 112023000197 Country of ref document: BR |
|
ENP | Entry into the national phase |
Ref document number: 2021746771 Country of ref document: EP Effective date: 20230210 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
ENP | Entry into the national phase |
Ref document number: 112023000197 Country of ref document: BR Kind code of ref document: A2 Effective date: 20230105 |