WO2023057616A1 - Procédé, appareils et système pour réaliser une configuration basée sur l'authentification d'un dispositif de génération d'aérosol au moyen d'un serveur et d'un dispositif de communication - Google Patents

Procédé, appareils et système pour réaliser une configuration basée sur l'authentification d'un dispositif de génération d'aérosol au moyen d'un serveur et d'un dispositif de communication Download PDF

Info

Publication number
WO2023057616A1
WO2023057616A1 PCT/EP2022/077920 EP2022077920W WO2023057616A1 WO 2023057616 A1 WO2023057616 A1 WO 2023057616A1 EP 2022077920 W EP2022077920 W EP 2022077920W WO 2023057616 A1 WO2023057616 A1 WO 2023057616A1
Authority
WO
WIPO (PCT)
Prior art keywords
server
message
aerosol generating
generating device
authentication
Prior art date
Application number
PCT/EP2022/077920
Other languages
English (en)
Inventor
Layth Sliman BOUCHUIGUIR
Original Assignee
Jt International Sa
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jt International Sa filed Critical Jt International Sa
Publication of WO2023057616A1 publication Critical patent/WO2023057616A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • AHUMAN NECESSITIES
    • A24TOBACCO; CIGARS; CIGARETTES; SIMULATED SMOKING DEVICES; SMOKERS' REQUISITES
    • A24FSMOKERS' REQUISITES; MATCH BOXES; SIMULATED SMOKING DEVICES
    • A24F40/00Electrically operated smoking devices; Component parts thereof; Manufacture thereof; Maintenance or testing thereof; Charging means specially adapted therefor
    • A24F40/50Control or monitoring
    • A24F40/53Monitoring, e.g. fault detection
    • AHUMAN NECESSITIES
    • A24TOBACCO; CIGARS; CIGARETTES; SIMULATED SMOKING DEVICES; SMOKERS' REQUISITES
    • A24FSMOKERS' REQUISITES; MATCH BOXES; SIMULATED SMOKING DEVICES
    • A24F40/00Electrically operated smoking devices; Component parts thereof; Manufacture thereof; Maintenance or testing thereof; Charging means specially adapted therefor
    • A24F40/65Devices with integrated communication means, e.g. wireless communication means
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • H04L67/025Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/50Secure pairing of devices
    • H04W12/55Secure pairing of devices involving three or more devices, e.g. group pairing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/71Hardware identity

Definitions

  • the present invention relates a method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device, a system, an aerosol generating device and a communication device used therefor.
  • Initiating a management interface at the communication device often involves userauthentication, either at the communication device, or at the aerosol generating device. If user-authentication is performed at the aerosol generating device, a message indicating the result of user-authentication is usually transmitted via a short-range connection to the communication device. This allows for various approaches whereby an attacker can get access to the aerosol generating device management interface without being successfully authenticated at the aerosol generating device.
  • One of the objects of the present disclosure is to overcome at least one of the above- mentioned prior art problems or to improve at least one of the prior art solutions.
  • the object is achieved by the subject-matter of the independent claims. Further preferred embodiments are given by the subject-matter of the dependent claims.
  • a method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device comprising the steps of: sending, from the aerosol generating device to the server, an authentication result message indicating a result of user authentication performed by the aerosol generating device; and, based on the authentication result message, sending, from the server to the communication device, an instruction message instructing the communication device to allow management of the aerosol generating device on the communication device.
  • Fig. 1 shows a first embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device.
  • Fig. 2 shows a second embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device.
  • Fig. 3 shows parts of a third and a fourth embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device.
  • Fig. 4 shows a fifth embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device.
  • Fig. 5 shows a sixth embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device.
  • Fig. 6 shows a seventh embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device.
  • Fig. 7 shows an embodiment of a system for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device.
  • Fig. 8 shows an embodiment of an aerosol generating device used for performing the authentication-based configuration of the aerosol generating device.
  • Fig. 9 shows an embodiment of a server used for performing the authentication-based configuration of the aerosol generating device.
  • an authentication solution wherein an aerosol generating device interacts with the server for performing authentication and wherein the server allows management of the device via a communication device (e.g. a smartphone) for example once authentication between the aerosol generation device and the server is successful.
  • a communication device e.g. a smartphone
  • Figure 1 shows an embodiment of the method for performing an authentication-based configuration of an aerosol generating device 102 by means of a server 103 and of a communication device 101, the method comprising the steps of sending from the aerosol generating device 102 to the server 103 an authentication result message 104 indicating a result of user authentication performed by the aerosol generating device 102, and based on the authentication result messagel04, sending from the server 103 to the communication device 101, an instruction message 105 instructing the communication device 101 to allow management of the aerosol generating device 102 on the communication device 101.
  • An aerosol generating device 102 is a device configured to generate an aerosol for inhalation by a user and preferably includes a heat non-burn aerosol generating device (e.g. an inhaler; a device that heats a source substance to generate an aerosol without burning the source substance). Based on a user's input, the aerosol generating device heats a liquid. Thereby, an aerosol is generated which the user can consume by inhalation. In other words, the aerosol for inhalation is generated by warming or heating an aerosolisable substance or liquid.
  • An aerosol generating device usually comprises a heating unit and an aerosolcontainer.
  • the heating unit and the aerosol-container may be provided as individual, connectable units, where each of these sub-units can be replaced by another sub-unit (and which may be provided alone and independently from each other, or together).
  • the aerosolisable substance is contained in the aerosol container comprised in the aerosol generating device.
  • the heating unit may be configured to heat the aerosolisable substance provided by the container via a connection-unit.
  • Specific examples of aerosol generating devices comprise an electrical cigarette, electronical cigarette, e-cig, a vaping device, vaper.
  • the aerosol generating device comprises at least means for communication with a server by sending messages. This comprises transmitting messages to the server and receiving messages from the server.
  • an aerosol generating device also comprises means for communicating directly with a communication device, where direct communication between a communication device and an aerosol generating device usually is based on a short-range connection, such as blue tooth connection.
  • a server 103 is a device configured to provide resources or services to at least one other device (client) based on a message (request) received from this other device.
  • a server usually waits for incoming messages from another device and is configured to store data, to process data and to perform at least one operation based on at least one message received from another device. Further to receiving a message, the server may transmit at least one message to another device, wherein the message comprises various types of data of a certain format and content. For instance, based on one part of the information contained in a received message, the server may perform an operation on the remaining parts of the information and/or data stored at the server.
  • the server After having performed the operation, the server transmits a message that may contain the result of the operation to the device having sent the message / request, e.g., it returns a response to the other device acting as a client.
  • a server comprise a web-server, an application server, an FTP server, a mail server, or a proxy server.
  • a communication device 101 is a device configured to communicate wirelessly with another device by transmitting and receiving at least one message from at least one other device.
  • the communication device 101 is preferably a device operable by a user.
  • Typical connection types used for communication by the communication device comprise a short- range connection (for connecting e.g. to the aerosol generating device 102), such as blue tooth, and a long-range connection (for connecting e.g. to the server), such as using the internet and http message based communications.
  • a communication device usually is also configured to perform any one of a combination of storing data that may be comprised in the message, storing data received via other means, such as an input device comprised in the communication device, performing operations on the stored data, processing the stored data, and storing the result of the operation, and transmitting a message indicating the result of the operation.
  • Examples of a communication device comprise a smart-phone, a tablet, a laptop, a personal computer, a computer, a cell-phone, a mobile phone, a cellular phone, a user terminal, user equipment for telecommunications, a digital phone.
  • the aerosol generating device 102 sends (transmits) the authentication message 104 to the server 103.
  • the authentication result message may be sent from the aerosol generating device to the server using a long-range connection.
  • a long-range connection also may be referred to as performing long-range transmission, performing long- range communications, or performing communication using a long-range communication network.
  • Examples of a long-range communication network are the internet, also referred to as the world wide web, or a telecommunication network, such as the 4G, LTE, 5G, NR network.
  • One specific example of using a long-range transmission is transmitting a message, or any type of data, based on the hypertext transfer protocol, http, where the message may be a http message.
  • the authentication message may be encoded as a http message which is transmitted from the aerosol generating device to the server.
  • the message may be transmitted using a long-range connection as discussed above.
  • the device 102 may access the server via an intermediary device: For example, via a wireless router to which the device 102 it is connected by means of Bluetooth or WLAN/WiFi, wherein the wireless router is a communication device having a wide area (e.g. WAN) communication unit for accessing a wired and/or wireless WAN (e.g. 3G, 4G, 5G, etc.) and a local communication unit, like e.g. Bluetooth or WLAN/WiFi unit, for connecting to the device 102.
  • WAN wide area
  • WAN wireless wide area
  • wireless WAN e.g. 3G, 4G, 5G, etc.
  • a local communication unit like e.g. Bluetooth or WLAN/WiFi unit, for connecting to the device 102.
  • the aerosol generating device 102 is capable of addressing the server in a way that is transparent to the intermediary device, i.e. the intermediary device facilitates the wide area connection without changing the messages originating and/or terminating at the device 102 or at the server (i.e. the device 102 and the server remain the two ends of an end-to-end connection, wherein one is the originating end and the other the terminating end of communication); it may be said that the intermediary device acts like a network node with regard to the communication between device 102 and server 103.
  • the end-to-end communication between the device 102 and the server is encrypted; in case an intermediary device is used, this will thus not be able to read the content of the messages exchanged between the device 102 and the server.
  • a message is sent from a first device to a second device.
  • the first and second device are each indicated by a vertical line that is labeled with the corresponding device.
  • the message transmitted between these devices is depicted as an arrow where the device, which sends the message, is indicated by the arrow-head-less end of the arrow and the second device, which receives the message transmitted from the first device, is pointed at by using the arrow head between the two vertical lines corresponding to the first and second device.
  • the authentication result message 104 is indicated as an arrow between a vertical line labeled "Aerosol generating device, 102" and a vertical line labeled "Server, 103".
  • the arrow-head points at the vertical line labeled "Server, 103" and the arrow-head- less end ends at the/close to the vertical line label "Aerosol Generating Device, 101".
  • the arrow between these two vertical lines thus represents the authentication result message being sent from the aerosol generating device to the server.
  • the authentication result message 104 indicates a result of user authentication performed by the aerosol generating device 102.
  • the term user authentication may refer to performing a method for verifying the identity of a user of a device, such as the aerosol generating device.
  • User authentication may also refer to performing a method where the identity of a user is determined based on input received from a user through an authentication interface.
  • the identity does not necessarily need to correspond to the actual identity of the person (in the sense of the personal details as from e.g. a passport), but rather an identity that allows to distinguish one user from any other user amongst a plurality of users.
  • Typical examples of user authentication comprise comparison of an input fingerprint to a stored finger-print, comparison of an input codeword (e.g.
  • the authentication result message then may indicate the result of user authentication, where the result of user authentication may, for example, be true, false, successful user authentication, failed user authentication or also that the authentication process failed in the sense that it did not produce a result .
  • the result may be indicated using a string of bits, one bit or Boolean values, where 0 may stand for the Boolean value true and 1 may stand for the Boolean value false. Alternatively, 1 may stand for the Boolean value true and 0 may stand for the Boolean value false.
  • the server 103 Based on the authentication result message 104, the server 103 sends to the communication device 101 an instruction message 105. In other words, after receiving the authentication result message, the server sends (transmits) an instruction message to the communication device. Stated differently, the transmission of the instruction message may be started upon (triggered by) receipt of the authentication result message at the server.
  • the term "based on” here refers to the fact that the result of user authentication determines if the instruction message is sent, or not. Specifically, if the authentication result message indicates successful authentication of a user, the server may transmit (send) the instruction message. Alternatively, the server may send an instruction message by default and may be configured to not transmit the instruction message if the authentication result message indicates unsuccessful authentication.
  • the instruction message may be sent from the server to the communication device using a long-range connection discussed above.
  • the instruction message 105 instructs the communication device 101 to allow management of the aerosol generating device 102 using the communication device 101. Instructing the communication device to allow management comprises starting the allowing of management after the instruction message is received. For example, after having received the instruction message, the communication device may allow management of the aerosol generating device. In other words, the instruction message starts (triggers) a process at the communication device, wherein the process allows management of the aerosol generating device on the communication device.
  • the instruction message may comprise information or data based on which the communication device allows management of the aerosol generating device. The information may provide data used by the communication device to provide a user interface, such as a website, at the communication device. Wherein the website then may allow management of the aerosol generating device.
  • the management of the aerosol generating device refers for example to the user controlling the operation of the device, like for example any one or a combination of setting any of the operating parameters of the device (e.g. LED colours emitted at the aerosol generating device, heating temperature of the aerosolisable liquid, vaping sessions time at the aerosol generating device), issuing any command that influences operation of the device (e.g. issue commands for LED colours emitted at the aerosol generating device, heating temperature of the aerosolisable liquid, vaping sessions time at the aerosol generating device), and stopping the device from working in case of unauthorized use (child protection) etc.
  • any of the operating parameters of the device e.g. LED colours emitted at the aerosol generating device, heating temperature of the aerosolisable liquid, vaping sessions time at the aerosol generating device
  • issuing any command that influences operation of the device e.g. issue commands for LED colours emitted at the aerosol generating device, heating temperature of the aerosolisable liquid, vaping sessions time at the aerosol
  • the above embodiment results in an improved security when managing the aerosol generating device 102 using the communication device 101.
  • conventional aerosol generating devices are often managed using a portable computing device and a short-range connection between the aerosol generating device and the portable computing device. For instance, a smart-phone and a blue-tooth connection between the smart-phone and the aerosol generating device may be used.
  • authentication can be either performed at the aerosol generating device or at the portable computing device.
  • management of the aerosol generating device may be allowed either at the aerosol generating device or at the portable computing device.
  • the browser may be a secure browser which can be installed on any electronic device, the browser may be able to pass a first security check or authentication check based on a username and a password.
  • the secure browser may receive a username and a corresponding password that are checked at a server or the browser.
  • the communication between the vaping device 102 and the server 103 involves a second security check or authentication check, based on user feedback or receiving user feedback.
  • the user may input a code (unique identifier) at the vaping device, wherein the code is transmitted to the server.
  • the server checks the code and thereby authenticates the user.
  • the user feedback may be a user pushing (pressing) a button on the vaping device 102 and/or the user may perform a gesture with the vaping device 102.
  • a gesture may be one operation or a combination of operations, wherein each operation is detectable by e.g. a gyro sensor and/or an accelerometer on the vaping device.
  • gestures comprise shaking, double tapping (detectable by e.g. a gyro sensor and/or an accelerometer on the vaping device 102), etc.
  • a gesture may be the movement of one, two, or more fingers on a surface of the vaping device.
  • user feedback comprise signals or data received from sensors on the vaping device, such as a camera, or a microphone.
  • a user could speak a (predetermined) sentence into the microphone as user feedback, wherein the audio-signal corresponding to the spoken sentence can be matched to a pre-stored audio-signal.
  • a user could look into the camera, thereby providing an image of a face to the vaping device as a user feedback, wherein the image of the face then can be matched to a pre-stored image.
  • the proposed solution ensures that the authentic user is controlling the device.
  • a media access control address, MAC address, of the aerosol generating device transmitting an authentication result message to the server may be stored at the server, wherein the MAC address of the aerosol generating device may be hidden to the user of the aerosol generating device and/or to the aerosol generating device itself.
  • MAC address MAC address
  • fabricated/faked authentication result messages can be identified.
  • Using the server may optionally allow further for encrypting the instruction message and the authentication result message, and providing a more secure key for exchanging these messages end to end between the device 102 and the server.
  • the above method for performing an authentication-based configuration of an aerosol generating device may optionally comprise the additional transmissions/steps discussed in the following embodiments.
  • Fig. 2 shows an embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device, wherein to allow management of the aerosol generating device 102 using the communication device 101 comprises the steps of, based on the instruction message 105, sending from the communication device 101 to the server 103 a user input management message 201 indicating a management operation for the aerosol generating device 102 input by the user 100 by input-means of the communication device 101, and, based on the user input management message 201, sending a management message 202 from the server 103, instructing the aerosol generating device 102 to perform the management operation.
  • the user input management message 201 is sent based on the instruction message. For example, the user input management message is sent after the instruction message is received. Stated differently, receiving the instruction message at the communication device triggers the sending of the user input management message. In other words, sending the input management message may be started upon receipt of the instruction message at the communication device.
  • the user input management message may be sent using a long-range connection, as discussed above, between the communication device and the server.
  • the user input management message may be a message having a format designed for long range connections. For instance, in terms of the client-server model, the message may have the format of a http message that is sent as a request from the communication device acting as a client to the server acting as a server.
  • the user input management message may comprise data indicating parameters used for managing the aerosol generating device. E.g., these data may indicate specific parameter-values, such as a heating temperature, or the data may indicate a specific configuration or setup of the aerosol generating device.
  • the server may then process these data and generate a management message comprising further data corresponding to the setup, configuration, or specific parameter values indicated by the user input management message.
  • the user input management message 201 indicates a management operation for the aerosol generating device.
  • a management operation for example refers to an operation, preferably by a user or in consequence of a user's setting and/or command, to be performed by the aerosol generating device whereby the aerosol generating device's configuration is changed based on any of the operating parameters of the aerosol generating device, or executing any command that influences operation of the aerosol generating device, as discussed above.
  • the aerosol generating device's configuration may be changed based on (adapted to) the setup, configuration, or parameters indicated by the data comprised in the management message.
  • the management operation is input by the user by input-means of the communication device 101.
  • inputting the management operation comprises all operations a user of a communication device can perform at the communication device using input-means/units/devices provided by the communication device, whereby data that indicates (corresponds to, contains, represents) the user's input is generated and stored at the communication device.
  • a user may enter a command using input means, such as a keyboard, indicating a specific management operation to be performed by the aerosol generating device.
  • a user may touch the surface of a touchpad and thereby indicate a management operation.
  • a user may use a mouse and click on a displayed icon or icons, and thereby indicate a management operation.
  • the user may perform gestures, either on the surface of a touchpad or using a mouse, thereby indicating a management operation.
  • the management operation may be input after receipt of the instruction message from the server.
  • the management operation may also be input before receipt of the instruction message from the server.
  • the management message 202 is sent based on the user input management message.
  • the management message is sent after the user input management message is received.
  • receiving the user input management message at the server triggers the sending of the management message.
  • sending the management message may be started upon receipt of the user input management message at the server.
  • the server may process the content of the user input management message, thereby generating the content of the management message.
  • the user input management message may comprise data indicating the management operation for the aerosol generating device.
  • the server may derive a set of sub operations to be performed at the aerosol generating device when performing the management operation.
  • the server may also derive a set of parameters to be used when performing the sub operations or the management operation at the aerosol generating device.
  • the server may then generate a management message indicating the set of sub operations and/or parameters.
  • the management message may be sent from the server to the aerosol generating device using a long-range connection as discussed above.
  • the management message may have a format designed for such long-range connections.
  • the management message may be a http message.
  • the aerosol generating device may then receive the management message comprising the indication of the management operation and/or the set of sub operations and/or the one or a set of explicit or implicit parameters and change its configuration based thereon.
  • a specific example of the user inputting one management operation is a user inputting a command indicating that the heating temperature of the aerosolisable liquid shall be set to, for example, 125 degrees Celsius, where other values in the range between 100 to 250 degrees Celsius are possible, where the specific temperature may be either indicated as an explicit parameter.
  • a specific example of the server deriving a set of sub operations to be performed is that the user inputs a command at the input-means of the communication device, wherein the command indicates a specific setup of the aerosol generating device, which may correspond to the management operation to be indicated in the user input management message. The server receives the user input management message indicating this setup.
  • the server may store a structured data, such as a table, in storage means of the server, linking the setup to at least two sub operations to be performed by the aerosol generating device. Based thereon, the server may determine the at least two sub operations linked to a received setup-indication and generate the management message indicating the sub-operations. E.g., the setup indicated may be "calming vanilla vaping". After having received the user input management message indicating this setup as a management operation, the server may then, based on the structured data stored at the server, derive the sub-operation "set LED light to blue” and the sub-operation "set heating temperature to 110 degrees Celsius" as the set of sub operations which is indicated by management message.
  • a structured data such as a table
  • the aerosol generating device may then perform the above management operations and thereby change its configuration in line with the parameters and/or operations and/our sub-operations indicated by the management message.
  • the above sequence of user input management message and management message that are sent/transmitted between the communication device, server, and aerosol generating device allows for using the server as an intermediary.
  • Using the server as an intermediary increases the security of the authentication-based configuration method because a server, which is located remotely and usually maintained by professionals, is not as susceptible to attacks as the aerosol generating device or the communication device, which each can be purchased by an attacker.
  • the content of the two messages may furthermore take different forms, indicating operations, sub-operations, parameters.
  • the transmission load and the processing load can be adjusted because. E.g., sending a message from the communication device to a server indicating only one operation requires fewer transmission resources than sending a set of sub-operations alongside corresponding parameters to a server.
  • the above embodiment of a method for performing an authentication-based configuration of an aerosol generating device may optionally comprise the additional transmissions/steps discussed in the following embodiments.
  • Fig. 3 shows an embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device, wherein to allow management of the aerosol generating device on the communication device comprises the step of providing a web-interface at the communication device 301, allowing a user 100 to enter user input 302 indicating a management operation for the aerosol generation device 102, wherein the user input management message is obtained based on said user input.
  • a web-interface 301 is an interface allowing a user 100 to access and/or change a system's configuration, wherein the system comprises a communication device (that may act as a client), a server (that may act as a server) and an aerosol generating device (that act as another client which is accessed by the server). Accessing and changing the system's configuration may be done using message sent over a long-range connection, such as the internet.
  • a web-interface receives input from a user interface where a user may enter user-input. The user interface may be provided by the communication device. The web-interface then passes on (forwards) the user-input to another device, e.g., the server.
  • the web-interface may not allow for changing or processing the user-input at the communication device, but (only) passes on (forwards) the user-input to the server or the other device using at least one message having a specific format and content.
  • a user may input the above discussed parameters, setup or configuration indicators used for managing the aerosol generating device at the web-interface provided at the communication device.
  • the communication may then forward directly these data to the server or another device using a long-range connection as mentioned above, e.g., using a http message.
  • the user-input may then be processed at the server or the other device.
  • Changing a system's configuration comprises changing the configuration of one or more of the system's constituents.
  • the system's constituents may comprise the aerosol generating device, the server and the communication device.
  • the web interface allows managing the device 102 without the need to install any application on the communication device dedicated to the device 102, i.e. a common internet browser of the communication device 101 may be used to provide the web interface.
  • Typical examples of a web-interfaces comprise a user interface, Ul, a graphical user interface, GUI, which can be used by a user for inputting commands, information, or data.
  • Examples of a GUI comprise a conventional web-browser for interacting with the system.
  • a web-browser may display the contents of one or more a plurality of (html) files comprised in the instruction message 105 which was received by the communication device 101 from the server 103.
  • a user may input parameter-values or indicate aerosol generating device setups, wherein a setup may comprise a set of at least two parameters, e.g., by inputting data at input fields displayed by the communication device.
  • the web-interface then furthermore comprises hardware means, such as a websocket, a socket, etc., which act as further transmitting means between the communication device and the server for transmitting messages, such as http messages.
  • user input furthermore may refer to any type of indication of a management operation, message, command, or notification corresponding to a management operation, which is entered into (input to) the web-interface by the user.
  • the user input may be input to the web-interface via a user interface.
  • the management operation indicated may be one of the management operations discussed in the above embodiment.
  • the contents of user input may comprise a command entered at the web-interface (via the user interface), a specification of parameters to be used when configuring the aerosol generating device, a specification of a configuration of the aerosol generating device.
  • the user input management message being obtained based on said user input may be referred to as generating the user input message by including the user input into a user input management message having a specific format.
  • the specific format may be used for transmitting messages over a network connecting the server and the communication device.
  • Specific examples comprise generating a http message containing the user input at the communication device.
  • the http message may then be sent from the communication device, which may be a client, to the server, which may act as a server, in the manner discussed above.
  • using a web-interface in the manner discussed above provides a platform-independent access-point for indicating a management operation by a user, while reducing the processing load on the communication device. This is because the webinterface only forwards the received user-input using the user input management message but does not perform any further, device-dependent processing of the user-input on the communication device.
  • the web-interface 301 is accessible via a user interface provided by the communication device 101, preferably a website displayed by an internet browser provided at the communication device, wherein the internet browser preferably is a built-in or common internet web browser.
  • a website comprises at least one html file, or a plurality of html files requested from the server by the communication device via the internet browser, wherein the internet browser is executed on the communication device.
  • An internet browser refers to an application, program, or software (software system) that is executable on computing devices, such as the communication device, wherein the software is configured to send and receive messages from a server.
  • the software is furthermore platform independent, wherein platform independent refers to the software being independent of the specific technological platform (communication device) used to implement it (on which software is installed).
  • the messages sent and received from the server may have a specific format, e.g., the http format.
  • an internet browser comprises software such as opera, firefox, thor-browser, the internet explorer, Microsoft edge, safari, etc.
  • the website-based web-interface advantageously allows for platform-independent management of the aerosol generating device. This is, since a web-browser is available for various types of communication devices, which may be referred to as platforms, the specifics of a communication device, such as the operating system, become irrelevant for managing the aerosol generating device. Thereby, in comparison to platform-based applications that, for instance, are designed for specific operating systems, the flexibility of the device management is improved.
  • Fig. 4 shows an embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device, comprising the further steps of sending from the communication device 101 to the server 103 a configuration start message 401 indicating a user intention for management of the aerosol generating device 102, and, based on the configuration start message, sending an authentication initiation message 402 from the server 103 to the aerosol generating device 102, instructing the aerosol generating device 102 to perform the user authentication.
  • the configuration start message may be a message of a format that is known to the server and allows including data.
  • the configuration start message may furthermore be sent via a long-range connection.
  • the configuration start message may have a format used for transmissions via a long-range connection, such as the ones discussed above.
  • the configuration start message may be a http message.
  • the data included in the configuration start message may then indicate the user intention. This is, the data indicating the user intention may be interpreted by the server as an indication of the user to start management the aerosol generating device in the manner discussed in the previous embodiments.
  • a user intention for management of the aerosol generating device 102 refers to any action performed by a user 100 of the communication device 101 at the communication device 101 whereby the user 101 indicates his wish to manage the aerosol generating device.
  • the user may perform an operation at, or input a command at, a user interface provided by the communication device.
  • Examples of a user interface comprise the examples discussed in the embodiments above and a webpage, such as one or multiple html files, displayed using a web browser, wherein the web browser is displayed at a display of the communication device to the user.
  • An alternative to a web browser is a command shell displayed at a display of the communication device.
  • a user may enter a request into the user interface provided by the communication device.
  • This request may correspond to a command.
  • the request may furthermore correspond to a set of information or data.
  • the configuration start message is generated at the communication device and transmitted from the communication device to the server.
  • the user intention for management of the aerosol generating device may be represented by a data field, a string of bits, or a bit, comprised in the configuration start message, which the server interprets as indicating the user intention.
  • the user intention may furthermore be indicated by the configuration start message being sent from the communication device to the server and being received at the server, only.
  • the configuration start message may be generated and transmitted from the communication device 101 to the server 103 by the user 100 logging in to a website using a conventional web browser, and requesting a configuration page for managing the aerosol generating device at the website displayed by the web browser. This results in a request message being generated at the communication device, which is transmitted to the server.
  • the request message may have the format of a http message.
  • a http message may contain a GET, POST, PUT and DELETE instruction, thereby indicating the user intention, and, as discussed above, the user intention may be represented as data contained in the http message.
  • the authentication initiation message being based on the configuration message may also be referred to as transmission of the authentication initiation message being triggered by receipt of the configuration start message at the server. Stated differently, if the server receives the configuration start message, the authentication information message is generated at the server and the server transmits the authentication information message to the aerosol generating device.
  • the authentication initiation message may be sent (transmitted) using techniques, such as addressing, message formats, etc. commonly known in embedded systems or networks such as the internet.
  • the message may be sent using a long-range connection between the server and the aerosol generating device.
  • the aerosol generating device may act as client and the server as the server.
  • the aerosol generating device may also act as a server while the server acts as client of the aerosol generating device.
  • the authentication initiation message may be a http, hypertext transfer protocol, message.
  • other protocols such as proprietary protocols, or protocols specifically designed for transmission between the aerosol generating device and the server may be used for this transmission.
  • the transfer control protocol and the internet protocol may be used for providing communication links between the server and the aerosol generating device.
  • Instructing the aerosol generating device to perform the user authentication may also be referred to as causing the aerosol generating device to start an authentication of a user. Specifically, the authentication may be started once the aerosol generating device receives the authentication initiation message from the server.
  • the above described two steps allow for improved security because authentication at the aerosol generating device is only started after receipt of the authentication initiation message at the aerosol generating device.
  • transmission of a corresponding authentication result message to the server is limited to fixed timespans after the receipt of the authentication initiation message.
  • a server may listen for authentication result messages to be received from an aerosol generating device periodically, permanently, or at fixed time spans. If an attacker knows these timespans or points in time, a fabricated authentication result message may be sent to the server, instead of a genuine authentication result message. The fabricated authentication result message may indicate successful authentication. Based thereon, an invalid user may be allowed to manage the configuration of the aerosol generating device.
  • Fig. 5 shows an embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device, comprising the further step of, based on the authentication initiation message 402, providing an authentication interface 501 at the aerosol generation device 102 to a user 100, allowing for the user authentication.
  • providing the authentication interface based on the authentication initiation message may be referred to as providing the authentication interface after the authentication initiation message is sent from the server to aerosol generating device and/or is received at the aerosol generating device.
  • receipt of the authentication initiation message at the aerosol generating device triggers the start of the authentication interface.
  • the authentication initiation message may comprise information used for starting or configuration the authentication interface.
  • the authentication interface may be provided based on the authentication message may be referred to as the authentication interface being generating, started, configured where the contents of the authentication message are used as input for the generating, starting, or configuring.
  • the authentication initiation message may comprise a random number, a code, a seed, the date and time of sending the authentication initiation message from the server, which is used for initializing the authentication interface at the aerosol generating device.
  • the authentication interface may be provided to the user based on information contained in the authentication initiation message.
  • the authentication interface may be provided to the user upon reception of the authentication initiation message at the aerosol generating device, only. In other words, receiving the authentication initiation message may trigger the providing of the authentication interface at the aerosol generating device.
  • an authentication interface may be provided by a (sub) device configured to allow a user to put in information to be used when performing authentication. Based on the input, a user can be authenticated. This yields a result of the user authentication discussed throughout the above embodiments.
  • the authentication interface allows to verify the identity of a user at the aerosol generating device, based on data that is input to the aerosol generating device via the authentication interface.
  • the authentication interface can be configured as a user interface through which data is obtained at the aerosol generating device. Then, using a web interface, the data may be forwarded unprocessed to the server. E.g., fingerprint data may be forwarded to the server without further processing.
  • the authentication interface may also be configured as a webapplication, which processes the input data at the aerosol generating device and forwards the processed data to the server.
  • fingerprint data may be encrypted, and the encrypted data may be forwarded to the server.
  • Inputting of data may be active or inactive.
  • Active input refers to a user performing an operation at the authentication interface that corresponds to a specific input.
  • a user may input a ten-digit code.
  • Inactive input refers to cases where the device is configured to obtain information to be used without the user performing a specific action. E.g., the device may take a photo of a user.
  • an authentication interface comprise a fingerprint sensor, input means for entering a code comprising digits, buttons to be pressed in a specific sequence, a video camera configured to obtain an image of a user's face, voice verification means where a user can be verified by entering a prestored sentence.
  • a user's identity can be verified without a specific authentication-application being installed at the communication device.
  • authentication is simplified.
  • authentication is rendered more secure because conventional ways of forging authentication results, e.g., by hacking an authentication-application installed at the communication device, are made inaccessible to attackers.
  • Fig. 6 shows an embodiment of the method for performing an authentication-based configuration of an aerosol generating device by means of a server and of a communication device, comprising the further steps of sending from the communication device 101 to the server 103 an identifier message 601 indicating an identifier of the aerosol generating device 102, storing 602 the identifier at the server 103, and wherein sending the instruction message 105 based on the authentication result message 104 comprises, based on the identifier 601, verifying 603 the authentication result message 104 at the server 103, and sending the instruction message 105 based on the result of the verifying 603.
  • the identifier message 601 may be sent from the communication device 101 to the server 103 using a long-range connection as discussed above.
  • the identifier message may have a format and content adapted to the properties of the long-range connection.
  • the identifier message may be a http message used for an internet-connection between the communication device and the server.
  • the above identifier may be assigned to one device out of a plurality of devices, wherein each, or a subset, of the plurality of devices may be assigned a different identifier.
  • Each of the plurality of devices may be an aerosol generating device.
  • the plurality of devices may also comprise devices of different types, such as personal computers, aerosol generating devices, tablets, communication devices, terminals, etc.
  • the identifier may furthermore be a unique identifier.
  • a unique identifier is an identifier of a device unique among all identifiers used for identifying a plurality of devices. The term unique refers to the property of an identifier having a negligible probability of duplication.
  • an identifier may be a code, a string of numbers, a string of bits, a string a hexadecimal-numbers, or, in general, any kind of data allowing to (uniquely) identify an device.
  • the device may be part of and (uniquely) identified in a distributed system, network, computer network.
  • a unique identifier may be a network unique identifier, a device-based unique identifier, a globally unique identifier (GUID), a universally unique identifier (UUID).
  • GUID globally unique identifier
  • UUID universally unique identifier
  • the identifier may be specifically designed for the purpose of authentication-based configuration of an aerosol generating device.
  • the identifier may be input at the communication device by the user before sending the identifier message. Inputting the identifier at the communication device may be based on a user interface of the communication device.
  • the user interface may comprise a display and keyboard or mouse, a touch pad, an application program controlling the camera of the communication device, or any kind of input means provided by the communication device allowing for inputting data to the communication device.
  • a user may use the camera of comprised in the communication device for scanning a QR-code, wherein an application program converts the QR code to data representing the identifier.
  • a user may type in a code of decimal digits and/or letters of an alphabet at a graphical user interface (display) provided at the communication device.
  • the identifier may be hidden from direct access by a user.
  • the identifier may be encrypted.
  • the identifier may be encrypted before being input to the communication device.
  • the communication device may then decrypt the identifier and forward the decrypted identifier to the server by sending the identifier message indicating the identifier.
  • the communication device may forward the encrypted identifier to the server directly by sending the identifier message and the server may decrypt the encrypted identifier indicated by identifier message.
  • the identifier may be encrypted as a QR code which can be scanned in the manner discussed above.
  • the identifier message 601 is sent from the communication device 101 to the server 103 before the configuration start message 401 is sent from the communication device 101 to the server 103.
  • the identifier message 601 may also be sent after the configuration start message 401 was sent, and the identifier may thus also be stored after the configuration start message 401 was sent and the identifier message 603 was received at the server 103.
  • encrypting the identifier at the aerosol generating device and thereby rendering it difficult for a user in possession of the aerosol generating device to explicitly know the identifier which is linked to the specific aerosol generating device improves the authentication-based configuration-method's security.
  • the authentication result message is verified based on the identifier stored at the server by comparing the stored identifier to data comprised in the authentication result message.
  • this data may be the identifier of the aerosol generating device that supposedly sends the authentication result message.
  • a forged authentication result message may be generated by an attacker which may be verified by the server even though it is not sent from the aerosol generating device.
  • the identifier is encrypted before being input to the communication device and the user thus can hardly know the identifier, spoofing/forging/fabricating of an authentication result message is made more difficult. As this route of attacking the system is rendered more difficult, the system's security is improved.
  • an identifier comprises an (incremental) serial number of the aerosol generating device, a 128-bit number (GUID, UUID), and a media access control address (MAC address).
  • GUID 128-bit number
  • MAC address media access control address
  • Other words commonly used synonymously for the MAC address are burned-in address, Ethernet hardware address, hardware address, physical address.
  • the server 103 stores the identifier using a storage unit.
  • the server may receive the identifier message from the communication device, compute the identifier indicated by the identifier message, and store the identifier at the storage unit. Ways of computing the identifier comprise unpacking the identifier indicated by the identifier message, decrypting the identifier, interpreting the indication of the identifier and identifying an identifier based on the indication. Stated differently, the identifier may be stored at the server based on the identifier message.
  • the server may receive an identifier message from the communication device in http format, wherein the identifier message contains the identifier in its body.
  • the server may obtain the identifier contained in the identifier message and store it at the storage unit.
  • Specific examples of a storage unit comprise conventional hard drives or hard disks used in servers.
  • the storage unit may store a data structure, such as an array or table, wherein the data structure contains at least one user profile and can store a plurality of user profiles.
  • the server may store the identifier in connection with a user profile. Stated differently, the identifier may be stored at the server as linked to a user profile.
  • the instruction message 105 is sent based on the authentication result message 104.
  • this step comprises two substeps.
  • the first sub-step is, based on the identifier, verifying the authentication result message at the server.
  • the verifying the authentication result message at the server refers to the server determining (confirms, checks) whether the authentication result message was sent from the aerosol generating device. Stated differently, the server authenticates the authentication result message. Stated differently, the authentication result message is identified by the server as being received from the aerosol generating device, or not. The verifying is based on the identifier, such as the MAC address of the aerosol generating device, which is stored at the server. For instance, a verification method may be applied by the server, wherein this method takes the identifier as an input and provides a verification result as an output. For instance, the verification method may comprise comparing the identifier stored at the server to data contained in the authentication result message, wherein the authentication result message is received after storing the identifier.
  • the data contained in the authentication result message may indicate an identifier of the aerosol generating device, as discussed above. If the identifier stored at the server and the data contained in the authentication result message match, verifying is successful. Otherwise, the verifying fails. The verifying being successful, or the verifying failing are examples of the verification result.
  • the verification result (result of the verifying) may be data representing or indicating successful or failed verification of the authentication result message, such as a Boolean value, or a bit.
  • the second sub-step is sending the instruction message (to the aerosol generating device) based on the result of verifying.
  • the server may transmit the instruction message if the verification result indicates successful verification of the authentication result message.
  • the server may transmit the instruction message if the verification result does not indicate failed verification of the authentication result message.
  • the server may also transmit the instruction after the verification is performed by default, and then may block the transmission if the verification result indicates failed verification, or if the verification result does not indicate successful verification.
  • the identifier may be the MAC address of an aerosol generating device 102 which was indicated in an identifier message having http format, wherein the MAC address was, after receiving the identifier message from the communication device 101, stored at the server 103.
  • the aerosol generating device 102 then transmits the authentication result message 104 in http format, wherein the authentication result message also carries the MAC address of the aerosol generating device transmitting the message.
  • the server 103 now verifies the authenticity of the aerosol generating message by comparing the already stored MAC address to the MAC address comprised in the authentication result message 104. If the addresses match, verification is successful and thus an instruction message 105 is sent to the communication device 101.
  • the authentication result message is detected as fabricated and thus no instruction message 105 is sent to the communication device 101. It is conceivable that other types, contents, or properties of the authentication result message 105 may be cross-checked against an identifier indicated in the identifier message discussed above. E.g., one of the (unique) identifiers discussed above may be comprised in the authentication result message and then cross-checked against the already stored identifier indicated in the identifier message.
  • this embodiment's verification mechanism improves the authentication-based configuration-method's security further. This is because the identifier stored at the server is used for verifying the authentication result message, e.g., in the manner discussed above. Thus, spoofed authentication result messages can be identified, and the method can be stopped if a spoofed authentication result message is detected, for instance, by only sending the instruction message upon successfully verifying the authentication result message. Thus, an attacker trying to get access to the aerosol configuration management based on a fabricated authentication result message is denied access.
  • Fig. 7 shows an embodiment of a system 10 for performing an authentication-based configuration of an aerosol generating device 102 by means of a server 103 and of a communication device 101.
  • the system may comprise a communication device 101, an aerosol generating device 102 and a server 103.
  • the devices comprised in this system 10 may be configured to perform the operations and method steps in the manner discussed in the above embodiments.
  • the aerosol generating device 102 is configured to send to the server 103 an authentication result message 104 indicating a result of user authentication performed by the aerosol generating device 102.
  • the server 103 is configured to, based on the authentication result message 104, send an instruction message 105 from the server 103 instructing the communication device 101 to allow management of the aerosol generation device 102 on the communication device 101.
  • the further definitions of the messages and terms may be the ones discussed in the above embodiments.
  • Configuration-details of the aerosol generating device 102 and the server 103 comprised in the system 10 are detailed below.
  • the system 10 may furthermore comprise a communication device 101 which is configured to and provides means for carrying out the operations discussed throughout the above embodiments, possibly in interaction with the aerosol generating device 102, the server 103 and the user 100.
  • the communication device 101 may be configured to perform the steps as discussed throughout the above embodiments.
  • the communication device may comprise means configured to carry out the steps as discussed throughout the above embodiments.
  • Figure 8 shows an embodiment of a configuration of an aerosol generating device 102 for performing an authentication-based configuration of the aerosol generating device 102 by means of a server 103 and of a communication device 101.
  • the aerosol generating device 102 may be comprised in the above system 10 and may be configured to carry out the operations and steps as discussed throughout the above embodiments.
  • the aerosol generating device 102 comprises a transmission means 1021, a reception means 1022, and a storage means 1023, and a processing means 1024, and aerosol generating device means 1025.
  • the aerosol generating device means 1025 may comprise any of means or devices which are usually comprised in an aerosol generating device, e.g., as discussed in the above embodiment.
  • the transmission means 1021 may be configured to transmit (send) the messages discussed throughout the above embodiments.
  • the reception means 1022 may be configured to receive the messages, input, userinput, data, and types of information discussed throughout the above embodiments.
  • the storage means 1023 may be configured to store data, messages, the contents, indications, or any other type of data related to, provided by, generated by, obtained by, or indicated by any one of the messages, notifications, operations, or steps as discussed in the above embodiments.
  • the processing means 1024 may be configured to perform any of the steps as discussed in the above embodiments. These operations may be either based on the content of the messages alone, may be based on the data stored in the storage means and the data contained in the messages, or may be based on the data stored in the storage means only.
  • the aerosol generating device 102 may be configured to perform the steps as discussed throughout the above embodiments.
  • the aerosol generating device 102 may comprise means configured to carry out the any of the steps as discussed throughout the above embodiments.
  • the aerosol generating device may further contain an inputting means whereby a user can input data in the manner discussed in the embodiments.
  • the aerosol generating device may further contain an outputting means for outputting data in the manner discussed in the embodiments.
  • the aerosol generating device may further contain an authentication interface means configured to be used for authentication in the manner discussed in the above embodiments.
  • the transmission means 1021 may be configured to send to the server 103 an authentication result message 104 indicating a result of user authentication performed by the aerosol generating device 102.
  • Figure 9 shows an embodiment of a configuration of a server 103 for performing an authentication-based configuration of the aerosol generating device 102 by means of a server 103 and of a communication device 101.
  • the server 103 may be comprised in the above system 10 and may be configured to carry out the operations and steps as discussed throughout the above embodiments.
  • the server 103 comprises a transmission means 1031, a reception means 1032, and a storage means 1033, and a processing means 1034.
  • the transmission means 1031 may be configured to transmit the messages discussed throughout the above embodiments.
  • the reception means 1032 may be configured to receive the messages discussed throughout the above embodiments.
  • the storage means 1033 may be configured to store messages, the contents, indications, or any other type of data related to, provided by, generated by, obtained by, or indicated by any one of the messages, notifications, operations, or steps as discussed in the above embodiments.
  • the storage means 1033 may be further configured to store any type of data generated by performing operations on the data comprised in the messages received, or the data already stored at the storage means.
  • the processing means 1034 may be configured to perform any of the steps or operations as discussed in the above embodiments.
  • the processing means 1034 may be configured to perform operations based on the data comprised in the messages received. These operations may be either based on the content of the messages alone, may be based on the data stored in the storage means and the data contained in the messages, or may be based on the data stored in the storage means only.
  • the server 103 may be configured to perform the steps as discussed throughout the above embodiments.
  • the server 103 may comprise means configured to carry out the steps as discussed throughout the above embodiments.
  • the server 103 may comprise a transmission means 1031 which, based on an authentication result message 104, wherein the authentication result message 104 indicates a result of user authentication performed by the aerosol generating 102, and wherein the authentication result message 104 is received from the aerosol generating device 102, sends an instruction message 105 instructing the communication device 101 to allow management of the aerosol generation device 102 on the communication device 101.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

L'invention concerne un procédé permettant de réaliser une configuration basée sur l'authentification d'un dispositif de génération d'aérosol au moyen d'un serveur et d'un dispositif de communication, le procédé comprenant les étapes consistant à : envoyer, du dispositif de génération d'aérosol au serveur, un message de résultat d'authentification indiquant un résultat de l'authentification de l'utilisateur effectuée par le dispositif de génération d'aérosol; et, sur la base du message de résultat d'authentification, envoyer, du serveur au dispositif de communication, un message d'instruction donnant l'instruction au dispositif de communication de permettre la gestion du dispositif de génération d'aérosol sur le dispositif de communication.
PCT/EP2022/077920 2021-10-08 2022-10-07 Procédé, appareils et système pour réaliser une configuration basée sur l'authentification d'un dispositif de génération d'aérosol au moyen d'un serveur et d'un dispositif de communication WO2023057616A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
EP21201642 2021-10-08
EP21201642.2 2021-10-08

Publications (1)

Publication Number Publication Date
WO2023057616A1 true WO2023057616A1 (fr) 2023-04-13

Family

ID=78483099

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2022/077920 WO2023057616A1 (fr) 2021-10-08 2022-10-07 Procédé, appareils et système pour réaliser une configuration basée sur l'authentification d'un dispositif de génération d'aérosol au moyen d'un serveur et d'un dispositif de communication

Country Status (1)

Country Link
WO (1) WO2023057616A1 (fr)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP3666094A1 (fr) * 2017-08-09 2020-06-17 KT&G Corporation Procédé et dispositif de commande de cigarette électronique
WO2020128450A1 (fr) * 2018-12-17 2020-06-25 Nicoventures Trading Limited Intermédiaire de connectivité
EP3737108A1 (fr) * 2019-05-10 2020-11-11 JT International S.A. Configuration d'un dispositif informatique personnel pour la communication avec un dispositif de génération d'aérosol
WO2021122839A1 (fr) * 2019-12-19 2021-06-24 Jt International Sa Procédé d'authentification d'un consommable pour des équipements d'utilisateur (ue) avec un dispositif de génération d'aérosol

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP3666094A1 (fr) * 2017-08-09 2020-06-17 KT&G Corporation Procédé et dispositif de commande de cigarette électronique
WO2020128450A1 (fr) * 2018-12-17 2020-06-25 Nicoventures Trading Limited Intermédiaire de connectivité
EP3737108A1 (fr) * 2019-05-10 2020-11-11 JT International S.A. Configuration d'un dispositif informatique personnel pour la communication avec un dispositif de génération d'aérosol
WO2021122839A1 (fr) * 2019-12-19 2021-06-24 Jt International Sa Procédé d'authentification d'un consommable pour des équipements d'utilisateur (ue) avec un dispositif de génération d'aérosol

Similar Documents

Publication Publication Date Title
US10223520B2 (en) System and method for integrating two-factor authentication in a device
EP3053080B1 (fr) Systèmes et procédés de gestion de justificatifs d'identité entre des dispositifs électroniques
US20220191016A1 (en) Methods, apparatuses, and computer program products for frictionless electronic signature management
EP2936369B1 (fr) Vérification de mot de passe au moyen d'un clavier avec mode d'entrée de mot de passe sécurisé
EP3090373B1 (fr) Appareil d'authentification comportant une interface bluetooth
US9246904B2 (en) Secure web container for a secure online user environment
KR102035312B1 (ko) 사용자 중심의 인증 방법 및 시스템
WO2018198036A1 (fr) Système d'authentification et de gestion d'identité sans mot de passe au moyen d'un code qr à usage unique, et procédé associé
US20100199086A1 (en) Network transaction verification and authentication
US9635022B2 (en) Method of allowing establishment of a secure session between a device and a server
EP2586174A1 (fr) Vérification d'identité
JP6287213B2 (ja) 代行ログイン装置、端末、制御方法およびプログラム
JP2017063480A (ja) シークレットデータの秘匿性を保つ認証システム
KR101651607B1 (ko) 익명 아이디를 사용하는 원클릭 사용자 인증 방법 및 시스템
JP2004295761A (ja) 端末装置及び情報処理装置
WO2023057616A1 (fr) Procédé, appareils et système pour réaliser une configuration basée sur l'authentification d'un dispositif de génération d'aérosol au moyen d'un serveur et d'un dispositif de communication
WO2019013647A1 (fr) Procédé d'authentification, dispositif d'authentification, et système comprenant le dispositif d'authentification
KR101408124B1 (ko) 휴대형 단말기를 위한 인증 방법, 인증 장치 및 인증 시스템
TWM635540U (zh) 使用者登入及權限管理之系統
TW201543938A (zh) 快速安全連線建立方法與無線存取點裝置
JP2023081604A (ja) 認証システム、認証端末、認証サーバ及び認証プログラム
KR20080042669A (ko) 전자상거래 사이트의 원타임 패스워드 접속 장치 및 방법
JP2016152042A (ja) 情報処理装置、それにおける認証処理方法、及びプログラム

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 22799950

Country of ref document: EP

Kind code of ref document: A1