Patent Grant
8581690
The invention relates to electromechanical locks. The invention relates especially to programming of electromechanical locks.
Various types of electromechanical locks are replacing traditional mechanical locks. Electromechanical locks require an external supply of electric power, a battery inside the lock, a battery inside the key, or means for generating electric power within the lock making the lock user-powered. Electromechanical locks provide many benefits over traditional locks. They provide better security, and the control of keys or security tokens is easier.
In addition, most electromechanical locks and/or keys and tokens are programmable. It is possible to program the lock to accept different keys and decline others.
There are many programmable locking systems where special programming device is used for programming locks and keys; access data is defined by a computer interface and stored to a data base. These systems are widely used in industrial locking systems, schools, hospitals and rental apartment houses, for example. This kind of systems are too complex for private customers having typically 5 locks in a house, 4 keys for the family members and 1 key for a cleaner.
According to another aspect of the present invention, there is provided an electromechanical lock comprising a user interface configured to receive input from a user, the user interface activating operating power for the lock; a memory configured to store access tables, the access tables comprising information on the keys allowed to open the lock; and an electronic circuitry configured to modify the access tables on the basis of the insertions of an associated master key and an end function key into the lock, the insertion of the associated master key initializing a programming mode and the insertion of an end function key causing the lock to exit the programming mode.
According to yet another aspect of the present invention, there is provided a method in an electromechanical lock comprising: storing access tables in a memory, the access tables comprising information on the keys allowed to open the lock; and modifying the access tables on the basis of the insertions of an associated master key and an end function key into the lock, the insertion of the associated master key initializing a programming mode and the insertion of an end function key causing the lock to exit the programming mode.
According to yet another aspect of the present invention, there is provided an electromechanical lock comprising means for receiving input from a user and activating operating power for the lock; means for storing access tables; the access tables comprising information on the keys allowed to open the lock; and means for modifying the access tables on the basis of the insertions of an associated master key and an end function key into the lock, the insertion of the associated master key initializing a programming mode and the insertion of an end function key causing the lock to exit the programming mode.
The invention has several advantages. All functions related to access rights of a self-powered lock may be easily managed with the proposed solution. There is no need for a separate programming device or a computer interface or access data storing in a computer system.
Embodiments of the present invention are described below, by way of example only, with reference to the accompanying drawings, in which
The following embodiments are exemplary. Although the specification may refer to “an”, “one”, or “some” embodiment(s) in several locations, this does not necessarily mean that each such reference is to the same embodiment(s), or that the feature only applies to a single embodiment. Single features of different embodiments may also be combined to provide other embodiments.
With reference to
The external source 100 may be an electronic circuit configured to store the data. The electronic circuit may be an iButton® (www.ibutton.com) of Maxim Integrated Products, for example; such an electronic circuit may be read with 1-Wire® protocol. The electronic circuit may be placed in a key or a token, for example, but it may be positioned also in another suitable device or object. The only requirement is that the electronic circuit 112 may read the data from the electronic circuit. The data transfer from the electronic circuit to the electronic circuit 112 may be performed with any suitable wired or wireless communication technique. In user-powered locks, produced energy amount may limit the used techniques. Magnetic stripe technology or smart card technology may also be used as the external source. Wireless technologies may include RFID (Radio-frequency identification) technology, or mobile phone technology, for example. The external source may be a transponder, an RF tag, Near Field Communication (NFC) device or any other suitable memory type capable of storing data.
The unique key data may be copy protected by using crypted authentication technologies by matching the key data against predetermined criterion of the lock data. The authentication may be performed with SHA-1 (Secure Hash Algorithm) function, designed by the National Security Agency (NSA). In SHA-1, a condensed digital representation (known as a message digest) is computed from a given input data sequence (known as the message). The message digest is to a high degree of probability unique for the message. Naturally, any suitable authentication technique may be used to authenticate the data read from the external source. The selection of the authentication technique depends on the desired security level of the lock 106 and possibly also on the permitted consumption of electricity for the authentication (especially in user-powered electromechanical locks).
The electronic circuit 112 is configured to read access data from the electronic circuit 102 of the key 100 upon the key insertion.
The lock of
When the actuator 110 has set the lock in a mechanically openable state a lock bolt of a bolt mechanism 118 can be moved by rotating the key 100, for example. The mechanical power required may also be produced by the user by turning a handle or a knob of a door (not shown in
The electronic circuit 112 may be configured to provide a signal for the key 100 if the open command is not issued because the data does not match the predetermined criterion, so that the key 100 may inform the user that the data did not match the predetermined criterion. As a further improvement, the electronic circuit 112 may be configured to provide electric power for the key 100. An advantage of this is that the key 100 may inform the user with the electric power received from the electronic circuit 112. The key 112 may inform the user with a visual or an audio indicator, for example.
Each external source or key comprises unique access data which identifies the source or the key. A lock may be programmed to open with only a given set of keys. In an embodiment, a lock is configured to store access tables comprising key access data in a memory. The access tables comprise information on the keys allowed to open the lock. Keys that are not included in the access table do not open the lock.
In an embodiment, the access tables of a lock may be modified on the basis of the insertions of a specified set of keys called a master key and an end function key into the lock.
With reference to
When a key is inserted to the keyway 150 of the lock 106, for example, the lock is configured to generate electric power from the insertion and power up. The electronic circuitry 112 is configured to detect the insertion of the key and send a query or a challenge to the key. The key responds to the query. The lock is configured to detect the access data sent by the key. If the inserted key is a master key, the lock is configured to enter a programming state. If the key is not a master key, a key authorization process is started. In case the inserted key is allowed to open the lock, the lock 106 is set to an openable state and a lock bolt of a bolt mechanism 118 is moved by turning the key. If the key is not allowed to open the lock, the lock remains in a locked state. The key accesses may be stored in a memory of the lock.
In an initial or factory state, each lock is blank. The access list stored in the memory of the lock does not contain any key access data. A factory state lock is not associated with any master key. In an embodiment, all keys are capable of opening a blank lock. In another embodiment, the lock does not open with any key. Blank access data in a factory state lock enables efficient manufacturing and logistics processes.
However, each factory state lock is programmed to recognize a set of a specified set of keys called master keys and end function keys. Each master key has a unique access data stored in the key. Master keys and end function keys are used only in the programming of a lock. These keys do not open a programmed lock. In an embodiment, each end function key has the same access data stored in the key. However, each end function key may also have a unique access data. In an embodiment, a master key is used to start a lock programming sequence. The end function key is used to end the programming sequence.
In an embodiment, the end key function is performed when the lock recognizes the end key data read from the end function key. Referring to
Thus, in an embodiment, a key comprises an electronic circuit 102 configured to store at least two different sets of key access data, such as master key data and end key data. The key further comprises a switch or a button configured to select one of the stored key access data sets as an active set.
In the following examples separate master and end keys are used but a single master key with an end button or switch may be used as well.
With reference to the flow chart of
In step 202, a master key in inserted into the lock. In this example, electric power is produced on the basis of the movement of the key. The generated electricity powers up the lock. The electronic circuitry of the lock wakes up and reads the access data of the key. The access data may be read by sending a query to the key which responds with a reply. The electronic circuitry is configured to detect that the inserted key a master key. The master key data is stored to the lock memory as a key data item. In an embodiment, the insertion of a master key causes the electronic circuitry of the lock to enter a programming mode. After that the electric power runs out and the lock is “dead”, i.e. it powers down.
In step 204, a second key is inserted into the lock. The lock powers up again and queries the key access data from the key. As the electronic circuitry of the lock is in the programming mode, it is aware that the inserted key is not intended to open the lock. If the electronic circuitry recognizes the key is as an end function key, the end key access data is stored in a memory and the process continues 208. If any other key is inserted the process is cancelled in 206. As the lock is in a factory state and a master key has not yet been registered with the lock it will not accept any other keys to the access list at this point. In an embodiment, the insertion of an end function key causes the electronic circuitry of the lock to exit the programming mode.
In step 212, the lock has detected that an end function key has been inserted into the lock. The lock operates on the electricity generated when the end function key was inserted. The electronic circuitry performs a validation check for the data recorded in steps 202 and 204. In this case of initial programming, a sequence is valid if it comprises master key data and end key data. The process continues 214 if the data is valid and aborts 216 if not valid
In step 218, the electronic circuitry stored the master key data in the access memory. The master key inserted in step 202 is now associated with the lock.
In step 220, the process ends.
At this phase, the lock access rights can be managed by the associated master key. However, as normal keys have not yet been added into the access list of the lock the lock can't be opened.
In an embodiment, a master key is used to start a lock programming sequence. The end function key is used to end the programming sequence. In an embodiment, the number of times the master key is inserted successively into the lock may be used to determine the desired operation. Thus, if a master key is inserted X1 times into the lock successively, where X1 is a positive integer, new keys may be added to the access list stored in the lock. If a master key is inserted X2 times into the lock successively, where X2 is a positive integer but different from X1, keys may be removed from the access list stored in the lock.
In the above-mentioned procedures, individual keys are added to or erased from the access list stored in the memory of a lock. In some cases it may be advantageous to erase the whole access data list of a lock or return the lock into the factory state, for example. The number of times the master key is inserted successively into the lock may be used to denote also these operations. Thus, if a master key is inserted Y1 times into the lock successively, where Y1 is a positive integer but different from X1 and X2, the access list is erased. If a master key is inserted Y2 times into the lock successively, where Y2 is a positive integer but different from X1, X2, and Y1, the lock is returned to a factory state. In the factory state, the lock is not associated to any master key and the procedure described in connection with
An example of adding and removing keys to and from the access list is illustrated in the flowchart of
In step 302, the master key associated with the lock in inserted successively X times into the lock. Each time a master key is inserted into the lock, the lock powers up, the electronic circuitry detects the access data from the key and stores the access data as a key data item into the memory of the lock, and the lock powers down. The first insertion of the master key initiates the programming mode of the lock.
In this example, new keys are added to the access list if the master key is inserted once in step 302, and the keys are removed from the access list if the master key is inserted successively two times in step 302. Thus, in this example X1 equals to one and X2 equals to two. These numerical values are merely nonlimiting examples of possible values.
In steps 304 and 306, keys are inserted and recorded to the lock memory. Each time a key is inserted into the lock, the lock powers up, the electronic circuitry detects the access data from the key and stores the access data as a key data item into the memory of the lock.
In step 306 the electronic circuitry determines whether an end function key has been inserted. If not 308, the lock powers down and the process continues in step 304.
If an end function key is detected in step 306, the lock does not power down and the process continues 310.
In step 314, the electronic circuitry performs a validation check for the data recorded in steps 302 and 304. The electronic circuitry is configured to determine that the data recorded form a valid operation sequence. An operation sequence is valid if the stored key data items comprise a predetermined number of master key data items and N key data items where N an integer equal to or greater than zero and the last key data item is end key data. In this case, the sequence comprises either X1 or X2 master key items, a given number of key items and the end key item. The lock powers down and process aborts 318 if the validation check fails. The lock does not power down and the process continues 316 if the data is valid.
In step 320, the electronic circuitry of the lock updates the access list of the lock on the basis of the operation sequence. The access list is updated with the access data of the inserted keys if the master key was inserted once in step 302. The access data of the inserted keys is removed from the access list if the master key was inserted two times in step 302.
In step 322, the process ends.
In the example of
As described above, a master key may be used to start a lock programming sequence. The number of times the master key is inserted successively inserted into the lock may be used to determine the desired operation.
The method starts in 400.
In steps 402 and 404, the master key associated with the lock in inserted successively Y times into the lock. Each time a master key is inserted into the lock, the lock powers up, the electronic circuitry detects the access data from the key and stores the access data as a key data item into the memory of the lock, and the lock powers down. The first insertion of the master key initiates the programming mode of the lock.
In this example, the access data list of a lock is erased if the master key is successively inserted five times in step 402, and the lock is set to the factory state if the master key is inserted successively eight times in step 402. Thus, in this example Y1 equals to five and Y2 equals to eight. These numerical values are merely nonlimiting examples of possible values.
In step 404 the electronic circuitry determines whether an end function key has been inserted. If not 406, the lock powers down and the process continues in step 402.
If an end function key is detected in step 404, the lock does not power down and the process continues 408.
In step 412, the electronic circuitry performs a validation check for the data recorded in steps 402 and 404. The electronic circuitry is configured to determine that the data recorded form a valid operation sequence. An operation sequence is valid if the stored key data items comprise a predetermined number of master key data items and the last key data item is end key data. In this case, the sequence comprises either Y1 or Y2 master key items and the end key item. The lock powers down and process aborts 414 if the validation check fails. The lock does not power down and the process continues 416 if the data is valid.
In step 418, the access data list is erased if the master key was inserted 5 times in step 402 and the lock is set to the initial state if the master key was inserted eight times.
In step 420, the process ends.
With reference to
In an embodiment, more than one master key may be associated with a lock. One of the master keys may be the principal master keys and other keys may be sub master keys. However, multiple master keys are not required to create access groups. Access groups may be created by successively inserting the master key into the lock. Also different number of combinations of different level master keys may be provided.
In the example of
The master keys 1, 2 and 3 may be separate keys. The access groups may also be managed with a single master key. For example, the group 500 may be managed by inserting the master key once for adding keys, twice for removing keys and three times for emptying the access group.
The group 502 may be managed by inserting the master key five times for adding keys, six times removing keys and seven times for emptying the access group.
The group 504 may be managed by inserting the master key nine times for adding keys, ten times removing keys and eleven times for emptying the access group.
Thus, in an embodiment, the lock is configured to respond to the successive insertions of a master key according to the following table:
It will be obvious to a person skilled in the art that, as technology advances, the inventive concept can be implemented in various ways. The invention and its embodiments are not limited to the examples described above but may vary within the scope of the claims.
| Number | Date | Country | Kind |
|---|---|---|---|
| 10150833 | Jan 2010 | EP | regional |
| Number | Name | Date | Kind |
|---|---|---|---|
| 3848229 | Perron et al. | Nov 1974 | A |
| 4258352 | Lipschutz | Mar 1981 | A |
| 4868559 | Pinnow | Sep 1989 | A |
| 5089692 | Tonnesson | Feb 1992 | A |
| 5265452 | Dawson et al. | Nov 1993 | A |
| 5508691 | Castleman et al. | Apr 1996 | A |
| 5540069 | Muller et al. | Jul 1996 | A |
| 5552777 | Gokcebay et al. | Sep 1996 | A |
| 5628217 | Herrera | May 1997 | A |
| 5896026 | Higgins | Apr 1999 | A |
| 5974367 | Bianco | Oct 1999 | A |
| 6000609 | Gokcebay et al. | Dec 1999 | A |
| 6255957 | Sonderegger et al. | Jul 2001 | B1 |
| 6318137 | Chaum | Nov 2001 | B1 |
| 6437684 | Simeray | Aug 2002 | B1 |
| 6483424 | Bianco | Nov 2002 | B1 |
| 6564600 | Davis | May 2003 | B1 |
| 6564601 | Hyatt, Jr. | May 2003 | B2 |
| 6826935 | Gokcebay et al. | Dec 2004 | B2 |
| 6867685 | Stillwagon | Mar 2005 | B1 |
| 7009490 | Wong et al. | Mar 2006 | B2 |
| 7316140 | Russell et al. | Jan 2008 | B2 |
| 8207817 | Kamiya | Jun 2012 | B2 |
| 8228030 | Pukari et al. | Jul 2012 | B2 |
| 20010028298 | Liden et al. | Oct 2001 | A1 |
| 20020134120 | Davis | Sep 2002 | A1 |
| 20020184932 | Davis | Dec 2002 | A1 |
| 20020189307 | Gokcebay et al. | Dec 2002 | A1 |
| 20040007032 | Davis | Jan 2004 | A1 |
| 20040246098 | Denison et al. | Dec 2004 | A1 |
| 20090085717 | Kirkjan | Apr 2009 | A1 |
| 20090205384 | Pomerantz | Aug 2009 | A1 |
| 20090229326 | Pukari et al. | Sep 2009 | A1 |
| 20100073129 | Pukari | Mar 2010 | A1 |
| 20100139343 | Pukari et al. | Jun 2010 | A1 |
| 20100185331 | Pukari et al. | Jul 2010 | A1 |
| 20100188190 | Pukari et al. | Jul 2010 | A1 |
| 20100217972 | Lohiniva et al. | Aug 2010 | A1 |
| 20110174029 | Lappalainen et al. | Jul 2011 | A1 |
| 20120111072 | Pukari et al. | May 2012 | A1 |
| Number | Date | Country |
|---|---|---|
| 1786998 | May 2007 | EP |
| 1808816 | Jul 2007 | EP |
| 2017412 | Jan 2009 | EP |
| 2017413 | Jan 2009 | EP |
| 2017794 | Jan 2009 | EP |
| 2043055 | Apr 2009 | EP |
| 2157552 | Feb 2010 | EP |
| 2010048081 | Mar 2010 | JP |
| WO 9602721 | Feb 1996 | WO |
| WO 9918310 | Apr 1999 | WO |
| WO 0144606 | Jun 2001 | WO |
| WO 2006008340 | Jan 2006 | WO |
| WO 2007068794 | Jun 2007 | WO |
| Number | Date | Country | |
|---|---|---|---|
| 20110174029 A1 | Jul 2011 | US |
