The present disclosure generally relates to electronic lock, and more particularly to secure electronic locks, secure electronic lock systems and methods of using the secure electronic lock systems.
Safety deposit box is a secure container usually made of metal that's used to store valuables at a bank or credit union. These boxes are often kept in vaults and can be rented throughout the lifetime of a customer for an annual fee. Usually, opening the safety deposit box requires at least two keys, one for a bank management staff, and the other one for the customer. Both keys are required to open the safety deposit box. Currently, most banks still use mechanical safety deposit boxes with a set of keys. These mechanical lock's keys are easy to duplicate and the safety of the contents in the safety deposit box is not guaranteed. On the other hand, banks having the safety deposit boxes usually rely on video surveillance cameras to record access history of the safety deposit boxes. It is customary for the banks to keep the surveillance camera footages for 3 to 6 months. After that, the surveillance camera footages are erased leaving no trace for these months. Therefore, it is desirable to have electronic locks with their access events recorded through a secure electronic lock system server over a communication network after each electronic lock is accessed.
Therefore, heretofore unaddressed needs still exist in the art to address the aforementioned deficiencies and inadequacies.
In one aspect, the present disclosure relates to a secure electronic lock. In certain embodiments, the secure electronic lock includes a passive electronic lock and a set of electronic keys. The set of electronic keys includes an active electronic key and at least a passive electronic key. The active electronic key stores an active digital key and the passive electronic key stores a passive digital key. The active electronic key includes an electrical power source and an electronic key communication module. The electrical power source provides electrical power supply to the active electronic key, the passive electronic lock and the passive electronic key. In certain embodiments, the electronic key communication module transmits an access event of the secure electronic lock to a secure electronic lock system server over a communication network after the secure electronic lock is accessed.
In certain embodiments, the passive electronic lock includes: a set of electronic keyholes and an electronic lock controller. The set of electronic keyholes includes an active electronic keyhole to receive the active electronic key and a passive electronic keyhole to receive the passive electronic key. The electronic lock controller includes an electronic lock processor, and an electronic lock non-volatile memory. The electronic lock non-volatile memory stores an electronic lock operating system and electronic lock computer executable instructions. The electronic lock computer executable instructions include: an electronic lock digital key storage module, an electronic lock digital key control module, an electronic lock digital key encryption/decryption module, an electronic lock digital key authentication module, an electronic lock electrical power module, and an electronic lock control module. When executed by the electronic lock processor, the electronic lock computer executable instructions cause the electronic lock processor to perform one or more of the following operations:
In certain embodiments, when the active electronic key is inserted into the active electronic keyhole and the passive electronic key is inserted into the passive electronic keyhole, respectively, the active digital key from the active electronic key is encrypted by the electronic key digital key encryption/decryption module of the active electronic key and transmitted to the passive electronic lock. The passive digital key from the passive electronic key is encrypted by the electronic key digital key encryption/decryption module of the passive electronic key and transmitted to the passive electronic lock.
In certain embodiments, during an activation process of the secure electronic lock, the first user triggers an electronic lock activation mechanism of the passive electronic lock, the electronic lock digital key control module of the passive electronic lock sends an activation instruction to the active electronic key and the passive electronic key through the active communication channel and the passive communication channel, respectively. The activation instruction instructs the electronic key digital key control module of the active electronic key to generate an active digital key for the active electronic key and the electronic key digital key control module of the passive electronic key to generate a passive digital key for the passive electronic key. The active digital key generated is stored in the electronic key digital key storage module of the active electronic key and the passive digital key generated is stored in the electronic key digital key storage module of the passive electronic key. The active digital key generated is encrypted by the electronic key digital key encryption/decryption module of the active electronic key and transmitted to the electronic lock digital key storage module as the active digital key prestored and the passive digital key generated is encrypted by the electronic key digital key encryption/decryption module of the passive electronic key and transmitted to the electronic lock digital key storage module as the passive digital key prestored. The active digital key prestored and the passive digital key prestored are used for authentication of the active electronic key and the passive electronic key, respectively.
In certain embodiments, the passive electronic lock is to be locked and unlocked only when the active electronic key and the passive electronic key are simultaneously inserted into the active electronic keyhole and the passive electronic keyhole, respectively. The first user is a management staff of the secure electronic lock and uses the active electronic key, the second user is a customer and uses the passive electronic key.
In certain embodiments, the active digital key and the passive digital key received are decrypted by the electronic lock digital key encryption/decryption module of the passive electronic lock and authenticated by the electronic lock digital key control module of the passive electronic lock. When the electronic lock digital key authentication module determines that the active digital key and the passive digital key received match the active digital key and the passive digital key prestored in the electronic lock digital key storage module of the passive electronic lock, respectively, the electronic lock control module of the passive electronic lock operates the electronic lock tongue through the electronic locking mechanism to lock or unlock the passive electronic lock.
In certain embodiments, the passive electronic lock includes two communication channels and two electronic key power supply ports. The communication channels include the active communication channel for transmitting the active digital key between the active electronic key and the passive electronic lock and the passive communication channel for transmitting the passive digital key between the passive electronic key and the passive electronic lock. The electronic key power supply ports include the active electronic key power supply port for receiving electrical power supply from the active electronic key and the passive electronic key power supply port for providing electrical power supply to the passive electronic key from the active electronic key through the passive electronic lock.
In certain embodiments, each of the active electronic key and the passive electronic key includes: an electronic key processor and an electronic key non-volatile memory. The electronic key non-volatile memory stores an electronic key operating system and electronic key computer executable instructions. The electronic key computer executable instructions include: the electronic key digital key control module, the electronic key digital key storage module, the electronic key digital key encryption/decryption module, and an electronic key electrical power module.
In certain embodiments, during an activation process of the secure electronic lock, the electronic key digital key control module of the active electronic key generates an active digital key for the active electronic key and the electronic key digital key control module of the passive electronic key generates a passive digital key for the passive electronic key. The active digital key and the passive digital key generated are first stored in the electronic key digital key storage module of the active electronic key and the electronic key digital key storage module of the passive electronic key, respectively. The active digital key and the passive digital key generated are then encrypted using the electronic key digital key encryption/decryption module of the active electronic key and the passive electronic key, respectively, transmitted to and stored in the electronic lock digital key storage module of the passive electronic lock, respectively, for authentication of the active electronic key and the passive electronic key.
In certain embodiments, the electronic key digital key storage module of the active electronic key receives and stores the active digital key from the electronic key digital key control module of the active electronic key and the electronic key digital key storage module of the passive electronic key receives and stores the passive digital key from the electronic key digital key control module of the passive electronic key, respectively.
In certain embodiments, the electronic key digital key encryption/decryption module of the active electronic key encrypts the active digital key before being transmitted out, and the electronic key digital key encryption/decryption module of the passive electronic key encrypts the passive digital key before being transmitted out.
In certain embodiments, the electronic key electrical power module of the active electronic key receives electrical power supply from the electrical power source and provides electrical power supply to the passive electronic lock, and the electronic key electrical power module of the passive electronic key receives electrical power supply from the active electronic key through the passive electronic lock.
In certain embodiments, the active electronic key includes the electronic key communication module. The electronic lock communication module transmits an access event of the secure electronic lock to the secure electronic lock system server over the communication network after the secure electronic lock is accessed.
In another aspect, the present disclosure relates to a secure electronic lock system. In certain embodiments, the secure electronic lock system includes: a secure electronic lock system server, a communication network, and a group of secure electronic locks. Each of the secure electronic locks includes: a passive electronic lock and a set of electronic keys. The set of electronic keys includes an active electronic key storing an active digital key and a passive electronic key storing a passive digital key. The active electronic key includes an electrical power source. The electrical power source provides electrical power supply to the active electronic key, the passive electronic lock and the passive electronic key.
In certain embodiments, the passive electronic lock includes: a set of electronic keyholes for receiving the set of electronic keys, and an electronic lock controller. The set of electronic keyholes includes: an active electronic keyhole for receiving the active electronic key and a passive electronic keyhole for receiving the passive electronic key. The electronic lock controller includes an electronic lock processor, and an electronic lock non-volatile memory storing an electronic lock operating system and electronic lock computer executable instructions. The electronic lock computer executable instructions include: an electronic lock digital key storage module, an electronic lock digital key control module, an electronic lock digital key encryption/decryption module, an electronic lock digital key authentication module, an electronic lock electrical power module, an electronic lock control module, and an electronic lock communication module.
In certain embodiments, when executed by the electronic lock processor, the electronic lock computer executable instructions cause the electronic lock processor to perform one or more of the following operations:
In certain embodiments, when the active electronic key is inserted into the active electronic keyhole and the passive electronic key is inserted into the passive electronic keyhole, respectively, the active digital key from the active electronic key is encrypted by the electronic key digital key encryption/decryption module of the active electronic key and transmitted to the passive electronic lock, and the passive digital key from the passive electronic key is encrypted by the electronic key digital key encryption/decryption module of the passive electronic key and transmitted to the passive electronic lock.
In certain embodiments, the passive electronic lock includes an electronic lock controller having an electronic lock processor, and an electronic lock non-volatile memory. The electronic lock non-volatile memory stores an electronic lock operating system and electronic lock computer executable instructions. The electronic lock computer executable instructions include: the electronic lock digital key storage module, the electronic lock digital key control module, the electronic lock digital key encryption/decryption module, the electronic lock digital key authentication module, an electronic lock electrical power module, the electronic lock control module, and the electronic lock communication module.
In certain embodiments, the electronic lock digital key storage module receives the active digital key from the active electronic key and the passive digital key from the passive electronic key generated during an activation process of the secure electronic lock, and stores the active digital key and the passive digital key received in the electronic lock digital key storage module of the passive electronic lock as the active digital key and the passive digital key prestored in the electronic lock digital key storage module of the passive electronic lock for authentication of the active electronic key and the passive electronic key, respectively.
In certain embodiments, the electronic lock digital key control module receives the active digital key when the active electronic key is inserted in the active electronic keyhole and the passive digital key when the passive electronic key is inserted in the passive electronic keyhole, and compares the active digital key and the passive digital key received with the active digital key and the passive digital key prestored in the electronic lock digital key storage module of the passive electronic lock.
In certain embodiments, the electronic lock digital key encryption/decryption module decrypts the active digital key and the passive digital key received. The electronic lock digital key authentication module determines whether the active digital key and the passive digital key received match the active digital key and the passive digital key prestored in the electronic lock digital key storage module of the passive electronic lock.
In certain embodiments, the electronic lock electrical power module receives electrical power supply from the electrical power source of the active electronic key through the active electronic key power supply port and provides electrical power supply to the passive electronic key through the passive electronic key power supply port. The electronic lock control module controls the operation of the electronic locking mechanism to lock and unlock the passive electronic lock.
In certain embodiments, the electronic lock communication module transmits an access event of the secure electronic lock to the secure electronic lock system server over the communication network after the secure electronic lock is accessed.
In certain embodiments, the passive electronic lock is to be locked and unlocked only when the active electronic key and the passive electronic key are simultaneously inserted into the active electronic keyhole and the passive electronic keyhole, respectively. The first user is a management staff of the secure electronic lock and uses the active electronic key, the second user is a customer and uses the passive electronic key.
In certain embodiments, the active digital key and the passive digital key received are decrypted by the electronic lock digital key encryption/decryption module of the passive electronic lock and authenticated by the electronic lock digital key control module of the passive electronic lock. When the electronic lock digital key authentication module determines that the active digital key and the passive digital key received match the active digital key and the passive digital key prestored in the electronic lock digital key storage module of the passive electronic lock, respectively, the electronic lock control module of the passive electronic lock operates the electronic lock tongue through the electronic locking mechanism to lock or unlock the passive electronic lock.
In certain embodiments, the passive electronic lock includes two communication channels and two electronic key power supply ports. The communication channels include the active communication channel for transmitting the active digital key between the active electronic key and the passive electronic lock and the passive communication channel for transmitting the passive digital key between the passive electronic key and the passive electronic lock. The electronic key power supply ports include the active electronic key power supply port for receiving electrical power supply from the active electronic key and the passive electronic key power supply port for providing electrical power supply to the passive electronic key from the active electronic key through the passive electronic lock.
In yet another aspect, the present disclosure relates to a method of using a secure electronic lock system. In certain embodiments, the method includes:
In certain embodiments, the passive electronic lock includes an electronic lock controller having an electronic lock processor, and an electronic lock non-volatile memory. The electronic lock non-volatile memory stores an electronic lock operating system and electronic lock computer executable instructions. The electronic lock computer executable instructions include: the electronic lock digital key storage module, the electronic lock digital key control module, the electronic lock digital key encryption/decryption module, the electronic lock digital key authentication module, an electronic lock electrical power module, the electronic lock control module, and the electronic lock communication module.
In certain embodiments, the electronic lock digital key storage module receives the active digital key from the active electronic key and the passive digital key from the passive electronic key generated during an activation process of the secure electronic lock, and stores the active digital key and the passive digital key received in the electronic lock digital key storage module of the passive electronic lock as the active digital key and the passive digital key prestored in the electronic lock digital key storage module of the passive electronic lock for authentication of the active electronic key and the passive electronic key, respectively.
In certain embodiments, the electronic lock digital key control module receives the active digital key when the active electronic key is inserted in the active electronic keyhole and the passive digital key when the passive electronic key is inserted in the passive electronic keyhole, and compares the active digital key and the passive digital key received with the active digital key and the passive digital key prestored in the electronic lock digital key storage module of the passive electronic lock.
In certain embodiments, the electronic lock digital key encryption/decryption module decrypts the active digital key and the passive digital key received. The electronic lock digital key authentication module determines whether the active digital key and the passive digital key received match the active digital key and the passive digital key prestored in the electronic lock digital key storage module of the passive electronic lock.
In certain embodiments, the electronic lock electrical power module receives electrical power supply from the electrical power source of the active electronic key through the active electronic key power supply port and provides electrical power supply to the passive electronic key through the passive electronic key power supply port. The electronic lock control module controls the operation of the electronic locking mechanism to lock and unlock the passive electronic lock.
In certain embodiments, the electronic lock communication module transmits an access event of the secure electronic lock to the secure electronic lock system server over the communication network after the secure electronic lock is accessed.
These and other aspects of the present disclosure will become apparent from the following description of the preferred embodiment taken in conjunction with the following drawings, although variations and modifications therein may be effected without departing from the spirit and scope of the novel concepts of the disclosure.
The accompanying drawings illustrate one or more embodiments of the present disclosure, and features and benefits thereof, and together with the written description, serve to explain the principles of the present invention. Wherever possible, the same reference numbers are used throughout the drawings to refer to the same or like elements of an embodiment, and wherein:
The present disclosure is more particularly described in the following examples that are intended as illustrative only since numerous modifications and variations therein will be apparent to those skilled in the art. Various embodiments of the disclosure are now described in detail. Referring to the drawings, like numbers, if any, indicate like components throughout the views. As used in the description herein and throughout the claims that follow, the meaning of “a”, “an”, and “the” includes plural reference unless the context clearly dictates otherwise. Also, as used in the description herein and throughout the claims that follow, the meaning of “in” includes “in” and “on” unless the context clearly dictates otherwise. Moreover, titles or subtitles may be used in the specification for the convenience of a reader, which shall have no influence on the scope of the present disclosure. Additionally, some terms used in this specification are more specifically defined below.
The terms used in this specification generally have their ordinary meanings in the art, within the context of the disclosure, and in the specific context where each term is used. Certain terms that are used to describe the disclosure are discussed below, or elsewhere in the specification, to provide additional guidance to the practitioner regarding the description of the disclosure. For convenience, certain terms may be highlighted, for example using italics and/or quotation marks. The use of highlighting has no influence on the scope and meaning of a term; the scope and meaning of a term is the same, in the same context, whether or not it is highlighted. It will be appreciated that same thing can be said in more than one way. Consequently, alternative language and synonyms may be used for any one or more of the terms discussed herein, nor is any special significance to be placed upon whether or not a term is elaborated or discussed herein. Synonyms for certain terms are provided. A recital of one or more synonyms does not exclude the use of other synonyms. The use of examples anywhere in this specification including examples of any terms discussed herein is illustrative only, and in no way limits the scope and meaning of the disclosure or of any exemplified term. Likewise, the disclosure is not limited to various embodiments given in this specification.
Unless otherwise defined, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this disclosure pertains. In the case of conflict, the present document, including definitions will control.
As used herein, “around”, “about” or “approximately” shall generally mean within 20 percent, preferably within 10 percent, and more preferably within 5 percent of a given value or range. Numerical quantities given herein are approximate, meaning that the term “around”, “about” or “approximately” can be inferred if not expressly stated.
As used herein, “plurality” means two or more.
As used herein, the terms “comprising,” “including,” “carrying,” “having,” “containing,” “involving,” and the like are to be understood to be open-ended, i.e., to mean including but not limited to.
As used herein, the term electronic key is defined as a physical key to electronically operate an electronic lock. The electronic key may include electronic circuit, electronic modules, electronic key processor, memory, as well many other electronic components. The electronic key may include active electronic key and passive electronic key. The active electronic key includes electrical power source, as shown in
As used herein, the term digital key is defined as a digital code stored in the physical electronic key to electronically operate the electronic lock. The active electronic key may store an active digital key, and the passive electronic key may store a passive digital key. In order to increase security of the electronic lock, these digital keys may be encrypted during the transmission of the digital keys between the electronic keys and the electronic lock.
As used herein, the phrase at least one of A, B, and C should be construed to mean a logical (A or B or C), using a non-exclusive logical OR. It should be understood that one or more steps within a method may be executed in different order (or conconventionally) without altering the principles of the present disclosure.
As used herein, the term module may refer to, be part of, or include an Application Specific Integrated Circuit (ASIC); an electronic circuit; a combinational logic circuit; a field programmable gate array (FPGA); an electronic key processor (shared, dedicated, or group) that executes code; other suitable hardware components that provide the described functionality; or a combination of some or all of the above, such as in a system-on-chip. The term module may include memory (shared, dedicated, or group) that stores code executed by the electronic key processor.
The term code, as used above, may include software, firmware, and/or microcode, and may refer to programs, routines, functions, classes, and/or objects. The term shared, as used above, means that some or all code from multiple modules may be executed using a single (shared) electronic key processor. In addition, some or all code from multiple modules may be stored by a single (shared) memory. The term group, as used above, means that some or all code from a single module may be executed using a group of electronic key processors. In addition, some or all code from a single module may be stored using a group of memories.
The apparatuses and methods described herein may be implemented by one or more computer programs executed by one or more electronic key processors. The computer programs include electronic key processor-executable instructions that are stored on a non-transitory tangible computer readable medium. The computer programs may also include stored data. Non-limiting examples of the non-transitory tangible computer readable medium are nonvolatile memory, magnetic storage, and optical storage.
The present disclosure will now be described more fully hereinafter with reference to the accompanying drawings, in which embodiments of the disclosure are shown. This disclosure may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein; rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the disclosure to those skilled in the art. Like numbers refer to like elements throughout.
The present disclosure relates to a safety electronic lock 100 that includes two enhanced security measures. In one aspect, the active electronic key 1201 used in the security electronic lock 100 includes an electronic key communication module 1200448. In certain embodiments, the electronic key communication module 1200448 transmits an access event of the secure electronic lock 100 to the secure electronic lock system server 12 over the communication network 14 after each time the secure electronic lock 100 is accessed. In one embodiment, as shown in
In another aspect, the passive electronic lock 110 of the security electronic lock 100 includes an electronic lock communication module 110448. In certain embodiments, the electronic lock communication module 110448 transmits an access event of the secure electronic lock 100 to the secure electronic lock system server 12 over a communication network 14 after each time the secure electronic lock 100 is accessed. In another embodiment, as shown in
Referring now to
In certain embodiments, when using the electronic keys 120, as shown in
In certain embodiments, as shown in
In certain embodiments, the active electronic keyhole 1111 includes at least two active electronic keyhole contacts 11111 and the active electronic keyhole 1111 receives the active electronic key 1201. The passive electronic keyhole 1202 includes at least two passive electronic keyhole contacts 11121 and the passive electronic keyhole 1202 receives the passive electronic key 1202. These electronic keyhole contacts 11111 and 11121 are used to provide electrical power supply and transmit digital keys between the electronic keys 120 and the passive electronic lock 110. In certain embodiments, the electronic keyhole contacts 111 include at least two electronic key contacts. In one embodiment, the active electronic keyhole 1111 of the passive electronic lock 110 has two active electronic keyhole contacts 11111, and the passive electronic keyhole 1202 of the passive electronic lock 110 has two passive electronic keyhole contacts 11121. For a passive electronic lock 110 having two electronic keyhole contacts, one electronic keyhole contact may be used as positive power supply, and another electronic keyhole contact may be used as ground. These two electronic keyhole contacts may also be used as communication channel.
In another embodiment, the electronic keyhole contacts 101 include three electronic key contacts. For a passive electronic lock 110 having three electronic keyhole contacts, one electronic keyhole contact may be used as positive power supply, another electronic keyhole contact may be used as common ground, and another electronic keyhole contact may be used as communication channel along with the common ground.
In yet another embodiment, as shown in
In certain embodiments,
Each of the active electronic key 1201 and the passive electronic key 1202 includes two or more electronic key contacts 121 that match the electronic keyholes 111 on the passive electronic lock 110. These electronic key contacts 121 are used to provide electrical power supply and transmit digital keys between the electronic keys 120 and the passive electronic lock 110. In certain embodiments, the electronic key contacts 121 include at least two electronic key contacts. In one embodiment, for an electronic key having two electronic key contacts, one electronic key contact may be used as positive power supply, one electronic key contact may be used as ground. These two electronic key contacts may also be used as communication channel. In another embodiment, for an electronic key having three electronic key contacts, one electronic key contact may be used as positive power supply, another one electronic key contact may be used as common ground, and another electronic key contact may be used as communication channel along with the common ground. In one embodiment, as shown in
In order to provide higher security, the secure electronic lock 100 includes an electronic key communication module. The electronic key communication module is used to transmit an access event to the secure electronic lock system server after each time the secure electronic lock 100 is accessed. There will be a permanent record of all access events of the secure electronic locks 100 stored in the secure electronic lock system server 12. Each access event may include at least: a serial number of the passive electronic lock 110, a serial number of the active electronic key 1201, the serial number of the passive electronic key 1202, the location, the date and time of each access to the secure electronic lock 100.
In one aspect, the present disclosure relates to a secure electronic lock 100. In certain embodiments, the secure electronic lock 100 includes a passive electronic lock 110 and a set of electronic keys 120. The set of electronic keys 120 includes an active electronic key 1201 and at least a passive electronic key 1202. The active electronic key 1201 stores an active digital key and the passive electronic key 1202 stores a passive digital key. As shown in
In certain embodiments, the passive electronic lock 110 includes: a set of electronic keyholes 111 and an electronic lock controller 1100. The set of electronic keyholes 111 includes an active electronic keyhole 1111 to receive the active electronic key 1201 and a passive electronic keyhole 1112 to receive the passive electronic key 1202, as shown in
In certain embodiments, the electronic lock digital key storage module 110441 receives the active digital key from the active electronic key 1201 and the passive digital key from the passive electronic key 1202 generated during an activation process of the secure electronic lock 100, and stores the active digital key and the passive digital key received in the electronic lock digital key storage module 110441 of the passive electronic lock 110 as the active digital key and the passive digital key prestored in the electronic lock digital key storage module 110441 of the passive electronic lock 110 for authentication of the active electronic key 1201 and the passive electronic key 1202, respectively.
In certain embodiments, the electronic lock digital key control module 110442 receives the active digital key when the active electronic key 1201 is inserted in the active electronic keyhole 1111 and the passive digital key when the passive electronic key 1202 is inserted in the passive electronic keyhole 1112, and compares the active digital key and the passive digital key received with the active digital key and the passive digital key prestored in the electronic lock digital key storage module 110441 of the passive electronic lock 110.
In certain embodiments, the electronic lock digital key encryption/decryption module 110443 decrypts the active digital key and the passive digital key received. The electronic lock digital key authentication module 110444 determines whether the active digital key and the passive digital key received match the active digital key and the passive digital key prestored in the electronic lock digital key storage module 110441 of the passive electronic lock 110.
In certain embodiments, the electronic key digital key encryption/decryption module 110443 of the passive electronic lock 110 decrypts the active digital key received and the passive digital key received. In certain embodiments, encryption algorithms may include Triple Data Encryption Standard (DES) algorithm, Rivest-Shamir-Adleman (RSA) algorithm, Blowfish algorithm, Twofish algorithm, and Advanced Encryption Standard (AES) algorithm. One to three private keys may be used for these encryption algorithms and the length of each private key ranges from 56 bits to 256 bits.
In certain embodiments, the electronic lock electrical power module 110445 receives electrical power supply from the electrical power source 12006 of the active electronic key 1201 through the active electronic key power supply port 12161 and provides electrical power supply to the passive electronic key 1202 through the passive electronic key power supply port 12162. The electronic lock control module 110446 controls the operation of the electronic locking mechanism 1106 to lock and unlock the passive electronic lock 110.
In certain embodiments, when executed by the electronic lock processor 1102, the electronic lock computer executable instructions 11044 cause the electronic lock processor 1102 to perform one or more of the following operations:
In certain embodiments, the communication network 14 includes at least one of a Wi-Fi network, a Bluetooth network, an infrared network, a Zigbee network, a wireless local area network (WLAN), a wireless metropolitan area network (WMAN), a wireless wide area network (WWAN), a cellular network, and a mobile communication network.
In certain embodiments, the secure electronic lock system server 12 may include a secure electronic lock system database. The secure electronic lock system database may include an inventory of all secure electronic locks 100 as well as the access event logs.
In certain embodiments, when the active electronic key 1201 is inserted into the active electronic keyhole 1111 and the passive electronic key 1202 is inserted into the passive electronic keyhole 1112, respectively, the active digital key from the active electronic key 1201 is encrypted by the electronic key digital key encryption/decryption module 1200443 of the active electronic key 1201 and transmitted to the passive electronic lock 110. The passive digital key from the passive electronic key 1202 is encrypted by the electronic key digital key encryption/decryption module 1200443 of the passive electronic key 1202 and transmitted to the passive electronic lock 110.
In certain embodiments, during an activation process of the secure electronic lock 100, the first user triggers an electronic lock activation mechanism 1108 of the passive electronic lock 110, the electronic lock digital key control module 110442 of the passive electronic lock 110 sends an activation instruction to the active electronic key 1201 and the passive electronic key 1202 through the active communication channel 12151 and the passive communication channel 12152, respectively. The activation instruction instructs the electronic key digital key control module 1200442 of the active electronic key 1201 to generate an active digital key for the active electronic key 1201 and the electronic key digital key control module 1200442 of the passive electronic key 1202 to generate a passive digital key for the passive electronic key 1202. The active digital key generated is stored in the electronic key digital key storage module 1200441 of the active electronic key 1201 and the passive digital key generated is stored in the electronic key digital key storage module 1200441 of the passive electronic key 1202. The active digital key generated is encrypted by the electronic key digital key encryption/decryption module 1200443 of the active electronic key 1201 and transmitted to the electronic lock digital key storage module 110441 as the active digital key prestored and the passive digital key generated is encrypted by the electronic key digital key encryption/decryption module 1200443 of the passive electronic key 1202 and transmitted to the electronic lock digital key storage module 110441 as the passive digital key prestored. The active digital key prestored and the passive digital key prestored are used for authentication of the active electronic key 1201 and the passive electronic key 1202, respectively.
In certain embodiments, as shown in
In certain embodiments, as shown in
In certain embodiments, as shown in
In certain embodiments, when executed by the electronic key processor 12002, the electronic key computer executable instructions 120044 cause the electronic key processor 12002 to:
In certain embodiments, the electrical power source 12006 includes at least one of a battery and a rechargeable battery. The rechargeable battery includes at least one of: a lead-acid rechargeable battery, a nickel cadmium (NiCd) rechargeable battery, a nickel metal hydride (NiMH) rechargeable battery, a lithium ion (Li-ion) rechargeable battery, and a lithium ion polymer (Li-ion polymer) rechargeable battery. In certain embodiments, the active electronic key 1201 includes an active electronic key charging port 1217, as shown in
In certain embodiments, during an activation process of the secure electronic lock 100, the electronic key digital key control module 1200442 of the active electronic key 1201 generates an active digital key for the active electronic key 1201 and the electronic key digital key control module 1200442 of the passive electronic key 1202 generates a passive digital key for the passive electronic key 1202. The active digital key and the passive digital key generated are first stored in an electronic key digital key storage module 1200441 of the active electronic key 1201 and an electronic key digital key storage module 1200441 of the passive electronic key 1202, respectively. The active digital key and the passive digital key generated are then encrypted using the electronic key digital key encryption/decryption module 1200443 of the active electronic key 1201 and the passive electronic key 1202, respectively, transmitted to and stored in the electronic lock digital key storage module 110441 of the passive electronic lock 110, respectively, for authentication of the active electronic key 1201 and the passive electronic key 1202.
In certain embodiments, the electronic key digital key storage module 1200441 of the active electronic key 1201 receives and stores the active digital key from the electronic key digital key control module 1200442 of the active electronic key 1201 and the electronic key digital key storage module 1200441 of the passive electronic key 1202 receives and stores the passive digital key from the electronic key digital key control module 1200442 of the passive electronic key 1202, respectively.
In certain embodiments, the electronic key digital key encryption/decryption module 1200443 of the active electronic key 1201 encrypts the active digital key before being transmitted out, and the electronic key digital key encryption/decryption module 1200443 of the passive electronic key 1202 encrypts the passive digital key before being transmitted out.
In certain embodiments, the electronic key electrical power module 1200445 of the active electronic key 1201 receives electrical power supply from the electrical power source 12006 and provides electrical power supply to the passive electronic lock 110, and the electronic key electrical power module 1200445 of the passive electronic key 1202 receives electrical power supply from the active electronic key 1201 through the passive electronic lock 110.
In certain embodiments, the passive electronic lock 110 is to be locked and unlocked only when the active electronic key 1201 and the passive electronic key 1202 are simultaneously inserted into the active electronic keyhole 1111 and the passive electronic keyhole 1112, respectively. The first user is a management staff of the secure electronic lock 100 and uses the active electronic key 1201, the second user is a customer and uses the passive electronic key 1202.
In certain embodiments, the active digital key and the passive digital key received are decrypted by the electronic lock digital key encryption/decryption module 110443 of the passive electronic lock 110 and authenticated by the electronic lock digital key control module 110442 of the passive electronic lock 110. When the electronic lock digital key authentication module 110444 determines that the active digital key and the passive digital key received match the active digital key and the passive digital key prestored in the electronic lock digital key storage module 110441 of the passive electronic lock 110, respectively, the electronic lock control module 110446 of the passive electronic lock 110 operates the electronic lock tongue 1003 through the electronic locking mechanism 1106 to lock or unlock the passive electronic lock 110.
In another aspect, as shown in
In certain embodiments, as shown in
In certain embodiments, the electronic lock digital key storage module 110441 receives the active digital key from the active electronic key 1201 and the passive digital key from the passive electronic key 1202 generated during an activation process of the secure electronic lock 100, and stores the active digital key and the passive digital key received in the electronic lock digital key storage module 110441 of the passive electronic lock 110 as the active digital key and the passive digital key prestored in the electronic lock digital key storage module 110441 of the passive electronic lock 110 for authentication of the active electronic key 1201 and the passive electronic key 1202, respectively.
In certain embodiments, the electronic lock digital key control module 110442 receives the active digital key when the active electronic key 1201 is inserted in the active electronic keyhole 1111 and the passive digital key when the passive electronic key 1202 is inserted in the passive electronic keyhole 1112, and compares the active digital key and the passive digital key received with the active digital key and the passive digital key prestored in the electronic lock digital key storage module 110441 of the passive electronic lock 110.
In certain embodiments, the electronic lock digital key encryption/decryption module 110443 decrypts the active digital key and the passive digital key received. The electronic lock digital key authentication module 110444 determines whether the active digital key and the passive digital key received match the active digital key and the passive digital key prestored in the electronic lock digital key storage module 110441 of the passive electronic lock 110.
In certain embodiments, the electronic lock electrical power module 110445 receives electrical power supply from the electrical power source 12006 of the active electronic key 1201 through the active electronic key power supply port 12161 and provides electrical power supply to the passive electronic key 1202 through the passive electronic key power supply port 12162. The electronic lock control module 110446 controls the operation of the electronic locking mechanism 1106 to lock and unlock the passive electronic lock 110.
In certain embodiments, the electronic lock communication module 110448 transmits an access event of the secure electronic lock 100 to the secure electronic lock system server 12 over the communication network 14 after each time the secure electronic lock 100 is accessed.
In certain embodiments, when executed by the electronic lock processor 1102, the electronic lock computer executable instructions 11044 cause the electronic lock processor 1102 to perform one or more of the following operations:
In certain embodiments, when the active electronic key 1201 is inserted into the active electronic keyhole 1111 and the passive electronic key 1202 is inserted into the passive electronic keyhole 1112, respectively, the active digital key from the active electronic key 1201 is encrypted by the electronic key digital key encryption/decryption module 1200443 of the active electronic key 1201 and transmitted to the passive electronic lock 110, and the passive digital key from the passive electronic key 1202 is encrypted by the electronic key digital key encryption/decryption module 1200443 of the passive electronic key 1202 and transmitted to the passive electronic lock 110.
In certain embodiments, during an activation process of the secure electronic lock 100, the first user triggers an electronic lock activation mechanism 1108 of the passive electronic lock 110, the electronic lock digital key control module 110442 of the passive electronic lock 110 sends an activation instruction to the active electronic key 1201 and the passive electronic key 1202 through the active communication channel 12151 and the passive communication channel 12152, respectively. The activation instruction instructs the electronic key digital key control module 1200442 of the active electronic key 1201 to generate an active digital key for the active electronic key 1201 and the electronic key digital key control module 1200442 of the passive electronic key 1202 to generate a passive digital key for the passive electronic key 1202. The active digital key generated is stored in the electronic key digital key storage module 1200441 of the active electronic key 1201 and the passive digital key generated is stored in the electronic key digital key storage module 1200441 of the passive electronic key 1202. The active digital key generated is encrypted by the electronic key digital key encryption/decryption module 1200443 of the active electronic key 1201 and transmitted to the electronic lock digital key storage module 110441 as the active digital key prestored and the passive digital key generated is encrypted by the electronic key digital key encryption/decryption module 1200443 of the passive electronic key 1202 and transmitted to the electronic lock digital key storage module 110441 as the passive digital key prestored. The active digital key prestored and the passive digital key prestored are used for authentication of the active electronic key 1201 and the passive electronic key 1202, respectively.
In certain embodiments, as shown in
In certain embodiments, when executed by the electronic key processor 12002, the electronic key computer executable instructions 120044 cause the electronic key processor 12002 to:
In certain embodiments, the electrical power source 12006 includes at least one of a battery and a rechargeable battery. The rechargeable battery includes at least one of: a lead-acid rechargeable battery, a nickel cadmium (NiCd) rechargeable battery, a nickel metal hydride (NiMH) rechargeable battery, a lithium ion (Li-ion) rechargeable battery, and a lithium ion polymer (Li-ion polymer) rechargeable battery. In certain embodiments, the active electronic key 1201 includes an active electronic key charging port 1217, as shown in
In certain embodiments, during an activation process of the secure electronic lock 100, the electronic key digital key control module 1200442 of the active electronic key 1201 generates an active digital key for the active electronic key 1201 and the electronic key digital key control module 1200442 of the passive electronic key 1202 generates a passive digital key for the passive electronic key 1202. The active digital key and the passive digital key generated are first stored in an electronic key digital key storage module 1200441 of the active electronic key 1201 and an electronic key digital key storage module 1200441 of the passive electronic key 1202, respectively. The active digital key and the passive digital key generated are then encrypted using the electronic key digital key encryption/decryption module 1200443 of the active electronic key 1201 and the passive electronic key 1202, respectively, transmitted to and stored in the electronic lock digital key storage module 110441 of the passive electronic lock 110, respectively, for authentication of the active electronic key 1201 and the passive electronic key 1202.
In certain embodiments, the electronic key digital key storage module 1200441 of the active electronic key 1201 receives and stores the active digital key from the electronic key digital key control module 1200442 of the active electronic key 1201 and the electronic key digital key storage module 1200441 of the passive electronic key 1202 receives and stores the passive digital key from the electronic key digital key control module 1200442 of the passive electronic key 1202, respectively.
In certain embodiments, the electronic key digital key encryption/decryption module 1200443 of the active electronic key 1201 encrypts the active digital key before being transmitted out, and the electronic key digital key encryption/decryption module 1200443 of the passive electronic key 1202 encrypts the passive digital key before being transmitted out. In certain embodiments, encryption algorithms may include Triple Data Encryption Standard (DES) algorithm, Rivest-Shamir-Adleman (RSA) algorithm, Blowfish algorithm, Twofish algorithm, and Advanced Encryption Standard (AES) algorithm. One to three private keys may be used for these encryption algorithms and the length of each private key ranges from 56 bits to 256 bits.
In certain embodiments, the electronic key electrical power module 1200445 of the active electronic key 1201 receives electrical power supply from the electrical power source 12006 and provides electrical power supply to the passive electronic lock 110, and the electronic key electrical power module 1200445 of the passive electronic key 1202 receives electrical power supply from the active electronic key 1201 through the passive electronic lock 110.
In certain embodiments, the passive electronic lock 110 is to be locked and unlocked only when the active electronic key 1201 and the passive electronic key 1202 are simultaneously inserted into the active electronic keyhole 1111 and the passive electronic keyhole 1112, respectively. The first user is a management staff of the secure electronic lock 100 and uses the active electronic key 1201, the second user is a customer and uses the passive electronic key 1202.
In certain embodiments, the active digital key and the passive digital key received are decrypted by the electronic lock digital key encryption/decryption module 110443 of the passive electronic lock 110 and authenticated by the electronic lock digital key control module 110442 of the passive electronic lock 110. When the electronic lock digital key authentication module 110444 determines that the active digital key and the passive digital key received match the active digital key and the passive digital key prestored in the electronic lock digital key storage module 110441 of the passive electronic lock 110, respectively, the electronic lock control module 110446 of the passive electronic lock 110 operates the electronic lock tongue 1003 through the electronic locking mechanism 1106 to lock or unlock the passive electronic lock 110.
In certain embodiments, as shown in
In yet another aspect, the present disclosure relates to a method 1200 of using a secure electronic lock system 10. In certain embodiments, the method 1200 includes:
Referring now to
At block 1202, the secure electronic lock system 10 is installed. In certain embodiments, the secure electronic lock system 10 includes: a secure electronic lock system server 12, a communication network 14, and many secure electronic locks 100. Each of the secure electronic locks 100 is connected to the secure electronic lock system server 12 over the communication network 14. Each of the secure electronic locks 100 includes: an active electronic key 1201, a passive electronic key 1202, and a passive electronic lock 110. The passive electronic lock 110 includes a set of electronic keyholes 111: an active electronic keyhole 1111 for receiving the active electronic key 1201 and a passive electronic keyhole 1112 for receiving the passive electronic key 1202.
At block 1204, the first user inserts the active electronic key 1201 into the active electronic keyhole 1111 of the passive electronic lock 110. The active electronic key 1201 includes an electrical power source 12006 to provide electrical power supply to the passive electronic lock 110 through an active electronic key power supply port 12161 of the active electronic key 1201. Additionally, the active electronic key 1201 provides an encrypted active digital key to the passive electronic lock 110 through an active communication channel 12151 of the active electronic key 1201. Since the active electronic key 1201 provides electrical power supply to the entire secure electronic lock system 10, the secure electronic lock system 10 will not function without the active electronic key 1201. Customarily, the first user is a bank employee who manages the safety deposit box where the passive electronic lock 110 is installed.
At block 1206, while the active electronic key 1201 is still in the active electronic keyhole 1111 of the passive electronic lock 110, a second user inserts the passive electronic key 1202 into the passive electronic keyhole 1112 of the passive electronic lock 110 to receive electrical power supply from the passive electronic lock 110 through an electronic key electrical power module 1200445 of the passive electronic key 1202 and a passive electronic key power supply port 12162, and the passive electronic key 1202 provides an encrypted passive digital key to the passive electronic lock 110 through a passive communication channel 12152 of the passive electronic key 1202. Since the passive electronic key 1202 does not have electrical power supply, the secure electronic lock system 10 will not function with only the passive electronic key 1202. Customarily, the second user is a customer who rents the safety deposit box where the passive electronic lock 110 is installed.
At block 1208, the received encrypted active digital key from the active electronic key 1201 and the received encrypted passive digital key from the passive electronic key 1202 are decrypted by an electronic lock digital key encryption/decryption module 110443 of the passive electronic lock 110, and the received active digital key and the received passive digital key are compared by an electronic lock digital key control module 110442 of the passive electronic lock 110 with an active digital key and a passive digital key prestored in an electronic lock digital key storage module 110441 of the passive electronic lock 110.
At query block 1210, the electronic lock digital key authentication module 110444 of the passive electronic lock 110 determines whether the active digital key and the passive digital key received match the active digital key and the passive digital key prestored, respectively. When the active digital key and the passive digital key received match the active digital key and the passive digital key prestored, respectively, the method 1200 proceeds to block 1212. Otherwise, the secure electronic lock 100 is not accessed and the method 1200 is terminated.
At block 1212, when the active digital key and the passive digital key received match the active digital key and the passive digital key prestored, respectively, an electronic lock control module 110446 of the passive electronic lock 110 operates an electronic lock tongue 1003 of the passive electronic lock 110 through an electronic locking mechanism 1106 to lock and unlock the passive electronic lock 110. The electronic lock tongue 1003 is in retracted state when the passive electronic lock 110 is unlocked, and the electronic lock tongue 1003 is in extended state when the passive electronic lock 110 is locked.
At block 1214, after the passive electronic lock 110 of the secure electronic lock 100 is accessed, the passive electronic lock 110 will perform two additional functions to increase the security of the secure electronic lock 100: (1) an access event of the secure electronic lock 100 is transmitted through an electronic lock communication module 110448 over the communication network 14 to the secure electronic lock system server 12, and (2) the active digital key stored in the electronic key digital key storage module 1200441 of the active electronic key 1201, the passive digital key stored in the electronic key digital key storage module 1200441 of the passive electronic key 1202, and the active digital key and the passive digital key prestored in the electronic lock digital key storage module 110441 are regenerated and stored in their corresponding storage modules respectively so the old active digital keys and the old passive digital keys are no longer valid even if someone can hack was able to obtain it. There will be a permanent record of all access events of the secure electronic locks 100 stored in the secure electronic lock system server. Each access event may include at least: a serial number of the passive electronic lock 110, a serial number of the active electronic key 1201, the serial number of the passive electronic key 1202, the location, the date and time of each access to the secure electronic lock 100.
The foregoing description of the exemplary embodiments of the disclosure has been presented only for the purposes of illustration and description and is not intended to be exhaustive or to limit the disclosure to the precise forms disclosed. Many modifications and variations are possible in light of the above teaching.
The embodiments were chosen and described in order to explain the principles of the disclosure and their practical application so as to enable others skilled in the art to utilize the disclosure and various embodiments and with various modifications as are suited to the particular use contemplated. Alternative embodiments will become apparent to those skilled in the art to which the present disclosure pertains without departing from its spirit and scope. Accordingly, the scope of the present disclosure is defined by the appended claims rather than the foregoing description and the exemplary embodiments described therein.
Filing Document | Filing Date | Country | Kind |
---|---|---|---|
PCT/CN2020/141319 | 12/30/2020 | WO |
Publishing Document | Publishing Date | Country | Kind |
---|---|---|---|
WO2022/141170 | 7/7/2022 | WO | A |
Number | Name | Date | Kind |
---|---|---|---|
20120047972 | Grant | Mar 2012 | A1 |
20120096909 | Hart | Apr 2012 | A1 |
20120252365 | Lam | Oct 2012 | A1 |
20140118930 | Sedon | May 2014 | A1 |
20170236346 | Murar | Aug 2017 | A1 |
20190272731 | Fawcett | Sep 2019 | A1 |
Number | Date | Country |
---|---|---|
111779033 | Oct 2020 | CN |