Patent Grant
10523685
This invention relates generally to the device security field, and more specifically to a new and useful system and method in the device security field.
Malicious entities and/or bad actors find it desirable to target secured devices. Therefore, there is a need in the field of device security for an improved system and method. This invention provides such an improved system and method.
The following description of the preferred embodiments of the invention is not intended to limit the invention to these preferred embodiments, but rather to enable any person skilled in the art to make and use this invention.
1. Overview.
As shown in
As shown in
In a specific example, when a user attempts to use the secured device (e.g., to access a third-party application, third-party database, client information, etc.), the technology can be used to confirm the proximity of the user to the secured device. If the user is in proximity to the secured device (e.g., within a broadcast receipt range or any other suitable physical distance of the secured device), a user device can be verified and the user device can access the third-party application (e.g., for a given amount of time, as long as the user location does not change significantly, etc.), or the public identifier (e.g., beacon identifier) for the secured device can be provided to the third party application and/or user device. If the user is not determined to be in proximity to the beacon, then the user device is not able to access the third-party application, the public identifier will not be provided to the user device or third-party application, and/or a rejection notification sent to the user device. However, the system and/or method can function in any suitable manner.
2. Benefits.
Variations of the technology can confer several benefits and/or advantages.
First, variants of the technology can confer the benefit of enabling more accurate location determination than other location sensing means. Specific variants can be harder to spoof and/or more accurate than GPS and/or other location sensors. In a specific example, the secure device's temporary identifier can be periodically changed and independently calculated (e.g., deterministically) by both the secure device and the verifier (e.g., based on shared secret information stored by the secure device and the verifier during manufacture).
Second, variants of the technology can confer the benefit of ensuring that the user is located in close proximity to the beacon. In specific variants, the technology can compare broadcast time(s) and receipt time(s) to ensure that the time(s) are within an acceptable error to validate user proximity. In a specific example, the broadcast time(s) are encrypted within the broadcast payload to ensure that malicious actors cannot spoof the broadcast time.
Third, variants of the technology can confer the benefit of preventing malicious attacks. In specific variants, the system and method can function to prevent beacon spoofing and man-in-the-middle (e.g., replay attacks) by validating a user proximity relative to the beacon.
Fourth, variants of the technology can confer the benefit of increased payload security by rotating the encryption key used to encrypt and/or decrypt the payload. In one example, the encryption key is (periodically) independently generated on-board the beacon and by the beacon platform (e.g., verifier). The encryption key is preferably deterministically generated, but can be otherwise generated.
Fifth, variants of the technology can optionally rotate the broadcast beacon identifiers (e.g., temporary identifiers), which can also prevent spoofing. In one example, the temporary identifier is (periodically) independently generated on-board the beacon and by the beacon platform (e.g., holding the beacon registry) based on synchronized data (e.g., synchronized clocks, a shared secret, etc.). The temporary identifier is preferably deterministically generated, but can be otherwise generated.
Sixth, in variants of the technology, each temporary identifier can be associated with a different encryption key, wherein the temporary identifier functions as the shared secret and/or another identifier for indicating which encryption key to use.
Seventh, variants of the technology can optionally enable third-party temporary identifier resolution into a public beacon identifier, without sharing the encryption key for the encrypted payload. For example, the temporary identifier used in the broadcast frame can be clear text, such that a third-party resolver (without the encryption key, but with lookup table associating temporary IDs to public IDs, such as for beacons within the resolver's geographic location) can resolve the temporary ID into the public ID, which can subsequently be used by a client or application to perform a predefined set of actions.
However, variants of the technology can confer any other suitable benefits and/or advantages.
3. System.
The system 10 preferably functions to determine whether a user is in proximity to a secured device. The system 10 can optionally function to enable a user (e.g., via a user device) to perform a predetermined action (e.g., accessing client information, access third party application, etc.). Additionally or alternatively, the system can perform any suitable function.
Hereinafter, all references to and/or processes for a single secured device (e.g., beacon) can be replicated for one or more secured devices. When multiple secured devices are used, each beacon preferably includes a different set of beacon parameters, but can alternatively or additionally share beacon parameters.
The listener can be in proximity with the secured device when: the listener is within a predetermined physical range of the secured device (e.g., within a broadcast range, within a static range, etc.), is collocated with the secured device, and/or is otherwise arranged relative to the secured device.
The components of the system are preferably independently synchronized (e.g., synchronize time) such as by accessing a time server (e.g., NTP time server). However, additionally or alternatively, the components of the system can be initially synchronized (e.g., at the time of manufacture, at the time of deployment, such that the time drift is assumed to be minimal, etc.), synchronize to one component's clock, share a clock, can be configured to correct for timing differences, and/or be otherwise suitably synchronized.
The secured device 100 (e.g., beacon 110) can function to generate and broadcast a series of frames (e.g., a Bluetooth frame). The secured device can additionally or alternatively define a geographic location (e.g., geolocation), can enable interactions with third client information (e.g., third party applications), and/or perform any suitable function.
The beacon 110 is preferably in communication with one or more listeners (e.g., when the listeners are within a communication distance); however, the beacon can be in communication with resolvers, verifiers, clients, and/or any suitable component.
The beacon 110 preferably includes a short-range communication module; however, additionally or alternatively, the beacon can include a long-range communication module, one or more short and long range communication modules, and/or any suitable means for communication. The short range communication module is preferably Bluetooth (e.g., Bluetooth low energy (BLE), classic Bluetooth, ultrawide band (UWB), etc.); however, additionally or alternatively, the short range communication module can be near-field communication (NFC), radio frequency (RF), infrared (IR), Zigbee, Z-wave, and/or any suitable short-range communication module.
The beacon 100 is preferably associated with beacon parameters, which can include: master secret key, location, device status (e.g., battery status, lifetime, connection status such as to user devices, etc.), public identifier (e.g., beacon ID, beacon public ID, etc.), temporary identifier (TID), seed (e.g., random value), clock (e.g., synchronized to NTP time server), time window, beacon state, and/or other suitable parameters. The beacon parameters are preferably stored by the beacon platform (e.g., in a beacon registry), however, the beacon parameters can be otherwise stored. The location is preferably static; however, the location can be dynamic (e.g., actively moving, moved on a time schedule, etc.).
The beacon preferably includes a cryptography module. The cryptography module can be configured to generate secured data (e.g., payload), such as by encrypting the data, to prevent those without an appropriate key from accessing the secured secret. The cryptography module preferably uses 128-bit AES and/or SHA 256; however, any suitable encryption cipher and/or hash function can be used.
The listener 200 (e.g., a user device 500) can function to receive signal(s) (e.g., frame(s)) broadcast by the beacon and transmit said signal to the resolver and/or verifier. The listener can optionally function as a resolver (e.g., in specific variants where the listener has been verified by the verifier). However, the listener can perform any suitable function.
The listener 200 is preferably in proximity to (e.g., physically located proximal to) the beacon; however, the listener can be otherwise suitably situated. The listener is preferably communicably coupled to the beacon, the resolver, the verifier, and/or the client. However, the listener can be connected to any suitable components (e.g., the beacon, the resolver, the verifier, and/or the client), can be the same as the resolver (e.g., a user device); and/or otherwise suitably configured. The listener preferably includes a short range communication module (e.g., sharing the same protocol(s) as the beacon) and/or a long range communication module (e.g., cellular radio, WiFi radio, etc.); however, the listener can include any suitable communication modules.
The listener 200 is preferably a user device 500 (e.g., a mobile device, a laptop, personal computer (PC), smartphone, smartwatch, smart glasses, etc.); however, the listener can be any suitable computing device (e.g., a remote computing device such as the cloud, a server or remote computing system, a network, etc.). The listener is preferably configured to become a resolver (e.g., after verification); however, in variants, the listener can be precluded from becoming a resolver.
The resolver 300 can function to determine the specific beacon ID (e.g., public ID) based on the TID; however, the resolver can perform any suitable function. The resolver is preferably in communication with one or more listeners and/or one or more verifiers. However, the resolver can be the same as the listener, connected to the listeners and/or verifiers, and/or can be otherwise suitably configured.
The resolver 300 preferably independently receives beacon data (e.g., beacon information, beacon parameters, beacon frames, TIDs, etc. for beacon ID or public ID determination) from the verifier and/or the beacon (via the listener). In variants, the resolver can independently calculate beacon information based on beacon parameters. However, the resolver can be otherwise suitably configured.
The resolver 300 can be a computing system (e.g., a remote computing system 600 such as the cloud, a server, etc.) and/or a user device 500 (e.g., after the user device has been verified). The resolver preferably includes a long-range communication module, however, the resolver can include a short range communication modules, and/or any suitable means for communication.
The verifier 400 (e.g., validator) preferably functions to verify the listener proximity to one or more beacons. The verifier can be the same as the resolver (e.g., a cloud resolver, a remote computing device) and/or different from the resolver (e.g., the verifier is a remote computing device and the resolver is a user device). The verifier is preferably a remote computing device 600; however, the verifier can be the beacon (e.g., the beacon can verify a challenge from the listener, such as a signed challenge sent from the verifier to the beacon via the listener), and/or any suitable computing device.
The verifier 400 preferably has access to the same information as the beacon (e.g., beacon parameters); however, the verifier can have access to different information. The verifier's information is preferably a different instance of the shared information (e.g., wherein the information is duplicated at the verifier and the secure device), but can alternatively be the same instance or any other suitable instance. The verifier is preferably configured to independently calculate the beacon state (e.g., TID, keys, etc.) from the beacon; however, information can be transferred (e.g., via the listener, via the resolver, by the beacon owner, directly, etc.) between the beacon and the verifier, and/or the verifier can access the beacon information in any suitable manner. In a specific example, the verifier stores the beacon master secret key, seed(s), time window, and clock time of the beacon. In this specific example, the verifier can independently determine the beacon TID, beacon key(s), and/or other suitable information from the beacon. However, verifier can obtain information from beacon and/or share any suitable information.
The client 700 can function to receive the beacon ID from the resolver and perform a predetermined action based on the beacon ID. Examples of the predetermined action can include: retrieving content associated with the beacon ID (e.g., from a third-party database), controlling an auxiliary device (e.g., controlling a door to open), and/or any suitable action.
The client 700 is preferably an application (e.g., a third-party application) executing on the listener and/or resolver (e.g., user device), but can additionally or alternatively be executed on a different system. The client can be a native application, a browser application, an operating system application, and/or be any other suitable application, executable, development tool (e.g., SDK), or software module.
In a specific example, the system can include a Bluetooth beacon, a user device (e.g., listener), and a server (e.g., resolver, verifier). The Bluetooth beacon can be configured to broadcast a frame with an encrypted payload. The frame can be received by the listener and transmitted to the server. The server can determine if the listener is in proximity to the beacon. If the listener is in the proximity to the beacon, the server can transmit the beacon ID to the listener. However, the system can be otherwise suitably configured.
4. Method.
The method 20 preferably functions to determine if a user (e.g., user device) is in proximity to a beacon, enable interaction between the user device and a client (e.g., to access third party applications), and/or any suitable functions. Variants of the method, for example as shown in
4.1 Generating one or more frames.
Generating one or more frames, Block S100, preferably functions to prepare (e.g., encrypt, hash, format, etc.) data (e.g., identifiers, key(s), time, etc.) to transmit to an external device (e.g., user device). Block S100 is preferably performed before broadcasting the frame and/or verifying the proximity; however, Block S100 can be performed at the same time as broadcasting the frame and/or verifying the proximity, and/or with any suitable timing. Block S100 is preferably performed by a beacon, but can be performed by any suitable component.
Generating one or more frames preferably occurs before the time window begins; however, Block S100 can occur at the start of the time window, during the time window, upon receipt of a trigger, and/or with any suitable timing.
The frame(s) 120 can be any suitable combination of hash values, clear text, and/or ciphertext. The frame 120 preferably includes a frame identifier (e.g., frame type, frame version, etc.), a temporary identifier (e.g., TID), a randomizer, an encrypted payload, and/or an authentication tag; however, the frame can include a subset of the data, and/or any additional data. The TID within the frame is preferably cleartext, but can additionally or alternatively be hashed, encrypted, or otherwise secured or unsecured.
Generating one or more frames can include generating a TID and key(s). Generating a TID and key(s) can function to prepare a unique, dynamic identifier (e.g., TID) for the beacon, prepare one or more keys associated with the TID (e.g., root keys, hash keys, etc.) associated with the TID, and/or any suitable function. The key(s) are preferably generated before the TID; however, the key(s) can be generated at the same time as or after generating the TID. The keys generated in S100 are preferably temporary keys (e.g., ephemeral keys, rotating keys, etc.), but can alternatively be static keys or permanent keys. The TID is preferably a hash (e.g., hash value); however, the TID can be cleartext, ciphertext, and/or any suitable format. The TID and key(s) are preferably associated with a specific beacon and a specific time window; however, the TID and/or key(s) can be associated with more than one beacon, more than one time window, not associated with a time window, and/or associated in any suitable manner.
The time window is preferably a duration of time during which the time window information (e.g., TID, key(s), information calculated using the time window, information that includes the time window, etc.) is valid; however, the time window can an approximate duration of time that the time window information is valid (e.g., time window duration plus or minus is, 30 s, 1 min, 5 min, etc.), and/or can be any suitable otherwise used. The time window can be a fixed time range (e.g., 8:00 am to 8:15 am, 9:27:30 am to 9:27:45 am, 12:00 am to 11:59:59 pm, etc.), can be any duration of time (e.g., recurrent, nonrecurrent) and/or range thereof (e.g., between 32 s and 4096 s such as 17 minutes), and/or any suitable amount of time. In an illustrative example, the time window is 5 minutes, wherein a new TID and keys are determined every 5 minutes.
The time window duration and/or starting times are preferably shared between the beacon and the verifier and/or resolver, but can be otherwise stored. In one variation, the time window duration and/or starting times are determined by the verifier or resolver (e.g., the server), and transmitted to the secure device (e.g., via one or more listeners or intermediaries). In a second variation, the time window duration and/or starting times are determined by the secure device, and transmitted to the verifier and/or resolver (e.g., via an intermediary). However, the time window duration and/or starting times can be predetermined and stored at manufacture, determined at beacon deployment, and/or at any other suitable time in any suitable manner.
The time window preferably includes the ends of the time window (e.g., inclusive of the start of the time window and the end of the time window); however, the time window exclude the ends of the time window.
After a time window expires, the time window information is preferably redetermined. However, time window information can be retrieved from memory (e.g., in variants where time window information associated with more than one time window is determined at the same time and cached), can be determined in response to a trigger (e.g., a call to generate new identifying information), and/or be otherwise suitably calculated. In variants including more than one time window, the time windows are preferably the same duration; however, the time windows can have different durations and/or any suitable duration.
The TID (e.g., for a given time window) is preferably generated based on a time associated with the time window (e.g., the start time, a time within the time window, the end time, etc.), but can additionally or alternatively be generated based on: the master secret key (e.g., a manufacture beacon ID, stored on the beacon during manufacture, start-up, etc.), a counter, a prior TID for the beacon (e.g., the last TID, other TIDs, etc.), and/or any suitable other information.
In a specific example, the TID can be generated (e.g., calculated) using a hash-based message authentication code (HMAC). The HMAC input can include the seed, the time window (e.g., time window duration, a time associated with the time window, etc.), an instantaneous time (e.g., read from the clock), and a hash root key. In this example, the cryptographic hash function can be MD5; SHA-1; SHA-2 such as SHA224, SHA256, SHA384, SHA512, SHA512/224, SHA512/256, etc.; SHA-3; CRC32; BLAKE2; and/or any suitable cryptographic hash function. In this specific example, the hash root key can be generated using an HMAC, where the input can include a known byte sequence (e.g., a string such as “hash root key” converted to bytes such as “68 61 73 68 20 72 6f 6f 74 20 6b 65 79”; a prior TID; etc.) and the master root key.
In a second specific example, the TID can be generated in the manner disclosed in U.S. application Ser. No. 15/921,844, filed 15 Mar. 2018 and/or U.S. application Ser. No. 16/152,254 filed 4 Oct. 2018, each of which are incorporated in their entireties by this reference. However, the TID and/or key(s) can be otherwise generated.
Generating one or more frames can include generating an encrypted payload. Generating an encrypted payload preferably functions to provide secure information (e.g., payload) that can be checked (e.g., at a verifier, at a trusted device such as one with an encryption key, etc.) to determine the user proximity to the beacon. The encrypted payload preferably includes a payload that has been secured (e.g., encrypted). Generating an encrypted payload can occur before, during, and/or after generating the TID and/or key(s). Generating an encrypted payload is preferably performed by a cryptographic module of the beacon; however, any suitable component can be used.
The payload can include a broadcast time (e.g., approximately the instantaneous time that the frame is broadcast, such as within 1 ms, 5 ms, 10 ms, 100 ms, 1 s, etc. of the broadcast), and a device status. The broadcast time is preferably a single time; however, additionally or alternatively, the broadcast time can be a series of times (e.g., times corresponding to a series of frames; times corresponding to a series of steps such as generating the TID, generating the key(s), etc.; series of times corresponding to broadcasting the frame(s); etc.). The broadcast time can be: the payload generation time, the TID generation time, the encryption key generation time, the frame generation time, an estimated broadcast time, a schedule broadcast time, and/or any suitable time. The broadcast time is preferably within the time window (e.g., used to generate the TID and key(s)) but can additionally or alternatively be outside the time window. However, the payload can include any suitable data.
The payload is preferably secured (e.g., encrypted) using a block cipher algorithm (e.g., advanced encryption standard (AES), Blowfish, data encryption standard (DES), Serpent, Twofish, etc.); however, a stream cipher algorithm (e.g., Rivest Cipher 4 (RC4), Salsa 20, ChaCha, etc.), block cipher in stream mode, etc.), and/or any suitable algorithm can be used. Different payloads (e.g., associated with different frames, different time windows, etc.) are preferably secured using the same algorithm; however different algorithms can be used. The algorithm is preferably an Authenticated Encryption with Associated Data (AEAD); however, any suitable algorithm can be used.
The block cipher algorithm is preferably operated in encrypt-then-authenticate-then-translate (EAX) mode of operation; however, the algorithm can be operated in Counter with CBC-MAC (CCM), Carter-Wegman+CTR mode (CWC), Galois-Counter Mode (GCM), Integrity Aware Parallelizable Mode (IAPM), Offset Codebook Mode (OCB), Extended Ciphertext Block Chaining (XCBC), Cipher Block Chaining (CBC), Integrity Aware CBC (IACBC), Sophie Germain Counter Mode (SGCM), and/or any suitable mode of operation.
The encryption key can be static, generated (e.g., based on the time window such as a start time of the time window, based on the duration of the time window, etc.), received from the validator, and/or otherwise determined. The encryption key is preferably associated with the TID (e.g., be a temporary key generated based on and/or within the same time window as the TID), but can additionally or alternatively be a predetermined key associated with the TID, be unassociated with the TID, or be any other suitable key.
In a specific example, the encrypted payload is generated (e.g., calculated) using AES-EAX (AES operating in EAX mode) encryption. The encryption inputs can include a frame identifier, a TID, a nonce, a payload, an encryption key, and/or any suitable information. The nonce, for example, can be generated from an instantaneous time and a randomizer; however, the nonce can be generated in any suitable manner. The encryption key can be generated using an HMAC. In this example, the inputs to the HMAX can be a seed, a known byte sequence (e.g., a string such as “encryption key” converted to bytes such as “65 6e 63 72 79 70 74 69 6f 6e 20 6b 65 79”, a prior encryption key, etc.), a time (e.g., an instantaneous time, a time window time such as the start of the time window, a broadcast time, etc.), and a hash root key; however, the encryption key can be generated in any suitable manner.
4.2 Broadcasting a frame.
Broadcasting a frame, block S200, preferably functions to transmit a frame for possible detection (e.g., by a listener, for example as shown in
Frames are preferably broadcast by a beacon and received by a listener. The listener can transmit a received frame to a verifier and/or to a resolver. Additionally or alternatively, the listener can store a series of frames (e.g., associated with different time windows, associated with the same time windows, sequential frames, etc.) before transmitting them, the beacon can broadcast more than one frame, and/or the frames can be broadcast and transmitted in any suitable manner. Each frame is preferably unique (e.g., different payload, different TID, different key(s), etc.); however, frames can be the same (e.g., during a time window).
Frames are preferably broadcast at a predetermined frequency (e.g., every 0.1 s, 1 s, 2 S, 10 S, 30 s, 60 s, etc.; once every time window, a predetermined number of times within a time window, a predetermined frequency independent of time window durations, etc.); however, frames can be broadcast at random times, after being triggered, and/or at any suitable time. The predetermined frequency can be specified by the beacon platform (e.g., in response to a user, owner, etc. setting receipt) and transmitted to the beacon (e.g., via an intermediary, such as a proximal user device, a secondary beacon, etc.), be a static value, be a dynamic value (e.g., based on time, time of day, etc.), and/or be otherwise suitably determined. Frames are preferably not broadcast while a frame (e.g., the same frame or the next frame) is being generated, but frames can be broadcast while generating the frame.
Frames are preferably broadcast in a substantially spatially uniform manner (e.g., signal strength a given distance away from the beacon is approximately the same such as differs by <5%, <10%, 20%, etc. in all directions). Additionally or alternatively, the frame can be broadcast in a directed manner (e.g., in a specific direction), in a semi-directed manner (e.g., in front of the beacon, to a fixed height above the beacon, etc.), and/or can be broadcast in any suitable manner.
4.3 Verifying the Proximity.
Verifying the proximity of a user device to a beacon (e.g., verifying the proximity), block S300, preferably functions to check if and verify that a user device is within a predetermined proximity to a beacon. Block S300 can optionally function to transition a listener to a resolver and/or perform any suitable function. The predetermined proximity (e.g., proximity), can be: defined by a beacon (e.g., set by an owner, operator, manufacturer, etc.), the greatest distance that a listener can receive the beacon signal (e.g., directly from the beacon, from a beacon extender, etc.), a distance where the received signal strength (RSSI) is greater than a threshold signal strength (e.g., greater than −100, −70, −60, −50, −40, etc.), any distance and/or range thereof between 0-100 m, and/or otherwise suitably defined.
In response to proximity verification, the system (e.g., verifier, client, resolver, etc.) can: provide sensitive data (e.g., the beacon ID, public identifier, etc.) to the listener, trigger an action at a predetermined end point associated with the beacon (e.g., charge a user account associated with the beacon, open a door associated with the beacon, etc.), enable additional functionalities (e.g., beacon programming, transition listener to resolver, etc.), and/or perform any suitable action.
In response to proximity rejection, the system (e.g., verifier, client, resolver, etc.) can: notify a managing entity (e.g., the beacon platform, an entity associated with the beacons, etc.), trigger key re-cycling (e.g., by instructing the beacon to start a new time window), trigger implementation of other security protocols or methods (e.g., locking all doors associated with the beacon, sounding alarms, etc.), ban the listener (e.g., temporarily, permanently, etc.), and/or perform any suitable action.
Block S300 is preferably performed by a verifier (e.g., in communication with a listener); however, block S300 can be performed by any suitable component. Block S300 preferably occurs after broadcasting the frame; however, part or all of block S300 can occur at the same time and/or before block S100 and/or block S200.
The proximity verification (e.g., verifying the proximity) is preferably based on a time parameter. The time parameter is preferably based on the broadcast time and a receipt time (e.g., an instantaneous time when the frame is received at the verifier), but can be determined based on any other suitable data (e.g., RSSI, wherein the packet delay is cross-referenced with the RSSI; etc.). The time parameter can be a packet delay (e.g., receipt delay, difference between a broadcast time and a receipt time, etc.), an average packet delay (e.g., average difference between successive broadcast times and respective receipt times), a packet stability (e.g., based on a difference between successive packet delays; based on a difference between a broadcast delay, calculated between successive packets or broadcasting times, and a receipt delay, calculated between successive packets or receipt times; etc.), average packet stability (e.g., average difference between successive packet stabilities), and/or any suitable combination. Additionally or alternatively, the proximity verification can be based on a location sensor (e.g., of the user device such as GPS, GNSS, etc.), receiving signals from more than one beacon in a given geolocation, connection to a local server (e.g., local WiFi network), optical location detection (e.g., scan QR code, computer vision from image and/or video of location, etc.), and/or any suitable means for detecting a listener proximity to a beacon.
The proximity is preferably verified when the time parameter for the packet (or frame) is less than a target time parameter (e.g., <1 ms, <10 ms, <100 ms, <1 s, <1 min, etc.); however, the proximity can be verified when the time parameter falls within a predetermined range (e.g., 0-100 ms, 10-300 ms, 5 ms 60 s, etc.), and/or be otherwise verified when the time parameter satisfies any other suitable set of conditions. The target time parameter can be an absolute value, a normalized value (e.g., of historical time parameter values for the beacon, for a beacon population, etc.), an absolute range, a normalized range, and/or any suitable time. In a specific example, when the time delay between the broadcast time and receipt time is less than a threshold value (e.g., 1 s) the proximity of the listener (e.g., user device) to the beacon can be confirmed (e.g., verified). In a second specific example, a malicious actor 110′ can be detected and/or the listener proximity can be rejected or invalidated when the time parameter for the current frame(s) exceed the target time parameter (e.g., for a single frame, a threshold number of frames, etc.). However, proximity verification can occur in any suitable manner.
The proximity verification can be valid (e.g., remain in effect, not be rechecked, etc.) for: the remainder of the time window, a duration approximately equal to the time window duration, on a frame-by-frame basis (e.g., valid for the frame that the time parameter was calculated for), for any suitable amount of time and/or range thereof between 1 s 24 hrs (such as 30 minutes), until a change in user device and/or beacon is detected (e.g., location sensor indicates relative movement of the beacon and user device, user device is turned off, user device is idle for a predetermined amount of time, the beacon resets, etc.), based on verifier instructions (e.g., command to reset proximity verification, receipt of trigger to reset, etc.), and/or for any suitable duration of time.
Verifying the proximity can include associating the frame with a receipt time. Associating the frame with a receipt time can function to associate an approximate receipt time (e.g., within 1 ms, 10 ms, 100 ms, 1 s, etc.) with the frame. Associating the frame with a receipt time is preferably performed by a verifier upon (e.g., immediately, with a known time delay, etc.) receipt of the frame at the verifier from the listener and/or resolver; however, associating the frame with a receipt time can be performed by a resolver and/or any suitable component. Associating the frame with a receipt time can be performed before, during, and/or after generating the key and TID.
The receipt time is preferably stored as a series of receipt times (e.g., corresponding to a series of frames); however, the receipt time can be stored as individual data values, used immediately upon determination (e.g., without being stored), and/or stored in any suitable manner. The receipt time can be: the time the frame arrives at the verifier, the decryption time (e.g., the time the encrypted payload is decrypted), the read time (e.g., the time the frame is interpreted), an estimated receipt time, and/or any other suitable time. The receipt time is preferably within the time window, but can additionally or alternatively be outside the time window.
Verifying the proximity can include extracting information from the frame(s). Extracting information from the frame(s) functions to retrieve information from one or more frames. Extracting information from the frame(s) preferably occurs after associating the frame with the receipt time; however, extracting information from the frames can occur at the same time as associating the frame with the receipt time. Extracting information from the frame(s) can occur at a verifier (e.g., a cryptographic module of a verifier), a listener, a resolver, and/or any suitable component.
Extracting information from the frame can include reading data (e.g., hash values, cleartext, etc.), decrypting data (e.g., ciphertext) with a decryption key, and/or any suitable steps. The decryption key is preferably a symmetric key (e.g., be an encryption key; wherein the same key can be stored and/or generated at the secured device and the verifier; etc.), but can alternatively be part of an asymmetric key pair (e.g., the private key, the public key, etc.).
In one variation, the decryption key (hereinafter synonymous with encryption key for the symmetric key variant) is static for all frames transmitted by the beacon. In this variation, the decryption key can be retrieved based on the beacon identifier (e.g., public ID, master secret key, etc.) that is determined from the transmitted TID, and/or otherwise suitably determined.
In a second variation, the decryption key is specific to a given TID, and rotated with the TID. In one embodiment, the decryption key is generated from the TID. In a second embodiment, the encryption key is generated from a common parameter (e.g., a time associated with the time window) as the TID. In this variation, the method can include independently generating the TID and/or key(s) at the verifier.
Independently generating the TID and/or key(s) at the verifier can function to provide the TID and associated keys to the verifier (e.g., without needing to receive them from the beacon). Independently generating the TID and/or key(s) can be before, during and/or after generating the TID and key(s) at the beacon. Independently generating the TID and/or key(s) is preferably independent of generating the TID and/or key(s) beacon; however, independently generating the TID and/or key(s) at the verifier and beacon can be dependent on one another. Independently generating the TID and/or key(s) preferably generates the TID and corresponding key(s) for more than one time window at a time and stores the series of TIDs and/or key(s); however, independently generating the TID and/or key(s) can be computed for each time window (e.g., individually), in response to a trigger, and/or with any suitable timing. Independently generating the TID and/or key(s) is preferably performed in the same manner as block S100; however, any suitable manner can be used. Additionally or alternatively, the TID and associated key(s) can be stored at the verifier and beacon (e.g., at the time of manufacture, by an owner, by an operator, etc.), communicated between the beacon and verifier, and/or the TID and key(s) can be generated at the beacon and verifier in any suitable manner.
In a specific example, extracting information from the frame can include at the verifier, decrypting the encrypted payload (e.g., to extract a cleartext broadcast time). Decrypting the encrypted payload can function to allow the verifier to access the broadcast time. In a second specific example, extracting information can include reading the TID and retrieving the TID-associated key at a resolver. In a third specific example, extracting information can include extracting a frame ID at a listener. However, additionally or alternatively, extracting information from the frame can include any suitable steps.
Verifying the proximity can include determining a time parameter. Determining a time parameter can function to calculate a time parameter associated with the frame (e.g., associated with the broadcast time of the frame and the receipt time of the frame). Determining a time parameter preferably occurs at a verifier, but can occur at any suitable component. Determining a time parameter preferably occurs after extracting information from the frame; however, determining a time parameter can occur at the same time as extracting information from the frame.
Determining a time parameter, for example as shown in
In a specific example, verifying the proximity can include: receiving the frame at the verifier (from a listener) at a receipt time; determining an encryption key for the frame (e.g., based on the TID extracted from the frame); extracting the broadcast time from the frame (e.g., by decrypting the encrypted payload with the encryption key); determining a time parameter based on at least the broadcast time and the receipt time; and verifying the listener proximity to the secure device upon time parameter satisfaction of a set of verification conditions (e.g., the calculated time parameter is within a predetermined deviation from a historical time parameter value for the beacon). However, the proximity can be otherwise verified.
Verifying the proximity can optionally include transitioning a listener to a resolver. Transitioning a listener to a resolver preferably functions to change a device state from a listener to a resolver (e.g., transition a user device from a listener to a resolver) when the listener proximity is verified, but can be transitioned at any other suitable time, in response to any other suitable condition being met. Transitioning a listener to a resolver preferably occurs after determining the time parameter (e.g., wherein the listener proximity to the beacon can be verified); however, transitioning a listener to a resolver can occur at the same time as determining the time parameter. The resolver status is preferably conferred for the same amount of time as the proximity verification is valid; however, the resolver status can be conferred for a predetermined amount of time or any suitable amount of time.
4.4 Providing a Beacon Identifier.
Providing a beacon identifier, block S400, can function to determine the beacon identifier for a specific beacon, transmit the beacon identifier (e.g., to the listener, to the resolver, to a user device, etc.), and/or perform any suitable function. A beacon identifier is preferably provided to a listener by a resolver; however, providing a beacon identifier can be performed by a verifier and/or any suitable component. Providing a beacon identifier preferably occurs after validating the proximity, but can additionally or alternatively occur concurrently with proximity validation, before proximity validation, independently of proximity validation, and/or at any other suitable time.
Providing a beacon identifier can include extracting the TID from the frame, receiving one or more TIDs from the verifier, determining a beacon public identifier, performing a predetermined action, and/or any suitable steps.
In specific variants of the method, receiving one or more TIDs from the verifier (e.g., receiving TIDs) can include, at the resolver (e.g., user device, server), receiving a set of TID-associated information and corresponding set of beacon public IDs from the verifier. In a first variation, the resolver calculates the TID-associated information (e.g., wherein the resolver can also be the verifier, can be the server, etc.). In a second variation, the set of beacons for which public IDs are received can be beacons within a geographic region proximal the resolver (e.g., within a predetermined distance of the resolver), determined based on the geolocation of resolver, wherein the resolver's geolocation can be determined from a secondary service, such as the user device's GPS radio. In this variation, the listener/resolver cannot resolve TIDs outside of the listener/resolver's actual proximity, because the listener/resolver only has access to the local beacons' resolution data (e.g., beacon public IDs and corresponding TIDs).
In a specific example, as shown in
Performing a predetermined action is preferably performed by the listener, based on instructions from the client and based on the beacon's public identifier. Performing a predetermined action can occur at any suitable time before, during, and/or after receiving the beacon public ID. The predetermined action can be client specific (e.g., accessing a third-party application or database, accessing client database, etc.), depend on the beacon identifier (e.g., access different clients, different client applications, etc.), client-specified (e.g., an action, based on the beacon public identifier, that is specified by the client, etc.), user device specified, and/or any suitable action.
In a first specific example, as shown in
In a second specific example, the beacon temporary id and associated key (e.g., time-window key) can be generated at the beacon based on the time window (e.g., duration, instantaneous start time, etc.). In this specific example, the beacon temporary id and associated key can be hash values and/or cleartext. At the beacon, a payload, including a broadcast time, can be encrypted (e.g., using AES-AEX encryption function). The beacon can generate and broadcast a frame including the encrypted payload, the beacon temporary id, and the time-window key. The frame can be received by a listener (e.g., user device). The listener can transmit the frame to a verifier (e.g., remote computing device). The verifier can, independently from the beacon, generate the beacon temporary ID and associated key. Upon receiving the frame, the verifier can associate a receipt time with the frame. The verifier can store (e.g., cache) more than one frame. The verifier can extract the broadcast time from each of the encrypted payloads determined from the frames. The verifier can then determine a time parameter, such as a packet delay, average packet delay, packet stability, average packet stability, and/or any other suitable metric based on the broadcast times and receipt times. If the time parameter is within a predetermined range of a time parameter value, the proximity of the listener to the beacon can be validated (e.g., confirmed). After validating the proximity of the listener to the beacon, a resolver (e.g., the verifier, a remote computing device, a user device, etc.) can provide the beacon public ID. The beacon public ID can be used to perform a predetermined client action (e.g., client-specified action).
In a third specific example, after a verifier (e.g., remote computing device) validates the proximity of the listener (e.g., user device) to a beacon, the listener can become a resolver. In this example, the resolver can receive a set of beacon TIDs and corresponding beacon public IDs from the verifier. The set of beacon TIDs that is received can be determined based on a geolocation of the resolver (e.g., all beacons within a predetermined distance such as 50 ft, 500 ft, 1000 ft, 2500 ft, etc., of the resolver; all beacons within a predetermined geofence associated with and/or encompassing the resolver's geolocation, etc.). The resolver can determine the beacon public ID by matching the TID received from the beacon to the TID received from the verifier. The beacon public ID can be used to perform a predetermined client action (e.g., client-specified action). The user device can remain a resolver for the duration of the time window before transitioning back to a listener, and/or for any other period of time. However, the system and/or method can include any suitable components and/or steps and can function in any suitable manner.
In a fourth specific example, generating the frame (e.g., at the secure device) includes: calculating a root key (e.g., 32 bytes long): SRK=HMAC(“SRK”, MSK), where MSK can be the master secret key; calculating a temporary ID (e.g., 10 bytes long, wherein “|” can indicate concatenation): TID=HMAC(SEED|“TID”|TSKRPS|KRPS, SRK), where TSKRPS can be the time from the secured device's clock counter (e.g., seconds counter; synchronized to the verifier and/or resolver's clock, etc.), where KRPS can be the time window; calculating an encryption key (e.g., 16 bytes long): SPEK=HMAC(SEED|“SPEK”|TSKRPS|KRPS, SRK); calculating a duration since the beginning of the current resolving window (TMSW; e.g., 3 bytes): TMSW=TMS−1000*TSKRPS, where TMS is the broadcast time and/or the time from secured device's second clock counter (e.g., milliseconds counter; initialized at manufacture and/or synchronized to the verifier and/or resolver's clock); preparing a payload based on the TMSW: P=(TMSW, . . . ); encrypting the payload, and optionally creating an authentication tag (e.g., 10 bytes long): (EP, TAG)=AES_EAX_ENC(0x1E|TID, N, P, SPEK, 80); and assembling a frame: EF=0x1E|TID|R|EP|TAG.
On the resolver and/or verifier side, the SRK, TID, and SPEK can be calculated in the same way as the secured device. The SRK, TID, and SPEK can optionally be calculated for future timeframes (e.g., future values of TSKRPS). The TID-associated information can optionally be calculated. In one example, this can include: calculating a Temporary ID Hash Key: TIDHK=HMAC(SEED|“TIDHK”|TSKRPS|KRPS, SRK); calculating a temporary ID hash: TIDH=HMAC(TID, TIDHK); calculating period boundaries when the data is valid in relation to the secure device's timer offset: PERIOD=(OFFSET+TSKRPS, OFFSET+TSKRPS+2KRPS), where offset can be the difference between the resolver's clock and the beacon's clock(s) (e.g., at initialization); and creating a map associating the Secured Device's Public ID, Temporary ID Hash Key and Temporary ID Hash: MAP={(PUBLIC_ID, TIDH, TIDHK, PERIOD), . . . }. Resolving the frames can include: calculating the SRK, TID, and SPEK in the same way as the secured device; optionally verifying that a frame begins with 0x1E, decomposing the encrypted frame, checking if the TID is present in the precalculated values; optionally verifying the integrity of the encrypted payload; decrypting the payload: P=AES_EAX_DEC(FT|TID, N, EP|TAG, SPEK, 80) where N is a nonce; extracting the TMSW value from the decrypted payload (e.g., milliseconds since the beginning of the current Resolving Window or valid Resolving Windows within a threshold time of the current time); determining the broadcast time and/or reference time: TMS=1000*TSKRPS+TMSW; and analyzing the TMS value (e.g., using absolute packet delay, packet stability, etc.) to determine whether the listener is proximal the secure device.
Embodiments of the system and/or method can include every combination and permutation of the various system components and the various method processes, wherein one or more instances of the method and/or processes described herein can be performed asynchronously (e.g., sequentially), concurrently (e.g., in parallel), or in any other suitable order by and/or using one or more instances of the systems, elements, and/or entities described herein.
As a person skilled in the art will recognize from the previous detailed description and from the figures and claims, modifications and changes can be made to the preferred embodiments of the invention without departing from the scope of this invention defined in the following claims.
This application claims the benefit of U.S. Provisional Application No. 62/721,364, filed 22 Aug. 2018, which is incorporated in its entirety by this reference. This application is related to U.S. application Ser. No. 15/921,844 filed 15 Mar. 2018 and U.S. application Ser. No. 16/152,254 filed 4 Oct. 2018, each of which is incorporated in its entirety by this reference.
| Number | Name | Date | Kind |
|---|---|---|---|
| 6091358 | Maniscalco et al. | Jul 2000 | A |
| 6362778 | Neher | Mar 2002 | B2 |
| 6775258 | Van et al. | Aug 2004 | B1 |
| 6873258 | Marples et al. | Mar 2005 | B2 |
| RE38899 | Fischer | Nov 2005 | E |
| 6965575 | Srikrishna et al. | Nov 2005 | B2 |
| 7027808 | Wesby | Apr 2006 | B2 |
| 7038584 | Carter | May 2006 | B2 |
| 7072671 | Leitch | Jul 2006 | B2 |
| 7146178 | Lehikoinen et al. | Dec 2006 | B2 |
| 7283846 | Spriestersbach et al. | Oct 2007 | B2 |
| 7312752 | Smith et al. | Dec 2007 | B2 |
| 7366113 | Chandra et al. | Apr 2008 | B1 |
| 7458825 | Atsmon et al. | Dec 2008 | B2 |
| 7499462 | MacMullan et al. | Mar 2009 | B2 |
| 7564812 | Elliott | Jul 2009 | B1 |
| 7639131 | Mock et al. | Dec 2009 | B2 |
| 7683761 | Burghard et al. | Mar 2010 | B2 |
| 7705728 | Mock et al. | Apr 2010 | B2 |
| 7706282 | Huang | Apr 2010 | B2 |
| 7835505 | Toyama et al. | Nov 2010 | B2 |
| 7855679 | Braiman | Dec 2010 | B1 |
| 7865306 | Mays | Jan 2011 | B2 |
| 7983677 | Dacosta | Jul 2011 | B2 |
| 8058988 | Medina et al. | Nov 2011 | B1 |
| 8139945 | Amir et al. | Mar 2012 | B1 |
| 8160056 | Van et al. | Apr 2012 | B2 |
| 8260320 | Herz | Sep 2012 | B2 |
| 8265621 | Kopikare et al. | Sep 2012 | B2 |
| 8407417 | Matsuda et al. | Mar 2013 | B2 |
| 8489112 | Roeding et al. | Jul 2013 | B2 |
| 8520648 | Cordeiro | Aug 2013 | B2 |
| 8559975 | Basu et al. | Oct 2013 | B2 |
| 8594850 | Gourlay et al. | Nov 2013 | B1 |
| 8612604 | Beatty et al. | Dec 2013 | B2 |
| 8644255 | Burcham et al. | Feb 2014 | B1 |
| 8694060 | Vanderaa et al. | Apr 2014 | B2 |
| 8694782 | Lambert | Apr 2014 | B2 |
| 8723720 | Moffatt et al. | May 2014 | B2 |
| 8781502 | Middleton et al. | Jul 2014 | B1 |
| 8791901 | Mallinson | Jul 2014 | B2 |
| 8797144 | Hinman et al. | Aug 2014 | B2 |
| 8797214 | Taylor et al. | Aug 2014 | B2 |
| 8844007 | Vicente et al. | Sep 2014 | B2 |
| 8847754 | Buchheim et al. | Sep 2014 | B2 |
| 8855922 | Starenky et al. | Oct 2014 | B1 |
| 8867993 | Perkins et al. | Oct 2014 | B1 |
| 8868133 | Rosenbaum et al. | Oct 2014 | B1 |
| 8886230 | Sydir et al. | Nov 2014 | B2 |
| 8896485 | Mendelson | Nov 2014 | B2 |
| 8911932 | Sun | Dec 2014 | B2 |
| 8934389 | Kuehnel et al. | Jan 2015 | B2 |
| 8938196 | Bradish et al. | Jan 2015 | B2 |
| 8971850 | Klein et al. | Mar 2015 | B2 |
| 8971932 | Mapes | Mar 2015 | B2 |
| 8988221 | Raji et al. | Mar 2015 | B2 |
| 8996030 | Grainger et al. | Mar 2015 | B2 |
| 8997243 | Epstein | Mar 2015 | B2 |
| 9000892 | Hinman et al. | Apr 2015 | B2 |
| 9014715 | Alizadeh-Shabdiz et al. | Apr 2015 | B2 |
| 9026134 | Edge | May 2015 | B2 |
| 9033255 | Tessier et al. | May 2015 | B2 |
| 9036792 | Cacioppo et al. | May 2015 | B2 |
| 9063212 | Jones | Jun 2015 | B2 |
| 9113309 | Uilecan et al. | Aug 2015 | B2 |
| 9113343 | Moshfeghi | Aug 2015 | B2 |
| 9140796 | Zhou | Sep 2015 | B2 |
| 9143890 | Jose et al. | Sep 2015 | B2 |
| 9154565 | Monighetti | Oct 2015 | B2 |
| 9202245 | Kostka et al. | Dec 2015 | B2 |
| 9258674 | Chen | Feb 2016 | B2 |
| 9282436 | Chitre et al. | Mar 2016 | B2 |
| 9282582 | Dunsbergen et al. | Mar 2016 | B1 |
| 9307355 | Nehrenz et al. | Apr 2016 | B2 |
| 9325723 | Son et al. | Apr 2016 | B2 |
| 9351114 | Chatterjee et al. | May 2016 | B2 |
| 9361630 | Goswami | Jun 2016 | B1 |
| 9398422 | Zampini | Jul 2016 | B2 |
| 9408060 | Helms et al. | Aug 2016 | B2 |
| 9424699 | Kusens et al. | Aug 2016 | B2 |
| 9445305 | Lyon et al. | Sep 2016 | B2 |
| 9462469 | Hillyard | Oct 2016 | B2 |
| 9471917 | Govindarajan et al. | Oct 2016 | B2 |
| 9474962 | Barney et al. | Oct 2016 | B2 |
| 9491575 | Edge et al. | Nov 2016 | B2 |
| 9544744 | Postrel | Jan 2017 | B2 |
| 9551774 | Ishida et al. | Jan 2017 | B2 |
| 9558507 | Zilkha | Jan 2017 | B2 |
| 9571957 | Granbery | Feb 2017 | B2 |
| 9571985 | Bottazzi et al. | Feb 2017 | B2 |
| 9591570 | Kubo et al. | Mar 2017 | B2 |
| 9608999 | Somani | Mar 2017 | B2 |
| 9609487 | Alshihi | Mar 2017 | B2 |
| 9621446 | Pugh et al. | Apr 2017 | B2 |
| 9622046 | Otis et al. | Apr 2017 | B2 |
| 9622208 | Mycek et al. | Apr 2017 | B2 |
| 9629064 | Graves et al. | Apr 2017 | B2 |
| 9634928 | Choudhury et al. | Apr 2017 | B2 |
| 9642173 | Granbery | May 2017 | B2 |
| 9648662 | Herrala et al. | May 2017 | B2 |
| 9652124 | Cotier et al. | May 2017 | B2 |
| 9684826 | Dubuque | Jun 2017 | B2 |
| 9684925 | Khalid et al. | Jun 2017 | B2 |
| 9689955 | Rosenbaum | Jun 2017 | B2 |
| 9712967 | Kostka et al. | Jul 2017 | B2 |
| 9801062 | Niewczas et al. | Oct 2017 | B2 |
| 9826356 | Mycek et al. | Nov 2017 | B2 |
| 9832194 | Krieger et al. | Nov 2017 | B2 |
| 9866996 | Krzych et al. | Jan 2018 | B1 |
| 9867009 | Mycek et al. | Jan 2018 | B2 |
| 9886696 | Roeding et al. | Feb 2018 | B2 |
| 9922294 | Raina et al. | Mar 2018 | B2 |
| 9998867 | Keithley | Jun 2018 | B2 |
| 10094907 | Niewczas et al. | Oct 2018 | B2 |
| 20010026240 | Neher | Oct 2001 | A1 |
| 20020167919 | Marples et al. | Nov 2002 | A1 |
| 20020176388 | Rankin et al. | Nov 2002 | A1 |
| 20030084539 | Wartian | May 2003 | A1 |
| 20030100315 | Rankin | May 2003 | A1 |
| 20030146835 | Carter | Aug 2003 | A1 |
| 20030148775 | Spriestersbach et al. | Aug 2003 | A1 |
| 20040008663 | Srikrishna et al. | Jan 2004 | A1 |
| 20040190447 | Dacosta | Sep 2004 | A1 |
| 20040264372 | Huang | Dec 2004 | A1 |
| 20040264466 | Huang | Dec 2004 | A1 |
| 20050162271 | Leitch | Jul 2005 | A1 |
| 20050222933 | Wesby | Oct 2005 | A1 |
| 20060163349 | Neugebauer | Jul 2006 | A1 |
| 20060164213 | Burghard et al. | Jul 2006 | A1 |
| 20060209745 | MacMullan et al. | Sep 2006 | A1 |
| 20060259942 | Toyama et al. | Nov 2006 | A1 |
| 20060290519 | Boate et al. | Dec 2006 | A1 |
| 20070067104 | Mays | Mar 2007 | A1 |
| 20070069923 | Mendelson | Mar 2007 | A1 |
| 20070243769 | Atsmon et al. | Oct 2007 | A1 |
| 20070247366 | Smith et al. | Oct 2007 | A1 |
| 20080056215 | Kopikare et al. | Mar 2008 | A1 |
| 20080062891 | Van et al. | Mar 2008 | A1 |
| 20080068519 | Adler et al. | Mar 2008 | A1 |
| 20080139306 | Lutnick et al. | Jun 2008 | A1 |
| 20080143516 | Mock et al. | Jun 2008 | A1 |
| 20080143604 | Mock et al. | Jun 2008 | A1 |
| 20080231460 | Owen et al. | Sep 2008 | A1 |
| 20090005079 | Shields et al. | Jan 2009 | A1 |
| 20090009398 | Taylor et al. | Jan 2009 | A1 |
| 20090131079 | Sekhar | May 2009 | A1 |
| 20090311976 | Vanderaa et al. | Dec 2009 | A1 |
| 20090327135 | Nguyen et al. | Dec 2009 | A1 |
| 20100019924 | D et al. | Jan 2010 | A1 |
| 20100093374 | Dacosta | Apr 2010 | A1 |
| 20100099435 | Druzinic-Fiebach et al. | Apr 2010 | A1 |
| 20100100582 | Beatty et al. | Apr 2010 | A1 |
| 20100105353 | Cacioppo et al. | Apr 2010 | A1 |
| 20100120450 | Herz | May 2010 | A1 |
| 20100168924 | Tessier et al. | Jul 2010 | A1 |
| 20100317371 | Migos et al. | Dec 2010 | A1 |
| 20110028160 | Roeding et al. | Feb 2011 | A1 |
| 20110029359 | Roeding et al. | Feb 2011 | A1 |
| 20110085442 | Lin et al. | Apr 2011 | A1 |
| 20110102171 | Raji et al. | May 2011 | A1 |
| 20110238188 | Washiro | Sep 2011 | A1 |
| 20110305228 | Cordeiro | Dec 2011 | A1 |
| 20110306357 | Alizadeh-Shabdiz et al. | Dec 2011 | A1 |
| 20120032876 | Tabe | Feb 2012 | A1 |
| 20120057518 | Herrala et al. | Mar 2012 | A1 |
| 20120095805 | Ghosh et al. | Apr 2012 | A1 |
| 20120112055 | Castro-Perez et al. | May 2012 | A1 |
| 20120172055 | Edge | Jul 2012 | A1 |
| 20120190386 | Anderson | Jul 2012 | A1 |
| 20120258730 | Tinnakornsrisuphap et al. | Oct 2012 | A1 |
| 20120260323 | San Vicente et al. | Oct 2012 | A1 |
| 20120262365 | Mallinson | Oct 2012 | A1 |
| 20120280862 | Moffatt et al. | Nov 2012 | A1 |
| 20120284517 | Lambert | Nov 2012 | A1 |
| 20120295535 | Bradish et al. | Nov 2012 | A1 |
| 20120309256 | Theodore | Dec 2012 | A1 |
| 20120316960 | Yang | Dec 2012 | A1 |
| 20120320815 | Massena | Dec 2012 | A1 |
| 20130023282 | Lin et al. | Jan 2013 | A1 |
| 20130030915 | Statler et al. | Jan 2013 | A1 |
| 20130063303 | Zhou | Mar 2013 | A1 |
| 20130065584 | Lyon et al. | Mar 2013 | A1 |
| 20130165157 | Mapes | Jun 2013 | A1 |
| 20130182625 | Kuehnel et al. | Jul 2013 | A1 |
| 20130184002 | Moshfeghi | Jul 2013 | A1 |
| 20130203445 | Grainger et al. | Aug 2013 | A1 |
| 20130225197 | McGregor et al. | Aug 2013 | A1 |
| 20130337771 | Klein et al. | Dec 2013 | A1 |
| 20140018002 | Jose et al. | Jan 2014 | A1 |
| 20140087758 | Maor | Mar 2014 | A1 |
| 20140106782 | Chitre et al. | Apr 2014 | A1 |
| 20140122703 | Pugh et al. | May 2014 | A1 |
| 20140122855 | Maneval | May 2014 | A1 |
| 20140135042 | Buchheim et al. | May 2014 | A1 |
| 20140148196 | Bassan-Eskenazi et al. | May 2014 | A1 |
| 20140149577 | Monighetti | May 2014 | A1 |
| 20140180817 | Zilkha | Jun 2014 | A1 |
| 20140219118 | Middleton et al. | Aug 2014 | A1 |
| 20140220883 | Emigh et al. | Aug 2014 | A1 |
| 20140228044 | Jones | Aug 2014 | A1 |
| 20140277654 | Reinhardt et al. | Sep 2014 | A1 |
| 20140302869 | Rosenbaum et al. | Oct 2014 | A1 |
| 20150005011 | Nehrenz et al. | Jan 2015 | A1 |
| 20150031388 | Chatterjee et al. | Jan 2015 | A1 |
| 20150038171 | Uilecan et al. | Feb 2015 | A1 |
| 20150058355 | Naqvi | Feb 2015 | A1 |
| 20150079942 | Kostka et al. | Mar 2015 | A1 |
| 20150081474 | Kostka et al. | Mar 2015 | A1 |
| 20150094140 | Barney et al. | Apr 2015 | A1 |
| 20150106196 | Williams et al. | Apr 2015 | A1 |
| 20150163828 | Vandwalle et al. | Jun 2015 | A1 |
| 20150245305 | Camps Mur | Aug 2015 | A1 |
| 20150248667 | Govindarajan et al. | Sep 2015 | A1 |
| 20150276432 | Repyevsky et al. | Oct 2015 | A1 |
| 20150279115 | Vukicevic | Oct 2015 | A1 |
| 20150289207 | Kubo et al. | Oct 2015 | A1 |
| 20150294398 | Khalid et al. | Oct 2015 | A1 |
| 20150295333 | Shibuya et al. | Oct 2015 | A1 |
| 20150296048 | Gerding et al. | Oct 2015 | A1 |
| 20150296333 | Chen | Oct 2015 | A1 |
| 20150334548 | Liu et al. | Nov 2015 | A1 |
| 20150347959 | Skaaksrud | Dec 2015 | A1 |
| 20150351008 | Mayor | Dec 2015 | A1 |
| 20150355308 | Ishida et al. | Dec 2015 | A1 |
| 20150365790 | Edge et al. | Dec 2015 | A1 |
| 20150379576 | Otis et al. | Dec 2015 | A1 |
| 20150382153 | Otis et al. | Dec 2015 | A1 |
| 20160006837 | Reynolds et al. | Jan 2016 | A1 |
| 20160007315 | Lundgreen et al. | Jan 2016 | A1 |
| 20160014609 | Goel et al. | Jan 2016 | A1 |
| 20160021687 | Granbery | Jan 2016 | A1 |
| 20160042767 | Araya et al. | Feb 2016 | A1 |
| 20160049028 | Kusens et al. | Feb 2016 | A1 |
| 20160050219 | Niewczas | Feb 2016 | A1 |
| 20160055428 | Raina et al. | Feb 2016 | A1 |
| 20160063550 | Caldwell | Mar 2016 | A1 |
| 20160086029 | Dubuque | Mar 2016 | A1 |
| 20160086460 | King et al. | Mar 2016 | A1 |
| 20160094398 | Choudhury et al. | Mar 2016 | A1 |
| 20160094598 | Gedikian | Mar 2016 | A1 |
| 20160094946 | Keithley | Mar 2016 | A1 |
| 20160099758 | Bell et al. | Apr 2016 | A1 |
| 20160105788 | Helms et al. | Apr 2016 | A1 |
| 20160123745 | Cotier et al. | May 2016 | A1 |
| 20160127875 | Zampini | May 2016 | A1 |
| 20160182365 | Chang et al. | Jun 2016 | A1 |
| 20160188919 | Gao et al. | Jun 2016 | A1 |
| 20160192407 | Fyfe et al. | Jun 2016 | A1 |
| 20160277999 | Graves et al. | Sep 2016 | A1 |
| 20160291127 | Huang et al. | Oct 2016 | A1 |
| 20160345126 | Granbery | Nov 2016 | A1 |
| 20170019765 | Hover et al. | Jan 2017 | A1 |
| 20170064667 | Mycek et al. | Mar 2017 | A1 |
| 20170079001 | Lewis | Mar 2017 | A1 |
| 20170099567 | Kwon et al. | Apr 2017 | A1 |
| 20170171795 | Wang | Jun 2017 | A1 |
| 20180288563 | Krzych et al. | Oct 2018 | A1 |
| Number | Date | Country |
|---|---|---|
| 2016101053 | Aug 2016 | AU |
| 2296407 | Sep 2014 | EP |
| 20030084539 | Nov 2003 | KR |
| 20040050425 | Jun 2004 | KR |
| 101113052 | Feb 2012 | KR |
| 2008135432 | Nov 2008 | WO |
| 2015026862 | Feb 2015 | WO |
| WO-2016025175 | Feb 2016 | WO |
| 2016043388 | Mar 2016 | WO |
| WO-2016043388 | Mar 2016 | WO |
| 2017040690 | Mar 2017 | WO |
| Entry |
|---|
| EPO Examination Report for Application No. 14838745.9, dated Jul. 11, 2018. |
| Paterson, Kenneth G., et al., “Time-Specific Encryption”, Information Security Group, Royal Holloway, University of London, https://eprint.iacr.org/2010/347.pdf. |
| International Search Report and the Written Opinion of the International Searching Authority, Application No. PCT/IB2018/000692, dated Sep. 28, 2018. |
| International Search Report and Written Opinion for International Application No. PCT/US2017/031811 dated Sep. 1, 2017. |
| “Reality Matters”, The Estimote Team Blog, https://blog.estimote.com/post/172115262320/presence-verification-and-security-is-more-refined, Mar. 29, 2018. |
| Hassidim, Avinatan , et al., “Ephemeral Identifiers: Mitigating Tracking & Spoofing Threats to BLE Beacons”, Google Inc., Apr. 14, 2016. |
| Jung, Chanhsu, et al., “Topology Configuration and Multihop Routing Protocol for Bluetooth Low Energy Networks”, IEEE Access, Dec. 13, 2017, 9587-9598. |
| Jung, Chanhsu, et al., “Maximum Power Plus RSSI Based Routing Protocol for Bluetooth Low Energy Ad Hoc Networks”, Wireless Communications and Mobile Computing, Dec. 13, 2017, 1-13. |
| Number | Date | Country | |
|---|---|---|---|
| 62721364 | Aug 2018 | US |
