DE102024104177A1 - Method and system for operating an intelligent lock and computer program product - Google Patents

Abstract

The invention relates to a method for operating an intelligent lock (310, 311, 312, 410, 510, 610, 710, 810), wherein a legitimation request for operating the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) is sent (101) from a user device (320, 420, 520, 620, 720, 820) to a central server (330), wherein the legitimation request is received by the central server (330) and subjected to verification (103, 104), wherein a legitimation confirmation is sent from the central server (330) to the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) is sent (109) and the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) is placed in a state in which it responds to an opening request (111). The method according to the invention is characterized in that a plurality of different intelligent locks (310, 311, 312, 410, 510, 610, 710, 810) are managed by the central server (330), wherein the plurality of different intelligent locks (310, 311, 312, 410, 510, 610, 710, 810) require a plurality of different authentication confirmations. The invention also relates to a corresponding system (330) and a corresponding computer program product.

Description

The invention relates to a method for operating an intelligent lock according to the preamble of claim 1, a corresponding system and a computer program product.

Various forms of so-called smart locks and methods for controlling them are known in the prior art. For example, it is known that a smart lock uses a wireless communication method, such as a Bluetooth communication method, RFID communication method, or WLAN communication method, to detect that a digital key, such as an encrypted software certificate on a mobile phone, is in the vicinity of the smart lock, so that the smart lock can be opened. The selected communication technology can also be used to determine the range within which the software certificate is detected. For example, the range of a WLAN communication method is typically greater than the range of a Bluetooth communication method. However, if the digital key is not within communication range of the smart lock, it remains locked. In this way, car doors or building doors, in particular, can be conveniently opened without having to use a mechanical key.

In this context, the CN 106 652 109 A A smart lock control method. After a user device logs into a smart lock application account, the user device lists the smart locks managed under the account. When a selected smart lock is to be operated, the user device extracts characteristic fingerprint information from a captured fingerprint image of the user and forwards it to a server. The server compares the extracted information with previously stored fingerprint characteristic information and, if the comparison is successful, sends the corresponding information to the user device. By clicking an unlock button on the user device, an instruction to unlock the door can then be sent to the smart lock.

The US 2009/324025 A1 describes a method for controlling access to a secure facility. An image of a predetermined feature, such as a machine-readable code, of the secure facility is captured by a user device and compared with stored security data corresponding to the secure facility. Additionally, at least one user-specific authentication factor is used to determine whether access is granted. If access is granted, a user-readable access code is transmitted from the server and displayed on the user device.

From the WO 2017 198 282 A1 A central access system for controlling user access to multiple decentralized facilities is known. The access system comprises multiple electronic locks, each associated with the multiple decentralized facilities, at least one device provided in the multiple decentralized facilities, and a data processing device connected to the electronic locks and the at least one device. Furthermore, the access system comprises an access device with a unique ID associated with a user, and a database configured to store information indicating a period of time during which the user is to have access to at least some of the decentralized facilities and access to the at least one device. The data processing device is configured to control the electronic locks to selectively permit or prevent access by means of the access device and to selectively permit or prevent access to the at least one device by the user based on the information stored in the database.

The US 11 227 454 B2 discloses a smart lock system comprising a smart lock that electronically locks and unlocks a door, and a server that, in response to an instruction received from a user device over the internet, issues a command to the smart lock to lock or unlock the door. The user device can also send an instruction directly to the smart lock, e.g., when it is within a predefined geofencing area around the smart lock. The smart lock itself can also include a camera that captures images and transmits those images to the server.

However, the known methods for operating smart locks are disadvantageous in that different smart lock manufacturers use different, usually proprietary, and incompatible control methods to interact with their smart locks. A consumer who wants to use smart locks from different manufacturers is therefore forced to use different control devices or at least different software programs.

It is therefore an object of the present invention to propose an improved method for operating an intelligent lock.

This object is achieved according to the invention by the method for operating an intelligent lock according to claim 1. Advantageous embodiments and further developments of the invention emerge from the dependent claims.

The invention relates to a method for operating an intelligent lock, wherein an authentication request for operating the intelligent lock is sent from a user device to a central server, wherein the authentication request is received by the central server and subjected to verification, wherein in a first case of successful verification an authentication confirmation is sent from the central server to the user device and wherein the authentication confirmation is received by the user device and forwarded to the intelligent lock, or in a second case of successful verification an authentication confirmation is sent from the central server directly to the intelligent lock, wherein in the first and second cases the authentication confirmation is received by the intelligent lock and the intelligent lock is put into a state in which it yields to an opening request.

The method according to the invention thus makes it possible to operate an intelligent lock, which is generally also known as a so-called smart lock, by means of an authentication request and an authentication confirmation.

The authentication request can be generated by a user device and sent to the central server.

The legitimation request is a request from the user device to obtain the legitimacy to operate the smart lock. This legitimacy is managed by the central server.

The user device is preferably a smartphone, a keycard with, for example, an NFC module or an RFID chip, or any other wirelessly communicating and mobile device. Alternatively, it can also preferably be a stationary device, such as a permanently installed camera, in particular a camera for facial recognition, a permanently installed fingerprint scanner, or a permanently installed keypad for entering a PIN or code. The aforementioned forms of the user device are fundamentally equivalent. Other forms are also conceivable.

Although the authentication request is always generated by the user device, according to the invention it is not absolutely necessary for the user device to communicate directly with the central server, i.e. to transmit the authentication request directly to the central server. Particularly if the user device is designed as a keycard, it is rather conceivable and preferred for the authentication request to be transmitted from the keycard to the smart lock in a first step and then from the smart lock to the central server in a second step. The transmission from the smart lock to the central server can then take place directly without any further intermediate steps, for example via a WLAN connection, a radio connection or a wired connection. However, it is also conceivable and preferred for the authentication request to be transmitted from the smart lock indirectly via the Internet, i.e. to go through a series of further transmission steps.

The central server receives the authentication request, for example, via one of the transmission paths already mentioned, and then subjects it to verification, i.e., the central server checks whether the authentication request is authorized to operate the smart lock.

Verification advantageously represents a check of the legitimacy request to determine whether the legitimacy request meets all the specified criteria for granting legitimacy.

The specified criteria for granting legitimacy can in principle be specified arbitrarily, although preference is given to publicly recognized and, in particular, standardized criteria that correspond, for example, to one or more of the OAuth, OpenID Connect (OIDC) and SAML (Security Assertion Markup Language) procedures.

The central server is advantageously a data center which has sufficient computing power and data processing resources to carry out the method according to the invention for a plurality of intelligent locks and a plurality of user devices, for example for several million intelligent locks and user devices.

Preferably, several central servers are provided, each configured as a data center. Several data centers can also interact in the internet data space as a single central server, thus forming a so-called cloud.

Alternatively, the central server can also be a so-called smart home control center, which manages the intelligent locks of a single household or a few households.

If the central server successfully verifies the authentication request, the central server will first send an authentication confirmation to the user device, which will then be received by the user device. This authentication confirmation is then forwarded from the user device to the smart lock. In the first case, the central server does not need to be able to communicate directly with the smart lock, so the smart lock, for example, does not require an internet connection.

For example, the central server can send the authentication confirmation over the Internet to a cell tower within range of the user device, the cell tower sends the authentication confirmation as a cellular message to the user device, and the user device sends the authentication confirmation as a Bluetooth message to the smart lock.

In a second case, which represents an alternative to the first case, the authentication confirmation is sent directly from the central server to the smart lock and received by the smart lock. In this case, the smart lock may require internet access, for example, via an internal cellular modem, an internal Wi-Fi modem, or an internal wired modem. In principle, a direct wired connection between the smart lock and the central server is also possible and preferred.

However, if the verification of the authentication request by the central server is not successful, an error message is preferably displayed to the user, informing them that they could not be authorized to operate the smart lock.

In both cases of successful verification, the smart lock finally receives the authentication confirmation. This authentication puts the smart lock into a state where it will accept an opening request.

In the case of a smart lock designed as a door lock, the opening request could, for example, be a signal from a motion detector that instructs an automatic door opening mechanism to open the door. The opening request could also be a manual operation, such as a door handle.

According to the invention, it is now provided that a plurality of different intelligent locks are managed by the central server, wherein the plurality of different intelligent locks requires a plurality of different authentication confirmations.

This means that the central server represents a unified platform for managing different types of smart locks, regardless of the specific, usually manufacturer-dependent, software and physical transmission path used to control the respective smart lock.

The method according to the invention thus offers a significant simplification, particularly when controlling multiple, different smart locks. A user of the smart locks is thus not forced to use different user devices or software programs to control the different locks. Rather, the method according to the invention allows for joint control of all these different smart locks via a common and uniform platform.

If the method according to the invention uses a smartphone as the user device, for example, a corresponding app can be installed on the smartphone, which shows the user an overview of the smart locks under their management. By selecting one or more of the smart locks from the overview, the user can then control the selected smart locks via the app.

The central server is also designed as a central database in which the necessary communication protocols for communication with each of the intelligent locks are stored.

Typically, each smart lock requires registration in a digital account provided by the manufacturer of the digital lock. The manufacturer typically uses proprietary software with access via a more or less standardized authentication process.

Access to this proprietary, i.e., manufacturer-dependent software can now advantageously be achieved via the method according to the invention, which in turn assumes the necessary legitimacy of the user in order to gain access to the proprietary software and thus to be able to operate the intelligent lock. The central server thus manages the access data to the digital account, via which can then be used to control the smart lock. The central server thus provides a unified platform for marketing and controlling a multitude of different smart locks that communicate via manufacturer-specific software.

Alternatively, preferably, within the scope of the method according to the invention, the communication protocol required for communication with the intelligent lock can also be executed by the method according to the invention itself, so that the intelligent lock can also be actuated directly and in particular without recourse to a manufacturer-specific digital account or other digital account.

According to a preferred embodiment of the invention, it is provided that the legitimation request is only generated on the user device if a user of the intelligent lock has previously been successfully authenticated on the user device.

This means that, as a precursor to the verification of the authentication request by the central server, the user must first be authenticated on the device itself. This further improves the security of the smart lock against unauthorized use, as additional authentication is required.

This process step is particularly suitable when the user device is designed as a smartphone, since smartphones usually require user authentication in order to operate them.

Authentication can be done, for example, using a PIN or biometric features, in particular a fingerprint or a facial scan.

According to a particularly preferred embodiment of the invention, it is provided that the legitimation request links personal data of the user and/or a position information of the user with a user-specific certificate stored on the user device.

This further improves the security of the smart lock against unauthorized operation, as the user's identity can only be verified in conjunction with the digital certificate. Alternatively or additionally, the user's location can also be linked to the digital certificate. This can be advantageous, for example, for a digital lock that secures a garage door or front door: Whenever the user is within a specified radius, such as 50 meters, of the digital lock, it can be set to respond to an opening request. This process step is also known as geofencing.

The position information can, for example, be a GPS position of the user, which is continuously recorded and transmitted to the central server. Alternatively, the position information can also preferably be a relative position to the digital lock, for example, the range of a Bluetooth or Wi-Fi connection. Whenever the digital lock receives a Bluetooth or Wi-Fi signal from the user device, this can be understood as a position information within the meaning of the invention, since the user's position relative to the lock is thus known to a certain maximum distance.

A digital certificate is advantageously a digital data set that confirms certain characteristics of a person or object and whose authenticity and integrity can be verified using cryptographic methods. The digital certificate also contains the data required for its verification. The certificate is preferably issued by a higher-level certification authority.

According to a further preferred embodiment of the invention, it is provided that the legitimation request is encrypted on the user device by means of a secret key and/or that the legitimation confirmation is encrypted on the central server by means of the secret key.

This reliably prevents unauthorized persons from reading the authentication request or authentication confirmation and misusing the information obtained to operate the digital lock without authorization.

According to a further preferred embodiment of the invention, it is provided that the central server compares the legitimation request with a previously generated database entry as part of the verification.

The previously created database entry is advantageously created when the user creates a corresponding digital account and contains information describing the user, such as an identification number. The database entry can also include personal data of the user, for example, the data contained in the identity card. Database entry also includes a copy of the digital certificate.

Preferably, the creation of the digital account requires a one-time authentication using an official identification document. For example, this authentication can be done digitally and online using the "Ausweis-App" app, which is popular in Germany.

After the digital account has been created, any number of digital locks can be added to the account.

According to a further preferred embodiment of the invention, it is provided that the opening request is made as a manual actuation.

Manual operation, in particular, involves operating a door handle or simply pushing a door open. The digital lock is in a state where it complies with the opening request, i.e., the door is not locked and can be easily opened by the user of the system. This offers the user a high degree of convenience.

According to a further preferred embodiment of the invention, it is provided that the legitimation request is transmitted from the user device via the Internet.

Thus, the authentication request is first transmitted to the internet, for example, via mobile communications, and from there forwarded to the central server. The internet is suitable for fast information transmission over large and extremely long distances.

It is advantageous to transmit the authentication request via a VPN tunnel. This improves the security of the transmission, particularly against interception and reading of the transmitted information.

According to a further preferred embodiment of the invention, it is provided that the legitimation confirmation is transmitted from the central server via the Internet and/or that the legitimation confirmation is transmitted from the user device by means of WLAN, Bluetooth, infrared, Zigbee and/or NFC.

If the authentication confirmation is transmitted directly from the central server to the smart lock, transmission of the authentication confirmation can technically only occur if the smart lock has internet access, preferably via a cellular connection or via a Bluetooth connection. The Bluetooth connection, in particular, has a comparatively low power requirement, so that a corresponding smart lock can advantageously be powered by a battery. The Bluetooth connection is then preferably connected to a router, a smart home control center, or a hub that establishes the internet connection.

In this case, too, the transmission of the legitimation confirmation is preferably carried out via a VPN tunnel.

If the authentication confirmation is transmitted from the user device to the smart lock, the user device receives the authentication confirmation preferably via the Internet from the central server and then transmits it to the smart lock via a communication channel for which the smart lock is capable.

According to a further preferred embodiment of the invention, it is provided that the central server generates a plurality of different authentication confirmations for a plurality of different intelligent locks.

This advantageously allows each intelligent lock to be controlled in the manner required for its operation, i.e. by means of the communication protocol required for its operation.

As already described, for example, different manufacturer-specific digital accounts can be linked and managed with a uniform digital account created on the central server.

According to a further preferred embodiment of the invention, it is provided that in a third case of successful verification, a time-limited authorization to operate the intelligent lock is granted to another user.

This results in the advantage that a user of the procedure can grant another user access to one or more selected intelligent locks under his management without having to hand over a physical key.

For example, a supplier may be denied access to a home, garage or other premises during a specific period of time during which the supplier is expected to deliver a delivery to the customer but the customer is not at home. a basement room. This allows the delivery person to deliver the goods to the customer without having to meet them.

Another conceivable application is for employees of a mobile care service to be given access to the living spaces of the people being cared for, for example at pre-planned care times.

It's also conceivable for a hotel to automatically grant its guests access to their designated room for the duration of their stay, as well as to special, additional facilities such as a sauna, fitness room, or swimming pool. Access authorization then expires without further action on the day of departure. This eliminates the need to check in or out at the hotel reception.

It is also conceivable for a car rental company to automatically grant its customers access to the rented vehicle for the duration of the rental. Access authorization to the vehicle then advantageously expires automatically at the end of the rental period. This eliminates the need for a personal vehicle handover, and in particular, the handover of a vehicle key or keycard. For example, the vehicle can simply be made available at a specific time and location. The vehicle documents can be kept in the vehicle, for example.

In addition, it is also possible to grant employees of a company selective access to certain or all buildings or rooms on the company premises.

Furthermore, in a hospital, for example, doctors and nurses, as well as patients and visitors, can be granted access only to those parts of the building, rooms, and laboratories that belong to their area of work or that can be entered safely. This can reliably prevent people from coming into contact with highly infectious patients and thereby infecting themselves. It is also a simple and reliable way to prevent entry into and contamination of sensitive areas, such as medical laboratories.

It is also conceivable that the authorization to operate one or more smart locks could be granted to rescue personnel, such as emergency physicians or paramedics, firefighters, or members of technical relief organizations, to enable them to quickly access buildings and the people inside, particularly in an emergency situation. In this case, it is also preferable for a government authority to grant temporary authorization to operate the smart locks. For example, this government authority could be a government agency or a court.

It is also conceivable that the authorization to operate one or more smart locks could be granted to government personnel, such as police forces. In this case, too, it is advantageous if a government authority, such as a government agency or court, grants the authorization.

According to a further preferred embodiment of the invention, it is provided that in a fourth case of successful verification, a money transfer by the user is released via the user device.

If the digital account is linked to digital payment options, such as a bank account with online access or a credit card, the verification within the process can be used not only to operate a smart lock but also to verify a money transfer, since fundamentally similar procedural steps are used here, which also require a high degree of data security to prevent misuse.

According to a further preferred embodiment of the invention, in a fifth case of successful verification, proof of identity is provided on the user device. For this purpose, the user's identity data can be stored once on the central server and, upon a successful authentication request, can be confirmed by the central server and displayed on the user device.

This can be used, for example, to provide the required proof of age when purchasing tobacco or alcohol. It is also conceivable and preferred that, after successful verification, proof of identity in the form of the information contained in an identity card be displayed on the user device, and in particular, even replace the identity card with equivalent value. The information from a driver's license can also be advantageously displayed on the user device in this way.

For example, it is conceivable and preferred that employees of a company use their user device to report their presence when entering the company premises or when entering their specific work area, such as an office or workshop, In particular, to replicate the functionality of a time clock. This allows employees' working hours to be recorded without additional devices such as a separate employee or time card, and without a separate time clock. If, in addition or alternatively, a stationary camera is provided as a user device, which recognizes employees, for example, using a facial scan, this can also automatically record which employees have already left the building and which employees are still in the building, particularly in the event of an emergency, e.g., a fire alarm.

The information can be displayed in plain text, for example, so that it can be easily verified or read. It is also conceivable and preferred, however, that the information is transmitted encrypted, for example, via an NFC or Bluetooth connection, from the user device to a corresponding reader, and only then displayed in plain text.

Furthermore, it is conceivable and preferred that the information is provided, for example, in the form of a machine-readable QR code via the user device and can be read by a corresponding scanner.

According to a further preferred embodiment of the invention, it is provided that in a sixth case of successful verification, access to a secure database is granted.

This makes it possible, for example, to easily access medical examination results and official data or applications. For example, the results of an eye test stored in the secure database or a police clearance certificate stored there can be viewed.

For example, if a car rental company automatically grants its customers access to the rented vehicle, it can advantageously simultaneously grant access to a secure database where the vehicle documents are digitally stored. This eliminates the need to provide the vehicle documents in paper form in the vehicle, thus eliminating the risk of loss. The invention also relates to a system for operating an intelligent lock, comprising the intelligent lock, a user device, and a central server.
wherein the user device is designed to send an authentication request for operating the smart lock to the central server, wherein the central server is designed to receive the authentication request and to subject it to verification, wherein the central server is further designed to send an authentication confirmation to the user device in a first case of successful verification and wherein the user device is designed to receive the authentication confirmation and forward it to the smart lock or the central server is further designed to send an authentication confirmation to the smart lock in a second case of successful verification, wherein the smart lock is designed to receive the authentication confirmation from the central server in the first and second cases and to assume a state in which it gives in to an opening request.

The system according to the invention is characterized in that the central server is designed to manage a plurality of different intelligent locks, wherein the plurality of different intelligent locks requires a plurality of different authentication confirmations.

Thus, the system according to the invention makes it possible to achieve the advantages already described in connection with the method according to the invention.

According to a preferred embodiment of the invention, it is provided that the system is designed to carry out the method according to the invention.

The invention also relates to a computer program product comprising instructions which, when executed in a system according to the invention, instruct the system to carry out a method according to the invention.

This also leads to the advantages already described.

The invention is explained below by way of example with reference to embodiments shown in the figures.

• 1 beispielhaft und schematisch eine mögliche Ausführungsform eines erfindungsgemäßen Verfahrens zum Betätigen eines intelligenten Schlosses in Form eines Flussdiagramms,
• 2 beispielhaft und schematisch eine weitere mögliche Ausführungsform eines erfindungsgemäßen Verfahrens zum Betätigen eines intelligenten Schlosses in Form eines Flussdiagramms,
• 3 beispielhaft und schematisch eine mögliche Ausführungsform eines erfindungsgemäßen Systems zum Betätigen eines intelligenten Schlosses,
• 4 beispielhaft eine erste mögliche Anwendungsform eines erfindungsgemäßen Verfahrens zum Betätigen eines intelligenten Schlosses,
• 5 beispielhaft eine zweite mögliche Anwendungsform eines erfindungsgemäßen Verfahrens zum Betätigen eines intelligenten Schlosses,
• 6 beispielhaft eine dritte mögliche Anwendungsform eines erfindungsgemäßen Verfahrens zum Betätigen eines intelligenten Schlosses,
• 7 beispielhaft eine vierte mögliche Anwendungsform eines erfindungsgemäßen Verfahrens zum Betätigen eines intelligenten Schlosses und
• 8 beispielhaft eine fünfte mögliche Anwendungsform eines erfindungsgemäßen Verfahrens zum Betätigen eines intelligenten Schlosses.

They show:

• 1 by way of example and schematically a possible embodiment of a method according to the invention for operating an intelligent lock in the form of a flow chart,
• 2 by way of example and schematically shows another possible embodiment of a method according to the invention for operating an intelligent lock in the form of a flow chart,
• 3 by way of example and schematically shows a possible embodiment of a system according to the invention for operating an intelligent lock,
• 4 by way of example, a first possible application of a method according to the invention for operating an intelligent lock,
• 5 by way of example, a second possible application of a method according to the invention for operating an intelligent lock,
• 6 by way of example, a third possible application of a method according to the invention for operating an intelligent lock,
• 7 by way of example, a fourth possible application of a method according to the invention for operating an intelligent lock and
• 8 by way of example, a fifth possible application of a method according to the invention for operating an intelligent lock.

Identical objects, functional units, and comparable components are designated by the same reference symbols throughout the figures. These objects, functional units, and comparable components are identical in terms of their technical features, unless explicitly or implicitly stated otherwise in the description.

1 shows, by way of example and schematically, a possible embodiment of a method according to the invention for operating an intelligent lock in the form of a flow chart.

In a first method step 101, an authentication request for operating the intelligent lock is sent from a user device to a central server via the Internet.

For example, the authentication request is encrypted using a secret key during transmission on the user device in step 102. The authentication request contains the user's name and a user-specific certificate stored on the user device.

In the following step 103, the authentication request is received from the central server. The central server is configured to manage a multitude of different smart locks and to control the multitude of different smart locks, depending on their specific configuration, with a different authentication required for their operation.

In process step 104, the central server compares the legitimation request with a previously generated database entry as part of a verification.

In step 105, the verification is successfully completed and in step 106, an authentication confirmation is sent from the central server back to the user device via the Internet.

The user device receives the authentication confirmation in step 107 and forwards the authentication confirmation to the smart lock via a Bluetooth connection in step 108.

Instead of sending the authentication confirmation to the user device in step 106, the authentication confirmation can also be sent directly from the central server to the smart lock in step 109, for example via the Internet.

Regardless of the transmission method of the legitimation confirmation, it is received by the smart lock in step 110.

This puts the smart lock into a state in step 111 where it responds to an opening request.

The opening request is made, for example, in step 112 as a manual operation of a door handle secured with the intelligent lock.

2 shows, by way of example and schematically, another possible embodiment of a method according to the invention for operating an intelligent lock in the form of a flow chart.

In a first method step 201, a user of the method according to the invention creates a digital account. For example, they initially only enter their name and email address.

To verify the data provided by the user, the user receives an email sent automatically from the central server in step 202, the receipt of which the user must confirm to the central server.

To improve protection against unauthorized access to the digital account, the user can also activate multi-factor authentication in step 203. For example, this is two-factor authentication.

If misuse of the digital account or unauthorized access to the digital account is detected, it can be blocked in step 204. Blocking the account makes it unusable until further notice, for example, until the access data is changed and the user successfully re-authenticates.

In step 205, the user can link their smartphone or any keycard to their digital account. For example, a digital certificate generated by the central server is stored on the smartphone or keycard.

In step 206, the user can link additional accounts, such as a digital account for operating one or more smart locks, to the digital account on the central server. This allows the smart lock or multiple smart locks to be operated from now on in step 207 using the method according to the invention or using the digital account on the central server.

In step 208, the user can store additional personal information for their digital account on the central server. For example, the user stores their date of birth, their address, a PIN they create, their fingerprint, and credit card information on the central server.

These data, in particular his name, date of birth and address, can be verified in step 209, for example by the so-called POSTIDENT procedure.

This means that the linked smartphone or keycard in step 210 can be used as proof of age in the future.

In step 211, the user stores further information on the central server, which is also assigned to their digital account. For example, the user stores a facial scan and facial photographs from different perspectives.

In step 212, the smartphone or keycard can be placed on a dedicated reader to read the data stored in the user's digital account, for example, the ID card or credit card data. The reader can also be a reader associated with the smart lock, such as an RFID reader, so that the smart lock is placed in a state where it responds to an opening request.

In step 213, the smartphone or keycard sends an authentication request to the central server.

In step 214, the authentication request is successfully verified by the central server and the server sends an authentication confirmation to enable operation of the smart lock.

In step 215, however, the authentication request is not successfully verified by the central server, and the server sends an error message accordingly. Operation of the smart lock is not possible.

In step 216, the authentication request is successfully verified by the central server, and the server sends an authentication confirmation to enable access to the identity card data. This allows the user to verify their identity without having to carry their identity card with them.

In step 217, however, the authentication request is not successfully verified by the central server, and the server sends an error message accordingly. Access to the ID card data is not permitted.

In step 218, the user can transfer authorization to operate the smart locks assigned to him in his digital account to another user.

In step 219, the user transferring the authorization can limit this authorization to a specific selection of the intelligent locks assigned to him in his digital account.

In step 220, the authorization can also be restricted in time and place.

A search for other users, for example, to grant them authorization to operate smart locks, is possible in step 221. The central server then searches for the digital accounts of the searched users and displays them so that the corresponding authorization can be transferred to one or more of the other users.

In step 222, the transferred authorization is stored on the central server so that the other user can exercise the transferred authorization.

3 shows, by way of example and schematically, a possible embodiment of a system 300 according to the invention for actuating an intelligent lock 310, 311, 312.

The three smart locks 310, 311, and 312 are, for example, under the management of a single user. Smart lock 310 is assigned to a user's house 310', smart lock 311 is assigned to a user's car 311', and smart lock 312 is assigned to a user's garage 312'.

The user device 320 is designed, for example, as a smartphone 320 of the user, on which software for carrying out the method according to the invention is executed.

The central server 330 is located, for example, in a data center 330'. The central server 330 is configured to manage a plurality of different smart locks 310, 311, 312, wherein the plurality of different smart locks 310, 311, 312 require a plurality of different authentication confirmations.

For example, the smartphone 320 detects that it is near the smart lock 311 or the car 311' because it receives a Bluetooth signal from it.

The smartphone 320 then sends an authentication request to the central server 330 to operate the smart lock 311, i.e., to open a door of the car 311'. The authentication request is transmitted, for example, via mobile radio from the smartphone 320 to a nearby cell phone tower 340. The cell phone tower 340 receives the authentication request and transmits it via the Internet to the central server 330.

The central server 330 receives the authentication request and subjects it to verification.

Verification is performed, for example, by comparing the information contained in the authentication request with a database entry assigned to the smart lock 311. The database entry includes the user's personal data and a digital certification.

For example, the verification is successful, and the central server 330 sends an authentication confirmation to the smart lock 311. The authentication confirmation is first transmitted via the Internet to the cell phone tower 340, from where it is forwarded directly to the smart lock 311 via mobile radio. For example, the smart lock 311 can access a mobile radio connection of the car 311'.

The smart lock 311 receives the authentication confirmation from the central server and then enters a state where it responds to an opening request. If the user then activates the car door opener, the car door can be opened without any intervention.

4 shows by way of example a first possible application of a method according to the invention for actuating an intelligent lock 410 which locks a door 410'.

The user 450 holds a user device 420, which is designed as a keycard 420 provided with an RFID chip, into the RFID communication area of the intelligent lock 410.

The keycard 420 then sends an authentication request, which in this case is first transmitted to the smart lock 410. The smart lock 420, in turn, is connected to a Wi-Fi network via a Wi-Fi antenna, which in turn enables a connection to the Internet via a router.

The intelligent lock 420 receives the authentication request from the keycard 420 and transmits it to the central server 330 via the WLAN network and the Internet.

The central server 330 receives the authentication request, verifies it, and sends an authentication confirmation back to the intelligent lock 420 via the Internet and the WLAN network, which then responds to a user request to open the door 410' by pushing against it.

5 shows by way of example a second possible application of a method according to the invention for actuating an intelligent lock 510 which locks a door 510'.

The user 550 operates a user device 520 designed as a smartphone 520, on which software for carrying out the method according to the invention is executed.

For example, the software running on the smartphone 520 shows the user 550 an overview in the form of a list of all the smart locks under his management, which also includes the smart lock 510 that locks a door 510'.

User 550 selects the smart lock 510 from the list and wishes to operate it. To do so, they must first authenticate themselves using their fingerprint on smartphone 520, for example.

The smartphone 520 then sends an authentication request to the central server 330. The central server 330 receives the authentication request, verifies it, and sends an authentication confirmation back to the smartphone 520, which then transmits the authentication confirmation to the smart lock 520 via Bluetooth.

This puts the intelligent lock 520 into a state in which it responds to a user's opening request.

6 shows by way of example a third possible application of a method according to the invention for actuating an intelligent lock 610 which locks a door 610'.

The user 650 is located in front of the door 610' within the detection range of an optical camera 620, which represents the user device 620. The camera 620, like the intelligent lock 610, is assigned to an electronic control unit, for example, on which software for executing the method according to the invention is executed.

The camera now captures the face of user 650 and authenticates user 650 based on the captured face.

If the authentication is successful, the camera 620 or the electronic control unit sends an authentication request to the central server 330. The central server 330 receives the authentication request, verifies it, and sends an authentication confirmation back to the electronic control unit, which then puts the smart lock 610 into a state where it responds to an opening request.

7 shows by way of example a fourth possible application of a method according to the invention for actuating an intelligent lock 710 which locks a door 710' of a car.

The user 750 holds a user device 720, which is designed as a keycard 720 provided with an RFID chip, into the RFID communication area of the intelligent lock 710.

The keycard 720 then sends an authentication request, which in this case is first transmitted to the intelligent lock 710. The intelligent lock 720, in turn, is connected to the Internet via the car's mobile network connection.

The intelligent lock 720 receives the authentication request from the keycard 720 and transmits it via the Internet to the central server 330.

The central server 330 receives the authentication request, verifies it, and sends an authentication confirmation back via the Internet to the intelligent lock 720, which then responds to an opening request from the user in the form of an operation of a door handle of the door 710'.

8 shows by way of example a fifth possible application of a method according to the invention for actuating an intelligent lock 810 which locks a door 810' of a car.

The user 850 operates a user device 820 designed as a smartphone 820, on which software for carrying out the method according to the invention is executed.

For example, the software running on the smartphone 820 shows the user 850 an overview in the form of a list of all the intelligent locks under his management, which also includes the intelligent lock 810 that locks the door 810' of the car.

User 850 selects the smart lock 810 from the list and wishes to activate it. To do so, they must first authenticate themselves using a PIN on their smartphone 820, for example.

After successful authentication, the smartphone 820 sends a legitimation request to the central server 330. The central server 330 receives the legitimation request, verifies it, and sends a legitimation confirmation via the Internet directly to the intelligent lock 820, which then responds to an opening request from the user in the form of actuating a door handle of the door 810'.

List of reference symbols

101

Sending the legitimation request

102

Encrypting the authentication request

103

Receiving the legitimation request

104

Verification of the legitimation request

105

Successful completion of the verification of the legitimation request

106

Sending the legitimation confirmation

107

Receiving the legitimation confirmation

108

Forwarding the legitimation confirmation via Bluetooth

109

Sending the legitimation confirmation

110

Receiving the legitimation confirmation

111

Putting the smart lock into a state where it will respond to an opening request

112

Opening request, manual operation

201

Creating a digital account

202

Verification of the data provided by the user

203

Activating multi-factor authentication

204

Blocking the digital account

205

Linking the user device to the digital account

206

Linking another account to the digital account

207

Operating the smart lock

208

Storing personal information

209

Verify personal information

210

Use as proof of age

211

Storing further information

212

Place on reader

213

Sending the legitimation request

214

Verification of the legitimation request

215

Non-verification of the legitimation request

216

Verification of the legitimation request

217

Non-verification of the legitimation request

218

Transferring authorization

219

Restricting authorization to selected smart locks

220

Temporal and geographical restrictions on authorization

300

System for operating an intelligent lock

310, 311, 312

smart lock

310'

House

311'

Car

312'

garage

320

User device, smartphone

330

Central server

330'

Data center

340

cell phone tower

410

Smart lock

410'

door

420

User device, keycard

450

Users

510

Smart lock

510'

door

520

User device, smartphone

550

Users

610

Smart lock

610'

door

620

User device, camera

650

Users

710

Smart lock

710'

door

720

User device, keycard

750

Users

810

Smart lock

810'

door

820

User device, smartphone

850

Users

QUOTES CONTAINED IN THE DESCRIPTION

This list of documents submitted by the applicant was generated automatically and is included solely for the convenience of the reader. This list is not part of the German patent or utility model application. The DPMA assumes no liability for any errors or omissions.

Cited patent literature

• CN 106 652 109 A [0003]
• US 2009/324025 A1 [0004]
• WO 2017 198 282 A1 [0005]
• US 11 227 454 B2 [0006]

Claims (15)

Method for operating an intelligent lock (310, 311, 312, 410, 510, 610, 710, 810), wherein a legitimation request for operating the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) is sent (101) from a user device (320, 420, 520, 620, 720, 820) to a central server (330), wherein the legitimation request is received by the central server (330) and subjected to verification (103, 104), wherein in a first case of successful verification (105) a legitimation confirmation is sent from the central server (330) to the user device (320, 420, 520, 620, 720, 820) is sent (106) and wherein the legitimation confirmation is received (107) by the user device (320, 420, 520, 620, 720, 820) and forwarded (108) to the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) or in a second case of successful verification (105) a legitimation confirmation is sent (109) from the central server (330) directly to the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810), wherein in the first and second cases the legitimation confirmation is received from the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) is received (110) and the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) is put into a state in which it gives in to an opening request (111), characterized in that a plurality of different intelligent locks (310, 311, 312, 410, 510, 610, 710, 810) are managed by the central server (330), wherein the plurality of different intelligent locks (310, 311, 312, 410, 510, 610, 710, 810) require a plurality of different legitimation confirmations. Procedure according to Claim 1 , characterized in that the legitimation request is only generated on the user device (320, 420, 520, 620, 720, 820) if a user (450, 550, 650, 750, 850) of the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) has previously been successfully authenticated on the user device (320, 420, 520, 620, 720, 820). Procedure according to Claim 2 , characterized in that the legitimation request links personal data of the user and/or a position indication of the user (450, 550, 650, 750, 850) with a user-specific certificate stored on the user device (320, 420, 520, 620, 720, 820). Method according to at least one of the Claims 1 until 3 , characterized in that the legitimation request on the user device (320, 420, 520, 620, 720, 820) is encrypted by means of a secret key (102) and/or that the legitimation confirmation on the central server (330) is encrypted by means of the secret key. Method according to at least one of the Claims 1 until 4 , characterized in that the central server (330) compares the legitimation request with a previously generated database entry as part of the verification (104). Method according to at least one of the Claims 1 until 5 , characterized in that the opening request is made as a manual operation (112). Method according to at least one of the Claims 1 until 6 , characterized in that the legitimation request is transmitted from the user device (320, 420, 520, 620, 720, 820) via the Internet (1029. Method according to at least one of the Claims 1 until 7 , characterized in that the legitimation confirmation is transmitted from the central server (330) via the Internet (106) and/or that the legitimation confirmation is transmitted from the user device (320, 420, 520, 620, 720, 820) by means of WLAN, Bluetooth, infrared, Zigbee and/or NFC (108). Method according to at least one of the Claims 1 until 8 , characterized in that the central server (330) generates a plurality of different authentication confirmations for a plurality of different intelligent locks (310, 311, 312, 410, 510, 610, 710, 810). Method according to at least one of the Claims 1 until 9 , characterized in that in a third case of successful verification, a time-limited authorization to operate the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) is assigned to another user (450, 550, 650, 750, 850) (220). Method according to at least one of the Claims 1 until 10 , characterized in that in a fourth case of successful verification, a money transfer of the user via the user device (320, 420, 520, 620, 720, 820) is released. Method according to at least one of the Claims 1 until 11 , characterized in that in a fifth case of a successful verification ization, proof of identity is provided on the user device (320, 420, 520, 620, 720, 820). Method according to at least one of the Claims 1 until 12 , characterized in that in a sixth case of successful verification, access to a secure database is guaranteed. System (300) for operating an intelligent lock (310, 311, 312, 410, 510, 610, 710, 810), comprising the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810), a user device (320, 420, 520, 620, 720, 820) and a central server (330), wherein the user device (320, 420, 520, 620, 720, 820) is designed to send a legitimation request for operating the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) to the central server (330). send, wherein the central server (330) is designed to receive the legitimation request and to subject it to a verification, wherein the central server (330) is further designed to send a legitimation confirmation to the user device (320, 420, 520, 620, 720, 820) in a first case of successful verification, and wherein the user device (320, 420, 520, 620, 720, 820) is designed to receive the legitimation confirmation and to forward it to the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) or the central server (330) is further designed to send a legitimation confirmation to the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810), wherein the intelligent lock (310, 311, 312, 410, 510, 610, 710, 810) is designed to receive the legitimation confirmation from the central server (330) in the first and second cases and to assume a state in which it gives in to an opening request, characterized in that the central server (330) is designed to manage a plurality of different intelligent locks (310, 311, 312, 410, 510, 610, 710, 810), wherein the plurality of different intelligent locks (310, 311, 312, 410, 510, 610, 710, 810) requires a plurality of different legitimation confirmations. Computer program product comprising instructions which, when executed in a system n(300) according to at least one of the Claims 13 and 14 instruct the system (300) to perform a method according to at least one of the Claims 1 until 13 to execute.