Authentication Methods and Devices for Allowing Access to Private Data
US-2019130082-A1 · May 2, 2019 · US
Secure smart unlocking
US10997808B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10997808-B2 |
| Application number | US-202016945591-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jul 31, 2020 |
| Priority date | Jun 28, 2019 |
| Publication date | May 4, 2021 |
| Grant date | May 4, 2021 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
The present application provides an unlocking solution. In this solution, after obtaining a digital key seed, a user mobile device can generate a digital key for multiple times by using the digital key seed and first check data corresponding to a current unlocking operation, and then send the digital key to a smart door lock for verification and unlocking. Because the digital key includes the first check data only corresponding to the current unlocking operation, an attacker cannot use the digital key to perform unlocking again even if the attacker obtains the digital key. In addition, because the digital key seed can be used for multiple times, a smart door lock server does not need to be connected each time to obtain the digital key. Therefore, both security and ease of use are satisfied.
First claim
Opening claim text (preview).
What is claimed is: 1. A computer-implemented method comprising: obtaining, by a smart door lock server, an application request sent by a user mobile device, wherein the application request comprises user identity information and a user public key; generating, by the smart door lock server, a digital key seed corresponding to the user identity information and the user public key of the application request, including: obtaining, by the smart door lock server, a server private key, generating, by the smart door lock server, to-be-signed data, wherein the to-be-signed data comprises second check data and a dynamic parameter related to the user identity information and the user public key, generating, by the smart door lock server, a digital signature by signing the to-be-signed data using the server private key, and generating, by the smart door lock server, the digital key seed based on the digital signature and the to-be-signed data; and sending the digital key seed to the user mobile device, wherein the user mobile device generates a digital key based on the digital key seed and first check data corresponding to a current unlocking operation, and sends the digital key to a smart door lock, and the smart door lock performs verification on the digital key seed and the first check data in the digital key, and performs unlocking after the verification succeeds. 2. The computer-implemented method of claim 1 , wherein the second check data comprises the user public key, a seed identifier bound to the user identity information, and the dynamic parameter. 3. The computer-implemented method of claim 2 , wherein the second check data further comprises a seed validity time. 4. The computer-implemented method of claim 1 , wherein the dynamic parameter comprises a generation timestamp corresponding to generating the digital key seed. 5. The computer-implemented method of claim 1 , wherein prior to generating the digital key seed the method further comprises: parsing, by the smart door lock server, the user identity information; extracting, by the smart door lock server, one or more data items from the user identity information; and verifying, by the smart door lock server, the user identity information based at least on the extracted one or more data items. 6. The computer-implemented method of claim 5 , wherein verifying the user identity information comprises: providing, by the smart door lock server, a data packet to a user corresponding to the user identity information based on the extracted one or more data items; receiving, by the smart door lock server, a response data packet from the user; and comparing, by the smart door lock server, the response data packet to one or more predetermined values. 7. A non-transitory, computer-readable medium storing one or more instructions executable by a computer system to perform operations comprising: obtaining, by a smart door lock server, an application request sent by a user mobile device, wherein the application request comprises user identity information and a user public key; generating, by the smart door lock server, a digital key seed corresponding to the user identity information and the user public key of the application request, including: obtaining, by the smart door lock server, a server private key, generating, by the smart door lock server, to-be-signed data, wherein the to-be-signed data comprises second check data and a dynamic parameter related to the user identity information and the user public key, generating, by the smart door lock server, a digital signature by signing the to-be-signed data using the server private key, and generating, by the smart door lock server, the digital key seed based on the digital signature and the to-be-signed data; and sending the digital key seed to the user mobile device, wherein the user mobile device generates a digital key based on the digital key seed and first check data corresponding to a current unlocking operation, and sends the digital key to a smart door lock, and the smart door lock performs verification on the digital key seed and the first check data in the digital key, and performs unlocking after the verification succeeds. 8. The non-transitory, computer-readable medium of claim 7 , wherein the second check data comprises the user public key, a seed identifier bound to the user identity information, and the dynamic parameter. 9. The non-transitory, computer-readable medium of claim 8 , wherein the second check data further comprises a seed validity time. 10. The non-transitory, computer-readable medium of claim 7 , wherein the dynamic parameter comprises a generation timestamp corresponding to generating the digital key seed. 11. The non-transitory, computer-readable medium of claim 7 , wherein prior to generating the digital key seed the operations further comprise: parsing, by the smart door lock server, the user identity information; extracting, by the smart door lock server, one or more data items from the user identity information; and verifying, by the smart door lock server, the user identity information based at least on the extracted one or more data items. 12. The non-transitory, computer-readable medium of claim 11 , wherein verifying the user identity information comprises: providing, by the smart door lock server, a data packet to a user corresponding to the user identity information based on the extracted one or more data items; receiving, by the smart door lock server, a response data packet from the user; and comparing, by the smart door lock server, the response data packet to one or more predetermined values. 13. A computer-implemented system, comprising: one or more computers; and one or more computer memory devices interoperably coupled with the one or more computers and having tangible, non-transitory, machine-readable media storing one or more instructions that, when executed by the one or more computers, perform one or more operations comprising: obtaining, by a smart door lock server, an application request sent by a user mobile device, wherein the application request comprises user identity information and a user public key; generating, by the smart door lock server, a digital key seed corresponding to the user identity information and the user public key of the application request, including: obtaining, by the smart door lock server, a server private key, generating, by the smart door lock server, to-be-signed data, wherein the to-be-signed data comprises second check data and a dynamic parameter related to the user identity information and the user public key, generating, by the smart door lock server, a digital signature by signing the to-be-signed data using the server private key, and generating, by the smart door lock server, the digital key seed based on the digital signature and the to-be-signed data; and sending the digital key seed to the user mobile device, wherein the user mobile device is configured to generate a digital key based on the digital key seed and first check data corresponding to a current unlocking operation, and to send the digital key to a smart door lock, and the smart door lock is configured to perform verification on the digital key seed and the first check data in the digital key, and to perform unlocking after the verification succeeds. 14. The computer-implemented system of claim 13 , wherein the second check data comprises the user public key, a seed identifier bound to the user identity information, and the dynamic parameter. 15. The computer-implemented system of claim 14 , wherein the second check data furthe
Assignees
Inventors
Classifications
operated by interacting with a central unit · CPC title
With time considerations, e.g. temporary activation, valid time window or time limitations · CPC title
where the code of the data carrier can be programmed · CPC title
Usage controlling of secret information, e.g. techniques for restricting cryptographic keys to pre-authorized uses, different access levels, validity of crypto-period, different key- or password length, or different strong and weak cryptographic algorithms (network architectures or network communication protocols for using time-dependent keys in a packet data network H04L63/068) · CPC title
the transmitted data signal being encrypted · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10997808B2 cover?
- The present application provides an unlocking solution. In this solution, after obtaining a digital key seed, a user mobile device can generate a digital key for multiple times by using the digital key seed and first check data corresponding to a current unlocking operation, and then send the digital key to a smart door lock for verification and unlocking. Because the digital key includes the f…
- Who is the assignee on this patent?
- Advanced New Technologies Co Ltd
- What technology area does this patent fall under?
- Primary CPC classification G07C9/00309. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue May 04 2021 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).