HK1248024B - Lock and methods for redundant access control - Google Patents

Description

Lock and method for redundant access control

CROSS-REFERENCE TO RELATED APPLICATIONS

This application claims priority to U.S. Patent Application No. 15/147,759, filed May 5, 2016, which claims priority to U.S. Provisional Patent Application No. 62/189,193, filed July 6, 2015, both of which are incorporated herein by reference in their entireties. This application is related to U.S. Patent Application No. 15/060,327, filed March 3, 2016, which is also incorporated herein by reference in its entirety.

Technical Field

The present invention relates to locks and mobile devices, and more particularly, to systems and methods for controlling access to a lock using a mobile device, an access control redundant channel, and a removable wireless lock button.

Background Art

Access control systems using mechanical or electromechanical keys and locks continue to suffer from several drawbacks. Specifically, mechanical locks and keys do not provide robust protection against theft, loss, unauthorized entry, or unwanted duplication. For example, if a key is lost or stolen, the lock is typically replaced. Mechanical locks and keys also do not provide information about how or when the key was used—or, if available, this information is not available in near real-time. This type of information can be highly desirable for individuals and critical for certain businesses. Systems that provide access information using electronic locks and key systems are typically hardwired into the door frame. Furthermore, hardwired solutions rely entirely on direct or alternative power and data connections to operate efficiently. Hardwired systems are often expensive to install, perform poorly in outdoor environments with widely varying temperatures, and are incompatible with universal systems (such as Europrofile cylinders). Furthermore, most conventional mechanical lock systems use keys that can only be used to access a single door, making it inconvenient for users who need to access multiple locks to carry a set of different keys for their respective locks.

The wireless communication capabilities of mobile devices, such as NFC and Bluetooth, offer opportunities to improve access control systems that use mechanical or electromechanical keys. Specifically, near-field communication (NFC), Bluetooth, or similar wireless capabilities of mobile devices can be adapted for use as access control systems by using the mobile device as an electronic key. Furthermore, the ability to transmit access data in near real time on some mobile devices offers the opportunity to communicate information about how and when keys are used and locks are opened.

However, integrating mobile devices into access control systems still has several drawbacks. Like mechanical lock and key systems, mobile devices don't offer the same robust protection against theft and unauthorized entry. Furthermore, mobile devices typically rely on batteries for power, which often run out before the user can open the lock. Furthermore, for some businesses, deploying mobile devices across all of their assets can be expensive and impractical. Furthermore, whether a mobile device runs out of power, is out of range, or otherwise unavailable, the user may be unable to access the lock or the information stored within it.

Additionally, to integrate mobile devices into access control systems, locks are often equipped with NFC and wireless communication devices. However, these devices require a continuous and reliable power source. While battery power is suitable for NFC or wireless devices such as mobile devices, they can unexpectedly run out of power or suffer other malfunctions, preventing users from opening the lock with their mobile devices.

Therefore, there is a need for an access control system that provides a secure and reliable alternative to mechanical locks, as well as a mobile device that provides near-real-time usage information while offering redundant access channels and redundant power supplies in the event of a failure or discharge. The access control system should be easy to install, reduce the number of wired connections used, and operate independently for extended periods of time. The access control system's redundant channels should allow users with or without access to regular phones, smartphones, tablets, and similar mobile devices to access the lock. Furthermore, the access control system should allow the lock to communicate directly and in real time with the network, as well as with users and devices connected to the network.

Summary of the Invention

In various embodiments, the present invention provides systems, methods, and apparatus for controlling and monitoring an access control system. According to some embodiments of the present invention, the access control system includes a smart lock that provides redundant access control. The smart lock includes a storage medium, a power supply, a hardware processor, a lock cylinder having a cam that engages a deadbolt, and a button that engages the cam to unlock the deadbolt.

The button includes multiple redundant access channels for receiving authentication information. The redundant access channels may include a biometric scanner for receiving biometric information, a PIN pad, and/or a wireless transceiver for receiving a token from a mobile device and sending a reply to the mobile device.

The smart lock is configured to verify authentication information received from a PIN keypad, biometric scanner, and/or mobile device based on a set of rules determined by an administrator and unlock the deadbolt if the user is authenticated through a first of multiple redundant access channels. If the user is unable to open the smart lock through the first channel, the smart lock is enabled to allow access through a second of the multiple redundant access channels. In this way, when the user can no longer access the smart lock using the first channel, the user can use the second channel to open the lock.

Access control systems may include one or more smart locks. These systems can be accessed by users who request access to the smart locks and controlled by owners or administrators who restrict access to the smart locks. In some embodiments, users can access and the owner or administrator can control access to the smart locks from their respective mobile devices in near real time. Owners and administrators can use mobile devices to configure rules and access permissions that control how and when users open the smart locks. In this way, an access control system can be provided that allows owners and administrators to control and monitor users in near real time without having to install a hard-wired internet or data connection to the door or lock. Because the lock cylinder fits into a standard slot, the door frame and lock system do not need to be modified or reinstalled.

In some aspects of the present invention, an owner or administrator can configure rules and access permissions that restrict how users access a smart lock. Access permissions specify which locks a user can access, and configurable rules specify conditions that must be met before a smart lock can be opened. Thus, rules allow an owner or administrator to restrict user access based on location and time of day. In this way, an owner or administrator can precisely control how a user can open a smart lock.

Each time a user attempts to open a smart lock, the owner or administrator may require the user to request a password or token. When a user submits a request, the owner or administrator can receive it in near real time and determine whether to grant access to the user. The owner or administrator may require the user to provide additional authentication information, such as a password, to confirm the user's identity. If the owner or administrator determines to grant access, the token or password is sent to the user in near real time. In some embodiments, requests can be sent based on triggering events. This allows the owner or administrator to control user access based on the specific situation.

Passwords can be fixed or dynamic. Dynamic passwords allow the owner or administrator to grant a user one-time or time-limited access to the lock. The password can be provided to the lock wirelessly from a mobile device or manually entered into a keypad. This allows the user to access the lock using the password even if their mobile device is unavailable.

In some embodiments of the present invention, the wireless transceiver of the smart lock is configured to communicate directly and in near real time to the mobile device and the network device, control access server, or administrator device. The lock can then receive communications from the network device, control access server, or administrator device indicating whether the lock grants or denies access to the user.

According to some embodiments of the present invention, a smart lock includes a wireless modem configured to establish a cellular broadband connection and communicate with an administrator device or central access server in near real time. When the lock receives a token, biometric scan, or password, it can send a request to access the lock based on a set of configurable rules. The lock can then receive instructions from the administrator device or central access server in near real time to grant or deny the access request. In this way, if the user's mobile device is unable to communicate with the administrator device or central access server, the lock can establish a connection to the administrator device or central access server on its own. Thus, the lock can communicate with the administrator device or central access server without relying on the user's mobile device to relay communications.

In other embodiments of the present invention, the smart lock can also be configured to communicate with a network device that relays communications to an administrator device or a central access server. The network device can be a wireless receiver, router, repeater, or similar device that uses a near-field wireless transmitter or wireless LAN to establish a short-range wireless connection. Thus, the smart lock can similarly establish a connection to communicate with the administrator device or central access server without relying on the user's mobile device to relay the communication.

A smart lock can include an inertia module. The inertia module is configured to determine a door status, indicating whether the door is open or closed. Similarly, the lock can be configured to determine a bolt status, indicating whether the bolt is locked or unlocked. The lock can transmit the door status and bolt status to an administrator device or a central access server in near real time. Thus, the administrator device or central access server can determine whether the door is open, closed, locked, or unlocked.

According to some embodiments of the present invention, the button of the smart lock may be removable and rechargeable. The button may include a recharging interface that matches the recharging interface of the recharging station. When the button is out of power, the user can remove the button and recharge the button using the recharging station. In another embodiment of the present invention, the button may include an I/O port that allows the user to power the button from, for example, an external device or a recharging station. The I/O port also allows the user to obtain access information stored on the button. Therefore, when the button is recharging on the recharging station, the charging button can obtain the access information stored on the button through the I/O port. In some embodiments, the recharging station is coupled to a network connection that enables it to transmit the access information to an administrator device or a central access server.

BRIEF DESCRIPTION OF THE DRAWINGS

The objects and features of the present invention can be better understood with reference to the following detailed description and accompanying drawings.

1A , 1B, 1C and 1D illustrate an access control system according to an embodiment of the present invention.

2A , 2B, 2C, and 2D illustrate a smart lock for an access control system according to an embodiment of the present invention.

FIG. 3 illustrates a smart lock with a rechargeable power supply according to an embodiment of the present invention.

FIG4 illustrates a process for opening a smart lock according to an embodiment of the present invention.

FIG5 shows a process of registering a trigger event in an access control system according to an embodiment of the present invention.

FIG6 shows a process for controlling access to a smart lock in an access control system according to an embodiment of the present invention.

7A , 7B, 7C, 7D, and 7E illustrate interfaces for controlling access to a smart lock in an access control system according to an embodiment of the present invention.

8A , 8B, 8C, 8D, 8E, and 8F illustrate interfaces for controlling a smart lock in an access control system according to an embodiment of the present invention.

9A , 9B and 9C illustrate a user interface for accessing a smart lock in an access control system according to an embodiment of the present invention.

DETAILED DESCRIPTION

Embodiments of the present invention include systems, methods, and apparatus that enable a user to open a lock using redundant access channels and allow an owner or administrator to control the user's access in near real time.

Figures 1A and 1B illustrate an exemplary access control system that transmits usage information in near real time while providing redundant access channels to users. The system includes one or more smart locks 104, a central access server 105, and devices 101, 102, and 103 for accessing and controlling the smart locks. Users unlock smart locks 104 via one or more access channels, as described in more detail below. Owners and administrators control how users access smart locks 104 from either owner device 101 or administrator device 102. Users can communicate with the owner or administrator and unlock the smart lock from user device 103. Users can also unlock the smart lock manually without requiring a user device 103. Central access server 105 relays and stores information exchanged between users and owners or administrators in near real time. It is important to note that "near real-time" communication is communication that may appear to occur in real time or substantially real time, but experiences slight, inconspicuous, or insignificant delays due to network infrastructure. If a user is no longer able to unlock the smart lock via one of the access channels, for example because the access channel is unavailable or inoperable, the user can unlock the smart lock via another available access channel. Thus, the access control system 100 enables a user to open a smart lock using redundant access channels and allows an owner or administrator to control access for a user in near real time.

The master device 101 and the administrator device 102 create and assign rules and access permissions for users seeking to gain access to one or more smart locks 104. Access permissions identify the smart locks 104 that each user is authorized to open. Rules define the conditions that must be met before a user is allowed to open a smart lock 104. For example, access permissions can be configured by the master device 101 or the administrator device 102 to specify a set of smart locks 104 that a user can open, while rules specify the dates and times when a user is allowed to open a specific smart lock.

As shown in FIG1B , the master device 101 and the administrator device 102 are also configured to specify which access channels the user can use to provide authentication information to open the smart lock 104. As explained in more detail below, the access channels can be, for example, scanning biometric information into a biometric scanner 114, entering a password on a keypad 115, or wirelessly sending a token from a mobile device 116. The smart lock can provide a combination of any or all access channels to the user. For example, a first access channel for regular or default use can be wirelessly transmitting a token from the user's mobile device 116, and a second access channel and a third access channel can be a biometric scanner 114 and a password keypad 115, respectively, which are used in the event that the first access channel becomes unavailable to the user.

Master device 101, administrator device 102, or user device 103 can be a mobile device, software service, or software application. The mobile device can be, for example, a smartphone, tablet, or handheld device. The mobile device includes a touchscreen display 107, storage media 108, and a processor 109. In some embodiments, the mobile device includes a wireless transceiver 110 for receiving and transmitting RFID, NFC, or Bluetooth signals, or via the mobile device's cellular or internet connection.

The central access server 105 may be a cloud-based server and may be connected to a remote server 106. The remote server 106 may include a call center with agents that receive user calls and access requests.

In some embodiments of the present invention, a mobile device includes an NFC element 111, which can be a SIM card or SD card equipped with an NFC transmitter. An NFC-enabled SD card can be placed in the SD card slot of the mobile device to provide NFC communication capabilities for the smartphone. Similarly, an NFC-enabled SIM card can be placed in the SIM card slot of the mobile device to provide NFC communication capabilities for the smartphone.

As shown in Figure 1A, individuals in an access control system can have different roles. For example, an individual may be an owner, an administrator, or a user. An owner can add, delete, and configure access permissions for an administrator or user. An administrator can similarly add, delete, and configure access permissions for a user. A user is an individual seeking access to a location protected by a smart lock. Individual access permissions can be configured for each user or administrator, or more generally for a group of users or administrators. Similarly, a user or administrator can be granted access to a specific smart lock or group of smart locks.

For example, in an access control system in a commercial environment, the master device 101 or the administrator device 102 can be operated by a supervisor or manager who wants to control how and when their employees enter areas within the company. The business manager can designate a supervisor as an administrator, who can further designate a group of employees as users with access rights to a specific set of smart locks. As another example, in a residential environment, the master device 101 or the administrator device 102 can be operated by a parent to control access rights of people to different areas of their house and monitor access information of people entering different areas of their house. Parents who designate themselves as masters can designate their babysitter as an administrator and their children as users, and specify which areas of the house the babysitter and children can access and how and when they can enter those areas. As described in more detail below, a supervisor or parent can receive alerts or reports about how and when an employee, babysitter, or child attempts to enter a venue controlled by a smart lock 104.

The owner or administrator of the access control system uses a set of rules 112 and access permissions 113 to configure how users open smart locks. Access permissions 113 identify each individual or group of individuals in the access control system, as well as each smart lock or group of smart locks in the access control system. Access permissions 113 also associates each individual with a smart lock. The rule set 12 specifies what access channels can be used to open the smart lock and what conditions, if any, are required for an individual to open the smart lock. For example, a parent who designates themselves as the owner can configure access permissions and rules for a babysitter so that they can use a password or biometric scan to open the smart lock. These rules can be further configured with conditions so that the babysitter can only open the smart lock on certain days of the week or after the parent approves each access request.

Access permissions and rules can be stored on a central access server, a smart lock, or on a user, administrator, or owner's mobile device. As described in more detail below, an owner or administrator can create, modify, or delete access permissions and rules from the owner device 101, administrator device 102, or central access server 105. When an owner or administrator creates, modifies, or deletes access permissions or rules, the access permissions or rules can be transmitted to the user's mobile device or the central access server. The user's mobile device can then send the access permissions or rules as part of a token to the smart lock. When a user attempts to open the smart lock, the access permissions and rules can be checked on the mobile device or the smart lock. For example, if the user provides a password or biometric scan, the smart lock can check the access permissions and rules to determine whether the user is authorized to open the smart lock at a given date or time. As another example, before sending a token to the smart lock, the user's mobile device can check the access permissions and rules to determine whether the user is authorized to open a specific smart lock. If the user does not have authorization, the mobile device will not send the token to the smart lock. In some embodiments of the present invention, the access permissions and rules can be checked on the owner device 101, administrator device 102, or central access server 105.

Smart locks can be installed to protect specific areas or rooms within a facility, allowing the owner or administrator to precisely control where individuals can gain access. For example, in a cell phone tower, smart locks can be installed on the facility's front door, storage room doors, and cabinet doors where batteries, copper cables, electronic equipment, and other assets that are often targets of theft are secured. A company manager (e.g., the owner) can then grant access to the facility to certain employees (e.g., users) while limiting access to storage rooms and cabinet doors to a select few employees. As described above, the company manager can further configure rules to dictate how employees access the smart locks and, if so, under what conditions an employee gains access.

As another example, an area within a venue can be, for example, a basement, a backyard, a bedroom, a front door, a fitness center, or a garage. Thus, in a residential environment, a parent can allow a babysitter to enter the basement, backyard, or parent's bedroom, but only during a specific time period when the babysitter is caring for the baby. As described below, the parent can further configure rules to grant the babysitter conditional access rights, which requires the babysitter to request permission each time the babysitter seeks access to the smart lock. The parent can further configure access rights and rules to grant the child access to different areas or rooms in the home under enhanced restrictions. For example, the parent can configure access rights and rules to deny the child access to a room in the house, such as the basement, or restrict access to an area, such as a fitness center, to a specific time period of the day. The parent can further configure rules to specify which access channels the child can use to enter the area, such as using the child's fingerprint to enter the backyard.

According to some embodiments of the present invention, a user opens one or more smart locks 104 by wirelessly communicating 116 from the user's mobile device to the smart lock. By using the wireless capabilities of the user's mobile device, the smart lock 104 can be linked to the central access server 105 without a direct connection between the two. In this way, access to the smart lock 104 can be remotely controlled without requiring a hardware connection system to be implemented on the door frame or lock.

As described above, the smart lock 104 can be opened by wirelessly sending a token from the user's mobile device to the smart lock 104. The token contains a password that includes letters, numbers, symbols, or any combination thereof. The password can be dynamic or fixed, as discussed in more detail below. The smart lock 104 verifies the token based on access permissions and rules determined by the owner or administrator and by comparing the received password with a password generated by a process stored in the smart lock 104. If the received password matches the password generated by the process, the smart lock 104 will accept the token. Based on the access permissions and rules and whether the token matches the stored token generated by the process, the smart lock 104 transmits to the user's mobile device 103 whether the token is verified. This information can then be sent from the user's mobile device 103 to the central access server 105, where it can be relayed to the owner device 101 or administrator device 102 as a notification or alert.

The master device 101 and the administrator device 102 are configured to specify whether a user can use the wireless capabilities of the user's mobile device to access the smart lock 104, and what access permissions the user has. For example, the master device 101 and the administrator device 102 can specify whether the user's access permissions to a specific smart lock 104 or a group of smart locks 104 are fixed or conditional.

Conditional access rights allow an owner or administrator to approve each attempt by a user to open a smart lock 104. For example, when a user with conditional access rights attempts to access a smart lock 104 or a group of smart locks 104, the system will alert the owner device 101 or administrator device 102 that the user 103 is attempting to access the smart lock 104 and request the owner device 101 or administrator device 102 to grant the user access to the smart lock 104 in near real time. The user can then determine whether to allow or deny the user access. This determination can be based on additional conditions or verification steps. For example, the owner or administrator can request that the user provide identification information proving the user's identity or authenticity, such as an additional password. As another example, the owner of the administrator can deny the user access because the user should not access that particular smart lock 104 or should not access it on that particular date or time. If the owner or administrator determines that the user's access to the smart lock 104 should be granted, the owner device 101 or administrator device 102 can then provide the user with a token as described in more detail below. If the owner or administrator determines that the user's access to the smart lock 104 should be denied, the owner device 101 or administrator device 102 does not provide the token to the user, and the user will not be able to open the smart lock 104. In this way, the owner device 101 or administrator device 102 can allow or deny access to the smart lock 104 in near real time. In some embodiments, when the owner or administrator determines whether to grant or deny user access, the owner device 101 or administrator device 102 sends an alert to the user notifying the user that their access request has been granted or denied.

Fixed access rights allow a user to gain access to a smart lock 104 without first receiving approval from the master device 101 or administrator device 102. For example, a user may be granted fixed access rights to open a specific smart lock 104 in an unrestricted manner. Such fixed access may be provided via a fixed password, such as one that the user can enter on the keypad of the smart lock 104. The user can then use the fixed password to open the smart lock 104 without first requesting approval from the master device 101 or administrator device 102. In some embodiments, the user's mobile device 103 may still notify the master device 101 or administrator device 102 when a user with fixed access rights has accessed or attempted to access the smart lock 104. For example, after the user enters the fixed password on the smart lock keypad, the smart lock may communicate to the user's mobile device that it has received a valid fixed password and unlock the smart lock. The user's mobile device may then notify the master device 101, administrator device 102, or central access server 105 in near real time that the user has accessed and unlocked the smart lock 104.

The master device 101 and the administrator device 102 can also be used to allow a user to open one or more smart locks 104 using a password or biometric scan 114 entered on a keypad 115. These access channels enable users to gain access to a smart lock 104 without using a mobile device, as the password or biometric scan can be manually entered by the user, as described in more detail below. In this way, users can gain access to a smart lock 104 even if they do not have a mobile device, or if their mobile device is lost, damaged, or otherwise unable to wirelessly send a token to the smart lock 104. Therefore, according to some embodiments of the present invention, the keypad for entering a password or biometric scan serves as a redundant access channel to provide users with access to the smart lock 104. In other embodiments of the present invention, the keypad for entering a password or biometric scan can serve as the primary or default access channel, while wireless communication from the user's mobile device to the smart lock 104 can serve as a redundant access channel. In yet other embodiments of the present invention, users may be required to authenticate themselves using a combination of alternative access channels. For example, a user may be required to provide a combination of a dynamic password and a fingerprint before access to the lock is granted.

As described above, the token may include a password that can be wirelessly transmitted from the user's mobile device 103 to the smart lock 104. As described in more detail below, the password may also be displayed on the user's device so that the user can manually enter it into the keypad of the smart lock 104. The smart lock 104 verifies the fixed password by comparing the entered password with a password generated by a process stored on the smart lock 104. If the process generates a matching password, the smart lock 104 grants access to the user.

In some embodiments of the present invention, the password may be a dynamic password generated by a code generation system (CGS). A dynamic password is a unique, single-use, time-limited, or one-time password generated by a central access server upon request. The password is based in part on the time the password was requested.

According to some embodiments of the present invention, the generation of the password provided to the user is based on unique information about the user's mobile device and the time when the password is requested or being generated. For mobile devices, the password can be based on, for example, the International Mobile Equipment Identity ("IMEI"), the network ID of the mobile device, or a combination of both IDs, and the time when the request was sent from the mobile device.

Alternatively, the password can be fixed. A fixed password does not change or expire, can be used more than once, and can be obtained without a request from the owner or administrator. An owner or administrator who wishes to prevent the fixed password from being disclosed can require the fixed password to be used in conjunction with other information or a biometric scan.

A user can request a dynamic or fixed password by contacting the owner or administrator. For example, the user's mobile device 103 may include a mobile application that allows the user to send a password request to the owner device 101, the administrator device 102, or the central access server 105 via the mobile device's cellular data, WiFi, or NFC/Bluetooth connection. As another example, the user can submit a request by initiating a voice call or sending a text message from the user's mobile device to the owner, administrator, or central access server agent. In this way, the user can send a request even when the mobile device cannot connect to the internet or is not equipped with a data or internet connection.

In some embodiments of the present invention, the smart lock 104 can be opened by providing a biometric scan of the user. As described in more detail below, the smart lock 04 includes a storage medium 201 that can store biometric data for each user authorized to access the lock. The biometric data may include, for example, a fingerprint of each user. When the user receives a biometric scan, the smart lock 104 compares the scan with the biometric data stored in the smart lock 104. If the scan matches the stored biometric data, the smart lock grants access to the user. When the biometric scanner is used as a redundant access channel, the user can provide a biometric scan if, for example, the user does not have or has lost their mobile device and cannot obtain a token or password.

Figure 1C illustrates how, in some embodiments according to the present invention, a smart lock 104 can be coupled to a master device 101, an administrator device 102, or a central access server 106, thereby bypassing a mobile device. For example, the smart lock 104 can be coupled to a network device 117, which relays communications to the master device 101, the administrator device 102, or the central access server 106. The network device 117 can be, for example, a wireless receiver, a router, a repeater, or the like. As another example, the smart lock 104 can communicate bidirectionally directly with the master device 101, the administrator device 102, or the central access server 106 via a cellular broadband connection, as described in more detail below.

In the configuration in which the smart lock 104 communicates with the network device 117 as shown in FIG1C , the smart lock 104 can use a near-field wireless transmitter or a wireless LAN to establish a short-range wireless connection. The connection can be established using, for example, Bluetooth, NFC, ZigBee, or similar short-range wireless network technologies. For example, the network device 117 can be a wireless repeater, extender, or router in the home and use Bluetooth to communicate with the smart lock. The network device 117 can then be coupled to a master device, an administrator device, or a central access server using a network connection such as the Internet, Ethernet, or a similar connection. The network device 117 can then relay communications from the smart lock to the master device, the administrator device, or the central access server in near real time. Therefore, even when the user's smartphone or mobile device is stolen or inoperable, the smart lock can communicate with the master device, the administrator device, or the central access server in near real time.

In some embodiments of the present invention, a smart lock may include a wireless transmitter that communicates directly with a central server or administrator, as shown in FIG1D . For example, the smart lock 104 may include a cellular broadband or wide area network connection that enables the button to communicate directly with the master device 101 , the administrator device 102 , or the central access server 106 . The lock may include a wireless modem for establishing a cellular broadband connection and transmitting information in near real time. For example, the modem may be an Intel XMM 6255 3G modem on a chipset embedded in the lock. In another embodiment, the modem may be a USB dongle, data card, or similar device that provides access to a cellular network and may be coupled to the lock via an I/O port, as described in more detail below. The cellular network may be, for example, GSM, GPRS, EDGE, UMTS, HSDPA, HSPA, HSPA+, CDMA, LTE, or a similar cellular network.

Enabling a smart lock to communicate with an owner device, an administrator device, or a central access server provides additional control over user access to the smart lock. For example, the smart lock can be configured to send an approval request to the owner device or administrator device each time a user attempts to gain access to the smart lock. Thus, even if a user attempts to gain access using a password or biometric scan, the owner or administrator can approve each access request.

As another example, a smart lock can use a connection to a master device, an administrator device, or a central access server to verify whether the user is authorized to open the smart lock. Specifically, after receiving authentication information, the smart lock can communicate with the master device, the administrator device, or the central access server, which checks a set of configurable rules to verify whether the user is authorized to access the smart lock.

In another aspect of the present invention, a master device, an administrator device, or a central access server can transmit instructions to a smart lock to perform certain functions or processes. For example, if the central access server determines that the smart lock's deadbolt is unlocked, the central server can instruct the smart lock to lock the deadbolt. In this way, if an administrator or user leaves home and does not remember whether they locked the door, the administrator or user can confirm whether the door is unlocked and, if so, lock it remotely. In other embodiments, a master device, an administrator device, or a central access server can transmit instructions to a smart lock to block communications received from certain devices or biometrics received from certain users. For example, if a user's mobile device has been reported as lost or stolen, the master device, administrator device, or central access server can instruct the smart lock to block any communications received from that particular mobile device. Similarly, a master device, administrator device, or central access server can send an instruction to the smart lock that a particular user will no longer be allowed to use their biometric scan to unlock the smart lock, and report any such biometric scans received from that user.

According to some embodiments of the present invention, the button includes an inertial module for detecting and measuring the movement and position of the door. The inertial module may include a combination of sensors for detecting and measuring movement and/or position, such as a MEMS-based accelerometer, a gyroscope, and/or a magnetometer. The MEMS-based accelerometer may be a 1-axis, 2-axis, or 3-axis accelerometer, and the measurements may include, for example, the velocity and acceleration of the door along these axes. The measurements provided by the accelerometer may be filtered and analyzed to determine whether the movement is related to the opening or closing of the door. Other sensors that may be used may include magnetic sensors, such as magnetic switches, which generate measurements in response to changes in their magnetic field. A potentiometer may also be used to generate a signal corresponding to the angular movement and position of the door frame hinge. Other embodiments may include optical or ultrasonic sensors that measure the reflection of light or sound waves when the door is opened or closed.

Measurements taken by the inertial module's sensors are used to track changes in position and door movement, enabling the button to determine whether the door is open or closed. In some embodiments, the button can determine whether the door is open or closed by comparing the sensor measurements with known acceleration and/or movement characteristics associated with the opening and closing of the door. For example, the movement of a closing door can be characterized by changes in its acceleration; if the acceleration increases sharply (i.e., the user pushes the door) and then suddenly decreases (i.e., the door contacts the doorframe and closes), the button can determine that the door is closed. As another example, the movement of a closing door can be characterized by its speed; if the speed or acceleration reaches a maximum threshold, it can be determined that the door has reached a rate or speed that will cause it to eventually close. Similarly, if the door's speed or acceleration never reaches a minimum threshold, it can be determined that the door was not pushed with sufficient force to close. The button can be configured to track when the door is opened or closed. For example, the button can record when the door is opened or closed by maintaining a log in the smart lock's storage medium.

In another aspect of the present invention, these sensors can be used to detect whether the bolt of the lock cylinder has been rotated, thereby indicating whether the user has locked or unlocked the door. For example, an accelerometer can be used to detect the rotation of a button that extends the bolt into the door tenon. The button can also be configured to track when the cam is engaged to lock or unlock the bolt. In some embodiments of the present invention, the button can include the locked or unlocked state of the bolt to confirm whether the door is open or closed. For example, if the button detects that the door is closed, the button can confirm that the door is closed by determining whether the bolt changes from an unlocked state to a locked state (which indicates that the door is closed and locked).

In some embodiments of the present invention, the button can transmit whether the door is open, closed, locked or unlocked to a network device, an administrator device, a master device or a central access server. In this way, users can remotely determine whether their door is open or closed.

Figures 2A and 2B illustrate a smart lock according to some embodiments of the present invention. The smart lock includes a storage medium 201, a power supply 202, a hardware processor 203, a lock cylinder 204, and a button 205. The smart lock may also include a wireless transceiver 206, a password keypad 207, and a biometric scanner 208. The lock cylinder includes a cam 209 that engages a deadbolt (not shown). The user provides authentication information to the smart lock, which is verified by the hardware processor 203 and the storage medium 201. The authentication information can be, for example, a fingerprint scanned by the user, a password entered into the keypad, or a token wirelessly sent from the user's device. When the smart lock verifies the authentication information, the button 205 engages the cam 205, which unlocks the deadbolt. The storage medium 201 stores information and data used to verify the authentication information, maintain a log of access events and smart lock usage, and identify the smart lock. For example, the storage medium may store profile data of users authorized to open the lock or a unique identification number that identifies the smart lock.

The hardware processor 203 is configured to verify the authentication information received from the access channel based on access permissions and rules determined by the owner or administrator. When the user is authenticated through the access channel, the hardware processor can unlock the deadbolt. In one aspect of the present invention, when the first redundant access channel is unavailable to the user, the hardware processor 203 is configured to allow access through the second redundant access channel to unlock the deadbolt.

In some embodiments, the smart lock includes a wireless transceiver 206 for transmitting and receiving RFID, NFC, or Bluetooth signals from and to the user's mobile device. As described above, the user can send a token wirelessly to the smart lock 104. When the wireless transceiver 206 receives the token, the smart lock verifies the token as described above. The wireless transceiver can also transmit access information to the user's mobile device. The access information provides details about the access event, such as which users have accessed the smart lock and when they accessed. The access information can be stored in the storage medium 201 of the smart lock. The access information is stored in the smart lock until the mobile device accesses the lock, at which time the smart lock will send the access information to the user's mobile device. The mobile device then transmits the access information to the central access server. When the user's mobile device is stolen or cannot receive wireless communication, the smart lock will wait until the next capable mobile device attempts to access the smart lock.

The smart lock cylinder 204 is adapted to fit into a standard specification slot. In some embodiments of the present invention, the lock cylinder 204 of the smart lock is a European standard (or "Euro DIN") design. In other embodiments, the lock cylinder can be an oval, round, Scandinavian, Japanese, Union, or Schlage type profile. However, European standard lock cylinders typically include a rotatable knob on the inside of the door for engaging or disengaging the deadbolt, while smart locks have a free-spinning button 205. Unlike a knob that typically rotates a half or a quarter turn to engage or disengage the deadbolt, the free-spinning button 205 can rotate several times about its axis. As explained in more detail below, rotating the free-spinning button 205 generates rotational energy, which can be used to power and recharge the power supply 202 within the lock for several days.

When the user's authentication information has been verified, the smart lock is enabled to engage the deadbolt. Specifically, the button 205 can be pushed inward, activating a clutch that engages the cam 209. As the user continues to rotate the button 205, the cam 209 moves the deadbolt from the locked position to the unlocked position. The user will not be able to open the smart lock until they are authorized to enter the venue (for example, by wirelessly sending a token, providing a biometric scan, or entering a password on the keypad). Before the user is authorized, the button can rotate freely and will not engage with the cam.

As shown in FIG2A , the button is disposed on the outward-facing end of the lock cylinder. In one aspect of the present invention, the smart lock utilizes a single button, which allows the smart lock to be adapted to different sizes or lock specifications. For example, the freely rotating button 205 can also be adapted to single-entry locks, push-button entry locks, dual-entry locks, and padlocks. For example, a padlock may include only a freely rotating button without requiring an internal knob.

2B shows a front view of a lock cylinder according to some embodiments of the present invention. The button may include several access channels, such as a PIN keypad 207 and a biometric scanner 208, which may be concealed by a cover 210. In the event that the user is unable to wirelessly send a token using their mobile device to unlock the door (e.g., the user's mobile device has been stolen or the device's battery has been depleted), the user may gain access by entering a PIN using the numeric keypad or using a biometric scanner.

As shown in FIG2C , according to some embodiments of the present invention, the smart lock includes a knob or second button 211 disposed at the opposite end of the lock cylinder 204 facing inward. The external button 205 can have a longer radius and a greater thickness than the internal button 211, which can reduce the force or speed required to rotate the button and charge its internal power supply, as explained in more detail below. In embodiments where the smart lock includes an internal button 211, the internal button 211 can engage or disengage the deadbolt without providing authentication information to the smart lock or requesting access from the owner or administrator. Thus, the user can lock or unlock the door at any time to leave the interior of the venue.

Figure 2D shows that in some embodiments of the present invention, the button is detachable from the lock cylinder. The detachable button may include a recharging interface 213 and an input/output port ("I/O port") 214. The power source 202 may be a rechargeable power source, such as a capacitor bank, a rechargeable battery, or the like. As described in more detail below, the button may also include an energy harvesting element 216. By removing the button from the lock cylinder, the user can take it to a recharging station 215, where its charge can be restored. The recharging station 215 may be coupled to an electrical outlet, where the charge may be transferred to the rechargeable power source 202 via the recharging interface 213. The recharging interface 213 may be, for example, a wire, plug, or one or more contact pins that receive current from a charging station 215 having a matching interface. When the recharging interface is coupled to the recharging station 215 via a matching wire, plug, or contact configuration, the recharging station 215 supplies power to the button. The rechargeable power source 202 stores the charge received from the recharging station 215.

The button can also be charged via I/O port 214. I/O port 214 can be, for example, a USB, Firewire, Thunderbolt, e-SATA, Ethernet, or a similar port for transferring power and/or data. In some embodiments of the present invention, I/O port 214 can receive power from an external device, such as a portable battery charger, that has a matching interface capable of delivering charge. For example, the external device can be a battery pack with a USB connection. In another embodiment of the present invention, I/O port 214 can receive power from a recharging station 215 having a matching port interface. Recharging station 215 can transfer power from an electrical outlet to the button's power supply 202 via I/O port 214.

The recharging station 215 can be coupled to the master device 101, the administrator device 102, or the central access server 106. For example, the recharging station 215 can include an Ethernet port or a WiFi transmitter for establishing an Internet connection and communicating with the master device 101, the administrator device 102, or the central access server 106. When connected to the I/O port 214, the recharging station 215 can retrieve data stored in the storage medium 201. As described above, such data can include, for example, authentication information, access information for maintaining logs such as access events and smart lock usage, and information and data identifying the smart lock. The recharging station 215 can then transmit the data retrieved from the storage medium 201 to the master device 101, the administrator device 102, or the central access server 106. Thus, when the button is recharged, it can transmit access information to other devices or the central access server.

According to some embodiments of the present invention, the I/O port can be used to connect the smart lock to a wireless modem. For example, a USB dongle, data card, or similar device for providing access to a cellular network can be inserted into the I/O port, allowing the smart lock to communicate with the owner device, administrator device, or central access server via the cellular broadband connection.

In some embodiments of the present invention, valid credentials are required to release the button from the lock cylinder. For example, the button can only be removed upon receiving a valid password or biometric scan. This way, when the button is located on the exterior surface of the door, it can be protected from being stolen or removed by thieves or unwanted vandals. In other embodiments, the button can be configured to be removed from the lock cylinder without requiring credentials. For example, when the button is located on the interior surface of the door, facing the interior of the home, the button can be removed at any time.

According to some embodiments of the present invention, a smart lock includes a button disposed on the inner surface of the door and a button disposed on the outer surface of the door. In this configuration, the button disposed on the inner surface of the door can be removable and rechargeable, while the button disposed on the outer surface of the door is neither removable nor rechargeable. Thus, the outer button draws power from a power source directed toward the inner button. In this way, an energy-efficient two-button smart lock with an outer button that resists external tampering can be provided.

As described above, the token transmitted by the mobile device can contain a password, such as a single-use dynamic password. In one aspect of the present invention, the password can be automatically generated and transmitted from the mobile device, eliminating the need for user interaction. Specifically, the user's mobile device can determine or detect that it is in the vicinity of a smart lock. For example, using the mobile device's location-based functionality, the mobile device can determine that the user is approaching a venue. In some embodiments, this determination can be aided by analyzing past user patterns and inferring that the user is returning home from work and on their way to unlock their home. The mobile device can alternatively make this determination using its NFC/Bluetooth or wireless capabilities. Upon detecting the lock, the mobile device can identify the lock and the venue it guards. The mobile device can then automatically transmit this information to a central access server to determine whether the user is allowed access to the smart lock. If the user meets all the conditions for accessing the lock (e.g., allowing the user access to the lock at a specific time and date), the access control system will generate a dynamic password. The dynamic password can be generated on a master device, an administrator device, or a central access server and then sent to the mobile device, or alternatively, it can be generated by a mobile application on the user's mobile device. The mobile device can then send the password to the smart lock, which verifies the password using a process stored in the lock. Once the code is verified, the user can push the button inwards and use the clutch system to engage or disengage the deadbolt. If the user is not allowed to open the lock, the administrator will receive a notification that an unauthorized user has attempted to open the lock.

According to some embodiments of the present invention, the button includes a light indicator 212 that changes color based on the operating mode. For example, if the authentication information has been accepted, the light will glow green; if the authentication information is rejected, it will glow red; in standby mode, it will glow blue.

As mentioned above, the smart lock is powered by power supply 202. In some embodiments of the present invention, the button includes a redundant power supply, as shown in Figure 3. The redundant power supply can be used to power the storage medium, wireless transceiver, and light indicator in the event of a power failure. The redundant power supply can be, for example, a set of capacitors or batteries 301 located within the button. When the batteries or capacitors are at a low charge, the button can transmit this information to the next mobile device that accesses the lock. The mobile device can then transmit this information to the owner or administrator. Alternatively, a color indicator can be used to communicate low charge or battery level.

In other embodiments, the button features a set of capacitors 301 that are charged by its rotational motion. The energy stored by this rotational motion is sufficient to last for several days and provides a convenient, reliable, and redundant power source should another power source (e.g., a battery) fail. The button can rotate freely about its central axis, generating a high level of kinetic energy. While some knobs are limited to a quarter or half turn, the button can rotate a full turn. Similar to the winding crown of a watch, the button's rotational motion is collected and converted into electrical energy by components within the button, which is then stored for future use. The greater the number of revolutions the button rotates, the higher the charge stored in the lock. In one exemplary embodiment, the button's rotational motion drives a series of gears and springs 302, which transfer the rotational energy generated by turning the button. Because the springs and gears 302 within the lock can be smaller than the button, the button can rotate at a lower speed and torque. Therefore, by proportionally adjusting the size of the button to the gears and springs within the lock, the force required to charge the lock can be reduced.

In other embodiments, the button's rotational motion is applied to the piezoelectric element 303. When the user rotates the button, the rotational motion is applied to the piezoelectric element, generating piezoelectricity, which is then transferred and stored as charge in a capacitor bank or battery. Piezoelectricity can be generated by the strain, tension, or torsion caused by the button's rotation. The strain, tension, or torsion applied to the piezoelectric element generates a charge that can be stored in the capacitor bank. In other embodiments, piezoelectricity can be generated by converting rotational motion into vibration energy. Specifically, a gear or spring inside the button can contact a piezoelectric plate that vibrates with each rotation of the button.

In other embodiments, the rotational motion can be converted into electrostatic energy or electromagnetic energy. For example, the rotation of the button can be used as mechanical energy to rotate the armature in the generator 304. In other embodiments, the rotational motion of the button can be stored in a spring or similar mechanical device.

In some aspects of the present invention, the button can be recharged either by harvesting its rotational motion or through the recharging interface. In this way, if the energy harvesting component ceases to function properly, the recharging interface can still be used to recharge the button, and vice versa. Thus, the recharging interface and the energy harvesting component can operate in a complementary manner to ensure that the button can be recharged.

Although Figures 2A-D and 3 depict various components within the button, in other embodiments of the present invention, these components may be located externally. For example, the wireless transceiver, memory, hardware processor, and capacitor/battery pack may be located externally to the lock cylinder, with the button located within the lock housing. These components may be coupled to the button via the lock cylinder. In other embodiments, these components may be located within the lock cylinder or within the door junction box.

Figure 4 illustrates the process of using a lock with access channels, according to an embodiment of the present invention. In step 401, a user selects a first access channel. If the channel is available, as shown in step 402, the user can provide authentication information 404. For example, if the access channel wirelessly transmits a token to the smart lock, it may be determined that the access channel is unavailable if, for example, the user's mobile device is lost, stolen, or has a dead battery. If the first access channel is unavailable, a second, redundant access channel is selected 403. For example, the second, redundant access channel can be a password entered into the smart lock's keypad or a biometric scan.

As shown in step 405, the smart lock verifies the authentication information. As described above, if the authentication information includes a token or password, the token or password is compared with a token or password generated by a process stored on the smart lock. If the authentication information is a biometric scan, the scanned data is compared with the biometric data stored in the smart lock. In this way, the present invention provides a redundant access channel, which ensures that the user can access the lock even if the user's mobile device is lost or inoperable.

If the authentication information is verified, the access permissions are checked to determine whether the user is authorized to access the smart lock, as shown in step 406. For example, it is determined whether the owner or administrator allows the user to access the smart lock at a given date or time. If the user is authorized to open the lock, the user is granted access, and the button can engage the cam to open the smart lock 407. If the authentication information is invalid, or the owner or administrator decides to deny the user access to the lock, the button will not engage the cam and open the smart lock 408. As described above, the rules and access permissions can be checked at the user device, the central access server, the owner device, or the administrator device.

Figure 5 illustrates a process for controlling a lock with an access channel according to an embodiment of the present invention. In step 501, a trigger event is registered. The trigger event can be used to automatically initiate the process of opening a smart lock. The trigger event can be, for example, when a user's mobile device comes within a predetermined distance (e.g., 10 feet) of the smart lock. The trigger event can then, for example, cause the mobile device to automatically send a token to a button.

Trigger events can be registered based on other capabilities of the mobile device. For example, if the mobile device has gesture recognition sensors and software, a trigger event can be registered based on when the user shakes their mobile device in a specific manner. Alternatively, the mobile device can register a trigger event when the user selects a button or enters a code on a mobile application on the mobile device.

After the mobile device registers the triggering event, the mobile device identifies the smart lock it is opening, as shown in step 502. It then determines whether the rules are configured to grant the user conditional access or fixed access, as shown in step 503. If the user has conditional access, the mobile device submits a request to the owner or administrator, as shown in step 504. Otherwise, the rules and access permissions are evaluated in step 505 to determine whether the user is authorized to open the lock.

As described above, a mobile device can submit a request to an administrator in a variety of ways. For example, a mobile device can submit a request to a master device, an administrator device, or a central server using its data connection, by sending a text message, or by calling a central access server with a call center. In some embodiments of the present invention, the master, administrator, or central access server may require the user to provide additional credentials before issuing a token. For example, the request submitted by the user's mobile device may include the user's location, a password, or other similar identification credentials, such as their phone number or email address. As another example, the additional credentials may include the GPS coordinates of the user's mobile device that confirms that the user is at the location of the smart lock. In other embodiments, the user may also be required to take a photo of the smart lock and provide it with a request proving that the user is at the location of the smart lock. After the credentials are successfully verified, a token is sent to the user's mobile device.

If the owner or administrator approves the user's request, or the user has access rights sufficient to open the lock, the user may receive a token, as shown in step 506. If the owner or administrator denies the user's request, or the user is not authorized to open the lock, the user will not receive a token, as shown in step 507.

The user can then provide authentication information to the smart lock, as shown in step 508. If the user will open the lock by entering a password on a keypad, the user can receive the password, for example, as a text message or displayed on a mobile app, which the user can enter on the smart lock keypad. If the user's mobile device wirelessly sends the token to the smart lock, the mobile device can automatically send the token once it receives it.

In one aspect of the present invention, an additional layer of security may be required before authentication information can be provided to the smart lock. For example, the user may be prompted to enter a password on their mobile device before the mobile device authentication information is wirelessly transmitted to the button. In other embodiments, rules may be configured to require the user to scan their fingerprint on the mobile device before receiving the token. As described above, the mobile device may also automatically send authentication information without further user interaction. For example, the mobile device may send authentication information upon launching a mobile app.

In some embodiments, the button can be part of a device interconnection hub that can be controlled from a single interface and automated based on events that occur in the access control system. For example, a device interconnection network can include a home thermostat, lighting system, sound system, and access control system that communicate wirelessly via WiFi or Bluetooth. The home thermostat, lighting system, sound system, and access control system can use the same application programming interface ("API") to communicate with each other or with a central server. Using the API, the home thermostat, lighting system, sound system, and access control system can be automated based on certain rules or events. For example, after a user unlocks his door using his mobile device, the access control system can transmit user preferences to the thermostat to turn on the air conditioner at a certain temperature, turn on certain lighting devices in the living room, and start playing specific user-defined music through the speaker system.

In some embodiments of the present invention, the device interconnect hub operates according to settings customized for a user, administrator, or owner. When a person registers a trigger event, they are identified and the device interconnect hub operates according to the settings customized for that person. For example, a parent can configure the settings of the interconnect device hub so that when the parent unlocks the front door, the lights in the bedroom and kitchen turn on, music from a specific playlist plays on the living room audio system, and the air conditioning/heating turns on to bring the house temperature to 70°. A child can configure different settings that turn on different lights in the house, play different playlists, and heat/cool the room to different temperatures. Thus, if a parent unlocks the front door of the home, thereby registering a trigger event, the device interconnect hub can operate according to the customized settings defined by the parent and turn on the lights in the bedroom and kitchen, play music from a specific playlist on the living room audio system, and turn on the air conditioning/heating to bring the house temperature to 70°.

In some embodiments, the movement or position of a door as described above can register a trigger event that causes the device interconnect hub to perform certain tasks or sequences of tasks. For example, when it is determined that a door is opened, a trigger event can be registered to communicate with the thermostat to turn on the air conditioner at a certain temperature, turn on certain lighting fixtures in the living room, and start playing specific user-defined music through the speaker system.

Figure 6 illustrates the process of enabling an owner or administrator to control an access control system. In step 601, the owner or administrator is presented with a set of configurable rules and access permissions. In step 602, the owner or administrator configures access permissions to determine which smart locks a user can access. In step 603, the owner or administrator configures rules that specify which access channels a user can use to open a smart lock, and what conditions, if any, must be met before the smart lock can be opened.

When a user with conditional access rights submits a request to open the smart lock as described above, the owner or administrator receives the access request, as shown in step 604. For example, the request may be received in the form of a text message, a phone call, or as a notification displayed on the owner's or administrator's mobile app. The request may be received directly from the user or from a central access server that receives the request from the user.

In step 605, the user request is authenticated. The user can be authenticated by, for example, requiring the user to provide additional credentials such as a password. As another example, the owner or administrator can obtain the ID of the user's mobile device to determine whether the mobile device has been reported lost or stolen. If it has been reported stolen, a rule can be configured to automatically deny the access request and notify the owner, administrator, or user of the attempt to access the device.

If the owner or administrator authenticates the user, the owner or administrator may proceed to step 606, where the owner or administrator determines whether to grant access to the user. In this step, rules and access permissions may be checked to determine whether the user is authorized to open a specific lock and whether any conditions must be met before the lock can be opened. For example, it may be determined that the user is not authorized to open a specific smart lock, or is not authorized to open a smart lock on a specific day. If the user is authorized, the owner or administrator may still decide to deny the user access. For example, even if the user is authorized, the owner or administrator may prefer to use their own judgment to approve the request. If the owner or administrator decides to approve the request, a token or password is generated and provided to the user. The token or password may be sent to the user as described above. For example, the token or password may be sent in the form of a text message, a phone call, or as a notification displayed on the user's mobile app. The token or password may then be provided to the user in step 608.

According to some embodiments of the present invention, a mobile application can be installed on a master device, an administrator device, or a user device to control the use of the access control system. The master or administrator's mobile application can provide the following interfaces: viewing access information; creating access permissions; viewing access logs; managing user permissions; opening locks; and creating reports of successful and denied access, including details of why access was denied (for example, the user accessed the lock outside of the schedule or date on which access was allowed, or the user was not allowed to open the lock in the first place). In this way, the access control system provides the security and reliability advantages of mechanical locks and key systems while also providing reporting and real-time value-added services for mobile devices and electronic lock systems. Similarly, the user's mobile application can provide the following interfaces: receiving access alerts; requesting access permissions; viewing access logs; and opening locks.

In one aspect of the present invention, the mobile application provides a "notifier" feature, as shown in Figure 7A, which notifies the owner, administrator, and user about access events and access permissions. For the owner and administrator, the mobile application will receive information about access events, such as when a user accesses the lock. As shown in Figure 7A, this feature provides the owner or administrator with an alert that Johnson Smith wants to open the gate, is approaching the gate, or is attempting to open the gate. The alert notifies the owner or administrator of access events or changes in access permissions in near real time. Because events can be transmitted to the owner or administrator quickly, the mobile application can also provide the owner or administrator with the option of denying the user access to the protected venue in near real time. Similarly, the mobile application can also receive an alert when a user attempts to open the lock with invalid authentication information (e.g., an incorrect password).

Using the mobile device's wireless or location-based capabilities, the mobile application can determine the length of time a user has been at a protected venue. The mobile application can also receive information from the button about when it was locked and unlocked to determine when a user gained access and subsequently left the protected venue. As explained in more detail below, the button on the lock also sends its locked/unlocked status to the user's mobile device. The user's mobile device can then send the locked/unlocked status to a central access server, which can then send a notification about the lock status to the owner or administrator. In this way, after the user subsequently leaves the protected venue, the owner or administrator can be alerted that the venue is still unlocked and can contact the user to notify them that they forgot to lock the venue.

In one aspect of the present invention, the mobile application can display to the owner or administrator which areas of a protected location have been locked or unlocked, as shown in Figure 7B. When a user unlocks or locks a location using their mobile device, the mobile device transmits this information to a central access server. The central access server then provides the owner or administrator with the lock/unlock status. When the user uses an alternative access channel to lock or unlock the location, this information is stored on the smart lock and transmitted to the central access server the next time the mobile device is used to open the smart lock.

The mobile application is also programmed to provide a user interface for displaying and configuring how these venues are unlocked. For example, as shown in FIG7C , the mobile application can display whether the venue can be opened automatically or manually.

Another interface in the mobile app displays which users can access the lock. As shown in Figure 7D, the interface displays a picture of each user and their personal information, such as name and contact information. Each user in the list can be selected or removed. Selecting a user causes the mobile app to display another interface showing additional detailed information about the user.

In one aspect of the present invention, the notifier displays alerts and messages regarding changes to a user's access rights. As shown in FIG7E , the notifier can inform the user that they have access rights to a specific location (e.g., Gate A) during specific times (e.g., from 5 p.m. to 8 p.m., Monday through Friday). Similarly, the notifier can inform the user that they have received new access rights to a specific area, or that these access rights have been restricted or revoked.

While Figures 7A-7E illustrate the alert and messaging functionality of the notifier using a mobile application interface, alerts and messages regarding access permissions may also be delivered to the user via SMS text, email, or over the phone. Thus, for example, when a user's access permissions change, the user may receive an SMS text notifying the user that their access permissions have changed.

In one aspect of the present invention, the mobile application provides an "authorization" function that enables owners and administrators to create and change user access permissions and allow users to request access permissions. Each user's access permissions are stored on the owner's device, administrator's device, or a central access server, where each user's attempt to access the lock can be authenticated.

As shown in Figure 8A, the mobile application can provide an interface for the owner or administrator to create user access permissions and rules. For example, the interface allows the owner or administrator to specify the user's contact information (e.g., name, phone number, occupation, age), the specific personal locks to which the user will have access rights, the access channels the user can use (e.g., password, biometric scan, wireless transmission of a token to the smart lock, or any combination thereof), and the conditions for user access (e.g., time of day restrictions). The authorization function of the mobile application is available to both the owner and the administrator. In some embodiments of the authorization feature used by the administrator, after providing access information, the administrator submits the information as a request to the owner. The information is then transmitted to the owner, who ultimately approves or denies the creation of access rights for the new user. The creation of access rights can occur in near real time; when the owner approves the user's request or the administrator's request, the user can immediately begin accessing the designated smart lock using their mobile device, password, or biometric scan.

In one aspect of the present invention, an owner or administrator can designate specific locks, areas, or doors within a facility, as shown in FIG8B . As shown in FIG8B , an owner or administrator can select locked areas such as the front gate, gym, recreation room, or office to grant access to users. A mobile application allows this configuration to occur remotely and in near real time; there is no need for the owner or administrator to be on-site to copy keys or update any records, which can cause delays.

The status may correspond to information received from the aforementioned sensors corresponding to whether the door is opened or closed and the deadbolt is locked or unlocked.

As described above, the authorization feature allows the owner or administrator to add restrictions on user access. As shown in Figure 8C, the owner or administrator can allow the user to have permanent, unlimited access, or can limit the user's access to be temporary, or can limit access to selected intervals within a full day, a full week, a full month, or a full year.

The authorization feature can also allow the owner or administrator to provide one-time access on a case-by-case basis. As described above, a user can receive one-time access by sending a request to the owner or administrator. This request can be made through the user authorization interface of the mobile app, an SMS text, an email, or through a phone call. The request can be for a specific lock or group of locks, as well as for a specific access type. The owner or administrator can determine in near real time whether to grant or deny the request. If the owner or administrator approves the request, the user can open the lock. Using the logging and reporting functions, the owner or administrator can determine when a user has finished using the lock and disable or remove the user's access rights. Alternatively, if the owner or administrator decides to grant the user access, the owner or administrator can provide the user with a dynamic password that can only be used once and expires after use.

As shown in Figure 8D, the access type interface allows the owner or administrator to configure rules to specify what access channels can be used by users to open the smart lock. For example, the owner or administrator can specify whether a user can open the smart lock by wirelessly sending a token to the smart lock, entering a password on the keypad, using a biometric scan, or any combination thereof. The owner or administrator can also add conditions that limit when users can access the smart lock, such as adding time or date restrictions. For example, the owner or administrator can specify that users can access the lock using a smartphone or mobile device Monday through Friday, but must provide a biometric scan or password on weekends.

In one embodiment of the present invention, an owner or administrator can add a user's biometric scan to a smart lock using their respective mobile device. For example, a user can scan their fingerprint on a smartphone and send it to the owner or administrator via SMS text or mobile app. The owner or administrator can then add the fingerprint to a central access server or to the smart lock the next time their mobile device communicates with the smart lock. In this way, a new user's biometric scan can be added to the smart lock remotely without the user having to be physically present at the smart lock.

Users can request access using the mobile app on their mobile device. After registration, users can load a list of venues and their corresponding locks and request access from the corresponding owner or administrator of the smart lock. Users can search for the owner or administrator and request access directly from them. As an alternative to using the mobile app, users can request access via SMS text, email, or phone call.

The owner or administrator can modify the access permissions of each user at any time through the authorization interface, as shown in Figure 8E. In one aspect of the present invention, access permissions can be modified without notifying or informing the user. In this way, the owner or administrator can remotely change or delete the access permissions associated with a mobile device without requiring any access or interaction with the user. Therefore, if a mobile device is stolen or lost, the owner or administrator can disable that specific mobile device to prevent it from being used by unauthorized persons or in an unintended manner. Before the mobile device can be disabled, the owner or administrator may be prompted to verify their identity with additional credentials. If the disabled phone is later used to access the smart lock (for example, by a thief or an unintended person), the smart lock will deny it, and the owner or administrator will be notified of the unauthorized access attempt. As shown in the exemplary illustration below, the authorization interface allows the owner or administrator to deauthorize a user, disable the user, or remove them from the lock entirely. These changes to user access permissions can be implemented in near real time.

In one aspect of the invention, the mobile application provides a "reporting" feature that enables owners and administrators to view records and logs of access events for each user or each lock. Records of various access events, such as when and how a user sought or obtained access to a smart lock, can be stored in the button's storage medium or in the mobile application of the user's mobile device as described above. For example, when a user seeks or obtains access to a smart lock using their mobile device, a record of that access event can be stored in the mobile device or in the button. Similarly, if a user accesses the smart lock via a redundant access channel (e.g., a password or biometric scan), the access event can be stored in the button and wirelessly transmitted to the central access server at a later stage when another mobile device comes into contact with the smart lock.

Access events may also include information received by the aforementioned sensors indicating whether a door has been opened or closed or whether a deadbolt has been locked or unlocked.

A log of access events for each user or each smart lock can be compiled and transmitted periodically or in near real time to the owner or administrator. For example, as shown in Figure 8F, a log of a user's access events for the day can be compiled and reported to the owner or administrator. The log shows the details of each access event for a specific user, such as what smart lock was accessed, how the smart lock was accessed, and the exact time the user accessed it, as well as how long the user spent at the venue. The log can further include a record of successful and unsuccessful openings of the smart lock, the time period during which the user was allowed to open the smart lock, and when the user requested access to the smart lock. A similar log can be compiled for each smart lock, reporting who accessed the smart lock, how the smart lock was accessed, and when the smart lock was accessed. Owners and administrators can configure the frequency with which they prefer to receive log reports. The report can be transmitted to a central access server or directly to the owner or administrator.

In other embodiments of the present invention, the log can be transmitted directly from the smart lock to an administrator or central server, bypassing the mobile device. As described above, the smart lock can use its wireless connection or through a network device to transmit this information directly to the central server or administrator.

In one aspect of the present invention, logs and reports can be processed to discover patterns regarding access usage and users. Specifically, logs and reports can be mined to detect patterns related to how and when users access different smart locks. Using these identified access behavior patterns, the access control system can then predict access events to enhance system security or access control. For example, if logs and reports indicate that a user enters the home through the front door at 5:00 PM every weekday, the access control system can automate processes or tasks in connected devices, such as communicating with the lighting system to activate the lights in the front yard and the thermostat to start the air conditioner.

Figures 9A-9C show a user interface for logging into a mobile app, requesting a token or password, and receiving a token or password. As described above, a user may be required to provide credentials such as a password as shown in Figure 9A before being allowed to request a token or password. As shown in Figure 9B, the interface allows users to view the smart locks they can access, and if they do not have access to a smart lock, or only have conditional access, they can submit a request to the owner or administrator. As shown in Figure 9B, users can submit requests in several ways, such as by sending an alert to the mobile app on the owner or administrator's mobile device, or by sending them a text or calling them. As shown in Figure 9C, if the user has been authenticated and access is approved by the owner or administrator, the user will receive a token or password. If the user receives a password, their password can be displayed for the user to enter into a keypad. If the user receives a token, the token can be sent wirelessly to the smart lock.

In another aspect of the present invention, user patterns discovered using logs can be used to optimize certain components of the smart lock. For example, the logs can be used to determine when a user typically leaves and arrives at home. Using this information, the smart lock can determine certain times when the smart lock is least likely to be used and, accordingly, may modify its functionality or some of its operating modes. For example, the smart lock may determine that no one typically enters or leaves the home during business hours on weekdays. During this time, the smart lock may enter a "sleep" mode, in which it deactivates certain features to reduce its power consumption.

Variations, modifications, and other implementations of what is described herein will occur to those of ordinary skill in the art without departing from the spirit and scope of the invention and the claims thereto.

Claims (17)

1. A lock for providing redundant access control, comprising: Hardware processor; A lock cylinder adapted to match a standard specification slot of a door, the lock cylinder including a cam for engaging the bolt; A button for engaging the cam to unlock the latch, the button including a power source and multiple redundant access channels for receiving authentication information, the redundant access channels including a biometric scanner, a keypad, and a wireless transceiver for receiving biometric information, the wireless transceiver being configured to communicate in near real-time with mobile devices and one of the following: 1) a network device, 2) a central access server, and 3) an administrator device. A rechargeable power supply, wherein the button is a freely rotating button for unlocking the door bolt and energizing the rechargeable power supply, the rotational energy generated by the movement of the button is converted into electrical energy and stored in the rechargeable power supply, and when the button is rotated to unlock the door bolt, the button generates electrical energy to supply power to the rechargeable power supply. The hardware processor is configured as follows: The authentication information received from the keypad, biometric scanner, or mobile device is verified based on communications received from the mobile device, network device, central access server, or administrator device. When the user is authenticated through the first of the plurality of redundant access channels, the latch is unlocked, and When a user cannot open the lock via the first channel, access is permitted via the second channel among the plurality of redundant access channels, and The button is removable and includes a rechargeable interface and a storage medium for storing access information. The rechargeable interface is configured to be coupled to a power outlet or recharge station to recharge the button, and the storage medium is configured to send the access information when the button is recharged, and the button is configured to be removed when valid credentials are entered. 2. The lock of claim 1 further includes a wireless modem configured to create a cellular broadband connection and communicate with an administrator device or a central access server in near real-time. 3. The lock of claim 1 further includes a wireless modem configured to create a short-range wireless connection and communicate with an administrator device or a central access server in near real-time. 4. The lock of claim 2, wherein the lock is configured to receive instructions from the central access server or the administrator device via the cellular broadband connection to block the user's access based on the user's biometric scan, password, or mobile device IMEI. 5. The lock according to claim 1, wherein the lock is configured to: Receive token, biometric scan, or password. An access request to the lock is sent based on a set of configurable rules, and The system receives instructions to grant or deny the access request from the administrator device or central access server in near real-time. 6. The lock of claim 1, wherein the button includes an inertial module configured to determine whether the door is in an open or closed state, and to transmit the door state to the administrator device or central access server in near real-time. 7. The lock of claim 1, wherein the lock is configured to determine a bolt state indicating whether the bolt is in a locked or unlocked position, and to transmit the bolt state to the administrator device or central access server in near real-time. 8. The lock of claim 1, wherein the button is a first button disposed on the inner surface of the door and includes a power source, and wherein the lock further includes a second button coupled to the lock cylinder, the second button being disposed on the outer surface of the door and powered by the power source of the first button. 9. The lock of claim 1, wherein the button further includes an I/O port configured to receive power from an external device and transmit access information to the external device. 10. A system for controlling a lock with redundant access channels, the system comprising: The lock for providing redundant access control as claimed in claim 1; and A network device, wherein the lock is coupled to the network device via a short-range wireless connection, and the network device is coupled to the administrator device or central access server via a network connection. 11. The system of claim 10, wherein the network device is configured to receive a token, biometric scan, or password from the lock and relay the token, biometric scan, or password to the administrator device or central access server. 12. The system of claim 10, wherein the network device is configured to receive instructions from the central access server or administrator device to block the user's access based on the user's biometric scan, password, or mobile device IMEI. 13. The system of claim 10, further comprising a device interconnect hub coupled to the network device via a short-range wireless connection, wherein the network device is configured to communicate with the device interconnect hub upon triggering an event. 14. A method for controlling access to a lock, the lock including a hardware processor, a lock cylinder including a cam for engaging a bolt, a button for engaging the cam to unlock the bolt, and a rechargeable power supply, the button including a power supply, a recharging interface, a storage medium for storing access information, multiple redundant access channels, and a wireless transceiver configured to communicate with a network device via a short-range wireless connection, the method comprising the following steps: User authentication information is received from the lock via the short-range wireless connection. The authentication information is used to obtain access to a first redundant access channel among the plurality of redundant access channels, which include biometric scanning, passwords, or tokens. The authentication information is sent to the administrator device or central access server via a network connection for verification based on a set of configurable rules; The authentication information is verified at the administrator device or central access server. Receive instructions from the administrator device or central access server to allow or deny user access; and Send a command to the lock to grant or deny access to the user, and when the command grants access to the user, unlock the bolt. When a user cannot open the lock through the first redundant access channel, access is permitted through the second channel among the plurality of redundant access channels. Receive a valid credential input at the button, which causes the button to be removed, and The recharging interface is coupled to a power outlet or recharging station to recharge the button, and the access information is sent from the storage medium when the recharging interface is coupled to a power outlet or recharging station. The button is a freely rotating button used to unlock the door bolt and power the rechargeable power supply. The rotational energy generated by the movement of the button is converted into electrical energy and stored in the rechargeable power supply. When the button is rotated to unlock the door bolt, the button generates electrical energy to power the rechargeable power supply. 15. The method of claim 14, further comprising: Register the triggering event; and The device interconnect hub is sent a command based on the triggering event. 16. The method of claim 14, further comprising determining a user mode based on access information held by the lock. 17. A method for controlling access to a lock, the lock including a hardware processor, a lock cylinder including a cam for engaging a bolt, a button for engaging the cam to unlock the bolt, and a rechargeable power supply, the button including a power source, a recharging interface, a storage medium for storing access information, a plurality of redundant access channels, and a wireless transceiver configured to create a cellular broadband connection for direct communication with an administrator device or a central access server, the method comprising the steps of: receiving user authentication information for obtaining access to a first redundant access channel of the plurality of redundant access channels, the plurality of redundant access channels including a biometric scan, a password, or a token; sending the authentication information to an administrator device or a central access server for verification via the cellular broadband connection based on a set of configurable rules; verifying the authentication information at the administrator device or central access server; and receiving an instruction from the administrator device or central access server to authorize or deny access to the user. The system includes: a command; and a decision to allow or deny access to the user, to engage a cam to open or close the bolt of the lock; and when the command allows access to the user, to open the bolt; when the user cannot open the lock via the first redundant access channel, to allow access via a second channel of the plurality of redundant access channels; receiving input of a valid credential at the button, which causes the button to be removed; and coupling the button's recharging interface to a power outlet or recharging station to recharge the button; and transmitting the access information from the storage medium when the recharging interface is coupled to a power outlet or recharging station; wherein the button is a freely rotating button for unlocking the bolt and energizing the rechargeable power supply, the rotational energy generated by the movement of the button is converted into electrical energy and stored in the rechargeable power supply, and when the button is rotated to unlock the bolt, the button generates electrical energy to power the rechargeable power supply.