US20210076208A1 - Out-of-band key sharing using near-field communication - Google Patents
Out-of-band key sharing using near-field communicationDownload PDFInfo
- Publication number
- US20210076208A1 US20210076208A1US16/564,750US201916564750AUS2021076208A1US 20210076208 A1US20210076208 A1US 20210076208A1US 201916564750 AUS201916564750 AUS 201916564750AUS 2021076208 A1US2021076208 A1US 2021076208A1
- Authority
- US
- United States
- Prior art keywords
- vehicle
- mobile device
- keycode
- value
- keypad
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
- H04W12/04031—
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
- G07C9/00309—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated with bidirectional data transmission between data carrier and locks
- B—PERFORMING OPERATIONS; TRANSPORTING
- B60—VEHICLES IN GENERAL
- B60R—VEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
- B60R25/00—Fittings or systems for preventing or indicating unauthorised use or theft of vehicles
- B60R25/20—Means to switch the anti-theft system on or off
- B60R25/23—Means to switch the anti-theft system on or off using manual input of alphanumerical codes
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
- G07C9/00896—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys specially adapted for particular uses
- H04W12/003—
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/043—Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
- H04W12/0431—Key distribution or pre-distribution; Key agreement
- H04W12/0609—
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/069—Authentication using certificates or pre-shared keys
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/50—Secure pairing of devices
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/30—Services specially adapted for particular environments, situations or purposes
- H04W4/40—Services specially adapted for particular environments, situations or purposes for vehicles, e.g. vehicle-to-pedestrians [V2P]
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/80—Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
- B—PERFORMING OPERATIONS; TRANSPORTING
- B60—VEHICLES IN GENERAL
- B60R—VEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
- B60R2325/00—Indexing scheme relating to vehicle anti-theft devices
- B60R2325/10—Communication protocols, communication systems of vehicle anti-theft devices
- B60R2325/101—Bluetooth
- B—PERFORMING OPERATIONS; TRANSPORTING
- B60—VEHICLES IN GENERAL
- B60R—VEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
- B60R2325/00—Indexing scheme relating to vehicle anti-theft devices
- B60R2325/10—Communication protocols, communication systems of vehicle anti-theft devices
- B60R2325/103—Near field communication [NFC]
- B—PERFORMING OPERATIONS; TRANSPORTING
- B60—VEHICLES IN GENERAL
- B60R—VEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
- B60R2325/00—Indexing scheme relating to vehicle anti-theft devices
- B60R2325/20—Communication devices for vehicle anti-theft devices
- B60R2325/205—Mobile phones
Definitions
- aspects of the disclosuregenerally relate to out-of-band key sharing using near-field communication (NFC) through the use of vehicle keypads.
- NFCnear-field communication
- Vehicle key fobsmay be used to allow a user to gain access to a vehicle.
- Some fob devicesoperate such that when a key is pressed on the fob, the device sends a code to the vehicle to instruct the vehicle to unlock the vehicle.
- Passive-entry key fobsoperate to provide response to a challenge pulse train sent by the vehicle, where if a proper response is received by the vehicle then the door may be unlocked by a user grasping the door handle.
- Phone-as-a-key (PaaK) systemsare being introduced to allow users to utilize their phones to unlock a vehicle without requiring a key fob device. These systems may operate similar to a key fob, but where the phone communicates with the vehicle over Bluetooth Low Energy or other mobile device wireless technologies. The communication may require a bonded state, whereby an exchange of encryption keys between the phone and vehicle is performed. When performing the bonding, the user may be asked to input a confirmation code to verify the device identifiers.
- NFCNear-field communication
- NFC tags or cardsare data stores which can be read by NFC reader devices.
- NFC cardsmay be used for a variety of applications, including contactless payments and access control. In some cases, NFC functionality may be implemented by smartphones or other mobile devices.
- a vehicleincludes a keypad mounted to an exterior of the vehicle, the keypad having a plurality of buttons, each button representing both a first value and a second value; and a body controller, programmed to receive an input sequence entered via the keypad, validate whether the input sequence matches a predefined keycode, assuming the input sequence correctly entered the first value or the second value according to indications of which values of the keycode are the first value and which are the second value, and confirm pairing a mobile device to the vehicle responsive to the input sequence matching the keycode.
- a methodincludes receiving a keycode, including a sequence of values to pair a mobile device to a vehicle; indicating which of the sequence of values are even and which are odd; receiving an input sequence entered via a keypad of the vehicle, the keypad having a plurality of buttons, each button representing both an even value and an odd value such that it cannot be determined whether an even value or an odd value was entered; validating, by a controller, whether the input sequence matches the keycode, assuming the input sequence entered even or odd values correctly according to predefined indications provided to the controller of which values of the keycode are even and which are odd; and confirming access responsive to the input sequence matching the keycode.
- a systemincludes a keypad mounted to an exterior of a vehicle, the keypad having a plurality of buttons, each button representing both an even value and an odd value; a body controller; and a short-range wireless controller, programmed to identify an initial wireless connection from a mobile device to the vehicle, identify to use the keypad for keycode pairing of the mobile device to the vehicle responsive to receipt, to the keypad, of receipt of a predefined input, generate a keycode including a sequence of values, send the keycode to the mobile device for display, and indicate to the body controller which of the sequence of values of the keycode are even and which are odd, wherein the body controller is programmed to receive an input sequence entered via the keypad, validate whether the input sequence matches a predefined keycode, assuming the input sequence always entered even or odd values according to indications of which values of the keycode are even and which are odd, and confirm access responsive to the input sequence matching the keycode.
- FIG. 1illustrates an example keyless entry system for a vehicle implementing out-of-band key sharing using NFC
- FIG. 2illustrates an example scenario in which a first mobile device is sharing access to a vehicle with a second mobile device
- FIG. 3illustrates an example process for the direct out-of-band pairing of a mobile device to the Bluetooth low energy module to facilitate vehicle access;
- FIG. 4illustrates an example process for the entry of a keycode into the keypad of the vehicle to allow access to the vehicle
- FIG. 5illustrates an example process for the management of a revocable key share access key.
- Vehicle sharingis a useful feature of PaaK systems. Vehicle sharing allows a user to share a digital key from the user's device to a trusted user's phone or other mobile device. Once shared, the key may allow the trusted user to gain access to the vehicle and/or use the vehicle for transportation. However, the vehicle should not be required to have cellular connectivity. For instance, if a cellular subscription for the vehicle terminates, the user should still be able to share their vehicle.
- the usermay be required to input a Bluetooth low energy (BLE) confirmation code on the inside of the vehicle to confirm the device bonding process.
- BLEBluetooth low energy
- an alternative process for out-of-band pairingmay be utilized.
- the mobile device of the sharing userreceives a key share acknowledgement from a cloud server
- the mobile devicemay receive a secure payload from the server that includes the digital key.
- thiswill be a consumer access key (CAK), which is a digital key that allows direct out-of-band pairing to the wireless module.
- CAKconsumer access key
- this payloadmay include the CAK and also a unique access key to grant unlock status. That access key may be unique for key sharing purposes.
- NFCmay then be utilized to obtain vehicle access with the transmission of a secure activation request, as relayed by the key share requester's mobile device, such that temporary access may be granted via an external vehicle keypad. This approach provides vehicle security and also does not require vehicle cellular connectivity for the pairing stage.
- FIG. 1illustrates an example keyless entry system 100 for a vehicle 102 implementing out-of-band key sharing using near-field communication (NFC).
- the system 100may include a body controller 108 in communication with a BLE module (BLEM) 112 having a plurality of BLE transceivers 110 , with NFC sensors 114 , and also with a keypad 118 .
- the NFC sensors 114may be integrated into the keypad 118 .
- These devicesmay be used to receive authentication information from a mobile device 104 to facilitate access to the vehicle 102 .
- the vehicle 102may include various types of automobile, crossover utility vehicle (CUV), sport utility vehicle (SUV), truck, recreational vehicle (RV), boat, plane or other mobile machine for transporting people or goods.
- the vehicle 102may be powered by an internal combustion engine.
- the vehicle 102may be a battery-electric vehicle (BEV) powered by one or more electric motors, a hybrid electric vehicle (HEV) powered by both an internal combustion engine and one or more electric motors, such as a series hybrid electric vehicle (SHEV), a parallel hybrid electrical vehicle (PHEV), or a parallel/series hybrid electric vehicle (PSHEV).
- BEVbattery-electric vehicle
- HEVhybrid electric vehicle
- SHEVseries hybrid electric vehicle
- PHEVparallel hybrid electrical vehicle
- PSHEVparallel/series hybrid electric vehicle
- vehicles 102may have different capabilities with respect to passenger capacity, towing ability and capacity, and storage volume.
- vehicles 102may be associated with unique identifiers, such as VINs.
- the mobile device 104may be any of various types of portable computing device, such as cellular phones, tablet computers, smart watches, laptop computers, portable music players, or other devices having processing and communications capabilities.
- the mobile device 104may include one or more processors configured to execute computer instructions, and a storage medium on which the computer-executable instructions and/or data may be maintained.
- the mobile device 104may further include various wireless transceivers, such as a BLUETOOTH or BLE transceiver, and/or NFC 106 functionality.
- the controller 108may be one of a plurality of controllers of the vehicle 102 configured to perform and manage various vehicle 102 functions under the power of the vehicle battery and/or drivetrain.
- the controllersmay include hardware having processing and communications capabilities.
- the controller 108is represented as a discrete hardware component.
- vehicle controllerssuch as the controller 108 may share physical hardware, firmware, and/or software, such that the functionality of multiple controllers may be integrated into a single controller, and that the functionality of various such controllers may be distributed across a plurality of controllers.
- the BLE transceivers 110may be configured to facilitate communication between the mobile device 104 and the vehicle 102 .
- each BLE transceiver 110may be connected to one or more antennas to form an array that may be used to triangulate or otherwise detect the location of the mobile device 104 .
- the BLE transceivers 110may be controlled by the BLEM 112 , which includes a memory and a processor programmed to send and receive messaging between the mobile device 104 and the vehicle 102 , e.g., to provide for the performance of challenge-response sequences and/or to receive/transmit commands from/to the mobile device 104 /vehicle 102 .
- the mobile device 104may connect to the closest-detected BLE transceiver 110 to communicate with the BLEM 112 of the vehicle 102 .
- the NFC sensors 114may include one or more sensors on the exterior of the vehicle which may be used in conjunction with the mobile device 104 to unlock or lock the vehicle 102 using NFC. Additionally or alternately, the NFC sensors 114 may further include NFC sensors 114 within the vehicle which may be used in conjunction with the mobile device 104 to start the vehicle 102 .
- a lock/unlock mechanism 116may be operably coupled to the controller 108 .
- the controller 108may be configured to control the lock/unlock mechanism 116 to lock/unlock doors of the vehicle 102 in response to the wireless commands transmitted to the body controller 108 by the mobile device 104 via BLE. Additionally, the controller 108 may control the lock/unlock mechanism 116 to unlock the doors responsive to receipt of a signal from the exterior NFC sensors 114 indicative of information received via the NFC 106 functionality of the mobile device 104 .
- the keypad 118may be in electrical communication with the controller 108 .
- the keypad 118may be positioned on an exterior portion or section of the vehicle 102 .
- the keypad 118may be hardwired to the controller 108 .
- the keypad 118may be in RF communication with the controller 108 .
- the keypad 118includes a plurality of mechanical pads, capacitive pads or other buttons 120 a - 120 n which, for example, correspond to numeric characters, alpha characters or any combination of alpha-numeric characters.
- an access codesuch as a personal code or factory code or other personal identification number
- the keypad 118may transmit commands via hardwired signals to the controller 108 which correspond to a sequence of numeric characters, alpha characters, or alpha-numeric characters in response to the user selecting various buttons 120 a - 120 n .
- the keypad 118may transmit commands via RF signals which correspond to the alpha, numeric, or alpha-numeric characters to the controller 108 in response to the user selecting various buttons 120 a - 120 n .
- each of the buttonsmay represent multiple characters, symbols, or numbers. For instance, in some implementations each button represents two consecutive numbers, one even, one odd.
- the controller 108may control the lock/unlock mechanism 116 to lock/unlock the doors in response to receiving the commands, e.g., two or more signals (RF or hardwired) which correspond to a valid sequence of alpha, numeric, or alpha-numeric characters.
- commandse.g., two or more signals (RF or hardwired) which correspond to a valid sequence of alpha, numeric, or alpha-numeric characters.
- the controller 108may include an ignition switch authentication device 122 .
- the ignition switch authentication device 122may also include an RF receiver (not shown) and an antenna (not shown) for receiving RF signals transmitted by the RF transmitters of the keys. It should be noted that in some examples, the ignition switch authentication device 122 may be implemented as a standalone controller (or module).
- the ignition switch authentication device 122is configured to authenticate the particular type of mechanism used to start the vehicle 102 . For example, with the PATS implementation, the key is inserted into an ignition switch 124 to start the vehicle 102 . In such a case, the RF transmitter of the key transmits RF signals having encrypted data therein to the receiver of the ignition switch authentication device 122 .
- the ignition switch authentication device 122decrypts the data to authenticate the key prior to allowing the user to start the vehicle 102 .
- the vehicle 102may also include a telematics control unit (TCU) 126 .
- the TCU 126may include network hardware configured to facilitate communication between the vehicle and other devices of the system 100 .
- the TCU 126may include or otherwise access a cellular modem configured to facilitate communication with a wide-area network 128 .
- the wide-area network 128may include one or more interconnected communication networks such as the Internet, a cable television distribution network, a satellite link network, a local area network, and a telephone network, as some non-limiting examples.
- the cloud server 130may be an example of a networked computing device that is accessible to the vehicle 102 and/or the mobile device 104 over the wide-area network 128 .
- the mobile device 104may include an access application 132 installed to a memory of the mobile device 104 .
- the access application 132may allow the user to utilize the mobile device 104 as an access device to provide entry to the vehicle 102 .
- the access application 132may be able to receive information from the cloud server 130 , e.g., transmitted from the cloud server 130 over the wide-area network 128 .
- FIG. 2illustrates an example scenario 200 in which a first mobile device 104 -A is sharing access to a vehicle 102 with a second mobile device 104 -B.
- the mobile device 104 -Ahas utilized the access application 132 to send a share request 202 over the wide-area network 128 to the cloud server 130 .
- the share request 202indicates assent by the user of the mobile device 104 -A to allow the user of the mobile device 104 -B access to the vehicle 102 .
- the cloud server 130receives this share request 202 over the wide-area network 128 .
- the cloud server 130sends, over the wide-area network 128 , share credentials 204 to the mobile device 104 -B and to the vehicle 102 . These share credentials 204 may be used by the vehicle 102 to validate access of the mobile device 104 -B to the vehicle 102 .
- the share credentials 204may include, in an example, a secure payload from the cloud server 130 that includes a digital access key (e.g., the CAK). In some use cases, this will be only the CAK, which allows direct out-of-band pairing to the BLEM 112 .
- a digital access keye.g., the CAK
- FIG. 3illustrates an example process 300 for the direct out-of-band pairing of a mobile device 104 to the BLEM 112 to facilitate vehicle 102 access.
- the process 300may be performed by a mobile device 104 (e.g., the mobile device 104 -B in the scenario 200 ), in the context of the system 100 .
- the process 300begins at operation 302 responsive to the identification by the mobile device 104 of an initial connection to the vehicle 102 .
- This initial connectionmay be, for instance, via BLE.
- the mobile device 104notifies the user to place the mobile device 104 against the vehicle 102 . This may be done to allow the mobile device 104 to transmit credentials from the mobile device 104 to the vehicle 102 .
- the notification to the usermay be performed in various ways and in various combinations.
- the mobile device 104may provide a visual notification to a screen of the mobile device 104 .
- the mobile device 104may provide an audible notification, such as a predefined chime or a voice message requesting the user to place the mobile device 104 within proximity to the vehicle 102 .
- the voice message or visual notificationmay indicate to the user the location of where the mobile device 104 should be placed, e.g., against an NFC sensor 114 of the vehicle integrated with the keypad 118 .
- the mobile device 104may provide haptic feedback using a haptic feedback device of the mobile device 104 . Responsive to the notification, the user may place the mobile device 104 to the vehicle 102 such that NFC communication between the NFC functionality 106 of the mobile device 104 and the NFC sensors 114 of the vehicle is provided for.
- the mobile device 104provides credentials to the vehicle 102 at operation 306 .
- this transfermay be performed via the NFC communication between the NFC functionality 106 of the mobile device 104 and the NFC sensors 114 of the vehicle.
- the credentials that are transferredmay include, for instance, the CAK received by the mobile device 104 and the vehicle 102 .
- the NFC sensors 114may provide the received information to the controller 108 , which may validate that the CAK matches that which was received from the cloud server 130 .
- the mobile device 104may determine whether the credentials were validated. In an example, the mobile device 104 may receive confirmation over NFC from the vehicle 102 that the credentials were or were not validated as authorized. In another example, the mobile device 104 may not receive any response from the vehicle 102 , which may be interpreted after a predetermined timeout period to be a lack of authorization. If the mobile device 104 is authorized, control passes to operation 310 . Otherwise, the process 300 ends.
- the mobile device 104presents confirmation that the mobile device 104 may be utilized as a PaaK.
- the mobile device 104may execute one or more of to: display a notification indicating so to a display of the mobile device 104 , make a sound indicative of successful authorization, and/or vibrate in a manner indicative of successful authorization.
- the process 300ends.
- the secure payloadmay additionally or alternately include a unique access key to the controller 108 that may be used to grant access to the vehicle 102 .
- That access keymay be unique to a specific user and may be of a length suitable for typing into the keypad 118 of the vehicle 102 .
- the NFC functionality 106 of the mobile device 104 and the NFC sensors 114 of the vehicle 102may then be utilized to provide vehicle access with the transmission of a secure activation request from the mobile device 104 -B to the vehicle 102 , such that temporary access may be granted to the vehicle 102 via the keypad 118 .
- This approachprovides vehicle security and, also, does not require vehicle cellular connectivity at any stage.
- FIG. 4illustrates an example process 400 for the entry of a keycode into the keypad 118 of the vehicle 102 to allow access to the vehicle 102 .
- the process 400may be performed by the vehicle 102 in the scenario 200 , in the context of the system 100 .
- the process 400begins with the vehicle 102 identifying an initial connection between the vehicle 102 and the mobile device 104 (e.g., the mobile device 104 -B of the scenario 200 ). This initial connection may be, for instance, via BLE.
- the vehicle 102identifies that pairing is desired using the keypad 118 . For instance, if the NFC sensors 114 are not functioning properly or too much interference is present, the user may choose to input the BLE confirmation code through the keypad 118 instead. This may be signified with a unique double button press (e.g., the user pressing both the 1 and the 3 ) to inform the controller 108 of BLE pairing mode. This unique press may be followed by transmission of the BLE confirmation code from the BLEM 112 to the controller 108 . Or, in other examples, when performing out-of-band pairing it may generally be necessary to input a confirmation code via the keypad 118 .
- a unique double button presse.g., the user pressing both the 1 and the 3
- the vehicle 102sends information indicative of which digits of the keycode are even and which digits are odd to the controller 108 .
- Thismay allow for the controller 108 to receive the keycode to the buttons 120 , which do not distinguish between even and odd values.
- the keycodemay remain relatively secret.
- the controller 108only interprets the values of the external button 120 presses by their positions (e.g., 1-5 rather than 0-9) the BLEM 112 may signify to the controller 108 which code digits are odd/even when the confirmation code is first generated (e.g., which may be done by the BLEM 112 ). For instance, if the code is “12357”, the BLEM 112 may signify that the second digit is even, such that the user's input will always assume the second input is an even value.
- the vehicle 102sends the received keycode to the controller 108 at operation 408 .
- the keypad 118may receive keypresses to the buttons 120 .
- the keypad 118may, in some examples, collect the entire code and send the entire code to the controller 108 .
- the keypad 118may send each digit of the keycode to the controller 108 and allow the controller 108 to combine the presses into a complete code.
- the vehicle 102validates the keycode. Accordingly, the controller 108 may determine whether the code typed into the keypad is allowable for access of the user of the mobile device 104 . If the code is allowable, then access may be granted and the process 400 ends. If not, then the process 400 also ends (or reverts back to operation 408 to receive another attempt at the keycode).
- a unique key share access keymay be managed by the cloud server 130 .
- the cloud server 130may send a CAK-like security key to the controller 108 (e.g., a code that is much lengthier than the keypad codes that are entered by a user, the code instead having security requirements similar to the CAK).
- This valuemay then be deployed to the key share requestor's phone (e.g., the mobile device 104 -B), such that each subsequent tap after initial connection would transmit the key share access key instead.
- the key share access keymay be transmitted as described in the process 300 , with the key share access key sent instead of the CAK).
- This message provided via NFC 106may include a header such that the BLEM 112 may be instructed to gateway the message to the controller 108 for unlock validation.
- This key share access keymay be also dynamically-generated each time a key share request is made, whereby the key share access key is included with the CAK in the original pairing transmission.
- the key share access keymay then be revocable via a message from the cloud server 130 relayed through owner's phone (e.g., the mobile device 104 -A) once the key share period is over.
- FIG. 5illustrates an example process 500 for the management of a revocable key share access key.
- the process 500may be initiated responsive to receipt of the access credentials from the cloud server 130 .
- the vehicle 102receives a key share access key to the controller 108 .
- the key share access keymay be included in security credentials sent to the vehicle 102 responsive to the mobile device 104 -A of a sharing user allowing the mobile device 104 -B of another user to access the vehicle 102 .
- the vehicle 102deploys the key share access key to the mobile device 104 .
- the mobile device 104 -Bmay perform direct out-of-band pairing to facilitate vehicle access, for example using the process 300 .
- the vehicle 102may provide the key share access key to the mobile device 104 -B, for the mobile device 104 -B to provide in further instances where the mobile device 104 -B requests access to the vehicle 102 .
- the vehicle 102determines whether the key share access key is revoked.
- the vehicle 102may receive a message from the cloud server 130 revoking the key share access key. This may be done, for instance, responsive to the cloud server 130 receiving a message from the mobile device 104 -A indicating that the user no longer wishes to allow the mobile device 104 -B to share the vehicle 102 . If the key is revoked, control passes to operation 510 . Otherwise, control continues to operation 508 .
- the vehicle 102determines whether the key share access key has expired.
- the key share access keymay expire responsive to a timeout (e.g., predefined for key share access keys, specified by the key share access key, etc.).
- the key share access keymay expire responsive to the key share access key being used a predefined number of times (e.g., predefined for key share access keys, specified by the key share access key, etc.). If so, control passes to operation 510 . If not, the process returns to operation 506 .
- the vehicle 102deletes the key share access key from the controller. Accordingly, the key share access key may no longer be available for authentication of users. After operation 510 , the process 500 ends.
- Computing devices described hereinsuch as the mobile devices 104 , controller 108 , and cloud server 130 , generally include computer-executable instructions where the instructions may be executable by one or more computing devices such as those listed above.
- Computer-executable instructionsmay be compiled or interpreted from computer programs created using a variety of programming languages and/or technologies, including, without limitation, and either alone or in combination, JAVATM, C, C++, C#, VISUAL BASIC, JAVASCRIPT, PYTHON, PERL, PL/SQL, etc.
- a processorreceives instructions, e.g., from a memory, a computer-readable medium, etc., and executes these instructions, thereby performing one or more processes, including one or more of the processes described herein.
- instructions and other datamay be stored and transmitted using a variety of computer-readable media.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Mechanical Engineering (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Lock And Its Accessories (AREA)
Abstract
Description
- Aspects of the disclosure generally relate to out-of-band key sharing using near-field communication (NFC) through the use of vehicle keypads.
- Vehicle key fobs may be used to allow a user to gain access to a vehicle. Some fob devices operate such that when a key is pressed on the fob, the device sends a code to the vehicle to instruct the vehicle to unlock the vehicle. Passive-entry key fobs operate to provide response to a challenge pulse train sent by the vehicle, where if a proper response is received by the vehicle then the door may be unlocked by a user grasping the door handle.
- Phone-as-a-key (PaaK) systems are being introduced to allow users to utilize their phones to unlock a vehicle without requiring a key fob device. These systems may operate similar to a key fob, but where the phone communicates with the vehicle over Bluetooth Low Energy or other mobile device wireless technologies. The communication may require a bonded state, whereby an exchange of encryption keys between the phone and vehicle is performed. When performing the bonding, the user may be asked to input a confirmation code to verify the device identifiers.
- Near-field communication (NFC) technology is a mechanism by which electronic devices establish communication by being brought within a short distance of one another (on the order of 4 centimeters). NFC tags or cards are data stores which can be read by NFC reader devices. NFC cards may be used for a variety of applications, including contactless payments and access control. In some cases, NFC functionality may be implemented by smartphones or other mobile devices.
- In one or more illustrative examples, a vehicle includes a keypad mounted to an exterior of the vehicle, the keypad having a plurality of buttons, each button representing both a first value and a second value; and a body controller, programmed to receive an input sequence entered via the keypad, validate whether the input sequence matches a predefined keycode, assuming the input sequence correctly entered the first value or the second value according to indications of which values of the keycode are the first value and which are the second value, and confirm pairing a mobile device to the vehicle responsive to the input sequence matching the keycode.
- In one or more illustrative examples, a method includes receiving a keycode, including a sequence of values to pair a mobile device to a vehicle; indicating which of the sequence of values are even and which are odd; receiving an input sequence entered via a keypad of the vehicle, the keypad having a plurality of buttons, each button representing both an even value and an odd value such that it cannot be determined whether an even value or an odd value was entered; validating, by a controller, whether the input sequence matches the keycode, assuming the input sequence entered even or odd values correctly according to predefined indications provided to the controller of which values of the keycode are even and which are odd; and confirming access responsive to the input sequence matching the keycode.
- In one or more illustrative examples, a system includes a keypad mounted to an exterior of a vehicle, the keypad having a plurality of buttons, each button representing both an even value and an odd value; a body controller; and a short-range wireless controller, programmed to identify an initial wireless connection from a mobile device to the vehicle, identify to use the keypad for keycode pairing of the mobile device to the vehicle responsive to receipt, to the keypad, of receipt of a predefined input, generate a keycode including a sequence of values, send the keycode to the mobile device for display, and indicate to the body controller which of the sequence of values of the keycode are even and which are odd, wherein the body controller is programmed to receive an input sequence entered via the keypad, validate whether the input sequence matches a predefined keycode, assuming the input sequence always entered even or odd values according to indications of which values of the keycode are even and which are odd, and confirm access responsive to the input sequence matching the keycode.
FIG. 1 illustrates an example keyless entry system for a vehicle implementing out-of-band key sharing using NFC;FIG. 2 illustrates an example scenario in which a first mobile device is sharing access to a vehicle with a second mobile device;FIG. 3 illustrates an example process for the direct out-of-band pairing of a mobile device to the Bluetooth low energy module to facilitate vehicle access;FIG. 4 illustrates an example process for the entry of a keycode into the keypad of the vehicle to allow access to the vehicle; andFIG. 5 illustrates an example process for the management of a revocable key share access key.- As required, detailed embodiments of the present invention are disclosed herein; however, it is to be understood that the disclosed embodiments are merely exemplary of the invention that may be embodied in various and alternative forms. The figures are not necessarily to scale; some features may be exaggerated or minimized to show details of particular components. Therefore, specific structural and functional details disclosed herein are not to be interpreted as limiting, but merely as a representative basis for teaching one skilled in the art to variously employ the present invention.
- Vehicle sharing is a useful feature of PaaK systems. Vehicle sharing allows a user to share a digital key from the user's device to a trusted user's phone or other mobile device. Once shared, the key may allow the trusted user to gain access to the vehicle and/or use the vehicle for transportation. However, the vehicle should not be required to have cellular connectivity. For instance, if a cellular subscription for the vehicle terminates, the user should still be able to share their vehicle.
- In some systems the user may be required to input a Bluetooth low energy (BLE) confirmation code on the inside of the vehicle to confirm the device bonding process. This would be undesirable for vehicle sharing, as the new user would be required to enter the vehicle and input the code to gain PaaK capabilities. Instead of requiring the recipient user to enter a code inside the vehicle, an alternative process for out-of-band pairing may be utilized. In the scenario where the mobile device of the sharing user receives a key share acknowledgement from a cloud server, the mobile device may receive a secure payload from the server that includes the digital key. In some use cases, this will be a consumer access key (CAK), which is a digital key that allows direct out-of-band pairing to the wireless module. Alternatively, this payload may include the CAK and also a unique access key to grant unlock status. That access key may be unique for key sharing purposes. NFC may then be utilized to obtain vehicle access with the transmission of a secure activation request, as relayed by the key share requester's mobile device, such that temporary access may be granted via an external vehicle keypad. This approach provides vehicle security and also does not require vehicle cellular connectivity for the pairing stage.
FIG. 1 illustrates an examplekeyless entry system 100 for avehicle 102 implementing out-of-band key sharing using near-field communication (NFC). Thesystem 100 may include abody controller 108 in communication with a BLE module (BLEM)112 having a plurality ofBLE transceivers 110, withNFC sensors 114, and also with akeypad 118. In some cases, theNFC sensors 114 may be integrated into thekeypad 118. These devices may be used to receive authentication information from amobile device 104 to facilitate access to thevehicle 102.- The
vehicle 102 may include various types of automobile, crossover utility vehicle (CUV), sport utility vehicle (SUV), truck, recreational vehicle (RV), boat, plane or other mobile machine for transporting people or goods. In many cases, thevehicle 102 may be powered by an internal combustion engine. As another possibility, thevehicle 102 may be a battery-electric vehicle (BEV) powered by one or more electric motors, a hybrid electric vehicle (HEV) powered by both an internal combustion engine and one or more electric motors, such as a series hybrid electric vehicle (SHEV), a parallel hybrid electrical vehicle (PHEV), or a parallel/series hybrid electric vehicle (PSHEV). As the type and configuration ofvehicle 102 may vary, the capabilities of thevehicle 102 may correspondingly vary. As some other possibilities,vehicles 102 may have different capabilities with respect to passenger capacity, towing ability and capacity, and storage volume. For title, inventory, and other purposes,vehicles 102 may be associated with unique identifiers, such as VINs. - The
mobile device 104 may be any of various types of portable computing device, such as cellular phones, tablet computers, smart watches, laptop computers, portable music players, or other devices having processing and communications capabilities. Themobile device 104 may include one or more processors configured to execute computer instructions, and a storage medium on which the computer-executable instructions and/or data may be maintained. Themobile device 104 may further include various wireless transceivers, such as a BLUETOOTH or BLE transceiver, and/or NFC106 functionality. - The
controller 108 may be one of a plurality of controllers of thevehicle 102 configured to perform and managevarious vehicle 102 functions under the power of the vehicle battery and/or drivetrain. The controllers may include hardware having processing and communications capabilities. As depicted, thecontroller 108 is represented as a discrete hardware component. However, vehicle controllers such as thecontroller 108 may share physical hardware, firmware, and/or software, such that the functionality of multiple controllers may be integrated into a single controller, and that the functionality of various such controllers may be distributed across a plurality of controllers. - The BLE
transceivers 110 may be configured to facilitate communication between themobile device 104 and thevehicle 102. For instance, each BLEtransceiver 110 may be connected to one or more antennas to form an array that may be used to triangulate or otherwise detect the location of themobile device 104. The BLEtransceivers 110 may be controlled by the BLEM112, which includes a memory and a processor programmed to send and receive messaging between themobile device 104 and thevehicle 102, e.g., to provide for the performance of challenge-response sequences and/or to receive/transmit commands from/to themobile device 104/vehicle 102. In an example, themobile device 104 may connect to the closest-detectedBLE transceiver 110 to communicate with the BLEM112 of thevehicle 102. - The
NFC sensors 114 may include one or more sensors on the exterior of the vehicle which may be used in conjunction with themobile device 104 to unlock or lock thevehicle 102 using NFC. Additionally or alternately, theNFC sensors 114 may further includeNFC sensors 114 within the vehicle which may be used in conjunction with themobile device 104 to start thevehicle 102. - A lock/
unlock mechanism 116 may be operably coupled to thecontroller 108. Thecontroller 108 may be configured to control the lock/unlock mechanism 116 to lock/unlock doors of thevehicle 102 in response to the wireless commands transmitted to thebody controller 108 by themobile device 104 via BLE. Additionally, thecontroller 108 may control the lock/unlock mechanism 116 to unlock the doors responsive to receipt of a signal from theexterior NFC sensors 114 indicative of information received via theNFC 106 functionality of themobile device 104. - The
keypad 118 may be in electrical communication with thecontroller 108. Thekeypad 118 may be positioned on an exterior portion or section of thevehicle 102. In one example, thekeypad 118 may be hardwired to thecontroller 108. In another example, thekeypad 118 may be in RF communication with thecontroller 108. Thekeypad 118 includes a plurality of mechanical pads, capacitive pads orother buttons 120a-120nwhich, for example, correspond to numeric characters, alpha characters or any combination of alpha-numeric characters. Thus, to enter a digit of an access code, such as a personal code or factory code or other personal identification number, the user may simply touch or push thecorresponding button 120. - In an example, the
keypad 118 may transmit commands via hardwired signals to thecontroller 108 which correspond to a sequence of numeric characters, alpha characters, or alpha-numeric characters in response to the user selectingvarious buttons 120a-120n. In another example, thekeypad 118 may transmit commands via RF signals which correspond to the alpha, numeric, or alpha-numeric characters to thecontroller 108 in response to the user selectingvarious buttons 120a-120n. In some cases, each of the buttons may represent multiple characters, symbols, or numbers. For instance, in some implementations each button represents two consecutive numbers, one even, one odd. Thecontroller 108 may control the lock/unlock mechanism 116 to lock/unlock the doors in response to receiving the commands, e.g., two or more signals (RF or hardwired) which correspond to a valid sequence of alpha, numeric, or alpha-numeric characters. - The
controller 108 may include an ignitionswitch authentication device 122. The ignitionswitch authentication device 122 may also include an RF receiver (not shown) and an antenna (not shown) for receiving RF signals transmitted by the RF transmitters of the keys. It should be noted that in some examples, the ignitionswitch authentication device 122 may be implemented as a standalone controller (or module). The ignitionswitch authentication device 122 is configured to authenticate the particular type of mechanism used to start thevehicle 102. For example, with the PATS implementation, the key is inserted into anignition switch 124 to start thevehicle 102. In such a case, the RF transmitter of the key transmits RF signals having encrypted data therein to the receiver of the ignitionswitch authentication device 122. The ignitionswitch authentication device 122 decrypts the data to authenticate the key prior to allowing the user to start thevehicle 102. - The
vehicle 102 may also include a telematics control unit (TCU)126. TheTCU 126 may include network hardware configured to facilitate communication between the vehicle and other devices of thesystem 100. For example, theTCU 126 may include or otherwise access a cellular modem configured to facilitate communication with a wide-area network 128. The wide-area network 128 may include one or more interconnected communication networks such as the Internet, a cable television distribution network, a satellite link network, a local area network, and a telephone network, as some non-limiting examples. Thecloud server 130 may be an example of a networked computing device that is accessible to thevehicle 102 and/or themobile device 104 over the wide-area network 128. - The
mobile device 104 may include anaccess application 132 installed to a memory of themobile device 104. Theaccess application 132 may allow the user to utilize themobile device 104 as an access device to provide entry to thevehicle 102. In addition, theaccess application 132 may be able to receive information from thecloud server 130, e.g., transmitted from thecloud server 130 over the wide-area network 128. FIG. 2 illustrates anexample scenario 200 in which a first mobile device104-A is sharing access to avehicle 102 with a second mobile device104-B. In thisscenario 200, the mobile device104-A has utilized theaccess application 132 to send ashare request 202 over the wide-area network 128 to thecloud server 130. Theshare request 202 indicates assent by the user of the mobile device104-A to allow the user of the mobile device104-B access to thevehicle 102. Thecloud server 130 receives thisshare request 202 over the wide-area network 128. In response, thecloud server 130 sends, over the wide-area network 128, sharecredentials 204 to the mobile device104-B and to thevehicle 102. These sharecredentials 204 may be used by thevehicle 102 to validate access of the mobile device104-B to thevehicle 102.- The
share credentials 204 may include, in an example, a secure payload from thecloud server 130 that includes a digital access key (e.g., the CAK). In some use cases, this will be only the CAK, which allows direct out-of-band pairing to theBLEM 112. FIG. 3 illustrates anexample process 300 for the direct out-of-band pairing of amobile device 104 to theBLEM 112 to facilitatevehicle 102 access. In an example, theprocess 300 may be performed by a mobile device104 (e.g., the mobile device104-B in the scenario200), in the context of thesystem 100. As shown, theprocess 300 begins atoperation 302 responsive to the identification by themobile device 104 of an initial connection to thevehicle 102. This initial connection may be, for instance, via BLE.- At
operation 304, themobile device 104 notifies the user to place themobile device 104 against thevehicle 102. This may be done to allow themobile device 104 to transmit credentials from themobile device 104 to thevehicle 102. The notification to the user may be performed in various ways and in various combinations. In one example, themobile device 104 may provide a visual notification to a screen of themobile device 104. In another example, themobile device 104 may provide an audible notification, such as a predefined chime or a voice message requesting the user to place themobile device 104 within proximity to thevehicle 102. The voice message or visual notification may indicate to the user the location of where themobile device 104 should be placed, e.g., against anNFC sensor 114 of the vehicle integrated with thekeypad 118. In yet another example, themobile device 104 may provide haptic feedback using a haptic feedback device of themobile device 104. Responsive to the notification, the user may place themobile device 104 to thevehicle 102 such that NFC communication between theNFC functionality 106 of themobile device 104 and theNFC sensors 114 of the vehicle is provided for. - The
mobile device 104 provides credentials to thevehicle 102 atoperation 306. In an example, this transfer may be performed via the NFC communication between theNFC functionality 106 of themobile device 104 and theNFC sensors 114 of the vehicle. The credentials that are transferred may include, for instance, the CAK received by themobile device 104 and thevehicle 102. Responsive to receipt of the credentials, theNFC sensors 114 may provide the received information to thecontroller 108, which may validate that the CAK matches that which was received from thecloud server 130. - At
operation 308, themobile device 104 may determine whether the credentials were validated. In an example, themobile device 104 may receive confirmation over NFC from thevehicle 102 that the credentials were or were not validated as authorized. In another example, themobile device 104 may not receive any response from thevehicle 102, which may be interpreted after a predetermined timeout period to be a lack of authorization. If themobile device 104 is authorized, control passes tooperation 310. Otherwise, theprocess 300 ends. - At310, the
mobile device 104 presents confirmation that themobile device 104 may be utilized as a PaaK. In an example, themobile device 104 may execute one or more of to: display a notification indicating so to a display of themobile device 104, make a sound indicative of successful authorization, and/or vibrate in a manner indicative of successful authorization. Afteroperation 310, theprocess 300 ends. - Referring back to
FIG. 2 , the secure payload may additionally or alternately include a unique access key to thecontroller 108 that may be used to grant access to thevehicle 102. That access key may be unique to a specific user and may be of a length suitable for typing into thekeypad 118 of thevehicle 102. TheNFC functionality 106 of themobile device 104 and theNFC sensors 114 of thevehicle 102 may then be utilized to provide vehicle access with the transmission of a secure activation request from the mobile device104-B to thevehicle 102, such that temporary access may be granted to thevehicle 102 via thekeypad 118. This approach provides vehicle security and, also, does not require vehicle cellular connectivity at any stage. FIG. 4 illustrates anexample process 400 for the entry of a keycode into thekeypad 118 of thevehicle 102 to allow access to thevehicle 102. In an example, theprocess 400 may be performed by thevehicle 102 in thescenario 200, in the context of thesystem 100. Atoperation 402, theprocess 400 begins with thevehicle 102 identifying an initial connection between thevehicle 102 and the mobile device104 (e.g., the mobile device104-B of the scenario200). This initial connection may be, for instance, via BLE.- At operation404, the
vehicle 102 identifies that pairing is desired using thekeypad 118. For instance, if theNFC sensors 114 are not functioning properly or too much interference is present, the user may choose to input the BLE confirmation code through thekeypad 118 instead. This may be signified with a unique double button press (e.g., the user pressing both the1 and the3) to inform thecontroller 108 of BLE pairing mode. This unique press may be followed by transmission of the BLE confirmation code from theBLEM 112 to thecontroller 108. Or, in other examples, when performing out-of-band pairing it may generally be necessary to input a confirmation code via thekeypad 118. - At
operation 406, thevehicle 102 sends information indicative of which digits of the keycode are even and which digits are odd to thecontroller 108. This may allow for thecontroller 108 to receive the keycode to thebuttons 120, which do not distinguish between even and odd values. Moreover, in only indicating the evenness/oddness (e.g., the least significant bit of each digit), the keycode may remain relatively secret. In some implementations, thecontroller 108 only interprets the values of theexternal button 120 presses by their positions (e.g., 1-5 rather than 0-9) theBLEM 112 may signify to thecontroller 108 which code digits are odd/even when the confirmation code is first generated (e.g., which may be done by the BLEM112). For instance, if the code is “12357”, theBLEM 112 may signify that the second digit is even, such that the user's input will always assume the second input is an even value. - The
vehicle 102 sends the received keycode to thecontroller 108 atoperation 408. In an example, thekeypad 118 may receive keypresses to thebuttons 120. Thekeypad 118 may, in some examples, collect the entire code and send the entire code to thecontroller 108. In another example, thekeypad 118 may send each digit of the keycode to thecontroller 108 and allow thecontroller 108 to combine the presses into a complete code. - At410, the
vehicle 102 validates the keycode. Accordingly, thecontroller 108 may determine whether the code typed into the keypad is allowable for access of the user of themobile device 104. If the code is allowable, then access may be granted and theprocess 400 ends. If not, then theprocess 400 also ends (or reverts back tooperation 408 to receive another attempt at the keycode). - Referring back to
FIG. 2 , a unique key share access key may be managed by thecloud server 130. When PaaK is first configured on thevehicle 102, thecloud server 130 may send a CAK-like security key to the controller108 (e.g., a code that is much lengthier than the keypad codes that are entered by a user, the code instead having security requirements similar to the CAK). This value may then be deployed to the key share requestor's phone (e.g., the mobile device104-B), such that each subsequent tap after initial connection would transmit the key share access key instead. (For instance, the key share access key may be transmitted as described in theprocess 300, with the key share access key sent instead of the CAK). This message provided viaNFC 106 may include a header such that theBLEM 112 may be instructed to gateway the message to thecontroller 108 for unlock validation. - This key share access key may be also dynamically-generated each time a key share request is made, whereby the key share access key is included with the CAK in the original pairing transmission. The key share access key may then be revocable via a message from the
cloud server 130 relayed through owner's phone (e.g., the mobile device104-A) once the key share period is over. FIG. 5 illustrates anexample process 500 for the management of a revocable key share access key. In an example, theprocess 500 may be initiated responsive to receipt of the access credentials from thecloud server 130.- At
operation 502, thevehicle 102 receives a key share access key to thecontroller 108. In an example, the key share access key may be included in security credentials sent to thevehicle 102 responsive to the mobile device104-A of a sharing user allowing the mobile device104-B of another user to access thevehicle 102. - At
operation 504, thevehicle 102 deploys the key share access key to themobile device 104. In an example, the mobile device104-B may perform direct out-of-band pairing to facilitate vehicle access, for example using theprocess 300. Responsive to validation of the credentials in theprocess 300, thevehicle 102 may provide the key share access key to the mobile device104-B, for the mobile device104-B to provide in further instances where the mobile device104-B requests access to thevehicle 102. - At
operation 506, thevehicle 102 determines whether the key share access key is revoked. In an example, thevehicle 102 may receive a message from thecloud server 130 revoking the key share access key. This may be done, for instance, responsive to thecloud server 130 receiving a message from the mobile device104-A indicating that the user no longer wishes to allow the mobile device104-B to share thevehicle 102. If the key is revoked, control passes tooperation 510. Otherwise, control continues tooperation 508. - At
operation 508, thevehicle 102 determines whether the key share access key has expired. In an example, the key share access key may expire responsive to a timeout (e.g., predefined for key share access keys, specified by the key share access key, etc.). In another example, the key share access key may expire responsive to the key share access key being used a predefined number of times (e.g., predefined for key share access keys, specified by the key share access key, etc.). If so, control passes tooperation 510. If not, the process returns tooperation 506. - At
operation 510, thevehicle 102 deletes the key share access key from the controller. Accordingly, the key share access key may no longer be available for authentication of users. Afteroperation 510, theprocess 500 ends. - Computing devices described herein, such as the
mobile devices 104,controller 108, andcloud server 130, generally include computer-executable instructions where the instructions may be executable by one or more computing devices such as those listed above. Computer-executable instructions may be compiled or interpreted from computer programs created using a variety of programming languages and/or technologies, including, without limitation, and either alone or in combination, JAVA™, C, C++, C#, VISUAL BASIC, JAVASCRIPT, PYTHON, PERL, PL/SQL, etc. In general, a processor (e.g., a microprocessor) receives instructions, e.g., from a memory, a computer-readable medium, etc., and executes these instructions, thereby performing one or more processes, including one or more of the processes described herein. Such instructions and other data may be stored and transmitted using a variety of computer-readable media. - With regard to the processes, systems, methods, heuristics, etc. described herein, it should be understood that, although the steps of such processes, etc. have been described as occurring according to a certain ordered sequence, such processes could be practiced with the described steps performed in an order other than the order described herein. It further should be understood that certain steps could be performed simultaneously, that other steps could be added, or that certain steps described herein could be omitted. In other words, the descriptions of processes herein are provided for the purpose of illustrating certain embodiments, and should in no way be construed so as to limit the claims.
- Accordingly, it is to be understood that the above description is intended to be illustrative and not restrictive. Many embodiments and applications other than the examples provided would be apparent upon reading the above description. The scope should be determined, not with reference to the above description, but should instead be determined with reference to the appended claims, along with the full scope of equivalents to which such claims are entitled. It is anticipated and intended that future developments will occur in the technologies discussed herein, and that the disclosed systems and methods will be incorporated into such future embodiments. In sum, it should be understood that the application is capable of modification and variation.
- All terms used in the claims are intended to be given their broadest reasonable constructions and their ordinary meanings as understood by those knowledgeable in the technologies described herein unless an explicit indication to the contrary in made herein. In particular, use of the singular articles such as “a,” “the,” “said,” etc. should be read to recite one or more of the indicated elements unless a claim recites an explicit limitation to the contrary.
- The abstract of the disclosure is provided to allow the reader to quickly ascertain the nature of the technical disclosure. It is submitted with the understanding that it will not be used to interpret or limit the scope or meaning of the claims. In addition, in the foregoing Detailed Description, it can be seen that various features are grouped together in various embodiments for the purpose of streamlining the disclosure. This method of disclosure is not to be interpreted as reflecting an intention that the claimed embodiments require more features than are expressly recited in each claim. Rather, as the following claims reflect, inventive subject matter lies in less than all features of a single disclosed embodiment. Thus, the following claims are hereby incorporated into the Detailed Description, with each claim standing on its own as a separately claimed subject matter.
- While exemplary embodiments are described above, it is not intended that these embodiments describe all possible forms of the invention. Rather, the words used in the specification are words of description rather than limitation, and it is understood that various changes may be made without departing from the spirit and scope of the invention. Additionally, the features of various implementing embodiments may be combined to form further embodiments of the invention.
Claims (20)
1. A vehicle comprising:
a keypad mounted to an exterior of the vehicle, the keypad having a plurality of buttons;
a body controller, programmed to
receive an input sequence entered via the keypad,
validate whether the input sequence matches a predefined keycode, and
confirm pairing a mobile device to the vehicle responsive to the input sequence matching the keycode; and
a short-range wireless controller, programmed to
identify an initial wireless connection from the mobile device to the vehicle,
identify to use the keypad for keycode pairing of the mobile device to the vehicle,
generate the keycode,
send the keycode to the mobile device for display, and
responsive to successful authentication of the mobile device to the vehicle, send a key share access key to the mobile device to be provided from the mobile device to the vehicle for further authentications.
2. The vehicle ofclaim 17 , wherein, for each button, the first value is an even number, and the second value is an odd number.
3. (canceled)
4. The vehicle ofclaim 1 , wherein the short-range wireless controller is further programmed to identify to use the keypad responsive to receipt of a predefined input to the keypad.
5. The vehicle ofclaim 4 , wherein the predefined input is a simultaneous press of a plurality of the buttons.
6. The vehicle ofclaim 1 , wherein the initial wireless connection is over Bluetooth low energy (BLE).
7. (canceled)
8. The vehicle ofclaim 1 , wherein the body controller is further programmed to receive a message from a cloud server revoking the key share access key, such that the key share access key is no longer available for further authentications.
9. The vehicle ofclaim 1 , wherein the body controller is further programmed to expire the key share access key responsive to the key share access key being used for successful access a predefined number of times.
10. A method comprising:
receiving a keycode, including a sequence of values to pair a mobile device to a vehicle;
receiving an input sequence entered via a keypad of the vehicle, the keypad having a plurality of buttons;
validating, by a controller, whether the input sequence matches the keycode;
confirming access responsive to the input sequence matching the keycode; and
responsive to successful authentication of the mobile device to the vehicle, sending a key share access key to the mobile device to be provided from the mobile device to the vehicle for further authentications.
11. The method ofclaim 10 , further comprising:
identifying an initial wireless connection from the mobile device to the vehicle;
identifying to use the keypad for keycode pairing of the mobile device to the vehicle;
generating the keycode; and
sending the keycode to the mobile device for display.
12. (canceled)
13. The method ofclaim 10 , further comprising receiving a message from a cloud server revoking the key share access key, such that the key share access key is no longer available for further authentications.
14. The method ofclaim 10 , further comprising expiring the key share access key responsive to the key share access key being used for successful access a predefined number of times.
15. A method, comprising:
receiving a keycode, including a sequence of values to pair a mobile device to a vehicle;
receiving an input sequence entered via a keypad of the vehicle, the keypad having a plurality of buttons;
validating, by a controller, whether the input sequence matches the keycode;
confirming access responsive to the input sequence matching the keycode; and
responsive to identifying an initial wireless connection from the mobile device to the vehicle, displaying a message indicating the mobile device to be placed against a near-field communication reader of the vehicle to transmit a key to the vehicle.
16. A system comprising:
a keypad mounted to an exterior of a vehicle, the keypad having a plurality of buttons a body controller; and
a short-range wireless controller, programmed to
identify an initial wireless connection from a mobile device to the vehicle,
identify to use the keypad for keycode pairing of the mobile device to the vehicle responsive to receipt, to the keypad, of receipt of a predefined input including a simultaneous press of a plurality of the buttons,
generate a keycode including a sequence of values,
send the keycode to the mobile device for display, and
responsive to successful authentication of the mobile device to the vehicle, send a key share access key to the mobile device to be provided from the mobile device to the vehicle for further authentications,
wherein the body controller is programmed to
receive an input sequence entered via the keypad,
validate whether the input sequence matches the keycode, and
confirm access responsive to the input sequence matching the keycode.
17. The vehicle ofclaim 1 , wherein:
each button of the keypad represents both a first value and a second value;
the short-range wireless controller is programmed to indicate to the body controller which values of the keycode are the first value and which are the second value; and
the body controller is further programmed to validate the input sequence assuming the input sequence correctly entered the first value or the second value according to indications of which values of the keycode are the first value and which are the second value.
18. The method ofclaim 10 , further comprising:
indicating which of the sequence of values are even and which are odd, each button representing both an even value and an odd value such that it cannot be determined whether an even value or an odd value was entered; and
validating the input sequence assuming the input sequence entered even or odd values correctly according to predefined indications provided to the controller of which values of the keycode are even and which are odd.
19. The method ofclaim 15 , further comprising:
indicating which of the sequence of values are even and which are odd, each button representing both an even value and an odd value such that it cannot be determined whether an even value or an odd value was entered; and
validating the input sequence assuming the input sequence entered even or odd values correctly according to predefined indications provided to the controller of which values of the keycode are even and which are odd.
20. The system ofclaim 16 , wherein:
each button of the keypad represents both a first value and a second value;
the short-range wireless controller is programmed to indicate to the body controller which values of the keycode are the first value and which are the second value; and
the body controller is further programmed to validate the input sequence assuming the input sequence correctly entered the first value or the second value according to indications of which values of the keycode are the first value and which are the second value.
Priority Applications (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US16/564,750US10924924B1 (en) | 2019-09-09 | 2019-09-09 | Out-of-band key sharing using near-field communication |
| DE102020122975.5ADE102020122975A1 (en) | 2019-09-09 | 2020-09-02 | EXTERNAL BAND SHARING OF A KEY USING NEAR FIELD COMMUNICATION |
| CN202010911279.4ACN112562123A (en) | 2019-09-09 | 2020-09-02 | Out-of-band key sharing using near field communication |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US16/564,750US10924924B1 (en) | 2019-09-09 | 2019-09-09 | Out-of-band key sharing using near-field communication |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| US10924924B1 US10924924B1 (en) | 2021-02-16 |
| US20210076208A1true US20210076208A1 (en) | 2021-03-11 |
Family
ID=74570060
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US16/564,750ActiveUS10924924B1 (en) | 2019-09-09 | 2019-09-09 | Out-of-band key sharing using near-field communication |
Country Status (3)
| Country | Link |
|---|---|
| US (1) | US10924924B1 (en) |
| CN (1) | CN112562123A (en) |
| DE (1) | DE102020122975A1 (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11537701B2 (en)* | 2020-04-01 | 2022-12-27 | Toyota Motor North America, Inc. | Transport related n-factor authentication |
| US20230319907A1 (en)* | 2020-09-14 | 2023-10-05 | Bayerische Motoren Werke Aktiengesellschaft | Device with Two Communication Devices |
| EP4247022A4 (en)* | 2020-12-30 | 2024-05-08 | BYD Company Limited | SYSTEM AND METHOD FOR SHARING A VIRTUAL KEY |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP7057944B2 (en)* | 2018-11-15 | 2022-04-21 | 株式会社東海理化電機製作所 | Authentication system and authentication method |
| JP7046891B2 (en)* | 2019-11-20 | 2022-04-04 | 本田技研工業株式会社 | Vehicle control system and mobile device |
| CN115303227A (en)* | 2022-08-26 | 2022-11-08 | 惠州市德赛西威智能交通技术研究院有限公司 | Digital key pairing method and system, digital key and automobile |
| WO2024073315A1 (en)* | 2022-09-29 | 2024-04-04 | Baker Hughes Holdings Llc | Precise number selection in one-handed operative equipment |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20160278151A1 (en)* | 2013-11-06 | 2016-09-22 | Lg Electronics Inc. | Method and apparatus for establishing device-to-device connection in wireless communication system |
Family Cites Families (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20110028091A1 (en)* | 2009-08-03 | 2011-02-03 | Motorola, Inc. | Method and system for near-field wireless device pairing |
| US8650613B2 (en)* | 2009-11-17 | 2014-02-11 | Red Hat, Inc. | Simplified pairing for wireless devices |
| US8432261B2 (en)* | 2010-02-26 | 2013-04-30 | GM Global Technology Operations LLC | Simplified device pairing employing near field communication tags |
| US9083546B2 (en)* | 2012-01-31 | 2015-07-14 | Rajendra Padma Sadhu | System and method for communicating health parameters of an occupant in an automobile and a dynamic operation of the automobile and home automation |
| US11127230B2 (en)* | 2018-07-09 | 2021-09-21 | Ikeyless, Llc | Systems and methods for creating key backups by identifying and storing unique key information and for replicating unique keys from key backups |
| US10529161B2 (en)* | 2013-12-31 | 2020-01-07 | Yaowu Ma | Keys and locks |
| GB2540387A (en)* | 2015-07-15 | 2017-01-18 | Ford Global Tech Llc | Improvements in or relating to electric vehicles |
| US10467429B2 (en)* | 2016-09-14 | 2019-11-05 | Faraday & Future Inc. | Systems and methods for secure user profiles |
| US10412581B2 (en) | 2017-02-14 | 2019-09-10 | Ford Global Technologies, Llc | Secure session communication between a mobile device and a base station |
| US10231273B2 (en) | 2017-06-02 | 2019-03-12 | GM Global Technology Operations LLC | Vehicle wireless device connection management with switchover of primary connected device |
| US10419984B2 (en) | 2017-06-19 | 2019-09-17 | GM Global Technology Operations LLC | Wireless device connection management |
| US10486646B2 (en) | 2017-09-29 | 2019-11-26 | Apple Inc. | Mobile device for communicating and ranging with access control system for automatic functionality |
| US10356537B2 (en)* | 2017-12-01 | 2019-07-16 | Semiconductor Components Industries, Llc | All-in-one method for wireless connectivity and contactless battery charging of small wearables |
- 2019
- 2019-09-09USUS16/564,750patent/US10924924B1/enactiveActive
- 2020
- 2020-09-02DEDE102020122975.5Apatent/DE102020122975A1/enactivePending
- 2020-09-02CNCN202010911279.4Apatent/CN112562123A/enactivePending
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20160278151A1 (en)* | 2013-11-06 | 2016-09-22 | Lg Electronics Inc. | Method and apparatus for establishing device-to-device connection in wireless communication system |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11537701B2 (en)* | 2020-04-01 | 2022-12-27 | Toyota Motor North America, Inc. | Transport related n-factor authentication |
| US20230319907A1 (en)* | 2020-09-14 | 2023-10-05 | Bayerische Motoren Werke Aktiengesellschaft | Device with Two Communication Devices |
| EP4247022A4 (en)* | 2020-12-30 | 2024-05-08 | BYD Company Limited | SYSTEM AND METHOD FOR SHARING A VIRTUAL KEY |
| US12323792B2 (en) | 2020-12-30 | 2025-06-03 | Byd Company Limited | Virtual key sharing system and method |
Also Published As
| Publication number | Publication date |
|---|---|
| DE102020122975A1 (en) | 2021-03-11 |
| CN112562123A (en) | 2021-03-26 |
| US10924924B1 (en) | 2021-02-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10924924B1 (en) | Out-of-band key sharing using near-field communication | |
| JP6445235B2 (en) | Method of pairing mobile phone and automobile, and locking / unlocking system | |
| EP2719584B1 (en) | Electronic key registration system | |
| JP6670801B2 (en) | Car sharing system and car sharing program | |
| EP2157552B1 (en) | Electromechanical lock | |
| EP2492877B1 (en) | Electronic key system | |
| JP5902597B2 (en) | Electronic key registration system | |
| CN107564145B (en) | Automobile dual-mode automatic door opening and closing system with built-in safety chip and method thereof | |
| US20080066186A1 (en) | Method and Service Control Center for Updating Authorization Data in an Access Arrangement | |
| CN101198758B (en) | Authentication apparatus | |
| US11260825B2 (en) | Locking and unlocking system | |
| US10315624B2 (en) | Button assembly device for controlling access to a vehicle | |
| CN107953852A (en) | Biological identification simultaneously uses electron key system | |
| CN103310518A (en) | Method and system for opening vehicle door | |
| JP2007132085A (en) | Electronic key system and communication unit | |
| JP7206794B2 (en) | mobile control system | |
| JP2019203270A (en) | Authentic information issuing device and delivery system | |
| US20070152801A1 (en) | System for harmonizing a motor vehicle's status information between at least two ID transmitters | |
| JP2007063800A5 (en) | ||
| CN109747588A (en) | A kind of Car sharing method and automobile key | |
| JP2018180842A (en) | User authentication system and user authentication method | |
| JP2021197650A (en) | Communication system and communication method | |
| JP2016211259A (en) | Unauthorized communication establishment prevention system | |
| JP7363527B2 (en) | verification system | |
| JP2022042102A (en) | Registration device, terminal machine, and registration method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| AS | Assignment | Owner name:FORD GLOBAL TECHNOLOGIES, LLC, MICHIGAN Free format text:ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:HASSANI, ALI;DELONG, AARON MATTHEW;ELANGOVAN, VIVEKANANDH;AND OTHERS;REEL/FRAME:050317/0001 Effective date:20190828 | |
| FEPP | Fee payment procedure | Free format text:ENTITY STATUS SET TO UNDISCOUNTED (ORIGINAL EVENT CODE: BIG.); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY | |
| STCF | Information on status: patent grant | Free format text:PATENTED CASE | |
| MAFP | Maintenance fee payment | Free format text:PAYMENT OF MAINTENANCE FEE, 4TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1551); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY Year of fee payment:4 |