Search

EP-3803809-B1 - METHOD AND SYSTEM FOR DATA TRANSFER BETWEEN A MOBILE DEVICE AND A READER DEVICE

EP3803809B1EP 3803809 B1EP3803809 B1EP 3803809B1EP-3803809-B1

Inventors

  • STUDERUS, PAUL
  • PLÜSS, Marcel

Dates

Publication Date
20260506
Application Date
20190523

Claims (18)

  1. Method of data transfer between a mobile device (3) and a reader device (2), comprising the following steps: transmitting (S3), via an ultra-wideband transmission (T3), from an ultra-wideband communications module (1) to the reader device (2), a request value; determining (S4), by the reader device (2), a distance (D1) between the ultra-wide-band communications module (1) and the reader device (2) based on transmission properties of the ultra-wideband transmission (T3); generating (S5), by the reader device (2), a validation value, using the request value from the ultra-wideband communications module (1), and transmitting (S6) the validation value, via a wireless transmission (T6), from the reader device (2) to the mobile device (3), if the distance (D1) between the ultra-wideband module (1) and the reader device (2) is smaller than a predefined value; verifying (S7), in the mobile device (3), the validation value using the request value; and enabling (S8), in the mobile device (3), further data transfer (S9) between the mobile device (3) and the reader device (2), upon affirmative verifying of the validation value.
  2. The method of claim 1, wherein the method further comprises transmitting (S2) the request value, via a wired transmission (T2), from the ultra-wideband communications module (1) to the mobile device (3) or vice versa.
  3. The method of claim 1, wherein the method further comprises transmitting (S2) the request value, via a wireless transmission (T2), from the ultra-wideband communications module (1) to the mobile device (3) or vice versa.
  4. The method of claim 3, wherein the method further comprises determining a distance (D2) between the ultra-wideband communications module (1) and the mobile device (3).
  5. The method of one of claims 1 to 4, further comprising using two or more antennas (211, 212) to determine two or more distances (D1, D3) between the ultra-wide-band communications module (1) and one of the two or more antennas, respectively; determining whether the ultra-wideband communications module (1) is outside an access controlled area (6) or inside the access controlled area (6), using the two or more distances; and generating the validation value only if the ultra-wideband communications module is outside the access controlled area (6).
  6. The method of one of claims 1 to 5, wherein determining (S4) a distance (D1, D3) uses transmission properties including at least one of: a time difference, an amplitude difference, and a phase difference of the ultra-wideband transmission (T3).
  7. The method of one of claims 1 to 6, wherein the request value and the validation value are digitally signed, and wherein verifying (S7) the validation value further comprises authenticating the digitally signed request value and the digitally signed validation value by verifying their digital signatures.
  8. The method of one of claims 1 to 7, wherein transmitting (S6) the validation value from the reader device (3) to the mobile device (2) comprises an ultra-wideband transmission (S61) from the reader device (2) to the ultra-wideband communications module (1) and a wired or wireless transmission (S62) from the ultra-wide-band communications module (1) to the mobile device (3), and wherein further data transfer (S9) between the mobile device (3) and the reader device (2) comprises a wired or wireless transmission (S91) between the mobile device and the ultra-wideband communications module (1), and an ultra-wideband transmission (S92) between the ultra-wideband communications module (1) and the reader device (2).
  9. A system for data transfer between a mobile device (3) and a reader device (2) comprising: an ultra-wideband communications module (1) configured to transmit (S3), via an ultra-wideband transmission (T3), a request value to the reader device (2), a reader device (2) comprising an ultra-wideband transceiver (21), a wireless communications module (23) and a processor (22), and a mobile device (3), the reader device (2) being configured to: receive, by the ultra-wideband transceiver (21) via the ultra-wideband transmission (T3), the request value; determine (S4), by the processor (22), a distance (D1) between the ultra-wideband communications module (1) and the reader device (2) based on transmission properties of the ultra-wideband transmission (T3); generate (S5), by the processor (22), a validation value using the request value from the ultra-wideband communications module (1); and transmit (S6), using the wireless communications module (23), the validation value, via a wireless transmission (T6), from the reader device (2) to the mobile device (3), if the distance (D1) between the ultra-wideband module (1) and the reader device (2) is smaller than a predefined value, the mobile device (3) comprising a wireless communications module (32) and a processor (31), the mobile device (3) being configured to: receive, by the wireless communications module (32) via the wireless transmission (T6), the validation value from the reader device (2); verify (S7), by the processor (31) the validation value using the request value; and enable (S8), by the processor (31) further data transfer (S9) between the mobile device (3) and the reader device (2) upon affirmative verification of the validation value.
  10. The system of claim 9, further configured to transmit (S2) the request value, via a wired transmission (T2), from the ultra-wideband communications module (1) to the mobile device (3) or vice versa.
  11. The system of claim 9, further configured to transmit (S2) the request value, via a wireless transmission (T2), from the ultra-wideband communications module (1) to the mobile device (3) or vice versa.
  12. The system of claim 11, further configured to determine a distance (D2) between the ultra-wideband communications module (1) and the mobile device (3).
  13. The system of one of the claims 9 to 12, wherein the ultra-wideband transceiver (21) comprises two or more antennas (211, 212); and the processor (22) of the reader device (2) is configured to determine two or more distances (D1, D3), between the ultra-wideband communications module (1) and one of the antennas, respectively, based on transmission properties of the ultra-wideband transmission (T3), to determine whether the ultra-wideband communications module (1) is outside an access controlled area (6) or inside an access controlled area (6), using the two or more distances, and to generate the validation value, if the ultra-wideband communications module (1) is outside the access controlled area (6).
  14. The system of one of the claim 9 to 13, wherein the processor (22) of the reader device (2) is configured to determine a distance (D1, D3) using transmission properties including at least one of: a time difference, an amplitude difference, and a phase difference of the ultra-wideband transmission (T3).
  15. The system of one of claims 9 to 14, wherein the processor (22) of the reader device (2) is configured to receive a digitally signed request value and to transmit a digitally signed validation value.
  16. The system of one of claims 9 to 15, wherein the wireless communications module (23) of the reader device (2) is configured for wireless transmission (T6, T9) using at least one of: Bluetooth, Bluetooth Low Energy, a Wireless Local Area Network, ZigBee, Radio Frequency Identification, Z-Wave, and Near Field Communication.
  17. The system of one of claims 9 to 16, wherein the ultra-wideband transceiver (21) of the reader device (2) is further configured to transmit the validation value to the mobile device (3), via an ultra-wideband transmission (T61) from the ultra-wide-band transceiver (21) to the ultra-wideband communications module (1) and a wired or wireless transmission (T62) from the ultra-wideband communications module (1) to the mobile device (3), and wherein the wireless communications module (23) of the reader device (2) is further configured to enable further data transfer between the reader device (2) and the mobile device (3), via a transmission (T91) between the mobile device (3) and the ultra-wideband communications module (1) and an ultra-wideband transmission (T92) between the ultra-wideband communications module (1) and the reader device (2).
  18. The system of one of the claims 9 to 17, wherein the ultra-wideband communications module (1) is further configured to receive the validation value, via an ultra-wideband transmission (T7) from the reader device (2), and wherein the processor (31) of the mobile device (3) is further configured to enable data transfer between the mobile device (3) and the reader device (2) via an ultra-wideband transmission (T9).

Description

FIELD OF THE INVENTION The present invention relates to a method and device for data transfer between a mobile device and a reader device. Specifically, the present invention relates to a method, a reader device, and a mobile system for data transfer between the mobile device and the reader device. BACKGROUND OF THE INVENTION Keyless entry systems have become widely used in applications ranging from vehicle entry systems and vehicle access control systems to building access control. For very close-range applications, a radio-frequency identification (RFID) transponder (or tag) is often used, which has mostly replaced earlier magnetic stripe cards. Other current solutions use infrared systems or radio systems to transmit an authenticating signal from a user device to a vehicle security system or to a building access device. The authenticating can be initiated either by the user, for instance by pressing a button on the user device, or from the access device itself which periodically transmits request signals and awaits a response message. These current systems involve specific devices for each type of access point, such that users are often required to carry several user devices to access their vehicle, their workplace building, their gym and other such access controlled areas. This makes the existing solutions of devices and systems inefficient and not very user friendly. As the communicating range between a user device and an access device increases, the convenience and ease-of-use increases, because the user device does not need to be placed in very close range, such as less than one centimeter. However as the range increases, potential new security issues also arise. This is because, if there are several transponders in the vicinity of a reader device, in a situation such as a queue, it can become unclear if is indeed the person at the front of the queue who has the necessary authorization when another authorized user is also within range. Approaches have been introduced to reduce the chance of granting entry to an unauthorized third party. In one approach the chosen frequency can limit the range, for example 13.56 MHz High Frequency (HF) has a typical read range of between 1 cm and 1 m. Another approach involves using a technology with a higher range and then evaluating the distance between the reader device and the transponder based on the signal path loss of the received signal. This does not allow a very precise distance measurement because of signal loss and interference due to surfaces, absorption due to air humidity, anisotropic antenna responses, and imprecisely calibrated devices. The maximum allowable distance for authorizing access may be location specific, i.e. for a vehicle access system it might be larger than for an entry-way access system. However, relatively simple relay attacks using signal repeaters or amplifiers can fool the system into granting access, even when the user device and the access device are far apart. This has enabled unauthorized access and has left users and providers of access control devices with a need for higher security methods. WO 2017/144348A1 describes a mobile device for adapting mobile, portable communications devices to security systems, in particular for the key-less activation of an entry system for vehicles, wherein a modular unit is configured such that a communication between the mobile device and the security system is possible. WO 2017/17121452 A1 describes a method for distance measurement based on a time difference between a challenge and a response message, wherein the challenge and response messages are transmitted by a transmission protocol in which the corresponding message is transmitted by a transformed spreading code. WO 2014/064296 A1 discloses a vehicle access system having at least one sensor for detecting a user. A controller is provided for controlling the opening and/or closing of a vehicle opening. A detector is also provided for detecting a remote unit. The controller is configured to activate the at least one sensor when the detector detects the remote unit. However, WO 2014/064296 A1 does not enable preventing authentication against a reader device, which has not been explicitly addressed. SUMMARY OF THE INVENTION It is an object of this invention to provide a method and system for data transfer between a mobile device and a reader device. In particular, it is an object of the present invention to provide a method and system for the efficient and secure data transfer between a mobile device and a reader device. According to the present invention, these objects are achieved through the features of the independent claims. In addition, further advantageous embodiments follow from the dependent claims. According to the present invention, the above-mentioned objects are particularly achieved in a method of data transfer between a mobile device and a reader device, comprising transmitting, via an ultra-wideband transmission, from an ultra