U.S. patent application number 16/422037 was filed with the patent office on 2020-11-26 for systems and methods of a doorbell device initiating a state change of an access control device and/or a control panel responsive to two-factor authentication.
The applicant listed for this patent is Ademco Inc.. Invention is credited to Andrew Covi, Travis Read.
Application Number | 20200372733 16/422037 |
Document ID | / |
Family ID | 1000005207336 |
Filed Date | 2020-11-26 |
![](/patent/app/20200372733/US20200372733A1-20201126-D00000.png)
![](/patent/app/20200372733/US20200372733A1-20201126-D00001.png)
![](/patent/app/20200372733/US20200372733A1-20201126-D00002.png)
![](/patent/app/20200372733/US20200372733A1-20201126-D00003.png)
United States Patent
Application |
20200372733 |
Kind Code |
A1 |
Read; Travis ; et
al. |
November 26, 2020 |
SYSTEMS AND METHODS OF A DOORBELL DEVICE INITIATING A STATE CHANGE
OF AN ACCESS CONTROL DEVICE AND/OR A CONTROL PANEL RESPONSIVE TO
TWO-FACTOR AUTHENTICATION
Abstract
Systems and methods of a doorbell device initiating a state
change of an access control device and/or a control panel
responsive to two-factor authentication are provided. Such systems
and methods can include the doorbell device receiving first access
credentials from a first device, determining whether the first
access credentials are valid, and determining whether the first
device has been authenticated with two factors by determining
whether an indication of two-factor authentication of the first
device has been received from the first device or by soliciting and
validating second access credentials from a second device. When the
first access credentials are valid and the first device has been
authenticated with the two factors, the doorbell device can
transmit a state change command to the access control device that
controls access to a secured area associated with the doorbell
device and/or the control panel that monitors the secured area.
Inventors: |
Read; Travis; (Little
Canada, MN) ; Covi; Andrew; (Golden Valley,
MN) |
|
Applicant: |
Name |
City |
State |
Country |
Type |
Ademco Inc. |
Golden Valley |
MN |
US |
|
|
Family ID: |
1000005207336 |
Appl. No.: |
16/422037 |
Filed: |
May 24, 2019 |
Current U.S.
Class: |
1/1 |
Current CPC
Class: |
G07C 9/23 20200101; H04W
12/06 20130101 |
International
Class: |
G07C 9/00 20060101
G07C009/00; H04W 12/06 20060101 H04W012/06 |
Claims
1. A method comprising: receiving access credentials at a doorbell
device from a mobile device; determining whether the access
credentials are valid at the doorbell device; determining whether
the doorbell device receives an indication of a two-factor
authentication of the mobile device from the mobile device, wherein
the indication of the two-factor authentication of the mobile
device confirms to the doorbell device that the mobile device has
communicated with a two-factor authentication device to execute the
two-factor authentication of the mobile device without the doorbell
device communicating directly with the two-factor authentication
device; and when the access credentials are valid and the doorbell
device receives the indication of the two-factor authentication of
the mobile device from the mobile device, transmitting a state
change command from the doorbell device to an access control device
that controls access to a secured area associated with the doorbell
device.
2. The method of claim 1 further comprising: determining a state of
the access control device; when the access credentials are valid,
the doorbell device receives the indication of the two-factor
authentication of the mobile device from the mobile device, and the
state of the access control device is unlocked, transmitting an arm
command from the doorbell device to a control panel that monitors
the secured area; and when the access credentials are valid, the
doorbell device receives the indication of the two-factor
authentication of the mobile device from the mobile device, and the
state of the access control device is locked, transmitting a disarm
command from the doorbell device to the control panel.
3. The method of claim 1 further comprising: receiving a
communication request at the doorbell device from the mobile
device; responsive to receiving the communication request,
transmitting an acknowledgment signal from the doorbell device to
the mobile device; and responsive to the acknowledgment signal,
receiving the access credentials at the doorbell device.
4. The method of claim 1 wherein the indication of the two-factor
authentication of the mobile device confirms to the doorbell device
that the mobile device is proximate to the two-factor
authentication device.
5. The method of claim 1 wherein the indication of the two-factor
authentication of the mobile device confirms to the doorbell device
that the two-factor authentication device is both paired with the
mobile device and connected with the mobile device.
6. The method of claim 1 wherein the indication of the two-factor
authentication of the mobile device confirms to the doorbell device
that first GPS coordinates of the mobile device are within a
predetermined range of second GPS coordinates of the two-factor
authentication device.
7. The method of claim 1 further comprising: receiving both the
access credentials and the indication of the two-factor
authentication of the mobile device at the doorbell device in a
request to change a state of the access control device.
8. The method of claim 7 further comprising: determining whether
one or more dedicated bits of the request include the indication of
the two-factor authentication of the mobile device.
9-11. (canceled)
12. A doorbell device comprising: a transceiver device; and a
programmable processor, wherein the transceiver device receives
access credentials from a first device, wherein the programmable
processor determines whether the access credentials are valid,
wherein the programmable processor determines whether the
transceiver device has received an indication of a two-factor
authentication of the first device from the first device, wherein
the indication of the two-factor authentication of the first device
confirms to the programmable processor that the first device has
communicated with a second device to execute the two-factor
authentication of the first device without the transceiver device
communicating directly with the second device, and wherein, when
the access credentials are valid and the transceiver device has
received the indication of the two-factor authentication of the
first device from the first device, the transceiver device
transmits a state change command to an access control device that
controls access to a secured area associated with the doorbell
device.
13. The doorbell device of claim 12 wherein the transceiver device
receives a communication request from the first device, transmits
an acknowledgement signal to the first device responsive to
receiving the communication request, and receives the access
credentials responsive to the acknowledgement signal.
14. (canceled)
15. The doorbell device of claim 12 wherein the transceiver device
receives both the access credentials and the indication of the
two-factor authentication of the first device in a request to
change a state of the access control device.
16. The doorbell device of claim 15 wherein the programmable
processor determines whether one or more dedicated bits of the
request include the indication of the two-factor authentication of
the first device.
17. The doorbell device of claim 12 wherein the indication of the
two-factor authentication of the first device confirms to the
programmable processor that the first device is proximate to the
second device.
18-19. (canceled)
20. The doorbell device of claim 12 wherein the programmable
processor determines a state of the access control device, wherein,
when the access credentials are valid, the transceiver device
receives the indication of the two-factor authentication of the
first device from the first device, and the state of the access
control device is unlocked, the transceiver device transmits an arm
command to a control panel that monitors the secured area, and
wherein, when the access credentials are valid, the transceiver
device receives the indication of the two-factor authentication of
the first device from the first device, and the state of the access
control device is locked, the transceiver device transmits a disarm
command to the control panel.
21. A method comprising: receiving access credentials at a doorbell
device from a mobile device; determining whether the access
credentials are valid at the doorbell device; determining whether
the doorbell device receives an indication of a two-factor
authentication of the mobile device from the mobile device, wherein
the indication of the two-factor authentication of the mobile
device confirms to the doorbell device that the mobile device has
confirmed that the mobile device is proximate to a two-factor
authentication device without the doorbell device communicating
directly with the two-factor authentication device; and when the
access credentials are valid and the doorbell device receives the
indication of the two-factor authentication of the mobile device,
transmitting a state change command from the doorbell device to an
access control device that controls access to a secured area
associated with the doorbell device.
22. The method of claim 21 wherein the indication of the two-factor
authentication of the mobile device confirms to the doorbell device
that the mobile device has communicated with the two-factor
authentication device to confirm that the mobile device is
proximate to the two-factor authentication device.
23. The method of claim 21 wherein the indication of the two-factor
authentication of the mobile device confirms to the doorbell device
that the mobile device has confirmed that the two-factor
authentication device is both paired with the mobile device and
connected with the mobile device.
24. The method of claim 21 wherein the indication of the two-factor
authentication of the mobile device confirms to the doorbell device
that the mobile device has communicated with the two-factor
authentication device to confirm that first GPS coordinates of the
mobile device are within a predetermined range of second GPS
coordinates of the two-factor authentication device.
25. The doorbell device of claim 12 wherein the indication of the
two-factor authentication of the first device confirms to the
programmable processor that the second device is both paired with
the first device and connected with the first device.
26. The doorbell device of claim 12 wherein the indication of the
two-factor authentication of the first device confirms to the
programmable processor that first GPS coordinates of the first
device are within a predetermined range of second GPS coordinates
of the second device.
Description
FIELD
[0001] The present invention relates generally to security systems
and access control systems. More particularly, the present
invention relates to systems and methods of a doorbell device
initiating a state change of an access control device and/or a
control panel responsive to two-factor authentication.
BACKGROUND
[0002] Known security systems and access control systems can
receive commands and/or access credentials from a device. However,
such systems do not authenticate the device, the commands, and/or
the access credentials with two factors prior to taking some action
responsive to the commands and/or the access credentials.
[0003] In view of the above, there is a need and an opportunity for
improved systems and methods.
BRIEF DESCRIPTION OF THE DRAWINGS
[0004] FIG. 1 is a block diagram of a system in accordance with
disclosed embodiments;
[0005] FIG. 2 is a flow diagram of a method in accordance with
disclosed embodiments; and
[0006] FIG. 3 is a flow diagram of a method in accordance with
disclosed embodiments.
DETAILED DESCRIPTION
[0007] While this invention is susceptible of an embodiment in many
different forms, specific embodiments thereof will be described
herein in detail with the understanding that the present disclosure
is to be considered as an exemplification of the principles of the
invention. It is not intended to limit the invention to the
specific illustrated embodiments.
[0008] Embodiments disclosed herein can include systems and methods
of a doorbell device initiating a state change of an access control
device and/or a control panel responsive to two-factor
authentication. For example, the doorbell device can ensure that
(1) access credentials received from a first device, such as a
mobile device, instructing the doorbell device to initiate the
state change are valid and (2) the first device is proximate to
(i.e. within a predetermined distance or a transmission range of) a
second device, such as a keyfob or other two-factor authentication
device, prior to initiating the state change. Such two-factor
authentication can increase the likelihood that an authorized user
in possession of both the first device and the second device is
requesting the state change and not another person who may have
stolen the first device, but is not in possession of the second
device.
[0009] In some embodiments, the doorbell device can determine that
the first device is proximate to the second device via
communication with only the first device. However, in some
embodiments, the doorbell device can determine that the first
device is proximate to the second device via communication with
both the first device and the second device. In any embodiment, the
doorbell device can include a transceiver device for transmitting
signals to and receiving signals from the first device, the second
device, the access control device, the control panel, and/or a
cloud server device and a programmable processor for executing the
methods disclosed herein.
[0010] Various embodiments of the first device and the second
device are contemplated. For example, in some embodiments, the
first device can include the mobile device, such as a smart phone,
a tablet, a low powered remote control device, or another portable
programmable device, and in some embodiments, the second device can
include the two-factor authentication device, such as the keyfob, a
wireless dongle, wireless headphones, a smart watch, a wireless
location beacon, another mobile device, or another low powered
device that can connect to and/or pair with the first device.
Alternatively, in some embodiments, the first device can include
the two-factor authentication device, and the second device can
include the mobile device.
[0011] As explained above, in some embodiments, the doorbell device
can determine that the first device is proximate to the second
device via communication with only the first device. In these
embodiments, the doorbell device can receive first access
credentials from the first device, determine whether the first
access credentials are valid, and determine whether the doorbell
device receives an indication of two-factor authentication of the
first device from the first device. The indication of two-factor
authentication can confirm to the doorbell device that the first
device is proximate to the second device, and in some embodiments,
the doorbell device can receive the first access credentials and/or
the indication of two-factor authentication from the first device
responsive to the first device determining that the first device is
proximate to the second device. That is, in some embodiments, the
first device will only transmit the first access credentials and/or
the indication of two-factor authentication to the doorbell device
when the first device determines that the first device is proximate
to the second device.
[0012] When the first access credentials are valid and the doorbell
device receives the indication of two-factor authentication, the
doorbell device can transmit a state change command to the access
control device, such as a lock, that controls access to a secured
area associated with the doorbell device. For example, the state
change command can instruct the access control device to change a
state of the access control device from locked to unlocked or from
unlocked to locked.
[0013] In some embodiments, the doorbell device can be located
proximate to the secured area, for example, on an exterior of the
secured area. Furthermore, in some embodiments, the doorbell device
can include a camera device for monitoring the exterior of the
secured area and/or receiving information, such as the first access
credentials, from the first device. Additionally or alternatively,
in some embodiments, the doorbell device can include a user
interface, such as a button, that, when activated, can cause the
doorbell device to notify an owner or an occupant of the secured
area about a presence of a person proximate to the doorbell device,
for example by emitting a sound or a tone within the secured area
or transmitting an informational signal to a portable device
associated with the owner.
[0014] In some embodiments, the doorbell device can transmit the
state change command to the control panel in addition to or in lieu
of transmitting the state change command to the access control
device. For example, the state change command can instruct the
control panel to change a state of the control panel from armed to
disarmed or from disarmed to armed. Additionally or alternatively,
in some embodiments, the doorbell device can identify a particular
command to transmit to the control panel based on the state of the
access control device. For example, in some embodiments, the
doorbell device can identify the state of the access control device
and, when the state of the access control device is unlocked,
transmit an arm command to the control panel. However, when the
state of the access control device is locked, the doorbell device
can transmit a disarm command to the control panel.
[0015] In some embodiments, the doorbell device can receive a
communication request from the first device before receiving the
first access credentials from the first device. For example,
responsive to receiving the communication request, the doorbell
device can transmit an acknowledgement signal to the first device
and, responsive thereto, receive the first access credentials.
[0016] Various embodiments for how the first device determines
whether the first device is proximate to the second device are
contemplated. For example, in some embodiments, the first device
can determine that the first device is proximate to the second
device when the second device is both paired with the first device
and connected with the first device, for example, via a Bluetooth
or other wireless connection. Additionally or alternatively, in
some embodiments, the first device can determine that the first
device is proximate to the second device when first GPS coordinates
of the first device are within a predetermined range of second GPS
coordinates of the second device. Additionally or alternatively, in
some embodiments, the first device can determine that the first
device is proximate to the second device when the first device and
the second device are connected to a same local wireless network.
Additionally or alternatively, in some embodiments, the first
device can determine that the first device is proximate to the
second device by transmitting a test command to the second device
via a low powered wireless connection and, responsive thereto,
receiving a response message from the second device.
[0017] Various embodiments for when the first device determines
whether the first device is proximate to the second device are also
contemplated. For example, in some embodiments, the first device
can determine whether the first device is proximate to the second
device responsive to receiving user input instructing the first
device to transmit the first access credentials to the doorbell
device, for example, via a user interface device of the first
device, and prior to transmitting the first access credentials to
the doorbell device. Additionally or alternatively, in some
embodiments, the first device can determine whether the first
device is proximate to the second device responsive to receiving
the acknowledgement signal from the doorbell device and prior to
transmitting the first access credentials to the doorbell device.
Additionally or alternatively, in some embodiments, the first
device can periodically determine whether the first device is
proximate to the second device and, responsive thereto, adjust a
display of the user interface device of the first device or what
portions of the user interface device of the first device can be
activated or selected. For example, when the first device
determines that the first device is proximate to the second device,
the first device can enable the user interface device of the first
device to receive user input instructing the first device to
transmit the first access credentials to the doorbell device, for
example, by enabling or activating the display or portions of the
user interface device of the first device. However, when the first
device fails to determine that the first device is proximate to the
second device, the first device can disable the user interface
device of the first device from receiving user input instructing
the first device to transmit the first access credentials to the
doorbell device, for example, by freezing, disabling, or
deactivating the display or portions of the user interface device
of the first device.
[0018] In any embodiment, when the first device is proximate to the
second device, the indication of two-factor authentication that the
doorbell device receives from the first device can include or be
representative of an authentication signal that the first device
receives from the second device or another indicator confirming
that the first device is proximate to the second device. In some
embodiments, the doorbell device can receive both the first access
credentials and the indication of two-factor authentication in a
request to change the state of the access control device, and in
these embodiments, the doorbell device can determine whether one or
more dedicated bits in the request include the indication of
two-factor authentication.
[0019] As explained above, in some embodiments, the doorbell device
can determine that the first device is proximate to the second
device via communication with both the first device and the second
device. In these embodiments, the doorbell device can receive the
first access credentials from the first device, determine whether
the first access credentials are valid, and when the first access
credentials are valid, transmit a notification signal to the second
device to solicit second access credentials from the second device.
In some embodiments, the doorbell device can transmit the
notification signal to the second device via a low powered wireless
connection to ensure that the second device will receive the
notification signal and respond thereto only when located proximate
to the doorbell device. However, in any embodiment, responsive to
receiving the second access credentials from the second device, the
doorbell device can determine whether the second access credentials
are valid and, when the second access credentials are valid,
transmit the state change command to the access control device
and/or the control panel.
[0020] As explained above, the doorbell device can transmit the
notification signal to the second device to solicit the second
access credentials from the second device. In some embodiments, the
second device can be configured to automatically transmit the
second access credentials to the doorbell device responsive to
receiving the notification signal. Additionally or alternatively,
in some embodiments, the notification signal can instruct the
second device to solicit user input identifying the second access
credentials, and/or the second device can be configured to solicit
user input identifying the second access credentials responsive to
receiving the notification signal. Additionally or alternatively,
in some embodiments, the second access credentials can be
pre-stored on the second device, and the notification signal can
instruct the second device to solicit user input with instructions
to transmit the second access credentials, and/or the second device
can be configured to solicit user input with instructions to
transmit the second access credentials responsive to receiving the
notification signal. In any embodiment, responsive to receiving
user input identifying the second access credentials or user input
with instructions to transmit the second access credentials, the
second device can transmit the second access credentials to the
doorbell device.
[0021] In some embodiments, when the doorbell device determines
that the first access credentials received from the first device
are valid, but fails to receive the indication of two-factor
authentication from the first device or the second access
credentials from the second device, the doorbell device can
initiate a security action. In some embodiments, the security
action can include the doorbell device transmitting a warning
signal to a mobile device that is different than the first device
or the second device or to the control panel, either of which,
under certain conditions or responsive to user input, can authorize
the doorbell device to transmit the state change command to the
access control device or the control panel despite a lack of
two-factor authentication. Additionally or alternatively, in some
embodiments, the security action can include the doorbell device
transmitting an alarm signal to the control panel or transmitting a
locking signal to the first device, for example, when the doorbell
device receives the first access credentials from the first device
a predetermined number of times within a predetermined time period
without also receiving the indication of two-factor authentication
from the first device or the second access credentials from the
second device within the predetermined period of time.
[0022] FIG. 1 is a block diagram of a system 20 in accordance with
disclosed embodiments. As seen in FIG. 1, the system 20 can include
a first device 22, a second device 24, a doorbell device 26
associated with a region R, an access control device 28 that
controls access to the region R, and a control panel 30 that
monitors the region R. In some embodiments, the system 20 can also
include a cloud server device 32 that communicates with the
doorbell device 26 and/or the other devices in the system 20 via a
network N, such as the internet. As seen in FIG. 1, the doorbell
device 26 can include a transceiver device 34 and a programmable
processor 36, and in some embodiments, the transceiver device 34
can include one or more communication modules for communicating
with the first device 22, the second device 24, the access control
device 28, the control panel 30 and/or the cloud server device 32
via any known wireless or wired communication medium (e.g. Wi-Fi,
cellular, Bluetooth, cable, phone line, Ethernet, fiber, etc.).
[0023] FIG. 2 is a flow diagram of a method 100 in accordance with
disclosed embodiments. As seen in FIG. 2, the method 100 can
include the transceiver device 34 receiving first access
credentials from the first device 22, as in 102. Then, the method
100 can include the programmable processor 36 determining whether
the first access credentials are valid, as in 104. When the first
access credentials are invalid, the method 100 can include taking
no action, as in 106, or, in some embodiments, initiating a
security action as described herein.
[0024] However, when the first access credentials are valid, the
method 100 can include the programmable processor 36 determining
whether the doorbell device 26 has received an indication of
two-factor authentication of the first device 22 from the first
device 22, as in 108. If not, then the method 100 can continue
determining whether the indication of two-factor authentication has
been received, as in 108. However, when the indication of
two-factor authentication has been received, the method 100 can
include the transceiver device 34 transmitting a state change
command to the access control device 28 and/or the control panel
30, as in 110.
[0025] FIG. 3 is a flow diagram of a method 200 in accordance with
disclosed embodiments. As seen in FIG. 3, the method 200 can
include the transceiver device 34 receiving first access
credentials from the first device 22, as in 202. Then, the method
200 can include the programmable processor 36 determining whether
the first access credentials are valid, as in 204. When the first
access credentials are invalid, the method 200 can include taking
no action, as in 206, or, in some embodiments, initiating a
security action as described herein.
[0026] However, when the first access credentials are valid, the
method 200 can include the transceiver device 34 transmitting a
notification signal to the second device 24, as in 208, and
responsive thereto, receiving second access credentials from the
second device 24, as in 210. Then, the method 200 can include the
programmable processor 36 determining whether the second access
credentials are valid, as in 212. When the second access
credentials are invalid, the method 200 can include taking no
action, as in 214, or, in some embodiments, initiating the security
action as described herein. However, when the second access
credentials are valid, the method 200 can include the transceiver
device 34 transmitting a state change command to the access control
device 28 and/or the control panel 30, as in 216.
[0027] Various embodiments for transmitting the first access
credentials and the second access credentials are contemplated. For
example, in some embodiments, the first device 22 can transmit the
first access credentials directly to doorbell device 26 and/or the
second device 24 can transmit the second access credentials
directly to the doorbell device 26 via any known communication
medium, including, but not limited to Bluetooth, radio frequency
ID, near field communication, WiFi, and cellular, or via a visual
display of coded information, such as a QR code or a barcode, that
is captured by a camera of the doorbell device 26. Additionally or
alternatively, in some embodiments, the first device 22 can
transmit the first access credentials indirectly to doorbell device
26 and/or the second device 24 can transmit the second access
credentials indirectly to the doorbell device 26 via an
intermediary device, such as the cloud server device 32 or the
control panel 30.
[0028] Various embodiments for determining whether the first access
credentials and/or the second access credentials are valid are also
contemplated. For example, in some embodiments, the programmable
processor 36 can determine whether the first access credentials
and/or the second access credentials are valid. Additionally or
alternatively, in some embodiments, the doorbell device 26 can
communicate with one or both of the control panel 30 and the cloud
server device 32 to determine whether the first access credentials
and/or the second access credentials are valid. It is to be
understood that determining whether any access credentials are
valid as described herein can include determining whether those
access credentials are associated with the doorbell device 26, the
access control device 28, the control panel 30, the region R,
and/or an authorized user associated with the doorbell device 26,
the access control device 28, the control panel 30, or the region
R.
[0029] Finally, various embodiments for transmitting the state
change command to the access control device 28 and/or the control
panel 30 are contemplated. For example, in some embodiments, the
doorbell device 26 can transmit the state change command directly
to the access control device 28 and/or the control panel 30.
Additionally or alternatively, in some embodiments, the doorbell
device 26 can transmit the state change command to the access
control device 28 via an intermediary device, such as the cloud
server device 32 or the control panel 30, or can transmit the state
change command to the control panel 30 via an intermediary device,
such as the cloud server device 32.
[0030] Although a few embodiments have been described in detail
above, other modifications are possible. For example, the logic
flows described above do not require the particular order described
or sequential order to achieve desirable results. Other steps may
be provided, steps may be eliminated from the described flows, and
other components may be added to or removed from the described
systems. Other embodiments may be within the scope of the
invention.
[0031] From the foregoing, it will be observed that numerous
variations and modifications may be effected without departing from
the spirit and scope of the invention. It is to be understood that
no limitation with respect to the specific system or method
described herein is intended or should be inferred. It is, of
course, intended to cover all such modifications as fall within the
spirit and scope of the invention.
* * * * *