Abstract: A method of registering devices (2), in particular access control devices or payment or vending machines, on a server (3) of a system where the device (2) which is to be registered generates a public and a private key with asymmetrical cryptology. The device (2) subsequently transmits a registration request, signed with the device's private key, containing at least one device ID, the device's public key and the login details of a technician. The server (3) verifies the registration request using the device's public key and, after verification, assigns the device (2) to a ‘data reception room’ where no operational communication with the server (3) occurs. Subsequently, the device (2) is cleared for communication by a technician logged in to the server (3). The device is assigned to an area of the server memory for operationally cleared devices, and a notification of registration is transmitted to the device (2).

Abstract: A method for secure authentication in devices (d1) connectable to a server (S), particularly in access control equipment or automated payment or vending machines of an access control system, in the course of which the server (S) generates a separate key pair for asymmetric cryptography, which consists of a public and a private key, for each device (d1) during the registration of the device (d1) on the server and assigns the generated key pair to this device (d1) only, wherein the public key assigned to a device (d1) is transmitted to the device (d1) during the registration of the device (d1) on the server (S), and wherein the authentication during the access to a device (d1) is realized by an access token, which is signed with the private key of the key pair assigned to the device (d1) by the server (S).

Abstract: A method of registering devices (2), in particular access control devices or payment or vending machines, on a server (3) of a system where the device (2) which is to be registered generates a public and a private key with asymmetrical cryptology. The device (2) subsequently transmits a registration request, signed with the device's private key, containing at least one device ID, the device's public key and the login details of a technician. The server (3) verifies the registration request using the device's public key and, after verification, assigns the device (2) to a ‘data reception room’ where no operational communication with the server (3) occurs. Subsequently, the device (2) is cleared for communication by a technician logged in to the server (3). The device is assigned to an area of the server memory for operationally cleared devices, and a notification of registration is transmitted to the device (2).