Abstract: Embodiments are directed to simulating an operation of a mechanical lock in an electronic context, comprising: applying a contactless wireless credential to a lock, authenticating the credential, unlocking the lock to provide access to a resource protected by the lock based on having authenticated the credential, determining a security level associated with the lock, and conditionally capturing the credential based on the security level.

Abstract: Embodiments are directed to simulating an operation of a mechanical lock in an electronic context, comprising: applying a contactless wireless credential to a lock, authenticating the credential, unlocking the lock to provide access to a resource protected by the lock based on having authenticated the credential, determining a security level associated with the lock, and conditionally capturing the credential based on the security level.

Abstract: An authentication server for a wireless lock system comprising a wireless lock and a key device is configured to receive and authenticate a validation message. The validation message is created at the wireless lock from a secret key contained in the wireless lock. The authentication server receives the validation message from the key device, receives a certificate of ownership provided by the user, and authenticates the validation message and key device using copies each stored in a database of the authentication server. The authentication is configured to associate the user with the lock ID upon successfully authenticating the validation message, thereby enabling the authorizations server to provide the user with digital credentials to open the lock.

Abstract: An electronic lock controller comprises a trusted time provider, a near field communication transceiver, and a logic processor. The trusted time provider provides a trusted time value. The near field communication transceiver receives power and a digital credential from an operator-side interface device. The logic processor produces an open or close command for an electromechanical lock based on the trusted time value and the digital credential. The electronic lock controller is powered solely by the near field communication transceiver.

Abstract: An authentication server for a wireless lock system comprising a wireless lock and a key device is configured to receive and authenticate a validation message. The validation message is created at the wireless lock from a secret key contained in the wireless lock. The authentication server receives the validation message from the key device, receives a certificate of ownership provided by the user, and authenticates the validation message and key device using copies each stored in a database of the authentication server. The authentication is configured to associate the user with the lock ID upon successfully authenticating the validation message, thereby enabling the authorizations server to provide the user with digital credentials to open the lock.

Abstract: An electronic lock controller comprises a trusted time provider, a near field communication transceiver, and a logic processor. The trusted time provider provides a trusted time value. The near field communication transceiver receives power and a digital credential from an operator-side interface device. The logic processor produces an open or close command for an electromechanical lock based on the trusted time value and the digital credential. The electronic lock controller is powered solely by the near field communication transceiver.

Abstract: A decentralized key management system for controlling access to multiple vehicles among multiple users includes vehicle keys for the respective vehicles, individual locking key containers for the vehicles, electronic access devices for assignment to the users and a database. Each of the containers has a storage area within which a vehicle key or keys for one vehicle can be stored operable to unlock key containers if authorized. The access devices are operable to unlock the key containers if authorized. The access devices are programmable with information from the database such that an assigned access device is programmed with a specific user's access privileges for obtaining access to one or more of the vehicles in the system.

Abstract: A decentralized key management system for controlling access to multiple vehicles among multiple users includes vehicle keys for the respective vehicles, individual locking key containers for the vehicles, electronic access devices for assignment to the users and a database. Each of the containers has a storage area within which a vehicle key or keys for one vehicle can be stored operable to unlock key containers if authorized. The access devices are operable to unlock the key containers if authorized. The access devices are programmable with information from the database such that an assigned access device is programmed with a specific user's access privileges for obtaining access to one or more of the vehicles in the system.

Abstract: Security systems and methods control access at remote locations protected by electronic locks. Users open or otherwise manipulate an electronic lock via an electronic key device. The electronic key device may be an open architecture PDA programmed to function as an electronic key device, while retaining its general-purpose PDA functionality. Alternatively, the electronic key device may be a special-purpose device designed to function as an electronic key device. The key device and the lock box communicate with each other, preferably, by infrared techniques. The lock box and the key device are administered by a central authority via a central computer, which coordinates all security measures through the use of, e.g., frequent updates; tokens that the key device cannot read; checksums, including Message Authentication Codes; and encryption. A plurality of key devices may be programmed to open the same lock box. A key device may open a plurality of lock boxes.