WikiPatents - Community Patent Review
Create Free Account  |  License or Sell Your Patent  |  WikiPatents Marketplace  |  WikiPatents Blog
Username:  Password:  
    
Advanced Search
Apparatus and method for controlled access to a secured location    

Get related patents on CD
United States Patent5321242   
Link to this pagehttp://www.wikipatents.com/5321242.html
Inventor(s)Heath, Jr.; William D. (Bremen, GA)
AbstractA system for authorizing access to a secured device, such as an automated teller machine (ATM) or a pay telephone, without a key or combination for the secured device, and without a fixed communication link extending to the device. An encoded access message is produced which identifies a present access code previously stored at the secured device, the personal identification number (PIN) of a technician, and the identification number of a particular portable terminal. The technician manually enters the encoded access message and a PIN into the terminal, which verifies the identification number of the terminal and the manually-entered PIN against information encoded in the access message. If that information is authenticated, the portable terminal is connected to the secured device. The encoded access message is transferred from the terminal to the secured device, which compares an access code previously stored at that device with information contained in the access message. The proper PIN also is re-entered. Access is granted only if all information is verified by information in the encoded access message. If access is allowed, the access code at the secured device is replaced by a new access code from the encoded access message, and that new access code is stored for the next authorized access to the particular secured device.
   














 Title Information Submit all comments and votes
 
Patent Text Patent PDF Print Page Summary File History
Plain text PDF images Print Summary File History Custom Search
Inventor     Heath, Jr.; William D. (Bremen, GA)
Owner/Assignee     Brinks, Incorporated (Darien, CT)
Patent assignment
All assignments
Company News
Publication Date     June 14, 1994
Application Number     07/811,720
PAIR File History     Application Data   Transaction History
Image File Wrapper   Patent Term   Fees
Litigation
Filing Date     December 20, 1991
US Classification     235/382 235/375 235/379 235/381 235/382.5 340/5.23 340/5.26 340/5.54 340/5.65 340/5.73 379/93.03 902/10
Int'l Classification     G06K 005/00
Examiner     Hajec; Donald
Assistant Examiner     Chin; Esther
Attorney/Law Firm     Jones & Askew
Address
Parent Case     CROSS-REFERENCE TO RELATED APPLICATION This is a continuation-in-part of Ser. No. 07/804,780 filed Dec. 9, 1991 and now abandoned.
Priority Data    
USPTO Field of Search     379/145 379/102 379/103 379/104 379/105 379/445 235/379 235/381 235/382 235/382.5 902/10 902/9 902/13 340/825.31 340/825.34 340/825.35
Patent Tags     controlled access secured location
   
Enter a comma (,) or semicolon (;) between multiple tag words/phrases.
Describe this patent:
 Amusing   
 Clever   
 Complex   
 Efficient   
 Historic   
 Important   
 Innovative   
 Interesting   
 Practical   
 Simple   
[no votes]
Patent WIKI

Share information and news about this patent, including information and news about the technology, inventors, company, ligation and licensing.
 References Submit all comments and votes
 
*references marked with an asterisk below are user-added references
 U.S. References
 
Add a new US reference:  
ReferenceRelevancyCommentsReferenceRelevancyComments
5131038
Puhl
340/5.61
Jul,1992
[0 after 0 votes]		5056643
Kirberg
194/202
Oct,1991
[0 after 0 votes]
4962449
Schlesinger
726/21
Oct,1990
[0 after 0 votes]		4858453
Namazue
70/278.3
Aug,1989
[0 after 0 votes]
4829296
Clark
340/5.65
May,1989
[0 after 0 votes]		4663952
Gelhard
70/278.3
May,1987
[0 after 0 votes]
4523087
Benton
235/379
Jun,1985
[0 after 0 votes]		4390968
Hennessy
705/72
Jun,1983
[0 after 0 votes]
4234932
Gorgens
235/379
Nov,1980
[0 after 0 votes]		4207555
Trombly
235/382.5
Jun,1980
[0 after 0 votes]
 Foreign References
 Other References
 Market Review Submit all comments and votes
   
Market Size
Estimate the gross annual revenues of the relevant market sector:
> $10B
$5B - $10B
$2B - $5B
$500M - $2B
$100M - $500M
$10M - $100M
$1M - $10M
$500K - $1M
$100K - $500K
< $100K
[No votes]
$0
 
$0   $2.5B   $5B   $7.5B   $10B

[0 market size comments]
Market Share
Estimate the percentage of the relevant market sector this invention will capture:
75% - 100%
50% - 74.99%
25% - 49.99%
10 - 24.99%
5 - 9.99%
2 - 4.99%
1 - 1.99%
< 1%
[No votes]
0.0%
 
0%   25%   50%   75%   100%

[0 market share comments]
Reasonable Royalty
What percentage of gross sales should the inventor or assignee be paid?
75% - 100%
50% - 74.99%
25% - 49.99%
10 - 24.99%
5 - 9.99%
2 - 4.99%
1 - 1.99%
< 1%
[No votes]
0.0%
 
0%   25%   50%   75%   100%

[0 reasonable royalty comments]
Public's "Guesstimation" of Royalty Value
Market SizeN/A[No votes]
xMarket ShareN/A[No votes]
xReasonable RoyaltyN/A[No votes]
N/A

[0 Guesstimation of Royalty Value Comments]
License Availablity
If you are NOT the owner or assignee, answer here:
Yes, license is available for purchase

No, license is not currently available



 [No votes]
[0 license availability comments]
License Availablity
If you ARE the owner or assignee, answer here:
Yes, license is available for purchase

No, license is not currently available



 [No votes]
[0 owner/assignee comments]
Competitive Advantage
Does this invention have a significant competitive advantage over similar technologies?
Yes

No



 [No votes]
Most helpful competitive advantage comment
[No comments]

[0 competitive advantage comments]
Commercial Alternatives
Are there viable commercial alternatives for this invention?
Yes

No



 [No votes]
Most helpful commercial alternative comment
[No comments]

[0 commercial alternatives comments]
 Technical Review Submit all comments and votes
 Claims Submit all comments and votes
 


What is claimed is:

1. A method for allowing access to a secured location, comprising the steps of:

generating a signal containing encoded information identifying an access code only for a particular secured location and an identification number for a particular person authorized to access that location;

the access code in the encoded information being a present access code;

the encoded information also containing a new access code for the next authorized access to the secured location;

entering that encoded information into a portable terminal carried by the person seeking access to the secured location;

transferring the portable terminal with the entered encoded information to the secured location;

comparing the present access code in the encoded information with an access code previously stored at the secured location to verify that the access code in the encoded information is the same as the access code at the secured location;

comparing the identification number in the encoded information with a current identification number of the person seeking access to the secured location to verify that the current identification number is the same as the identification number in the encoded information; and then

granting access to the secured location only if the verifications are true; and then

in response to granting access, replacing the access code previously stored at the secured location with the new access code contained in the encoded information, so that the new access code becomes stored at the secured location for comparison with a subsequent present access code the next time access to the particular secured location is sought.

2. A method for allowing a particular person access to a selected one of plural automated teller machines (ATMs) by means of a portable terminal, comprising the steps of:

generating an encoded access message containing information identifying an access code previously stored at the selected ATM, and a personal identification number (PIN) for the particular person;

entering the encoded message in the portable terminal apart from the ATM;

entering the PIN in unencoded form in the portable terminal;

comparing the entered PIN with the PIN contained in the encoded message previously entered into the portable terminal to authorize an access only if the PINs bear a predetermined relation to each other; and then

establishing data communication between the portable terminal and an ATM, and transferring the access message in encoded form from the portable terminal to the ATM;

comparing the access code contained in the encoded message with the access code previously stored at the ATM to verify that the access code in the encoded message is the same as the access code at the selected ATM;

re-entering the PIN in unencoded form into the portable terminal;

comparing the re-entered PIN with the PIN contained in the encoded message communicated to the ATM from the terminal; and

granting access to the ATM only if the same access codes are present and the re-entered PIN bears a predetermined relation to the PIN in the encoded message communicated to the ATM.

3. The method as in claim 2, wherein:

the portable terminal erases the PIN previously entered in unencoded form, in response to the first step of comparing that PIN with the PIN in the encoded access message,

so that the unencoded PIN cannot be determined thereafter by access to information entered in the portable terminal.

4. The method as in claim 2, wherein:

the access code in the encoded access message is a present access code, and the encoded message also contains a future access code for the next authorized access to the ATM, and

substituting the future access code for the access code previously stored at the selected ATM in response to granting access to the ATM, so that the future access code remains at the selected ATM for comparison with a present access code in another encoded message the next time access to the ATM is sought.

5. The method as in claim 4, comprising the further step of erasing both access codes from the portable terminal once the future access code is substituted for the access code previously stored at the selected ATM.

6. A method for allowing a particular person to access a secured location, comprising the steps of:

generating information including a unique original access code previously stored at the secured location, a new access code for the secured location, and an identification number for the particular person;

encrypting the encoded information;

transferring the encrypted information to the secured location;

decrypting the encrypted information;

comparing the original access code in the decrypted information with the access code previously stored at the secured location to verify that a predetermined relation exists therebetween;

allowing access to the secured location only if the verification is true; and

replacing the access code stored at the secured location with the new access code in the decrypted information, in response to allowing access, so that the new access code is stored at the secured location for comparison when attempting the next access.

7. Apparatus for obtaining selective access to a cash-receiving device having a receptacle for receiving a removable cash box and a closure for preventing unauthorized access to the receptacle, comprising:

means associated with the device to receive and store an access code required for the next access to the device;

a portable terminal separate from the device for receiving an access message containing in encoded form an access code and a personal identification number (PIN) for a certain person authorized to access the device;

means associated with the portable terminal for entering an unencoded PIN;

means associated with the portable terminal for producing a certain logic state when the entered PIN has a predetermined relation to the PIN encoded in the access message;

data transfer means selectively operative to transfer the encoded access message to the device only in response to the certain logic state;

means associated with the device for comparing the access code in the access message with an access code stored at the device and providing an authorization signal allowing access to the receptacle only in response to a predetermined relation between the access codes;

an encoded label associated with each cash box to identify that cash box; and

a scanner associated with the portable terminal to scan the label on each cash box removed from a device and on each empty cash box installed in the device, whereby signals identifying the removed and installed cash boxes are stored in the portable terminal.

8. Apparatus as in claim 7, wherein:

the cash receiving device is a pay telephone having a receptacle for receiving a movable coin box and a door for preventing unauthorized access to the receptacle, and further comprising:

a latch associated with the door and operative only in response to the authorization signal to release the door for access to the receptacle.

9. Apparatus as in claim 8, wherein:

the latch comprises a solenoid selectively operative to release the door, and further comprising

means selectively operative in response to the authorization signal to supply operating current to the solenoid from the terminal,

whereby the solenoid releases the door.

10. A method for allowing access to a secured location, comprising the steps of:

generating a signal containing encoded access information identifying an access code for a particular secured location and an identification number for a particular person authorized to access that location;

transferring the encoded information to the secured location by entering that encoded information into a portable terminal carried by the person seeking access to the secured location;

entering the current identification number into the terminal;

comparing the identification number in the encoded information with the identification number entered into the terminal;

erasing the encoded access information from the terminal if a predetermined relation between the identification numbers is not presented by the comparison;

comparing the access code in the encoded information with an access code previously stored at the secured location to verify that the access code in the encoded information is the same as the access code at the secured location;

comparing the identification number in the encoded information with a current identification number of the person seeking access to the secured location to verify that the current identification number is the same as the identification number in the encoded information; and then

granting access to the secured location only if the verification are true.

11. The method as in claim 10, comprising the further steps of:

transferring the access information in encoded form from the terminal to the secured location, if and only if the predetermined relation between identification numbers is present; and thereafter

performing the step of comparing access codes.

12. The method as in claim 10, comprising the further steps of:

decoding the signal containing encoded access information after transferring that signal to the secured location;

performing the step of comparing the identification numbers; and then

re-encoding the access information within the terminal if and only if the predetermined relation between identification numbers is present; and thereafter

transferring the re-encoded access information to the secured location.

13. The method as in claim 10, wherein:

the portable terminal contains a unique serial number distinguishing that terminal from other terminals;

the encoded information includes the serial number of a particular terminal authorized for the next access to the secured location; and

comparing the serial number in the encoded information with the serial number within the terminal to determine whether the serial numbers match; and

aborting the access attempt if the terminal identification numbers do not match.

14. Apparatus for obtaining selective access to a secured location, comprising:

means associated with the secured location to receive and store an access code required for the next access to the secured location;

terminal means separate from the secured location for receiving an access message containing in encoded form an access code and a personal identification number (PIN) for a certain person authorized to access the location;

means associated with the terminal means for entering an unencoded PIN;

means associated with the terminal means for producing a certain logic state when the entered PIN has a predetermined relation to the PIN encoded in the access message;

data transfer means selectively operative to transfer the encoded access message to the secured location only in response to the certain logic state;

means associated with the secured location for comparing the access code in the access message with an access code stored at the secured location and providing an authorization signal allowing access to the secured location only in response to a predetermined relation between the access codes; and

the terminal means is operative in response to the certain logic state to erase the unencoded PIN previously entered in the terminal means, whereby the terminal means cannot transfer the unencoded PIN to the secured location.

15. Apparatus for obtaining selective access to a secured location, comprising:

means associated with the secured location to receive and store an access code required for the next access to the remote location;

terminal means separate from the secured location for receiving an access message containing in encoded from an access code and a personal identification number (PIN) for a certain person authorized to access the location;

means associated with the terminal means for entering an unencoded PIN;

means associated with terminal means for producing a certain logic state when the entered PIN has a predetermined relation to the PIN encoded in the access message;

data transfer means selectively operative to transfer the encoded access message to the secured location only in response to the certain logic state;

means associated with the secured location for comparing the access code in the access message with an access code stored at the secured location and providing an authorization signal allowing access to the secured location only in response to a predetermined relation between the access codes; and

the secured location includes means responsive to re-entry of an unencoded PIN at the entry means of the terminal to compare the re-entered PIN with the PIN in the encoded access message transferred to the secured location and to provide the access authorization signal only in response to a predetermined relation between the PINs in addition to the predetermined relation between access codes.

16. Apparatus for obtaining selective access to a pay telephone having a receptacle for receiving a removable coin box and a door for preventing unauthorized access to the receptacle, comprising:

means associated with the telephone to receive and store an access code required for the next access to the telephone;

terminal means separate from the telephone for receiving an access message containing in encoded form an access code and a personal identification number (PIN) for a certain person authorized to access the telephone;

means associated with the terminal means for entering an unencoded PIN;

means associated with the terminal means for producing a certain logic state when the entered PIN has a predetermined relation to the PIN encoded in the access message;

data transfer means selectively operative to transfer the encoded access message to the secured location only in response to the certain logic state;

means associated with the secured location for comparing the access code in the access message with an access code stored at the secured location and providing an authorization signal allowing access to the secured location only in response to a predetermined relation between the access codes;

a solenoid latch associated with the door and operative only in response to the authorization signal to release the door for access to the receptacle; and

a circuit connected to a telephone line for the telephone and operative in response to the authorization signal to temporarily supply the solenoid ringing current on the telephone line,

whereby the solenoid operates to unlatch the door in response to ringing current on the telephone line during the temporary connection.

17. A method for allowing a particular person access to a selected one of plural secured devices by means of a terminal, comprising the steps of:

generating an encoded access message containing information identifying an access code previously stored at the selected secured device, and a personal identification number (PIN) for the particular person;

entering the PIN in unencoded form in the terminal;

entering the encoded message in the terminal apart from the secured device;

comparing the entered PIN with the PIN contained in the encoded message previously entered into the terminal to authorize an access only if the PINs bear a predetermined relation to each other, and then

establishing data communication between the terminal and a particular secured device, and transferring the access message in encoded form from the terminal to the secured device;

comparing the access code contained in the encoded message with the access code previously stored at the secured device to verify that the particular secured device is the selected secured device;

re-entering the PIN in unencoded form into the terminal;

comparing the re-entered PIN with the PIN contained in the encoded message communicated to the secured device from the terminal; and

granting access to the selected secured device only if the comparison of access codes verified that the particular secured device is the selected secured device and the re-entered PIN bears a predetermined relation to the PIN in the encoded message communicated to the secured device.

18. A method for allowing a particular person access to a selected one of plural secured devices by means of a terminal, comprising the steps of:

generating an encoded access message remote from the secured device, the access message containing information identifying an access code previously stored at the selected secured device and a personal identification number (PIN) for the particular person;

transferring the encoded message to the selected secured device;

decoding the encoded message to obtain the access code and PIN in unencoded form;

supplying the PIN of the person in unencoded form to the selected secured device;

comparing the supplied PIN with the PIN obtained by decoding the encoded message transferred to the selected secured device to authorize an access only if the PINs bear a predetermined relation to each other; and then

comparing the access code obtained by decoding the encoded message transferred to the secured device with the access code previously stored at the secured device to verify the identity of the selected secured device;

granting access to the selected secured device only if the comparison of access codes verifies that the particular secured device is the selected secured device and the supplied PIN bears a predetermined relation to the PIN in the encoded message communicated to the secured device; and

erasing the access message if the predetermined relation is not presented by the comparison.

19. A method for allowing a person to access a secured location, comprising the steps of:

generating an encrypted message containing information identifying an access code for a particular secured location and an identification number for a particular person authorized to access that location;

entering the encrypted message into a portable terminal carried by the person seeking access to the secured location;

entering into the terminal an identification number for that person;

decrypting the message within the portable terminal to obtain the identification number;

comparing the identification number in the message with the identification number entered into the portable terminal;

if a predetermined relation between the identification numbers is presented by the comparison, establishing data communication between the portable terminal and the secured location; and then

decrypting the message to obtain the access code;

comparing the access code in the decrypted message with an access code previously stored at the secured location to verify that the access code in the message is the same as the access code at the secured location; and

granting access to the secured location only if the verification is true.

20. The method as in claim 19, comprising the further step of:

erasing the encrypted access message from the terminal if the predetermined relation between identification numbers is not presented by the comparison.

21. The method as in claim 19, wherein;

after the second-mentioned step of decrypting the access code, re-entering the identification number and again comparing that identification number with the decrypted identification number; and

terminating the attempted access if a predetermined relation is not present between the identification numbers.

22. The method as in claim 19, wherein:

the access code in the encrypted message is a present access code;

the encrypted message also contains a new access code for the next authorized access to the secured location;

the step of comparing access codes comprises comparing the present access code decrypted from the encrypted message with an access code previously stored at the secured location; and then

in response to granting access, replacing the access code previously stored at the secured location with the new access code decrypted from the encrypted message, so that the new access code becomes stored at the secured location for comparison with a subsequent present access code the next time access to the particular secured location is sought.

23. A method for allowing a person to access a secured device, comprising the steps of:

generating a message containing information identifying an access code for a particular secured device, a terminal number for a certain terminal, and an identification number for a particular person authorized to access that device;

entering the message into a terminal operatively associated with a terminal number;

entering into the terminal an identification number for that person;

comparing the identification number in the message with the identification number entered into the terminal;

comparing the terminal number in the message with the terminal number associated with the terminal;

if predetermined relations occur between the identification numbers and between the terminal numbers in response to the comparisons, establishing data communication between the terminal and the secured device, otherwise terminating the attempted access;

once the data communication is established, comparing the access code in the message with an access code previously stored at the secured device to verify that the access code in the message is the same as the access code at the secured device; and

granting access to the secured device only if the access code verification is true.

24. The method as in claim 23, wherein:

The message is generated in encrypted form and is entered into the terminal in that form; and comprising the further step of decrypting the message within the portable terminal to obtain the identification number and the terminal number for the comparisons.
 Description Submit all comments and votes
 


FIELD OF INVENTION

This invention relates in general to controlling access to a secured or locked location, and relates in particular to an apparatus and method for providing controlled access by an identification number known only to an authorized person and by an access code known only at the secured location.

BACKGROUND OF THE INVENTION

There are many applications where amounts of money are kept in unmanned facilities that are open to public access. For example, cash-operated devices such as vending machines and pay telephones are available to the public and accrue varying amounts of cash as they dispense goods or services to customers. These machines periodically are serviced to remove the money and, in the case of vending machines, to replenish the supply of products. Persons authorized to service pay telephones or vending machines must carry keys permitting access to the coin box or other receptacle receiving money paid into the machine. Pay telephone coin boxes are serviced by a collector who periodically visits each pay phone. The collector unlocks an outer door to the phone using a key for that purpose, and then removes the coin box from within the phone and substitutes an empty coin box. If the collector is allowed to carry one or more master keys for servicing a number of telephones, the risk of loss by theft or misappropriation of a single key is apparent. On the other hand, requiring the collector to carry a separate key for each pay phone represents a significant inconvenience, particularly in areas such as airport terminals where large numbers of pay phones are located. Furthermore, the risk of loss through theft or misuse of individual keys still exists.

Automated teller machines (ATMs) are another example of machines containing cash and requiring periodic access for replenishing the cash supply or maintaining and repairing the machines. Because ATMs are capable of containing large amounts of money relative to most vending machines, they are more inviting targets for theft. For this reason, the cash within an ATM is contained within a small vault integral with the ATM and typically accessible only through a vault door having a combination lock, sometimes combined with a key access, for opening the vault door. Portions of the electronic controls for the ATM also may be located within the vault to prevent unauthorized cash dispensing by tampering with control circuits. Generally speaking, the cash within a locked ATM is secure from any unauthorized activity short of safecracking.

The need for periodic access to the vault of an ATM machine to replenish the cash supply, or to service equipment within the vault, constitutes a weak link in ATM security. If vault access is available only to technicians possessing the proper key or numerical combination to open the vault door, those technicians are vulnerable to being hijacked and forced to hand over the key or divulge the combination to open the vault. Furthermore, job turnover of ATM technicians makes it impractical to give each technician the combinations of ATM vaults, because of the need to reset those combinations whenever the technician left the job. For the same reason, key-only access to ATM vaults presents a problem when the technician leaves the job, due to the risk that the technician may not return the keys or may make an unauthorized copy of the keys while employed. Further yet, security considerations rule against allowing any technician to carry master keys capable of unlocking the vaults in a number of different ATMs, due to the risk of great loss if such master keys were stolen or otherwise came into the wrong hands.

Prior-art techniques are known for providing keyless access to ATMs or other machines containing significant amounts of cash. These techniques generally require an electronic link between the machine and a central office, and an arrangement for unlocking the vault whenever the proper signal arrives from the central office. To avoid the cost of providing dedicated lines between the central office and a great number of ATMs, these prior-art techniques usually rely on the public telephone network and a modem associated with each ATM, in order to communicate between the central office and a selected ATM. While these techniques relieve the service technician of the need to carry either access keys or combinations for the ATM vaults, it still leaves the technician subject to being hijacked by robbers who will then coerce the technician to request access from the central office. On a more sophisticated level, the use of conventional telephone lines for transmitting access signals to ATMs makes those signals subject to interception by wiretapping, leading to the fear that the access signals may be analyzed and then used by others for unauthorized access to ATM vaults. Moreover, the dial-up telephone line required for each ATM is an ongoing expense to the bank or other agency sponsoring the ATM.

SUMMARY OF INVENTION

Stated in general terms, a call for service or repair of an ATM or another secured device is reported to a service technician, along with a unique encoded access message generated for the particular occasion. The technician can receive this access message by telephone or radio dispatch, because the information contained therein is encrypted so as to conceal the information. This access message contains the personal identification number (PIN) identifying that particular technician, the serial number or other unique identifier of the particular portable terminal, present and future access codes for the secured device, and other information appropriate for a particular application, all as encrypted in the encoded access message. The technician carries a portable terminal and enters the access message into that terminal along with a PIN, and the portable terminal verifies access message was entered in the correct terminal and that the proper PIN was used. The technician then travels to the location of the ATM or other device requiring service. At that location, the technician connects the portable terminal to the secured device and once again enters the PIN into the terminal, where that number again is verified against the access code previously contained in the encoded access message. This double verification of the technician's PIN thwarts unauthorized access in a situation where the technician is hijacked after receiving a service call from the dispatcher and then entering the proper PIN into the portable terminal for self-authentication. With the portable terminal connected to the secured device, the encoded message is sent to the device where a computer checks for the presence of correct information identifying the device and authenticating the access being requested, and allows access to the vault only if that correct information is present.

Because the PIN assigned to the particular technician is among the information contained in the encoded access message initially furnished to the technician, the present system accommodates the departure of a technician simply by retiring that person's PIN number from further use and assigning new numbers for new technicians. Any unauthorized interception of an access message thereafter by a former technician will fail, even if intercepted by someone possessing a portable terminal obtained by theft or fraud, because the serial number of that terminal will not match the corresponding number in the encoded access message and because that person does not know the new PIN for use by someone else and encoded into the access message.

Stated somewhat more particularly, the encoded access message transmitted to the technician according to the present invention includes a present access code for gaining access to the secured location at the present time, in addition to the PIN for the technician authorized for that access. This present access code must correspond to an access code previously stored at the secured location, or else the system will deny the present attempt to gain access to the secured location. The encoded access message also contains a new access code intended for future use by that particular secured location. If the PIN entered by the technician matches the PIN encoded in the access message and if the present access code within that message matches the access code previously stored at the secured location, then access is granted and that present access code is erased and replaced by the new access code contained in the encoded message. This new access code remains stored at the secured location and becomes the authorized access code for use the next time access to that location is sought. In this manner, each access code is used only one time and anyone attempting to create an encoded access message for a particular location must have present knowledge not only of that location, the authorized PIN for a particular technician, and the serial number of the particular portable terminal authorized for that technician, but must also know the access code previously stored at that secured location. Without this specific information, and other information as may be appropriate and as described further herein, an attempt to counterfeit an encoded access message will fail. Each present access code preferably is unique to a particular secured location and may be based on a randomly-generated number, so that the likelihood of duplicating that number by chance becomes so low as to be negligible in practice. The ATM can maintain a historical file of all attempts to access the vault, whether granted or disallowed. If a loss occurs, one can consult the historical file for preloss activity. This information may also predict problems arising from repeated attempts to access the vault.

Accordingly, it is an object of the present invention to provide an improved apparatus and method for controlling access to a secured location.

It is another object of the present invention to provide an improved apparatus and method for controlled access to automated teller machines.

It is a further object of the present invention to provide the capability of selective access to a secured location without requiring a telephone line or other data link between that location and a central office.

It is still another object of the present invention to provide an apparatus and method for authorized access to a locked location without requiring either a key or the combination for a lock, or by requiring a level of security in addition thereto.

It is yet another object of the present invention to provide an improved apparatus and method for selective access to the coin box of a pay telephone or the like.

Other objects and advantages of the present invention will become more readily apparent from the following disclosure of a preferred embodiment.

BRIEF DESCRIPTION OF DRAWINGS

FIG. 1 is a schematic view illustrating the flow of information required for gaining access to a secured location according to a first preferred embodiment of the present invention.

FIG. 2 represents the information contained in an encoded access message according to the first embodiment.

FIGS. 3 and 3A are pictorial views illustrating a portable terminal used in the first embodiment.

FIG. 4 is a block diagram illustrating components of the portable terminal and interfacing components of an ATM, in the first embodiment.

FIG. 5 is a perspective view showing the access latch mechanism according to the preferred embodiment.

FIG. 6 is a fragmentary elevation view of the latch mechanism shown in FIG. 5.

FIG. 7 is a flow chart illustrating operational steps in the method of the first embodiment.

FIG. 8 is a block diagram of apparatus for controlled access to the coin box of a pay telephone according to a second preferred embodiment of the present invention.

FIG. 8A is a schematic diagram of a pay telephone circuit according to the second embodiment.

FIG. 9 is a flow chart illustrating operational steps of the second embodiment.

FIG. 10 is a block diagram of a pay telephone coin box access apparatus according to a third preferred embodiment of the invention.

FIG. 11 is a flow chart illustrating operational steps of the third embodiment.

FIG. 11A is a flow chart illustrating operational steps of the bar-code scanning option disclosed with regard to the second and third embodiments.

DETAILED DESCRIPTION OF PREFERRED EMBODIMENT

FIG. 1 shows a functional outline of a secured access system according to a preferred embodiment of the present invention. This secured access system includes at least one secured location 10, such as an ATM or other apparatus having a vault or other se