Techniques are disclosed relating to sharing access to electronically-secured property. In some embodiments, a first computing device having a first secure element receives, from a second computing device associated with an owner of the electronically-secured property, an indication that the second computing device has transmitted a token to server computing system, the token permitting a user of the first computing device access to the electronically-secured property. Based on the received indication, the first computing device sends a request for the transmitted token to the server computing system and, in response to receiving the requested token, securely stores the received token in the first secure element of the first computing device. The first computing device subsequently transmits the stored token from the first secure element of the first device to the electronically-secured property to obtain access to the electronically-secured property based on the token.

A system includes a communication module configured to establish a first secure communications link with a portable device and a second secure communications link with a contactless smartcard. The contactless smartcard includes a unique identification (ID). A memory module configured to store information associated with the portable device and the contactless smartcard. A temporary key module configured to store the ID of the contactless smartcard and vehicle operation limitations associated with the ID of the contactless smartcard in the memory module. An authentication module configured to (i) authenticate the portable device and (ii) authenticate the contactless smartcard. A passive entry/passive start (PEPS) module configured to receive authentication of at least (i) the portable device or (ii) the contactless smartcard from the authentication module, and perform a vehicle operation based on at least (i) the received authentication and (ii) the vehicle operation limitations stored in the memory module.

This disclosure provides systems and methods for lockout-tagout procedures and systems supporting the same, including, without limitation, locking devices that can store and be locked simultaneously by multiple keyholders. In various embodiments, a single user can add multiple keyholders to a locking device. The user may not be able to remove anyone as a keyholder except himself or herself. Thus, the locking device may remain in a locked state until each of the added keyholders applies their digital key, password, PIN, and/or other personal identifying information to unlock the locking device by removing themselves as a keyholder.

An access control device for controlling access within a secure control area by means of barriers having associated security perimeters. The access control device comprises ultra-wideband transceiver(s) configured to execute ultra-wideband transmission(s) with one or more authentication device(s) and a processing unit. The processing unit is configured to: determine physical location(s) of the authentication device(s) within the secure control area by processing signal properties of the ultra-wideband transmission(s) and determine the security perimeter(s) where the authentication device(s) is/are located based on the physical location(s). The access control device is configured to execute an access control process(s) with respect to the barrier(s) associated with the security perimeter(s) where the authentication device(s) is/are located.

Systems, devices, and techniques that can provide access control and/or identification of user devices.

A secure element (SE) for processing a digital key includes a communication interface for communicating with a host, a memory for storing programs and data for processing the digital key, and a processor for executing the programs stored in the memory to receive a digital key processing request from a target device, determine whether a service is providable to the target device, by using a service-provider-specific service performance manager, process the digital key by using a digital key manager based on digital key processing information stored in the memory, upon determining that a service is providable to the target device, issue a digital key processing certificate by using the service-provider-specific service performance manager based on authentication information stored in the memory, and transmit the digital key processing certificate to at least one of a service provider and the target device.

A smart home system is provided. As a result of detecting input, an identity of a guest is determined. At least one operation is then performed, based on the identity of the guest.

Establishing a status of a user at a physical area includes determining a presence of a mobile user device at a location relative to the physical area, determining an identification of the user from the mobile user device, accessing, from a secure component included proximal to the mobile user device, a credential for authorizing the mobile user device to communicate transactions with one or more other remotely located components, using the credential to securely determine one or more first attributes of the user and one or more second attributes of one or more resources located at the physical area, and determining a status of a user with respect to the one or more resources based at least in part on the determined identification of the user, the first attributes and the second attributes. The credential may be a block chain credential and the transactions may be block chain transactions.

A method of operating an access control system containing one or more hierarchies, each of the one or more hierarchies includes one or more access levels is provided. The method including: computing one or more hierarchies; and assigning a primary access level of the one or more access levels within a primary hierarchy of the one or more hierarchies to a first credential; and determining that access levels vertically below the primary access level in the primary hierarchy are implicitly assigned to the first credential when assigning the primary access level of the one or more access levels within the primary hierarchy of the one or more hierarchies to the first credential.

A server that shares key information to a portable terminal includes processing circuitry configured to deliver the key information to the portable terminal. The key information is associated with an object equipped with a control device, and the control device performs a predetermined control to the object when the control device receives the key information from an external terminal. The key information includes restriction information, where the restriction information sets a restriction content for the predetermined control.