1
ITEM REMOVAL SYSTEM AND METHOD
TECHNICAL FIELD OF THE INVENTION
This invention relates to the field of security systems, and more particularly to an item removal system and method.
BACKGROUND OF THE INVENTION
Many organizations maintain security systems and procedures that provide controlled access to the organizations' facilities. Primarily, these security systems and procedures focus on the movements of people. For example, an organization may place security systems at the vehicle or personnel entrances of the facilities to detect the egress and ingress of unauthorized personnel. Such systems employ security guards or automated devices such as badge or card readers to control access to facilities. An automated device may incorporate bar coding, magnetic stripe reading, retinal scanning, finger printing, or other known technique to retrieve information from the identification badge or authorized person.
These existing security systems may not adequately protect valuable items associated with personnel with access to the facility. For example, computing equipment, communications equipment, magnetic tapes, and other valuable or sensitive items may be stolen by persons with access to the facilities but without the authority to remove the items from the facilities.
SUMMARY OF THE INVENTION
In accordance with the present invention, an item removal system and method are provided that substantially eliminate or reduce disadvantages or problems associated with previously developed security systems and methods. In particular, the present invention provides a system and method for authorizing the removal of an item from a facility by associating the item with an authorized person, an authorized container, or both.
In one embodiment of the present invention, a system for authorizing the removal of an item from a facility includes a first tag affixed to the item and a second tag in proximity to the item. A reader reads the first tag and the second tag, and a database coupled to the reader indicates an association between the first tag and the second tag to authorize the removal of the item from the facility. In more particular embodiments, the second tag may be associated with a person transporting the item or affixed to a container transporting the item.
Technical advantages of the present invention include a security system that tags valuable or confidential items, as well as the persons or containers that transport those items. For example, a person with a tag may attempt to exit the facility with a laptop computer that also contains a tag. The security system reads the two tags, consults a database, and determines if removal of the item from the facility is authorized. Any number and combination of items, persons, and containers may be tagged and associated to provide adequate monitoring of the removal of items from a facility. In a particular embodiment, the security system includes a base station that reads tags on items, persons, and/or containers, and determines whether the tags are properly associated and whether the corresponding items, persons, and/or containers are authorized to exit the facility. The base station may lock doors, sound alarms, and/or communicate a message to a remote site or security outpost that includes information on the unauthorized exit.
2
Another technical advantage of the present invention is the use of wireless transmissions to read tags in a person's pocket, within valuable items, enclosed in boxes, or in some other inaccessible or concealed location. This provides con
5 venience to the persons using the security system, and heightens security since tags may be embedded or concealed within items. The security system may set a predetermined time interval that defines an authorization event. During this authorization event, the system reads tags within its range to
10 reduce or eliminate "tailgating" and other techniques designed to foil the system.
Yet another technical advantage of the present invention is the integration of a base station with the organization's inventory control system. The inventory control system can
15 maintain, update, and modify associations between items, persons, and/or containers and communicate this information to the base station to provide immediate and dynamic control over items in the facility. The base station may communicate egress and ingress information to the inven
20 tory control system to update the location and status of items, persons, and/or containers. Other technical advantages are readily apparent to one skilled in the art from the following figures, descriptions, and claims.
25 BRIEF DESCRIPTION OF THE DRAWINGS
For a more complete understanding of the present invention, and for further features and advantages thereof, reference is now made to the following description taken in 30 conjunction with the accompanying drawings, in which:
FIG. 1 illustrates a security system that authorizes the removal of an item from a facility according to the present invention;
FIG. 2 illustrates an alternative embodiment of a security 35 system that authorizes the removal of an item from a facility according to the present invention;
FIG. 3 illustrates a schematic block diagram of an exemplary base station and tag used in the security system according to the present invention; 40 FIG. 4 is a flow chart of an exemplary method for operating a base station in the security system according to the present invention; and
FIG. 5 illustrates exemplary data structures maintained by 45 the security system to authorize item removal according to the present invention.
DETAILED DESCRIPTION OF THE
INVENTION
50 FIG. 1 illustrates a security system 10 that authorizes the removal of an item 12 from a facility. In this embodiment, a person 14 transports item 12 from the facility through an exit 16. The security system 10 includes a base station 18 that communicates with tag 20 associated with item 12 and
55 tag 22 associated with person 14 to authorize the removal of item 12 by person 14.
Item 12 may be any portable item of which an organization desires to prevent unauthorized removal from its facility. This may include computing equipment (e.g., laptop
60 computers, desktop computers, calculators, personal information managers), communications equipment (e.g., telephones, facsimile machines, modems), portable computer media (e.g., magnetic disks, optical disks, backup tapes), or other valuable and confidential items that are
65 subject to potential unauthorized removal. Each item 12 to be monitored includes tag 20 mounted on the surface of item 12, enclosed or embedded within item 20, or otherwise
3
affixed to item 12. For example, tag 20 may be enclosed within the casing of a laptop computer to heighten the security features and capabilities of system 10.
Person 14 also includes tag 22 that may be incorporated or integral to an employee identification badge or device maintained on person 14 or in proximity to person 14. For example, a badge may be clipped to or enclosed in a pocket, carried in the employee's wallet or purse, transported in another personal article (e.g., brief case, luggage), surgically implanted or affixed to person 14, or otherwise placed in proximity to person 14.
Wherever tags 20 and 22 are placed, enclosed, or positioned, base station 18 utilizes wireless communication techniques to read information encoded or stored within tags 20 and 22. In a particular embodiment, base station 18 transmits an interrogation message or request to read tags 20 and 22, and tags 20 and 22 respond by transmitting a response message to base station 18 that includes their respective tag identifiers (IDs). Base station 18 and tags 20 and 22 preferably communicate over links 24 using any appropriate wireless communication technique, such as radio frequency (RF), infrared (IR), optical, ultrasound, or other wireless technique that allows base station 18 to interrogate and receive the tag IDs of tags 20 and 22.
Base station 18 is coupled to alarm 30 which includes audible alarms, visual alarms, and/or other alarm devices for activation when base station 18 detects an unauthorized attempt to remove item 12 from the facility. Lock 32 is coupled to base station 18 and operates with exit 16 to prevent the unauthorized removal of item 12. Exit 16 may be one or a combination of the following: doors, revolving doors, gates, turnstiles, openings, or other egress or ingress locations. In a particular embodiment, exit 16 is a turnstile or revolving door and lock 32 controls the rotation of exit 16 to entrap person 14, if base station 18 detects an unauthorized exit.
Base station 18 may also communicate an alarm condition, tag IDs, information on item 12 and person 14, and other information regarding the authorization event to remote site 34 to alert security officers or other authorities of the unauthorized successful or attempted removal of item 12. Base station 18 is also coupled to inventory control system (ICS) 36 that includes inventory database 38. ICS 36 is coupled to an interface 40 that allows entry and modification of information stored in database 38 related to item 12 and person 14 authorized to remove item 12 from the facility. Base station 18 provides egress and ingress information to ICS 36 as it processes authorization events at exit 16. Interface 40 accesses database 38 in ICS 36 to retrieve egress and ingress information for monitoring the movements of items 12 and persons 14 throughout an organization's facility.
In operation, ICS 36 receives information regarding the association between item 12 and person 14 from interface 40. ICS 36 stores this information in database 38 and, alternatively or in addition, transmits this information to base station 18. Periodically, ICS 36 receives additional information regarding the association between items 12 and persons 14 in security system 10. ICS 36 then updates database 38 and informs base station 18 of the changes as needed. In this described example, ICS 36, base station 18, or both maintain information that associates item 12 with person 14.
Person 14 transporting item 12 approaches exit 16 and comes within wireless communication range of base station 18. Base station 18 continually or periodically transmits
4
interrogation messages to detect the presence of tags 20 and 22 within its wireless communication range. Base station 18 may also initiate transmission of an interrogation message upon an alternative detection of the presence of item 12 and
5 person 14 by an optical beam, motion sensor, user-operated button, or other suitable device. Using any of these initiation techniques or devices, base station 18 transmits an interrogation message and tags 20 and 22 communicate a response message using links 24. The response message includes tag
10 IDs of tags 20 and 22. Base station 18 then consults a local database or database 38 in ICS 36 to determine if person 14 is authorized or properly associated with item 12. If base station 18 determines that person 14 is authorized to remove item 12 from the facility, base station 18 deactivates lock 32
15 to allow person 14 to pass through exit 16.
However, if base station 18 determines that person 14 is not authorized to remove item 12 from the facility, base station 18 declares an unauthorized exit. In a particular embodiment, base station 18 activates alarm 30 and lock 32
20 to prevent the removal of item 12 by person 14. Also, base station 18 may generate and communicate a message to remote site 34 that contains relevant information on the unauthorized exit. This information may include tag IDs of tags 20 and 22, additional information retrieved from a local
25 database or database 38 regarding item 12 and person 14, an identification of exit 16, and other information that allows persons or systems located at remote site 34 to respond and investigate the unauthorized exit.
FIG. 2 illustrates an alternative embodiment of security
30 system 10 that includes various containers 50 and 54 (referred to generally as containers 50) to transport items 12. Containers 50 include container tags 56, which provide additional flexibility to authorize the removal of items 12 in security system 10. Containers 50 may be boxes, crates,
35 carts, personal vehicles, trucks, forklifts, or any other device that can transport item 12, person 14, or both.
In one embodiment, container 50 includes container tag 56 that is associated with tags 20 of items 12 contained
4Q within container 50. This arrangement allows for certain tagged containers 50 to be self-authorizing for the removal of items 12. For example, relocation personnel, inventory control personnel, and management information systems (MIS) personnel may use self-authorizing containers 50 to
45 transport associated items 12 throughout and between the organization's facilities. In another embodiment, container 54 includes container tag 56 associated with tags 20 of items 12 carried by container 54. For example, container 54 may be a dolly, cart, or other device used to transport items 12.
5Q Person 14 carrying or otherwise transporting containers 50 and 54 containing items 12 may include tag 22 associated with tags 20, tags 56, or both.
In operation, person 14, with or without tag 22, carries or transports containers 50 to exit 16. As items 12, person 14,
55 and containers 50 approach exit 16, base station 18 interrogates and receives tag IDs from tags 20, 22, and/or 56, respectively. Base station 18 consults a local database or database 38 in ICS 36 to determine the proper association among items 12, person 14, and/or containers 50. Base
60 station 18 then proceeds in the manner described above with reference to FIG. 1 to handle an authorized or unauthorized exit.
FIG. 3 illustrates a schematic block diagram of base station 18 and tag 20. Tag 20 refers to tags 20 on items 12, 65 tags 22 on persons 14, and tags 56 on containers 50, which are all similar in structure and functionality. Although FIG. 3 illustrates a single base station 18 and a single tag 20, it
5
should be understood that security system 10 may include multiple base stations 18 at a single or multiple exits 16 to service any combination of tags 20.
Base station 18 includes an antenna 100 coupled to a wireless interface 102. Antenna 100 and wireless interface 5 102 together comprise a reader that communicates with tags 20 using link 24 and any suitable wireless technique. Wireless interface 102 is coupled to bus 104, which in turn is coupled to a processor 106 and a memory 108. Memory 108 includes program instructions 112 executed by processor 1° 106 to control the overall operation and function of base station 18. Memory 108 also includes tag ID list 114 that stores tag IDs received by base station 18 during an authorization event. A database 110 is also coupled to bus 104 and includes an associated tag ID list 116 that establishes an :5 association among tags 20 in security system 10. Tag ID list 114 and associated tag ID list 116 are described in more detail below with reference to FIG. 5. Database 110 also includes a log 118 to store information on authorization events performed by base station 18. 20
Base station 18 also includes an alarm driver 120 and a lock driver 122 coupled to bus 104. Alarm driver 120 allows base station 18 to activate visual, audible, and/or other alarms at exit 16. Lock driver 122 allows base station to lock and unlock exit 16. Lock driver 122 may also include 25 additional circuitry to sense the position or status of exit 16 and to lock person 14 in exit 16 in response to an unauthorized exit. This may be particularly advantageous when exit 16 is a revolving door or turnstile or when exit 16 comprises an inner and outer door that define a secure area to trap 30 unauthorized person 14.
Base station 18 also includes an inventory interface 124 and a remote site interface 126 coupled to bus 104. Inventory interface 124 and remote site interface 126 may support 3J communication over a local area network (LAN), wide area network (WAN), public switched telephone network (PSTN), wireless communication link, or other dedicated, switched, private, or public communication link. Inventory interface 124 allows base station 18 to communicate with 4Q ICS 36. In this manner, base station 18 may access database 110 or database 38 in ICS 36 to determine whether an exit is authorized. Inventory interface 124 allows ICS 36 to update the contents of associated tag ID list 116 stored in database 110. Inventory interface 124 also allows base 4J station 18 to communicate egress and ingress information to ICS 36 to update the location and status of items 12, persons 14, and containers 50 in the organization's facilities.
Remote site interface 126 allows base station 18 to communicate an alarm message and other information con- 50 cerning the operation of base station 18 to remote site 34. The alarm message may include tag IDs stored in tag ID list 114; information maintained in associated tag ID list 116 or log 118; information related to items 12, persons 14, and containers 50; the identification or location of exit 16; or 55 other information regarding the authorization event or unauthorized exit. Since log 118 stores information on previous authorization events performed by base station 18, the alarm message may include information on preceding or subsequent authorization events to frustrate attempts to remove 60 items 12 by tailgating with an otherwise authorized exit. In one embodiment, remote site 34 comprises a manned security station, police station, or other site that contains authorized personnel to investigate the unauthorized exit detected by base station 18. 65
Tag 20 in FIG. 3 includes an antenna 130 and a wireless interface 132 that operate to communicate information with
6
base station 18 using link 24. Wireless interface 132 is coupled to bus 134, which in turn is coupled to a processor 136, a memory 138, and a power module 140. Processor 136 directs the overall operation of tag 20, and may comprise an application-specific controller that coordinates components of tag 20 to respond to an interrogation message from base station 18.
Memory 138 may comprise random access memory (RAM), read only memory (ROM), or other suitable volatile or non-volatile memory. Memory 138 includes program instructions 142 executed by processor 136 to control the overall operation and function of tag 20. Memory 138 also includes a tag ID 144 that distinctly identifies tag 20. Power module 140 provides power to components of tag 20 to generate and transmit a response message to base station 18. Power module 140 may comprise a battery or other power storage device. Power module 140 may also include circuitry that receives power from the interrogation signal from base station 18 to energize circuits of tag 20 to transmit a response message.
In operation, tag 20 moves to within the wireless operating range of base station 18 and receives an interrogation signal at antenna 130 and wireless interface 132. Processor 136 detects the interrogation signal and generates a response message using the contents of memory 138. In a particular embodiment, the response message comprises tag ID 144 and any suitable framing, synchronization, error correction, or protocol information of the chosen transmission technique of link 24. Moreover, the response message may be encrypted to prevent unauthorized interception of tag ID 144. Wireless interface 132 receives the response message generated by processor 136 and places the response message into a suitable form for transmission over antenna 130. This may include appropriate generation of a carrier signal and the use of a variety of analog or digital modulation techniques to impress the information contained in the response message on a suitable wireless communication channel supported by link 24. Powered by power module 140, wireless interface 132 and antenna 130 transmit the response message to base station 18 using link 24.
Antenna 100 and wireless interface 102 receive and demodulate the response message at base station 18. If appropriate, wireless interface 102 and/or processor 106 may retrieve a key or encryption algorithm to decode the transmission and recover the information in the response message. Processor 106 then directs memory 108 to store tag ID 144 received from tag 20 in tag ID list 114. Base station 18 may receive responses from other tags 20, and their associated tag IDs 144 are also stored in tag ID list 114 in a similar manner.
Processor 106 then determines if a predetermined time interval defining an authorization event has expired. Upon expiration of the predetermined time interval, processor 106 queries associated tag ID list 116 stored in database 110 to determine if tag IDs 144 stored in tag ID list 114 are authorized to exit the facility. If the exit is authorized, processor 106 directs lock driver 122 to unlock exit 16. Processor 106 then records information associated with the authorization event in log 118 of database 110.
If the exit is unauthorized, processor 106 directs lock driver 122 to lock exit 16, which in the case of a revolving door or inner/outer door configuration may confine person 14 in exit 16. Processor 106 also directs alarm driver 120 to activate appropriate alarms 30 and may generate and direct an alarm message to remote site 34 using remote site interface 126. Processor 106 then records information associated with the authorization event in log 118 of database 110.
|
