< Back
Sign In to Follow Application
View All Documents & Correspondence
Login

Secure Gateways For Connected Dispensing Machines

Abstract: The present disclosure is directed to systems and methods for securely providing telemetry data of a dispenser machine to an administrator system via an exposed web service over a computer network. To secure the exposed web service, the systems and methods of the present disclosure provide secure gateways at the dispenser machine and the administrator system that can provide one or more of message integrity, authentication, authorization, and confidentiality. The secure gateways are implemented separate from the applications creating web service request and response messages at the dispenser machine and the administrator system, respectively. Because the secure gateways are implemented separate from the applications creating the web service request and response messages, the applications creating the web service request and response messages can be created and modified without consideration to message security, which is handled transparently by the secure gateways.

Get Free WhatsApp Updates!
Notices, Deadlines & Correspondence

Patent Information

Application #
Filing Date
20 November 2018
Publication Number
49/2018
Publication Type
INA
Invention Field
COMMUNICATION
Status
Email
CHENNAI@KNSPARTNERS.COM
Parent Application
Patent Number
Legal Status
Grant Date
2024-01-03
Renewal Date

Applicants

PEPSICO, INC.
700 Anderson Hill Road, Purchase, New York 10577, USA.

Inventors

1. GONG, George Xu
c/o PEPSICO, INC., 700 Anderson Hill Road, Purchase, New York 10577, USA.

Specification

WHAT IS CLAIMED IS:
1. A dispenser controller comprising:
a dispenser web service client configured to construct a web service message comprising a header and a body, wherein the body contains telemetry data of a dispenser machine;
a dispenser web service gateway configured to:
intercept the web service message in a manner transparent to the dispenser web service client before the web service message is sent over a computer network to an administrator controller,
create a digital signature by signing at least a part of the telemetry data in the web service message with a private key associated with the dispenser controller,
insert the digital signature into the header of the web service message,
encrypt at least a part of the telemetry data in the body of the web service message, and
transmit the web service message, after inserting the digital signature into the header of the web service message and encrypting the at least a part of the telemetry data in the body of the web service message, to the administrator over the computer network.
2. The dispenser controller of claim 1, wherein the telemetry data includes both consumption data of the dispenser machine and status data of the dispenser machine.
3. The dispenser controller of claim 1, wherein the dispenser web service gateway is further configured encrypt the at least a part of the telemetry data in the body of the web service message using a public key associated with the administrator controller.
4. The dispenser controller of claim 1, wherein the dispenser web service gateway is further configured encrypt the at least a part of the telemetry data in the body of the web service message using a symmetric key.

5. The dispenser controller of claim 4, wherein the dispenser web service gateway is further configured to encrypt the symmetric key using a public key associated with the administrator controller.
6. The dispenser controller of claim 1, wherein the dispenser web service gateway is further configured to send a heartbeat message, without signing or encrypting data within the heartbeat message, to the administrator controller before transmitting the web service message to the administrator controller over the computer network, wherein the heartbeat message is used to signal that the dispenser machine exists to the administrator controller.
7. The dispenser controller of claim 1, wherein the dispensing machine dispenses beverages.
8. The dispenser controller of claim 1, wherein the computer network is the internet.
9. An administrator controller comprising:
an administrator web service gateway configured to:
receive a web service message comprising a header and a body over a computer network, wherein the header contains a digital signature and the body contains encrypted telemetry data of a dispenser machine,
authenticate the web service message using a public key associated with the dispenser machine;
authorize a request in the web service message based on an identity of the dispenser machine, and
decrypt the encrypted telemetry data in the body of the web service message; and
an administrator web service provider configured to process the web service message based on the request and the decrypted telemetry data after the web service message has been authenticated and the request authorized by the administrator web service gateway.
10. The administrator controller of claim 9, wherein the telemetry data includes both
consumption data of the dispenser machine and status data of the dispenser machine.

11. The administrator controller of claim 9, wherein the administrator web service gateway is transparent to the administrator web service provider.
12. The administrator controller of claim 9, wherein the web service gateway is further configured to authorize the request in the web service message based on the identity of the dispenser machine only after authenticating the web service message.
13. The administrator controller of claim 9, wherein the request is to place the decrypted telemetry data into a database.
14. The administrator controller of claim 9, wherein the dispensing machine dispenses beverages.
15. The administrator controller of claim 9, wherein the computer network is the internet.
16. The administrator controller of claim 9, wherein the administrator web service gateway is further configured to receive a second web service message from a second dispensing machine.
17. A method comprising:
constructing a web service message comprising a header and a body, wherein the body contains telemetry data of a dispenser machine;
intercepting the web service message before the web service message is sent over the internet to an administrator controller;
creating a digital signature by signing at least a part of the telemetry data in the web service message with a private key associated with the dispenser controller;
inserting the digital signature into the header of the web service message;
encrypting at least a part of the telemetry data in the body of the web service message; and
transmitting the web service message, after inserting the digital signature into the header of the web service message and encrypting the at least a part of the telemetry data in the body of the web service message, to the administrator over the internet.

18. The method of claim 17, wherein the telemetry data includes both consumption data of the dispenser machine and maintenance data of the dispenser machine.
19. The method of claim 17, further comprising:
sending a heartbeat message, without signing or encrypting data within the heartbeat message, to the administrator controller before transmitting the web service message to the administrator controller over the internet, wherein the heartbeat message is used to register the dispenser machine with the administrator controller.
20. The method of claim 17, wherein the dispensing machine dispenses beverages.

Documents

Application Documents

# Name Date
1 201847043589-IntimationOfGrant03-01-2024.pdf 2024-01-03
1 201847043589.pdf 2018-11-20
2 201847043589-PatentCertificate03-01-2024.pdf 2024-01-03
2 201847043589-STATEMENT OF UNDERTAKING (FORM 3) [20-11-2018(online)].pdf 2018-11-20
3 201847043589-Response to office action [26-05-2023(online)].pdf 2023-05-26
3 201847043589-POWER OF AUTHORITY [20-11-2018(online)].pdf 2018-11-20
4 201847043589-FORM 3 [14-02-2023(online)].pdf 2023-02-14
4 201847043589-FORM 1 [20-11-2018(online)].pdf 2018-11-20
5 201847043589-FORM 3 [15-06-2022(online)].pdf 2022-06-15
5 201847043589-DRAWINGS [20-11-2018(online)].pdf 2018-11-20
6 201847043589-DECLARATION OF INVENTORSHIP (FORM 5) [20-11-2018(online)].pdf 2018-11-20
6 201847043589-ABSTRACT [26-03-2022(online)].pdf 2022-03-26
7 201847043589-COMPLETE SPECIFICATION [20-11-2018(online)].pdf 2018-11-20
7 201847043589-CLAIMS [26-03-2022(online)].pdf 2022-03-26
8 Correspondence by Agent_General Power of Attorney_22-11-2018.pdf 2018-11-22
8 201847043589-COMPLETE SPECIFICATION [26-03-2022(online)].pdf 2022-03-26
9 201847043589-DRAWING [26-03-2022(online)].pdf 2022-03-26
9 201847043589-Proof of Right (MANDATORY) [14-01-2019(online)].pdf 2019-01-14
10 201847043589-FER_SER_REPLY [26-03-2022(online)].pdf 2022-03-26
10 Correspondence by Agent_Assignment_16-01-2019.pdf 2019-01-16
11 201847043589-FORM 3 [22-03-2019(online)].pdf 2019-03-22
11 201847043589-OTHERS [26-03-2022(online)].pdf 2022-03-26
12 201847043589-FORM 3 [11-11-2021(online)].pdf 2021-11-11
12 201847043589-FORM 3 [24-02-2020(online)].pdf 2020-02-24
13 201847043589-Certified Copy of Priority Document [04-11-2021(online)].pdf 2021-11-04
13 201847043589-FORM 18 [23-04-2020(online)].pdf 2020-04-23
14 201847043589-FER.pdf 2021-11-03
15 201847043589-Certified Copy of Priority Document [04-11-2021(online)].pdf 2021-11-04
15 201847043589-FORM 18 [23-04-2020(online)].pdf 2020-04-23
16 201847043589-FORM 3 [11-11-2021(online)].pdf 2021-11-11
16 201847043589-FORM 3 [24-02-2020(online)].pdf 2020-02-24
17 201847043589-OTHERS [26-03-2022(online)].pdf 2022-03-26
17 201847043589-FORM 3 [22-03-2019(online)].pdf 2019-03-22
18 Correspondence by Agent_Assignment_16-01-2019.pdf 2019-01-16
18 201847043589-FER_SER_REPLY [26-03-2022(online)].pdf 2022-03-26
19 201847043589-DRAWING [26-03-2022(online)].pdf 2022-03-26
19 201847043589-Proof of Right (MANDATORY) [14-01-2019(online)].pdf 2019-01-14
20 201847043589-COMPLETE SPECIFICATION [26-03-2022(online)].pdf 2022-03-26
20 Correspondence by Agent_General Power of Attorney_22-11-2018.pdf 2018-11-22
21 201847043589-CLAIMS [26-03-2022(online)].pdf 2022-03-26
21 201847043589-COMPLETE SPECIFICATION [20-11-2018(online)].pdf 2018-11-20
22 201847043589-ABSTRACT [26-03-2022(online)].pdf 2022-03-26
22 201847043589-DECLARATION OF INVENTORSHIP (FORM 5) [20-11-2018(online)].pdf 2018-11-20
23 201847043589-DRAWINGS [20-11-2018(online)].pdf 2018-11-20
23 201847043589-FORM 3 [15-06-2022(online)].pdf 2022-06-15
24 201847043589-FORM 1 [20-11-2018(online)].pdf 2018-11-20
24 201847043589-FORM 3 [14-02-2023(online)].pdf 2023-02-14
25 201847043589-Response to office action [26-05-2023(online)].pdf 2023-05-26
25 201847043589-POWER OF AUTHORITY [20-11-2018(online)].pdf 2018-11-20
26 201847043589-STATEMENT OF UNDERTAKING (FORM 3) [20-11-2018(online)].pdf 2018-11-20
26 201847043589-PatentCertificate03-01-2024.pdf 2024-01-03
27 201847043589.pdf 2018-11-20
27 201847043589-IntimationOfGrant03-01-2024.pdf 2024-01-03

Search Strategy

1 201847043589ssE_06-08-2021.pdf

ERegister / Renewals

3rd: 20 Mar 2024

From 28/04/2019 - To 28/04/2020

4th: 20 Mar 2024

From 28/04/2020 - To 28/04/2021

5th: 20 Mar 2024

From 28/04/2021 - To 28/04/2022

6th: 20 Mar 2024

From 28/04/2022 - To 28/04/2023

7th: 20 Mar 2024

From 28/04/2023 - To 28/04/2024

8th: 20 Mar 2024

From 28/04/2024 - To 28/04/2025

9th: 22 Apr 2025

From 28/04/2025 - To 28/04/2026