Gluu Blog

Follow us:
Back to Blog

Kickstarter Idea: oxKey and oxLox

Michael Schwartz December 11, 2013


Here is my latest idea, its called “oxKey,” which would use NFC to store a “Key Code” on a physical key corresponding to the Medeco system (2 billion combinations). On the oxKey, a “Validation Code” is also stored, and updated periodically, as controlled by the owner’s preferences. The NFC data can be used by devices as a factor to electronically identify a person for access to network resources such as websites or mobile applications (oxKey is “something you have”). A “dumb” copy of the physical key, is the equivalent of a valet key. A corresponding idea is for “oxLock.” These smart locks act can use OpenID Connect to validate the digital characteristics of the key. Inserting a smart key into the phsyical lock is optional, and may be required only for the valet key. The oxLock can act as an UMA Resource Server (“RS”), making a request to an UMA Authorization Server (“AS”) to evaluate policies for scope “oxKey-valet”. The AS would enable the lock owner to define the policies for the scope “oxKey-valet”  to manage the permissions of the valet key. For example, maybe the valet key only works from 10am-12pm.


Be sure to subscibe to
our RSS Feed

Mike Schwartz

Mike has been an entrepreneur and identity specialist for more than two decades. He is the technical and business visionary behind Gluu. Mike is an application security expert and has been a featured speaker at RSA Conference, Gartner Catalyst, Cloud Identity Summity (now "Identiverse") and many other security conferences around the world.