CA2381363C - Impulse pay per use method and system for data and multimedia services - Google Patents

Impulse pay per use method and system for data and multimedia services Download PDF

Info

Publication number
CA2381363C
CA2381363C CA002381363A CA2381363A CA2381363C CA 2381363 C CA2381363 C CA 2381363C CA 002381363 A CA002381363 A CA 002381363A CA 2381363 A CA2381363 A CA 2381363A CA 2381363 C CA2381363 C CA 2381363C
Authority
CA
Canada
Prior art keywords
subscriber
ippu
selection
access controller
accordance
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
CA002381363A
Other languages
French (fr)
Other versions
CA2381363A1 (en
Inventor
Reem Safadi
Eric J. Sprunk
Doug Makofka
Ray Bontempi
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Google Technology Holdings LLC
Original Assignee
General Instrument Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by General Instrument Corp filed Critical General Instrument Corp
Publication of CA2381363A1 publication Critical patent/CA2381363A1/en
Application granted granted Critical
Publication of CA2381363C publication Critical patent/CA2381363C/en
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/47End-user applications
    • H04N21/472End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content
    • H04N21/47211End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content for requesting pay-per-view content
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/14Payment architectures specially adapted for billing systems
    • G06Q20/145Payments according to the detected use or quantity
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F17/00Coin-freed apparatus for hiring articles; Coin-freed facilities or services
    • G07F17/16Coin-freed apparatus for hiring articles; Coin-freed facilities or services for devices exhibiting advertisements, announcements, pictures or the like
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/254Management at additional data server, e.g. shopping server, rights management server
    • H04N21/2543Billing, e.g. for subscription services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/258Client or end-user data management, e.g. managing client capabilities, user preferences or demographics, processing of multiple end-users preferences to derive collaborative data
    • H04N21/25866Management of end-user data
    • H04N21/25875Management of end-user data involving end-user authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/47End-user applications
    • H04N21/478Supplemental services, e.g. displaying phone caller identification, shopping application
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/61Network physical structure; Signal processing
    • H04N21/6106Network physical structure; Signal processing specially adapted to the downstream path of the transmission network
    • H04N21/6125Network physical structure; Signal processing specially adapted to the downstream path of the transmission network involving transmission via Internet
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/633Control signals issued by server directed to the network components or client
    • H04N21/6332Control signals issued by server directed to the network components or client directed to client
    • H04N21/6334Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
    • H04N21/63345Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key by transmitting keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/162Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing
    • H04N7/165Centralised control of user terminal ; Registering at central
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/167Systems rendering the television signal unintelligible and subsequently intelligible
    • H04N7/1675Providing digital key or authorisation information for generation or regeneration of the scrambling sequence
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/173Analogue secrecy systems; Analogue subscription systems with two-way working, e.g. subscriber sending a programme selection signal
    • H04N2007/1739Analogue secrecy systems; Analogue subscription systems with two-way working, e.g. subscriber sending a programme selection signal the upstream communication being transmitted via a separate link, e.g. telephone line

Landscapes

  • Engineering & Computer Science (AREA)
  • Multimedia (AREA)
  • Signal Processing (AREA)
  • Business, Economics & Management (AREA)
  • Databases & Information Systems (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Human Computer Interaction (AREA)
  • Computer Graphics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

A method and system are provided for impulse purchasing of services over a communication network, such as a cable or satellite television network. Such services can include games or information accompanying television programming, home-shop-ping, e-mail services, streaming media and the like. Security is provided through entitlements generated by the access controller (14) and entitlement tokens generated by a secure processor. The secure processor is located at a subscriber terminal (16) through which a subscriber orders and obtains the services. A token is generated when the subscriber either selects the service, if pre-autho-rized, or when the service is purchased on impulse. The token is secured and signed, and may be used by a policy/proxy server (18) subtending to the NO's ISP and associated services to further facilitate offering these services to the subscribers.

Description

IMPULSE PAY PER USE METHOD AND SYSTEM FOR
DATA AND MULTIMEDIA SERVICES

BACKGROUND OF THE INVENTION

The present invention relates to communications networks such as cable television, satellite television and computer networks over which services are available for a fee, and more particularly to a method and system for allowing data and multimedia services to be purchased over such networks.
Cable and satellite'television networks where video services are available for a fee are well known.
Also well known are computer network services such as the Internet, America On-Line, Compuserve and others having web sites with different types of applications ranging from general information to entertainment to electronic shopping, all of which can be accessed for a fixed monthly fee. In the past, cable and satellite television networks have provided individual television services on an impulse purchase basis. Such "impulse pay-per-view" (IPPV) services include television movies or special sports events in which a viewer can order a service upon payment of a fee.
The provision of pay-per-view services is desirable from a consumer's standpoint since the consumer need only pay for those services which are desired and offered at times that the consumer is able to enjoy them. The success of pay-per-view services, whether they be movie or sports events, has prompted system operators and programmers to consider additional types of services to be offered using the pay-per-view approach.

One outgrowth of the pay-per-view approach would be the ability to offer services based on data and multimedia applications. Such services may include, without limitation, games or information accompanying the television programming, home-shopping, e-mail services, and the like. In order to provide such services, acceptable security measures must be implemented. In the subscription television field, such as satellite and cable television, security is provided using conditional access (CA) techniques.

It would be advantageous to extend television IPPV conditional access to services based on new applications. It would be particularly advantageous to extend such conditional access without requiring a new infrastructure to support these features, i.e., by providing simple extensions to already deployed systems. It would be further advantageous to enable subscriber terminals, such as set-top boxes previously used solely for video IPPV services, to provide "impulse pay per use" (IPPU) services for applications other than video or accompanying the video.
The present invention provides methods and systems having the aforementioned and other advantages.
SUMMARY OF THE INVENTION

A method and system are provided for allowing secure impulse pay-per-use (IPPU) services to be obtained over a communication network.
In a simplified embodiment, a subscriber IPPU
selection is sent by a subscriber (e.g., via telephone in the case of call-ahead entitlement or via the subscriber terminal in the case of pre-authorized entitlement) to an access controller. The access controller generates an encrypted message having a service identifier and associated authorization settings related to the subscriber IPPU selection, which encrypted message is then sent from the access controller to the subscriber terminal, together with the cost of the IPPU service selected by the subscriber. The subscriber terminal verifies that the cost of the IPPU selection is within a credit entitlement of the subscriber. If such verification is successful, the subscriber terminal generates a secure entitlement token for use by a client application residing in the subscriber terminal. The entitlement token may alternatively be generated by the access controller and forwarded to the subscriber terminal.
The client application will then send the entitlement token to a server (e.g., a proxy/policy server) in a secure manner in order to determine the status of the subscriber's entitlement to receive the IPPU
selection. If the subscriber's entitlement to receive the IPPU selection is verified, the server will further process the IPPU selection for further enabling the selected service/application for use by 5 the viewer.

The server can be an independent Internet Service Provider (ISP) proxy/policy server, an ISP
proxy/policy server affiliated with a Multiple System Cable Operators' (MSO) or other Network Operators' (NO) proxy/policy/policy server, a NO
proxy/policy/policy server, or the like.

In an alternate embodiment, the IPPU selection is first sent to a customer response center (CRC)/billing system, which in turn forwards the IPPU selection to the access controller. The billing system bills the subscriber for the IPPU selection.

In the case of a "Cyber CRC" configuration, where communications are provided over a global communication network (e.g. the Internet) or the like, the subscriber IPPU selection can be sent to the CRC/billing system via a web browser running at the subscriber terminal and a web server at the billing system.

As part of the communication with the access controller, the billing system can actuate the access controller to add the service referred to by the subscriber IPPU selection, which is a separate process from that which tells the access controller which subscribers are entitled to access the service.

The term "billing system" as used herein, as well known in the industry, is much broader than just a billing computer. Generally, the billing system refers to the business system that runs the Network Operator operation, and includes functions such as billing, system configuration and business operations.

In an alternate embodiment, the secure entitlement token is a signed and encrypted entitlement token, which signed and encrypted entitlement token is securely sent from the client application to the server for authentication and decryption. The entitlement token may be encrypted using, for example, the subscriber's private key. The proxy/policy server can then use the subscriber's public key to decrypt the entitlement token.
Alternatively, the token may be encrypted using symmetric key encryption methods. For example, the token may be encrypted using Data Encryption Standard (DES) techniques, and sent along with the DES key which is encrypted using a public key associated with the server (DES is an encryption standard which is described in US patent no. 3,962,593). The server then uses its private key to decrypt the DES key and uses the decrypted DES key to decrypt the token. The entitlement token may be generated at the access controller or at the subscriber terminal.
In a further embodiment, the service identifier is associated with one or more service related codes and data objects which are sent periodically from the access controller to the subscriber terminal.

The access controller may be a local access controller or a national access controller.

The IPPU services may consist of accessing certain cites, streaming media from the sites, downloading multimedia applications from the sites, accessing content resident on the sites, shopping, email, video mail, or the like.

The subscriber terminal may be a cable television set-top box, a digital television or host with point of deployment capability, a personal computer, or the like.

In an alternate embodiment, the subscriber IPPU
selection is pre-authorized at the subscriber terminal for a predetermined credit amount. Pre-authorization for IPPU allows a subscriber to request authorization locally (e.g., in the subscriber terminal). The subscriber terminal can subtract the cost associated with the subscriber IPPU selection from the credit amount.

To protect against repudiation of the IPPU

selection, the subscriber terminal can securely report the subscriber IPPU selection back to the access controller.

Corresponding methods and systems are provided.
BRIEF DESCRIPTION OF THE DRAWINGS

Figure 1 is a block diagram of the system in accordance with the present invention; and Figure 2 is a block diagram of the relevant components of a subscriber terminal in accordance with the present invention.
DETAILED DESCRIPTION OF THE INVENTION

In accordance with the invention, the impulse pay-per-view concept previously associated with television services is extended to impulse pay-per-use (IPPU) services associated with supplementary data and multimedia applications and the like. The term "use"
refers to the act of utilizing either subscriber terminal resources or code/data objects. Such objects comprise software code and/or data, and may be resident in the subscriber terminal or downloaded.
The invention securely entitles subscribers to purchase services on impulse. Such services may or may not rely on real time interaction with the network for delivering the service. In particular, a secure microprocessor in the subscriber terminal is provided with hardware and/or software to enable the secure processor to generate an entitlement token which is secure and signed, and may be used by the ISP's or NO's proxy/policy server prior to further processing by a server associated with a given service. The token is generated when a subscriber either selects a service (if pre-authorized) or purchases such a service on impulse. Such an IPPU purchase will utilize components resident in the subscriber terminal as well as applicable network components that support IPPU
purchase transactions.

Various system elements are used in providing IPPU services in accordance with the invention. These include:

1. Customer Response Center (CRC): Where a 5 subscriber's order forms (via Cyber Customer Service Representative (CSR) or other means) and order calls are processed (typically used in call ahead services).

2. Existing Network Operator Billing System (NO-BS):
10 The existing NO billing system interfaces to a national controller (Access Controller-AC) or a local controller (Digital Access Controller-DAC).
Typically, access requirements and authorization rights (entitlements) are conveyed from the Billing System.

3. Internet Service Provider Billing System (ISP-BS):
This is the NO's partner Internet Service Provider's (ISP) existing billing system (optional), which handles ISP services.

4. AC/DAC: Access controllers which control the authorization and purchase collection of services on a subscriber basis.

5. Subscriber terminal: A device such as a cable television set-top box, a digital television or host with point of deployment capability, a personal computer, or the like that offers video, audio and data services based on subscription, call-ahead, or impulse pay.

The invention is best illustrated in terms of the various transaction flows between the relevant elements, as shown in Figures 1 and 2. Before referring to the Figures, however, it should be noted there are multiple applicable scenarios under which the present invention can be utilized. These include:
1. Call-Ahead Enti tlement/Authorization 1.1 Carouseled applications (services) 1.2 Server based applications (services) 1.3 Streaming media services 2. Impulse purchase Entitlement/Authorization 2.1 Carouseled applications (services) 2.2 Server based applications (services) 2.3 Streaming media services Both of the carouseled application scenarios noted above can be achieved in a manner similar to call-ahead and IPPV of video services. In particular, the subscription and impulse tiers within the conditional access system are associated with service-identifiers which themselves may be associated with one or more service related code and data objects.
These objects are carouseled (i.e., sent periodically) on either the out-of-band or a given in-band channel which corresponds to the offered service. The authorization tier is conveyed in an encrypted message and delivered as such to a secure processor in the subscriber terminal.

If a consumer wishes to purchase a service marked as IPPU, and if he possesses the authorization tier that enables IPPU purchase in general, and if the network has granted him adequate credit, then the consumer can command the purchase directly to the subscriber terminal without the involvement of the network. The subscriber terminal will later report this purchase back to the network in a secure manner, either when requested or autonomously.

The server based applications scenarios, on the other hand are more involved. This is due to the fact that certain actions are required by the server (or proxy server) in order to facilitate the use of the selected service/application by the viewer. Such services may include, for example, accessing certain sites, downloading programs from these sites, or accessing content (e.g. streaming media content) resident on these sites. The policy/proxy server requires a secure mechanism to determine whether the subscriber is legitimately entitled to the selected service. The mechanism must be secure to guard against workarounds where a purchase is not registered but an entitlement token (encrypted, signed or otherwise) shows that the subscriber is entitled for a sought after service.

The set of impulse-purchasable services (e.g., multimedia applications, home shopping, e-mail, and the like) are associated with corresponding service-identifiers (service_id) that are recognized by both the NO's and the ISP's billing systems. Call ahead service tiers and/or IPPU tiers are associated with each service for each subscriber. Each service id may have a non zero cost associated with it.

In one embodiment as shown in Figure 1, a subscriber IPPU selection is sent by a subscriber to an access controller 14 (e.g., via telephone in the case of call-ahead entitlement or via the subscriber terminal in the case of pre-authorized entitlement).
The access controller 14 generates an encrypted message having a service identifier and associated authorization settings (e.g., authorization tier settings) related to the subscriber IPPU selection, which encrypted message is then sent from the access controller 14 to the subscriber terminal 16. The same message (or a separate message) may include the corresponding cost of the IPPU selection.
The subscriber terminal 16 verifies that the cost of the IPPU selection is within a credit entitlement of the subscriber. If such verification is successful, the subscriber terminal 16 generates (e.g., by a secure processor located in the subscriber terminal) a secure entitlement token for use by a client application residing in the subscriber terminal 16.
Alternatively, the entitlement token may be generated by the access controller 14 and forwarded to the subscriber terminal 16. The client application will then send the entitlement token to a server 18 in a secure manner in order to determine the status of the subscriber's entitlement to receive the IPPU
selection. If the subscriber's entitlement to receive the IPPU selection is verified, the server 18 will further process the IPPU selection to facilitate the use of the service/application by the viewer.

The server 18 can be an independent Internet Service Provider (ISP) proxy/policy server, an ISP
proxy/policy server affiliated with a Network Operators' (NO) proxy/policy/policy server, a NO

proxy/policy/policy server, or the like.

In an alternate embodiment, the IPPU selection is first sent to a customer response center (CRC)/billing system 12, which in turn forwards the IPPU selection to the access controller 14. The billing system 12 bills the subscriber for the IPPU selection. The CRC
may be a part of the NO billing system as shown in Figure 1, or the CRC may be a separate entity. The CRC
informs the billing system of the call-ahead (or cyber) subscriber selections and sends that information to the NO billing system (NO-BS).

In the case of a "Cyber CRC" configuration, where communication is provided over a global communication 5 network (e.g. the Internet) or the like, the subscriber IPPU selection can be sent to the CRC/billing system 12 via a web browser running at the subscriber terminal 16 and a web server at the billing system 12.

10 The server may also inform the ISP's billing system 20 (ISP-BS) about the purchase transaction. In NO systems where there is one NO billing system for all services, the ISP's billing system 20 is actually part of or the same as the NO's billing system 12.
15 Depending on the billing model, the subscriber terminal 16 may subtract a subscription fee associated with IPPU (one time purchase until terminated), and the ISP-BS 20 may charge an additional transaction fee. Alternatively, the subscriber terminal 16 may only register the purchase and convey the entitlement (as mentioned above) with no charge. The ISP's billing system 20 may then apply the charge.

As part of the communication with the access controller 14, the billing system 12 can actuate the access controller 14 to add the service referred to by the subscriber IPPU selection, which is a separate process from that which tells the access controller 14 which subscribers are entitled to access the service.
The term "billing system" as used herein, as well known in the industry, is much broader than just a billing computer. Generally, the billing system refers to the business system that runs the NO operation, and includes functions such as billing, system configuration and business operations.

In an alternate embodiment, the secure entitlement token is a signed and encrypted entitlement token, which signed and encrypted entitlement token is securely sent from the client application to the server 18 for authentication and decryption.

The entitlement token may be encrypted using, for example, public key/private key methods and/or DES
encryption methods. The subscriber terminal 16 will pass the encrypted entitlement token on to the server 18 for determination of entitlement. The entitlement token may be generated at the access controller 14 or at the subscriber terminal 16.

In a further embodiment, the service identifier is associated with one or more service related codes and data objects which are sent periodically from the access controller 14 to the subscriber terminal 16.
The access controller 14 may be a local access controller or a national access controller.

The IPPU services may consist of accessing certain sites, streaming media from the sites, downloading multimedia applications from the sites, accessing content resident on the sites, shopping, email, video mail, or the like.
The subscriber terminal 16 may be a cable television set-top box, a digital television or host with point of deployment capability, a personal computer, or the like.
In an alternate embodiment, the subscriber IPPU
selection is pre-authorized at the subscriber terminal 16 for a predetermined credit amount. Pre-authorization for IPPU allows a subscriber to request authorization locally (e.g., in the subscriber terminal 16). The subscriber terminal 16 can subtract the cost associated with the subscriber IPPU selection from the credit amount.

To protect against repudiation of the IPPU
selection, the subscriber terminal 16 can securely report the subscriber IPPU selection back to the access controller 14.
Figure 2 provides an example of the processing that takes place at the subscriber terminal 16 in a particular embodiment. The subscriber terminal 16 receives the encrypted message from the access controller 14 as discussed in connection with Figure 1. As discussed above, the encrypted message or a separate message may include the corresponding cost of the IPPU selection. A secure processor 32 located in the subscriber terminal 16 then processes the encrypted message to verify whether the cost of the IPPU selection is within the credit entitlement of the subscriber. If such verification is successful, the subscriber terminal 16 then generates (e.g., by the same secure processor 32) a secure entitlement token for use by the client application 40. The client application 40 is provided with this token by an application layer interface routine which will then send the entitlement token to the server 18 in a secure manner as discussed in connection with Figure 1. In this way, the server 18 can further validate the legitimacy of the subscriber's entitlement to the requested service. It also provides non-repudiation of the purchase transaction within the subscriber terminal, allowing the NO to have absolute visibility and control of the purchasable services.

Once entitlement to a particular IPPU selection is verified, the IPPU selection content is forwarded to the subscriber terminal 16 by the server 18 as discussed in connection with Figure 1. The IPPU

selection may be received by the secure processor 32 via a conventional receiver circuit (i.e. receiver output of Figure 2). The secure processor may further process the IPPU content (e.g., if the content associated with the selection is encrypted).
Unencrypted content can then be processed in a conventional manner for display (e.g., by a demultiplexer/decoder 34 or by software in the subscriber terminal 16).
A device memory 30 is provided to store local data related to the subscriber terminal 16 and/or purchases made therewith. This memory can also be used to store software and/or firmware associated with the subscriber terminal 16 as well as data being processed by the CPU 36, depending on the particular implementation chosen.

It should now be appreciated that the present invention provides an improved method and system for allowing secure impulse pay-per-use (IPPU) services to be obtained over a communication network. In particular, a subscriber terminal is provided with the ability to generate (e.g., by a secure processor located in the subscriber terminal) a signed and/or encrypted token to be used by a NO's or affiliated ISP
proxy server to further validate the legitimacy of a subscriber's entitlement to a requested service or set of services offered by the NO or the affiliated ISP.
The invention also provides non-repudiation of purchase transactions via a subscriber terminal, thereby requiring a subscriber to pay for all IPPU
services ordered. An intended result is to provide NO's with absolute visibility and control of purchasable services.

Although the invention has been described in connection with various preferred embodiments, it should be appreciated that numerous adaptations and modifications can be made thereto without departing from the scope of the invention as set forth in the claims.

Claims (32)

WHAT IS CLAIMED IS:
1. A method of providing secure impulse pay-per-use (IPPU) services to a subscriber over a communication network, comprising the steps of:

sending a subscriber IPPU selection from the subscriber to an access controller;
generating at the access controller an encrypted message having a service identifier and associated authorization settings related to the subscriber IPPU selection;
communicating said encrypted message from the access controller to a subscriber terminal together with the cost of the IPPU service selected by the subscriber;
verifying that said cost is within a credit entitlement of said subscriber, and if such verification is successful, generating a secure entitlement token for use by a client application residing in the subscriber terminal;
securely sending the entitlement token from the client application to a server for determining the status of the subscriber's entitlement; and processing the IPPU selection at said server for enabling the selection to be used by the subscriber upon processing of the selection and associated entitlement.
2. A method in accordance with claim 1, wherein the server is one of an independent Internet Service Provider (ISP) proxy/policy server, an ISP
proxy/policy server affiliated with a Network Operators' (NO) proxy/policy/policy server, or a NO
proxy/policy/policy server.
3. A method in accordance with claim 1 or 2, wherein the step of sending a subscriber IPPU
selection to the access controller further comprises the steps of:
sending the subscriber IPPU selection to a billing system;
conveying the IPPU selection from the billing system to the access controller; and billing the subscriber for the IPPU service provided.
4. A method in accordance with claim 3, wherein the subscriber IPPU selection is sent to the billing system using a web browser associated with the subscriber terminal and a web server associated with the billing system.
5. A method in accordance with claim 3 or 4, wherein:

as part of said communication to said access controller, the billing system actuates the access controller to add the service referred to by the subscriber IPPU selection; and the step of adding said service is a separate process from that which tells the access controller which subscribers are entitled to access the service.
6. A method in accordance with one of claims 1 to 5, wherein the secure entitlement token is a signed and encrypted entitlement token, which signed and encrypted entitlement token is securely sent from the client application to the server for authentication and decryption.
7. A method in accordance with claim 6, wherein the entitlement token is encrypted using at least one of: (i) private key/public key encryption methods;
and (ii) symmetric key encryption methods.
8. A method in accordance with one of claims 1 to 7, wherein the service identifier is associated with one or more service related codes and data objects which are sent periodically from the access controller to the subscriber terminal.
9. A method in accordance with one of claims 1 to 8, wherein the access controller is a local access controller.
10. A method in accordance with one of claims 1 to 8, wherein the access controller is a national access controller.
11. A method in accordance with one of claims 1 to 10, wherein the services comprise at least one of accessing certain sites, streaming media from the sites, downloading multimedia applications from the sites, accessing content resident on the sites, shopping, email, and video mail.
12. A method in accordance with one of claims 1 to 11, wherein the subscriber terminal is one of a cable television set-top box, a digital television or host with point of deployment capability, or a personal computer.
13. A method in accordance with one of claims 1 to 12, wherein the subscriber IPPU selection is pre-authorized at the subscriber terminal for a predetermined credit amount.
14. A method in accordance with claim 13, wherein a cost associated with the subscriber IPPU selection is subtracted from the credit amount.
15. A method in accordance with one of claims 1 to 14, further comprising the step of securely reporting the subscriber IPPU selection from the subscriber terminal back to the access controller.
16. A method in accordance with one of claims 1 to 15, wherein the entitlement token is generated at one of the access controller or the subscriber terminal.
17. A system for providing secure impulse pay-per-use (IPPU) services to a subscriber over a communication network, comprising:
a subscriber terminal having a client application;
an access controller for receiving a subscriber IPPU selection; and a server, wherein:
the subscriber conveys the subscriber IPPU selection to the access controller;
the access controller generates an encrypted message having a service identifier and associated authorization settings related to the subscriber IPPU selection;
the access controller communicates the encrypted message to the subscriber terminal together with the cost of the IPPU service selected by the subscriber;
the subscriber terminal verifies that said cost is within a credit entitlement of said subscriber, and if such verification is successful, the subscriber terminal generates a secure entitlement token for use by the client application residing in the subscriber terminal;
the client application securely sends the entitlement token to the server for determining the status of the subscriber's entitlement; and the server processes the IPPU selection to enable the selection to be used by the subscriber upon processing of the selection and associated entitlement.
18. A system in accordance with claim 17, wherein the server is one of an independent Internet Service Provider (ISP) proxy/policy server, an ISP
proxy/policy server affiliated with a Network Operators' (NO) proxy/policy/policy server, or a NO
proxy/policy/policy server.
19. A system in accordance with claim 17 or 18, further comprising a billing system, wherein:
the subscriber sends the subscriber IPPU
selection to a billing system;
the billing system conveys the subscriber IPPU
selection to the access controller; and the subscriber is billed for the IPPU service provided.
20. A system in accordance with claim 19, further comprising:

a web browser associated with the subscriber terminal for forwarding the subscriber IPPU
selection to the billing system; and a web server associated with the billing system for receiving the subscriber IPPU selection from the web browser.
21. A system in accordance with claim 19 or 20, wherein:
as part of conveying the subscriber IPPU
selection to the access controller, the billing system actuates the access controller to add the service referred to by the subscriber IPPU
selection; and the step of adding said service is a separate process from that which tells the access controller which subscribers are entitled to access the service.
22. A system in accordance with one of claims 17 to 21, wherein the secure entitlement token is a signed and encrypted entitlement token, which signed and encrypted entitlement token is securely sent from the client application to the server for authentication and decryption.
23. A system in accordance with claim 22, wherein the entitlement token is encrypted using at least one of: (i) private key/public key encryption methods; and (ii) symmetric key encryption methods.
24. A system in accordance with one of claims 17 to 23, wherein the service identifier is associated with one or more service related codes and data objects which are sent periodically from the access controller to the subscriber terminal.
25. A system in accordance with one of claims 17 to 24, wherein the access controller is a local access controller.
26. A system in accordance with one of claims 17 to 24, wherein the access controller is a national access controller.
27. A system in accordance with one of claims 17 to 26, wherein the services comprise at least one of accessing certain sites, streaming media from the sites, downloading multimedia applications from the sites, accessing content resident on the sites, shopping, email, and video mail.
28. A system in accordance with one of claims 17 to 27, wherein the subscriber terminal is one of a cable television set-top box, a digital television or host with point of deployment capability, or a personal computer.
29. A system in accordance with one of claims 17 to 28, wherein the subscriber IPPU selection is pre-authorized at the subscriber terminal for a predetermined credit amount.
30. A system in accordance with claim 29, wherein a cost associated with the subscriber IPPU selection is subtracted from the credit amount.
31. A system in accordance with one of claims 17 to 30, wherein the subscriber terminal securely reports the subscriber IPPU selection back to the access controller.
32. A system in accordance with one of claims 17 to 31, wherein the entitlement token is generated at one of the access controller or the subscriber terminal.
CA002381363A 1999-08-17 2000-08-03 Impulse pay per use method and system for data and multimedia services Expired - Lifetime CA2381363C (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US14926399P 1999-08-17 1999-08-17
US60/149,263 1999-08-17
PCT/US2000/021243 WO2001013635A1 (en) 1999-08-17 2000-08-03 Impulse pay per use method and system for data and multimedia services

Publications (2)

Publication Number Publication Date
CA2381363A1 CA2381363A1 (en) 2001-02-22
CA2381363C true CA2381363C (en) 2009-02-03

Family

ID=22529487

Family Applications (1)

Application Number Title Priority Date Filing Date
CA002381363A Expired - Lifetime CA2381363C (en) 1999-08-17 2000-08-03 Impulse pay per use method and system for data and multimedia services

Country Status (8)

Country Link
EP (1) EP1206876A1 (en)
JP (1) JP2003507803A (en)
KR (1) KR20020035575A (en)
CN (1) CN1174620C (en)
AU (1) AU6516500A (en)
BR (1) BR0013410A (en)
CA (1) CA2381363C (en)
WO (1) WO2001013635A1 (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
ES2268056T3 (en) * 2001-12-05 2007-03-16 France Telecom PROCEDURE OF MANAGEMENT OF PROVISION OF ACCESS TO AN ENCRYPTED CONTENT DESTINED TO BE DIFFUSED IN A NETWORK, AS WELL AS A SYSTEM AND SERVER FOR THE PERFORMANCE OF THIS PROCEDURE.
KR100745434B1 (en) * 2002-03-08 2007-08-02 인터내셔널 비지네스 머신즈 코포레이션 Differentiated connectivity in a pay-per-use public data access system
US20030217163A1 (en) * 2002-05-17 2003-11-20 Lambertus Lagerweij Method and system for assessing a right of access to content for a user device
US20040009815A1 (en) * 2002-06-26 2004-01-15 Zotto Banjamin O. Managing access to content
CN100372303C (en) * 2004-12-13 2008-02-27 华为技术有限公司 Method for realizing pre-payment user internet policy dynamic change
CN100403794C (en) * 2004-12-29 2008-07-16 华为技术有限公司 Video terminal and method of implementing services of stream media
CN101296420B (en) * 2008-06-23 2011-07-20 腾讯科技(深圳)有限公司 Method, system, server and terminal for preventing freely using pay-game
MX2011009983A (en) * 2009-03-26 2012-02-28 Xped Holdings Pty Ltd An arrangement for managing wireless communication between devices.

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5003384A (en) * 1988-04-01 1991-03-26 Scientific Atlanta, Inc. Set-top interface transactions in an impulse pay per view television system
US5862220A (en) * 1996-06-03 1999-01-19 Webtv Networks, Inc. Method and apparatus for using network address information to improve the performance of network transactions
FI974091A (en) * 1997-10-29 1999-04-30 Helsingin Puhelin Oyj Procedure for mediating payment performance on the Internet

Also Published As

Publication number Publication date
CA2381363A1 (en) 2001-02-22
AU6516500A (en) 2001-03-13
CN1378743A (en) 2002-11-06
CN1174620C (en) 2004-11-03
KR20020035575A (en) 2002-05-11
EP1206876A1 (en) 2002-05-22
WO2001013635A1 (en) 2001-02-22
BR0013410A (en) 2002-06-25
JP2003507803A (en) 2003-02-25

Similar Documents

Publication Publication Date Title
US6810525B1 (en) Impulse pay per use method and system for data and multimedia services
US6055314A (en) System and method for secure purchase and delivery of video content programs
JP4409940B2 (en) Interactive information service system and associated method for capturing transaction data
US20050066353A1 (en) Method and system to monitor delivery of content to a content destination
AU2007237159B2 (en) Methods and systems to distribute content via a network utilizing distributed conditional access agents and secure agents, and to perform digital rights management (DRM)
CA2488844C (en) Access control and key management system for streaming media
KR100917720B1 (en) Method for secure distribution of digital data representing a multimedia content
KR100426740B1 (en) Global conditional access system for broadcast services
US8804956B2 (en) Method and device for the partial encryption of a digital content
US20050021467A1 (en) Distributed digital rights network (drn), and methods to access operate and implement the same
CA2402216C (en) Method, communication system and receiver device for the billing of access controlled programmes and/or data from broadcast transmitters
WO2004051453A1 (en) Multiple content provider user interface
KR20040098627A (en) Methods and apparatus for digital rights management
JP2001512842A (en) Encryption device used in conditional access system
KR20060066173A (en) Broadcast and reception system, and receiver
CA2381363C (en) Impulse pay per use method and system for data and multimedia services
US20200068175A1 (en) Method and apparatus for supporting multiple broadcasters independently using a single conditional access system
JP2004201275A (en) Transaction system
AU2001290653B2 (en) A distributed digital rights network (DRN), and methods to access, operate and implement the same
CN101022347A (en) Compatible CAS and DRM MMB charging system
US20060059506A1 (en) Conditional access system for digital television content based on prepayment and optimisation of the bandwidth of the channel broadcasting said content
KR20140031344A (en) Method for authorising
AU2007234610B2 (en) Methods and systems to distribute content via a network utilizing distributed conditional access agents and secure agents, and to perform digital rights management (DRM)
AU2007234627B2 (en) Methods and systems to distribute content via a network utilizing distributed conditional access agents and secure agents, and to perform digital rights management (DRM)
WO2019018431A1 (en) Method and apparatus for supporting multiple broadcasters independently using a single conditional access system

Legal Events

Date Code Title Description
EEER Examination request
MKEX Expiry

Effective date: 20200803

MKEX Expiry

Effective date: 20200803