CN102893623A - 用于互联网视频客户端的认证和授权 - Google Patents
用于互联网视频客户端的认证和授权 Download PDFInfo
- Publication number
- CN102893623A CN102893623A CN2011800223625A CN201180022362A CN102893623A CN 102893623 A CN102893623 A CN 102893623A CN 2011800223625 A CN2011800223625 A CN 2011800223625A CN 201180022362 A CN201180022362 A CN 201180022362A CN 102893623 A CN102893623 A CN 102893623A
- Authority
- CN
- China
- Prior art keywords
- equipment
- server
- content
- management server
- service
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/25—Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
- H04N21/258—Client or end-user data management, e.g. managing client capabilities, user preferences or demographics, processing of multiple end-users preferences to derive collaborative data
- H04N21/25808—Management of client data
- H04N21/25816—Management of client data involving client authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/02—Marketing; Price estimation or determination; Fundraising
- G06Q30/0201—Market modelling; Market analysis; Collecting market data
- G06Q30/0204—Market segmentation
- G06Q30/0205—Location or geographical consideration
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0807—Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0869—Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/21—Server components or server architectures
- H04N21/222—Secondary servers, e.g. proxy server, cable television Head-end
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/23—Processing of content or additional data; Elementary server operations; Server middleware
- H04N21/239—Interfacing the upstream path of the transmission network, e.g. prioritizing client content requests
- H04N21/2393—Interfacing the upstream path of the transmission network, e.g. prioritizing client content requests involving handling client requests
- H04N21/2396—Interfacing the upstream path of the transmission network, e.g. prioritizing client content requests involving handling client requests characterized by admission policies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/23—Processing of content or additional data; Elementary server operations; Server middleware
- H04N21/24—Monitoring of processes or resources, e.g. monitoring of server load, available bandwidth, upstream requests
- H04N21/2408—Monitoring of the upstream path of the transmission network, e.g. client requests
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/25—Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
- H04N21/254—Management at additional data server, e.g. shopping server, rights management server
- H04N21/2541—Rights Management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/25—Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
- H04N21/254—Management at additional data server, e.g. shopping server, rights management server
- H04N21/2543—Billing, e.g. for subscription services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/25—Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
- H04N21/258—Client or end-user data management, e.g. managing client capabilities, user preferences or demographics, processing of multiple end-users preferences to derive collaborative data
- H04N21/25866—Management of end-user data
- H04N21/25875—Management of end-user data involving end-user authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/441—Acquiring end-user identification, e.g. using personal code sent by the remote control or by inserting a card
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/45—Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
- H04N21/4508—Management of client data or end-user data
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/45—Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
- H04N21/462—Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
- H04N21/4627—Rights management associated to the content
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/47—End-user applications
- H04N21/472—End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content
- H04N21/47211—End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content for requesting pay-per-view content
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/60—Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client
- H04N21/61—Network physical structure; Signal processing
- H04N21/6106—Network physical structure; Signal processing specially adapted to the downstream path of the transmission network
- H04N21/6125—Network physical structure; Signal processing specially adapted to the downstream path of the transmission network involving transmission via Internet
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/60—Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client
- H04N21/61—Network physical structure; Signal processing
- H04N21/6156—Network physical structure; Signal processing specially adapted to the upstream path of the transmission network
- H04N21/6175—Network physical structure; Signal processing specially adapted to the upstream path of the transmission network involving transmission via Internet
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/60—Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client
- H04N21/63—Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
- H04N21/643—Communication protocols
- H04N21/64322—IP
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/80—Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
- H04N21/83—Generation or processing of protective or descriptive data associated with content; Content structuring
- H04N21/835—Generation of protective data, e.g. certificates
- H04N21/8352—Generation of protective data, e.g. certificates involving content or source identification data, e.g. Unique Material Identifier [UMID]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/80—Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
- H04N21/85—Assembly of content; Generation of multimedia applications
- H04N21/858—Linking data to content, e.g. by linking an URL to a video object, by creating a hotspot
- H04N21/8586—Linking data to content, e.g. by linking an URL to a video object, by creating a hotspot by using a URL
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N7/00—Television systems
- H04N7/16—Analogue secrecy systems; Analogue subscription systems
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/16—Implementing security features at a particular protocol layer
- H04L63/166—Implementing security features at a particular protocol layer at the transport layer
Landscapes
- Engineering & Computer Science (AREA)
- Signal Processing (AREA)
- Multimedia (AREA)
- Computer Security & Cryptography (AREA)
- Databases & Information Systems (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Computing Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Development Economics (AREA)
- Finance (AREA)
- Accounting & Taxation (AREA)
- Entrepreneurship & Innovation (AREA)
- Strategic Management (AREA)
- Theoretical Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Computer Graphics (AREA)
- Marketing (AREA)
- Economics (AREA)
- General Business, Economics & Management (AREA)
- Game Theory and Decision Science (AREA)
- Data Mining & Analysis (AREA)
- Software Systems (AREA)
- Human Computer Interaction (AREA)
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
- Information Transfer Between Computers (AREA)
- Storage Device Security (AREA)
Abstract
设备(12/12A)能够通过用保密的唯一ID访问(40)管理服务器(32)并且在假定该ID被批准的情况下从该服务器接收回(42/48)用户令牌和知晓该用户令牌的内容服务器的服务列表,来显示互联网TV。用户可以选择(52)使该设备上传(54)其用户令牌的内容服务器,并作为响应从该内容服务器接收(56)内容列表,从该内容列表中可以选择(58)内容以用于显示。这两个列表都不可被该设备修改,并且该设备仅可以访问内容列表上的内容。
Description
本申请要求均于2010年5月4日提交的第61/330,993和61/331,092号美国临时申请的优先权。
技术领域
本申请一般涉及用于互联网视频客户端的认证和授权,所述客户端包括但不限于TV(电视)。
背景技术
通常通过就好像TV是正在运行浏览器的计算机一样对TV进行实质上的编程来提供经由TV的互联网访问。因此,除了防火墙或者过滤程序可能阻挡某些站点之外,这种互联网访问是不受控制的。
如本文所理解的,不受控制的互联网访问在TV环境下可能不是希望的。防火墙或过滤程序可能未必总被安装在TV上,并且即使当一者被安装,相比于传统上预期的常规TV节目安排,访问仍然大大地不受控制。而且,本地安装的过滤器可被用户卸载或废除。
因而,不受控制的互联网访问具有若干缺陷。从观众的角度看,特别是当年轻的观众进行观看时,不适当主题的暴露是一大关注点;过低的品质筛选阈值是另一关注点。也就是说,尽管许多TV节目可能不被普遍认为是“品质”节目,但TV节目通常比所谓互联网视频更加选择性地被筛选。因此TV观众对这种更高级品质筛选的期望无法通过简单地提供经由TV的不受束缚的互联网访问来满足。此外,来自内容提供商、制造商和运营商的TV相关实体在多数情况下并未从TV向互联网的扩展中获益。
发明内容
因此,一种消费电子(CE)设备包括外壳、外壳上的显示器、网络接口以及外壳中的处理器,该处理器控制显示器并通过网络接口与互联网通信。处理器执行逻辑,包括:周期性地联系管理服务器,以及在安全业务中向管理服务器发送唯一CE设备ID,而不需要处理器进行密钥加密。处理器从管理服务器接收用户令牌以及一个或多个服务列表,每一个服务列表包含被批准的内容服务器的网络地址列表,并将在显示器上呈现服务列表以用于对该服务列表上的内容服务器的选择。响应于表示对在服务列表上的内容服务器的选择的用户输入,处理器将该用户令牌经由网络接口上传至用户选择的内容服务器。内容服务器发回可由CE设备选择的内容的内容列表。响应于表示对内容列表上的一段内容的选择的用户输入,处理器向内容服务器发送表示该选择的信号,并且响应于从内容服务器接收到该段内容,在显示器上播放该段内容或者使该段内容可在显示器上呈现。内容列表和服务列表均不可被CE设备修改。
在一些实施例中,处理器不可访问互联网上的除了内容列表上的内容之外的内容。安全业务可以是安全套接字层(SSL)业务。处理器可利用由处理器从管理服务器接收的、提供服务器证书的证书机构的公钥来验证管理服务器的真实性。用户令牌可具有一期满时间,在该期满时间之后,用户令牌不再被内容服务器接受。
在另一方面,一种管理服务器具有网络接口和经由该网络接口与互联网相通信的处理器。该处理器执行逻辑,包括:周期性地在安全业务中从CE设备接收唯一ID,并响应于确定该唯一ID是授权ID,向CE设备下载用户令牌以及一个或多个服务列表,每个服务列表包含被批准的内容服务器的网络地址列表。用户令牌被提供给服务列表上的内容服务器,以使得内容服务器可根据它们的授权令牌数据库来检查该设备对用户令牌的稍后呈现。该服务列表是封闭的并且不可被CE设备修改。
在另一方面,一种方法包括:在音频-视频呈现设备中,提供对一个且仅仅一个管理服务器的互联网访问,以及在该设备处接收来自管理服务器的认证信息。该设备以安全方式向管理服务器提供设备唯一值。该值在设备制造时预加载至该设备。响应于管理服务器确定该值有效,服务器向该设备下载具有期满时间的用户令牌,该用户令牌可由设备向内容服务器呈现,作为该设备被授权获得对该内容服务器上的内容的访问的证据,以使得该方法的执行不需要公钥处理。
本发明在其结构和操作两方面的细节可以结合附图来最好地理解,其中相似的标号代表相似的部分,且其中:
附图说明
图1是根据本发明原理的一个示例性系统的框图;
图2是根据本发明原理的另一示例性系统的框图;
图3是根据本发明原理的示例性注册逻辑的流程图;
图4是根据本发明原理的示例性认证逻辑的流程图;并且
图5是根据本发明原理的示例性授权逻辑的流程图;
具体实施方式
首先参见图1,消费电子(CE)设备12,例如TV、游戏机、视频盘播放器、相机、数字时钟收音机、移动电话、个人数字助理、膝上型计算机等,包括便携式轻量级塑料外壳14,外壳14承载有数字处理器16。处理器16可以控制视觉显示器18和听觉显示器20(例如一个或多个扬声器)。
为实现本发明原理,处理器16可访问一个或多个计算机可读存储介质,例如但不限于基于RAM的存储装置22(例如实现动态随机存取存储器(DRAM)的芯片)或闪存24。此外,在示例性的非限制实施例中,视频缩略图可存储于RAM 22上,而以下所描述的服务列表和令牌以及用户界面图标可存储于闪存24上。实现可由CE设备12执行的当前逻辑的软件代码也可存储于所示出的存储器之一,以实现本发明原理。
处理器16可以接收来自多种输入设备26的用户输入信号,这些输入设备26包括遥控设备、诸如鼠标之类的点击设备、小键盘等等。在一些实施例中可以提供TV调谐器28,尤其当CE设备由TV实现时,以接收来自诸如机顶盒、卫星接收器、线缆头端、地面TV信号天线等源的TV信号。来自调谐器28的信号被发送至处理器16,以用于在显示器18和扬声器20上呈现。
如图1所示,网络接口30(例如有线或无线调制解调器或者无线电话收发器)与处理器16通信,以提供与互联网上的管理服务器32以及与一个或多个内容服务器34的连通性。服务器32、34具有各自的处理器。从下面的公开中将会了解到,尤其当CE设备12是由诸如TV、游戏机或相机之类的非PC设备实现的时,CE设备12仅可以与管理服务器32以及在由管理服务器32提供给处理器16的服务列表上出现的内容服务器34相通信。
图2示出了CE设备12a,除了网络接口30a不是位于设备外壳14a中,而是被支撑在可安装于设备外壳14a上的独立的互联网链接模块外壳36中之外,CE设备12a在所有实质方面与图1所示的设备12相同。
现参见图3,可看到示例性注册逻辑。从框38开始,CE设备12优选地利用诸如安全套接字层(SSL)之类的安全通信手段,向管理服务器32发送帐户信息。因而将会认识到,不需要由处理器16来执行私钥-公钥加密,以减少其上的处理需求。帐户信息可以包括例如用户名和密码。
在框40,CE设备12再次利用SSL向管理服务器32发送其唯一标识,从而不需要密钥加密。该ID的值可在工厂处或者在客户端制造时被预加载,并可以是CE设备12的唯一“指纹”,例如其型号和序列号的保密串接。
转向框42,如果CE设备的ID在批准的ID列表中,则该ID被管理服务器在数据库中与一个或多个已被批准用于CE设备12的服务列表相关联。这实际上创建了“关联令牌”,其将CE设备ID与批准的服务列表相关。服务列表包含以下内容服务器34的网络地址:这些内容服务器34被批准向CE设备12提供内容,并且通常是本文讨论的互联网访问逻辑或模块的提供商的商业伙伴所建立的门户站点。由于这些门户是由批准的提供商建立的,因此这些门户可被设计成仅仅包含下文所讨论的去往批准内容的链接,并且因此使其没有去往互联网上的其它地方的超链接。
现参见图4以理解示例性认证逻辑,在框44中,CE设备12周期性地向管理服务器32登记。继续到框46,管理服务器32向CE设备12认证其本身,以使得CE设备12知道它正在联系正确的服务器而没有被欺骗。该认证可以利用例如SSL证书来进行。然后CE设备12可将唯一CE设备ID在SSL中发送至服务器32,仍不需要处理器16的密钥加密。CE设备12可利用服务器32返回的服务器证书的证书机构的公钥来验证服务器32。
框48表示接下来在逻辑流程中,管理服务器32向CE设备12下载用户令牌(此处也称为访问令牌或服务令牌)以及一个或多个服务列表,每一个服务列表包含被批准的内容服务器34的网络地址的列表。这仍可利用SSL完成。该用户令牌优选地具有一期满时段,在该期满时段之后,用户令牌在下文讨论的授权逻辑期间不再被内容服务器接受。管理服务器32将用户令牌及其期满时间提供给内容服务器34,用于稍后公开的目的。
服务列表通常由处理器16在显示器18上显示的用户界面(UI)中呈现。该UI可简单地在列表中呈现与各个批准的内容服务器34相关联的服务提供商的图标,这些内容服务器34的网络地址位于该UI之下。UI还可根据需要呈现其它内容,例如在每个内容服务器上可获得的种类名称等。在任何情况下,CE设备12的用户可操作输入设备26以在框50处选择服务列表的成员,这使得处理器16经网络接口30将用户令牌上传至所选内容服务器34,以进入图5所示的授权逻辑。
如上文所讨论的,只有在由管理服务器32下载至CE设备12的封闭且不可修改的(除了由管理服务器32进行之外)服务列表上的内容服务器34可被用户选择,如框52所示。当新的服务(由新批准的内容服务器34体现)变得可用时,它们可被添加至服务列表,并因而即刻在所有平台中可用。
回想起用户令牌及其期满时间被管理服务器提供至内容服务器34。每个内容服务器34于是可维护活跃用户令牌的本地数据库,从而在每个用户令牌各自的期满时间将该令牌移除。当内容服务器34在框54接收到用户令牌时,其根据活跃令牌的本地数据库来检查该用户令牌,并且如果该用户令牌在该数据库中,则该逻辑移至框56,其中内容服务器34向CE设备12返回内容列表。由此,除了由CE设备12提供活跃用户令牌之外,在CE设备12与内容服务器34之间不需要进一步的认证。而且,由于内容服务器34出现在管理服务器32提供的服务列表上,CE设备12知道其可以信任该内容服务器34,而不需要在内容服务器34部分作任何进一步的认证。
实质上,内容列表是音频-视频节目的列表,与内容服务器34相关的实体已选择使这些音频-视频节目对于互联网TV系统的平台而言是可用的。与服务列表相似,来自内容服务器34的内容列表不可被CE设备12修改。
转向框58,用户可以操作输入设备26来选择内容列表上的节目,然后该节目通过流传输的方式从内容服务器34传送到CE设备12以用于在显示器18和扬声器20上呈现。
因而,一旦CE设备12被认证,就从管理服务器向CE设备12传送“服务列表”。CE设备12被假定为不开放,并且优选地,在列表被传送至CE设备12之后不提供允许修改该列表的工具。列表可由管理服务器32签名并在独特会话中传送至CE设备12,以使得窃听者因此不可能从外部截取并改变或替换该列表。该服务列表通常在加密通道中利用安全套接字层(SSL)或其它安全手段来传送。
如上所述,服务列表由诸如服务(内容)提供商的统一资源定位符(URL)之类的网络地址的列表组成。CE设备12利用服务列表中所列出的URL来获取视频或音频的内容列表以进行播放。内容列表也可在加密通道中利用安全套接字层(SSL)或其它安全于段来传送,并且优选地,客户端不可能修改内容列表中的URL。
如果需要,服务列表的URL和内容列表的URL可具有表明CE设备12类型的标签。或者,作为认证过程的一部分,可由管理服务器给予CE设备12一服务令牌,该服务令牌可向服务提供商表明该设备的身份。
将会认识到,仅拥有服务提供商的特定URL和用户令牌允许对该内容的访问。这是一种希望的简化,因为该实行URL是传送至CE设备12的URL。实行URL以安全方式传送。在任何情况下,本发明原理提供了一种可伸缩的选项,用于准许对互联网上内容的访问。访问权限的定义由管理系统和服务提供商等达成一致意见,并且这由实行URL来体现。
还可以认识到,本发明原理利用令牌来管理系统客户端对在线服务的访问。所有安全操作都发生在管理服务器处,以减少危及客户端和系统的机会。而且,令牌格式可以被实时地改变,因为令牌格式不是由客户端设备来释译,而是由内容服务器34来释译。此外,存储于管理服务器32上的关联令牌是可处于内容提供商自有格式的信息,该格式例如是SAML、XACML、OpenID或SOAP。内容提供商的用于管理身份和访问的系统因而无需改变。
用户令牌由管理服务器32针对已认证的客户端设备而创建。用户令牌可根据它们的期满时间而用于任何所需持续时间的客户端会话,这些期满时间可按需建立。CE设备12通过使用保密的唯一设备ID来建立其身份。该ID被保护,并仅在利用管理服务器32认证时使用。客户端设备和服务器之间的所有通信可利用SSL来加密。在接收到有效ID时,管理服务器32返回一临时用户令牌,该临时用户令牌将在指定时间量之后期满。该用户令牌与在会话时段期间将不会变化的信息一起被传送至第三方服务,例如与内容服务器34相关联的内容提供商。如果需要,语言、父母分级限制、链接速度、帐户从属关系、国家和邮政编码可包括于用户令牌中。可利用键控哈希(keyed hash)对用户令牌进行签名。
除提供用户令牌之外,管理服务器32还将服务列表传送给客户端设备。这些服务列表可以取决于通过地理过滤而被发送到的特定客户端设备12的位置而不同,例如,一些内容可能在美国以外是不允许的,因而将不包括在服务列表(如果整个内容服务器34是禁止进入的)或者内容列表(如果只有某些建议通过内容服务器34提供的内容是禁止进入的)上。其它过滤可以是父母分级,例如成人频道可从一些列表中省略,而其它列表则不省略。
因为一个服务列表可能类似于其它服务列表,所以服务定义实体可选择向管理服务器发送服务列表号而不是列表本身,这将需要该实体此前利用管理服务器32已定义了该服务列表。可以存在与服务定义实体希望启用的服务等级相关联的任意数量的服务列表。例如,可以存在十五个服务列表。一些服务列表可以是其它列表的超集。然而,一些服务列表可以是单独出售的单点(niche)或零点(a-la-carte)节目。设备12因此可以访问多个服务列表。设备可能可以访问高级频道列表,例如“5号服务列表”,并且还可以访问包括二十五个基本频道的服务列表,例如“12号服务列表”。管理服务器32将该客户端设备12与某个帐户(由关联令牌处理)相关联并且然后与可被标为“5”和“12”的服务相关联。如果希望允许设备12访问基本频道,则将仅标出“12”。
在一些实现方式中,当客户端设备12访问内容服务器34时,提供用户令牌,该用户令牌可由内容服务器34在B2B业务中用来查询该管理服务器32,以确定该客户端设备12是否被允许获得对该内容的访问。但是该业务对于一些客户端设备不是必需的,因为客户端设备在SSL会话中接收服务列表并按照鲁棒性规则来保护该列表不被操纵。由此,如果客户端设备12具有内容的URL并具有有效用户令牌,则该客户端设备被假定为已被授权。
如果需要另外的授权,则对管理服务器32的查询可包括正被访问的网站的准确URL。管理服务器32在链接至对象客户端的服务列表中查找准确URL。如果找到该URL,则客户端设备被指定为已授权。如果未找到,则客户端设备被指定为未授权。在前面的示例中,这将允许管理服务器12检查服务列表“5”和“12”,以查看该设备对于该内容是否为允许的。内容提供商可以在客户端设备12中存储服务令牌(cookie)。如果客户端设备12将来再次访问内容服务器,则该服务令牌可被检查,并且如果存在则排除检查授权状态的需要。在授权之后,内容服务器34向客户端设备12传送内容列表,该内容列表列出内容服务器34上的可用于该特定客户端设备的内容。作为对管理服务器32验证授权状态的替换,管理服务器32可在将关联令牌附加至来自内容服务器34的查询之后,将来自内容服务器34的查询转发回服务定义实体。
客户端设备12周期性地访问管理服务器32,以获取更新后的签名用户令牌和服务列表。设备12返回到服务器32的间隔是可编程的。并且因为其为“拉取”模式,所以管理服务器32仅需要被联系一次,来获取更新。
管理服务器32可通过服务定义实体上传的服务列表来添加或删除对服务的访问。该服务列表可以相同地将用户具有的服务等级与个体服务定义实体相匹配。
此外,由于设备12可链接至用于业务的记账系统或钱包,因此视频点播(VOD)服务被启用。记账帐户关联并不干扰原始帐户的基础商业规则。
而且,客户端设备12可以提供返回报告特征,该特征可支持如下确认:广告已在屏幕上呈现,以支持基于广告的商业模型。管理服务器32和设备12之间的通信可利用HTTPS来执行。服务器验证客户端的保密ID。在客户端设备12和内容服务器34之间,也可利用HTTPS来执行通信。客户端利用服务器证书的证书机构的公钥来验证内容服务器34,而内容服务器34验证客户端的保密用户令牌。
如果客户端设备12没有用户令牌或者由于某种原因(不安全平台)该用户令牌不被信任,则节目编排者可查询管理服务器12,以查看该客户端是否具有该内容的权限。由于管理服务器32知道发送至客户端设备12的服务列表,故其可独自完成这一处理。为了确定特定资源是否被允许,节目编排者可检索在用户令牌被接收和确认有效之后放置在客户端设备中的服务令牌。其可独自验证该令牌。该令牌可在任意所需时间段内有效。
尽管特定的“用于互联网视频客户端的认证和授权”在本文中被详细地示出和描述,但将会理解,本发明包含的主题仅由权利要求来限定。
Claims (17)
1.一种消费电子(CE)设备,包括:
外壳(14,14A);
在所述外壳上的显示器(18);
网络接口(30,30A);
在所述外壳中的处理器(16),该处理器控制所述显示器并通过所述网络接口与互联网通信;
所述处理器执行逻辑,包括:
周期性地联系(44)管理服务器(32);
在安全业务中向所述管理服务器发送(40)唯一CE设备ID,无需所述处理器进行密钥加密;
从所述管理服务器接收(48)用户令牌以及一个或多个服务列表,每一个服务列表包含被批准的内容服务器(34)的网络地址的列表;
在所述显示器上呈现(52)服务列表,以用于对该服务列表上的内容服务器进行选择;
响应于表示对所述服务列表上的内容服务器的选择的用户输入,通过所述网络接口将所述用户令牌上传(54)至用户选择的内容服务器;
从所述内容服务器接收(56)可供所述CE设备选择的内容的内容列表;
响应于表示(58)对所述内容列表上的一段内容的选择的用户输入,向所述内容服务器发送表示该选择的信号;以及
响应于从所述内容服务器接收到所述一段内容,在所述显示器上播放所述一段内容或者使得所述一段内容可在所述显示器上呈现,其中所述内容列表和所述服务列表均不可被所述CE设备修改。
2.根据权利要求1所述的CE设备,其中所述处理器不可访问互联网上的除了所述内容列表上的内容之外的内容。
3.根据权利要求1所述的CE设备,其中所述安全业务是安全套接字层(SSL)业务。
4.根据权利要求1所述的CE设备,其中所述处理器利用由所述处理器从所述管理服务器所接收的、提供服务器证书的证书机构的公钥来验证(46)所述管理服务器的真实性。
5.根据权利要求1所述的CE设备,其中所述用户令牌具有一期满时间,在该期满时间之后,所述用户令牌不再被内容服务器接受。
6.一种管理服务器(32),包括:
网络接口:
经由网络接口与互联网相通信的处理器;
所述处理器执行逻辑,包括:
周期性地(44)在安全业务中从CE设备接收唯一ID;
响应于确定所述唯一ID是授权ID,向所述CE设备下载(48)用户令牌以及一个或多个服务列表,每个列表包含被批准的内容服务器(34)的网络地址列表;
将所述用户令牌提供(50)给所述服务列表上的内容服务器,所述服务列表是封闭的并且不可被所述CE设备修改。
7.根据权利要求6所述的服务器,其中所述安全业务是安全套接字层(SSL)业务。
8.根据权利要求6所述的服务器,其中所述处理器通过向所述CE设备发送由证书机构提供并且利用所述服务器的私钥签名的服务器证书来验证(46)其真实性。
9.根据权利要求6所述的服务器,其中所述用户令牌具有一期满时间,在该期满时间之后,所述用户令牌不再被内容服务器接受。
10.一种方法,包括:
在音频-视频呈现设备(12/12A)中,提供对一个且仅仅一个管理服务器(32)的互联网访问;
在所述设备处接收(46)来自所述管理服务器的认证信息;
以安全方式从所述设备向所述管理服务器提供(40)设备唯一值,所述值在设备制造时预加载至所述设备中;
响应于所述管理服务器确定所述值有效,在所述设备处接收(42,48)具有期满时间的用户令牌;
响应于用户选择,由所述设备向内容服务器呈现(54)所述用户令牌呈现(54),作为所述设备被授权获得对所述内容服务器上内容的访问的证据,以使得所述方法的执行不需要公钥处理。
11.根据权利要求10所述的方法,其中利用安全套接字层(SSL)证书来认证所述管理服务器。
12.根据权利要求10所述的方法,其中所述安全方式使用安全套接字层(SSL)。
13.根据权利要求10所述的方法,其中响应于确定所述值有效,所述管理服务器向所述设备传送(48)内容服务列表,所述设备被编程为仅访问所述列表上的内容服务器而不访问互联网上的其它资产。
14.根据权利要求13所述的方法,其中所述设备不能修改所述列表。
15.根据权利要求13所述的方法,其中所述列表被所述管理服务器签名并在独特会话中传送至所述设备,以使得不可能从外部截取和改变或替换所述列表。
16.根据权利要求13所述的方法,其中所述列表在加密通道中被传送至所述设备。
17.根据权利要求13所述的方法,其中仅向资产服务器呈现所述令牌允许所述设备访问由所述内容服务器返回至所述设备的内容列表上的内容。
Applications Claiming Priority (7)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US33109210P | 2010-05-04 | 2010-05-04 | |
US33099310P | 2010-05-04 | 2010-05-04 | |
US61/330,993 | 2010-05-04 | ||
US61/331,092 | 2010-05-04 | ||
US12/782,174 | 2010-05-18 | ||
US12/782,174 US8843736B2 (en) | 2010-05-04 | 2010-05-18 | Authentication and authorization for internet video client |
PCT/US2011/033406 WO2011139583A1 (en) | 2010-05-04 | 2011-04-21 | Authentication and authorization for internet video client |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102893623A true CN102893623A (zh) | 2013-01-23 |
CN102893623B CN102893623B (zh) | 2016-04-13 |
Family
ID=44902745
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201180022362.5A Active CN102893623B (zh) | 2010-05-04 | 2011-04-21 | 用于互联网视频客户端的认证和授权 |
Country Status (8)
Country | Link |
---|---|
US (9) | US8843736B2 (zh) |
EP (1) | EP2553566B1 (zh) |
JP (1) | JP5488856B2 (zh) |
KR (1) | KR101502211B1 (zh) |
CN (1) | CN102893623B (zh) |
CA (1) | CA2798215C (zh) |
MX (1) | MX2012012772A (zh) |
WO (1) | WO2011139583A1 (zh) |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104519299A (zh) * | 2013-09-30 | 2015-04-15 | 远升科技股份有限公司 | 用于通过有线电视网络终端控制数据网络接入参数的方法和系统 |
CN104994423A (zh) * | 2015-07-06 | 2015-10-21 | 无锡天脉聚源传媒科技有限公司 | 一种视频播放记录的处理方法及装置 |
CN106375270A (zh) * | 2015-07-24 | 2017-02-01 | 华为技术有限公司 | 令牌生成并认证的方法及认证服务器 |
CN106797563A (zh) * | 2015-05-26 | 2017-05-31 | 华为技术有限公司 | 用于自适应流媒体的基于令牌的认证和授权信息的信令通知和交互 |
CN107851149A (zh) * | 2015-07-14 | 2018-03-27 | 万事达卡国际股份有限公司 | 与web应用一起使用的身份联合和令牌转化模块 |
CN110798748A (zh) * | 2019-11-04 | 2020-02-14 | 北京达佳互联信息技术有限公司 | 一种音视频预加载方法和装置及电子设备 |
CN112771526A (zh) * | 2018-09-28 | 2021-05-07 | 斯纳普公司 | 协作型公共用户简档 |
Families Citing this family (40)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101777347B1 (ko) * | 2009-11-13 | 2017-09-11 | 삼성전자주식회사 | 부분화에 기초한 적응적인 스트리밍 방법 및 장치 |
WO2011066105A1 (en) * | 2009-11-25 | 2011-06-03 | Delta Vidyo, Inc. | Iptv presence and interaction protocol |
US8843736B2 (en) | 2010-05-04 | 2014-09-23 | Sony Corporation | Authentication and authorization for internet video client |
WO2011146898A2 (en) * | 2010-05-21 | 2011-11-24 | Bologh Mark J | Internet system for ultra high video quality |
EP2702743A1 (en) * | 2011-04-28 | 2014-03-05 | Telefonaktiebolaget LM Ericsson (PUBL) | Account linkage in machine-to-machine scenarios |
CN102843584A (zh) * | 2011-06-20 | 2012-12-26 | 海尔集团公司 | 网络终端的认证方法及系统 |
US8689310B2 (en) | 2011-12-29 | 2014-04-01 | Ebay Inc. | Applications login using a mechanism relating sub-tokens to the quality of a master token |
TWI476627B (zh) * | 2012-05-11 | 2015-03-11 | Chunghwa Telecom Co Ltd | The management system and method of network service level and function of cloud virtual desktop application |
US9294550B2 (en) * | 2012-06-11 | 2016-03-22 | Zerodesktop, Inc. | Efficient data transfer for cloud storage by centralized management of access tokens |
CA2878206C (en) * | 2012-07-02 | 2016-05-17 | Samsung Electronics Co., Ltd. | Method and apparatus for encoding video and method and apparatus for decoding video determining inter-prediction reference picture list depending on block size |
KR20140042049A (ko) * | 2012-09-27 | 2014-04-07 | 한화에스앤씨주식회사 | 다중 콘텐츠 서버 관리 방법 |
US9116706B2 (en) * | 2012-10-09 | 2015-08-25 | Tamer Yunten | Yunten's web application methodology and web programming language (YWAM and WPL) |
US9727321B2 (en) * | 2012-10-11 | 2017-08-08 | Netflix, Inc. | System and method for managing playback of streaming digital content |
US9713078B2 (en) | 2013-03-14 | 2017-07-18 | Veloxity, Inc. | System and method for determining mobile data quality over a network |
US20150205755A1 (en) * | 2013-08-05 | 2015-07-23 | RISOFTDEV, Inc. | Extensible Media Format System and Methods of Use |
US9729410B2 (en) * | 2013-10-24 | 2017-08-08 | Jeffrey T Eschbach | Method and system for capturing web content from a web server |
US20150135249A1 (en) * | 2013-11-14 | 2015-05-14 | Northvu Systems Inc. | System and Method for Signal Reception and Distribution |
KR102204675B1 (ko) * | 2014-05-14 | 2021-01-19 | 삼성전자 주식회사 | 디스플레이 장치, 서버, 시스템 및 그 정보제공 방법 |
US10057217B2 (en) * | 2014-07-15 | 2018-08-21 | Sap Se | System and method to secure sensitive content in a URI |
EP3202121B1 (en) * | 2014-10-03 | 2018-12-05 | Telefonaktiebolaget LM Ericsson (publ) | Dynamic generation of unique identifiers in a system of connected things |
US20160150425A1 (en) * | 2014-11-22 | 2016-05-26 | Bahadir Kuru | System and method of providing a synthetic transaction platform for analyzing communication between a mobile device and a wireless network |
US9741342B2 (en) * | 2014-11-26 | 2017-08-22 | Panasonic Intellectual Property Corporation Of America | Method and apparatus for recognizing speech by lip reading |
US9763039B2 (en) * | 2014-12-30 | 2017-09-12 | Alcatel-Lucent Usa Inc. | Controlling access to venue-related content, applications, and services |
US10901592B2 (en) | 2015-01-05 | 2021-01-26 | Sony Corporation | Integrated multi-platform user interface/user experience |
US10812869B2 (en) | 2015-01-05 | 2020-10-20 | Sony Corporation | Personalized integrated video user experience |
US10721540B2 (en) | 2015-01-05 | 2020-07-21 | Sony Corporation | Utilizing multiple dimensions of commerce and streaming data to provide advanced user profiling and realtime commerce choices |
US10694253B2 (en) | 2015-01-05 | 2020-06-23 | Sony Corporation | Blu-ray pairing with video portal |
EP3316585B1 (en) * | 2015-06-29 | 2020-01-15 | Rakuten, Inc. | Authentication server, user terminal, content server, control method for these, and computer program |
US10158722B2 (en) | 2015-07-31 | 2018-12-18 | Jeffrey T Eschbach | Method and systems for the scheduled capture of web content from web servers as sets of images |
US10447761B2 (en) | 2015-07-31 | 2019-10-15 | Page Vault Inc. | Method and system for capturing web content from a web server as a set of images |
WO2017074839A1 (en) * | 2015-10-30 | 2017-05-04 | Rovi Guides, Inc. | Methods and systems for managing content subscription data |
US10178421B2 (en) | 2015-10-30 | 2019-01-08 | Rovi Guides, Inc. | Methods and systems for monitoring content subscription usage |
US9813396B2 (en) | 2015-10-30 | 2017-11-07 | Rovi Guides, Inc. | Methods and systems for managing content subscription data |
US10156841B2 (en) | 2015-12-31 | 2018-12-18 | General Electric Company | Identity management and device enrollment in a cloud service |
US10334009B2 (en) | 2016-01-29 | 2019-06-25 | Viasat, Inc. | Systems and methods for managing content distribution to an in-transit media system |
CN107196892B (zh) * | 2016-03-15 | 2020-03-06 | 阿里巴巴集团控股有限公司 | 一种网站登录方法和装置 |
US10346400B2 (en) * | 2017-01-24 | 2019-07-09 | Visa International Service Association | Database conditional field access |
CN109803158A (zh) * | 2017-11-17 | 2019-05-24 | 上海全土豆文化传播有限公司 | 视频播放方法及装置 |
US20210291048A1 (en) * | 2018-08-09 | 2021-09-23 | Wgames Incorporated | Multi-process interface controller |
US11343257B2 (en) * | 2019-06-27 | 2022-05-24 | Microsoft Technology Licensing, Llc | Extended domain platform for nonmember user account management |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1910563A (zh) * | 2004-01-07 | 2007-02-07 | 松下电器产业株式会社 | 设备注册系统、服务器和终端设备 |
US20070107019A1 (en) * | 2005-11-07 | 2007-05-10 | Pasquale Romano | Methods and apparatuses for an integrated media device |
US20080271159A1 (en) * | 1997-03-05 | 2008-10-30 | At Home Corporation | Method And System For Restricting Access To User Resources |
Family Cites Families (89)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6957260B1 (en) * | 1996-06-03 | 2005-10-18 | Microsoft Corporation | Method of improving access to services provided by a plurality of remote service providers |
US6374402B1 (en) | 1998-11-16 | 2002-04-16 | Into Networks, Inc. | Method and apparatus for installation abstraction in a secure content delivery system |
US6813775B1 (en) | 1999-03-29 | 2004-11-02 | The Directv Group, Inc. | Method and apparatus for sharing viewing preferences |
US7103770B2 (en) * | 2000-01-27 | 2006-09-05 | Web Data Solutions, Inc. | Point-to-point data streaming using a mediator node for administration and security |
US8812850B2 (en) | 2000-03-02 | 2014-08-19 | Tivo Inc. | Secure multimedia transfer system |
JP3526435B2 (ja) * | 2000-06-08 | 2004-05-17 | 株式会社東芝 | ネットワークシステム |
US7600245B2 (en) | 2000-06-27 | 2009-10-06 | At&T Intellectual Property I, L.P. | System and methods for subscribers to view, select and otherwise customize delivery of programming over a communication system |
US7103905B2 (en) | 2000-08-28 | 2006-09-05 | Digeo, Inc. | System and method to provide media programs for synthetic channels |
JP2002116972A (ja) * | 2000-10-11 | 2002-04-19 | Nec Corp | 情報閲覧方法及びシステム並びに情報閲覧用プログラムを記憶した記憶媒体 |
US20040008972A1 (en) | 2001-03-29 | 2004-01-15 | Koninklijke Philips Electronics N.V. | Personal TV receiver (PTR) with program recommendation forwarding function |
US7895445B1 (en) | 2001-04-26 | 2011-02-22 | Nokia Corporation | Token-based remote data access |
GB0125023D0 (en) | 2001-10-18 | 2001-12-12 | Koninkl Philips Electronics Nv | Service data delivery scheme |
JP4265145B2 (ja) * | 2002-04-08 | 2009-05-20 | 株式会社日立製作所 | アクセス制御方法及びシステム |
US7861082B2 (en) | 2002-05-24 | 2010-12-28 | Pinder Howard G | Validating client-receivers |
US7181010B2 (en) * | 2002-05-24 | 2007-02-20 | Scientific-Atlanta, Inc. | Apparatus for entitling remote client devices |
US7380280B2 (en) | 2002-09-13 | 2008-05-27 | Sun Microsystems, Inc. | Rights locker for digital content access control |
US8051172B2 (en) * | 2002-09-30 | 2011-11-01 | Sampson Scott E | Methods for managing the exchange of communication tokens |
JP2004157852A (ja) * | 2002-11-07 | 2004-06-03 | Toppan Printing Co Ltd | ワンタイムパスワードの管理システムおよび管理方法 |
US7454622B2 (en) | 2002-12-31 | 2008-11-18 | American Express Travel Related Services Company, Inc. | Method and system for modular authentication and session management |
US7428413B2 (en) | 2003-03-11 | 2008-09-23 | Wayport, Inc. | Method and system for providing network access and services using access codes |
JP2004312413A (ja) | 2003-04-08 | 2004-11-04 | Sony Corp | コンテンツ提供サーバ、情報処理装置、および方法、並びにコンピュータ・プログラム |
US7836493B2 (en) | 2003-04-24 | 2010-11-16 | Attachmate Corporation | Proxy server security token authorization |
US7437769B2 (en) | 2003-06-24 | 2008-10-14 | Realnetworks, Inc. | Multiple entity control of access restrictions for media playback |
US20050102227A1 (en) * | 2003-11-09 | 2005-05-12 | Aleksey Solonchev | Electronic commerce method and system utilizing integration server |
US7594245B2 (en) | 2004-03-04 | 2009-09-22 | Sharp Laboratories Of America, Inc. | Networked video devices |
US7636941B2 (en) * | 2004-03-10 | 2009-12-22 | Microsoft Corporation | Cross-domain authentication |
US7669213B1 (en) | 2004-10-28 | 2010-02-23 | Aol Llc | Dynamic identification of other viewers of a television program to an online viewer |
US7395395B2 (en) * | 2004-11-09 | 2008-07-01 | At&T Delaware Intellectual Property, Inc. | Methods, systems, and storage mediums for monitoring consumption of storage space and relocating content contained in the storage when a predetermined condition is met |
US8402506B2 (en) | 2005-01-05 | 2013-03-19 | Yahoo! Inc. | Informational alert messaging for digital home services |
US20060161621A1 (en) | 2005-01-15 | 2006-07-20 | Outland Research, Llc | System, method and computer program product for collaboration and synchronization of media content on a plurality of media players |
CN101019125B (zh) | 2005-05-11 | 2010-06-16 | 索尼株式会社 | 服务器装置和关联登记设备的方法 |
US20070028258A1 (en) | 2005-07-26 | 2007-02-01 | Sbc Knowledge Ventures L.P. | Internet protocol television authorization filtering |
US7596800B2 (en) * | 2005-08-31 | 2009-09-29 | Time Warner Cable, Inc. | System and method for assigning and verifying CPE service calls in a cable network |
JP4923778B2 (ja) | 2005-09-14 | 2012-04-25 | カシオ計算機株式会社 | デジタルテレビ受信システム、および、サーバ装置 |
US20070107016A1 (en) * | 2005-11-04 | 2007-05-10 | Angel Albert J | Interactive Multiple Channel User Enrollment, Purchase Confirmation Transactional System with Fulfillment Response Feature for Video On Demand Cable Systems |
US8191098B2 (en) | 2005-12-22 | 2012-05-29 | Verimatrix, Inc. | Multi-source bridge content distribution system and method |
KR20170135979A (ko) * | 2005-12-23 | 2017-12-08 | 로비 가이드스, 인크. | 다수의 장치를 갖는 인터랙티브 미디어 안내 시스템 |
CN101031060B (zh) | 2006-03-03 | 2010-10-20 | 华为技术有限公司 | 一种生成电子节目指南的系统及方法 |
CN101438256B (zh) * | 2006-03-07 | 2011-12-21 | 索尼株式会社 | 信息处理设备、信息通信系统、信息处理方法 |
US8285983B2 (en) | 2006-05-15 | 2012-10-09 | Telefonaktiebolaget Lm Ericsson (Publ) | Method and apparatuses for establishing a secure channel between a user terminal and a SIP server |
JP2008035108A (ja) | 2006-07-27 | 2008-02-14 | Kyocera Corp | ホームネットワークサーバおよびホームネットワークの制御方法 |
CN1946173A (zh) | 2006-10-10 | 2007-04-11 | 华为技术有限公司 | 一种iptv直播业务控制方法、系统和设备 |
CN1964268A (zh) | 2006-11-08 | 2007-05-16 | 华为技术有限公司 | 网络电视系统中增值业务的提供方法及相关系统和设备 |
JP2008129860A (ja) * | 2006-11-21 | 2008-06-05 | Matsushita Electric Ind Co Ltd | 情報処理機器、サービス提供サーバ及び遠隔操作装置 |
US20080183815A1 (en) | 2007-01-30 | 2008-07-31 | Unger Assaf | Page networking system and method |
US7913309B2 (en) | 2007-06-13 | 2011-03-22 | Microsoft Corporation | Information rights management |
US8863200B2 (en) | 2007-06-29 | 2014-10-14 | Alcatel Lucent | Internet protocol television network and method of operating thereof |
KR101467174B1 (ko) | 2007-08-16 | 2014-12-01 | 삼성전자주식회사 | 통신 수행 방법 및 그 장치와, 통신 수행 제어 방법 및 그장치 |
US9628746B2 (en) | 2007-08-22 | 2017-04-18 | Time Warner Cable Enterprises Llc | Apparatus and method for remote wireless control of digital video recorders and the like |
KR101512321B1 (ko) * | 2007-08-22 | 2015-04-16 | 삼성전자주식회사 | 복수의 서비스 제공자의 서비스를 제공/수신하기 위한 방법및 장치 |
KR20100102099A (ko) * | 2007-10-23 | 2010-09-20 | 비아클릭스, 인코퍼레이티드 | 멀티미디어 운영, 광고, 컨텐츠 및 서비스 시스템 |
WO2009052650A1 (en) | 2007-10-26 | 2009-04-30 | Lucent Technologies Inc. | Method and terminal for forwarding an iptv program to an sip terminal |
EP2198626A4 (en) | 2007-11-01 | 2012-02-08 | Lg Electronics Inc | METHOD FOR DATA PROCESSING AND IPTV RECEIVING DEVICE |
US8370907B1 (en) * | 2007-11-20 | 2013-02-05 | DeviceCo LLC | Internet enabled monitoring and control device |
JP2009130750A (ja) | 2007-11-27 | 2009-06-11 | Hitachi Ltd | コンテンツ配信方法、制御端末、および、表示端末 |
JP4740926B2 (ja) * | 2007-11-27 | 2011-08-03 | フェリカネットワークス株式会社 | サービス提供システム、サービス提供サーバ、及び情報端末装置 |
JP2009129386A (ja) * | 2007-11-28 | 2009-06-11 | Hitachi Ltd | 配信方法、サーバ及び受信端末 |
US8893200B2 (en) | 2007-12-05 | 2014-11-18 | Lg Electronics Inc. | IPTV receiver and method of acquiring a resource for an IPTV service |
US8635641B2 (en) | 2007-12-05 | 2014-01-21 | Lg Electronics Inc. | Method of performing parental control a channel and an IPTV receiver |
US8850501B2 (en) | 2007-12-07 | 2014-09-30 | Telefonaktiebolaget Lm Ericsson (Publ) | IP media streaming service delivery |
US8001585B2 (en) | 2007-12-10 | 2011-08-16 | Mastercard International Incorporated | Methods and systems for providing website hosting security |
KR100958110B1 (ko) | 2007-12-17 | 2010-05-17 | 한국전자통신연구원 | 유비쿼터스 서비스 인증 게이트웨이 장치 및 그 방법 |
US8341675B2 (en) * | 2007-12-19 | 2012-12-25 | The Directv Group, Inc. | Method and system for providing program guide data from a content provider to a user device through a partner service provider based upon user attributes |
US20090180614A1 (en) | 2008-01-10 | 2009-07-16 | General Instrument Corporation | Content protection of internet protocol (ip)-based television and video content delivered over an ip multimedia subsystem (ims)-based network |
US8107921B2 (en) * | 2008-01-11 | 2012-01-31 | Seven Networks, Inc. | Mobile virtual network operator |
US8411587B2 (en) | 2008-02-11 | 2013-04-02 | Dell Products L.P. | System and method for configuring a network |
US20090210552A1 (en) | 2008-02-15 | 2009-08-20 | Alcatel Lucent | Facilitating access to IPTV content using a portable device while roaming |
US20090216806A1 (en) | 2008-02-24 | 2009-08-27 | Allofme Ltd. | Digital assets internet timeline aggregation and sharing platform |
US20090222874A1 (en) | 2008-02-29 | 2009-09-03 | Motorola, Inc. | Method, device and system for session mobility of internet protocol television (iptv) content between end user communication devices |
JP4492719B2 (ja) | 2008-03-10 | 2010-06-30 | ソニー株式会社 | データ通信装置、データ通信方法、データ要求装置、データ要求方法、およびデータ通信システム |
US8238559B2 (en) | 2008-04-02 | 2012-08-07 | Qwest Communications International Inc. | IPTV follow me content system and method |
KR101552147B1 (ko) | 2008-04-24 | 2015-09-11 | 삼성전자주식회사 | 방송 컨텐츠를 추천하는 방법과 그 장치 |
US8261299B2 (en) | 2008-05-22 | 2012-09-04 | At&T Intellectual Property I, L.P. | Methods and computer program products for reporting internet protocol television related data collected from application and device data |
US8315746B2 (en) | 2008-05-30 | 2012-11-20 | Apple Inc. | Thermal management techniques in an electronic device |
US20100011391A1 (en) | 2008-07-14 | 2010-01-14 | Carpenter Jason P | Decoder-specific content provision system and method |
WO2010023662A1 (en) | 2008-08-25 | 2010-03-04 | Webtview Ltd. | Iptv extended content provisioning |
US20100070417A1 (en) * | 2008-09-12 | 2010-03-18 | At&T Mobility Ii Llc | Network registration for content transactions |
US8635645B2 (en) | 2008-09-30 | 2014-01-21 | Qualcomm Incorporated | Apparatus and methods of providing and receiving venue level transmissions and services |
US8869289B2 (en) * | 2009-01-28 | 2014-10-21 | Microsoft Corporation | Software application verification |
US20100199341A1 (en) * | 2009-02-02 | 2010-08-05 | Telefonaktiebolaget Lm Ericsson (Publ) | Methods, Subscriber Server, and User Equipment for Facilitating Service Provision |
US20110010433A1 (en) | 2009-07-10 | 2011-01-13 | Microsoft Corporation | Targeted presentation and delivery of themes |
US20110023069A1 (en) | 2009-07-27 | 2011-01-27 | At&T Intellectual Property I, L.P. | System and Method for Creating and Managing an Internet Protocol Television Personal Movie Library |
US8566876B2 (en) | 2009-11-04 | 2013-10-22 | At&T Intellectual Property I, Lp | System and method for interacting with social networking in an internet protocol television system |
US8224756B2 (en) | 2009-11-05 | 2012-07-17 | At&T Intellectual Property I, L.P. | Apparatus and method for managing a social network |
US20110154405A1 (en) * | 2009-12-21 | 2011-06-23 | Cambridge Markets, S.A. | Video segment management and distribution system and method |
US8255941B2 (en) * | 2010-01-14 | 2012-08-28 | Syncbak, Inc. | Broadcast area authentication |
US8843736B2 (en) * | 2010-05-04 | 2014-09-23 | Sony Corporation | Authentication and authorization for internet video client |
US8458741B2 (en) * | 2010-05-27 | 2013-06-04 | Sony Corporation | Provision of TV ID to non-TV device to enable access to TV services |
US8407755B2 (en) * | 2010-07-27 | 2013-03-26 | Sony Corporation | Control of IPTV using second device |
-
2010
- 2010-05-18 US US12/782,174 patent/US8843736B2/en active Active
- 2010-05-18 US US12/782,094 patent/US8862515B2/en active Active
- 2010-07-27 US US12/844,254 patent/US8458740B2/en active Active
- 2010-07-27 US US12/844,312 patent/US8607263B2/en active Active
- 2010-07-27 US US12/844,283 patent/US20110277003A1/en not_active Abandoned
-
2011
- 2011-04-21 KR KR1020127028872A patent/KR101502211B1/ko active IP Right Grant
- 2011-04-21 WO PCT/US2011/033406 patent/WO2011139583A1/en active Application Filing
- 2011-04-21 CA CA2798215A patent/CA2798215C/en active Active
- 2011-04-21 EP EP11777842.3A patent/EP2553566B1/en active Active
- 2011-04-21 MX MX2012012772A patent/MX2012012772A/es active IP Right Grant
- 2011-04-21 CN CN201180022362.5A patent/CN102893623B/zh active Active
- 2011-04-21 JP JP2013509103A patent/JP5488856B2/ja active Active
-
2013
- 2013-10-16 US US14/055,631 patent/US8869190B2/en active Active
- 2013-11-05 US US14/072,038 patent/US9002747B2/en active Active
-
2014
- 2014-07-08 US US14/326,073 patent/US20140325553A1/en not_active Abandoned
- 2014-09-10 US US14/482,196 patent/US9215485B2/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20080271159A1 (en) * | 1997-03-05 | 2008-10-30 | At Home Corporation | Method And System For Restricting Access To User Resources |
CN1910563A (zh) * | 2004-01-07 | 2007-02-07 | 松下电器产业株式会社 | 设备注册系统、服务器和终端设备 |
US20070107019A1 (en) * | 2005-11-07 | 2007-05-10 | Pasquale Romano | Methods and apparatuses for an integrated media device |
Cited By (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104519299A (zh) * | 2013-09-30 | 2015-04-15 | 远升科技股份有限公司 | 用于通过有线电视网络终端控制数据网络接入参数的方法和系统 |
CN104519299B (zh) * | 2013-09-30 | 2018-07-10 | 远升科技股份有限公司 | 用于通过有线电视网络终端控制数据网络接入参数的方法和系统 |
CN106797563A (zh) * | 2015-05-26 | 2017-05-31 | 华为技术有限公司 | 用于自适应流媒体的基于令牌的认证和授权信息的信令通知和交互 |
CN106797563B (zh) * | 2015-05-26 | 2019-11-26 | 华为技术有限公司 | 用于自适应流媒体的基于令牌的认证和授权信息的信令通知和交互 |
CN104994423A (zh) * | 2015-07-06 | 2015-10-21 | 无锡天脉聚源传媒科技有限公司 | 一种视频播放记录的处理方法及装置 |
CN107851149A (zh) * | 2015-07-14 | 2018-03-27 | 万事达卡国际股份有限公司 | 与web应用一起使用的身份联合和令牌转化模块 |
CN107851149B (zh) * | 2015-07-14 | 2021-08-10 | 万事达卡国际股份有限公司 | 包括与web应用一起使用的身份联合和令牌转化模块的设备及方法 |
CN106375270A (zh) * | 2015-07-24 | 2017-02-01 | 华为技术有限公司 | 令牌生成并认证的方法及认证服务器 |
WO2017016252A1 (zh) * | 2015-07-24 | 2017-02-02 | 华为技术有限公司 | 令牌生成并认证的方法及认证服务器 |
CN106375270B (zh) * | 2015-07-24 | 2020-12-08 | 华为技术有限公司 | 令牌生成并认证的方法及认证服务器 |
CN112771526A (zh) * | 2018-09-28 | 2021-05-07 | 斯纳普公司 | 协作型公共用户简档 |
CN110798748A (zh) * | 2019-11-04 | 2020-02-14 | 北京达佳互联信息技术有限公司 | 一种音视频预加载方法和装置及电子设备 |
Also Published As
Publication number | Publication date |
---|---|
CA2798215A1 (en) | 2011-11-10 |
WO2011139583A1 (en) | 2011-11-10 |
US20140059584A1 (en) | 2014-02-27 |
US20110277003A1 (en) | 2011-11-10 |
KR20130018843A (ko) | 2013-02-25 |
US20110277005A1 (en) | 2011-11-10 |
US20110276797A1 (en) | 2011-11-10 |
CA2798215C (en) | 2017-01-24 |
US20140325553A1 (en) | 2014-10-30 |
US8607263B2 (en) | 2013-12-10 |
EP2553566A1 (en) | 2013-02-06 |
JP2013526233A (ja) | 2013-06-20 |
US9002747B2 (en) | 2015-04-07 |
US8862515B2 (en) | 2014-10-14 |
US8869190B2 (en) | 2014-10-21 |
US20150012935A1 (en) | 2015-01-08 |
MX2012012772A (es) | 2012-12-17 |
JP5488856B2 (ja) | 2014-05-14 |
KR101502211B1 (ko) | 2015-03-12 |
US9215485B2 (en) | 2015-12-15 |
US20110277006A1 (en) | 2011-11-10 |
EP2553566A4 (en) | 2016-06-01 |
CN102893623B (zh) | 2016-04-13 |
EP2553566B1 (en) | 2019-06-12 |
US8843736B2 (en) | 2014-09-23 |
US8458740B2 (en) | 2013-06-04 |
US20140047469A1 (en) | 2014-02-13 |
US20110277002A1 (en) | 2011-11-10 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102893623B (zh) | 用于互联网视频客户端的认证和授权 | |
JP7018109B2 (ja) | 機器の安全なプロビジョニングと管理 | |
US11799663B2 (en) | Authentication and binding of multiple devices | |
US20170359335A1 (en) | In-circuit security system and methods for controlling access to and use of sensitive data | |
US9165152B2 (en) | Secure non-invasive method and system for distribution of digital assets | |
US9578104B2 (en) | Resumption of play for a content-delivery session | |
US9438584B2 (en) | Provisioning DRM credentials on a client device using an update server | |
CN1890618B (zh) | 与连接相关的权利保护 | |
CN101243434B (zh) | 经由流送的远程访问受保护文件 | |
US8458741B2 (en) | Provision of TV ID to non-TV device to enable access to TV services | |
US20140337927A1 (en) | Authorization of media content transfer between home media server and client device | |
CN107145769A (zh) | 一种数字版权管理drm方法、设备及系统 | |
CN102546528B (zh) | 流媒体播放的方法和设备 | |
KR102053993B1 (ko) | 인증서를 이용한 사용자 인증 방법 | |
JP7367692B2 (ja) | 装置、リクエスト装置、方法、およびプログラム | |
Serrão | Open Secure Infrastructure to control User Access to multimedia content | |
CN1516492A (zh) | 用于移动通讯系统的电子文件版权保护方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant |