GB2529454A - An electronic system for forming a control channel between an electronic device and a videotelephone device - Google Patents

An electronic system for forming a control channel between an electronic device and a videotelephone device Download PDF

Info

Publication number
GB2529454A
GB2529454A GB1414838.1A GB201414838A GB2529454A GB 2529454 A GB2529454 A GB 2529454A GB 201414838 A GB201414838 A GB 201414838A GB 2529454 A GB2529454 A GB 2529454A
Authority
GB
United Kingdom
Prior art keywords
videotelephone
electronic device
internet
control channel
communication connection
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
GB1414838.1A
Other versions
GB201414838D0 (en
Inventor
Richard Piers Heatley
Samuel Thomas Jansen
Nicholas Ian Moss
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Starleaf Ltd
Original Assignee
Starleaf Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Starleaf Ltd filed Critical Starleaf Ltd
Priority to GB1414838.1A priority Critical patent/GB2529454A/en
Publication of GB201414838D0 publication Critical patent/GB201414838D0/en
Priority to GB1514877.8A priority patent/GB2531135B/en
Priority to US14/831,773 priority patent/US20160081125A1/en
Publication of GB2529454A publication Critical patent/GB2529454A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1083In-session procedures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1083In-session procedures
    • H04L65/1094Inter-user-equipment sessions transfer or sharing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/40Support for services or applications
    • H04L65/403Arrangements for multi-party communication, e.g. for conferences
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/14Systems for two-way working
    • H04N7/141Systems for two-way working between two video terminals, e.g. videophone
    • H04N7/142Constructional details of the terminal equipment, e.g. arrangements of the camera and the display
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/14Systems for two-way working
    • H04N7/141Systems for two-way working between two video terminals, e.g. videophone
    • H04N7/147Communication arrangements, e.g. identifying the communication as a video-communication, intermediate storage of the signals
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/14Systems for two-way working
    • H04N7/15Conference systems
    • H04N7/152Multipoint control units therefor
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/14Systems for two-way working
    • H04N7/15Conference systems
    • H04N7/157Conference systems defining a virtual conference space and using avatars or agents
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W72/00Local resource management
    • H04W72/20Control channels or signalling for resource management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Abstract

An electronic system 90 for forming a control channel 32 between an electronic device 10 and a videotelephone device 14 such that the electronic device 10 controls the videotelephone device 14. The videophone 14 and the electronic device 10 are each connected to the Internet 104. The electronic device 10 is configured to request, over the Internet 104, a control channel 31,32 to be formed between the electronic device 10 and the videotelephone 14 through which the electronic device 10 can control the videotelephone device 14. The system 90 includes computers 108 connected to the Internet 104 and configured to form the control channel 31,32. Preferably each device is connected to the internet through respective local area networks which are not in direct communication connection with each other. The control channel may pass through a demilitarized zone (DMV) or a firewall on one of the networks. Preferably the electronic device is a portable or mobile device such as a smart phone or tablet. The videotelephone may be a videoconference or telepresence device. Independent claims are included for the computers 108 responsible for setting up the control channel 31,32, for the electronic device 10 and for the videophone device 14.

Description

Intellectual Property Office Application No. GB1414838.1 RTN4 Date:19 February 2015 The following terms are registered trade marks and should be read as such wherever they occur in this document: Wi-Fi Apple Apple TV Bluetooth i Beacon iOS Intellectual Property Office is an operating name of the Patent Office www.ipo.govuk
AN ELECTRONIC SYSTEM FOR FORMING A CONTROL CHANNEL BETWEEN AN
ELECTRONIC DEVICE AND A VIDEOTELEPHONE DEVICE
FIELD OF THE INVENTION
The present invention relates to an electronic system for forming a control channel between an electronic device and a videotelephone device.
BACKGROUND OF THE INVENTION
As illustrated in Figure 1, electronic devices such as mobile phones or smart phones 10 are used by individual company employees to make telephone calls to other individuals. These phones can usually connect to a corporate local area network 12, typically by WiFi.
Sometimes, during a call, it can be considered useful to, for example, continue the call over a corporate dedicated videotelephone device such as a video conferencing system 14 or video phone 16, for example, to include additional people on the call or to share documents. Because of the ease of use, but expense, of touch-screen displays of electronic devices such as smart phones, it has been considered useful to use the electronic device or smartphone to control the corporate dedicated videotelephone device like a remote control. However, corporate dedicated video conferencing systems are usually on a separate local area network (a video network) 18 to the corporate local area network 12 and there is no direct link between the corporate local area network 12 and the video network 18. As explained below, because of this, it has not been easily possible to pass a call over to the corporate dedicated video conferencing system 14 or video phone 16 from a call taking place on an employee's phone 10 nearby, for example, or to use the smartphone like a remote control.
In a corporate environment, a direct link or connection between a corporate local area network and a video network is neither usual nor considered desirable for security reasons.
The video endsystems (corporate dedicated video conferencing system 14 and video phone 16) are put on a separate network to the corporate local area network to protect them from attack by viruses unwittingly brought in by employees, or attack by rogue employees trying to break into videoconferences to eavesdrop on conversations, for monetary gain or for theft of confidential material.
Allowing secure limited access through firewalls of user computing devices or electronic devices, such as smart phone 10, to a video endsystem 14,16 is considered to be very difficult because of the complexity of video protocols used on the video network 18 and the dynamic nature of a corporate local area network 12. Video protocols are complex and typically have to manage multiple streams of media packets from various addresses and pods as well as a variety of control protocols. Employees connecting their electronic devices to corporate networks typically involve a dynamic address assignment making it unpredictable where particular devices will be located on a corporate network. These two factors combined make firewall construction very difficult for allowing only authorized devices to control and stream to particular video endsystems or videotelephone devices at particular times. Furthermore, the separation of the electronic devices or user computing devices and the video conferencing system on different networks make it difficult for them to discover each other in order for them to communicate.
Existing consumer video endsystems such as the consumer device Apple TV allow connectivity with electronic devices or user computing devices such as smart phones, tablets or laptop computers. This interworking allows control messages and media streams to be transferred from the user's computing device to the video endsystem to allow the user to remotely control the video endsystem and to stream video or audio from the user's device to be played out using the endsystem's screen or speakers. Figure 2 shows such a system. The system includes a home network 20 to which a laptop computer 22, a smartphone 24 and an Apple TV device 26 are in communication connection. The Apple TV device or set-top box is connected to a television 28. The laptop computer 22 and the smartphone and 24 can control and display content on the screen of the television attached to the Apple TV device via the home network.
The system requires that there is a direct network connection between the user's computing devices (the laptop computer 22 and the smartphone 24, in this example) and the video endsystem (the Apple TV device 26, in this example), usually by pufting them on the same network. This restriction is acceptable and practical in a consumer environment where typically there is only a single network in a home. However, in a corporate environment, such a system is neither acceptable (in view of security risks) nor practical (in view of video networks and local area networks being separate in view of the security risks in linking them).
SUMMARY OF THE INVENTION
Embodiments of the invention are a method and system which enable electronic devices or user computing devices to make use of video endsystems or videotelephone devices that are separated by the architecture of a corporate network.
The inventors of the present application have appreciated that a guaranteed common point of access between a video network and user computing devices is the Internet and, therefore, by deploying a cloud-based server or computer system a control channel between the communication end point device or electronic device and the video end systems orvideotelephone device may be established.
The present invention is a set of methods for establishing this control channel and devices that implement such methods. In this way, a user's computing device or electronic device such as a smart phone, laptop or tablet connected to a corporate user wireless network or a mobile network can control video conferencing equipment or other videotelephone device on a corporate video network. In other words, a conference room or video conference system to remote device connection may be made over the cloud.
The present invention relates to a device, method and system for allowing interworking between an ordinary computing device, user computing equipment or electronic device and a video endsystem or video telephone device on a video network.
The invention in its various aspects is defined in the independent claims below to which reference should now be made. Advantageous features are set forth in the dependent claims.
Arrangements are described in more detail below and take the form of an electronic system for forming a control channel between an electronic device and a videotelephone device such that the electronic device controls the videotelephone device. The electronic system comprises a videotelephone device in communication connection with the Internet; and an electronic device in communication connection with the Internet. The electronic device is configured to request, over the Internet, a control channel to be formed between the electronic device and the videotelephone device. The electronic system also includes one or more computers in communication connection with the Internet. The one or more computers are configured to form the control channel between the electronic device and the videotelephone device by communication over the Internet in response to receiving the request by the electronic device over the Internet, such that the electronic device controls the videotelephone.
In an aspect of the present invention, there is provided an electronic system for forming a control channel between an electronic device and a videotelephone device such that the electronic device controls the videotelephone device, the electronic system comprising: a videotelephone device in communication connection with the Internet; and an electronic device in communication connection with the Internet, wherein the electronic device is configured to request, over the Internet, a control channel to be formed between the electronic device and the videotelephone device; and one or more computers in communication connection with the Internet, wherein the one or more computers are configured to: form the control channel between the electronic device and the videotelephone device by communication over the Internet in response to receiving the request by the electronic device over the Internet, such that the electronic device controls the videotelephone device.
In another aspect of the present invention, there is provided a computer system for forming a control channel between an electronic device and a videotelephone device such that the electronic device controls the videotelephone device, the computer system comprising: one or more computers in communication connection with the Internet, wherein the one or more computers are configured to form a control channel between an electronic device and a videotelephone device by communication over the Internet in response to receiving a request by the electronic device over the Internet to form a control channel between the electronic device and the videotelephone device such that the electronic device controls the videotelephone device.
In another aspect of the present invention, there is provided an electronic device for communication connection with the Internet, wherein the electronic device is configured to: request, over the Internet, a control channel to be formed between the electronic device in communication connection with the Internet and a videotelephone device also in communication connection with the Internet; and once the control channel is formed, send control signals over the control channel to the videotelephone device to control the videotelephone device.
In a yet further aspect of the present invention, there is a videotelephone device for communication connection with the Internet, wherein the videotelephone device is configured to: receive, over the Internet, a request for a control channel to be formed between an electronic device in communication connection with the Internet and the videotelephone device also in communication connection with the Internet; and once the control channel is formed, receive control signals over the communication channel from the electronic device to control the videotelephone device.
In another aspect of the present invention, there is provided a computerized method of forming a control channel between an electronic device and a videotelephone device for the electronic device to control the videotelephone device, the computerized method comprising: receiving at a computer system, over the Internet, a request from an electronic device to form a control channel between the electronic device and a videotelephone device; and in response to receiving the request, the computer system forming a control channel between the electronic device and the videotelephone device by communication over the Internet such that the electronic device controls the videotelephone device.
In a still further aspect of the present invention, there is provided a method for an electronic device to form a control channel between the electronic device and a videotelephone device over the Internet, the method comprising: the electronic device requesting, over the Internet, a control channel to be formed between the electronic device in communication connection with the Internet and a videotelephone device also in communication connection with the Internet; and once the control channel is formed, sending control signals over the control channel to the videotelephone device such that the electronic device controls the videotelephone device.
In a still further aspect of the present invention, there is provided a method for a videotelephone device to form a control channel between the videotelephone device and an electronic device over the Internet, the method comprising: the videotelephone device receiving, over the Internet, a request for a control channel to be formed between an electronic device in communication connection with the Internet and the videotelephone device also in communication connection with the Internet; and once the control channel is formed, the video telephone device receiving control signals over the control channel from the electronic device such that the electronic device controls the videotelephone device.
A computer program may be configured to carry out the methods above. A computer-readable medium may contain a set of instructions that causes a computer to perform the methods above. The computer-readable medium may be, for example, a hard disk drive, a solid state memory device, a CD-ROM or a DVD-ROM.
In any of the aspects above, the electronic device may be in communication connection with a first local area network that forms at least part of the electronic device's communication connection to the Internet. The videotelephone device may be in communication connection with a second local area network that forms at least part of the videotelephone device's communication connection to the Internet. The first local area network may not be in direct communication connection with the second local area network. The control channel may be formed over the Internet. The control channel may be formed through a third network in communication connection with the first local area network, the second local area network and the Internet. The control channel between the electronic device and the videotelephone device may pass through intermediate networks such as a demilitarized zone. The videotelephone device may comprise a videophone, a videoconferencing system, or a telepresence system. The electronic device may comprise a portable electronic device. The portable electronic device may comprise a smart phone, a tablet computer, or a laptop computer. In addition to forming the control channel, a relationship of trust between the electronic device and the videotelephone device may be formed, wherein the relationship of trust permits the electronic device to control the videotelephone device. The relationship of trust may be formed over the Internet in response to receiving the request by the electronic device over the Internet.
In addition to forming a control channel, a media channel may also be formed with the control channel for one or more media streams to be sent from the electronic device to the videotelephone device and vice versa.
BRIEF DESCRIPTION OF THE DRAWINGS
The invention will be described in more detail, by way of example, with reference to the accompanying drawings, in which: Figure 1 (prior art) is a schematic diagram of a known telecommunication end point device and a known video conferencing system in a corporate environment; Figure 2 (prior art) is a schematic diagram of a known telecommunication end point device, computer and television in a consumer environment; and Figures 3 to 5 are schematic diagrams illustrating a telecommunication system embodying an aspect of the present invention.
DETAILED DESCRIPTION
An electronic system 90 embodying an aspect of the present invention will now be described with reference to Figures 3 to 5. Some of the features of Figures 3 to 5 are the same as some of the features of the prior art of Figure 1 and like features have been given like reference numerals.
Figure 3 illustrates an example of a corporate network 100 that forms part of the electronic system 90. The corporate network 100 includes a first local area network in the form of an employee or corporate local area network, which, in this example is a wireless local area network orWiFi network 12. The corporate network also includes a second local area network in the form of a separate video local area network (a video network) 18 for a corporate videotelephone system, such a video conferencing system 18. That is to say, the first local area network is not in direct communication connection with the second local area network. As an alternative to a video conferencing system, the videotelephone system may be for example, a videophone or a telepresence system or other videotelephone system with at least some dedicated hardware for video and audio communications.
The corporate network 100 further includes a demilitarized zone (DMZ) 102. In the usual way, the DMZ is a network that includes the corporation's external-facing services or interface to another untrusted network, in this example, the Internet 104. The DMZ is in communication connection with both the corporate local area network 12 and the video network 18 and the Internet. A user's or employee's computing devices or electronic devices (smart phone 10 and laptop computer 106) are attached or in communication connection with the corporate or employee WiFi network 12. Videotelephone devices (video conference system 14 and video phone 16) are attached to or in communication with the video network 18. To emphasise, as is normal in corporate environments, and as explained in the background of the invention section above, there is no direct link between the employee WiFi network 12 and the video network 18. However, both of these networks have access to the Internet via the DMZ. Significantly, the electronic system 90 also includes a cloud-based video relay device 108 that is in communication connection with the Internet 104. The relay device is formed by a computer system, or one or more computers in communication connection with the Internet. Because the corporate and video networks and the relay device may all have communication connection over the Internet, the corporate and video networks can, therefore, both "see" the cloud-based video relay device.
The computing devices (smart phone 10 and laptop computer 106) include appropriate software or a computer program stored on them on a computer readable medium to issue or transmit a request to form a control channel with a video telephony device 14,16 to the employee network 12 and then over the Internet 104 to the relay device 108.
The relay device 108 includes a computer system or one or more computers or servers.
These include appropriate software or a computer program stored on them on a computer readable medium. The computer or computers are configured to form a control channel between an electronic device, telecommunication end point device or employee computing device 10,106 and the videotelephone device 14,16 by communication over the Internet 104 in response to receiving an appropriate request from the telecommunication end point device or computing device over the Internet.
The communications relay cloud service or relay device 108 is a computer or computers that, in this example, are at well-known locations on the Internet. This allows simple firewall rules to allow the video endsystems or video telephone devices 10,106 to establish communication with the cloud service or relay device 108. As a users' device or computing device 10,106 will typically have access to much of the Internet 104 to facilitate web browsing, a user's device will be able to set up a connection to the communications relay device 108 through the company's firewall, typically, with little if any change required to the firewall rules.
In addition to forming the control channel, a relationship of trust is formed between the electronic device, such as a smartphone, and the videotelephone device. The relationship of trust permits the electronic device to control the videotelephone device. This relationship is formed over the Internet in response to receiving the request to form a control channel by the electronic device over the Internet. Several ways of achieving this are described below.The communications relay or relay device 108 has security mechanisms in place, such as in this example, a public key infrastructure (PKI) certificate to identify itself and to facilitate encryption of the communication connections from the video endsystems or video telephone devices 14,16 to the communications relay. A PKI is an arrangement that binds public keys with respective user identities by means of a certificate authority.
The communications relay 108 can identify the computing devices 10,106 that are attempting to attach using, for example, a username and password entered on the computing device, or a device identifier such as a digital certificate issued by the computing device.
The communications relay 108 may have a list of device pairs (each computing device 10106 and video telephony device 14,16 form a device pair) that are allowed to communicate with one another. This may be a static list stored in storage or memory of the communications relay 108 or a dynamic list created by a call-control system (not shown) of the telecommunication system 90 or it may be based on some shared secret between the devices of the device pairs. Examples of mechanisms whereby a video endsystem or video telephony device 14,16 could establish a shared secret with a computing device 10,106 are set-out further below. Significantly, these mechanisms only operate when a user of a computing device 10,106 is very close to a video telephony device, typically within sight of the video telephony device. In this way, there is less likelihood that an unauthorised computing device would be able to control or have a communication connection with the video telephony device.
Example mechanisms whereby a video endsystem or video telephone device 14,16 could establish a shared secret with an electronic device or computing device 10,106 are as follows. A string of characters may be displayed on a screen or display of the video telephony device or spoken or issued through a loudspeaker of the video telephony device which could be input by the user of the computing device on the computing device. A short-range radio transmission such as a low power Bluetooth, iBeacon (iBeacon is a location service that is part of the Apple operating system iOS that uses a Bluetooth low energy signal from a beacon detected by the device using iOS to indicate location of the device) or Near-Field Communication may be made by the video telephony device that needs to be detected by the computing device and a particular response made from the computing device to the video telephony device. A computer-readable graphic such as a QR code or other barcode or matrix bar code may be displayed on the video telephony device and this would need to be correctly scanned or detected by the computing device and a particular response made from the computing device to the video telephony device.
A computer-readable audio signal may be played through the video telephony device that needs to be detected by the computing device and a response made from the computing device to the video telephony device.
Any of the above methods could incorporate the current time to ensure that the secret is short-lived and hence that the computing device or electronic device 10,106 requesting party is currently still in physical proximity to the video telephony device 14,16.
A user's computing device 10,106 may request that a relay channel be established to the desired video endsystem or video telephony device 14,16 based on authentication rules, shared secret and/or established call information.
Once established, the computing device 10,106 to video endsystem or video telephony device 14,16 channel can optionally be encrypted, for instance by using another PKI certificate, to protect the channel from snooping by the owner of the relay device 108. This channel can be used to exchange details about the local network addresses of the user's computing device and the video endpoint 14,16. This exchange of information can be used to set up a direct communications path between the devices (the computing device 10,106 and the video telephony device 14,16) if possible in the network architecture and if permitted by any intermediate firewalls as explained in more detail below with reference to Figure 5. First, though, Figure 4 is discussed.
Figure 4 illustrates an example of the telecommunication system of Figure 3 in use. Figure 4 is similar in most respects to Figure 3 and like features have been given like reference numerals.
Figure 4 illustrates a computer device or electronic device in the form of a smartphone 10 in which a user has initiated a request to set up a control channel between the smartphone and video telephone device 14. In this example, the request is made by a user selecting an appropriate button on the touch screen 11 of the smart phone. The request includes a digital certificate issued by the smartphone to identify it. The request is sent over a WiFi communication connection between the smart phone and the corporate network 12. The request is transmitted from the corporate network to the DMZ 102 over the Internet 104 to the relay device 108 including the digital certificate. On receipt of the request, the relay device checks that the digital certificate represents a device that is authorised to control the video telephony device 14. If the digital certificate is authorised to control the video telephony device then a control channel 31,32 is established or formed between the smart phone and the video telephony device by the relay device. Significantly, the control channel is formed over the Internet. The smartphone connects to the cloud relay device using part of the communication channel or connection 31 and the video endsystem or video telephoned device connects to the cloud relay device using another part of the communication connection 32.
The control channel or connection 31 from the smartphone to the delay device includes a path extending from the smart phone via a WiFi communication connection to the corporate network 12, from the corporate network to the DMZ 102, over the Internet 104 and to the relay device 108. The control channel or connection 32 from the relay device to the video telephone device 14 extends from the relay device, over the Internet to the DMZ, to the video network 18 and then to the video telephone device 14.
The control channel 31,32 allows interworking between the ordinary computing device, user computing equipment or electronic device 11 and the video endsystem or video telephone device 14 on a video network 18. For example, the control channel 31,32 can be used to tunnel control protocols such as HTTP (hyper text transfer protocol) to allow a user's computer device 10,106 to access the user interface of the video endpoint or video telephony device 14,16 and in this way to act like a remote control. The channel 31,32 can be used to tunnel other call-control protocols such as SIP (session initiation protocol) to allow the user's computer device to call-control requests to the video endpoint to instruct it to make or receive calls. The channel 31,32 can be used to tunnel other real-time protocols such as RIP (real-time transport protocol) to allow the user's computer device to send real-time media such as a screen-share, camera feed or audio to the video endpoint.
Thus, in addition to forming a control channel, a media channel may also be formed with the control channel for one or more media streams to be sent from the electronic device to the videotelephone device and vice versa.
Figure 5 illustrates an example of the telecommunication system of Figure 3 in use. Figure 5 is similar in most respects to Figures 3 and 4 and like features have been given like reference numerals.
Figure 5 shows an example of the smartphone 10 and video endsystem or videotelephone device 14 having set up a relay channel or control channel 31,32, then setting up a direct communication channel 41 through the company's network traversing across different networks.
As explained above, once established, the computing device 10,106 to video endsystem or video telephone device 14,16 channel can be encrypted, for instance by using another PKI ceitificate, to protect the channel from snooping by the owner of the relay device 108. This channel can be used to exchange details about the local network addresses of the user's computing device and the video endpoint or video telephone device. This exchange of information can be used to set up a direct control path or channel 41 between the devices (the computing device 10,106 and the video telephony device 14,16) if possible in the network architecture and if permitted by any intermediate firewalls. This arrangement is explained with reference to Figure 5.
Once a communication connection has been established between computing device 10 and video telephone device via relay device 108, either or both of these devices may request that a direct connection is made between them. The connection could be established from either end or both ends simultaneously to facilitate firewall traversal.
In the example of Figure 5, the smart phone 10 requests a direct connection with the video telephone device 14. Appropriate signalling is sent along the communication path 31 to the relay device 108 and the relay device sends appropriate signalling along the communication path 32 to the video telephone device. This signalling initiates an exchange of details about local network addresses of the computing device 10 and the video endpoint 14. Once each of the local network addresses is established by the other device, a direct communication connection 41 is established or formed between them over the DMZ 102. The direct communication connection between the smart phone and video telephony device is therefore established by a WIFi link from the smart phone to the corporate network 12, from the corporate network to the DM7, from the DM7 to the video network 18 and finally from the video network to the video telephone device. Thus, in this arrangement a third network (the DMZ) is used to connect a first network (the corporate network) to a second network (the video network).
This arrangement allows the firewalls to be kept simple. This results in a safe and secure system for a relatively complex arrangement. The complex arrangement involves tunnel setup and authentication before any packets can be sent from smartphone to video telephone system as well as often, in practice, many smartphones, all with random addresses, and lots of video telephone systems. A simple firewall means that mistakes are less likely to be made when the firewall is set up. Furthermore, if complex firewall rules allowed all of the electronic devices or smartphones to communicate or control all of the video telephone systems then any one of them infected by a virus could potentially infect all of the video telephone systems. This problem is prevented by the simple firewall arrangement described above.
Alternatively, if the employee network and the video network firewalls are both directly connected to the Internet then the direct connection could be established through the Internet rather than through a DM7.
The direct path may be used for plain unencapsulated protocols such as HTTP, SIP or RTP or it may be a similar type of channel to the channel established via the relay device 108. If a direct channel can be established of the same type as the channel through the cloud relay device 108 then it can be used to replace the channel through the cloud relay device.
As with the control channel via the relay device 108, the direct communication channel 41 allows interworking between the ordinary computing device, user computing equipment or electronic device 10 and the video endsystem or video telephone device 14 on a video network 18. For example, the direct communication channel 41 can be used to tunnel other control protocols such as HTTP to allow a user's computer device 10,106 to access the user interface of the video endpoint or video telephony device 14,16. The direct channel can be used to tunnel other call-control protocols such as SIP to allow the user's computer device to call-control requests to the video endpoint to instruct it to make or receive calls. The direct channel can be used to tunnel other real-time protocols such as RTP to allow the user's computer device to send real-time media such as a screen-share, camera feed or audio to the video endpoint.
Embodiments of the present invention have been described. It will be appreciated that variations and modifications may be made to the described embodiments within the scope of the present invention.

Claims (54)

  1. CLAIMS1. An electronic system for forming a control channel between an electronic device and a videotelephone device such that the electronic device controls the videotelephone device, the electronic system comprising: a videotelephone device in communication connection with the Internet; and an electronic device in communication connection with the Internet, wherein the electronic device is configured to request, over the Internet, a control channel to be formed between the electronic device and the videotelephone device; and one or more computers in communication connection with the Internet, wherein the one or more computers are configured to: form the control channel between the electronic device and the videotelephone device by communication over the Internet in response to receiving the request by the electronic device over the Internet, such that the electronic device controls the videotelephone device.
  2. 2. An electronic system according to claim 1, wherein the electronic device is in communication connection with a first local area network that forms at least part of the electronic device's communication connection to the Internet.
  3. 3. An electronic system according to claim 2, wherein the videotelephone device is in communication connection with a second local area network that forms at least part of the videotelephone device's communication connection to the Internet.
  4. 4. An electronic system according to claim 3, wherein the first local area network is not in direct communication connection with the second local area network.
  5. 5. An electronic system according to any preceding claim, wherein the control channel is formed over the Internet.
  6. 6. An electronic system according to any of claims 3 to 5, wherein the control channel is formed through a third network in communication connection with the first local area network, the second local area network and the Internet.
  7. 7. An electronic system according to any preceding claim, wherein the control channel between the electronic device and the videotelephone device passes through a demilitarized zone.
  8. 8. An electronic system according to any preceding claim, wherein the videotelephone device comprises a videophone, a videoconferencing system, or a telepresence system.
  9. 9. An electronic system according to any preceding claim, wherein the electronic device comprises a portable electronic device.
  10. 10. An electronic system according to claim 9, wherein the portable electronic device comprises a smart phone, a tablet computer, or a laptop computer.
  11. 11. An electronic system according to any preceding claim, wherein the one or more computers are configured to: form the control channel and in addition form a relationship of trust between the electronic device and the videotelephone device, wherein the relationship of trust permits the electronic device to control the videotelephone device.
  12. 12. An electronic system according to claim 11, wherein the one or more computers are configured to: form the relationship of trust over the Internet in response to receiving the request by the electronic device over the Internet.
  13. 13. A computer system for forming a control channel between an electronic device and a videotelephone device such that the electronic device controls the videotelephone device, the computer system comprising: one or more computers in communication connection with the Internet, wherein the one or more computers are configured to form a control channel between an electronic device and a videotelephone device by communication over the Internet in response to receiving a request by the electronic device over the Internet to form a control channel between the electronic device and the videotelephone device such that the electronic device controls the videotelephone device.
  14. 14. A computer system according to claim 13, wherein the electronic device is in communication connection with a first local area network that forms at least part of the electronic device's communication connection to the Internet.
  15. 15. A computer system according to claim 14, wherein the videotelephone device is in communication connection with a second local area network that forms at least part of the videotelephone device's communication connection to the Internet.
  16. 16. A computer system according to claim 15, wherein the first local area network is not in direct communication connection with the second local area network.
  17. 17. A computer system according to any of claims 13 to 16, wherein the control channel is formed over the Internet.
  18. 18. A computer system according to claim 14 to 16, wherein the control channel is formed through a third network in communication connection with the first local area network, the second local area network and the Internet.
  19. 19. A computer system according to any of claims 13 to 18, wherein the control channel between the electronic device and the videotelephone device passes through a demilitarized zone.
  20. 20. A computer system according to any of claims 13 to 19, wherein the videotelephone device comprises a videophone, a videoconferencing system, or a telepresence system.
  21. 21. A computer system according to any of claims 13 to 20, wherein the electronic device comprises a portable electronic device.
  22. 22. A computer system according to claim 21, wherein the portable electronic device comprises a smart phone, a tablet computer, or a laptop computer.
  23. 23. A computer system according to any of claims 13 to 22, wherein the one or more computers are configured to: form the control channel and in addition form a relationship of trust between the electronic device and the videotelephone device, wherein the relationship of trust permits the electronic device to control the videotelephone device.
  24. 24. A computer system according to claim 24, wherein the one or more computers are configured to: form the relationship of trust over the Internet in response to receiving the request by the electronic device over the Internet.
  25. 25. An electronic device for communication connection with the Internet, wherein the electronic device is configured to: request, over the Internet, a control channel to be formed between the electronic device in communication connection with the Internet and a videotelephone device also in communication connection with the Internet; and once the control channel is formed, send control signals over the control channel to the videotelephone device to control the videotelephone device.
  26. 26. An electronic device according to claim 25, wherein the electronic device is in communication connection with a first local area network that forms at least part of the electronic device's communication connection to the Internet.
  27. 27. An electronic device according to claim 26, wherein the videotelephone device is in communication connection with a second local area network that forms at least part of the videotelephone device's communication connection to the Internet.
  28. 28. An electronic device according to claim 27, wherein the first local area network is not in direct communication connection with the second local area network.
  29. 29. An electronic device according to any of claims 24 to 28, wherein the control channel is formed over the Internet.
  30. 30. An electronic device according to any of claims 27 to 29, wherein the control channel is formed through a third network in communication connection with the first local area network, the second local area network and the Internet.
  31. 31. An electronic device according to any of claims 25 to 30, wherein the control channel between the electronic device and the videotelephone device passes through a demilitarized zone.
  32. 32. An electronic device according to any of claims 25 to 31, wherein the videotelephone device comprises a videophone, a videoconferencing system, or a telepresence system.
  33. 33. An electronic device according to any of claims 25 to 32, wherein the electronic device comprises a portable electronic device.
  34. 34. An electronic device according to claim 33, wherein the portable electronic device comprises a smart phone, a tablet computer, or a laptop computer.
  35. 35. A videotelephone device for communication connection with the Internet, wherein the videotelephone device is configured to: receive, over the Internet, a request for a control channel to be formed between an electronic device in communication connection with the Internet and the videotelephone device also in communication connection with the Internet; and once the control channel is formed, receive control signals over the communication channel from the electronic device to control the videotelephone device.
  36. 36. A videotelephone device according to claim 35, wherein the electronic device is in communication connection with a first local area network that forms at least part of the electronic device's communication connection to the Internet.
  37. 37. A videotelephone device according to claim 36, wherein the videotelephone device is in communication connection with a second local area network that forms at least part of the videotelephone device's communication connection to the Internet.
  38. 38. A videotelephone device according to claim 37, wherein the first local area network is not in direct communication connection with the second local area network.
  39. 39. A videotelephone device according to any of claims 31 to 34, wherein the control channel is formed over the Internet.
  40. 40. A videotelephone device according to any of claims 36 to 39, wherein the control channel is formed through a third network in communication connection with the first local area network, the second local area network and the Internet.
  41. 41. A videotelephone device according to any of claims 35 to 40, wherein the control channel between the electronic device and the videotelephone device passes through a demilitarized zone.
  42. 42. A videotelephone device according to any of claims 35 to 41, wherein the videotelephone device comprises a videophone, a videoconferencing system, or a telepresence system.
  43. 43. A videotelephone device according to any of claims 35 to 42, wherein the electronic device comprises a portable electronic device.
  44. 44. A videotelephone device according to claim 43, wherein the portable electronic device comprises a smart phone, a tablet computer, or a laptop computer.
  45. 45. A videotelephone device according to any of claims 35 to 44, wherein the video telephone device is configured to: form the control channel and in addition form a relationship of trust between the electronic device and the videotelephone device, wherein the relationship of trust permits the electronic device to control the videotelephone device.
  46. 46. A videotelephone device according to claim 45, wherein the video telephone device is configured to: form the relationship of trust over the Internet in response to receiving the request by the electronic device over the Internet.
  47. 47. A computerized method of forming a control channel between an electronic device and a videotelephone device for the electronic device to control the videotelephone device, the computerized method comprising: receiving at a computer system, over the Internet, a request from an electronic device to form a control channel between the electronic device and a videotelephone device; and in response to receiving the request, the computer system forming a control channel between the electronic device and the videotelephone device by communication over the Internet such that the electronic device controls the videotelephone device.
  48. 48. A method for an electronic device to form a control channel between the electronic device and a videotelephone device over the Internet, the method comprising: the electronic device requesting, over the Internet, a control channel to be formed between the electronic device in communication connection with the Internet and a videotelephone device also in communication connection with the Internet; and once the control channel is formed, sending control signals over the control channel to the videotelephone device such that the electronic device controls the videotelephone device.
  49. 49. A method for a videotelephone device to form a control channel between the videotelephone device and an electronic device over the Internet, the method comprising: the videotelephone device receiving, over the Internet, a request for a control channel to be formed between an electronic device in communication connection with the Internet and the videotelephone device also in communication connection with the Internet; and once the control channel is formed, the video telephone device receiving control signals over the control channel from the electronic device such that the electronic device controls the videotelephone device.
  50. 50. A computer program configured to carry out the method of any of claims 47 to 49.
  51. 51. A computer-readable medium containing a set of instructions that causes a computer to perform the method of any of claims 47 to 49.
  52. 52. An electronic system, a videotelephone device, an electronic device and a computer system as substantially hereinbefore described with reference to, and as illustrated by, the accompanying drawings of Figures 3 to 5.
  53. 53. A computerized method, a method for an electronic device, and a method for a videotelephone device as substantially hereinbefore described with reference to, and as illustrated by, the accompanying drawings of Figures 3 to 5.
  54. 54. A computer program and a computer-readable medium as substantially hereinbefore described with reference to, and as illustrated by, the accompanying drawings of Figures 3 to 5.
GB1414838.1A 2014-08-20 2014-08-20 An electronic system for forming a control channel between an electronic device and a videotelephone device Withdrawn GB2529454A (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
GB1414838.1A GB2529454A (en) 2014-08-20 2014-08-20 An electronic system for forming a control channel between an electronic device and a videotelephone device
GB1514877.8A GB2531135B (en) 2014-08-20 2015-08-20 An electronic system for forming a control channel between an electronic device and a videotelephone device
US14/831,773 US20160081125A1 (en) 2014-08-20 2015-08-20 Electronic system for forming a control channel between an electronic device and a videotelephone device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
GB1414838.1A GB2529454A (en) 2014-08-20 2014-08-20 An electronic system for forming a control channel between an electronic device and a videotelephone device

Publications (2)

Publication Number Publication Date
GB201414838D0 GB201414838D0 (en) 2014-10-01
GB2529454A true GB2529454A (en) 2016-02-24

Family

ID=51662735

Family Applications (2)

Application Number Title Priority Date Filing Date
GB1414838.1A Withdrawn GB2529454A (en) 2014-08-20 2014-08-20 An electronic system for forming a control channel between an electronic device and a videotelephone device
GB1514877.8A Active GB2531135B (en) 2014-08-20 2015-08-20 An electronic system for forming a control channel between an electronic device and a videotelephone device

Family Applications After (1)

Application Number Title Priority Date Filing Date
GB1514877.8A Active GB2531135B (en) 2014-08-20 2015-08-20 An electronic system for forming a control channel between an electronic device and a videotelephone device

Country Status (2)

Country Link
US (1) US20160081125A1 (en)
GB (2) GB2529454A (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR102405694B1 (en) * 2015-12-23 2022-06-07 삼성전자주식회사 Method of operating electric device and relay device and method of operating the same

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050213739A1 (en) * 2001-05-10 2005-09-29 Polycom, Inc. Conference endpoint controlling functions of a remote device
US20060245416A1 (en) * 2005-04-29 2006-11-02 Faubel Kenneth T Architecture for the separation of call control from media processing
US20110249073A1 (en) * 2010-04-07 2011-10-13 Cranfill Elizabeth C Establishing a Video Conference During a Phone Call

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050243803A1 (en) * 2004-05-03 2005-11-03 Xiaojun Fang Dual-path data network connection method and devices utilizing the public switched telephone network
US8112817B2 (en) * 2006-10-30 2012-02-07 Girish Chiruvolu User-centric authentication system and method
US8332639B2 (en) * 2006-12-11 2012-12-11 Verizon Patent And Licensing Inc. Data encryption over a plurality of MPLS networks
US8484461B2 (en) * 2008-09-30 2013-07-09 Motorola Solutions, Inc. Method and apparatus for external organization path length validation within a public key infrastructure (PKI)
US8843639B2 (en) * 2009-10-23 2014-09-23 Acpana Business Systems Inc. System and method for creating a transparent data tunnel
US8887059B2 (en) * 2011-07-27 2014-11-11 Kaseya Limited Method and apparatus of locally controlling display content of a remote system
US9055032B2 (en) * 2013-04-12 2015-06-09 Blackberry Limited Secure network tunnel between a computing device and an endpoint
US20140366155A1 (en) * 2013-06-11 2014-12-11 Cisco Technology, Inc. Method and system of providing storage services in multiple public clouds
US9350550B2 (en) * 2013-09-10 2016-05-24 M2M And Iot Technologies, Llc Power management and security for wireless modules in “machine-to-machine” communications
US9629195B2 (en) * 2014-06-20 2017-04-18 Htc Corporation Connection switching method applicable to remote controllable system and mobile device, remote controllable system using the same, and mobile device using the same
CH709804B1 (en) * 2014-06-23 2018-12-28 Legic Identsystems Ag Electronic access control device and access control method.
US9621853B1 (en) * 2016-06-28 2017-04-11 At&T Intellectual Property I, L.P. Service orchestration to support a cloud-based, multi-party video conferencing service in a virtual overlay network environment

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050213739A1 (en) * 2001-05-10 2005-09-29 Polycom, Inc. Conference endpoint controlling functions of a remote device
US20060245416A1 (en) * 2005-04-29 2006-11-02 Faubel Kenneth T Architecture for the separation of call control from media processing
US20110249073A1 (en) * 2010-04-07 2011-10-13 Cranfill Elizabeth C Establishing a Video Conference During a Phone Call

Also Published As

Publication number Publication date
GB201414838D0 (en) 2014-10-01
GB2531135B (en) 2018-07-18
GB201514877D0 (en) 2015-10-07
US20160081125A1 (en) 2016-03-17
GB2531135A (en) 2016-04-13

Similar Documents

Publication Publication Date Title
US11696367B2 (en) Methods and apparatus for HyperSecure last mile communication
US10491575B2 (en) Secure dynamic communication network and protocol
US10257874B2 (en) Synchronizing mobile devices and displays
US11165604B2 (en) Method and system used by terminal to connect to virtual private network, and related device
CN106164922B (en) Self-organizing one-time pairing of remote devices using online audio fingerprinting
JP2020516198A (en) Method and apparatus for hyper secure last mile communication
US8254532B2 (en) Network videoconference equipment and its method of proceeding network videoconference
US20150341312A1 (en) Firewall traversal for web real-time communications
US9444807B2 (en) Secure non-geospatially derived device presence information
CN102202299A (en) Realization method of end-to-end voice encryption system based on 3G/B3G
Barnes et al. Browser-to-browser security assurances for WebRTC
US20220303150A1 (en) Systems and methods for video conference acceleration
US20220247588A1 (en) Systems and methods for identifying at-risk meetings
CN107294968A (en) The monitoring method and system of a kind of audio, video data
US20160081125A1 (en) Electronic system for forming a control channel between an electronic device and a videotelephone device
US11792366B2 (en) Bridging video conference connections
CN112333088B (en) Compatible instant messaging transmission method
KR101210938B1 (en) Encrypted Communication Method and Encrypted Communication System Using the Same
CN107404591B (en) Intelligent doorbell monitoring method and device
KR20110062099A (en) Video conference system and method thereof
Raiyn INFORMATION SECURITY AND SAFETY IN CYBERPARKS
Ogundile et al. A Secured Voice over Internet Protocol (VoIP) Setup Using MiniSipServer
Lamba et al. Security traits of VoIP
JP2011182033A (en) Call control system for network

Legal Events

Date Code Title Description
WAP Application withdrawn, taken to be withdrawn or refused ** after publication under section 16(1)