System, method and computer readable medium for message authentication to subscribers of an internet service provider

US 10,348,738 B2
Filed: 01/05/2016
Issued: 07/09/2019
Est. Priority Date: 12/28/2006
Status: Active Grant

First Claim

Patent Images

1. A method, comprising:

receiving a uniform resource locator (URL) page request from a subscriber device associated with a subscriber;

determining a subscriber identity from the URL page request;

determining whether a notification is pending for a subscriber by executing a query on at least one database using the subscriber identity associated with a shared secret;

responsive to determining whether the notification is pending, retrieving the shared secret from the at least one database and generating a notification incorporating the shared secret, via a processor, wherein the shared secret comprises at least one of a subscriber created information secret created by the subscriber and a subscriber device information secret based on a service detail identifier associated with the subscriber device;

transmitting the notification to the subscriber device; and

loading a banner message with notification content and the shared secret on a banner message portion of a browser interface of the subscriber device to provide an indication on the browser interface of the subscriber device that the banner message and notification content are genuinely linked to a subscriber'"'"'s account.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An internet service provider (ISP) is configured to provide notification messages such as service updates to subscribers via redirected web pages. In order for the web pages to be treated as originating from the ISP, the ISP provides a shared secret in the browser message. The shared secret may be a secret not derivable by viruses or trojans in the subscriber computer, such as a MAC address of the subscriber modem.

Citations

19 Claims

1. A method, comprising:
- receiving a uniform resource locator (URL) page request from a subscriber device associated with a subscriber;
  
  determining a subscriber identity from the URL page request;
  
  determining whether a notification is pending for a subscriber by executing a query on at least one database using the subscriber identity associated with a shared secret;
  
  responsive to determining whether the notification is pending, retrieving the shared secret from the at least one database and generating a notification incorporating the shared secret, via a processor, wherein the shared secret comprises at least one of a subscriber created information secret created by the subscriber and a subscriber device information secret based on a service detail identifier associated with the subscriber device;
  
  transmitting the notification to the subscriber device; and
  
  loading a banner message with notification content and the shared secret on a banner message portion of a browser interface of the subscriber device to provide an indication on the browser interface of the subscriber device that the banner message and notification content are genuinely linked to a subscriber'"'"'s account.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method according to claim 1 further comprising determining the identity of the subscriber, wherein the determining comprises determining an internet protocol (IP) address, and retrieving said subscriber identity from said at least one database using said IP address.
  - 3. The method according to claim 1 further comprising displaying said notification via the subscriber device.
  - 4. The method according to claim 1 further comprising generating the pending notification.
  - 5. The method according to claim 1 further comprising storing said pending notification in said at least one database.
  - 6. The method according to claim 1 further comprising generating said notification in response to receiving said URL page request.
  - 7. The method according to claim 1 wherein providing said notification to said subscriber comprises redirecting said URL page request such that the subscriber retrieves a URL page comprising said notification.
  - 8. The method according to claim 7 wherein said URL page comprises a hyperlink to a downloadable remedial facility.

9. A network, comprising:
- at least one notification system comprising;
  
  at least one database;
  
  at least one query engine that executes one or more queries on said at least one database;
  
  a redirection device; and
  
  wherein the redirection device receives a uniform resource location (URL) page request from a subscriber device associated with a subscriber and determines a subscriber identity from the URL page request;
  
  wherein said query engine executes a query on said at least one database using the subscriber identity to retrieve a shared secret and determines whether a notification is pending for the subscriber via a query on the at least one database using said subscriber identity;
  
  responsive to a determination as to whether the notification is pending, the notification system retrieves the shared secret from the at least one database and generates a notification incorporating the shared secret, wherein the shared secret comprises at least one of a subscriber created information secret created by the subscriber and a subscriber device information secret based on a service detail identifier associated with the subscriber device; and
  
  load a banner message with notification content and the shared secret on a banner message portion of a browser interface of the subscriber device to provide an indication on the browser interface of the subscriber device that the banner message and notification content are genuinely linked to a subscriber'"'"'s account.
- View Dependent Claims (10, 11, 12, 13)
- - 10. The network according to claim 9 wherein said notification system redirects said URL page request to a URL page incorporating said notification.
  - 11. The network according to claim 9 wherein said at least one database comprises a database associating the subscriber identity with the shared secret of the subscriber associated with said subscriber identity.
  - 12. The network according to claim 11 wherein said shared secret comprises a MAC address of at least one subscriber device.
  - 13. The network according to claim 12 wherein said notification is provided to the at least one subscriber device, and wherein said at least one subscriber device comprises a modem.

14. A system, comprising:
- a packet processing engine;
  
  a redirection device; and
  
  a subscriber device communicably coupled to said packet processing engine;
  
  wherein the redirection device receives a uniform resource location (URL) page request from a subscriber device associated with a subscriber and determines a subscriber identity from the URL page request;
  
  wherein said packet processing engine retrieves a shared secret associated with the subscriber identity from at least one database and determines whether a notification is pending for the subscriber via a query on the at least one database using the subscriber identity;
  
  responsive to a determination whether the notification is pending, the packet processing engine redirects the uniform resource locator (URL) page request including the shared secret to the subscriber device, wherein the shared secret comprises at least one of a subscriber created information secret created by the subscriber and a subscriber device information secret based on a service detail identifier associated with the subscriber device; and
  
  the subscriber device loads a banner message with notification content and the shared secret on a banner message portion of a browser interface of the subscriber device to provide an indication on the browser interface of the subscriber device that the banner message and notification content are genuinely linked to a subscriber'"'"'s account.
- View Dependent Claims (15, 16, 17, 18)
- - 15. The system according to claim 14 comprising at least one router that routes one or more data packets from the subscriber device to said packet processing engine, wherein said router routes TCP SYN packets to said packet processing engine.
  - 16. The system according to claim 15 wherein in response to receiving a TCP SYN packet said packet processing engine determines said subscriber identity from said TCP SYN packet determines if a notification event is current for said subscriber identity.
  - 17. The system according to claim 16, wherein said at least one database that associates one or more notification events with one or more subscribers and wherein said packet processing engine executes a query on said at least one database to determine if a notification event is current for said subscriber.
  - 18. The system according to claim 14 further comprising:
    - a query engine;
      
      wherein said packet processing engine;
      
      retrieves an internet protocol (IP) address provided in said one or more data packets;
      
      utilizes said query engine to retrieve said subscriber identity using said IP address from said at least one database; and
      
      utilizes said query engine to retrieve said shared secret from said at least one database.

19. A method, comprising:
- receiving a uniform resource locator (URL) page request from a subscriber device associated with a subscriber;
  
  determining a subscriber identity from the URL page request;
  
  generating via a processor a message in response to a notification event;
  
  determining whether a notification is pending for the subscriber by executing a query on at least one database using the subscriber identity associated with a shared secret;
  
  responsive to determining whether the notification is pending, retrieving the shared secret from the at least one database and incorporating said shared secret into the message, wherein the shared secret comprises at least one of a subscriber created information secret created by the subscriber and a subscriber device information secret based on a service detail identifier associated with the subscriber device;
  
  transmitting the message to the subscriber device; and
  
  loading a banner message with notification content and the shared secret on a banner message portion of a browser interface of the subscriber device to provide an indication on the browser interface of the subscriber device that the banner message and notification content are genuinely linked to a subscriber'"'"'s account.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Perftech Inc. (Perftech Holdings, Inc.)
Original Assignee
Perftech Inc. (Perftech Holdings, Inc.)
Inventors
Donzis, Henry M., Donzis, Lewis T., Frey, Rodney D., Murphy, John A., Schmidt, Jonathan E.
Primary Examiner(s)
Zarrineh, Shahriar

Application Number

US14/988,111
Publication Number

US 20160234227A1
Time in Patent Office

1,281 Days
Field of Search

726 5
US Class Current
CPC Class Codes

G06F 16/9558   Details of hyperlinks; Mana...

G06F 16/9566   URL specific, e.g. using al...

H04L 51/212   using filtering or selectiv...

H04L 51/224   providing notification on i...

H04L 63/06   for supporting key manageme...

H04L 63/08   for authentication of entit...

H04L 63/123   received data contents, e.g...

H04L 63/126   the source of the received ...

H04L 67/306   User profiles

H04L 67/535   Tracking the activity of th...

H04L 67/54   Presence management, e.g. m...

System, method and computer readable medium for message authentication to subscribers of an internet service provider

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

System, method and computer readable medium for message authentication to subscribers of an internet service provider

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links