System and method for using unique device identifiers to enhance security

US 10,402,580 B2
Filed: 10/15/2018
Issued: 09/03/2019
Est. Priority Date: 12/09/2002
Status: Expired due to Term

First Claim

Patent Images

1. A computer-implemented method, comprising:

enabling, at a mobile device including a camera, monitoring of a camera feed from the mobile device;

detecting from the camera feed, a first feature of a physical manifestation of an access right to a resource, the first feature being included in one or more images of the camera feed, the first feature including a first machine-readable code, and the first machine-readable code corresponding to an identifier that uniquely identifies the access right;

generating, at the mobile device, a time indicator associated with the first feature, the time indicator identifying a time of detecting the first feature;

transmitting the detected first feature and the time indicator from the mobile device to a remote server;

determining, by the remote server, that the first feature corresponds to a valid access right that grants access to the resource, the valid access right indicating that the first feature is valid to grant access to the resource;

transmitting, by the remote server, a communication that indicates that the first feature corresponds to the valid access right;

receiving, at the mobile device and from the remote server, the communication that indicates that the first feature corresponds to the valid access right;

in response to receiving the communication, presenting an authenticity indication for the physical manifestation of the access right that indicates that the access right is authentic;

generating, by the remote server, a timestamp that identifies a time the first feature was sent from the mobile device to the remote server, the timestamp being generated using the time indicator;

determining, by the remote server, a transformation eligibility of the physical manifestation of the access right based on the generated timestamp and an estimated time that the resource will be available for accessing, the transformation eligibility indicating that the first machine-readable code is eligible to be transformed into another machine-readable code;

receiving, at the mobile device and from the remote server, a transformation eligibility indication, based on the determined transformation eligibility, for the first machine readable code that indicates that a transformation-eligibility condition is satisfied for the physical manifestation of the access right so as to enable the physical manifestation of the access right to be converted into a digital manifestation of the access right, the transformation-eligibility condition specifying a time period before the resource is available for accessing during which transformation is enabled;

transmitting, from the mobile device, a request to transform the physical manifestation of the access right into the digital manifestation of the access right, the request including the first feature, wherein receiving the request to transform the physical manifestation of the access right into the digital manifestation of the access right at the remote server initiates a transformation protocol at the remote server that transforms the physical manifestation of the access right into the digital manifestation;

receiving a response to the request indicating that the transformation has occurred and that the first machine readable code has been invalidated; and

displaying, at a display of the mobile device, a visual representation of the response to the request indicating that the physical manifestation of the access right has been transformed or has been invalidated.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for detection and use of device identifiers to enhance the security of data transfers between electronic devices. A first electronic device can transmit access data to a second electronic device. The access data can be associated with a first access code that can be generated based at least in part on data representing a device identifier of the first electronic device. A device identifier can uniquely identify the first electronic device from a plurality of electronic devices. Transferring the access data can involve transforming the first access code into a second access code that can include data representing a device identifier associated with the second electronic device. Transforming the first access code into the second access code can facilitate access to a resource associated with the access data for a second user, but not for a first user.

433 Citations

20 Claims

1. A computer-implemented method, comprising:
- enabling, at a mobile device including a camera, monitoring of a camera feed from the mobile device;
  
  detecting from the camera feed, a first feature of a physical manifestation of an access right to a resource, the first feature being included in one or more images of the camera feed, the first feature including a first machine-readable code, and the first machine-readable code corresponding to an identifier that uniquely identifies the access right;
  
  generating, at the mobile device, a time indicator associated with the first feature, the time indicator identifying a time of detecting the first feature;
  
  transmitting the detected first feature and the time indicator from the mobile device to a remote server;
  
  determining, by the remote server, that the first feature corresponds to a valid access right that grants access to the resource, the valid access right indicating that the first feature is valid to grant access to the resource;
  
  transmitting, by the remote server, a communication that indicates that the first feature corresponds to the valid access right;
  
  receiving, at the mobile device and from the remote server, the communication that indicates that the first feature corresponds to the valid access right;
  
  in response to receiving the communication, presenting an authenticity indication for the physical manifestation of the access right that indicates that the access right is authentic;
  
  generating, by the remote server, a timestamp that identifies a time the first feature was sent from the mobile device to the remote server, the timestamp being generated using the time indicator;
  
  determining, by the remote server, a transformation eligibility of the physical manifestation of the access right based on the generated timestamp and an estimated time that the resource will be available for accessing, the transformation eligibility indicating that the first machine-readable code is eligible to be transformed into another machine-readable code;
  
  receiving, at the mobile device and from the remote server, a transformation eligibility indication, based on the determined transformation eligibility, for the first machine readable code that indicates that a transformation-eligibility condition is satisfied for the physical manifestation of the access right so as to enable the physical manifestation of the access right to be converted into a digital manifestation of the access right, the transformation-eligibility condition specifying a time period before the resource is available for accessing during which transformation is enabled;
  
  transmitting, from the mobile device, a request to transform the physical manifestation of the access right into the digital manifestation of the access right, the request including the first feature, wherein receiving the request to transform the physical manifestation of the access right into the digital manifestation of the access right at the remote server initiates a transformation protocol at the remote server that transforms the physical manifestation of the access right into the digital manifestation;
  
  receiving a response to the request indicating that the transformation has occurred and that the first machine readable code has been invalidated; and
  
  displaying, at a display of the mobile device, a visual representation of the response to the request indicating that the physical manifestation of the access right has been transformed or has been invalidated.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The computer-implemented method of claim 1, further comprising providing an indication of the transformation eligibility to a user via the mobile device.
  - 3. The computer-implemented method of claim 1, wherein the response further indicates that a second machine-readable code has been generated.
  - 4. The computer-implemented method of claim 1, wherein the transformation protocol includes:
    - generating a valid identifier for the digital manifestation of the access right, the valid identifier uniquely identifying the access right;
      
      generating a second machine-readable code, the second machine-readable code corresponding to the valid identifier of the digital manifestation of the access right; and
      
      invalidating the physical manifestation of the access right by;
      
      storing an invalid indicator associated with the identifier of the physical manifestation of the access right;
      
      ordeleting the identifier of the physical manifestation of the access right from a data store.
  - 5. The computer-implemented method of claim 4, wherein the invalid indicator inhibits the physical manifestation of the access right from granting access to the resource.
  - 6. The computer-implemented method of claim 1, wherein the request includes the first feature, and wherein the response includes the transformation eligibility indication.
  - 7. The computer-implemented method of claim 1, further comprising:
    - decrypting the first machine readable code using a key to produce a decrypted code; and
      
      transmitting the decrypted code to the remote server.

8. A system, comprising:
- one or more data processors; and
  
  a non-transitory computer-readable storage medium containing instructions which, when executed on the one or more data processors, cause the one or more data processors to perform operations including;
  
  enabling, at a mobile device including a camera, monitoring of a camera feed from the mobile device;
  
  detecting from the camera feed, a first feature of a physical manifestation of an access right to a resource, the first feature being included in one or more images of the camera feed, the first feature including a first machine-readable code, and the first machine-readable code corresponding to an identifier that uniquely identifies the access right;
  
  generating, at the mobile device, a time indicator associated with the first feature, the time indicator identifying a time of detecting the first feature;
  
  transmitting the detected first feature and the time indicator from the mobile device to a remote server;
  
  determining, by the remote server, that the first feature corresponds to a valid access right that grants access to the resource, the valid access right indicating that the first feature is valid to grant access to the resource;
  
  transmitting, by the remote server, a communication that indicates that the first feature corresponds to the valid access right;
  
  receiving, at the mobile device and from the remote server, the communication that indicates that the first feature corresponds to the valid access right;
  
  in response to receiving the communication, presenting an authenticity indication for the physical manifestation of the access right that indicates that the access right is authentic;
  
  generating, by the remote server, a timestamp that identifies a time the first feature was sent from the mobile device to the remote server, the timestamp being generated using the time indicator;
  
  determining, by the remote server, a transformation eligibility of the physical manifestation of the access right based on the generated timestamp and an estimated time that the resource will be available for accessing, the transformation eligibility indicating that the first machine-readable code is eligible to be transformed into another machine-readable code;
  
  receiving, at the mobile device and from the remote server, a transformation eligibility indication, based on the determined transformation eligibility, for the first machine readable code that indicates that a transformation-eligibility condition is satisfied for the physical manifestation of the access right so as to enable the physical manifestation of the access right to be converted into a digital manifestation of the access right, the transformation-eligibility condition specifying a time period before the resource is available for accessing during which transformation is enabled;
  
  transmitting, from the mobile device, a request to transform the physical manifestation of the access right into the digital manifestation of the access right, the request including the first feature, wherein receiving the request to transform the physical manifestation of the access right into the digital manifestation of the access right at the remote server initiates a transformation protocol at the remote server that transforms the physical manifestation of the access right into the digital manifestation;
  
  receiving a response to the request indicating that the transformation has occurred and that the first machine readable code has been invalidated; and
  
  displaying, at a display of the mobile device, a visual representation of the response to the request indicating that the physical manifestation of the access right has been transformed or has been invalidated.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The system of claim 8, wherein the operations further comprise:
    - providing an indication of the transformation eligibility to a user via the mobile device.
  - 10. The system of claim 8, wherein the response further indicates that a second machine-readable code has been generated.
  - 11. The system of claim 8, wherein the transformation protocol includes:
    - generating a valid identifier for the digital manifestation of the access right, the valid identifier uniquely identifying the access right;
      
      generating a second machine-readable code, the second machine-readable code corresponding to the valid identifier of the digital manifestation of the access right; and
      
      invalidating the physical manifestation of the access right by;
      
      storing an invalid indicator associated with the identifier of the physical manifestation of the access right;
      
      ordeleting the identifier of the physical manifestation of the access right from a data store.
  - 12. The system of claim 11, wherein the invalid indicator inhibits the physical manifestation of the access right from granting access to the resource.
  - 13. The system of claim 8, wherein the request includes the first feature, and wherein the response includes the transformation eligibility indication.
  - 14. The system of claim 8, wherein the operations further comprise:
    - decrypting the first machine readable code using a key to produce a decrypted code; and
      
      transmitting the decrypted code to the remote server.

15. A computer-program product tangibly embodied in a non-transitory machine-readable storage medium, including instructions configured to cause a data processing apparatus to perform operations including:
- enabling, at a mobile device including a camera, monitoring of a camera feed from the mobile device;
  
  detecting from the camera feed, a first feature of a physical manifestation of an access right to a resource, the first feature being included in one or more images of the camera feed, the first feature including a first machine-readable code, and the first machine-readable code corresponding to an identifier that uniquely identifies the access right;
  
  generating, at the mobile device, a time indicator associated with the first feature, the time indicator identifying a time of detecting the first feature;
  
  transmitting the detected first feature and the time indicator from the mobile device to a remote server;
  
  determining, by the remote server, that the first feature corresponds to a valid access right that grants access to the resource, the valid access right indicating that the first feature is valid to grant access to the resource;
  
  transmitting, by the remote server, a communication that indicates that the first feature corresponds to the valid access right;
  
  receiving, at the mobile device and from the remote server, the communication that indicates that the first feature corresponds to the valid access right;
  
  in response to receiving the communication, presenting an authenticity indication for the physical manifestation of the access right that indicates that the access right is authentic;
  
  generating, by the remote server, a timestamp that identifies a time the first feature was sent from the mobile device to the remote server, the timestamp being generated using the time indicator;
  
  determining, by the remote server, a transformation eligibility of the physical manifestation of the access right based on the generated timestamp and an estimated time that the resource will be available for accessing, the transformation eligibility indicating that the first machine-readable code is eligible to be transformed into another machine-readable code;
  
  receiving, at the mobile device and from the remote server, a transformation eligibility indication, based on the determined transformation eligibility, for the first machine readable code that indicates that a transformation-eligibility condition is satisfied for the physical manifestation of the access right so as to enable the physical manifestation of the access right to be converted into a digital manifestation of the access right, the transformation-eligibility condition specifying a time period before the resource is available for accessing during which transformation is enabled;
  
  transmitting, from the mobile device, a request to transform the physical manifestation of the access right into the digital manifestation of the access right, the request including the first feature, wherein receiving the request to transform the physical manifestation of the access right into the digital manifestation of the access right at the remote server initiates a transformation protocol at the remote server that transforms the physical manifestation of the access right into the digital manifestation;
  
  receiving a response to the request indicating that the transformation has occurred and that the first machine readable code has been invalidated; and
  
  displaying, at a display of the mobile device, a visual representation of the response to the request indicating that the physical manifestation of the access right has been transformed or has been invalidated.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The computer-program product of claim 15, wherein the operations further comprise:
    - providing an indication of the transformation eligibility to a user via the mobile device.
  - 17. The computer-program product of claim 15, wherein the response further indicates that a second machine-readable code has been generated.
  - 18. The computer-program product of claim 15, wherein the transformation protocol includes:
    - generating a valid identifier for the digital manifestation of the access right, the valid identifier uniquely identifying the access right;
      
      generating a second machine-readable code, the second machine-readable code corresponding to the valid identifier of the digital manifestation of the access right; and
      
      invalidating the physical manifestation of the access right by;
      
      storing an invalid indicator associated with the identifier of the physical manifestation of the access right;
      
      ordeleting the identifier of the physical manifestation of the access right from a data store.
  - 19. The computer-program product of claim 18, wherein the invalid indicator inhibits the physical manifestation of the access right from granting access to the resource.
  - 20. The computer-program product of claim 15, wherein the request includes the first feature, and wherein the response includes the transformation eligibility indication.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Live Nation Entertainment Incorporated
Original Assignee
Live Nation Entertainment Incorporated
Inventors
Levin, Samuel, Scarborough, David, Du, Fengpei, DiStefano, Richard, Denker, Dennis, Moriarty, Sean, Plamondon, Charles, Siegel, Matthew, Marti, Benjamin
Primary Examiner(s)
Chang, Kenneth W

Application Number

US16/160,867
Publication Number

US 20190121997A1
Time in Patent Office

323 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/1012   to domains

G06F 21/44   Program or device authentic...

G06F 21/6218   to a system of files or obj...

G06F 21/73   by creating or determining ...

G06F 2221/2141   Access rights, e.g. capabil...

G06Q 10/02   Reservations, e.g. for tick...

G06Q 2220/00   Business processing using c...

G06Q 30/0185   Product, service or busines...

H04L 63/04   for providing a confidentia...

H04L 63/101   Access control lists [ACL]

H04L 63/102   Entity profiles

H04W 12/08   Access security

H04W 4/80   Services using short range ...

H04W 76/11   Allocation or use of connec...

System and method for using unique device identifiers to enhance security

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

433 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for using unique device identifiers to enhance security

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

433 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links