Multiple user authentication for online console-based gaming
First Claim
Patent Images
1. A method comprising:
- initiating an online gaming activity from a gaming system with multiple users; and
authenticating the multiple users together in a single request/reply exchange with an authentication entity.
2 Assignments
0 Petitions
Accused Products
Abstract
A console-based multi-user authentication process allows multiple users of a game console to be authenticated together in a single request/reply exchange with an authentication entity. The results of which is the possession of a single ticket that can be used to prove authenticity of multiple authentication principals to one or more online services. Also described is a handshake process that can be used to initially establish an authentication account for each game console, in which the account creation server can trust that a genuine game console is making the request.
-
Citations
74 Claims
-
1. A method comprising:
-
initiating an online gaming activity from a gaming system with multiple users; and
authenticating the multiple users together in a single request/reply exchange with an authentication entity. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method comprising:
-
submitting a request from a game console to a ticket issuing entity, the request containing a game console identity, multiple user identities, and an identity of an online service;
returning a ticket from the ticket issuing entity to the game console, the ticket containing the game console identity and the multiple user identities encrypted with a key associated with the online service;
passing the ticket from the game console to the online service; and
decrypting the ticket at the online service, wherein after the decrypting the authenticity of the multiple users contained in the ticket is trusted. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14, 15, 17, 18, 19, 20, 21, 22, 23, 24, 25, 27, 28, 29, 30, 31)
-
-
16. A method comprising:
-
creating, at a game console, multiple validated user identities (U1, H1), (U2, H2), . . . , (Uu, Hu) composed of user identities U1, U2, . . . , Uu and associated values H1, H2, . . . , Hu derived from the user'"'"'s key;
forming, at the game console, a request containing an identity string that includes a game console identity X, a game title identity G. the multiple validated user identities, and an identity A of an online service, as follows;
Request=[X, G, A, (U1, H1), . . . , (Uu, Hu)];
submitting the request from the game console to a ticket issuing entity;
creating, at the ticket issuing entity, a ticket containing the identity string and a session key KXA encrypted with a key KA associated with the online service, as follows;
Ticket=EKA[KXA, X, G, A, U1,U2,U3,U4];
sending the ticket along with the session key KXA from the ticket issuing entity to the game console;
passing the ticket from the game console to the online service along with data encrypted using the session key KXA; and
verifying the ticket at the online service by decrypting the ticket using the online service key KA, extracting the session key KXA from the decrypted ticket, and decrypting the data from the game console using the session key KXA.
-
-
26. A method for operating a game console, comprising:
-
submitting a request to a ticket issuing entity, the request containing multiple user identities and an identity of an online service; and
receiving a single ticket from the ticket issuing entity that can be used to authenticate the multiple user identities to the online service.
-
-
32. A method for operating a game console, comprising:
-
submitting a request to a ticket issuing entity, the request containing multiple user identities and an identity of the game console; and
receiving a single ticket from the ticket issuing entity that can be used to authenticate the multiple user identities and the game console.
-
-
33. A method for operating a game console, comprising:
-
creating a request with multiple user identities of multiple users who are playing on a game console; and
submitting the request to a third party. - View Dependent Claims (34, 35, 36, 38, 39, 40, 41, 42)
-
-
37. A method comprising:
-
receiving a request from a game console, the request containing multiple user identities of multiple users who are playing at the game console and an identity of a third party;
generating a single ticket to be used to authenticate the multiple user identities to the third party; and
returning the ticket to the game console.
-
-
43. A method comprising:
-
receiving a request from a game console, the request containing multiple user identities of multiple users who are playing at the game console; and
issuing a single ticket to be used to authenticate the multiple user identities.
-
-
44. A method comprising:
-
receiving a request from a game console, the request containing multiple user identities of multiple users who are playing at the game console and an identity of the game console; and
issuing a single ticket to be used to authenticate the multiple user identities and the game console. - View Dependent Claims (46, 47, 48, 49, 50, 51)
-
-
45. A method for manufacturing a game console, comprising:
-
constructing a game console with associated authentication information; and
storing the authentication information in a database to be used for authenticating the game console after the game console is released from manufacturing.
-
-
52. A method for validating an authenticity of a game console, comprising:
-
receiving, from the game console, authentication information that is associated with the game console at a time of manufacturing; and
evaluating the authentication information to determine whether the game console is valid. - View Dependent Claims (53, 54, 55, 56, 57, 58, 60, 61, 62, 63)
-
-
59. A computer-readable medium for a game console comprising computer-executable instructions that, when executed, direct the game console to:
-
create multiple validated user identities (U1, H1), (U2, H2), . . . , (Uu, Hu) composed of the multiple user identities U1, U2, . . . , Uu and associated values H1, H2, . . . , Hu derived from the user'"'"'s key;
form a request containing a game console identity X, a game title identity G. the multiple user identities, and an identity A of an online service, as follows;
Request=[X, G, A, (U1, H1), . . . , (Uu, Hu)]; and
submit the request to a ticket issuing entity over a network.
-
-
64. A computer-readable medium comprising computer-executable instructions that, when executed, perform operations comprising:
-
receive a request from a game console, the ticket containing an identity string that includes a game console identity X, a game title identity G, multiple user identities (U1, H1), . . . , (Uu, Hu), and an identity A of an online service, as follows;
Request=[X, G, A, (U1, H1), . . . , (Uu, Hu)]; and
generate a ticket containing the identity string and a session key KXA together encrypted with a key KA associated with the online service, as follows;
TicketA=EKA[KXA, X, G, A, U1,U2, . . . Uu]; and
return the ticket to the game console. - View Dependent Claims (65, 66, 70, 71)
-
-
67. A single gaming ticket data structure embodied on a computer readable, comprising multiple user identities of users playing at a game console, encrypted using a key associated with a third party entity to which the multiple users are to be authenticated.
-
68. A single gaming ticket data structure embodied on a computer readable, comprising multiple user identities of users playing at a game console and an identity of the game console, encrypted using a key associated with a third party entity to which the multiple users are to be authenticated.
-
69. A game console, comprising:
-
a memory; and
a processor coupled to the memory, the processor being configured to obtain authentication of multiple users of the game console together in a single request/reply exchange with an authentication entity.
-
-
72. A system, comprising:
-
a ticketing issuing entity;
a game console configured to submit a request to the ticket issuing entity, the request containing multiple user identities and an identity of an online service; and
the ticket issuing entity being configured to generate a single ticket that can be used by the game console to authenticate the multiple user identities to the online service.
-
-
73. A system, comprising:
-
a ticketing issuing entity;
a game console configured to submit a request to the ticket issuing entity, the request containing multiple user identities; and
the ticket issuing entity being configured to generate a single ticket that can be used by the game console to authenticate the multiple user identities to a third party.
-
-
74. A system, comprising:
-
a ticketing issuing entity;
a game console configured to submit a request to the ticket issuing entity, the request containing multiple user identities and an identity of the game console; and
the ticket issuing entity being configured to generate a single ticket that can be used by the game console to authenticate the multiple user identities and the game console to a third party.
-
Specification