Device-Pairing by Reading an Address Provided in Device-Readable Form

US 20110202427A1
Filed: 02/17/2010
Published: 08/18/2011
Est. Priority Date: 02/17/2010
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method for pairing a device with a client and performing a log-in procedure, comprising:

providing an address of the client in a physical device-readable form;

establishing a first secure connection between the client and a server, the client communicating with the server over a network;

establishing a pairing relationship between the client and the device in response to reading of the address by the device;

establishing a second secure connection between the device and the server through the client, based on the pairing relationship established between the device and the client, the second secure connection being tunneled within the first secure connection; and

performing a log-in procedure over the second secure connection, enabling a user to gain access to a service provided by the server upon a successful outcome of the log-in procedure.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system is described for allowing a user, operating a trusted device, to remotely log into a server via a potentially untrustworthy client. The system operates by establishing a first secure connection between the client and the server. The system then establishes a second secure connection between the device and the server through the client. The user then remotely logs into the server over the second secure connection using the device. The second secure connection is tunneled within the first secure connection, preventing the untrustworthy client from discovering personal information associated with the user. According to one feature, prior to forming the second secure connection, the user can establish a pairing relationship with the client by reading an address of the client using any kind of reading mechanism. According to another feature, the device can receive marketing information in the course of a transaction.

50 Citations

View as Search Results

20 Claims

1. A computer-implemented method for pairing a device with a client and performing a log-in procedure, comprising:
- providing an address of the client in a physical device-readable form;
  
  establishing a first secure connection between the client and a server, the client communicating with the server over a network;
  
  establishing a pairing relationship between the client and the device in response to reading of the address by the device;
  
  establishing a second secure connection between the device and the server through the client, based on the pairing relationship established between the device and the client, the second secure connection being tunneled within the first secure connection; and
  
  performing a log-in procedure over the second secure connection, enabling a user to gain access to a service provided by the server upon a successful outcome of the log-in procedure.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The computer-implemented method of claim 1, wherein the device-readable form is a bar code form.
  - 3. The computer-implemented method of claim 1, wherein the device-readable form comprises an encoding of the address using an electromagnetic transponder.
  - 4. The computer-implemented method of claim 1, wherein the device-readable form comprises a label placed in proximity to the client.
  - 5. The computer-implemented method of claim 4, wherein the label is provided on a housing of the client or on an article associated with the client.
  - 6. The computer-implemented method of claim 4, wherein the label is displayed on a display interface of the client.
  - 7. The computer-implemented method of claim 1, wherein the device communicates with the client via a wireless communication channel.
  - 8. The computer-implemented method of claim 1, wherein the device is a mobile telephone.
  - 9. The computer-implemented method of claim 1, wherein the device is a portable computing device.
  - 10. The computer-implemented method of claim 1, wherein the client is a terminal.
  - 11. The computer-implemented method of claim 1, further comprising, following the log-in procedure, conducting a financial transaction involving a purchase.
  - 12. The computer-implemented method of claim 1, further comprising sending marketing information to the device.
  - 13. The computer-implemented method of claim 12, wherein the marketing information comprises an electronic coupon or an advertisement.
  - 14. The computer-implemented method of claim 1, wherein the log-in procedure involves receiving user credentials and a device identification code over the second secure connection.

15. A computer-implemented method for conducting a transaction in a merchandising environment, comprising:
- providing an address of the client in a physical device-readable form;
  
  establishing a first secure connection between the client and a server, the client communicating with the server over a network;
  
  establishing a pairing relationship between the client and the device in response to reading of the address by the device;
  
  establishing a second secure connection between the device and the server through the client, based on the pairing relationship established between the device and the client, the second secure connection being tunneled within the first secure connection;
  
  performing a log-in procedure over the second secure connection, enabling a user to gain access to a service provided by the server upon a successful outcome of the log-in procedure;
  
  conducting a transaction over the second secure connection; and
  
  sending marketing information to the device via the second secure connection in a course of the transaction,the client representing an untrustworthy entity and the device representing a trusted entity.
- View Dependent Claims (16, 17, 18)
- - 16. The computer-implemented method of claim 15, wherein the log-in procedure involves receiving user credentials and a device identification code over the second secure connection.
  - 17. The computer-implemented method of claim 15, wherein the merchandising environment is a store.
  - 18. The computer-implemented method of claim 15, wherein the device is a mobile telephone.

19. A system for conducting a transaction with a portable device, comprising:
- a client and server configured to establish a first secure connection between the client and the server, the client communicating with the server over a network;
  
  the client and the server configured to enable communication between the portable device and the server via a second secure connection that is established between the portable device and the server, the second secure connection being tunneled within the first secure connection; and
  
  the server and the client being configured to send marketing information to the portable device via the second secure connection in a course of a transaction conducted between the portable device and the server.
- View Dependent Claims (20)
- - 20. The system of claim 19, wherein the marketing information comprises an electronic coupon or an advertisement.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Garcia Jurado Suarez, Carlos, Kirovski, Darko, Meek, Christopher A., von Veh, Curtis N.

Granted Patent

US 8,438,288 B2
Time in Patent Office

Days
Field of Search
US Class Current

705/26.35
CPC Class Codes

G06F 21/42   using separate channels for...

G06Q 30/02   Marketing; Price estimation...

G06Q 30/06   Buying, selling or leasing ...

G06Q 30/0609   Buyer or seller confidence ...

H04L 61/2592   using tunnelling or encapsu...

H04L 63/08   for authentication of entit...

H04L 63/1483   service impersonation, e.g....

H04L 65/1069   Session establishment or de...

H04L 67/01   Protocols

H04L 67/141   Setup of application sessio...

H04L 9/3073   involving pairings, e.g. id...

H04M 1/72412   using two-way short-range w...

H04W 76/12   Setup of transport tunnels

Device-Pairing by Reading an Address Provided in Device-Readable Form

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

50 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Device-Pairing by Reading an Address Provided in Device-Readable Form

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

50 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links