ZERO SIGN-ON AUTHENTICATION
First Claim
Patent Images
1. A method of providing zero sign-on (ZSO) authentication comprising:
- determining a media access request from a first device requesting access to a media service associated with a service provider, the media access request being generated as a result of a user interacting with a webpage displayed on the device using signaling transmitted through a gateway;
determining a location for the gateway as a function of information included within the media access request;
determining a level of trust for a second device determined to be at the location; and
enabling the first device ZSO authentication sufficient to access the media service if the level of trust is sufficient and denying the first device ZSO authentication if the level of trust is insufficient.
0 Assignments
0 Petitions
Accused Products
Abstract
A authenticating system and process for authenticating user devices to a access a media service where access to certain portions of the media service may be limited according to a gateway or other device used by a user device to facilitate interfacing a user with the media service. The authentication may be achieved without directly assessing a trustworthiness of the user devices, and optionally, without requiring a user thereof to complete a sign-on operation.
-
Citations
20 Claims
-
1. A method of providing zero sign-on (ZSO) authentication comprising:
-
determining a media access request from a first device requesting access to a media service associated with a service provider, the media access request being generated as a result of a user interacting with a webpage displayed on the device using signaling transmitted through a gateway; determining a location for the gateway as a function of information included within the media access request; determining a level of trust for a second device determined to be at the location; and enabling the first device ZSO authentication sufficient to access the media service if the level of trust is sufficient and denying the first device ZSO authentication if the level of trust is insufficient. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable medium having a plurality of instructions operable with a processor to facilitate providing zero sign-on (ZSO) authentication, the plurality of instructions being sufficient for:
-
determining a media access request issued from a first device requesting access to a media service associated with a service provider, the media access request identifying an Internet Protocol (IP) address for a gateway used to transmit the media access request, the gateway being untrusted by the service provider; and enabling the first device ZSO authentication to the media service if a level of trust for a second device also communicating signaling through the gateway using the IP address is sufficient and denying the first device ZSO authentication if the level of trust is insufficient, the second device being trusted by the service provider. - View Dependent Claims (16, 17)
-
-
18. A non-transitory computer-readable medium having a plurality of instructions operable with a processor to facilitate authenticating an untrusted device to access a media service previously authenticated as being available to a trusted device when both of the trusted and untrusted devices communicate with each other over an inside network and communicate with a source of the content over an outside network, an untrusted gateway facilitating exchange of signaling between the inside and outside networks, the plurality of instructions being sufficient for:
-
determining a media access request issued from the untrusted device through the untrusted gateway requesting access to the media service; determining an inside address for the trusted device as a function of information included within the media access request; instructing the untrusted device to obtain a nonce signed by the trusted device using signaling communicated over the inside network according to the inside address; determining the nonce issued from the untrusted device through the untrusted gateway; and enabling the untrusted device ZSO authentication to the media service if a signature of the nonce issued from the untrusted device is verified and denying the untrusted device ZSO authentication if the signature is unverified. - View Dependent Claims (19, 20)
-
Specification