AUTOMATIC TOKEN-BASED SECURE CONTENT STREAMING METHOD AND APPARATUS

US 20190312884A1
Filed: 06/21/2019
Published: 10/10/2019
Est. Priority Date: 01/18/2017
Status: Active Grant

First Claim

Patent Images

1-22. -22. (canceled)

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed are systems and methods for improving interactions with and between computers in secure content access, distribution and download and/or providing systems supported by or configured with personal computing devices, servers and/or platforms. The systems interact to identify and retrieve data within or across platforms, which can be used to improve the quality of data used in processing interactions between or among processors in such systems. The disclosed systems and methods provide systems and methods for automatic token-based secure content streaming.

5 Citations

42 Claims

1-22. -22. (canceled)

23. A method comprising:
- receiving, at a computing device and over an electronic communications network, a first request from a user device for a content item, a first network address being associated with the first request;
  
  generating, via the computing device, a secure token, the generating comprising encrypting information including the first network address and temporal information to form the secure token;
  
  transmitting, via the computing device and over the electronic communications network to the user device, the secure token in response to the first request for the content item;
  
  receiving, via the computing device and over the electronic communications network, a subsequent request for the content item from the user device after the first request for the content item, a subsequent network address being associated with the subsequent request;
  
  obtaining, via the computing device, the secure token associated with the subsequent request;
  
  extracting, via the computing device, the first network address and the temporal information from the secure token associated with the subsequent request;
  
  making, via the computing device, a determination whether or not to permit the subsequent request for the content, making the determination comprising;
  
  determining, using the temporal information extracted from the secure token associated with the subsequent request, whether or not the secure token has expired; and
  
  determining, using the subsequent network address associated with the subsequent request for the content item, whether or not a count of network addresses associated with each request for the content item by the user device exceeds a threshold number of network addresses;
  
  permitting, via the computing device, the subsequent request for the content item in a case that the secure token has not expired and the threshold number of network addresses is not exceeded; and
  
  denying, via the computing device, the subsequent request for the content item in a case that the secure token is expired and in a case that the threshold number of network addresses is exceeded.
- View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
- - 24. The method of claim 23, the obtaining further comprising retrieving the secure token from the subsequent request.
  - 25. The method of claim 23, the obtaining further comprising retrieving the secure token from a data store at the user device.
  - 26. The method of claim 23, further comprising:
    - in response to receiving the first request;
      
      storing, via the computing device, the first network address in a network address data store; and
      
      setting, via the computing device, the count of network addresses to one.
  - 27. The method of claim 26, further comprising:
    - in response to receiving the subsequent request;
      
      making, via the computing device and using the network address data store, a determination whether or not the subsequent network address matches the first network address; and
      
      incrementing, via the computing device, the count of network addresses by one in a case that the subsequent network address does not match the first network address.
  - 28. The method of claim 23, the temporal information comprising information indicating an expiration for the secure token:
  - 29. The method of claim 23, the secure token is transmitted in response to the first request in a URL including a reference to the content item requested in the first request.
  - 30. The method of claim 29, the URL further comprising the temporal information, a hash of the first network address and a URL signature.
  - 31. The method of claim 29, the URL signature being generated using the temporal information and the hash of the first network address.
  - 32. The method of claim 23, the secure token is transmitted in response to the first request in a cookie for storage at the user device.
  - 33. The method of claim 32, the cookie comprising the temporal information and a hash of the first network and the address secure token.

34. A non-transitory computer-readable storage medium tangibly encoded with computer-executable instructions that when executed by a processor associated with a computing device perform a method comprising:
- receiving, over an electronic communications network, a first request from a user device for a content item, a first network address being associated with the first request;
  
  generating a secure token, the generating comprising encrypting information including the first network address and temporal information to form the secure token;
  
  transmitting, over the electronic communications network to the user device, the secure token in response to the first request for the content item;
  
  receiving, over the electronic communications network, a subsequent request for the content item, from the user device after the first request for the content item, a subsequent network address being associated with the subsequent request;
  
  obtaining the secure token associated with the subsequent request;
  
  extracting the first network address and the temporal information from the secure token associated with the subsequent request;
  
  making a determination whether or not to permit the subsequent request for the content, making the determination comprising;
  
  determining, using the temporal information extracted from the secure token associated with the subsequent request, whether or not the secure token has expired; and
  
  determining, using the subsequent network address associated with the subsequent request for the content item, whether or not a count of network addresses associated with each request for the content item by the user device exceeds a threshold number of network addresses;
  
  permitting the subsequent request for the content item in a case that the secure token has not expired and the threshold number of network addresses is not exceeded; and
  
  denying the subsequent request for the content item in a case that the secure token is expired and in a case that the threshold number of network addresses is exceeded.
- View Dependent Claims (35, 36, 37, 38, 39, 40, 41)
- - 35. The non-transitory computer-readable storage medium of claim 34, the obtaining further comprising retrieving the secure token from the subsequent request.
  - 36. The non-transitory computer-readable storage medium of claim 34, the obtaining further comprising retrieving the secure token from a data store at the user device.
  - 37. The non-transitory computer-readable storage medium of claim 34, further comprising:
    - in response to receiving the first request;
      
      storing, via the computing device, the first network address in a network address data store; and
      
      setting, via the computing device, the count of network addresses to one.
  - 38. The non-transitory computer-readable storage medium of claim 37, further comprising:
    - in response to receiving the subsequent request;
      
      making, via the computing device and using the network address data store, a determination whether or not the subsequent network address matches the first network address; and
      
      incrementing, via the computing device, the count of network addresses by one in a case that the subsequent network address does not match the first network address.
  - 39. The non-transitory computer-readable storage medium of claim 34, the temporal information comprising information indicating an expiration for the secure token:
  - 40. The non-transitory computer-readable storage medium of claim 34, the secure token is transmitted in response to the first request in a URL including a reference to the content item requested in the first request.
  - 41. The non-transitory computer-readable storage medium of claim 40, the URL further comprising the temporal information, a hash of the first network address and a URL signature.

42. A computing device comprising:
- a processor;
  
  a non-transitory storage medium for tangibly storing thereon program logic for execution by the processor, the program logic comprising;
  
  receiving logic executed by the processor for receiving, over an electronic communications network, a first request from a user device for a content item, a first network address being associated with the first request;
  
  generating logic executed by the processor for generating a secure token, the generating comprising encrypting information including the first network address and temporal information to form the secure token;
  
  transmitting logic executed by the processor for transmitting, over the electronic communications network to the user device, the secure token in response to the first request for the content item;
  
  receiving logic executed by the processor for receiving, over the electronic communications network, a subsequent request for the content item from the user device after the first request for the content item, a subsequent network address being associated with the subsequent request;
  
  obtaining logic executed by the processor for obtaining the secure token associated with the subsequent request;
  
  extracting logic executed by the processor for extracting the first network address and the temporal information from the secure token associated with the subsequent request;
  
  making logic executed by the processor for making a determination whether or not to permit the subsequent request for the content, the logic for making the determination comprising;
  
  determining logic executed by the processor for determining, using the temporal information extracted from the secure token associated with the subsequent request, whether or not the secure token has expired; and
  
  determining logic executed by the processor for determining, using the subsequent network address associated with the subsequent request for the content item, whether or not a count of network addresses associated with each request for the content item by the user device exceeds a threshold number of network addresses;
  
  permitting logic executed by the processor for permitting the subsequent request for the content item in a case that the secure token has not expired and the threshold number of network addresses is not exceeded; and
  
  denying logic executed by the processor for denying the subsequent request for the content item in a case that the secure token is expired and in a case that the threshold number of network addresses is exceeded.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Verizon Patent and Licensing Incorporated (Verizon Communications Inc.)
Original Assignee
Oath Inc. (Verizon Communications Inc.)
Inventors
VINUKONDA, Sudheer, LUZZATTI, Omer

Granted Patent

US 10,931,683 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/0807   using tickets, e.g. Kerbero...

H04L 63/107   wherein the security polici...

H04L 63/108   when the policy decisions a...

H04L 65/612   for unicast

H04L 67/02   based on web technology, e....

H04L 67/06   specially adapted for file ...

H04L 67/63   Routing a service request d...

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 12/63   Location-dependent; Proximi...

AUTOMATIC TOKEN-BASED SECURE CONTENT STREAMING METHOD AND APPARATUS

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

5 Citations

42 Claims

Specification

Solutions

Use Cases

Quick Links

AUTOMATIC TOKEN-BASED SECURE CONTENT STREAMING METHOD AND APPARATUS

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

5 Citations

42 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links