Method and system for providing a secure peer-to-peer file delivery network

US 7,047,406 B2
Filed: 03/21/2001
Issued: 05/16/2006
Est. Priority Date: 03/21/2001
Status: Active Grant

First Claim

Patent Images

1. A method for electronically delivering files over a public network of computers comprising at least one server node and multiple client nodes, the method comprising:

(a) enabling secure and reliable peer-to-peer file sharing between two client nodes by generating account information for a user, including a digital certificate, in response to a registration process, wherein the digital certificate includes a private key and a public key,(i) in response to a file being selected for publication on a first client node by the user, generating and associating a digital fingerprint with the file, generating a bitstream ID for the file and including the bitstream ID in the fingerprint, and using the user'"'"'s private key to generate a digital signature from the file and including the digital signature in the fingerprint;

(ii) adding an entry for the file to a searchable index of shared files on the server node and storing the fingerprint on the server;

(iii) in response to a second client node selecting the file from the search list on the server node, automatically transferring the file from the first client node directly to the second client node; and

(iv) authenticating the file by the second client node by generating a new bitstream ID, comparing the new bitstream ID to the bitstream ID in the fingerprint stored on the server, and using the user'"'"'s public key to decrypt the digital signature to determine the authenticity of the file and publisher.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for electronically delivering files over a public network is disclosed. The network includes a plurality of computers including at least one server node and multiple client nodes. In a first aspect of the present invention, the method and system enable secure and reliable peer-to-peer file sharing between two client nodes. First, a digital fingerprint is generated and associated with a file in response to the file being selected for publication on a first client node. An entry for the file is then added to a searchable index of shared files on the server node, and the fingerprint for the file is also stored on the server. In response to a second client selecting the file from the search list on the server node, the file is automatically transferred from the first client node directly to the second client node. The second client node then generates a new fingerprint for the file and compares with the new fingerprint with the fingerprint from the server node, thereby verifying the authenticity of the file and publisher. In a second aspect of the present invention, the method and system also enable subscription-based decentralized file downloads to the client nodes. First, the client nodes are allowed to subscribe with the server node to periodically receive copies of one of the files. To provide a current subscribing client node with the file, the geographically closest client node containing the file is located, and the file is transferred from the closest node directly to the current subscribing node, thereby efficiently utilizing bandwidth.

161 Citations

22 Claims

1. A method for electronically delivering files over a public network of computers comprising at least one server node and multiple client nodes, the method comprising:
- (a) enabling secure and reliable peer-to-peer file sharing between two client nodes by generating account information for a user, including a digital certificate, in response to a registration process, wherein the digital certificate includes a private key and a public key,(i) in response to a file being selected for publication on a first client node by the user, generating and associating a digital fingerprint with the file, generating a bitstream ID for the file and including the bitstream ID in the fingerprint, and using the user'"'"'s private key to generate a digital signature from the file and including the digital signature in the fingerprint;
  
  (ii) adding an entry for the file to a searchable index of shared files on the server node and storing the fingerprint on the server;
  
  (iii) in response to a second client node selecting the file from the search list on the server node, automatically transferring the file from the first client node directly to the second client node; and
  
  (iv) authenticating the file by the second client node by generating a new bitstream ID, comparing the new bitstream ID to the bitstream ID in the fingerprint stored on the server, and using the user'"'"'s public key to decrypt the digital signature to determine the authenticity of the file and publisher.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1 further including the step of:
    - (b) enabling subscription-based decentralized file downloads to the client nodes by(i) allowing the client nodes to subscribe with the server node to periodically receive copies of one of the files,(ii) when providing a current subscribing client node with the file, locating the closest client node containing the file, and(iii) transferring the file from the closest node directly to the current subscribing node, thereby efficiently utilizing bandwidth.
  - 3. The method of claim 1 wherein step (a)(ii) further includes the step of providing the server node with a database for storing the user'"'"'s account information and the fingerprint for the file.
  - 4. The method of claim 1 wherein step (a)(iii) further includes the step of transferring the file from the first client node directly to the second client node if both the first and second client nodes are logged-in to the network and no firewall separates the first and second client nodes.
  - 5. The method of claim 4 wherein step (a)(iii) further includes the step of:
    - if the second client node is not logged into the network, then temporarily storing the file on the server node, and delivering the file by the server node when second client node logs-in to the network.
  - 6. The method of claim 5 wherein step (a)(iii) further includes the step of:
    - if a firewall separates the first client node from the second client node, then using the server node to act as a proxy for the second client node and sending the file through the server node.
  - 7. The method of claim 6 further including step (c) for allowing a user of the first client node to search for files on the network, and presorting results based on files found that are stored on client nodes located closest to the first client node.
  - 8. The method of claim 7 wherein step (b)(iii) further includes the step of transferring the file during off-peak hours to take advantage of idle bandwidth of the subscribing node and thereby evening out bandwidth distribution of the network.
  - 9. The method of claim 1 wherein step (a)(i) further includes the step of allowing a user of the first client node to privately publish the file or publicly publish the file.
  - 10. The method of claim 1 wherein step (a)(ii) further includes transferring a copy of the file from the first node to the server node so that should the first node be off-line when another node request the file, the file may then be served by the server node.
  - 11. The method of claim 1 wherein step (a)(iii) of transferring the file to the second client node further includes the step of transferring different portions of the file from different nodes and then reassembling the file upon receipt.

12. A peer-to-peer file delivery network, comprising:
- at least one server nodemultiple client nodes coupled to the server node over the network, each of the client nodes running a client application, wherein the client application works and operates in conjunction with the server node to enable secure and reliable peer-to-peer file sharing between two client nodes by,generating account information for a user of each client node, including a digital certificate, in response to a registration process, wherein the digital certificate includes a private key and a public key,in response to a file being selected for publication on a first client node by a first user,generating and associating a digital fingerprint with the file,generating a bitstream ID for the file and including the bitstream ID in the fingerprint, andusing the user'"'"'s private key to generate a digital signature from the file and including the digital signature in the fingerprint,adding an entry for the file to a search list of shared files on the server node and storing the fingerprint on the server,in response to a second client node selecting the file from the search list on the server node, automatically transferring the file from the first client node directly to the second client node, andauthenticating the file by the second client node by generating a new bitstream ID, comparing the new bitstream ID to the bitstream ID in the fingerprint stored on the server, and using the user'"'"'s public key to decrypt the digital signature to determine the authenticity and reliability of the file and publisher.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 13. The network of claim 12 wherein the client application operates in conjunction with the server node to enable subscription-based decentralized file downloads to the client nodes byallowing the client nodes to subscribe with the server node to periodically receive copies of one of the files,when providing a current subscribing client node with the file, locating the closest client node containing the file, andtransferring the file from the closest node directly to the current subscribing node, thereby efficiently utilizing bandwidth.
  - 14. The network of claim 12 wherein the server node includes a database for storing the user'"'"'s account information and the fingerprint for the file.
  - 15. The network of claim 12 wherein the file is transferred from the first client node directly to the second client node if both the first and second client nodes are logged-in to the network and no firewall separates the first and second client nodes.
  - 16. The network of claim 15 wherein if the second client node is not logged into the network, the file is temporarily stored on the server node and delivered the file by the server node when second client node logs-in to the network.
  - 17. The network of claim 16 wherein if a firewall separates the first client node from the second client node, then the server node acts as a proxy for the second client node and sending the file through the server node.
  - 18. The network of claim 17 wherein a user of the first client node may search for files on the network, and the results are presorted based on files found that are stored on client nodes located closest to the first client node.
  - 19. The network of claim 18 wherein the file is transferred during off-peak hours to take advantage of idle bandwidth of the subscribing node and thereby evening out bandwidth distribution of the network.
  - 20. The network of claim 12 wherein a user of the first client node may privately publish the file or publicly publish the file.
  - 21. The network of claim 12 wherein a copy of the file is transferred from the first node to the server node so that should the first node be off-line when another node requests the file, the file may then be served by the server node.
  - 22. The network of claim 12 wherein different portions of the file are transferred the second client from different client nodes and then reassembled the file upon receipt.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Qurio Holdings Incorporated
Original Assignee
Qurio Holdings Incorporated
Inventors
Schleicher, Jorg Gregor, Kitze, Christopher Allin
Primary Examiner(s)
Song, Hosuk
Assistant Examiner(s)
Dada, Beemnet W

Application Number

US09/814,319
Publication Number

US 20020138744A1
Time in Patent Office

1,882 Days
Field of Search

713/200, 713/201, 713/170, 713/176, 713/187, 713/180, 713/181, 705/51
US Class Current

713/168
CPC Class Codes

H04L 63/0823 using certificates cryptogr...

H04L 63/12 Applying verification of th...

Method and system for providing a secure peer-to-peer file delivery network

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

161 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for providing a secure peer-to-peer file delivery network

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

161 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links