Multiple user authentication for online console-based gaming
First Claim
Patent Images
1. A method comprising:
- initiating an online gaming activity from a gaming console with multiple users; and
authenticating the multiple users of the gaming console, the gaming console, a game title, and an online service together in a single request/reply exchange between an authentication entity and the gaming console, the authenticating comprising;
submitting a request from the gaming console to the authentication entity, the request containing identities of the multiple users, a gaming console identity, a game title identity, and an identity of the online service; and
returning a reply from the authentication entity to the gaming console that can be used to authenticate the multiple users, the gaming console, and the game title in the online gaming activity, the reply containing a session key for communication between the gaming console and the online service, and the reply being encrypted with a key associated with the online service.
2 Assignments
0 Petitions
Accused Products
Abstract
A console-based multi-user authentication process allows multiple users of a game console to be authenticated together in a single request/reply exchange with an authentication entity. The results of which is the possession of a single ticket that can be used to prove authenticity of multiple authentication principals to one or more online services. Also described is a handshake process that can be used to initially establish an authentication account for each game console, in which the account creation server can trust that a genuine game console is making the request.
-
Citations
36 Claims
-
1. A method comprising:
-
initiating an online gaming activity from a gaming console with multiple users; and
authenticating the multiple users of the gaming console, the gaming console, a game title, and an online service together in a single request/reply exchange between an authentication entity and the gaming console, the authenticating comprising;submitting a request from the gaming console to the authentication entity, the request containing identities of the multiple users, a gaming console identity, a game title identity, and an identity of the online service; and returning a reply from the authentication entity to the gaming console that can be used to authenticate the multiple users, the gaming console, and the game title in the online gaming activity, the reply containing a session key for communication between the gaming console and the online service, and the reply being encrypted with a key associated with the online service. - View Dependent Claims (2, 3, 4)
-
-
5. A method comprising:
-
submitting a request from a game console to a ticket issuing entity, the request containing a game console identity, multiple user identities identifying multiple users of the game console, and an identity of an online service; returning a ticket from the ticket issuing entity to the game console, the ticket containing the game console identity and the multiple user identities encrypted with a key associated with the online service, said returning including sending an attached session message along with the ticket from the ticket issuing entity to the game console, the attached session message including a randomly generated session key for communication between the game console and the online service; passing the ticket from the game console to the online service; and decrypting the ticket at the online service, wherein after the decrypting the authenticity of the multiple users contained in the ticket is trusted. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method comprising:
-
creating, at a game console, multiple validated user identities (U1, H1), (U2, H2), . . . , (Uu, Hu) identifying multiple users of the game console composed of user identities U1, U2, . . . , Uu and associated values H1, H2, . . . , Hu derived from the user'"'"'s key; forming, at the game console, a request containing an identity string that includes a game console identity X, a game title identity G, the multiple validated user identities, and an identity A of an online service, as follows;
Request=[X,G,A,(U1,H1), . . . ,(Uu,Hu)];submitting the request from the game console to a ticket issuing entity; creating, at the ticket issuing entity, a ticket containing the identity string and a session key KXA encrypted with a key KA associated with the online service, as follows;
Ticket=EKA[KXA,X,G,A,U1,U2,U3,U4];sending the ticket along with the session key KXA from the ticket issuing entity to the game console; passing the ticket from the game console to the online service along with data encrypted using the session key KXA; and verifying the ticket at the online service by decrypting the ticket using the online service key KA, extracting the session key KXA from the decrypted ticket, and decrypting the data from the game console using the session key KXA. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23)
-
-
24. A method for operating a game console, comprising:
-
submitting a request to a ticket issuing entity, the request containing multiple user identities identifying multiple users of the game console, a game title, an identity of the game console, and an identity of an online service; and receiving a single ticket from the ticket issuing entity that can be used to authenticate the multiple user identities and the game title to the online service, the single ticket including a randomly generated session key to be used in communication between the game console and the online service. - View Dependent Claims (25, 26, 27, 28)
-
-
29. A method comprising:
-
receiving a request from a game console, the request containing multiple user identities of multiple users at the game console, a game console identity, a game title identity, and an identity of a third party; generating a single ticket that can be used to authenticate the multiple user identities, the game console identity, and the game title identity to the third party, the single ticket including a randomly generated session key to be used in communication between the game console and the third party; and returning the ticket to the game console. - View Dependent Claims (30, 31, 32, 33)
-
-
34. A game console, comprising:
-
a memory; and a processor coupled to the memory, the processor being configured to obtain authentication of multiple users of the game console together in a single request/reply exchange with an authentication entity, wherein the single request/reply exchange identifies the multiple users, the game console, a game title, and an online service; the processor being further configured to process a reply from the authentication entity that can be used to authenticate the multiple users, the game console, and the game title, the reply containing a session key for communication between the game console and the online service where the reply is encrypted with a key associated with the online service. - View Dependent Claims (35)
-
-
36. A system, comprising:
-
a ticketing issuing entity; a game console configured to submit a request to the ticket issuing entity, the request containing multiple user identities identifying multiple users of the game console, a game console identity, a game title identity, and an identity of an online service; and the ticket issuing entity being configured to generate a single ticket that can be used by the game console to authenticate the multiple user identities, the game console identity, and the game title identity to the online service, the single ticket including a randomly generated session key for communication between the game console and the online service when the single ticket is received at the game console.
-
Specification