Two-tiered authorization and authentication for a cable data delivery system
First Claim
1. In a cable data delivery network for delivering digital data to a host location upon a subscriber initiated request, an apparatus for authenticating that the subscriber is authorized to use said network, said apparatus comprising:
- a network manager including at least one database of authorized users and authorized unique identifiers for each of a plurality of authorized data communication devices and a validation agent, said validation agent further comprising;
a logic to authorize the subscriber to access a first communications path by comparing first subscriber authentication information received from a data communication device associated with the host location with at least part of the at least one database comprising the authorized users,the first communications path providing at least a portion of connectivity between the host location and a head end of the cable data delivery network; and
logic to authorize the subscriber to access a second communications path, responsive to the first communications path authorization, by comparing a unique identifier of the data communication device that is received from the data communication device with at least part of the at least one database comprising the authorized unique identifiers for each of the plurality of data communication devices,the second communications path providing at least a portion of connectivity between the host location and the head end of the cable data delivery network, wherein the second communications oath is uni-directional.
2 Assignments
0 Petitions
Accused Products
Abstract
Apparatus for a cable television subscriber to log onto a computer network with a modem over an upstream path using a USERID and password. The network validates the subscriber USERID and subscriber password with a stored database of valid USERIDs and associated passwords. After the USERID and password are validated, the modem then provides it electronic serial number to the network for validation against a stored database of authorized serial numbers. Upon additional validation of the modem'"'"'s serial number, the subscriber is authorized to use the network.
60 Citations
31 Claims
-
1. In a cable data delivery network for delivering digital data to a host location upon a subscriber initiated request, an apparatus for authenticating that the subscriber is authorized to use said network, said apparatus comprising:
-
a network manager including at least one database of authorized users and authorized unique identifiers for each of a plurality of authorized data communication devices and a validation agent, said validation agent further comprising; a logic to authorize the subscriber to access a first communications path by comparing first subscriber authentication information received from a data communication device associated with the host location with at least part of the at least one database comprising the authorized users, the first communications path providing at least a portion of connectivity between the host location and a head end of the cable data delivery network; and logic to authorize the subscriber to access a second communications path, responsive to the first communications path authorization, by comparing a unique identifier of the data communication device that is received from the data communication device with at least part of the at least one database comprising the authorized unique identifiers for each of the plurality of data communication devices, the second communications path providing at least a portion of connectivity between the host location and the head end of the cable data delivery network, wherein the second communications oath is uni-directional. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method of authorizing a subscriber to access a first communications path and a second communications path, the first communications path and the second communications path utilized in conveying data between a head end of a cable data delivery network and a data communication device associated with the subscriber of the cable data delivery network, the method comprising the steps of:
authorizing the subscriber to access the first communications path by comparing first subscriber authentication information received from the data communication device with at least part of at least one database of authorized users, the first communications path providing at least a portion of connectivity between the data communication device and the head end of the cable data delivery network; and authorizing the subscriber to access the second communications path, responsive to the first communications path authorization, by a unique identifier of the data communication device that is received from the data communication device, with at least part of the at least one database that further includes authorized unique identifiers for each of a plurality of authorized data communication devices, the second communications path providing at least a portion of connectivity between the data communication device and the head end of the cable data delivery network, wherein the second communications path is uni-directional. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23)
-
24. In a cable data delivery network for delivering digital data to a host location upon a subscriber initiated request, an apparatus for authenticating that the subscriber is authorized to use said network, said apparatus comprising:
-
a network manager including at least one database of authorized users and authorized unique identifiers for each of a plurality of authorized data communication devices and a validation agent, said validation agent further comprising; logic to authorize the subscriber to access a first communications path by comparing first subscriber authentication information received from a data communication device associated with the host location with at least part of the at least one database comprising the authorized users, wherein said first subscriber authentication information includes a subscriber USERID and a subscriber password, wherein said at least one database includes an associated USERID and password for each of said authorized users, wherein said validation agent authorizes said subscriber to use said first communications path in accordance with a comparison of said subscriber USERID and said subscriber password to USERIDS and passwords stored in said at least one database, the first communications path providing at least a portion of connectivity between the host location and a head end of the cable data delivery network; and logic to authorize the subscriber to access a second communications path, responsive to the first communications path authorization, by comparing a unique identifier of the data communication device that is received from the data communication device with at least part of the at least one database comprising the authorized unique identifiers for each of the plurality of data communication devices, the second communications path providing at least a portion of connectivity between the host location and the head end of the cable data delivery network. - View Dependent Claims (25, 26, 27, 28, 29, 30, 31)
-
Specification