System and method for localizing data and devices
First Claim
Patent Images
1. A gateway for coupling a first private home network to a second different network, the gateway comprising:
- a first interface to communicate with the first private home network;
a second different interface to communicate with the second different network, the second interface coupled to the first interface such that a network device located in the first private home network can exchange communications with the second network through the gateway; and
localization circuitry integrated into the gateway and coupled to the first and second interfaces, the localization circuitry configured to;
enroll the gateway in a network service by obtaining a credential from a provider device located outside the first private home network and then storing the credential on the gateway;
receive a request from the network device located in the first private home network to enroll in the network service for controlling access to DRM content;
verify that the requesting device is a member of the first private home network; and
issue the credential to the network device when membership is verified, said issuing of the credential allowing the network device to demonstrate possession of the credential to obtain access to the DRM content that is both located outside the first private home network and associated with the network service;
wherein the localization circuitry is further configured to verify membership by determining whether a first IP address for the network device belongs to a same IP address range as a second IP address for the gateway when both IP addresses identify a same subnet, and in addition to the address range verification, determining whether the network device has demonstrated knowledge of a same preshared credential; and
wherein the network device is at least one selected from a group of a household device, a mobile device, a visitor device and a foreign device.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and devices controlling access to content are described. For example, a request to enroll a device is received at a localization hub. The localization hub is associated with a subscriber that is authorized to access the content. A credential is issued to the device. The credential demonstrates that the device is enrolled in the local area network and is authorized to receive the content.
-
Citations
16 Claims
-
1. A gateway for coupling a first private home network to a second different network, the gateway comprising:
-
a first interface to communicate with the first private home network; a second different interface to communicate with the second different network, the second interface coupled to the first interface such that a network device located in the first private home network can exchange communications with the second network through the gateway; and localization circuitry integrated into the gateway and coupled to the first and second interfaces, the localization circuitry configured to; enroll the gateway in a network service by obtaining a credential from a provider device located outside the first private home network and then storing the credential on the gateway; receive a request from the network device located in the first private home network to enroll in the network service for controlling access to DRM content; verify that the requesting device is a member of the first private home network; and issue the credential to the network device when membership is verified, said issuing of the credential allowing the network device to demonstrate possession of the credential to obtain access to the DRM content that is both located outside the first private home network and associated with the network service; wherein the localization circuitry is further configured to verify membership by determining whether a first IP address for the network device belongs to a same IP address range as a second IP address for the gateway when both IP addresses identify a same subnet, and in addition to the address range verification, determining whether the network device has demonstrated knowledge of a same preshared credential; and wherein the network device is at least one selected from a group of a household device, a mobile device, a visitor device and a foreign device. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method for controlling access to DRM content associated with a network service using a hub, the hub having a localization circuitry, said method comprising:
-
receiving over a first interface of the hub a credential thereby enrolling the hub in the network service; receiving over a second different interface of the hub a request to enroll a network device in the network service; verifying that the network device is located in a network, the network being one for which the hub is a single point of entry and exit; and issuing the credential to the network device when the network device is located in the network, said issuing of the credential allowing the network device to demonstrate possession of the credential to a remote device located outside the network for obtaining access to the DRM content;
wherein the localization circuitry is configured to verify membership by determining whether a first IP address for the network device belongs to same a IP address range as a second IP address for the hub when both IP addresses identify a same subnet, and in addition to the address range verification, determining whether the network device has demonstrated knowledge of a same preshared credential; and wherein the network device is at least one selected from a group of a household device, a mobile device, a visitor device and a foreign device. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A system for controlling access to DRM content associated with a network service using a gateway, the gateway having a localization circuitry, said system comprising:
-
means for receiving a credential from a provider device located outside a private network, the credential for associating the network service with the gateway that is a single point of entry and exit for the private network; means for receiving a request to enroll a network device in the network service; means for determining whether the network device is part of the private network; and means for issuing the credential to the network device when the network device is part of the private network, said issuing of the credential permitting the network device to transfer communications through the gateway and outside of the private network, the communications for demonstrating possession of the credential and obtaining access to the DRM content; wherein the localization circuitry is configured to verify membership by determining whether a first IP address for the network device belongs to a same IP address range as a second IP address for the gateway when both IP addresses identify a same subnet, and in addition to the address range verification, determining whether the network device has demonstrated knowledge of a same preshared credential; and wherein the network device is at least one selected from a group of a household device, a mobile device, a visitor device and a foreign device. - View Dependent Claims (15, 16)
-
Specification