Regulating concurrent logins associated with a single account

US 7,437,457 B1
Filed: 09/08/2003
Issued: 10/14/2008
Est. Priority Date: 09/08/2003
Status: Active Grant

First Claim

Patent Images

1. A method for regulating network access, the method comprising:

receiving a request for network access for a user identity;

identifying a type of connection being sought by the user identity over the network as being among at least one of a dial-up connection, a broadband connection, a wireless connection, and a private line connection;

identifying the user identity for which the request is submitted;

identifying one or more other user identities that are associated with the user identity;

determining whether the other user identities that are identified as being associated with the user identity have network access contemporaneously with the received request;

determining types of connections used to obtain the network access by the other user identities that are identified as being associated with the user identity and determined to have network access, the types of connections used by the other user identities being among at least one of a dial-up connection, a broadband connection, a wireless connection, and a private line connection; and

determining whether to grant the user identity the network access requested based on the type of connection being sought by the user identity and based on the types of connections used by the other user identities that are identified as being associated with the user identity and determined to have network access,wherein determining whether to grant access comprises applying a set of login rules to determine whether to grant access, andwherein applying the set of login rules comprises;

accessing login rules that indicate a first maximum number of concurrent logins using a first connection type and indicate a second maximum number of concurrent logins using a second connection type, the first connection type being different from the second connection type and the first maximum number being different from the second maximum number;

determining that the type of connection being sought by the user comprises the first type of connection; and

denying access conditioned on a number of concurrent logins of the other user identities that are using the first connection type to obtain network access being equal to the first maximum number.

View all claims

10 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Regulating network access includes receiving a request for network access for a user identity and identifying a type of connection that the user identity seeks to leverage if granted the network access requested. The user identity for which the request is submitted is identified. One or more other user identities that are associated with the user identity are identified. The other user identities that are identified as being associated with the user identity and that have network access contemporaneously with the received request are determined. The types of connections used to obtain network access by the other user identities that are identified as being associated with user identity and determined to have network access are determined. A determination is made whether to grant the user identity the network access requested based on the type of connections used by the other user identities that are identified as being associated with the user identity and determined to have network access.

160 Citations

View as Search Results

56 Claims

1. A method for regulating network access, the method comprising:
- receiving a request for network access for a user identity;
  
  identifying a type of connection being sought by the user identity over the network as being among at least one of a dial-up connection, a broadband connection, a wireless connection, and a private line connection;
  
  identifying the user identity for which the request is submitted;
  
  identifying one or more other user identities that are associated with the user identity;
  
  determining whether the other user identities that are identified as being associated with the user identity have network access contemporaneously with the received request;
  
  determining types of connections used to obtain the network access by the other user identities that are identified as being associated with the user identity and determined to have network access, the types of connections used by the other user identities being among at least one of a dial-up connection, a broadband connection, a wireless connection, and a private line connection; and
  
  determining whether to grant the user identity the network access requested based on the type of connection being sought by the user identity and based on the types of connections used by the other user identities that are identified as being associated with the user identity and determined to have network access,wherein determining whether to grant access comprises applying a set of login rules to determine whether to grant access, andwherein applying the set of login rules comprises;
  
  accessing login rules that indicate a first maximum number of concurrent logins using a first connection type and indicate a second maximum number of concurrent logins using a second connection type, the first connection type being different from the second connection type and the first maximum number being different from the second maximum number;
  
  determining that the type of connection being sought by the user comprises the first type of connection; and
  
  denying access conditioned on a number of concurrent logins of the other user identities that are using the first connection type to obtain network access being equal to the first maximum number.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 50, 51, 52, 53)
- - 2. The method of claim 1 wherein the user identity is a screen name or an Internet Protocol address and the network access is Internet access.
  - 3. The method of claim 1 wherein the user identity is an e-mail address or a media access control address.
  - 4. The method of claim 1 wherein the type of connection sought by the user identity comprises a broadband connection.
  - 5. The method of claim 4 wherein the broadband connection sought by the user identity comprises a digital subscriber line connection or a cable modem connection.
  - 6. The method of claim 1 wherein the user identity includes an Internet Protocol address and identifying a type of connection includes identifying the type of connection based on the Internet Protocol address.
  - 7. The method of claim 1 wherein the user identity includes a network identity and identifying a type of connection includes identifying the type of connection based on the network identity.
  - 8. The method of claim 1 wherein the other user identities associated with the user identity are other user identities that are associated with the same online service account as the user identity.
  - 9. The method of claim 1, wherein the login rules limit the number of concurrent logins to a maximum number of concurrent logins for a predetermined amount of time.
  - 10. The method of claim 1, wherein the login rules vary based on user identity.
  - 11. The method of claim 1, wherein the login rules limit the number of concurrent logins based on temporal constraints.
  - 12. The method of claim 11, wherein the login rules limit the number of concurrent logins for one or more predetermined time intervals.
  - 13. The method of claim 1, wherein determining whether to grant the user identity access comprises denying access and further comprises sending an access denied message to be perceived by a user associated with the user identity.
  - 14. The method of claim 13, wherein the access denied message is configured to be perceived by the user as a graphical display.
  - 15. The method of claim 13, wherein the access denied message includes information related to the reason why the access was denied.
  - 16. The method of claim 13, wherein the access denied message includes data related to the other user identities.
  - 17. The method of claim 16, wherein the access denied message includes data related to the types of connections used by the other user identities.
  - 18. The method of claim 13, wherein the access denied message includes options configured to be selectable by the user.
  - 19. The method of claim 18, further comprising receiving an option selection from the user and granting limited network access to the user identity associated with the user in response to the received option selection.
  - 20. The method of claim 19, wherein the limited network access comprises network access for a limited duration of time.
  - 21. The method of claim 19, wherein the limited network access comprises network access that is limited to exchanging communications with the other user identities.
  - 22. The method of claim 18, further comprising receiving an option selection from the user and denying network access to one of the other user identities associated with the user identity in response to the received option selection.
  - 23. The method of claim 22, wherein the other user identity that is denied access had access to the network contemporaneously with the received option selection.
  - 24. The method of claim 23, further comprising granting network access to the user identity after denying network access to the other user identity.
  - 25. The method of claim 18, further comprising receiving an option selection from the user and enabling the user to register for a network access service upgrade in response to the received option selection.
  - 50. The method of claim 8 wherein the other user identities associated with the user identity are other user identities that receive online services with the user as a group and that commonly pay for or are billed for the online services as a group.
  - 51. The method of claim 1, wherein applying the set of login rules further comprises granting access conditioned on the number of concurrent logins of the other user identities using the first connection type to obtain network access being less than the first maximum number.
  - 52. The method of claim 1, wherein applying the set of login rules further comprises:
    - determining that the number of concurrent logins of the other user identities that are using the first connection type to obtain network access is less than the first maximum number; and
      
      granting access conditioned on a number of the other user identities that are using any connection type to obtain network access being less than a third maximum number.
  - 53. The method of claim 1, wherein the first connection type comprises a broadband connection and the second connection type comprises a wireless connection.

26. A computer system for regulating access to an online service provider system, the computer system comprising;
- a customer account data store;
  
  a system state data store; and
  
  an authentication server configured toreceive a request for network access for a user identity,identify a type of connection being sought by the user identity over the network as being among at least one of a dial-up connection, a broadband connection, a wireless connection, and a private line connection;
  
  access the customer account data store to identify one or more other user identities associated with the user identity,access the system state data store to determine whether the other user identities have network access contemporaneously with the received request and to determine types of connections used to obtain the network access by the other user identities, the types of connections used by the other user identities being among at least one of a dial-up connection, a broadband connection, a wireless connection, and a private line connection; and
  
  determine whether to grant the user identity the network access requested based on the type of connection being sought by the user identity and based on the types of connections used by the other user identities that are identified as being associated with the user identity and determined to have network access,wherein the authentication server is configured to determine whether to grant the user identity access by applying a set of login rules, andwherein the authentication server being configured to apply the set of login rules comprises the authentication server being configured to;
  
  access login rules that indicate a first maximum number of concurrent logins using a first connection type and indicate a second maximum number of concurrent logins using a second connection type, the first connection type being different from the second connection type and the first maximum number being different from the second maximum number;
  
  determine that the type of connection being sought by the user comprises the first type of connection; and
  
  deny access conditioned on a number of concurrent logins of the other user identities that are using the first connection type to obtain network access being equal to the first maximum number.
- View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 54, 55, 56)
- - 27. The computer system of claim 26, wherein the customer account data store and the system state data store are a single integrated data store.
  - 28. The computer system of claim 26 wherein the user identity is a screen name or an Internet Protocol address and the network access is Internet access.
  - 29. The computer system of claim 26 wherein the user identity is an e-mail address or a media access control address.
  - 30. The computer system of claim 26 wherein the type of connection sought by the user identity comprises a broadband connection.
  - 31. The computer system of claim 30 wherein the broadband connection sought by the user identity comprises a digital subscriber line connection or a cable modem connection.
  - 32. The computer system of claim 26, wherein the login rules limit the number of concurrent logins to a maximum number of concurrent logins for a predetermined amount of time.
  - 33. The computer system of claim 26, wherein the login rules vary based on user identity.
  - 34. The computer system of claim 26, wherein the login rules limit the number of concurrent logins based on temporal constraints.
  - 35. The computer system of claim 34, wherein the login rules limit the number of concurrent logins for one or more predetermined time intervals.
  - 36. The computer system of claim 26, wherein the authentication server is further configured to deny access and send an access denied message to be perceived by a user associated with the user identity.
  - 37. The computer system of claim 36, wherein the access denied message is configured to be perceived by the user as a graphical display.
  - 38. The computer system of claim 36, wherein the access denied message includes information related to the reason why the access was denied.
  - 39. The computer system of claim 36, wherein the access denied message includes data related to the other user identities.
  - 40. The computer system of claim 39, wherein the access denied message includes data related to the types of connections used by the other user identities.
  - 41. The computer system of claim 37, wherein the access denied message includes options configured to be selectable by the user.
  - 42. The computer system of claim 41, wherein the authentication server is further configured to receive an option selection from the user and grant limited network access to the user identity associated with the user in response to the received option selection.
  - 43. The computer system of claim 42, wherein the limited network access comprises network access for a limited duration of time.
  - 44. The computer system of claim 42, wherein the limited network access comprises network access that is limited to exchanging communications with the other user identities.
  - 45. The computer system of claim 41, wherein the authentication server is further configured to receive an option selection from the user and deny network access to one of the other user identities associated with the user identity in response to the received option selection.
  - 46. The computer system of claim 45, wherein the other user identity that is denied access had access to the network contemporaneously with the received option selection.
  - 47. The computer system of claim 46, wherein the authentication server is further configured to grant network access to the user identity after denying network access to the other user identity.
  - 48. The computer system of claim 41, wherein the authentication server is further configured to receive an option selection from the user and enable the user to register for a network access service upgrade in response to the received option selection.
  - 54. The computer system of claim 26, wherein the authentication server being configured to apply the set of login rules further comprises the authentication server being configured to grant access conditioned on the number of concurrent logins of the other user identities using the first connection type to obtain network access being less than the first maximum number.
  - 55. The computer system of claim 26, wherein the authentication server being configured to apply the set of login rules further comprises the authentication server being configured to:
    - determine that the number of concurrent logins of the other user identities that are using the first connection type to obtain network access is less than the first maximum number; and
      
      grant access conditioned on a number of the other user identities that are using any connection type to obtain network access being less than a third maximum number.
  - 56. The computer system of claim 26, wherein the first connection type comprises a broadband connection and the second connection type comprises a wireless connection.

49. An apparatus for regulating network access, the apparatus comprising:
- means for receiving a request for network access for a user identity;
  
  means for identifying a type of connection being sought by the user identity over the network as being among at least one of a dial-up connection, a broadband connection, a wireless connection, and a private line connection;
  
  means for identifying the user identity for which the request is submitted;
  
  means for identifying one or more other user identities that are associated with the user identity;
  
  means for determining whether the other user identities that are identified as being associated with the user identity have network access contemporaneously with the received request;
  
  means for determining types of connections used to obtain the network access by the other user identities that are identified as being associated with the user identity and determined to have network access, the types of connections used by the other user identities being among at least one of a dial-up connection, a broadband connection, a wireless connection, and a private line connection; and
  
  means for determining whether to grant the user identity the network access requested based on the type of connection being sought by the user identity and based on the types of connections used by the other user identities that are identified as being associated with the user identity and determined to have network access,wherein the means for determining whether to grant access comprises means for applying a set of login rules to determine whether to grant access, andwherein the means for applying the set of login rules comprises;
  
  means for accessing login rules that indicate a first maximum number of concurrent logins using a first connection type and indicate a second maximum number of concurrent logins using a second connection type, the first connection type being different from the second connection type and the first maximum number being different from the second maximum number;
  
  means for determining that the type of connection being sought by the user comprises the first type of connection; and
  
  means for denying access conditioned on a number of concurrent logins of the other user identities that are using the first connection type to obtain network access being equal to the first maximum number.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Google LLC (Alphabet Inc.)
Original Assignee
AOL LLC (Apollo Global Management, Inc.)
Inventors
Smith, Jr., Stanley O., Spannbauer, Bradley, Eisendrath, Benjamin
Primary Examiner(s)
Pwu, Jeffrey
Assistant Examiner(s)
Whipple, Brian P

Application Number

US10/656,874
Time in Patent Office

1,863 Days
Field of Search

709204-207, 709/225, 709227-229
US Class Current

709/225
CPC Class Codes

H04L 63/08 for authentication of entit...

H04L 63/10 for controlling access to d...

Regulating concurrent logins associated with a single account

First Claim

10 Assignments

0 Petitions

Accused Products

Abstract

160 Citations

56 Claims

Specification

Use Cases

Quick Links

Others

Regulating concurrent logins associated with a single account

First Claim

10 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

160 Citations

56 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others