Secure control of features of a digital device
First Claim
1. A method, comprising:
- sending, from a digital device that participates in a service, to a service provider that provides the service, a request to participate in the service;
receiving, by the digital device, a digital message that identifies a desired service state for the digital device, wherein the digital message is encoded uniquely for the digital device and at least a portion of the digital message is encrypted using a public key that is uniquely associated with the digital device to result in creating an encrypted one way hash and the encrypted one way hash is digitally signed using a signing key unique to the service provider, to result in creating an encrypted signed hash that is appended to the digital message, wherein the digital message is unusable at a different digital device;
based on the digital message, determining, by the digital device, a plurality of control values that collectively define the desired service state within the digital device the plurality of control values indicate specific capabilities of the digital device that are enabled, disabled, or set to particular values depending on the features, services or products represented in the digital message;
providing the plurality of control values to one or more applications hosted by the digital device that deliver a service experience associated with the desired service state, or at least a feature associated with the desired service state, thereby placing the digital device into a first service state;
marking the control values as non-secure at the digital device;
marking the control values as secure only after the digital device successfully decrypts the at least a portion of the digital message that is encrypted; and
changing the digital device to a second service state if the control values are not marked as secure.
15 Assignments
0 Petitions
Accused Products
Abstract
A method providing secure control of features of a digital device. In one embodiment, the method comprises sending, from a digital device that participates in a service, to a service provider that provides the service, a request to participate in the service; receiving a digital message that identifies a service state for the digital device, wherein the digital message is encoded uniquely for the digital device, wherein the digital message is unusable at a different digital device; based on the digital message, determining a plurality of control values that collectively define the service state within the digital device; and providing the control values to one or more applications hosted by the digital device that deliver a service experience associated with the service, or a feature, to an end user of the digital device.
-
Citations
16 Claims
-
1. A method, comprising:
-
sending, from a digital device that participates in a service, to a service provider that provides the service, a request to participate in the service; receiving, by the digital device, a digital message that identifies a desired service state for the digital device, wherein the digital message is encoded uniquely for the digital device and at least a portion of the digital message is encrypted using a public key that is uniquely associated with the digital device to result in creating an encrypted one way hash and the encrypted one way hash is digitally signed using a signing key unique to the service provider, to result in creating an encrypted signed hash that is appended to the digital message, wherein the digital message is unusable at a different digital device; based on the digital message, determining, by the digital device, a plurality of control values that collectively define the desired service state within the digital device the plurality of control values indicate specific capabilities of the digital device that are enabled, disabled, or set to particular values depending on the features, services or products represented in the digital message; providing the plurality of control values to one or more applications hosted by the digital device that deliver a service experience associated with the desired service state, or at least a feature associated with the desired service state, thereby placing the digital device into a first service state; marking the control values as non-secure at the digital device; marking the control values as secure only after the digital device successfully decrypts the at least a portion of the digital message that is encrypted; and changing the digital device to a second service state if the control values are not marked as secure. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 14, 15, 16)
-
-
12. A method, comprising:
-
storing, by a server, a record of the payment for a service in which a digital device can participate in a database associated with a service provider that provides the service, wherein the record is uniquely associated with the digital device; receiving, at the server from the digital device, a request from the digital device to receive the service; based on the database record, determining, by the server, a desired service state value for the digital device corresponding to the service that was paid for; encoding, by the server, the desired service state value in a digital message, wherein the digital message is encoded uniquely for the digital device, wherein the digital message is unusable at a different digital device, by; creating and storing a digital one-way hash of the digital message; encrypting the one-way hash of the digital message using a public key that is uniquely associated with the digital device, to result in creating an encrypted hash; digitally signing the encrypted hash using a signing key unique to the service provider, to result in creating an encrypted signed hash; appending the encrypted signed hash to the digital message; wherein the digital message carries a plurality of control values that collectively define the desired service state that the digital device is authorized to use;
securely authorizing, by the server, the plurality of control values that are enabled, disabled, or set to particular values depending on the features, services or products represented in the digital message; andsending the digital message to the digital device that delivers a service experience associated with the service, or a feature, to an end user of the digital device.
-
-
13. A method of securely enabling features of a digital video recorder, the method comprising the computer-implemented steps of:
-
storing, by a server, a record of payment for a service in which a digital device can participate in a database associated with a service provider that provides the service, wherein the record is uniquely associated with the digital device; receiving, by the server, a request from the digital device to receive the service; based on the database record, determining, by the server, a desired service state value for the digital device corresponding to the service that was paid for; encoding, by the server, the desired service state value in a digital message, wherein the digital message is encoded uniquely for the digital device, wherein the digital message is unusable at a different digital device, by; creating and storing a digital one-way hash of the digital message; encrypting the hash of the digital message using a public key that is uniquely associated with the digital device to result in creating an encrypted hash; digitally signing the encrypted hash using a signing key unique to the service provider, to result in creating an encrypted signed hash; appending, by the server, the encrypted signed hash to the digital message; sending the digital message from the server to the digital device; based on the digital message, determining, by the digital device;
a plurality of control values that collectively define the desired service state within the digital device, the plurality of control values indicate specific capabilities of the digital device that are enabled, disabled, or set to particular values depending on the features, services or products represented in the digital message; andproviding the plurality of control values to one or more applications hosted by the digital device that deliver a service experience associated with the service, or a feature, to an end user of the digital device.
-
Specification