Protection of the distribution of digital documents in a peer to peer network

US 7,966,491 B2
Filed: 06/02/2004
Issued: 06/21/2011
Est. Priority Date: 06/02/2003
Status: Expired due to Fees

First Claim

Patent Images

1. A central server in a network of a hybrid peer to peer type, comprising:

a memory and a processor;

receiving means for receiving a request from a non-peer client for obtaining a digital document by that non-peer client, said request containing a reference of said digital document, wherein the non-peer client does not constitute a peer of the network;

selecting means for selecting a peer system of the network likely to contain said digital document, by searching in a database of said central server for an active peer system containing said digital document;

generating means for generating an access key for controlling access to the digital document by said non-peer client, said generating means generating said access key by an encrypting method using a private key of said central server to encrypt a character string containing a current time when said encrypting method is executed and an address of said non-peer client on the network;

sending means for sending a message to the non-peer client, comprising the reference of the digital document, an address of the selected peer system on the network and the generated access key, wherein said message contains information allowing said non-peer client to connect to the selected peer system via an Internet web browser; and

authenticating means for authenticating an identifier of a user of said non-peer client,wherein said character string further comprises said identifier of said user of the non-peer client, andwherein said access key is designed to enable validation by said selected peer system of the network of an access request to said digital document by the user of the non-peer client on said selected peer system.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A central server in a network of a hybrid peer to peer type, receives a request from a client for obtaining a digital document, where the request contains a reference of the digital document. The server selects a peer system of the network likely to contain the digital document, and generates an access key for controlling access to the digital document by the client, where the access key is generated by an encrypting method using a private key of the central server, a current time when the encrypting method is executed and an address of the client on the network. The server then sends a message to the client, where the message has the reference of the digital document, an address of the selected peer system on the network and the generated access key.

31 Citations

View as Search Results

27 Claims

1. A central server in a network of a hybrid peer to peer type, comprising:
- a memory and a processor;
  
  receiving means for receiving a request from a non-peer client for obtaining a digital document by that non-peer client, said request containing a reference of said digital document, wherein the non-peer client does not constitute a peer of the network;
  
  selecting means for selecting a peer system of the network likely to contain said digital document, by searching in a database of said central server for an active peer system containing said digital document;
  
  generating means for generating an access key for controlling access to the digital document by said non-peer client, said generating means generating said access key by an encrypting method using a private key of said central server to encrypt a character string containing a current time when said encrypting method is executed and an address of said non-peer client on the network;
  
  sending means for sending a message to the non-peer client, comprising the reference of the digital document, an address of the selected peer system on the network and the generated access key, wherein said message contains information allowing said non-peer client to connect to the selected peer system via an Internet web browser; and
  
  authenticating means for authenticating an identifier of a user of said non-peer client,wherein said character string further comprises said identifier of said user of the non-peer client, andwherein said access key is designed to enable validation by said selected peer system of the network of an access request to said digital document by the user of the non-peer client on said selected peer system.
- View Dependent Claims (2, 3)
- - 2. The central server according to claim 1, wherein the sending means sends said message in the form of a page containing:
    - a first window managed by said central server, said first window comprising a link whose activation generates the sending of a request to said central server in order to obtain an address of a second peer system likely to contain said digital document; and
      
      at least one second window intended to be managed by said selected peer system or said second peer system.
  - 3. The central server according to claim 1, wherein the sending means sends said message in the form of a Hyper Text Transfer Protocol (HTTP) response of the forward type.

4. A method of protecting the distribution of a digital document, the protection method being implemented in a central server of a network of a hybrid peer to peer type and comprising:
- a receiving step of receiving a request from a non-peer client for obtaining a digital document by that non-peer client, said request comprising a reference of said digital document, wherein the non-peer client does not constitute a peer of the network;
  
  a selecting step of selecting a peer system of said network likely to contain said digital document, by searching in a database of said central server for an active peer system containing said digital document;
  
  a generating step of generating an access key for controlling access to the digital document by the non-peer client, said generating step comprising generating the access key by an encrypting method using a private key of said central server to encrypt a character string containing a current time when said encrypting method is executed and an address of said non-peer client on the network;
  
  a sending step of sending a message to said non-peer client, comprising said reference of said digital document, an address of said selected peer system on said network and said generated access key, wherein said message contains information allowing said non-peer client to connect to the selected peer system via an Internet browser; and
  
  authenticating an identifier of a user of said non-peer client,wherein said character string further comprises said identifier of said user of the non-peer client, andwherein said access key is designed to enable validation by said selected peer system of the network of an access request to said digital document by the user of the non-peer client on said selected peer system.
- View Dependent Claims (5, 6)
- - 5. The protection method according to claim 4, wherein, during said sending step, said message is sent in the form of a page containing:
    - a first window managed by said central server, said first window comprising a link whose activation generates the sending of a request to said central server in order to obtain an address of a second peer system likely to contain said digital document; and
      
      at least one second window intended to be managed by said selected peer system or said second peer system.
  - 6. The protection method according to claim 4, wherein, during said sending step, said message is sent in the form of a Hyper Text Transfer Protocol (HTTP) response of the forward type.

7. A digital document distribution peer device in a network of a hybrid peer to peer type, comprising:
- receiving means for receiving a request from a client for obtaining a digital document for that client, the request containing a reference of said document;
  
  obtaining means for obtaining an address of at least one second peer device in the network likely to contain said digital document;
  
  comparison means for comparing at least one attribute of said peer device with at least one corresponding attribute of said at least one second peer device,wherein said attribute and said corresponding attribute is a characteristic of a peer device representative of a load or of a communication capacity of said peer device to serve documents;
  
  deciding means for deciding, based on a result of the comparison by said comparison means, whether said peer device is to serve the document or whether the address of the second peer device is to be sent to the client;
  
  serving means for serving the document to the client in a case where the deciding means decides that the peer device is to serve the document;
  
  sending means for sending said address of said at least one second peer device to said client in a case where the deciding means decides that the address of the second peer device is to be sent to the client;
  
  access control means for using an access key included in said request for controlling access to the digital document by said client, in order to validate or refuse the request;
  
  validation means for validating or refusing the request; and
  
  redirecting means for forwarding a message to said client to redirect said client to a central server of the network, in the case where the request is refused.
- View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 8. The peer device according to claim 7, further comprising distributing means for distributing to said client at least part of said digital document in a memory accessible to said peer device.
  - 9. The peer device according to claim 7, wherein the access control means comprises decrypting means using a public key of a central server in said network, said decrypting means for obtaining, from the access key, a time when the access key was generated;
    - andsaid access control means further fora) validating the request when the time elapsed since said time when the access key was generated is less than a predetermined time; and
      
      b) refusing the request otherwise.
  - 10. The peer device according to claim 9, whereinsaid receiving means obtains an address of said client from the request;
    - said decrypting means obtains a second address using the access key; and
      
      said access control means furthera) validates the request when said second address is identical to said address of said client; and
      
      b) refuses the request otherwise.
  - 11. The peer device according to claim 9, whereinsaid decrypting means obtains an identifier of a user of the client using the access key;
    - andsaid access control means validates or refuses the request after having verified access rights to said digital document by said user from said identifier.
  - 12. The peer device according to claim 11, wherein said obtaining means sends an invitation message containing the reference of said document to at least one second peer device and receives a confirmation message from at least one second peer device when said digital document is available in a memory accessible to said peer device and wherein said confirmation message signifies the fact that said user is authorized to access said digital document from said at least one second peer device originating said confirmation message.
  - 13. The peer device according to claim 12, wherein said obtaining means sends said identifier of the user in said invitation message.
  - 14. The peer device according to claim 11, wherein said at least one attribute of the peer device and said at least one attribute of the second peer device represent a number of documents available for said user on each respective peer device.
  - 15. The peer device according to claim 7, wherein said obtaining means sends an invitation message containing the reference of said document to at least one second peer device and receives a confirmation message from at least one second peer device when said digital document is available in a memory accessible to said peer device.
  - 16. The peer device according to claim 7, wherein said at least one attribute of the peer device and said at least one attribute of the second peer device represent a number of digital documents stored by each respective peer device, or a number of documents or document parts distributed by each respective peer device.

17. A method of distributing a digital document implemented in a peer device of a hybrid peer to peer type network, comprisinga receiving step of receiving a request, from a client, for obtaining a digital document for said client, the request containing a reference of said digital document;
- an obtaining step of obtaining an address of at least one second peer device likely to contain said digital document;
  
  a comparison step of comparing at least one attribute of said peer device with at least one corresponding attribute of said at least one second peer device,wherein said attribute and said corresponding attribute is a characteristic of a peer device representative of a load or of a communication capacity of said peer device to serve documents;
  
  a deciding step of deciding, based on a result of the comparison by said comparison step, whether said peer device is to serve the document or whether the address of the second peer device is to be sent to the client;
  
  a serving step of serving the document to the client in a case where the deciding step decides that the peer device is to serve the document;
  
  a sending step of sending said address of said at least one second peer device to said client in a case where the deciding step decides that the address of the second peer device is to be sent to the client;
  
  an access control step for using an access key included in said request for controlling access to the digital document by said client, in order to validate or refuse the request;
  
  a validation step for validating or refusing the request; and
  
  a redirecting step for forwarding a message to said client to redirect said client to a central server of the network, in the case where the request is refused.
- View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25)
- - 18. The distribution method according to claim 17, further comprising a distributing step of distributing to said client at least part of said digital document in a memory accessible to said peer device.
  - 19. The distribution method according to claim 17, wherein said access control step comprises,a decrypting sub step using a public key of a central server of said network, saiddecrypting sub step obtaining from the access key a time when said access key was generated;
    - andsaid access control step;
      
      a) validates the request for access to the digital document by said client when the time elapsed since said time when the access key was generated is less than a predetermined time; and
      
      b) said request is refused otherwise.
  - 20. The distribution method according to claim 19, whereinin said step of receiving the request, an address of said client is obtained from the request;
    - said decrypting sub step obtains a second address from the access key; and
      
      said access control step;
      
      a) validates the requested access to the digital document when said second address is identical to said address of the client; and
      
      b) said request is refused otherwise.
  - 21. The distribution method according to claim 19, whereinsaid decrypting substep obtains an identifier of a user of the client using the access key;
    - and the method further comprises;
      
      an authentication step during which access rights for access to the digital document by said user are verified from said identifier;
      
      wherein said access control step validates the request or refuses the request according to said access rights.
  - 22. The distribution method according to claim 21, wherein said identifier of the user is sent in an invitation message.
  - 23. The distribution method according to claim 22, wherein a confirmation message is received coming from said at least one second peer device if said user is authorized to access said digital document from said peer device.
  - 24. The distribution method according to claim 17, wherein, during said step of obtaining the address of at least one second peer device:
    - an invitation message containing the reference of said digital document is sent to said at least one second peer device; and
      
      a confirmation message is received coming from at least one second peer device when said digital document is available in a memory accessible to said peer device.
  - 25. The distribution method according to claim 17, wherein said at least one attribute of the peer device and said at least one attribute of the second peer device represent a number of digital documents stored in each respective peer device, or a number of documents or document parts distributed by each respective peer device.

26. A non-transitory computer-readable storage medium, which can be read by a computer and on which is stored a computer-executable program for implementing a method of protecting the distribution of a digital document, the protection method being implemented in a central server of a network of a hybrid peer to peer type and comprising:
- a receiving step of receiving a request from a non-peer client for obtaining a digital document by that non-peer client, said request comprising a reference of said digital document, wherein the non-peer client does not constitute a peer of the network;
  
  a selecting step of selecting a peer device of said network likely to contain said digital document, by searching in a database of said central server for an active peer device containing said digital document;
  
  a generating step of generating an access key for controlling access to the digital document by the non-peer client, said generating step comprising generating the access key by an encrypting method using a private key of said central server to encrypt a character string containing a current time when said encrypting method is executed and an address of said non peer client on the network;
  
  a sending step of sending a message to said non-peer client, comprising said reference of said digital document, an address of said selected peer device on said network and said generated access key, wherein said message contains information allowing said non-peer client to connect to the selected peer device via an Internet browser; and
  
  authenticating an identifier of a user of said non-peer client,wherein said character string further comprises said identifier of said user of the non-peer client, andwherein said access key is designed to enable validation by said selected peer system of the network of an access request to said digital document by the user of the non-peer client on said selected peer system.

27. A non-transitory computer-readable storage medium, which can be read by a computer and on which is stored a computer-executable program for implementing a method of distributing a digital document in a peer device of a hybrid peer to peer type network, comprisinga receiving step of receiving a request, from a client, for obtaining a digital document for said client, the request containing a reference of said digital document;
- an obtaining step of obtaining an address of at least one second peer device likely to contain said digital document;
  
  a comparison step of comparing at least one attribute of said peer device with at least one corresponding attribute of said at least one second peer device, wherein said attribute and said corresponding attribute is a characteristic of a peer device representative of a load or of a communication capacity of said peer device to serve documents;
  
  a deciding step of deciding, based on a result of the comparison by said comparison step, whether said peer device is to serve the document or whether the address of the second peer device is to be sent to the client;
  
  a serving step of serving the document to the client in a case where the deciding step decides that the peer device is to serve the document;
  
  a sending step of sending said address of said at least one second peer device to said client in a case where the deciding means decides that the address of the second peer device is to be sent to the client;
  
  an access control step for using an access key included in said request for controlling access to the digital document by said client, in order to validate or refuse the request;
  
  a validation step for validating or refusing the request; and
  
  a redirecting step for forwarding a message to said client to redirect said client to a central server of the network, in the case where the request is refused.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
LOT Network Inc.
Original Assignee
Canon Kabushiki Kaisha (Canon Inc.)
Inventors
Maze, Frédéric, Viger, Pascal, Nassor, Eric
Primary Examiner(s)
Moazzami; Nasser
Assistant Examiner(s)
Louie; Oscar A

Application Number

US10/857,884
Publication Number

US 20050044146A1
Time in Patent Office

2,575 Days
Field of Search

713/168
US Class Current

713/168
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 67/104   Peer-to-peer [P2P] networks

H04L 67/1063   Discovery through centralis...

H04L 69/329   in the application layer [O...

Protection of the distribution of digital documents in a peer to peer network

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

31 Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Protection of the distribution of digital documents in a peer to peer network

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

31 Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links