Secure content delivery system
First Claim
1. A process for secure content delivery, comprising:
- (a) providing a plurality of caching servers connected to a network that cache customer content, the plurality of caching servers responding to requests for customer content, wherein the customer is a customer of a service that manages the plurality of caching servers;
(b) at a given caching server in the plurality of caching servers, receiving from a client a request for content at a Universal Resource Locator (URL),wherein the URL is a URL that, in a separate process, was provided to the client by a customer-managed server and includes an authorization value that was inserted into the URL by the customer-managed server after authorizing the client for access to customer content;
(c) verifying the authorization value in the URL on the given caching server;
(d) sending the customer content to the client if the authorization value in the URL is valid;
(e) not sending the customer content to the client if the authorization value in the URL is invalid.
2 Assignments
0 Petitions
Accused Products
Abstract
A secure streaming content delivery system provides a plurality of content servers connected to a network that host customer content that can be cached and/or stored, e.g., images, video, text, and/or software. The content servers respond to requests for customer content from users. The invention load balances user requests for cached customer content to the appropriate content server. A user makes a request to a customer'"'"'s server/authorization server for delivery of the customer'"'"'s content. The authorization server checks if the user is authorized to view the requested content. If the user is authorized, then the authorization server generates a hash value using the authorization server'"'"'s secret key, the current time, a time-to-live value, and any other information that the customer has configured, and embeds it into the URL which is passed to the user. A content server receives a URL request from the user for customer content cached on the content server. The request is verified by the content server creating its own hash value using the customer server'"'"'s secret key, the current time, a time-to-live value, and any other related information configured for the customer. If the hash value from the URL matches the content server'"'"'s generated hash value, then the user'"'"'s request is valid and within the expiration time period and the content server delivers the requested content to the user.
60 Citations
20 Claims
-
1. A process for secure content delivery, comprising:
-
(a) providing a plurality of caching servers connected to a network that cache customer content, the plurality of caching servers responding to requests for customer content, wherein the customer is a customer of a service that manages the plurality of caching servers; (b) at a given caching server in the plurality of caching servers, receiving from a client a request for content at a Universal Resource Locator (URL), wherein the URL is a URL that, in a separate process, was provided to the client by a customer-managed server and includes an authorization value that was inserted into the URL by the customer-managed server after authorizing the client for access to customer content; (c) verifying the authorization value in the URL on the given caching server; (d) sending the customer content to the client if the authorization value in the URL is valid; (e) not sending the customer content to the client if the authorization value in the URL is invalid. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system of computers connected via a network for securely delivering content to requesting clients, comprising:
-
a plurality of caching servers caching customer content, the plurality of caching servers responding to requests for customer content, wherein the customer is a customer of a service that manages the plurality of caching servers, and each of the plurality of caching servers comprises one or more hardware processors and computer memory holding instructions to be executed by the one or more processors; a customer-managed server that receives a request from a client for access to customer content, authorizes the client for such access, and sends the client a Universal Resource Locator (URL) that includes an authorization value; a given cache server in the plurality of caching servers that receives from the client a request for content at the URL; the given cache server verifying the authorization value in the URL; the given cache server sending the customer content to the client if the authorization value in the URL is valid; the given cache server not sending the customer content to the client if the authorization value in the URL is invalid. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. Apparatus for secure content delivery, comprising:
-
a content server that is a part of a network of content servers that deliver customer content, the customer being a customer of a service that manages the network of content servers, the content server having one or more hardware processors and computer memory holding instructions to be executed by the one or more processors that will cause the content server to; (a) receive from a client a request for content at a Universal Resource Locator (URL), wherein the URL is a URL that was provided to the client by a customer-managed server and includes an authorization value that was inserted into the URL by the customer-managed server after authorizing the client for access to customer content; (b) verify the authorization value in the URL; (c) send the customer content to the client if the authorization value in the URL is valid; (d) not send the customer content to the client if the authorization value in the URL is invalid. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification