Method and system for verifying entitlement to access content by URL validation

US 8,464,325 B2
Filed: 01/26/2009
Issued: 06/11/2013
Est. Priority Date: 01/26/2009
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

performing a transaction between a user and a transaction system for purchase of user-specific rights to digital content delivered electronically;

storing a record of the transaction, wherein the record is accessible by the transaction system, and wherein the record entitles the user to exercise the user-specific rights to the digital content;

providing to a user device a resource address for accessing the digital content based on an authorization to exercise the user-specific rights, wherein the resource address comprises an encrypted string that represents, upon decryption, unique transaction identifier information and rights information associated with the user-specific rights, wherein the rights information specifies a maximum number of authorized downloads available to the user; and

providing access to the digital content identified by the resource address, based on the rights information, the unique transaction identifier, and the record of the transaction, in response to a successful validation of a user request to exercise the user-specific rights.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Aspects include a mechanism of entitling users to transacted-for digital content access, indicating download authorization with discrete authentication URLs, and validating download attempts using each such URL. The authentication mechanism comprises producing an encrypted string included in a URL provided to a user. The encrypted string comprises transaction identifier information, and information about the transacted-for entitlement. When a user wishes to exercise the transacted-for entitlement, the user activates the URL, which is resolved to a location that has/can obtain access to the key(s) used in producing the encrypted string, decrypt the string, and use the information in it to validate the URL and the entitlement. The validation can use data retrieved from a database, using the transaction identifier as a key. The entitlement information included in the now-decrypted string can be compared with the prior download information. A byte range of requested by a browser using the URL can be used in validation, as well as how a particular authorization/validation should count for entitlement fulfillment.

8 Citations

22 Claims

1. A method comprising:
- performing a transaction between a user and a transaction system for purchase of user-specific rights to digital content delivered electronically;
  
  storing a record of the transaction, wherein the record is accessible by the transaction system, and wherein the record entitles the user to exercise the user-specific rights to the digital content;
  
  providing to a user device a resource address for accessing the digital content based on an authorization to exercise the user-specific rights, wherein the resource address comprises an encrypted string that represents, upon decryption, unique transaction identifier information and rights information associated with the user-specific rights, wherein the rights information specifies a maximum number of authorized downloads available to the user; and
  
  providing access to the digital content identified by the resource address, based on the rights information, the unique transaction identifier, and the record of the transaction, in response to a successful validation of a user request to exercise the user-specific rights.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
- - 2. The method of claim 1, further comprising accessing the record using the unique transaction identifier information to obtain information indicative of prior consumption of the user-specific rights, and comparing the information with the user-specific rights in the validation of a user request to exercise the user-specific rights.
  - 3. The method of claim 1, wherein the digital content is stored in a Content Delivery Network (CDN) that is independent from the transaction system.
  - 4. The method of claim 1, further comprising:
    - accepting the user request from the user at the CDN;
      
      forwarding the encrypted string to a system controlled by an operator of the transaction system for validation;
      
      and providing a private resource address for accessing digital content.
  - 5. The method of claim 1, wherein the resource address is made accessible to the user by at least one of an electronic message and a web page, in response to completion of the transaction, wherein the resource address is a uniform resource locator.
  - 6. The method of claim 1, wherein the transaction identifier information comprises a purchase completion time stamp indicating the time the transaction completed.
  - 7. The method of claim 6, wherein the purchase completion time stamp is utilized during the validation to determine whether the purchase occurred within a time limit.
  - 8. The method of claim 1, wherein the transaction identifier information comprises a resource address generation time stamp indicating the time the resource address was generated, wherein the resource address is a uniform resource locator.
  - 9. The method of claim 8, wherein the resource address generation time stamp is utilized during the validation to determine whether the request to exercise the user-specific rights is made during a valid timeframe.
  - 10. The method of claim 1, wherein the record and the maximum number of authorized downloads are utilized during the validation to determine whether the maximum number of authorized downloads has been reached, wherein the record includes information indicative of a number of prior downloads initiated using the resource address.
  - 11. The method of claim 1, wherein the encrypted string is based on at least one bit of random data, the unique transaction identifier information and rights information.
  - 12. The method of claim 1, wherein the transaction identifier information contains time limit information, wherein the time limit information is utilized during the validation to determine whether the request was made within a specific time allocation.
  - 13. The method of claim 12, wherein a user can purchase additional time to extend the time allocation.
  - 14. The method of claim 1, wherein the digital content comprises at least one of text, image, audio and video.
  - 15. The method of claim 1, wherein a control function configured to generate additional user-specific rights to the digital content is accessible to the user when the user request is received after the maximum number of authorized downloads has been reached.
  - 16. The method of claim 1, wherein the resource address for accessing the digital content includes a start byte representing a download resumption point.
  - 17. The method of claim 16, wherein information indicative of a number of prior downloads initiated using the resource address is unchanged when the start byte is identified in the resource address.

18. A non-transitory computer-readable storage medium storing instructions which, when executed by a computing device, cause the computing device to perform steps comprising:
- performing a transaction between a user and a transaction system for purchase of user-specific rights to digital content delivered electronically;
  
  storing a record of the transaction, wherein the record is accessible by the transaction system, and wherein the record entitles the user to exercise the user-specific rights to the digital content;
  
  providing to a user device a resource address for accessing the digital content based on an authorization to exercise the user-specific rights, wherein the resource address comprises an encrypted string that represents, upon decryption, unique transaction identifier information and rights information associated with the user-specific rights, wherein the rights information specifies a maximum number of authorized downloads available to the user; and
  
  providing access to the digital content identified by the resource address, based on the rights information, the unique transaction identifier, and the record of the transaction, in response to a successful validation of a user request to exercise the user-specific rights.
- View Dependent Claims (19, 20)
- - 19. The non-transitory computer-readable storage medium of claim 18, wherein the resource address is a uniform resource locator.
  - 20. The non-transitory computer-readable storage medium of claim 18, wherein the user-specific rights comprise entitlement to download digital content.

21. A system comprising:
- a processor;
  
  a memory storing instructions for controlling the processor to perform steps comprising;
  
  performing a transaction between a user and a transaction system for purchase of user-specific rights to digital content delivered electronically;
  
  storing a record of the transaction, wherein the record is accessible by the transaction system, and wherein the record entitles the user to exercise the user-specific rights to the digital content;
  
  providing to a user device a resource address for accessing the digital content based on an authorization to exercise the user-specific rights, wherein the resource address comprises an encrypted string that represents, upon decryption, unique transaction identifier information and rights information associated with the user-specific rights, wherein the rights information specifies a maximum number of authorized downloads available to the user; and
  
  providing access to the digital content identified by the resource address in response to a successful validation of a user request to exercise the user-specific rights based on the rights information, the unique transaction identifier, and the record of the transaction.
- View Dependent Claims (22)
- - 22. The system of claim 21, wherein the resource address is a uniform resource locator.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Apple Inc.
Inventors
Kinnis, Tony F., Purdy, Gregor N. Sr.
Primary Examiner(s)
Flynn, Nathan
Assistant Examiner(s)
Almamun, Abdullah

Application Number

US12/359,909
Publication Number

US 20100192210A1
Time in Patent Office

1,597 Days
Field of Search

726/7, 726/30, 726/31, 713/160, 707/607, 707/787, 725/112
US Class Current

726/7
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 2221/2137   Time limited access, e.g. t...

G06F 2221/2151   Time stamp

G06Q 20/1235   with control of digital rig...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/603   Digital right managament [DRM]

H04L 9/3297   involving time stamps, e.g....

Method and system for verifying entitlement to access content by URL validation

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

8 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for verifying entitlement to access content by URL validation

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

8 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links