Non-blocking of head end initiated revocation and delivery of entitlements non-addressable digital media network
First Claim
1. A network device for managing access to content over a network, comprising:
- a transceiver for receiving and sending information over the network;
a processor in communication with the display and the transceiver; and
a memory in communication with the processor and for use in storing data and machine instructions that causes the processor to perform a plurality of actions, including;
broadcasting a notification to a client device indicating an availability of an entitlement or revocation message;
determining a time period for the client device to respond to the notification, wherein a length of the time period is based on at least one of a network characteristic, an urgency of the notification, or a round trip time (RTT) for communication between the network device and the client device;
tuning the length of the time period for the client device to respond based at least on historical failure data;
in response to the broadcast notification the client device initiates a connection with the network device prior to expiration of the time period, sending the entitlement or revocation message by the network device to the client device over the connection initiated by the client device, and disconnecting from the client device;
in response to the receipt of the entitlement or revocation message is positively acknowledged, removing the client device from a multicast list of client devices;
in response to the client device fails to initiate a connection to receive the message within the time period, performing at least one retry attempt comprising sending another request for a connection; and
in response to after the at least one retry attempt the client device fails to initiate a connection within at least another time period, performing a revocation failure action.
4 Assignments
0 Petitions
Accused Products
Abstract
A system, apparatus, and method are directed towards managing entitlement/right revocation and delivery to be performed within a non-addressable media network. Such networks may include for example a client device behind a network address translation (NAT) device, employs non-addressable satellite components, or so forth. A server notifies clients that entitlements, revocations, or the like are available by sending a request for communications with the client. The client initiates a connection to receive the entitlements, or the like, and then disconnects from the server. If the client fails to initiate a connection, the server may continue to send a request for a connection, or even change encryption keys to the content to prevent access by the client. In one embodiment, failure to receive an acknowledgement response from the server of a connection with the client, or from the client, may result in invocation of a revocation failure action.
-
Citations
21 Claims
-
1. A network device for managing access to content over a network, comprising:
-
a transceiver for receiving and sending information over the network;
a processor in communication with the display and the transceiver; anda memory in communication with the processor and for use in storing data and machine instructions that causes the processor to perform a plurality of actions, including; broadcasting a notification to a client device indicating an availability of an entitlement or revocation message; determining a time period for the client device to respond to the notification, wherein a length of the time period is based on at least one of a network characteristic, an urgency of the notification, or a round trip time (RTT) for communication between the network device and the client device; tuning the length of the time period for the client device to respond based at least on historical failure data; in response to the broadcast notification the client device initiates a connection with the network device prior to expiration of the time period, sending the entitlement or revocation message by the network device to the client device over the connection initiated by the client device, and disconnecting from the client device; in response to the receipt of the entitlement or revocation message is positively acknowledged, removing the client device from a multicast list of client devices; in response to the client device fails to initiate a connection to receive the message within the time period, performing at least one retry attempt comprising sending another request for a connection; and in response to after the at least one retry attempt the client device fails to initiate a connection within at least another time period, performing a revocation failure action. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A non-transitory computer-readable storage medium that includes data and instructions, wherein the execution of the instructions on a computing device provides for managing access to content over a network by enabling actions, comprising:
-
broadcasting a notification to a client device indicating an availability of an entitlement or revocation message; determining a time period for the client device to respond to the notification, wherein a length of the time period is based on at least one of a network characteristic, an urgency of the notification, or a round trip time (RTT) for communication between the network device and the client device; tuning the length of the time period for the client device to respond based at least on historical failure data; in response to the broadcast notification the client device initiates a connection with the network device prior to expiration of the time period, sending the entitlement or revocation message by the network device to the client device over the connection initiated by the client device, and disconnecting from the client device; in response to the receipt of the entitlement or revocation message is positively acknowledged, removing the client device from a multicast list of client devices; in response to the client device fails to initiate a connection and receive the entitlement message within the time period, performing at least one retry attempt comprising sending another request for a connection; and in response to after the at least one retry attempt the client device fails to receive the entitlement message within at least another time period, performing a revocation failure action. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A method for managing access to content over a network, comprising:
-
broadcasting by a network device a notification over the network indicating an availability of an entitlement message for the client device, wherein the client device is situated on one side of a network address translation (NAT) device, and the network device is on another side of the NAT, and wherein the entitlement message is associated with access to content; determining a time period for the client device to respond to the notification, wherein a length of the time period is based on at least one of a network characteristic, an urgency of the notification, or a round trip time (RTT) for communication between the network device and the client device;
tuning the length of the time period for the client device to respond based at least on historical failure data;in response to the broadcast notification the client device initiates a connection with the network device prior to expiration of the time period, sending the entitlement or revocation message by the network device to the client device over the connection initiated by the client device, and disconnecting from the client device; in response to the receipt of the entitlement or revocation message is positively acknowledged, removing the client device from a multicast list of client devices; in response to the client device fails to receive the entitlement message within the time period, performing at least one retry attempt comprising sending another request for a connection by the network device; and in response to after the at least one retry attempt an acknowledgement message is undetected from the client device within at least another time period, performing a revocation failure action. - View Dependent Claims (15, 16, 17)
-
-
18. A system for managing access to content over a network, comprising:
-
a network device sending encrypted content over the network to a client device; and another network device that performs actions, including;
broadcasting a notification over a network indicating an availability of an entitlement message for the client device;determining a time period for the client device to respond to the notification, wherein a length of the time period is based on at least one of a network characteristic, an urgency of the notification, or a round trip time (RTT) for communication between the other network device and the client device; tuning the length of the time period for the client device to respond based at least on historical failure data; in response to the broadcast notification the client device initiates a connection with the network device prior to expiration of the time period, sending the entitlement or revocation message by the network device to the client device over the connection initiated by the client device, and disconnecting from the client device; in response to the receipt of the entitlement or revocation message is positively acknowledged, removing the client device from a multicast list of client devices; in response to the client device fails to receive the entitlement message within the time period, performing at least one retry attempt comprising sending another request for a connection; and in response to after the at least one retry attempt an acknowledgement message is undetected from the client device within at least another time period, performing a revocation failure action. - View Dependent Claims (19, 20, 21)
-
Specification