Authentication of data streaming service

US 8,874,901 B2
Filed: 09/14/2012
Issued: 10/28/2014
Est. Priority Date: 04/15/2004
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, from a user device, a first request at a service provider, the first request including user security information, the user security information identifying a user account and being received in a first request header type;

determining, using at least one processor, that the user security information is valid;

based on the user security information being valid, determining session security information and generating a response comprising the session security information;

receiving a service request, the service request comprising the session security information in a second request header type;

applying a user-selected setting; and

establishing a data streaming session with the user device, based on the user-selected setting.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A service provider may provide one or more services to and/or for a client. Providing a service may involve receiving a service request including a security token at the service provider and determining whether the security token is valid. Providing the service may also involve determining a session security token if the security token is valid and generating a service response including the session security token. Providing the service may further involve receiving a service request including the session security token, determining whether the session security token is valid, and, if the session security token is valid, generating a second service response.

55 Citations

View as Search Results

24 Claims

1. A method comprising:
- receiving, from a user device, a first request at a service provider, the first request including user security information, the user security information identifying a user account and being received in a first request header type;
  
  determining, using at least one processor, that the user security information is valid;
  
  based on the user security information being valid, determining session security information and generating a response comprising the session security information;
  
  receiving a service request, the service request comprising the session security information in a second request header type;
  
  applying a user-selected setting; and
  
  establishing a data streaming session with the user device, based on the user-selected setting.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 19, 21, 22, 23, 24)
- - 2. The method of claim 1, wherein the service provider comprises:
    - a control service that validates the user security information; and
      
      a data feed service that provides the data streaming session.
  - 3. The method of claim 2, wherein a first server provides the control service and a second server provides the data feed service.
  - 4. The method of claim 1, further comprising:
    - determining whether the user security information has become invalid; and
      
      based on the user security information becoming invalid, canceling the data streaming session with the user device.
  - 5. The method of claim 1, further comprising:
    - determining whether a request to update the user security information has been received; and
      
      based on the request to update the user security information being received, validating the request and updating the user security information if the request is valid.
  - 6. The method of claim 1, wherein the requests and responses are expressed in a self-describing protocol.
  - 7. The method of claim 6, wherein the self-describing protocol comprises a Simple Object Access Protocol.
  - 8. The method of claim 6, wherein the data streaming session comprises an audio data feed, wherein the audio data feed is selected based on the user-selected setting.
  - 9. The method of claim 1, wherein the data streaming session comprises a video data feed, wherein the video data feed is selected based on the user-selected setting.
  - 19. The method of claim 1, wherein the user-selected setting comprises parental controls.
  - 21. The method of claim 1, wherein the user-selected settings comprise maturity levels.
  - 22. The method of claim 1, wherein determining that the user security information is valid occurs through a series of messages.
  - 23. The method of claim 1, wherein the request further includes device security information;
    - and further comprising determining, using at least one processor, that the device security information is valid.
  - 24. The method of claim 1, wherein the user security information comprises a security token;
    - wherein the session security information comprises a session security token, wherein the session security token is smaller than the security token.

10. A system comprising:
- at least one processor; and
  
  at least one non-transitory computer readable storage medium storing instructions thereon that, when executed by the at least one processor, cause the system to;
  
  maintain a user-selected setting associated with a user account;
  
  receive, from a user device, a service request, the service request comprising validation information, wherein the validation information identifies the user account;
  
  determine that the validation information is valid;
  
  based on the validation information being valid, determine session security information and generate a response comprising the session security information;
  
  receive a second service request, the second service request comprising the session security information;
  
  determine that the session security information is valid;
  
  based on the session security information being valid, apply the user-selected setting;
  
  based on the session security information being valid, establish a data streaming session with the user device, based on the user-selected setting;
  
  receive a third service request from the user device, the third request comprising the session security information;
  
  determine whether the session security information is valid; and
  
  if the session security information is valid, establish a second data streaming session.
- View Dependent Claims (11, 12, 13, 14, 20)
- - 11. The system of claim 10, wherein applying the user-selected setting comprises applying a parental control for the data streaming session.
  - 12. The system of claim 11, wherein the instructions when executed by the at least one processor, further cause the system to:
    - determine whether a request to update the session security information has been received; and
      
      if a request to update the session security information has been received, validate the request and update the session security information if the request is valid.
  - 13. The system of claim 12, wherein the validation information comprises a security token;
    - wherein the session security information comprises a session security token, wherein the session security token is smaller than the security token.
  - 14. The system of claim 10, wherein:
    - the validation information is received in a first request header type; and
      
      the session security information is received in a second request header type.
  - 20. The system of claim 10, wherein the user-selected setting comprises parental controls.

15. A non-transitory computer readable medium storing instructions thereon that, when executed by at least one processor, cause the at least one processor to perform steps comprising:
- sending, to a service provider, a service request, the service request comprising validation information in a first request header type;
  
  receiving, from a service provider, a service response comprising session security information in a second request header type;
  
  sending, to the service provider, a second service request, the second service request comprising the session security information;
  
  applying a user-selected setting; and
  
  establishing a streaming service session with the service provider, based on the user-selected setting.
- View Dependent Claims (16, 17, 18)
- - 16. The non-transitory computer readable medium of claim 15, further comprising instructions that, when executed by the at least one processor, cause the at least one processor to perform the steps of:
    - monitoring a validity period of the session security information;
      
      determining if the validity period is about to expire; and
      
      based on the validity period being about to expire, sending a request to update the session security information.
  - 17. The non-transitory computer readable medium of claim 16, further comprising instructions that, when executed by the at least one processor, cause the at least one processor to perform the step of receiving a second service response, the second service response comprising second session security information.
  - 18. The non-transitory computer readable medium of claim 17, wherein:
    - the validation information comprises a security token;
      
      wherein the session security information comprises a session security token, wherein the session security token is smaller than the security token.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Meta Platforms, Inc. (f/k/a Facebook, Inc.)
Original Assignee
Meta Platforms, Inc. (f/k/a Facebook, Inc.)
Inventors
Cahill, Conor P.
Primary Examiner(s)
Barron, Jr., Gilberto
Assistant Examiner(s)
Cribbs, Malcolm

Application Number

US13/620,605
Publication Number

US 20130174232A1
Time in Patent Office

774 Days
Field of Search

None
US Class Current

713/155
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/10   for controlling access to d...

H04L 65/1066   Session management

H04L 65/1104   Session initiation protocol...

Authentication of data streaming service

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

55 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication of data streaming service

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

55 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links