Concept of efficiently distributing access authorization information
First Claim
1. A device for providing an authorization message for a user device with regard to an access-restricted service, comprising:
- an authorization message creator; and
an identifier manager,wherein the authorization message creator is configured to generate an enabling message for enabling a service access authorization or an extending message for extending a service access authorization, the enabling message or the extending message being provided with a service-dependent user identifier provided by the identifier manager;
wherein the identifier manager comprises a first block of associated service-dependent user identifiers in which an authorization time interval of a user device is running,a second block of unused service-dependent user identifiers in which the authorization time interval of the user device has expired by less than the predetermined duration, anda third block of service-dependent user identifiers released for being used again;
and wherein the identifier manager is configured to leave a service-dependent user identifier unused for at least a predetermined duration after expiry of an authorization time interval of a user device to which the service-dependent user identifier was associated last, and to release the service-dependent user identifier for being used again by the authorization message creator after expiry of the predetermined duration.
1 Assignment
0 Petitions
Accused Products
Abstract
A device for controlling a service access authorization for a user device with regard to an access-restricted service includes a service access authorization provider, the service access authorization provider being configured to set a period of time in which the service access authorization is valid, responsive to an authorization message provided with a service-dependent user identifier, and the service access authorization provider being configured to disable an authorization allowing the service access authorization to be extended or reactivated using the previous service-dependent user identifier when at least a predetermined duration has passed since an end of a last authorization time interval for which a service access authorization was determined by the device.
-
Citations
22 Claims
-
1. A device for providing an authorization message for a user device with regard to an access-restricted service, comprising:
-
an authorization message creator; and an identifier manager, wherein the authorization message creator is configured to generate an enabling message for enabling a service access authorization or an extending message for extending a service access authorization, the enabling message or the extending message being provided with a service-dependent user identifier provided by the identifier manager; wherein the identifier manager comprises a first block of associated service-dependent user identifiers in which an authorization time interval of a user device is running, a second block of unused service-dependent user identifiers in which the authorization time interval of the user device has expired by less than the predetermined duration, and a third block of service-dependent user identifiers released for being used again; and wherein the identifier manager is configured to leave a service-dependent user identifier unused for at least a predetermined duration after expiry of an authorization time interval of a user device to which the service-dependent user identifier was associated last, and to release the service-dependent user identifier for being used again by the authorization message creator after expiry of the predetermined duration. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for controlling a service access authorization with regard to an access-restricted service, comprising:
-
a device for providing an authorization message for a user device with regard to an access-restricted service, comprising;
an authorization message creator; and
an identifier manager, wherein the authorization message creator is configured to generate an enabling message for enabling a service access authorization or an extending message for extending a service access authorization, the enabling message or the extending message being provided with a service-dependent user identifier provided by the identifier manager;
wherein the identifier manager comprises a first block of associated service-dependent user identifiers in which an authorization time interval of a user device is running, a second block of unused service-dependent user identifiers in which the authorization time interval of the user device has expired by less than the predetermined duration, and a third block of service-dependent user identifiers released for being used again; and
wherein the identifier manager is configured to leave a service-dependent user identifier unused for at least a predetermined duration after expiry of an authorization time interval of a user device to which the service-dependent user identifier was associated last, and to release the service-dependent user identifier for being used again by the authorization message creator after expiry of the predetermined duration;a first device for controlling a service access authorization for a user device with regard to an access-restricted service, comprising;
a service access authorization provider, the service access authorization provider being configured to set a period of time in which the service access authorization is valid, responsive to an authorization message provided with a service-dependent user identifier, and the service access authorization provider being configured to disable an authorization allowing the service access authorization to be extended or reactivated using the previous service-dependent user identifier depending on whether at least a predetermined duration has passed since an end of a last authorization time interval for which a service access authorization was determined by the device, wherein the service access authorization provider is configured to determine the duration having passed and to compare same to the predetermined duration, and to disable the authorization for extending or reactivating using the previous service-dependent user identifier when the duration having passed is greater than or equal to the predetermined duration; anda second device for controlling a service access authorization for a user device with regard to an access-restricted service, comprising;
a service access authorization provider, the service access authorization provider being configured to set a period of time in which the service access authorization is valid, responsive to an authorization message provided with a service-dependent user identifier, and the service access authorization provider being configured to disable an authorization allowing the service access authorization to be extended or reactivated using the previous service-dependent user identifier depending on whether at least a predetermined duration has passed since an end of a last authorization time interval for which a service access authorization was determined by the device, wherein the service access authorization provider is configured to determine the duration having passed and to compare same to the predetermined duration, and to disable the authorization for extending or reactivating using the previous service-dependent user identifier when the duration having passed is greater than or equal to the predetermined duration,wherein the system is configured to associate a predetermined service-dependent user identifier at first to the first device for controlling a service access authorization, and to associate the predetermined service-dependent user identifier, after being released for being used again, to the second device for controlling a service access authorization, and wherein the system is configured such that the authorization for extending or reactivating the service access authorization using a predetermined service-dependent user identifier is active in at most one of the first device for controlling a service access authorization and the second device for controlling a service access authorization, and wherein the first device for controlling a service access authorization and the second device for controlling a service access authorization are coupled to the device for providing an authorization message so as to receive the authorization message. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A method for providing an authorization message for a user device with regard to an access-restricted service, the method comprising:
-
generating an enabling message for enabling a service access authorization or an extending message for extending a service access authorization, wherein the enabling message or the extending message is provided with a service-dependent user identifier provided by an identifier manager; leaving the service-dependent user identifier unused for at least a predetermined duration after expiry of an authorization time interval of a user device to which the service-dependent user identifier was associated last; and after expiry of the predetermined duration, releasing the service-dependent user identifier for being used again for generating a new enabling message or a new extending message; wherein the identifier manager comprises a first block of associated service-dependent user identifiers in which an authorization time interval of a user device is running, a second block of unused service-dependent user identifiers in which the authorization time interval of the user device has expired by less than the predetermined duration, and a third block of service-dependent user identifiers released for being used again; wherein the method is performed by a hardware apparatus, or by a computer, or by a combination of a hardware apparatus and a computer.
-
-
22. A non-transitory computer readable medium comprising a computer program comprising program code for executing a method on a computer for providing an authorization message for a user device with regard to an access-restricted service, the method comprising:
- generating an enabling message for enabling a service access authorization or an extending message for extending a service access authorization, wherein the enabling message or the extending message is provided with a service-dependent user identifier;
not using the service-dependent user identifier for at least a predetermined duration after expiry of an authorization time interval of a user device to which the service-dependent user identifier was associated last; and
after expiry of the predetermined duration, releasing the service-dependent user identifier for generating a new enabling message or a new extending message, when the computer program runs on a computer wherein there is a first block of associated service-dependent user identifiers in which an authorization time interval of a user device is running, a second block of unused service-dependent user identifiers in which the authorization time interval of the user device has expired by less than the predetermined duration, and a third block of service-dependent user identifiers released for being used again.
- generating an enabling message for enabling a service access authorization or an extending message for extending a service access authorization, wherein the enabling message or the extending message is provided with a service-dependent user identifier;
Specification