One step security system in a network storage system

US 9,432,373 B2
Filed: 04/23/2010
Issued: 08/30/2016
Est. Priority Date: 04/23/2010
Status: Expired due to Fees

First Claim

Patent Images

1. A method for authorizing access to content stored on a local cloud, the method comprising:

receiving, at a librarian service operating on a master device, a request from a first device to provide a third device with access to the content stored on a second device, wherein;

the first device and the second device are associated with a first user account,the third device is associated with a second user account, andthe librarian service selects the first and second devices to form the local cloud associated with the first user account based on one or more resources of each of the first and second devices made available for the local cloud;

receiving, at the librarian service from the second device, an indication that the third device associated with the second user account is authorized to access the content stored on the second device;

determining, at the librarian service, whether the third device associated with the second user account is known to the librarian service, wherein said determining involves determining whether the third device has been made available to the librarian service to form another local cloud;

when the third device associated with the second user account is determined to be known to the librarian service;

identifying credentials associated with the second user account, andwhen the credentials are already installed at the third device associated with the second user account, associating the credentials with the content to provide the third device authorization to access the content; and

providing by the librarian service, addressing information for the local cloud to the third device associated with the second user account, wherein the addressing information is used by the third device to connect to the local cloud to gain access to the content stored on the second device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

This is directed to providing access to content stored on a local cloud. In particular, a device can direct a librarian service overseeing the operation of a local cloud to provide another device with access to content stored on the local cloud. The librarian service can generate credentials for the other device, and provide the credentials to the other device. Using the credentials, the other device can connect directly to the local cloud and access the content. In addition, the local cloud can validate the credentials of the other before providing access to the content. The credentials can include, for example, a key to install or load on the device. The librarian may not require, however, the user to create credentials or register with the librarian before being permitted to access the content on the local cloud.

142 Citations

19 Claims

1. A method for authorizing access to content stored on a local cloud, the method comprising:
- receiving, at a librarian service operating on a master device, a request from a first device to provide a third device with access to the content stored on a second device, wherein;
  
  the first device and the second device are associated with a first user account,the third device is associated with a second user account, andthe librarian service selects the first and second devices to form the local cloud associated with the first user account based on one or more resources of each of the first and second devices made available for the local cloud;
  
  receiving, at the librarian service from the second device, an indication that the third device associated with the second user account is authorized to access the content stored on the second device;
  
  determining, at the librarian service, whether the third device associated with the second user account is known to the librarian service, wherein said determining involves determining whether the third device has been made available to the librarian service to form another local cloud;
  
  when the third device associated with the second user account is determined to be known to the librarian service;
  
  identifying credentials associated with the second user account, andwhen the credentials are already installed at the third device associated with the second user account, associating the credentials with the content to provide the third device authorization to access the content; and
  
  providing by the librarian service, addressing information for the local cloud to the third device associated with the second user account, wherein the addressing information is used by the third device to connect to the local cloud to gain access to the content stored on the second device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, further comprising:
    - identifying the first user account associated with the request; and
      
      determining access rights for the content based on the request.
  - 3. The method of claim 1, wherein the request comprises identifying information associated with the second user account.
  - 4. The method of claim 3, wherein the identifying information comprises at least one of:
    - an email address; and
      
      a telephone number.
  - 5. The method of claim 1, further comprising:
    - determining that the third device associated with the second user account is new to the librarian service; and
      
      generating new credentials for the second user account.
  - 6. The method of claim 1, wherein identifying credentials associated with the second user account comprises retrieving previously generated credentials associated with the second user account.
  - 7. The method of claim 1, further comprising:
    - adding the credentials to an access control list associated with the content.
  - 8. The method of claim 1, wherein providing the addressing information for the local cloud further comprises:
    - providing, to the third device associated with the second user account, a network address for at least one node of the local cloud.
  - 9. The method of claim 8, wherein:
    - the at least one node operates a service indicating how to access the content.
  - 10. The method of claim 1, further comprising:
    - adding the content to the another local cloud associated with the second user account.
  - 11. The method of claim 1, further comprising:
    - providing, to the third device associated with the second user account, an instruction to operate a particular application used to access the content.

12. An electronic device for controlling access to content in local clouds, the electronic device comprising a processor configured to:
- identify a plurality of devices associated with a first user account;
  
  define a local cloud comprising the plurality of devices associated with the first user account, wherein the local cloud is defined based on one or more resources of each device of the plurality of devices made available for the local cloud;
  
  receive, at a librarian service operating on the electronic device, a request from a first device in the local cloud to allow a third device access to the content stored on a second device in the local cloud, wherein the third device is associated with a second user account;
  
  receive, at the librarian service from the second device, an indication that the third device associated with the second user account is authorized to access the content stored on the second device;
  
  determine whether the third device associated with the second user account is known to the librarian service, wherein to determine whether the third device is known to the librarian service the processor is further configured to determine whether the third device has been made available to the librarian service to form another local cloud;
  
  when the third device associated with the second user account is determined to be known to the librarian service;
  
  identify credentials associated with the second user account, andwhen the credentials are already installed at the third device associated with the second user account, associate the credentials with the content to provide the third device authorization to access the content; and
  
  provide addressing information for the local cloud to the third device associated with the second user account, wherein the addressing information is used by the third device to connect to the local cloud to gain access to the content stored on the second device.
- View Dependent Claims (13, 14, 15, 16, 17)
- - 13. The electronic device of claim 12, wherein the processor is further configured to:
    - provide an indication to the third device associated with the second user account of available access to the local cloud.
  - 14. The electronic device of claim 13, wherein to provide the addressing information for the local cloud the processor is further configured to:
    - provide, to the third device associated with the second user account, a network address for at least one node of the local cloud.
  - 15. The electronic device of claim 12, wherein the processor is further configured to:
    - receive a request from the third device for available local clouds; and
      
      provide identifying information for the local cloud to the third device in response to receiving the request.
  - 16. The electronic device of claim 12, wherein the processor is further configured to:
    - determine that the third device is not known to the librarian service;
      
      generate new credentials for the second user account; and
      
      transmit the new credentials to the third device.
  - 17. The electronic device of claim 16, wherein the processor is further configured to:
    - associate the new credentials with an access list of the local cloud.

18. A non-transitory computer-readable storage medium storing instructions that, when executed by a processor included in a computing device, cause the computing device to authorize access to content stored on a local cloud, by carrying out steps that include:
- receiving, at a librarian service operating on a master device, a request from a first device to provide a third device with access to the content stored on a second device, wherein;
  
  the first device and the second device are associated with a first user account,the third device is associated with a second user account, andthe librarian service selects the first and second devices to form the local cloud associated with the first user account based on one or more resources of each of the first and second devices made available for the local cloud;
  
  receiving, at the librarian service from the second device, an indication that the third device associated with the second user account is authorized to access the content stored on the second device;
  
  determining, at the librarian service, whether the third device associated with the second user account is known to the librarian service, wherein said determining involves determining whether the third device has been made available to the librarian service to form another local cloud;
  
  when the third device associated with the second user account is determined to be known to the librarian service;
  
  identifying credentials associated with the second user account, andwhen the credentials are already installed at the third device associated with the second user account, associating the credentials with the content to provide the third device authorization to access the content; and
  
  providing, by the librarian service, addressing information for the local cloud to the third device associated with the second user account, wherein the addressing information is used by the third device to connect to the local cloud to gain access to the content stored on the second device.
- View Dependent Claims (19)
- - 19. The non-transitory computer-readable storage medium of claim 18, wherein the steps further include:
    - determining that the third device associated with the second user account is new to the librarian service; and
      
      generating new credentials for the second user account.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Apple Inc.
Inventors
Ryder, Scott
Primary Examiner(s)
REVAK, CHRISTOPHER A
Assistant Examiner(s)
Lakhia, Viral

Application Number

US12/766,337
Publication Number

US 20110265157A1
Time in Patent Office

2,321 Days
Field of Search

726/6
US Class Current

1/1
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/10   for controlling access to d...

H04L 67/10   in which an application is ...

H04L 67/1097   for distributed storage of ...

One step security system in a network storage system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

142 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

One step security system in a network storage system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

142 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links