Content access authentication for dynamic adaptive streaming over hypertext transfer protocol

US 9,980,136 B2
Filed: 10/26/2016
Issued: 05/22/2018
Est. Priority Date: 10/21/2013
Status: Active Grant

First Claim

Patent Images

1. An apparatus of a client operable to access HTTP DASH (dynamic adaptive streaming over hypertext transfer protocol) content from a content server, the client comprising one or more hardware processors and memory configured to:

signal, by the client, a first message for transmission to the content server, wherein the first message includes a request for a media presentation description (MPD) file from the content server;

decode, at the client, an MPD file received from the content server, wherein the MPD file includes;

a client authentication value for authenticating the client; and

a content access authorization value for authorizing access by the client to selected DASH content from the content server;

execute, at the client, a client authentication protocol indicated by the client authentication value and a content access authorization protocol indicated by the content access authorization value to determine that the client is authorized to access the selected DASH content at the content server and is a trusted client using the MPD file based on a received authorization message; and

signal, at the client, a second message for transmission to the content server, wherein the second message includes a request for the selected DASH content from the content server, when the client is successfully authenticated as an authenticated player and authorized to play back the selected DASH content indicated in the MPD file.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A technology that is operable to authenticate content access for dynamic adaptive streaming over hypertext transfer protocol (HTTP) (DASH) is disclosed. In one embodiment, a client device is configured with circuitry to communicate, to a content server, a request for a media presentation description (MPD). An MPD message is received from the content server indicating one or more content authorization elements to access content at the content server. A request for authorization of the client device to access content at the content server is communicated to an authorization server, when the client device is configured to perform the content authorization elements in the MPD message. An authorization message is received from the authorization server. A content request message requesting one or more DASH segments is communicated to the content server.

3 Citations

20 Claims

1. An apparatus of a client operable to access HTTP DASH (dynamic adaptive streaming over hypertext transfer protocol) content from a content server, the client comprising one or more hardware processors and memory configured to:
- signal, by the client, a first message for transmission to the content server, wherein the first message includes a request for a media presentation description (MPD) file from the content server;
  
  decode, at the client, an MPD file received from the content server, wherein the MPD file includes;
  
  a client authentication value for authenticating the client; and
  
  a content access authorization value for authorizing access by the client to selected DASH content from the content server;
  
  execute, at the client, a client authentication protocol indicated by the client authentication value and a content access authorization protocol indicated by the content access authorization value to determine that the client is authorized to access the selected DASH content at the content server and is a trusted client using the MPD file based on a received authorization message; and
  
  signal, at the client, a second message for transmission to the content server, wherein the second message includes a request for the selected DASH content from the content server, when the client is successfully authenticated as an authenticated player and authorized to play back the selected DASH content indicated in the MPD file.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The apparatus of claim 1, further comprising a transceiver configured to:
    - transmit, to the server, the first message that includes the request for the MPD file;
      
      receive the MPD file from the server; and
      
      transmit, to the server, the second message that includes the request for content from the server.
  - 3. The apparatus of claim 1, wherein the one or more processors and memory are further configured to decode the content received from the server for playback at the client.
  - 4. The apparatus of claim 1, wherein the client authentication value indicates the client authentication protocol that is supported at the server.
  - 5. The apparatus of claim 1, wherein the content access authorization value indicates the content access authorization protocol that is supported at the server.
  - 6. The apparatus of claim 1, wherein the content accessed from the server includes dynamic adaptive streaming over hypertext transfer protocol (HTTP) (DASH) content.
  - 7. The apparatus of claim 1, wherein the MPD file includes one or more descriptors that include the client authentication value and the content access authorization value.
  - 8. The apparatus of claim 1, wherein the client includes an antenna, a touch sensitive display screen, a speaker, a microphone, a graphics processor, an application processor, an internal memory, or a non-volatile memory port.

9. An apparatus of a content server operable to provide access to dynamic adaptive streaming over hypertext transfer protocol (HTTP) (DASH) content, the content server comprising one or more hardware processors and memory configured to:
- decode, by the hardware processor at the content server, a request for a media presentation description (MPD) file received from a client;
  
  signal, at the content server, an MPD file for transmission to the client, wherein the MPD file indicates a client authentication value and a content access authorization value for authorizing access by the client to selected DASH content from the content server;
  
  decode, at the content server, a content request message received from the client, wherein the content request message indicates a request for the selected DASH content; and
  
  signal, at the server, the selected DASH content for transmission to the client when the client is successfully authenticated as an authenticated player and authorized to play back the selected DASH content indicated in the MPD file, wherein the client is configured to execute a client authentication protocol indicated by the client authentication value and a content access authorization protocol indicated by the content access authorization value to determine that the client is authorized to access the selected DASH content at the content server and is a trusted client using the MPD file based on a received authorization message.
- View Dependent Claims (10, 11, 12, 13, 14, 15)
- - 10. The apparatus of claim 9, wherein the content request message includes a token indicating an authentication level and an authorization level of the client.
  - 11. The apparatus of claim 9, wherein the one or more processors and memory are further configured to restrict or deny access by the client to the DASH content at the server when the client is not configured to execute the client authentication protocol indicated by the client authentication value and the content access authorization protocol indicated by the content access authorization value.
  - 12. The apparatus of claim 9, wherein:
    - the MPD file includes client authentication protocol information for initiating a client authentication procedure; and
      
      the MPD file includes content access authorization protocol information for initiating a content access authorization procedure.
  - 13. The apparatus of claim 12, wherein the client authentication protocol information and the content access authorization protocol information include a uniform resource name (URN) associated with the client authentication procedure and the content access authorization procedure.
  - 14. The apparatus of claim 9, wherein the client authentication value and the content access authorization value are included in one or more descriptors in the MPD file, and the one or more descriptors are declared at a MPD hierarchy level of a common adaptation set, representation attributes and elements, or a sub-representation attributes and elements.
  - 15. The apparatus of claim 9, wherein the one or more processors and memory are further configured to provide the client with access to the DASH content using:
    - an Open Authentication Technical Committee (OATC) Online Multimedia Authorization Protocol (OMAP);
      
      an Open Standard for Authorization (OAuth) 2.0;
      
      an Organization for the Advancement of Structured Information Standards (OASIS) Security Assertion Markup Language (SAML);
      
      a Third Generation Partnership Project (3GPP) Generic Authentication Architecture (GAA);
      
      ora 3GPP Generic Bootstrapping Architecture (GBA).

16. At least one machine non-transitory readable storage medium having instructions embodied thereon for accessing dynamic adaptive streaming over hypertext transfer protocol (HTTP) (DASH) content from a content server, the instructions when executed perform the following:
- signaling, using one or more hardware processors at a client, a first message for transmission to the content server, wherein the first message includes a request for a media presentation description (MPD) file from the content server;
  
  decoding, using the one or more hardware processors at the client, the MPD file received from the content server, wherein the MPD file indicates a client authentication value and a content access authorization value for authorizing access by the client to selected DASH content from the content server;
  
  executing, using the one or more hardware processors at the client, a client authentication protocol indicated by the client authentication value and a content access authorization protocol indicated by the content access authorization value to determine that the client is authorized to access the selected DASH content at the content server and is a trusted client using the MPD file based on a received authorization message; and
  
  signaling, using the one or more hardware processors at the client, a second message for transmission to the content server, wherein the second message includes a request to access the selected DASH content from the content server, when the client is successfully authenticated as an authenticated player and authorized to play back the selected DASH content indicated in the MPD file.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The at least one machine readable storage medium of claim 16, further comprising instructions when executed perform the following:
    - decoding the DASH content received from the server for playback at the client.
  - 18. The at least one machine readable storage medium of claim 16, wherein the client authentication value indicates the client authentication protocol that is supported at the server.
  - 19. The at least one machine readable storage medium of claim 16, wherein the content access authorization value indicates the content access authorization protocol that is supported at the server.
  - 20. The at least one machine readable storage medium of claim 16, wherein the MPD file includes one or more descriptors that include the client authentication value and the content access authorization value.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Intel IP Corporation (Intel Corporation)
Inventors
Oyman, Ozgur
Primary Examiner(s)
Chai, Longbit

Application Number

US15/335,307
Publication Number

US 20170303121A1
Time in Patent Office

573 Days
Field of Search

726 7
US Class Current
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/0876   based on the identity of th...

H04L 63/10   for controlling access to d...

H04L 65/1059   End-user terminal functiona...

H04L 65/61   for supporting one-way stre...

H04L 65/612   for unicast

H04L 65/613   for the control of the sour...

H04L 65/75   Media network packet handling

H04L 65/80   Responding to QoS

H04L 67/01   Protocols

H04L 67/02   based on web technology, e....

H04W 12/069   using certificates or pre-s...

Y02D 30/70   in wireless communication n...

Content access authentication for dynamic adaptive streaming over hypertext transfer protocol

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

3 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Content access authentication for dynamic adaptive streaming over hypertext transfer protocol

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

3 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links