Discovery, access control, and communication with networked services
First Claim
Patent Images
1. A system comprising:
- a television executing a discoverable service thereon to provide a communication;
a device residing in a same private network of Internet as the television, the device executing a sandboxed program thereon, and the device configured to use a pseudonym of a user and to call a discovery agent to find the discoverable service of the television within the same private network,wherein the pseudonym of the user is a hardware address of a node of the sandboxed program within the same private network, andwherein the device and the television are associated using at least the communication from the discoverable service within the same private network, the communication comprising an announcement of the discoverable service to a discovery service;
a server executing the discovery service thereon to;
receive the announcement of the discoverable service,translate, through a network address translator straddling both a public network and the same private network of the Internet, a private address of a message related to the announcement of the discoverable service to a public address thereof,perform, through the discovery service, a lookup based on the public address of the message to determine at least one device comprising the television assumed to be in the same private network as the sandboxed program in accordance with the public address being shared therebetween,respond, in accordance with the determination of the shared public address, with service information of the television obtainable through the sandboxed program, the service information comprising a globally unique identification (GUID) and a human-friendly name of the television, andforward, through the discovery service, a desired payload to the discoverable service of the television based on the sandboxed program obtaining the service information to communicate with the GUID of the discoverable service of the television through the network address translator to the discovery service; and
a targeting system to;
receive the pseudonym,identify the user of the device using the pseudonym, andtarget advertising to the identified user of the device using at least one of the sandboxed program and the discoverable service.
3 Assignments
0 Petitions
Accused Products
Abstract
Particular embodiments permit a computer program running within a security sandbox to discover and communicate with networked services for example print servers, or remote control programming interfaces for TVs, stereos, and game boxes. The sandbox allows the computer program to originate unicast connections to a limited set of hosts but otherwise provides no access to the network. Particular embodiments may require no prior install, zero configuration, no account names or passwords, and yet resists spam. This is achieved by using centralized global infrastructure to coordinate the communications rather than local multicast, anycast, or datalink broadcast.
-
Citations
25 Claims
-
1. A system comprising:
-
a television executing a discoverable service thereon to provide a communication; a device residing in a same private network of Internet as the television, the device executing a sandboxed program thereon, and the device configured to use a pseudonym of a user and to call a discovery agent to find the discoverable service of the television within the same private network, wherein the pseudonym of the user is a hardware address of a node of the sandboxed program within the same private network, and wherein the device and the television are associated using at least the communication from the discoverable service within the same private network, the communication comprising an announcement of the discoverable service to a discovery service; a server executing the discovery service thereon to; receive the announcement of the discoverable service, translate, through a network address translator straddling both a public network and the same private network of the Internet, a private address of a message related to the announcement of the discoverable service to a public address thereof, perform, through the discovery service, a lookup based on the public address of the message to determine at least one device comprising the television assumed to be in the same private network as the sandboxed program in accordance with the public address being shared therebetween, respond, in accordance with the determination of the shared public address, with service information of the television obtainable through the sandboxed program, the service information comprising a globally unique identification (GUID) and a human-friendly name of the television, and forward, through the discovery service, a desired payload to the discoverable service of the television based on the sandboxed program obtaining the service information to communicate with the GUID of the discoverable service of the television through the network address translator to the discovery service; and a targeting system to; receive the pseudonym, identify the user of the device using the pseudonym, and target advertising to the identified user of the device using at least one of the sandboxed program and the discoverable service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system comprising:
-
a television executing a discoverable service thereon to provide a communication; a device residing in a same private network of Internet as the television, and executing a sandboxed program thereon to use a pseudonym of a user and to call a discovery agent to find the discoverable service, wherein the pseudonym of the user is a hardware address of a node of the sandboxed program within the same private network, and wherein the device and the television are associated using at least the communication from the discoverable service within the same private network, the communication comprising an announcement of the discoverable service to a discovery service; a server executing the discovery service thereon to; receive the announcement of the discoverable service, translate, through a network address translator straddling both a public network and the same private network of the Internet, a private address of a message related to the announcement of the discoverable service to a public address thereof, perform, through the discovery service, a lookup based on the public address of the message to determine at least one device comprising the television assumed to be in the same private network as the sandboxed program in accordance with the public address being shared therebetween, respond, in accordance with the determination of the shared public address, with service information of the television obtainable through the sandboxed program, the service information comprising a GUID and a human-friendly name of the television, and forward, through the discovery service, a desired payload to the discoverable service of the television based on the sandboxed program obtaining the service information to communicate with the GUID of the discoverable service of the television through the network address translator to the discovery service; and a targeting system to; receive the pseudonym, identify the user of the device using the pseudonym, and target advertising to the identified user of the device. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
-
18. A method comprising:
-
initiating a discoverable service executing on a television to provide a communication; executing a sandboxed program on a device residing in a same private network of Internet as the television to use a pseudonym of a user and to call a discovery agent to find the discoverable service of the television within the same private network, wherein the pseudonym of the user is a hardware address of a node of the sandboxed program within the same private network, and wherein the device and the television are associated using at least the communication from the discoverable service within the same private network, the communication comprising an announcement of the discoverable service to a discovery service; receiving, through a server executing the discovery service thereon, the announcement of the discoverable service; translating, through a network address translator straddling both a public network and the same private network of the Internet, a private address of a message related to the announcement of the discoverable service to a public address thereof; performing, through the discovery service, a lookup based on the public address of the message to determine at least one device comprising the television assumed to be in the same private network as the sandboxed program in accordance with the public address being shared therebetween; responding, in accordance with the determination of the shared public address, with service information of the television obtainable through the sandboxed program, the service information comprising a GUID and a human-friendly name of the television; forwarding, through the discovery service, a desired payload to the discoverable service of the television based on the sandboxed program obtaining the service information to communicate with the GUID of the discoverable service of the television through the network address translator to the discovery service; receiving the pseudonym from the sandboxed program using a targeting system; identifying, through the targeting system, the user of the device using the pseudonym; and targeting, through the targeting system, an advertisement to the identified user of the device using at least one of the sandboxed program and the discoverable service. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25)
-
Specification