System and methods for assignation and use of media content subscription service privileges
First Claim
1. A method, comprising:
- receiving, at a media device, a first certificate associated with a first user from a personal identification device after the first user is biometrically-authenticated at the personal identification device, the first certificate having a subscription privilege associated with the first user;
sending a string from the media device to the personal identification device such that the personal identification device encrypts the string using a private key uniquely associated with the first certificate and sends the encrypted string to the media device;
decrypting, at the media device, the encrypted string to verify an authenticity of the first certificate when the decrypted string matches the string;
receiving, at the media device, a second certificate from the personal identification device after the first user is biometrically-authenticated at the personal identification device, the second certificate being associated with a second user and having a plurality of subscription privileges including the subscription privilege, the first certificate being based on the second certificate; and
receiving, at the media device, media from a media provider based on the first certificate after the second certificate is received at the media device and the first certificate is verified, the media provider preventing the media associated with the first certificate from being sent to the media device until the second certificate is received at the media device and the first certificate is verified.
4 Assignments
0 Petitions
Accused Products
Abstract
This invention describes a system and methods for media content subscription service distribution; typical services include cable television, premium content channels, pay-per-view, XM radio, and online mp3 services. Subscribers use portable electronic devices to store digital certificates certifying the subscriber'"'"'s privileges and an assigned public key. The devices can communicate with specially enabled televisions, radios, computers, or other media presentation apparatuses. These, in turn, can communicate with central databases owned by the provider, for verification purposes. Methods of the invention describe media content subscription service privilege issuing and use. The invention additionally describes methods for protecting media content transmitted to users with a variety of encryption schemes. The invention also comprises methods for subscribed users to bestow a subset of their privileges to a number of secondary users, with appropriate permission from the media content subscription service provider.
142 Citations
24 Claims
-
1. A method, comprising:
-
receiving, at a media device, a first certificate associated with a first user from a personal identification device after the first user is biometrically-authenticated at the personal identification device, the first certificate having a subscription privilege associated with the first user; sending a string from the media device to the personal identification device such that the personal identification device encrypts the string using a private key uniquely associated with the first certificate and sends the encrypted string to the media device; decrypting, at the media device, the encrypted string to verify an authenticity of the first certificate when the decrypted string matches the string; receiving, at the media device, a second certificate from the personal identification device after the first user is biometrically-authenticated at the personal identification device, the second certificate being associated with a second user and having a plurality of subscription privileges including the subscription privilege, the first certificate being based on the second certificate; and receiving, at the media device, media from a media provider based on the first certificate after the second certificate is received at the media device and the first certificate is verified, the media provider preventing the media associated with the first certificate from being sent to the media device until the second certificate is received at the media device and the first certificate is verified. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A non-transitory processor-readable medium storing code representing instructions to cause a processor to perform a process, the code comprising code to:
-
authenticate, at a first personal identification device, a biometric input of a first user based on a biometric template of the first user stored at the first personal identification device, the first personal identification device storing a first certificate having a plurality of subscription privileges associated with the first user; generate, at the first personal identification device, a second certificate associated with a second user based on the first certificate, the second certificate having at least one subscription privilege from the plurality of subscription privileges associated with the first user; and send the first certificate and the second certificate from the first personal identification device to a second personal identification device associated with the second user such that the second user is permitted to access media associated with the at least one subscription privilege of the second certificate from a media provider based on the first certificate and the second certificate. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A non-transitory processor-readable medium storing code representing instructions to cause a processor to perform a process, the code comprising code to:
-
authenticate, at a personal identification device at a first location, a biometric input of a first user based on a biometric template of the first user stored at the personal identification device; send a first subscription privilege associated with the first user from the personal identification device to a first media device at the first location when the biometric input of the first user is authentic such that the first media device outputs media associated with the first subscription privilege from a media provider only after receiving the first subscription privilege from the personal identification device; authenticate, at the personal identification device at a second location, a biometric input of a second user based on a biometric template of the second user stored at the personal identification device; and send a second subscription privilege associated with the second user from the personal identification device to a second media device at the second location when the biometric input of the second user is authentic such that the second media device outputs media associated with the second subscription privilege from the media provider only after receiving the second subscription privilege from the personal identification device. - View Dependent Claims (20, 21, 22, 23, 24)
-
Specification