Methods and apparatus for premises content distribution
First Claim
1. A method of sharing protected digital content between two client premises devices associated with a premises network, comprising:
- storing protected digital content at a first of said two client premises devices;
said first client premises device authenticating a second of said client premises devices requesting access to said protected digital content from said first client premises device, said authentication comprising determining rights of said second client premises device to access said protected digital content, and said first and second client premises devices thereby creating an authorized service domain (ASD) for maintaining protection of said protected digital content;
selectively providing access to said second client premises device for browsing said protected digital content;
receiving a request for transmission of at least a portion of said protected digital content; and
said first client premises device selectively transmitting said at least portion of said protected digital content to said second client premises device while maintaining said content protection;
wherein said selective transmission is conducted entirely between said two client premises devices, and is irrespective of any network entities outside said premises network.
7 Assignments
0 Petitions
Accused Products
Abstract
Apparatus and methods for protected content access, browsing and transfer over a network. In one embodiment, the network comprises a premises (e.g., residential) LAN, and the apparatus comprises a server and renderer consumer premise equipment (CPE). The renderer CPE scans the network to search for a server CPE that implement a compatible security framework. The renderer authenticates itself with the server, and the server allows content browsing and selection access only to an authorized and authenticated renderer. A negotiation and exchange protocol comprises messages exchanged between the renderer and the server that include one or more of device identification, encryption key exchange, digital certificates and information regarding security package used by each CPE.
134 Citations
36 Claims
-
1. A method of sharing protected digital content between two client premises devices associated with a premises network, comprising:
-
storing protected digital content at a first of said two client premises devices; said first client premises device authenticating a second of said client premises devices requesting access to said protected digital content from said first client premises device, said authentication comprising determining rights of said second client premises device to access said protected digital content, and said first and second client premises devices thereby creating an authorized service domain (ASD) for maintaining protection of said protected digital content; selectively providing access to said second client premises device for browsing said protected digital content; receiving a request for transmission of at least a portion of said protected digital content; and said first client premises device selectively transmitting said at least portion of said protected digital content to said second client premises device while maintaining said content protection; wherein said selective transmission is conducted entirely between said two client premises devices, and is irrespective of any network entities outside said premises network. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. User premises apparatus configured as a content server for one or more devices over a user premises network, said user premises server apparatus comprising:
-
storage apparatus configured to store a plurality of digital content; authentication apparatus configured to authenticate at least one device requesting content from said server apparatus; browsing apparatus configured to enable at least one requesting device to browse a directory of available ones of said plurality of content; and security apparatus configured to control access to said content by said browsing apparatus based at least in part on successful authentication of said at least one requesting device, said browsing apparatus and said at least one requesting device comprising an authorized service domain (ASD) for protection of said content. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A system for sharing protected digital content over a premises network, said system comprising at least a first device in communication with said premises network, said first device configured to:
-
receive said protected content over an interface to a content delivery network; store said content on said first device; receive a query from a second device in communication with said premises network, said query requesting security framework capabilities of said first device; receive in response to an answer to said query, a request for access to said content from said second device; authenticate said second device when said second device requests access to said digital content from said first device, said authentication comprising verification that said second device is compatible with said security framework capabilities of said first device; create an authorized service domain (ASD) comprising said first and second devices, said ASD configured to maintain protection of said protected digital content; selectively provide access to said second device for browsing said stored digital content; receive a request for transmission of at least a portion of said content; and selectively transmit said at least portion of said content to said second device while maintaining said content protection. - View Dependent Claims (16, 17, 18)
-
-
19. A method of providing a premises network configured to enable sharing of plurality of protected content between a plurality of devices associated with said premises network without requiring said plurality of devices to access a remote network agent, said method comprising:
-
storing said plurality of protected content at a first of said plurality of devices; creating a directory of said plurality of protected content, said directory indicating at least a title for individual ones of said plurality of protected content; establishing an authorized service domain (ASD) for maintaining protection of said plurality of protected content, said plurality of devices communicating within said ASD via said premises network; authenticating a second of said plurality of devices to said first of said plurality of devices via said ASD to enable communication of content therebetween; selectively providing access to said second of said plurality of devices to said directory, said access enabling said second of said plurality of devices to browse said plurality of protected content stored at said first of said plurality of devices by at least said titles; and upon receipt of a selection of at least one of said plurality of protected content, transmitting said at least one of said plurality of protected content and digital copyright data relating thereto to said second of said plurality of devices; wherein said transmission of said at least one of said plurality of protected content and said digital copyright data relating thereto to said second of said plurality of devices is based at least in part on said authentication; and wherein said transmission of said at least one of said plurality of protected content occurs in an absence of intervention by entities outside said premises network. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27)
-
-
28. A first consumer device in communication with a premises network for sharing protected digital content over said premises network, said first device comprising:
-
a first interface configured to receive said protected content from a content delivery network; a second interface configured to communicate with a second device in said premises network; a storage entity configured to store said protected content; a processor comprising at least one computer program configured to; receive from said second device a request for security framework capabilities of said first device; provide said security framework capabilities of said first device to said second device via said second interface; receive a request for access to said protected content from said second device; authenticate said second device as being within an authorized service domain (ASD); transmit a directory of said protected content stored at said first device to said second device for browsing thereof; receive a selection of an individual one of said protected content; and selectively transmit said individual one of said protected content to said second device while maintaining said content protection. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36)
-
Specification