Method and apparatus for ensuring security of remote user interface session using out-of-band communication

US 8,966,641 B2
Filed: 06/26/2008
Issued: 02/24/2015
Est. Priority Date: 06/29/2007
Status: Active Grant

First Claim

Patent Images

1. A method of ensuring security of a session of a first server with respect to a first client, the method comprising:

providing, by the first server, user interfaces related to predetermined contents to the first client;

transmitting, by the first server, data related to a process in need of security to a second client while the first client selects a user interface related to the process from among the user interfaces; and

receiving, by the first server, a result of performing the process from the second client by using the transmitted data,wherein the second client communicates directly with a second server providing the predetermined contents to perform the process, andwherein the second client is searched for by the first server in response to the first client selecting the user interface related to the process, the first server receives information from the second client in response to the search, based on which at least one of an application for performing the process and a uniform resource location (URL) address used to download the application for performing the process is transmitted by the first server to the second client, and the second client installs the application to perform the process.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus for ensuring security of a session. In the method, a first client selects a user interface related to a process in need of security from among user interfaces related to predetermined contents provided from a first server, and a first client or a second client communicates directly with a second server operated by a contents provider to perform the process in need of security and notifies the first server of the performing result. Thus, it is not required to transmit/receive security information via the first server.

12 Citations

26 Claims

1. A method of ensuring security of a session of a first server with respect to a first client, the method comprising:
- providing, by the first server, user interfaces related to predetermined contents to the first client;
  
  transmitting, by the first server, data related to a process in need of security to a second client while the first client selects a user interface related to the process from among the user interfaces; and
  
  receiving, by the first server, a result of performing the process from the second client by using the transmitted data,wherein the second client communicates directly with a second server providing the predetermined contents to perform the process, andwherein the second client is searched for by the first server in response to the first client selecting the user interface related to the process, the first server receives information from the second client in response to the search, based on which at least one of an application for performing the process and a uniform resource location (URL) address used to download the application for performing the process is transmitted by the first server to the second client, and the second client installs the application to perform the process.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, wherein the first server is a remote user interface server (RUIS) and the first client is a remote user interface client (RUIC).
  - 3. The method of claim 2, wherein the first server, the first client and the second client are devices of a home network.
  - 4. The method of claim 3, wherein the transmitting of the data comprises:
    - receiving information regarding at least one of an execution environment and a security mechanism of the application for performing the process from at least one of the first client and the second client; and
      
      transmitting at least one of the application for performing the process and the uniform resource location (URL) address used to download the application for performing the process to the first client or the second client, based on the received information.
  - 5. The method of claim 4, wherein the receiving of the information regarding at least one of the execution environment and the security mechanism of the application comprises receiving information regarding at least one of the execution environment and the security mechanism of the application for performing the process from at least one of the first client and the second client by using at least one of a device description and a service description that are defined in the home network.
  - 6. The method of claim 3, wherein the first server is an Internet protocol television (IPTV) set top box, and the first client is a TV.
  - 7. The method of claim 1, wherein the process is related to payment for the predetermined contents.
  - 8. The method of claim 1, wherein the first server receives information regarding a security mechanism of the application for performing the process from the second client in response to the search.

9. A method of ensuring security of a session of a first client with respect to a first server, the method comprising:
- receiving, by the first client, user interfaces related to predetermined contents from the first server;
  
  selecting, by the first client, a user interface related to a process in need of security from among the user interfaces; and
  
  receiving, by the first client, a user interface related to a result of performing the process from the first server, according to the selection,wherein a second client communicates directly with a second server providing the predetermined contents to perform the process, and transmits the result of performing the process to the first server, andwherein the second client is searched for by the first server in response to the first client selecting the user interface related to the process, the first server receives information from the second client in response to the search, based on which at least one of an application for performing the process and a uniform resource location (URL) address used to download the application for performing the process is transmitted by the first server to the second client, and the second client installs the application to perform the process.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
- - 10. The method of claim 9, wherein the first server is an RUIS, and the first client is an RUIC.
  - 11. The method of claim 10, wherein the first server, the first client and the second client are devices of a home network.
  - 12. The method of claim 11, wherein the receiving of the user interface related to the result of performing the process comprises:
    - receiving at least one of the application for performing the process and the URL used to download the application for performing the process from the first server;
      
      installing the application for performing the process, based on the received application or the URL;
      
      executing the installed application to perform the process;
      
      transmitting a result of performing the process to the first server; and
      
      receiving a user interface related to the result from the first server.
  - 13. The method of claim 12, wherein the receiving of at least one of the application for performing the process and the URL used to download the application for performing the process comprises:
    - transmitting information regarding at least one of an execution environment and a security mechanism of the application for performing the process of the first client to the first server; and
      
      receiving at least one of the application for performing the process and the URL used to download the application for performing the process, which are transmitted by the first server, according to the transmitted information.
  - 14. The method of claim 13, wherein the transmitting of the information regarding at least one of the execution environment and the security mechanism of the application of the first client comprises transmitting information regarding at least one of the execution environment and the security mechanism of the application for performing the process of the first client by using at least one of a device description and a service description that are defined in the home network.
  - 15. The method of claim 11, wherein the second client receives at least one of an application for performing the process and a URL used to download the application for performing the process from the first server, installs and executes the application for performing the process, based on the received application or the URL to perform the process, and then transmits a result of performing the process to the first server.
  - 16. The method of claim 9, wherein the first server is an Internet protocol television (IPTV) set top box, and the first client is a TV.
  - 17. The method of claim 9, wherein the process is related to payment for the predetermined contents.

18. An apparatus operating as a first server for ensuring security of a session of the first server with respect to a first client, the apparatus comprising:
- an interface providing unit comprising circuitry which provides user interfaces related to predetermined contents to the first client; and
  
  a process controlling unit comprising circuitry which transmits data related to a process in need of security to a second client as the first client selects a user interface related to the process in need of security from among the user interfaces, and receives a result of performing the process by using the transmitted data from the second client,wherein the second client communicates directly with a second server to perform the process, andwherein if the data related to the process is transmitted to the second client, the second client is searched for by the first server in response to the first client selecting the user interface related to the process, the first server receives information from the second client in response to the search, based on which at least one of an application for performing the process and a uniform resource location (URL) address used to download the application for performing the process is transmitted by the process controlling unit to the second client.
- View Dependent Claims (19, 20, 21, 22, 23)
- - 19. The apparatus of claim 18, wherein the first server is an RUIS, and the first client is an RUIC.
  - 20. The apparatus of claim 19, wherein the first server, the first client and the second client are devices of a home network.
  - 21. The apparatus of claim 20, wherein the process controlling unit receives information regarding at least one of an execution environment and a security mechanism of an application for performing the process from at least one of the first client and the second client, and transmits at least one of the application for performing the process and the URL used to download the application for performing the process to the first client or the second client, based on the received information.
  - 22. The apparatus of claim 21, wherein the process controlling unit receives information regarding at least one of the execution environment and the security mechanism of the application for performing the process from at least one of the first client and the second client by using at least one of a device description and a service description that are defined in the home network.
  - 23. The apparatus of claim 18, wherein the process is related to payment for the predetermined contents.

24. An apparatus of a second client for ensuring security of a session between a first server and a first client, the apparatus comprising:
- a process controlling unit comprising circuitry which receives data related to a process in need of security while the first client receives user interfaces related to predetermined contents from the first server and selects a user interface related to the process from among the received user interfaces, the second client being searched for by the first server in response to the first client selecting the user interface related to the process, the second client transmitting information to the first server in response to the search, based on which at least one of an application for performing the process and a uniform resource locator (URL) address used to download the application for performing the process is received from the first server, and the second client installing the application to perform the process; and
  
  a processing performing unit comprising circuitry which communicates directly with a second server providing the predetermined contents to perform the process, based on the received data,wherein the process controlling unit transmits the result of performing the process to the first server.

25. A non-transitory computer readable recording medium having recorded thereon a program for executing a method of ensuring security of a session of a first server with respect to a first client, the method comprising:
- providing, by the first server, user interfaces related to predetermined contents to the first client;
  
  transmitting, by the first server, data related to a process in need of security to the first client or a second client while the first client selects a user interface related to the process from among the user interfaces; and
  
  receiving, by the first server, a result of performing the process from the first client or the second client by using the transmitted data,wherein the first client or the second client communicates directly with a second server providing the predetermined contents to perform the process, andwherein if the data related to the process is transmitted to the second client, the second client is searched for by the first server in response to the first client selecting the user interface related to the process, the first server receives information from the second client in response to the search, based on which at least one of an application for performing the process and a uniform resource location (URL) address used to download the application for performing the process is transmitted by the first server to the second client, and the second client installs the application.

26. A non-transitory computer readable recording medium having recorded thereon a program for executing a method of ensuring security of a session of a first client with respect to a first server, the method comprising:
- receiving, by the first client, user interfaces related to predetermined contents from the first server;
  
  selecting, by the first client, a user interface related to a process in need of security from among the user interfaces; and
  
  receiving, by the first client, a user interface related to a result of performing the process from the first server, according to the selection,wherein the first client or a second client communicates directly with a second server providing the predetermined contents to perform the process, and transmits the result of performing the process to the first server, andif the second client communicates directly with the second server, the second client is searched for by the first server in response to the first client selecting the user interface related to the process, the first server receives information from the second client in response to the search, based on which at least one of an application for performing the process and a uniform resource location (URL) address used to download the application for performing the process is transmitted by the first server to the second client, and the second client installs the application.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
Samsung Electronics Co. Ltd.
Inventors
Jung, Dong-shin, Lee, Joo-yeol
Primary Examiner(s)
SIMITOSKI, MICHAEL J

Application Number

US12/146,502
Publication Number

US 20090007225A1
Time in Patent Office

2,434 Days
Field of Search

726/1, 726/2, 726/21, 726 26- 30
US Class Current

726/26
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 2221/2135   Metering

G06Q 30/06   Buying, selling or leasing ...

H04L 63/20   for managing network securi...

Method and apparatus for ensuring security of remote user interface session using out-of-band communication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

12 Citations

26 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for ensuring security of remote user interface session using out-of-band communication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

12 Citations

26 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links