CN1378743A - Impulse pay per use method and system for data and multimedia service - Google Patents

Impulse pay per use method and system for data and multimedia service Download PDF

Info

Publication number
CN1378743A
CN1378743A CN00813898A CN00813898A CN1378743A CN 1378743 A CN1378743 A CN 1378743A CN 00813898 A CN00813898 A CN 00813898A CN 00813898 A CN00813898 A CN 00813898A CN 1378743 A CN1378743 A CN 1378743A
Authority
CN
China
Prior art keywords
access controller
user
service
user terminal
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN00813898A
Other languages
Chinese (zh)
Other versions
CN1174620C (en
Inventor
R·沙法迪
E·J·史普克
D·麦科夫卡
R·邦坦皮
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Arris Technology Inc
Original Assignee
General Instrument Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by General Instrument Corp filed Critical General Instrument Corp
Publication of CN1378743A publication Critical patent/CN1378743A/en
Application granted granted Critical
Publication of CN1174620C publication Critical patent/CN1174620C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/47End-user applications
    • H04N21/472End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content
    • H04N21/47211End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content for requesting pay-per-view content
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/14Payment architectures specially adapted for billing systems
    • G06Q20/145Payments according to the detected use or quantity
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F17/00Coin-freed apparatus for hiring articles; Coin-freed facilities or services
    • G07F17/16Coin-freed apparatus for hiring articles; Coin-freed facilities or services for devices exhibiting advertisements, announcements, pictures or the like
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/254Management at additional data server, e.g. shopping server, rights management server
    • H04N21/2543Billing, e.g. for subscription services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/258Client or end-user data management, e.g. managing client capabilities, user preferences or demographics, processing of multiple end-users preferences to derive collaborative data
    • H04N21/25866Management of end-user data
    • H04N21/25875Management of end-user data involving end-user authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/47End-user applications
    • H04N21/478Supplemental services, e.g. displaying phone caller identification, shopping application
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/61Network physical structure; Signal processing
    • H04N21/6106Network physical structure; Signal processing specially adapted to the downstream path of the transmission network
    • H04N21/6125Network physical structure; Signal processing specially adapted to the downstream path of the transmission network involving transmission via Internet
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/633Control signals issued by server directed to the network components or client
    • H04N21/6332Control signals issued by server directed to the network components or client directed to client
    • H04N21/6334Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
    • H04N21/63345Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key by transmitting keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/162Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing
    • H04N7/165Centralised control of user terminal ; Registering at central
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/167Systems rendering the television signal unintelligible and subsequently intelligible
    • H04N7/1675Providing digital key or authorisation information for generation or regeneration of the scrambling sequence
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/173Analogue secrecy systems; Analogue subscription systems with two-way working, e.g. subscriber sending a programme selection signal
    • H04N2007/1739Analogue secrecy systems; Analogue subscription systems with two-way working, e.g. subscriber sending a programme selection signal the upstream communication being transmitted via a separate link, e.g. telephone line

Landscapes

  • Engineering & Computer Science (AREA)
  • Multimedia (AREA)
  • Signal Processing (AREA)
  • Business, Economics & Management (AREA)
  • Databases & Information Systems (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Human Computer Interaction (AREA)
  • Computer Graphics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

A method and system are provided for impulse purchasing of services over a communication network, such as a cable or satellite television network. Such services can include games or information accompanying television programming, home-shopping, e-mail services, streaming media and the like. Security is provided through entitlements generated by the access controller (14) and entitlement tokens generated by a secure processor. The secure processor is located at a subscriber terminal (16) through which a subscriber orders and obtains the services. A token is generated when the subscriber either selects the service, if pre-authorized, or when the service is purchased on impulse. The token is secured and signed, and may be used by a policy/proxy server (18) subtending to the NO's ISP and associated services to further facilitate offering these services to the subscribers.

Description

The impulse pay per use method and the system that are used for data and multimedia service
Present patent application requires the 60/149th, No. 263 interests in application on August 17th, 1999 of U.S. Provisional Application.
Background of invention
The present invention is relevant with communication network, and for example cable TV, satellite television and computer network etc. are served on these networks and all can be charged, and especially the method and system of purchase data and multimedia service are relevant via these networks with permission.
Wired and satellite television network, wherein Video service is charged, by the people is known.Same people is known to be computer network services, for example internet, America Online (AmericanOn-Line), Computer Service (Compuserve) and other have from the general information to the amusement computer network services to different application type websites such as electronic business transaction, and they are all charged in the fixing mode of monthly fee.In the past, wired and satellite network provides single TV service on the basis of impromptu each purchase, this " impromptu each paying " (impulse pay-per-view, IPPV) service comprises telecine or special sports, and wherein spectators can pay certain expense and order once service.
Providing of each paid service, the position that stands in the consumer are necessary, because the consumer only needs to pay with regard to required services pay and when enjoying them.Each success of paying no matter it is film or sports, has impelled Systems Operator and programmer to consider to provide extra service with each mode of paying.
The consequence of an organic growth of each way of paying will provide the ability based on the service of data and multimedia application.These services can include, but is not limited to play or follow information, home shopping, E-mail service of TV programme or the like.For such service is provided, must carry out acceptable safety measure.In the subscription television field, for example satellite and cable TV utilize visit (CA) technology of having ready conditions to guarantee safety.
With TV service IPPV have ready conditions the visit expand to newly be applied as the basis service be easily.It is particularly advantageous in need not new foundation structure and supports under the situation of these characteristics, expands this visit of having ready conditions, that is provides simple expansion to development system." impromptu each paying " that enabling user terminal (for example before only employed interactive television decoder box in video IPPV service) provides the video video or be accompanied by video (IPPV) serves, and be then more convenient.
The invention provides method and system with aforementioned advantages and other advantage.
Summary of the invention
A kind of method and system is provided, can have obtained safe impromptu each paying (IPPU) service from communication network with this.
In a simplified embodiment, the user User IP PU is selected to send (for example " calling out in advance " (call-ahead) under the situation via phone, or under the situation of authorizing in advance via user terminal) to an access controller.This access controller generates an enciphered message, this enciphered message has a service identifier and selects relevant mandate to set with User IP PU, and the expense that this enciphered message and user-selected IPPU serve is delivered to user's terminal subsequently from access controller.User terminal verifies that the expense of this IPPU selection is within user's credit line.Be proved to be successful as this, user terminal generates the qualification token (entitlement token) of a safety, uses for a client applications that resides on the user terminal.This qualification token also can generate and be transferred to user terminal by access controller.Client applications sends the qualification token to a server (for example agency/strategic server) with certain secured fashion subsequently, selects the state of user's qualification with decision to accepting IPPU.If select accepting this IPPU, user's qualification has obtained checking, and server will further be handled this IPPU and select, so that selected service/application is used by spectators.
This server can be a separate the Internet service supplier (ISP) agency/strategic server, be attached to the wired operator of certain multisystem (Multiple System Cable Operator, or the similar service device MSO) or an ISP agency/strategic server of the agency/strategy/strategic server of other network operator (NO), a NO agency/strategy/strategic server.
In an alternative embodiment, it is to deliver to a client response center (CRC)/accounting system earlier that IPPU selects, and access controller is selected to be transferred to IPPU again by this system.Accounting system is selected render bill to user's IPPU.
Under the situation of one " virtual CRC " configuration, wherein communicating by letter provides via a global communications network (internet just) or similar network, and User IP PU selects and can be sent to the CRC/ accounting system at the web browser of carrying out on the user terminal and the webserver on accounting system via one.
As the some of communicating by letter of carrying out with access controller, accounting system can go to increase the related service of User IP PU selection by the initiated access controller, and this is a process of separating with the process of informing access controller, authorized this service of visit of which user.
Be widely known by the people in industrial circle at this used " accounting system " this noun, than the computer of an only record keeping come broad sense.In general, accounting system refers to the business system that can carry out the network operator operation and have Account Disposal, system configuration and commercial operation function.
In an alternative embodiment, safe qualification token is a process signature and encrypted qualification token, and this process signature and encrypted qualification token are delivered on the server to do discriminating and decoding from client's application end safely.Can (such as) user's privacy key comes encrypting the qualification token.Agency/strategic server can use user's public-key cryptography to come this qualification token is decrypted subsequently.Perhaps, also can utilize the secret key encryption mode of symmetry to come this token is encrypted.For example, this token can be utilized data encryption standard (DES) technology and encrypted, and along with the DES key transmits, this DES key is to utilize a public-key cryptography relevant with server and encrypted (DES is a kind of encryption standard, at U.S. Patent number 3,962, this is described on 593).This server uses its privacy key to be decrypted and to utilize the DES key of this deciphering to come this token is decrypted to the DES key.The qualification token can generate on the access controller or on user terminal.
In another embodiment, service identifier (service identifier) code and the data object relevant with one or more services is associated, regularly they is sent to user terminal from access controller.
Access controller can be a local access controller or a nationwide access controller.
IPPU service may comprise visit some website (sites), the streaming video (streaming media) of packing into from these websites, download multimedia application, content, shopping, Email, the voice mail of visit on these stations or similar service from these websites.
User terminal can be that a cable TV interactive television decoder box, Digital Television or one have the main frame of allocative abilities, a personal computer or its like device.
In an alternative embodiment, on user terminal, under a predetermined credit line, User IP PU selects to be authorized in advance.Prior mandate to IPPU allows the user to ask local authorize (for example on user terminal).User terminal can cut with User IP PU from credit line and select relevant expense.
In order to prevent that IPPU from selecting to be rejected, user terminal can be selected to access controller report User IP PU safely.
Corresponding method and system below will be provided.
Description of drawings
Fig. 1 is a calcspar according to system of the present invention;
Fig. 2 is a calcspar according to the associated component of user terminal of the present invention.
Detailed Description Of The Invention
According to the present invention, the previous impromptu each paying notion relevant with TV service is extended in impromptu each paying (IPPU) service relevant with similar contents such as data of replenishing and multimedia application." use " speech refers to utilize the activity of user terminals resources or code/data object.These objects have comprised software code and/or data, and can reside on the user terminal or by download and obtain.
The present invention makes user's impulse buy service safely.These services can be depending on the real-time interaction that service is provided that (or not depending on) and network carry out.The microprocessor of a safety especially is provided with hardware and/or software on user terminal, make this safe processor generate the qualification token of safety and signature, and can before doing further processing, be used the server relevant with given service by by agency/strategic server of ISP or NO.When the user selects a service (if being authorized in advance) or during in this service of impulse buy, token just generates.But such IPPU buys the applicable network components that utilization is resided in the assembly on the user terminal and supports the IPPU purchase-transaction.
According to the present invention, the multiple systems assembly is utilized when the IPPU service is provided.These system components have comprised:
1. client response center (CRC): order form of process user (via virtual client service representative (CSR) or alternate manner) and subscription request (typically using prior call service) here.
2. existing network operator accounting system (NO-BS): existing NO accounting system and national controller (access controller-AC) or the local controller (access controller of numeral-DAC) link.In general, access request transmits from this accounting system with authorizing power (qualification).
3. Internet service provider accounting system (ISP-BS): this is the existing accounting system (optional) of partner's Internet service provider (ISP) of a NO, handles the ISP service.
4.AC/DAC: the access controller that control mandate and the purchase of serving on a user's basis gather.
5. user terminal: such device, for example cable TV interactive television decoder box, Digital Television or have the main frame, personal computer of the point of allocative abilities, maybe can provide according to ordering, call out in advance or impromptu paying (impulse pay) providing the similar installation of video, sound and data, services.
Can the present invention be described best according to the various transaction flows between associated component, as depicted in figs. 1 and 2.Yet, before with reference to these accompanying drawings, should be noted that and can under multiple application scheme, utilize the present invention.These schemes comprise:
1. call out qualification/mandate in advance:
1.1 patrolling is used (service)
1.2 the application on the server basis (service)
1.3 streaming video service
2. impulse buy (impulse purchase) qualification/mandate
2.1 patrolling is used (service)
2.2 the application on the server basis (service)
2.3 streaming video service
The application scheme of above-mentioned two kinds of patrollings can to " in advance call out " mode similar with the IPPV of Video service under realize.Especially the order in the condition visitation system is relevant with service identifier with impromptu grade (tiers), and these identifiers itself may be associated with one or more code and the data objects relevant with service.These are to liking an out of band signal transmission or touring on an inband signaling transmission channel (that is periodically transmitting), and described channel is corresponding to the service that is provided.Authorization mechanism be in an information encrypted, be transmitted and be sent on the processor of a safety on the user terminal.
If a consumer wishes to buy a service that is marked as IPPU, if having, he can carry out the authorization mechanism that general ip PU buys, if network is given him suitable credit line, then this consumer can directly issue orders purchase and need not the network participation user terminal.User terminal will be reported this purchase on the network with secured fashion under the request situation or automatically being subjected to after a while.
On the other hand, relate to application scheme more based on server.This is that in fact server (or acting server) can require specific action because use selected service/application for ease of spectators.The service of this class may comprise (such as) the specific website of visit, download from these websites or visit the content (for example streaming video content) that resides on these websites.Strategy/acting server needs the mechanism of a safety to determine whether the user is allowed to use selected service legally.This mechanism must be safe, thereby prevent from not to be registered a purchase, but qualification token (passed through encryption, signature or other is handled) shows under the authorized situation that obtains the service of looking for of this user, continues to work for this reason.
But the set of the service of impulse buy (for example multimedia application, home shopping, Email and similar service) is associated with corresponding service identifier (service id), and these service identifiers can be discerned by the accounting system of NO and ISP.Call service grade and/or IPPU grade are relevant with each user's respective services in advance.Each service id has the expense of a relative non-zero.
In one embodiment, as shown in Figure 1, the user with User IP PU select to send to an access controller 14 (for example under call scenario in advance via phone, or under situation warrants in advance via user terminal).Access controller 14 generates an enciphered message, and this information has a service identifier and sets (for example authorization mechanism setting) with relevant mandate, and relevant with User IP PU selection, enciphered message wherein sends to user terminal 16 from access controller 14 subsequently.Identical information (or discrete information) may comprise the corresponding expense that IPPU selects.
The expense that user terminal 16 checking IPPU select is in user's the credit line.If this checking is successful, user terminal 16 generates (for example by being positioned at a safe processor of user terminal), and by an employed safe qualification token of client applications, this client applications resides on the user terminal 16.Perhaps, the qualification token also can be generated by access controller 14, and is sent to user terminal 16.Client's application end will be sent to a server 18 with the qualification token according to the rule of a safety, receive the state that IPPU selects with the qualification token of determining the user.If the user receives the qualification process checking that IPPU selects, server 18 is selected further process IP PU, with the utilization of convenient spectators to service/application.
Server 18 can be a separate the Internet service supplier's (ISP) agency/strategic server, an ISP agency/strategic server that links to each other with agency/strategy/strategic server of network operator (NO), a NO agency/strategy/strategic server, or similar server.
In an alternative, it is at first to deliver to a client response center (CRC)/accounting system 12 that IPPU selects, and successively IPPU is selected to be sent to access controller 14 therefrom.Accounting system 12 is selected to user's render bill for this IPPU.CRC may be the some of NO accounting system, and as shown in Figure 1, perhaps CRC may be a discrete entity.CRC calls out this to (or virtual) user in advance and selects to notify custom system, and this information is sent to NO accounting system (NO-BS).
Under the situation of " Cyber CRC " configuration, wherein communication is to provide via a global communications network (for example internet) or similar network, User IP PU selects and can deliver to CRC/ accounting system 12 via a web browser and the webserver on accounting system 12 in operation on the user terminal 16.
Server also can be informed the transaction of accounting system 20 (ISP-BS) about being bought of ISP.Have a NO accounting system to be used to handle all services in the NO system, ISP accounting system 20 is actually a part of or identical with NO custom system 12 of NO custom system 12.
According to the difference of record keeping pattern, user terminal 16 may deduct some and the relevant customer charge of IPPU (single purchase is up to stopping), and ISP-BS 20 may collect extra tranaction costs.In addition, user terminal 16 can only be registered and be bought and free transmission described qualification (as previously mentioned).The ISP record keeping is 20 and may collects this expense.
As the some of communicating by letter with access controller 14, accounting system 12 can initiated access controller 14 remove to increase User IP PU and select related service, and this is one and is allowed to visit the process that the process of this service is separated with informing access controller 14, which user.
Known by industrial circle at this employed " accounting system " speech, than handle computer that order uses come broad sense.In general, accounting system is meant the business system of carrying out the NO operation and the function that comprises order processing, system configuration and commercial operation.
In another embodiment, the qualification token of safety is the qualification token of a process signature and encryption, is wherein delivered to server 18 so that differentiate and deciphering from client's application end safely through the qualification token of signature and encryption.
For example, qualification token may be encrypted via using public's key/secret key method and/or des encryption method.User terminal 16 is sent to server 18 with the qualification token of encrypting, so that determine qualification.The qualification token can generate at access controller 14 or on user terminal 16.
In another embodiment, service identifier is associated with one or more code and the data objects relevant with service, and these codes and data object periodically send to user terminal 16 from access controller 14.
Access controller 14 can be a local access controller or a nationwide access controller.
IPPU selects and can comprise: visit specific website, obtain streaming video from these websites, download multimedia applications from these websites, visit the content, shopping, Email, voice mail or the similar content that reside on these websites.
User terminal 16 can be a cable TV interactive television decoder box, a Digital Television or have main frame, personal computer or the like device of allocative abilities.
In an alternative, it is at user terminal 16 that User IP PU selects, and is authorized in advance with the credit line of a decision in advance.The prior mandate of using for IPPU allows a user to ask local authorize (for example on user terminal 16).User terminal 16 can deduct from credit line with User IP PU and select relevant expense.
For the refusal that prevents that IPPU from selecting, user terminal 16 can be selected User IP PU to report visit controller 14 safely.
Fig. 2 provides one to handle example, and In a particular embodiment, this processing is carried out on user terminal 16.User terminal 16 is received enciphered message from access controller 14, as above described in conjunction with Figure 1.As previously mentioned, information encrypted or discrete information may comprise the expense that IPPU selects correspondence.So a safe processor 32 that is positioned at user terminal 16 is handled enciphered message, is in user's the credit line scope with the verification expense whether IPPU selects.If such verification is successful, user terminal 16 promptly generates (for example by same safe processor 32) safe qualification token, uses for client applications 40.Provide this token via an Applied layer interface program to client applications 40, this Applied layer interface program is sent to server 18 with a kind of secured fashion with the qualification token subsequently, as above described in conjunction with Figure 1.By this method, server 18 can further be verified the legitimacy of user's qualification for desired service.It can also make the purchase-transaction in user terminal not be rejected, and allows NO that absolute visibility is arranged and to buying the control of service.
In case carried out verification for the qualification that a specific IPPU selects, the content that IPPU selects promptly is sent to user terminal 16 by server 18, as above in conjunction with as described in Fig. 1.IPPU selects and can be received by safe processor 32 via a traditional acceptor circuit (that is the output of the receiver of Fig. 2).Safe processor is process IP PU content (when for example relevant with selection content is encrypted) further.The unencrypted content can be handled by certain traditional approach subsequently, so that show (for example by a demultplexer/decoder 34 or by the software on the user terminal 16).
Be provided with that a device internal memory 30 stores the local data relevant with user terminal 16 and/or with this purchase activity of carrying out.According to selected particular, this internal memory also can be used to storing software and/or the solidification software relevant with user terminal 16, and the data of just being handled by CPU36.
It should be understood that now to the invention provides a kind of improved method and system, allow to obtain safe impromptu each paid service (IPPU) via a communication network.Particularly, (for example via a safe processor that is positioned on the user terminal) ability that user terminal is set to have generation through the token of signature and/or encryption, this token can be used by a NO or relevant ISP acting server, with further checking user qualification for desired service or by the legitimacy of one group of service that NO or relevant ISP were provided.The present invention also makes the purchase-transaction that carries out via user terminal not be rejected, and therefore requires the user to pay all ordered IPPU services.Wish that the result provides absolute visibility and to buying the control of service for NO for one.
Though described the present invention in conjunction with various preferred embodiments, it should be understood that under the situation that does not deviate from scope that claims of the present invention are put forward, also can carry out many modifications and change.

Claims (32)

1. one kind provides safe impromptu each paying (IPPU) service method to the user on communication network, comprises following steps:
To select to be sent to an access controller from user's User IP PU;
Generate an enciphered message on this access controller, this enciphered message has a service identifier and selects relevant mandate to set with described User IP PU;
With described enciphered message, and the expense of user-selected IPPU service, be sent to a user terminal from described access controller;
The described expense of verification is in described user's the credit line, and is successful as this verification, promptly generates the qualification token of a safety, uses for a client applications that resides in described user terminal;
Send safely on qualification token to a server of client applications, to determine described user's qualification state;
On described server, handle this IPPU and select, thereby when carrying out the processing of this selection and relevant qualification, described selection can be used by described user.
2. the method for claim 1, wherein said server is one of following server: the agency/strategic server of Internet service provider (ISP) independently, ISP agency/the strategic server relevant, or agency/strategy of NO/strategic server with agency/strategy/strategic server of network operator (NO).
3. the method for claim 1, wherein transmit the step that User IP PU chooses an access controller and further comprise following steps:
Described user's IPPU is selected to be sent to an accounting system;
From this accounting system described IPPU is selected to be sent to described access controller;
This IPPU service that is just provided is to this user's render bill.
4. method as claimed in claim 3, wherein said User IP PU select via one with the described user terminal and a webserver that links to each other with described accounting system, be sent to this accounting system.
5. method as claimed in claim 3, wherein:
As the some that is communicated with described access controller, described accounting system starts described access controller and increases described User IP PU and select the service that relates to;
This step that increases described service be one with the different process of process of informing access controller, authorized this service of visit of which user.
6. the method for claim 1, wherein said safe qualification token be one through the signature and the qualification token of encrypting, the qualification token of this process signature and encryption sends to from described client applications safely and is used for the server differentiating and decipher.
7. method as claimed in claim 6, wherein use following at least a method to encrypt described qualification token:
(i) privacy key/public's secret key encryption method;
(ii) Dui Cheng secret key encryption method.
8. the method for claim 1, code that wherein said service identifier is relevant with one or more services and data object (they are periodically delivered to described user terminal from described access controller) are associated.
9. the method for claim 1, wherein said access controller is local access controller.
10. the method for claim 1, wherein said access controller is nationwide access controller.
11. the method for claim 1, wherein said service comprises one of following content at least: visit specific website, obtain streaming video from these websites, download multimedia applications from these websites, visit the content, shopping, Email and the video-mail that reside on these websites.
12. the method for claim 1, wherein said user terminal is one of following equipment: cable TV interactive television decoder box, Digital Television or have the main frame or the personal computer of allocative abilities.
13. the method for claim 1, it is on described user terminal that wherein said User IP PU selects, and is authorized in advance under a predetermined credit line.
14. method as claimed in claim 13 wherein selects relevant expense to deduct from described credit line with described User IP PU.
15. the method for claim 1 further comprises the step of safely described User IP PU being selected to report to described access controller from described user terminal.
16. the method for claim 1, wherein said qualification token generates on described access controller or described user terminal.
17. a system that provides safe impromptu each paying (IPPU) to serve to the user on communication network comprises;
User terminal with client applications;
One is used for receiving the access controller that User IP PU selects;
A server, wherein:
Described user selects to be sent to described access controller with described User IP PU;
Described access controller generates an enciphered message, and this enciphered message has a service identifier and selects relevant mandate to set with described User IP PU;
Described access controller is transferred to described user terminal with the IPPU service fee of this enciphered message and described user selection;
The described expense of described user terminal verification is in this user credit amount, and is successful as this verification, and described user terminal promptly generates the qualification token of a safety, uses for a client applications that resides in this user terminal;
This client applications is sent to described server with described qualification token safely, with the state of the qualification of determining the user;
The described IPPU of described server process selects, thereby when carrying out the processing of this selection and relevant qualification, described selection can be used by described user.
18. system as claimed in claim 17, wherein said server is one of following server: the agency/strategic server of Internet service provider (ISP) independently, ISP agency/the strategic server relevant, perhaps NO agency/strategy/strategic server with agency/strategy/strategic server of network operator (NO).
19. system as claimed in claim 17 further comprises an accounting system, wherein:
Described user selects to be sent to an accounting system with described User IP PU;
This accounting system selects to be sent to described access controller with described IPPU;
This IPPU service that just provides is to this user's render bill.
20. system as claimed in claim 19 further comprises;
A web browser relevant with described user terminal is used for described User IP PU is selected to be sent to described accounting system;
A web browser relevant with described accounting system, the described User IP PU that is used to receive from this web browser selects.
21. system as claimed in claim 19, wherein:
As the some that is communicated with described access controller, described accounting system starts described access controller and increases described User IP PU and select the service that relates to;
This step that increases described service be one with the different process of process of informing access controller, authorized this service of visit of which user.
22. system as claimed in claim 17, wherein said safe qualification token be one through the signature and the qualification token of encrypting, the qualification token of this process signature and encryption sends to from described client applications safely and is used for the server differentiating and decipher.
23. the system as claimed in claim 22 wherein uses following at least a method to encrypt described qualification token:
(i) privacy key/public's secret key encryption method;
(ii) Dui Cheng secret key encryption method.
24. system as claimed in claim 17, code that wherein said service identifier is relevant with one or more services and data object (they are periodically delivered to described user terminal from described access controller) are associated.
25. system as claimed in claim 17, wherein said access controller is local access controller.
26. system as claimed in claim 17, wherein said access controller is nationwide access controller.
27. system as claimed in claim 17, wherein said service comprises one of following content at least: visit specific website, obtain streaming video from these websites, download multimedia applications from these websites, visit the content, shopping, Email and the video-mail that reside on these websites.
28. system as claimed in claim 17, wherein said user terminal is one of following equipment: cable TV interactive television decoder box, Digital Television or have the main frame or the personal computer of allocative abilities.
29. system as claimed in claim 17, it is on described user terminal that wherein said User IP PU selects, and is authorized in advance under a predetermined credit line.
30. system as claimed in claim 29 wherein selects relevant expense to deduct from described credit line with described User IP PU.
31. system as claimed in claim 17, wherein said user terminal selects to report to described access controller with described User IP PU safely.
32. system as claimed in claim 17, wherein said qualification token generates on described access controller or described user terminal.
CNB008138982A 1999-08-17 2000-08-03 Impulse pay per use method and system for data and multimedia service Expired - Fee Related CN1174620C (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US14926399P 1999-08-17 1999-08-17
US60/149,263 1999-08-17

Publications (2)

Publication Number Publication Date
CN1378743A true CN1378743A (en) 2002-11-06
CN1174620C CN1174620C (en) 2004-11-03

Family

ID=22529487

Family Applications (1)

Application Number Title Priority Date Filing Date
CNB008138982A Expired - Fee Related CN1174620C (en) 1999-08-17 2000-08-03 Impulse pay per use method and system for data and multimedia service

Country Status (8)

Country Link
EP (1) EP1206876A1 (en)
JP (1) JP2003507803A (en)
KR (1) KR20020035575A (en)
CN (1) CN1174620C (en)
AU (1) AU6516500A (en)
BR (1) BR0013410A (en)
CA (1) CA2381363C (en)
WO (1) WO2001013635A1 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2006069541A1 (en) 2004-12-29 2006-07-06 Huawei Technologies Co., Ltd. Communication terminal, system and method for implementing streaming media services
CN100372303C (en) * 2004-12-13 2008-02-27 华为技术有限公司 Method for realizing pre-payment user internet policy dynamic change
CN101296420B (en) * 2008-06-23 2011-07-20 腾讯科技(深圳)有限公司 Method, system, server and terminal for preventing freely using pay-game
CN102422552A (en) * 2009-03-26 2012-04-18 Xped控股股份有限公司 An arrangement for managing wireless communication between devices

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE60213281T2 (en) * 2001-12-05 2007-06-28 France Telecom ADMINISTRATIVE PROCESS FOR PROVIDING ACCESS TO A ENCRYPTED CONTENT TO BE TRANSMITTED TO A NETWORK, AND SYSTEM AND SERVER FOR CARRYING OUT THIS METHOD
AU2002329940A1 (en) * 2002-03-08 2003-09-29 International Business Machines Corporation Differentiated connectivity in a pay-per-use public data access system
US20030217163A1 (en) * 2002-05-17 2003-11-20 Lambertus Lagerweij Method and system for assessing a right of access to content for a user device
US20040009815A1 (en) * 2002-06-26 2004-01-15 Zotto Banjamin O. Managing access to content

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5003384A (en) * 1988-04-01 1991-03-26 Scientific Atlanta, Inc. Set-top interface transactions in an impulse pay per view television system
US5862220A (en) * 1996-06-03 1999-01-19 Webtv Networks, Inc. Method and apparatus for using network address information to improve the performance of network transactions
FI974091A (en) * 1997-10-29 1999-04-30 Helsingin Puhelin Oyj Procedure for mediating payment performance on the Internet

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100372303C (en) * 2004-12-13 2008-02-27 华为技术有限公司 Method for realizing pre-payment user internet policy dynamic change
WO2006069541A1 (en) 2004-12-29 2006-07-06 Huawei Technologies Co., Ltd. Communication terminal, system and method for implementing streaming media services
CN100403794C (en) * 2004-12-29 2008-07-16 华为技术有限公司 Video terminal and method of implementing services of stream media
CN101296420B (en) * 2008-06-23 2011-07-20 腾讯科技(深圳)有限公司 Method, system, server and terminal for preventing freely using pay-game
CN102422552A (en) * 2009-03-26 2012-04-18 Xped控股股份有限公司 An arrangement for managing wireless communication between devices
CN102422552B (en) * 2009-03-26 2016-05-04 Xped控股股份有限公司 Arrangement for managing wireless communication between devices

Also Published As

Publication number Publication date
KR20020035575A (en) 2002-05-11
BR0013410A (en) 2002-06-25
EP1206876A1 (en) 2002-05-22
WO2001013635A1 (en) 2001-02-22
JP2003507803A (en) 2003-02-25
CA2381363A1 (en) 2001-02-22
CN1174620C (en) 2004-11-03
AU6516500A (en) 2001-03-13
CA2381363C (en) 2009-02-03

Similar Documents

Publication Publication Date Title
US6810525B1 (en) Impulse pay per use method and system for data and multimedia services
US10412133B2 (en) Public/private communications paths
CA2488844C (en) Access control and key management system for streaming media
US20040168184A1 (en) Multiple content provider user interface
US20050066353A1 (en) Method and system to monitor delivery of content to a content destination
US20050021467A1 (en) Distributed digital rights network (drn), and methods to access operate and implement the same
TW200806034A (en) Method for access control to a scrambled content
US20080216177A1 (en) Contents Distribution System
US20060200415A1 (en) Videonline security network architecture and methods therefor
JP2005253109A (en) Conditional access system
CN1756146A (en) Process and streaming server for encrypting a data stream to a virtual smart card client system
JP2009124736A (en) Encryption apparatus used in conditional access system
CN1317202A (en) Conditional access system for broadcast digital TV.
WO2005076531A1 (en) Multimedia information on demand system and the method thereof
CN101076109A (en) Two-way CA system of digital TV-set and method for ordering and cancelling programm based on it
JP2005245010A (en) Source authentication of download information in conditional access system
JP2005245007A (en) Registration of service in conditional access system
JP2009273151A (en) Authentication of service in conditional access system
EP1903799B1 (en) A method for realizing preview of iptv programs, an encryption apparatus, a right center system and a user terminal
CN1258920C (en) Secure digital content delivery system and method over broadcast network
CN1174620C (en) Impulse pay per use method and system for data and multimedia service
AU2001290653B2 (en) A distributed digital rights network (DRN), and methods to access, operate and implement the same
JP3654342B2 (en) Method and apparatus for geographically limiting service in a conditional access system
EP2530944A1 (en) Method for authorising
EP1624690A1 (en) Method for transmitting and receiving video signals

Legal Events

Date Code Title Description
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C06 Publication
PB01 Publication
C14 Grant of patent or utility model
GR01 Patent grant
C19 Lapse of patent right due to non-payment of the annual fee
CF01 Termination of patent right due to non-payment of annual fee
REG Reference to a national code

Ref country code: HK

Ref legal event code: WD

Ref document number: 1050978

Country of ref document: HK