• No results found

Invention Title: Invention Summary: Invention Description: Invention. Value/Customers: Differences:

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Invention Title: Invention Summary: Invention Description: Invention. Value/Customers: Differences:"

Copied!
5
0
0

Loading.... (view fulltext now)

Download now ( 5 Page )

Full text

(1)

Invention Title:

Secure home eDelivery without the public Internet

Invention

Summary:

Businesses such as USPS, FedEx and UPS have national or global distribution networks, widely available local outlets and frequent home proximity. Customers trust the security of this delivery chain and, in the case of USPS, there is federal penalty in tampering with that chain. This invention enables these businesses to become a secure document delivery replacement for the public Internet. My Stuff Everywhere (CTL patent applications 60604 and "waiting for number")

authentication is used so that customer devices (STB, smartphone) automatically receive secure documents from these businesses when WiFi proximity is

established, e.g. delivery truck passes the home, user walks by or into a facility.

Invention

Description:

See attachment

Invention

Commercial

Value/Customers:

The commercial opportunity is a pay-for eDelivery service. Customers of the invention are existing delivery services, e.g. USPS, FedEx, USPS, end-users (residential and business) looking for an alternative to open Internet electronic document delivery, and ISPs with a presence in the customer's home or business.

Invention

Differences:

(2)

© Cable Television Laboratories, Inc., 2014 1 Bob Lund, Distinguished Technologist, CableLabs

September, 2014

My Stuff Everywhere Secure Document eDelivery

The Concept

My Stuff Everywhere™ provides a service where a user can authenticate to a Web site once and, thereafter, using their personal device for identity, access their account on that Web site via any discovered device.

MSE for Secure Document eDelivery uses the access token provided by the Web site of a Secure Document eDelivery provider to securely deliver a sensitive document to the user whenever WiFi proximity is established between the eDelivery provider and the user’s STB or personal device. MSE eDelivery takes advantage of the secure, trusted service networks of carriers such as USPS, FedEx and UPS and automates electronic delivery over the last 100 feet. eDelivery is especially synergistic secure customer premises devices that attach to their home network, for example a cable operators set-top-box.

Design

MSE Website Identity has an Enable step and a Use step.

Enable

A user configures MSE eDelivery with a service provider in the same way as other MSE services (Figure 1).

(3)

Figure 1 – Enable MSE Website Identity

1. The user logs into the MSE portal and selects an eDelivery Website from a list of MSE partners. 2. The MSE Portal redirects the user’s Web page to the Website so that the Website can

authenticate the user. As part of the authentication, the user may provide a public key that will be used for encryption of electronic documents delivered by the eDelivery provider. The Website then redirects the user’s browser to the MSE Portal with an access code and a Website unique identifier.

3. The MSE portal converts the access code to an access token for future use and associates the user with the access token and Website unique identifier.

Use

The user can now configure a personal device to receive eDelivery. Figure 2 shows an example using a set-top-box. MSE Portal

1

2

eDelivery Website

3

(4)

© Cable Television Laboratories, Inc., 2014 3

Figure 2 MSE eDelivery

1. The MSE user’s cable set-top-box authenticates to the MSO network.

2. If the user has configured one or more eDelivery services, the eDelivery application and access tokens are sent to the set-top-box MSE.

3. Electronic documents, possible encrypted, are loaded onto a delivery vehicle.

4. The eDelivery application in the STB recognizes the eDelivery SSID When the delivery vehicle gets within WiFi proximity. This step could work the other way around. The STB could a dedicated eDelivery SSID that is discovered by the delivery vehicle.

In either case, the STB eDelivery application sends an HTTP GET along with the eDelivery access token.

5. The delivery vehicle application verifies the access token and responds with the electronic document.

At this point the electronic document is on the hard drive of the STB, available to the user.

MSE eDelivery Advantages

MSE eDelivery offers advantages for all actors.

• It leverages existing delivery businesses – offering a new service opportunity that takes advantage of their trusted networks and frequent customer contact.

• It is a more secure electronic delivery service for the user that bypasses the open Internet. • ISPs that already have a presence in the customer’s home can provide am automatic, secure

repository for the eDelivery; one that is already accessible to the customer over their local network. MSE Server MSE Portal

1

2

3

4

5

(5)

1. The access token is never exposed to either the MSE user, the MSE app or the Website login page so it can never be stolen by observing access network communication or client device internals.

2. If the access token is ever stolen from the cloud (MSE Server or Website), its use can be revoked and it can be replaced by a new access token. All of this is invisible to the user and has no impact on user devices or Web pages.

3. Access tokens can be updated on a periodic basis without impacting the user. This greatly reduces the threat of access token exposure.

4. The MSE Website Identity service is a Website user identity broker but is never in possession of the user’s Website user-name/password.

Figure

Figure 1 – Enable MSE Website Identity
Figure 2 MSE eDelivery

References

Download now ( PDF - 5 Page - 264.11 KB )

Related documents

BACKGROUND OF THE INVENTION

multiple data bits and multiple error check bits. An exemplary predetermined bit pattern includes.. 10 all 1 ' s to replace the data bits and an otherwise unused value to replace

SUMMARY OF THE INVENTION BACKGROUND OF THE INVENTION PIPE INSULATION COUPLING

When in the closed position, the clam shell portions 28, 30 of the body portion 22 include a cylindrical outer tube wall 34 and a cylindrical inner tube wall 36 spaced inwardly from

BACKGROUND OF THE INVENTION

5 of the plurality of power connections may be greater than or equal to the total of a maximum voltage on a data signal line of the plurality of signal lines, a.. maximum voltage on

BACKGROUND OF THE INVENTION

While in "MY IPP ACCOUNT" web page, the customer can change his unique username and password, determine the amount of monetary funds or tokens assigned to his prepaid IPP.

BACKGROUND OF THE INVENTION

[00016| A semiconductor device includes a silicon (1 1 1) single crystal substrate, and an epitaxial and single crystal boron phosphide (BP) comprising buffer layer disposed on the

BACKGROUND OF THE INVENTION

The present invention provides for methods for treating restless legs syndrome in a patient suffering from or susceptible to such condition comprising the administration of an

BACKGROUND OF THE INVENTION

One component of a laminated composite sheet is a two-ply base layer comprised.. of a bottom ply and a

BACKGROUND OF THE INVENTION

5 shows a third embodiment of the invention having a container body 112 that includes a flange 120 of uniform width, but wherein the sealant 122 is applied to the flange in