`

`Docket No. 4602-4001
`Express Mail No. EV 383045195 US
`REQUEST AND CERTIFICATION UNDER 35 U.S.C. §122(b)(2)(B)(i) (form
`PTO/SB/35)
`As indicated on the attached Request and Certification, Applicant(s) certify that the invention
`disclosed in the attached application HAS NOT and WILL NOT be the subject of an application
`filed in another country, or under a multilateral agreement, that requires publication at eighteen
`months after filing. Applicant(s) therefore request(s) that the attached application NOT be
`published under 35 U.S.C. § 122(b ).
`
`D
`
`D
`
`Incorporation by Reference:
`D The entire disclosure of the prior application, from which a copy of the combined
`Declaration and Power of Attorney is supplied herein, is considered as being part of
`the disclosure of the accompanying application and is incorporated herein by
`reference.
`Deletion of Inventors (37 C.F.R. §1.63(d) and §1.33(b)
`
`Signed statement attached deleting inventor(s) named in the prior application serial no.
`_ _ _, filed _ _
`D Microfiche Computer Program (Appendix)
`D page(s) of Sequence Listing
`D computer readable disk containing Sequence Listing
`D Statement under 37 C.F.R. §1.821(f) that computer and paper copies of the Sequence
`Listing are the same
`
`D
`
`D
`D
`
`Assignment Papers (assignment cover sheet and assignment documents)
`D A check in the amount of $40.00 for recording the Assignment
`D Charge the Assignment Recordation Fee to Deposit Account No. 13-4500, Order
`No. _ _
`D Assignment Papers filed in the parent application Serial No. _ _
`
`Certification of chain of title pursuant to 37 C.F.R. §3.73(b)
`
`Priority is claimed under 35 U.S.C. §119 for:
`Application No(s). _ _ ,filed _ _ , in _ _ (country).
`D Certified Copy of Priority Document(s) [ _ __,
`D filed herewith
`D filed in application Serial No. _ _ _.filed _ _
`D English translation document(s) [
`]
`D filed herewith
`D filed in application Serial No. _ _ , filed _ _ .
`
`D
`
`Priority is claimed under 35 U.S.C. §119(e) for:
`Provisional Application No.
`filed _ _
`
`829000 vi
`
`-2-
`
`PayPal Ex. 1058, p. 2
`PayPal v. IOENGINE
`
`

`

`D
`
`D
`
`D
`[g]
`D
`
`D
`
`D
`D
`
`Docket No. 4602-4001
`Express Mail No. EV 383045195 US
`
`Information Disclosure Statement
`D Copy of [
`1 cited references
`D PTO Form-1449
`D References cited in parent application Serial No. _ _ , filed _ _ .
`
`Related Case Statement under 37 C.F.R. §1.98(a)(2)(iii)
`D A copy ofrelated pending U.S. Application(s) Serial No(s): _ _ ,filed _ _,
`respectively, is attached hereto.
`D A copy ofrelated pending U.S. Application(s) entitled,
`inventor(s) _ _ ,respectively, is attached hereto.
`D A copy of each related application(s) was submitted in parent application serial no.
`_ _,filed _ _
`Preliminary Amendment
`
`filed
`
`to
`
`Return receipt postcard (MPEP 503)
`This is a D continuation D divisional D continuation-in-part of prior application
`serial no. _ _ , filed
`to which priority under 35 U.S.C. § 120 is claimed.
`D Cancel in this application original claims _ _ of the parent application before
`calculating the filing fee. (At least one original independent claim must be retained
`for filing purposes.)
`D A Preliminary Amendment is enclosed. (Claims added by this Amendment have
`been properly numbered consecutively beginning with the number following the
`highest numbered original claim in the prior application).
`
`The status of the parent application is as follows:
`D A Petition for Extension of Time and a Fee therefor has been or is being filed in the
`parent application to extend the term for action in the parent application until _ _
`D A copy of the Petition for Extension of Time in the co~pending parent application is
`attached.
`D No Petition for Extension of Time and Fee therefor are necessary in the co-pending
`parent application.
`
`Please abandon the parent application at a time while the parent application is pending or
`at a time when the petition for extension of time in that application is granted and while
`this application is pending has been granted a filing date, so as to make this application
`co-pending.
`
`Transfer the drawing(s) from the parent application to this application
`
`Amend the specification by inserting before the first line the sentence:
`This is D continuation D divisional D continuation-in-part of co-pending application
`Serial No.
`filed _ _
`
`829000 vi
`
`-3-
`
`PayPal Ex. 1058, p. 3
`PayPal v. IOENGINE
`
`

`

`

`

`

`

`IN THE UNITED STATES PATENT AND TRADEMARK OFFICE
`
`UNITED STATES PATENT APPLICATION
`
`FOR:
`
`APPARATUS, METHOD AND SYSTEM FOR A TUNNELING CLIENT ACCESS POINT
`
`INVENTOR:
`
`SCOTT MCNULTY
`
`Morgan & Finnegan, L.L.P.
`345 Park A venue
`New York, New York 10154-0053
`United States of America
`
`Telephone: (212) 758-4800
`Facsimile: (212) 751-6849
`
`Attorneys for Applicant
`Attorney Docket No.: 4602-4001
`Express Mail Label No.: EV 383045195 US
`
`828982 vi
`
`PayPal Ex. 1058, p. 6
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL No.: EV 383045195 US
`
`APPARATUS, METHOp AND SYSTEM FOR A TUNNELING CLIENT ACCESS
`POINT
`
`FIELD
`
`(0001]
`
`The present invention is directed generally to an apparatus, method, and
`
`5
`
`system of accessing data, and more particularly, to an apparatus, method and system to
`
`execute and process data by tunneling access through a terminal.
`
`PORT ABLE COMPUTING AND STORAGE
`
`BACKGROUND
`
`[0002]
`
`Computing devices have been becoming smaller over time. Currently, some of
`
`10
`
`the smallest computing devices are in the form of personal digital assistants (PDAs), Such .:'
`
`devices usually come with a touch screen, an input stylus and/or mini keyboard, and battery
`
`source. These devices, typically, have storage capacities around 64MB. Examples of these
`
`devices include Palm's Palm Pilot.
`
`INFORMATION TECHNOLOGY SYSTEMS
`
`15
`
`(0003]
`
`Typically, users, which may be people and/or other systems, engage
`
`information technology systems (e.g., commonly computers) to facilitate information
`
`processing. In tum, computers employ processors to process information; such processors are
`
`often referred to as central processing units (CPU). A common form of processor is referred
`
`to as a microprocessor. A computer operating system, which, typically, is software executed
`
`20
`
`by CPU on a computer, enables and facilitates users to access and operate computer
`
`information technology and resources. Common resources employed in information
`UNITEDSTATESPATENTAPPLICATION
`Page I of86
`scorrMCNULTY
`828982 vi
`
`PayPal Ex. 1058, p. 7
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`technology systems include: input and output mechanisms through which data may pass into
`
`and out of a computer; memory storage into which data may be saved; and processors by
`
`which information may be processed. Often information technology systems are used to
`
`collect data for later retrieval, analysis, and manipulation, commonly, which is facilitated
`
`5
`
`through database software. Information technology systems provide interfaces that allow
`
`users to access and operate various system components.
`
`USER INTERFACE
`
`[0004]
`
`The function of computer interfaces in some respects is similar to automobile
`
`operation interfaces. Automobile operation interface elements such as steering wheels,
`
`I 0
`
`gearshifts, and speedometers facilitate the access, operation, and display of automobile"':·,
`
`resources, functionality, and status. Computer interaction interface elements such as check\
`
`boxes, cursors, menus, scrollers, and windows (collectively and commonly referred to as"·
`
`widgets) similarly facilitate the access, operation, and display of data and computer hardware
`
`and operating system resources, functionality, and status. Operation interfaces are commonly
`
`15
`
`called user interfaces. Graphical user interfaces (GUis) such as the Apple Macintosh
`
`Operating System's Aqua, Microsoft's Windows XP, or Unix's X-Windows provide a
`
`baseline and means of accessing and displaying information, graphically, to users.
`
`NETWORKS
`
`[0005]
`
`Networks are commonly thought to compnse of the interconnection and
`
`20
`
`interoperation of clients, servers, and intermediary nodes in a graph topology. It should be
`
`noted that the term "server" as used herein refers generally to a computer, other device,
`
`UNITED ST A TES PA TENT APPLICATION
`828982 vi
`
`Page 2 of86
`
`SCOTT MCNULTY
`
`PayPal Ex. 1058, p. 8
`PayPal v. IOENGINE
`
`

`

`A TIORNEY DOCKET No.: 4602-400 I
`
`EXPRESS MAIL LABEL No.: EV 383045195 US
`
`software, or combination thereof that processes and responds to the requests of remote users
`
`across a communications network. Servers serve their information to requesting "clients."
`
`The term "client" as used herein refers generally to a computer, other device, software, or
`
`combination thereof that is capable of processing and making requests and obtaining and
`
`5
`
`processing any responses from servers across a communications network. A computer, other
`
`device, software, or combination thereof that facilitates, processes information and requests,
`
`and/or furthers the passage of information from a source user to a destination user is
`
`commonly referred to as a "node." Networks are generally thought to facilitate the transfer of
`
`information from source points to destinations. A node specifically tasked with furthering the
`
`10
`
`passage of information from a source to a destination is commonly called a "router." There ..
`
`are many forms of networks such as Local Area Networks (LANs), Pico networks, Wide:~ •
`
`. Area Networks (WANs), Wireless Networks (WLANs), etc. For example, the Internet is·~r ..
`
`generally accepted as being an interconnection of a multitude of networks whereby remote
`
`clients and servers may access and interoperate with one another.
`
`15
`
`SUMMARY
`
`[0006]
`
`Although all of the aforementioned portable computing systems exist, no
`
`effective solution to securely access, execute, and process data is available in an extremely
`
`compact form. Currently, PDAs, which are considered among the smallest portable
`
`computing solution, are bulky, provide uncomfortably small user interfaces, and require too
`
`20 much power to maintain their data. Current PDA designs are complicated and cost a lot
`
`because they require great processing resources to provide custom user interfaces and
`
`UNITED STATES PATENT APPLICATION
`828982 vi
`
`Page 3 of86
`
`scon MCNULTY
`
`PayPal Ex. 1058, p. 9
`PayPal v. IOENGINE
`
`

`

`ATIORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL No.: EV 383045195 US
`
`operating systems. Further, current PD As are generally limited in the amount of data they can
`
`store or access. No solution exists that allows users to employ traditional large user interfaces
`
`they are already comfortable with, provides greater portability, provides greater memory
`
`footprints, draws less power, and provides security for data on the device. As such, the
`
`5
`
`disclosed tunneling client access point {TCAP) is very easy to use; at most it requires the user
`
`to simply plug the device into any existing and available desktop or laptop computer, through
`
`which, the TCAP can make use of a traditional user interface and input/output (I/O)
`
`peripherals, while the TCAP itself, otherwise, provides storage, execution, and/or processing
`
`resources. Thus, the TCAP requires no power source to maintain its data and allows for a
`
`10
`
`highly portable "thumb" footprint. Also, by providing the equivalent of a plug-n-play virtual ; .
`
`private network (VPN), the TCAP provides certain kinds of accessing of remote data in an X
`
`easy and secure manner that was unavailable in the prior art.
`
`(0007]
`
`In accordance with certain aspects of the disclosure, the above-identified
`
`problems of limited computing devices are overcome and a technical advance is achieved in
`
`15
`
`the art of portable computing and data access. An exemplary tunneling client access point
`
`(TCAP) includes a method to dispose a portable storage device in communication with a
`
`terminal. The method includes providing the memory for access on the terminal, executing
`
`processing instructions from
`
`the memory on the terminal
`
`to access
`
`the terminal,
`
`communicating through a conduit, and processing the processing instructions.
`
`20
`
`[0008]
`
`In accordance with another embodiment, a portable tunneling storage
`
`processor is disclosed. The apparatus has a memory and a processor disposed in
`
`UNITED ST A TES PA TENT APPLICATION
`828982 vi
`
`Page 4 of86
`
`Scorr MCNULTY
`
`PayPal Ex. 1058, p. 10
`PayPal v. IOENGINE
`
`

`

`A TIORNEY DOCKET No:: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`communication with the memory, and configured to issue a plurality of processing
`
`instructions stored in the memory. Also, the apparatus has a conduit for external
`
`communications disposed in communication with the processor, configured to issue a
`
`plurality of communication instructions as provided by the processor, configured to issue the
`
`5
`
`communication instructions as signals to engage in communications with other devices
`
`having compatible conduits, and configured to receive signals issued from the compatible
`
`conduits.
`
`BRJEF DESCRIPTION OF THE DRAWINGS
`
`[0009)
`
`The accompanying drawings
`
`illustrate various non-limiting, example,
`
`10
`
`inventive aspects in accordance with the present disclosure:
`
`[0010)
`
`FIGURE 1 is of a flow diagram illustrating embodiments of a tunneling client
`
`access point (TCAP);
`
`[0011)
`
`FIGURE 2 is of a flow diagram illustrating embodiments of a system of
`
`tunneling client access point and access terminal interaction;
`
`15
`
`[0012)
`
`FIGURE 3 is of a flow diagram illustrating embodiments of engaging the
`
`tunneling client access point to an access terminal interaction;
`
`[0013)
`
`FIGURE 4 is of a flow diagram illustrating embodiments of accessing the
`
`tunneling client access point and server through an access terminal;
`
`UNITED STA TES PA TENT APPLICATION
`828982 vi
`
`Page 5 of86
`
`SCOTI MCNULTY
`
`PayPal Ex. 1058, p. 11
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`[0014]
`
`FIGURES 5-8 is of a flow diagram illustrating embodiments of facilities,
`
`programs, and/or services that the tunneling client access point and server may provide to the
`
`user as accessed through an access terminal;
`
`[0015]
`
`FIGURE 9 is of a block diagram illustrating embodiments of a tunneling
`
`5
`
`client access point server controller;
`
`[0016)
`
`FIGURE 10 is of a block diagram illustrating embodiments of a tunneling
`
`client access point controller;
`
`[0017)
`
`The leading number of each reference number within the drawings indicates
`
`the first figure in which that reference number is introduced. As such, reference number 101
`
`10
`
`is first introduced in Figure 1. Reference number 201 is first introduced in Figure 2, etc.
`
`UNITED ST A TES PA TENT AP PUCA TION
`828982 vi
`
`Page 6 of86
`
`SCOTT MCNULTY
`
`PayPal Ex. 1058, p. 12
`PayPal v. IOENGINE
`
`

`

`AITORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`DETAILED DESCRIPTION
`
`TOPOLOGY
`
`[0018)
`
`Figure 1 illustrates embodiments for a topology between a tunneling client
`
`access point (TCAP) (see Figure 10 for more details on the TCAP) and TCAP server
`
`5
`
`(TCAPS) (see Figure 9 for more details on the TCAPS). In this embodiment, a user 133a
`
`may plug-in a TCAP into any number of access terminals 127 located anywhere. Access
`
`terminals (ATs) may be any number of computing devices such as servers, workstations,
`
`desktop computers, laptops, portable digital assistants (PDAs), and/or the like. The type of
`
`AT used is not important other than the device should provide a compatible mechanism of
`
`10
`
`.engagement to the TCAP 130 and provide an operating environment. for the user to eng1lge
`
`the TCAP through the AT. In one embodiment, the TCAP provides a universal serial bus
`
`(USB) connector through which it may plug into an AT. In other embodiment, the TCAP
`
`may employ Bluetooth, WiFi and/or other wireless connectivity protocols to connect with
`
`ATs that are also so equipped. In one embodiment, the AT provides Java and/or Windows
`
`15
`
`runtime environments, which allows the TCAP to interact with the input/output mechanisms
`
`of the AT. See Figure 9 for more details and embodiments on the types of connections that
`
`may be employed by the TCAP. Once the TCAP has engaged with an AT, it can provide the
`
`user with access to its storage and processing facilities.
`
`(0019)
`
`If the AT is connected to a communication network 113, the TCAP may then
`
`20
`
`communicate beyond the AT. In one embodiment, the TCAP can provide extended storage
`
`and/or processing resources by engaging servers 110, 115, 120, which have access to and can
`
`UNITED ST A TES PA TENT APPLICATION
`828982 vi
`
`Page 7 of86
`
`SCOIT MCNULTY
`
`PayPal Ex. 1058, p. 13
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`provide extended storage 105 to the TCAP through the AT. In one embodiment, a single
`
`server and storage device may provide such TCAP server support. In another embodiment,
`
`server support is provided over a communications network, e.g., the Internet, by an array of
`
`front-end load-balancing servers 120. These servers can provide access to storage facilities
`
`5 within the servers or to remote storage 105 across a communications network 1l3b, c (e.g., a
`
`local area network (LAN)). In such an embodiment, a backend server 110 may offload the
`
`front-end server with regard to data access to provide greater throughput. For purposes of
`
`load balancing and/or redundancy, a backup server 115 may be similarly situated to provide
`
`for access and backup in an efficient manner. In such an embodiment, the back-end servers
`
`10 may be connected to the front-end servers through a communications network l 13b (e.g.,
`
`wide area network (WAN)). The back end servers 110, 115 may be connected to the re!llote
`
`storage 105 through a communications network l 13c as well (e.g., a high speed LAN, fiber-
`
`channel, and/or the like).
`
`[0020]
`
`Thus, to the user 133a, the contents of the TCAP 130 appear on the AT as
`
`15
`
`being contained on the TCAP 125 even though much of the contents may actually reside on
`
`the servers 115, 120 and/or the servers' storage facilities 105. In these ways, the TCAP
`
`"tunnels" data through an AT. The data may be provided through the AT's I/O for the user to
`
`observe without it actually residing on the AT. Also, the TCAP may tunnel data through an
`
`AT across a communications network to access remote servers without requiring its own
`
`20 more complicated set of peripherals and I/O.
`
`UNITED ST A TES PA TENT APPLICATION
`828982 vi
`
`Page 8 of86
`
`SCOTT MCNULTY
`
`PayPal Ex. 1058, p. 14
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`TCAP AND AT INTERACTION
`
`[0021]
`
`Figure 2 illustrates embodiments for a system of tunneling client access point
`
`(TCAP) (see Figure 10 for more details on the TCAP) and access terminal interaction. Figure
`
`2 provides an overview for TCAP and AT interaction and subsequent figures will provide
`
`5
`
`greater detail on elements of the interaction. In this embodiment, a user engages the TCAP
`
`201. For example, the user may plug the TCAP into an AT via the AT' s USB yort. Thereafter
`
`the user is presented with a login prompt 205 on the AT's display mechanism, e.g., on a
`
`video monitor. After a user successfully logs in (for example by providing a user name and
`
`password) 204, the TCAP can then accept user inputs from the AT and its peripherals (the
`
`10
`
`TCAP can then also provide output to the user via the AT' s peripherals).
`
`[0022)
`
`The user may employ the A T's input peripherals as user input devices that
`
`control actions on the TCAP. Depending on the user's actions 215, the TCAP can be used'by
`
`the AT as a storage device from which it can access and store data and programs 225. For
`
`example, if the user takes the action of opening a file from the TCAP's memory, e.g., by
`
`15
`
`double clicking on an icon when the TCAP is mounted as a USB drive on the AT, then the
`
`AT may treat the TCAP as a memory device and retrieve information from the TCAP 225. If
`
`the user's action 215 is one that is directed at executing on the TCAP 215, then the AT will
`
`not be involved in any execution. For example, if the user drops an icon representing a
`
`graphics file onto a drag-and-drop location visually representing the TCAP, then the file may
`
`20
`
`be copied to the TCAP where it will process and spool the file for sending the graphics file to
`
`be printed at a remote location. In such a case, all of the requirements to process and spool ·
`
`UNITED STATES PATENT APPLICATION
`828982 vi
`
`Page 9 of86
`
`SCOTT MCNULTY
`
`PayPal Ex. 1058, p. 15
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET No.: 4602-4001
`
`EXPRESS MAIL LABEL No.: EV 383045195 US
`
`the file are handled by the TCAP's processor and the AT would only be used as a mechanism
`
`for user input and output and as a conduit through which the TCAP may send files.
`
`[0023]
`
`Regardless of if there is an action 215 to execute on the TCAP 220 or to
`
`access or store data on the TCAP 225, the AT is used to display the status of any actions 230.
`
`5 At any time the user may select to terminate TCAP related facilities executing either on the
`
`AT, a backend server, on the TCAP itself, and/or the like 235. In one embodiment, the user
`
`may select a quit option that is displayed on the AT's screen. In another embodiment, the
`
`user may simply disengage the TCAP from the AT by severing the connection (e.g., turning
`
`power off, physically pulling the device off the AT, turning off wireless transmissions, and/or
`
`iO
`
`the like). It should be noted that such abrupt severing may result in the loss o£~data, file
`
`''..'"·.
`
`corruption, etc. if the TCAP has not saved data that is on the AT or on some remote server,
`
`however, if the TCAP is employing flash like memory, its contents should remain intact.
`
`[0024]
`
`If there is no instruction signal to terminate the TCAP 235, execution will
`
`continue and the TCAP will continue to take and look for input from the user. Of course if
`
`15
`
`the TCAP has been set to perform certain actions, those actions will continue to execute, and
`
`the TCAP may respond to remote servers when it is communicating with them through the
`
`AT. When the user issues a terminate signal 235, then the TCAP will shut down by saving
`
`any data to the TCAP that is in the AT' s memory and then terminating any programs
`
`executing on both the AT and TCAP that were executed by and/or from the TCAP 240. If no
`
`20
`
`activities are taking place on the TCAP and all the data is written back to the TCAP 240, then
`
`the TCAP may optionally unmount itself from the AT's file-system 245. At this point, if
`
`UNITED ST A TES PA TENT APPLICATION
`828982 vi
`
`Page 10 of86
`
`SCOTT MCNULTY
`
`PayPal Ex. 1058, p. 16
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`there is a TCAP I/O driver executing on the AT, that driver may be terminated as triggered
`
`by the absence of the TCAP at a mount point 250. After the TCAP is unmounted and/or the
`
`TCAP I/O driver is terminated, it is safe to disengage the TCAP from the AT.
`
`TCAP AND AT INTERACTION
`
`5
`
`[0025]
`
`Figure 3 illustrates embodiments engaging the tunneling client access point to
`
`an access terminal interaction. Examples of engaging the TCAP 301 with an AT were
`
`discussed above in Figure 1 127, 130, 133a and Figure 2 201. In one embodiment, the TCAP
`
`130 is engaged with an access terminal 327, 305. As mentioned in Figure 1, the TCAP is
`
`capable of engaging with ATs using a number of mechanisms. In one embodiment, the
`
`10
`
`TCAP has a USB connector for plugging into an AT, which acts as a conduit for ~.?wer and
`
`t . ::-:
`
`data transfer. In another embodiment, the TCAP may use Bluetooth to establish a wireless
`
`connection with a number of ATs. In another embodiment, the TCAP may employ WiFi. In
`
`yet another embodiment, the TCAP may employ multiple communications mechanisms. It
`
`should be noted, with some wireless mechanisms like Bluetooth and WiFi, simply coming
`
`15
`
`into proximity with an AT that is configured for such wireless communication may result in
`
`the TCAP engaging with and establish a communications link with the AT. In one
`
`embodiment, the TCAP has a "connect" button that will allow such otherwise automatically
`
`engaging interactions take place only if the "connect" button is engaged by a user. Such an
`
`implementation may provide greater security for users (see Figure 10 for more details on the
`
`20
`
`TCAP).
`
`UNITED STA TES PA TENT APPLICATION
`828982 vi
`
`Page 11 of86
`
`SCOTT MCNULTY
`
`PayPal Ex. 1058, p. 17
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`[0026]
`
`After being engaged 305, the TCAP will then power on. In an embodiment
`
`requiring a direct connection, e.g., USB, simply plugging the TCAP into the AT provides
`
`power. In a wireless embodiment, the TCAP may be on in a lower powered state or otherwise
`
`turned on by engaging the connect button as discussed above. In such an embodiment, the
`
`5
`
`TCAP can employ various on-board power sources (see Figure 10 for more details on the
`
`TCAP). The TCAP then may load its own operating system 315. The operating system can
`
`provide for interaction with the AT. In one embodiment, a Java runtime is executed on the
`
`TCAP, and Java applets communicate with the AT through Java APis. In another
`
`embodiment, a driver is loaded onto the AT, and the on-TCAP Java operating system applets
`
`10
`
`communicate to and through the AT via the driver running on the AT, wherein the qriver
`
`provides an API through and to which messages may be sent.
`
`[002 7]
`
`After engaging with the AT, the TCAP can provide its memory space fo the
`
`AT 320. In one embodiment, the TCAP's memory is mapped and mounted as a virtual disk
`
`drive 125 storage 325. In this manner, the TCAP may be accessed and manipulated as a
`
`15
`
`standard storage device through the AT's operating system. Further, the TCAP and in some
`
`cases the AT can determine if the AT is capable of accessing program instructions stored in
`
`the TCAP's memory 330. In one embodiment, the A T's operating system looks to auto-run a
`
`specified file from any drive as it mounts. In such an embodiment, the TCAP's primary
`
`interface may be specified in such a boot sequence. For example, under windows, an
`
`20
`
`autorun.inf file can specify the opening of a program from the TCAP by the AT; e.g.,
`
`OPEN=TCAP .EXE.
`
`UNITED STATES PATENT APPLICATION
`828982 vi
`
`Page 12 of86
`
`SCOTT MCNULTY
`
`PayPal Ex. 1058, p. 18
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`[0028]
`
`Many operating systems are capable of at least accessing the TCAP as a USB
`
`memory drive 330 and mounting its contents as a drive, which usually becomes accessible in
`
`file browsing window 125. If the TCAP does not mount, the AT's operating system will
`
`usually generate an error informing the user of a mounting problem. If the AT is not capable
`
`5
`
`of executing instruction from the TCAP, a determination is made if an appropriate driver is
`
`loaded on the AT to access the TCAP 335. In one embodiment, the TCAP can check to see if
`
`an API is running on the AT. For example, the TCAP provide an executable to be launched,
`
`e.g., as specified through autorun.inf, and can establish communications through its
`
`connection to the AT, e.g., employing TCP/IP communications over the USB port. In such an
`
`10
`
`embodiment, the TCAP can ping the AT for the program, and if an acknowledgem~nt is
`
`received, the TCAP has determined that proper drivers and APis exist. If no such API e~.ists,
`
`the TCAP may launch a driver installation program for the AT as through an autorun.inf. In
`
`an alternative embodiment, if nothing happens, a user may double click onto an installer
`
`program that is stored on the mounted TCAP 342, 340. It should be noted, that although the
`
`15
`
`TCAP's memory space may be mounted, certain areas of the TCAP may be inaccessible until
`
`there is an authorization. For example, certain areas and content on the TCAP may be
`
`encrypted. It should be noted that any such access terminal modules that drive AT and TCAP
`
`interaction may be saved onto the TCAP by copying the module to a mounted TCAP.
`
`Nevertheless, if the AT is capable of accessing program instructions in TCAP memory 330, a
`
`20
`
`TCAP driver is loaded on the AT 335, and/or the user engages a program in the TCAP
`
`memory 340, then the AT can execute program instructions from the TCAP's memory,
`
`which allows the TCAP to use the AT' s I/O and allowing the user to interface with TCAP
`SCOTT MCNULTY
`
`Page 13 of86
`
`UNITED STATES PATENT APPLICATION
`828982 vi
`
`PayPal Ex. 1058, p. 19
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET NO.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`facilities 345. It should be noted that some ATs may not be able to mount the TCAP at all. In
`
`such an instance, the user may have to install the TCAP drivers by downloading them from a
`
`server on the Internet, loading them from a diskette or CD, and/or the like. Once the TCAP is
`
`engaged to the AT 301, execution may continue 398.
`
`5
`
`TCAP AND AT INTERACTION
`
`[0029)
`
`Figure 4 illustrates embodiments accessing the tunneling client access point
`
`and server through an access terminal. Upon engaging the TCAP to the AT as described in
`
`Figure 3 301, 398, the user may then go on to access the TCAP and its services 498. It should
`
`be noted that users may access certain unprotected areas of the TCAP once it has been
`
`10 mounted, as described in Figure 3. However, to more fully access theTCAP's facilities, the
`
`user may be prompted to either login and/or registration window 205a to access the·~TCAP
`
`and.its services, which may be displayed on the AT405. It is important to note tharin one
`
`embodiment, the execution of the login and/or registration routines are handled by the
`
`TCAP's processor. In such an embodiment, the ICAP may run a small Web server providing
`
`,;p
`,
`
`.-':..!
`
`' '
`
`15
`
`login facilities, and connect to other Web based services through the AT' s connection to the
`
`Internet. Further, the TCAP may employ a basic Web browsing core engine by which it may
`
`connect to Web services through the AT's connection to a communications network like the
`
`Internet. For purposes of security, in one embodiment, the TCAP may connect to a remote
`
`server by employing a secure connection, e.g., HTTPS, VPN, and/or the like.
`
`20
`
`[0030)
`
`Upon displaying a login window 405, e.g., 205a, the user may select to
`
`register to access the TCAP and its services, or they may simply log in by providing security
`
`UNITED ST A TES PA TENT APPLICATION
`828982 vi
`
`Page 14 of86
`
`SCOTT MCNULTY
`
`PayPal Ex. 1058, p. 20
`PayPal v. IOENGINE
`
`

`

`ATTORNEY DOCKET No.: 4602-4001
`
`EXPRESS MAIL LABEL NO.: EV 383045195 US
`
`verification. In one example, security authorization may be granted by simply providing a
`
`user and password as provided through a registration process. In another embodiment,
`
`authorization may be granted through biometric data. For example, the TCAP may integrate
`
`a fingerprint and/or heat sensor IC into its housing. Employing such a device, and simply by
`
`5
`
`providing one's finger print by laying your finger to the TCAP's surface, would provide the
`
`login facility with authorization if the user's finger print matches one that was stored during
`
`the registration process.
`
`[0031]
`
`If the user does not attempt to login 415, i.e., if the user wishes to register to
`
`use the TCAP and its services, then the TCAP can determine if the AT is online 420. This
`
`10 may be accomplished in a number of ways. In one embodiment, the TCAP itself may simply
`
`ping a given server and if acknowledgement of receipt is received, the TCAP is onlir~e. In
`
`another embodiment, the TCAP can query for online status by engaging the AT through the
`
`installed APis. If the AT is not online, then the user may be presented with an error message
`
`425. Thus, if a user does not have a login, and does not have the ability to register, then
`
`15
`
`restricted areas of the TCAP will remain unavailable. Thereafter, flow can continue 498 and
`
`the user may have another opportunity to login and/or register. In one embodiment as a login
`
`integrity check, the TCAP keeps