Encrypted program distribution system using computer network

US 20020053024A1
Filed: 10/31/2001
Published: 05/02/2002
Est. Priority Date: 10/31/2000
Status: Abandoned Application

First Claim

Patent Images

1. A program distribution system, comprising a source file sending device, an encrypted program distribution device and an execution file receiving device, which are interconnected through a network;

the source file sending device having;

a first sending unit configured to send a source file of a program to the encrypted program distribution device;

the encrypted program distribution device having;

a first receiving unit configured to receive the source file sent from the source file sending device;

an examination unit configured to examine the source file received by the first receiving unit;

an execution file generation unit configured to generate an execution file of the program from the source file examined by the examination unit, when the source file passes an examination by the examination unit;

a public key receiving unit configured to receive a public key which is either unique to the execution file receiving device or unique to a processor of the execution file receiving device, from the execution file receiving device, when the source file passes an examination by the examination unit;

an encryption unit configured to encrypt at least a part of the execution file by using the public key received by the public key receiving unit, when the source file passes an examination by the examination unit; and

a second sending unit configured to send the execution file encrypted by the encryption unit to the execution file receiving device, when the source file passes an examination by the examination unit; and

the execution file receiving device having;

a public key sending unit configured to send the public key to the encrypted program distribution device;

a second receiving unit configured to receive the execution file sent from the encrypted program distribution device; and

a decryption unit configured to decrypt the execution file received by the second receiving unit by using a secret key corresponding to the public key.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In a program distribution system including a source file sending device, an encrypted program distribution device and an execution file receiving device, which are interconnected through a network, the encrypted program distribution device examines the source file received from the source file sending device, and when the source file passes an examination, an execution file of the program is generated from the source file, a public key which is either unique to an execution file receiving device or unique to a processor of the execution file receiving device is received from the execution file receiving device through the network, at least a part of the execution file is encrypted by using the public key, and the execution file is sent to the execution file receiving device.

82 Citations

View as Search Results

31 Claims

1. A program distribution system, comprising a source file sending device, an encrypted program distribution device and an execution file receiving device, which are interconnected through a network;
- the source file sending device having;
  
  a first sending unit configured to send a source file of a program to the encrypted program distribution device;
  
  the encrypted program distribution device having;
  
  a first receiving unit configured to receive the source file sent from the source file sending device;
  
  an examination unit configured to examine the source file received by the first receiving unit;
  
  an execution file generation unit configured to generate an execution file of the program from the source file examined by the examination unit, when the source file passes an examination by the examination unit;
  
  a public key receiving unit configured to receive a public key which is either unique to the execution file receiving device or unique to a processor of the execution file receiving device, from the execution file receiving device, when the source file passes an examination by the examination unit;
  
  an encryption unit configured to encrypt at least a part of the execution file by using the public key received by the public key receiving unit, when the source file passes an examination by the examination unit; and
  
  a second sending unit configured to send the execution file encrypted by the encryption unit to the execution file receiving device, when the source file passes an examination by the examination unit; and
  
  the execution file receiving device having;
  
  a public key sending unit configured to send the public key to the encrypted program distribution device;
  
  a second receiving unit configured to receive the execution file sent from the encrypted program distribution device; and
  
  a decryption unit configured to decrypt the execution file received by the second receiving unit by using a secret key corresponding to the public key.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The program distribution system of claim 1, wherein the encrypted program distribution device also has a detection unit configured to detect whether the source file violates a secret information handling rules or not according to the secret information handling rules predetermined between the source file sending device and the encrypted program distribution device;
    - wherein a generation of the execution file by the execution file generation unit, an encryption of the execution file by the encryption unit, and a sending of the execution file by the second sending unit are stopped when the detection unit detects a violation of the secret information handling rules by the source file.
  - 3. The program distribution system of claim 2, wherein the encrypted program distribution device notifies information indicating the violation and/or a failure to the source file sending device when the detection unit detects the violation of the secret information handling rules by the source file and/or when the execution file generation unit fails to generate the execution file from the source file.
  - 4. The program distribution system of claim 1, wherein the source file sending device also has a third sending unit configured to send a region information specifying a secret information region in the execution file of the program to the encrypted program distribution device;
    - and the encrypted program distribution device also has;
      
      a third receiving unit configured to receive the region information; and
      
      a secret information region determining unit configured to determine the secret information region that stores a secret information in the execution file according to the secret information handling rules predetermined between the source file sending device and the encrypted program distribution device and/or the region information.
  - 5. The program distribution system of claim 1, wherein the encrypted program distribution device also has a recording unit configured to record the source file, the execution file, the public key used in encrypting the execution file, and a region information for specifying a secret information region in the execution file in correspondence.
  - 6. The program distribution system of claim 1, wherein the execution file generation unit of the encrypted program distribution device generates functionally equivalent execution files having different machine language instructions at a time of generating the execution file from the source file.
  - 7. The program distribution system of claim 1, wherein the execution file generation unit of the encrypted program distribution device writes an information indicating a destination of a trouble information for the program as a part of the execution file at a time of generating the execution file from the source file.
  - 8. The program distribution system of claim 7 wherein the the destination of the trouble information is the encrypted program distribution device.
  - 9. The program distribution system of claim 1, wherein the execution file receiving device also has a third sending unit configured to send a trouble information regarding the execution file;
    - and the encrypted program distribution device also has a third receiving unit configured to receive the trouble information sent from the execution file receiving device.
  - 10. The program distribution system of claim 9, wherein the encrypted program distribution system also has a fourth sending unit configured to send the trouble information received from the execution file receiving device to the source file sending device.

11. A program distribution system, comprising a source file sending device, an encrypted program distribution device and an execution file receiving device, which are interconnected through a network;
- the source file sending device having;
  
  a first sending unit configured to send a source file of a program to the encrypted program distribution device;
  
  the encrypted program distribution device having;
  
  a first receiving unit configured to receive the source file sent from the source file sending device;
  
  an examination unit configured to examine the source file received by the first receiving unit;
  
  an execution file generation unit configured to generate an execution file of the program from the source file examined by the examination unit, when the source file passes an examination by the examination unit;
  
  a first encryption unit configured to encrypt at least a part of the execution file by using a prescribed secret key, when the source file passes an examination by the examination unit;
  
  a public key receiving unit configured to receive a public key which is either unique to the execution file receiving device or unique to a processor of the execution file receiving device, from the execution file receiving device, when the source file passes an examination by the examination unit;
  
  a second encryption unit configured to encrypt the prescribed secret key by using the public key received by the public key receiving unit, when the source file passes an examination by the examination unit; and
  
  a second sending unit configured to send the execution file encrypted by the first encryption unit and the prescribed secret key encrypted by the second encryption unit to the execution file receiving device, when the source file passes an examination by the examination unit; and
  
  the execution file receiving device having;
  
  a public key sending unit configured to send the public key to the encrypted program distribution device;
  
  a second receiving unit configured to receive the execution file and the prescribed secret key sent from the encrypted program distribution device; and
  
  a first decryption unit configured to decrypt the prescribed secret key received by the second receiving unit by using a secret key corresponding to the public key; and
  
  a second decryption unit configured to decrypt the execution file received by the second receiving unit by using the prescribed secret key decrypted by the first decryption unit.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 12. The program distribution system of claim 11, wherein the prescribed secret key is randomly generated according to the program.
  - 13. The program distribution system of claim 11, wherein the encrypted program distribution device also has a detection unit configured to detect whether the source file violates a secret information handling rules or not according to the secret information handling rules predetermined between the source file sending device and the encrypted program distribution device;
    - wherein a generation of the execution file by the execution file generation unit, an encryption of the execution file by the first encryption unit, an encryption of the prescribed secret key by the second encryption unit, and a sending of the execution file and the prescribed secret key by the second sending unit are stopped when the detection unit detects a violation of the secret information handling rules by the source file.
  - 14. The program distribution system of claim 13, wherein the encrypted program distribution device notifies information indicating the violation and/or a failure to the source file sending device when the detection unit detects the violation of the secret information handling rules by the source file and/or when the execution file generation unit fails to generate the execution file from the source file.
  - 15. The program distribution system of claim 11, wherein the source file sending device also has a third sending unit configured to send a region information specifying a secret information region in the execution file of the program to the encrypted program distribution device;
    - and the encrypted program distribution device also has;
      
      a third receiving unit configured to receive the region information; and
      
      a secret information region determining unit configured to determine the secret information region that stores a secret information in the execution file according to the secret information handling rules predetermined between the source file sending device and the encrypted program distribution device and/or the region information.
  - 16. The program distribution system of claim 11, wherein the encrypted program distribution device also has a recording unit configured to record the source file, the execution file, the prescribed secret key used in encrypting the execution file, and a region information for specifying a secret information region in the execution file in correspondence.
  - 17. The program distribution system of claim 11, wherein the execution file generation unit of the encrypted program distribution device generates functionally equivalent execution files having different machine language instructions at a time of generating the execution file from the source file.
  - 18. The program distribution system of claim 11, wherein the execution file generation unit of the encrypted program distribution device writes an information indicating a destination of a trouble information for the program as a part of the execution file at a time of generating the execution file from the source file.
  - 19. The program distribution system of claim 18, wherein the the destination of the trouble information is the encrypted program distribution device.
  - 20. The program distribution system of claim 11, wherein the execution file receiving device also has a third sending unit configured to send a trouble information regarding the execution file;
    - and the encrypted program distribution device also has a third receiving unit configured to receive the trouble information sent from the execution file receiving device.
  - 21. The program distribution system of claim 20, wherein the encrypted program distribution system also has a fourth sending unit configured to send the trouble information received from the execution file receiving device to the source file sending device.
  - 22. The program distribution system of claim 20, wherein the encrypted program distribution device also has a reward determining unit configured to determine a prescribed reward to a user of the execution file receiving device who sent the trouble information.
  - 23. The program distribution system of claim 11, wherein the execution file receiving device also has a third sending unit configured to send a trouble information regarding the execution file;
    - and the encrypted program distribution device also has;
      
      a third decryption unit configured to decrypt a part of the trouble information sent from the execution file receiving device by using the prescribed secret key corresponding to the execution file;
      
      a removal unit configured to remove a prescribed secret information in a prescribed secret information storage region from the trouble information decrypted by the third decryption unit; and
      
      a third sending unit configured to send the trouble information from which the prescribed secret information is removed by the removing unit, to the source file sending device.

24. An encrypted program distribution device, comprising:
- a receiving unit configured to receive a source file of a program sent from a source file sending device through a network;
  
  an examination unit configured to examine the source file received by the first receiving unit;
  
  an execution file generation unit configured to generate an execution file of the program from the source file examined by the examination unit, when the source file passes an examination by the examination unit;
  
  a public key receiving unit configured to receive a public key which is either unique to an execution file receiving device or unique to a processor of the execution file receiving device, from the execution file receiving device through the network, when the source file passes an examination by the examination unit;
  
  an encryption unit configured to encrypt at least a part of the execution file by using the public key received by the public key receiving unit, when the source file passes an examination by the examination unit; and
  
  a sending unit configured to send the execution file encrypted by the encryption unit to the execution file receiving device, when the source file passes an examination by the examination unit.

25. An encrypted program distribution device, comprising:
- a receiving unit configured to receive a source file of a program sent from a source file sending device through a network;
  
  an examination unit configured to examine the source file received by the first receiving unit;
  
  an execution file generation unit configured to generate an execution file of the program from the source file examined by the examination unit, when the source file passes an examination by the examination unit;
  
  a first encryption unit configured to encrypt at least a part of the execution file by using a prescribed secret key, when the source file passes an examination by the examination unit;
  
  a public key receiving unit configured to receive a public key which is either unique to an execution file receiving device or unique to a processor of the execution file receiving device, from the execution file receiving device through the network, when the source file passes an examination by the examination unit;
  
  a second encryption unit configured to encrypt the prescribed secret key by using the public key received by the public key receiving unit, when the source file passes an examination by the examination unit; and
  
  a sending unit configured to send the execution file encrypted by the first encryption unit and the prescribed secret key encrypted by the second encryption unit to the execution file receiving device, when the source file passes an examination by the examination unit.

26. A program distribution method in a program distribution system comprising a source file sending device, an encrypted program distribution device and an execution file receiving device, which are interconnected through a network, the method comprising:
- (a) sending a source file of a program from the source file sending device to the encrypted program distribution device;
  
  (b) receiving the source file sent from the source file sending device at the encrypted program distribution device;
  
  (c) examining the source file received by the step (b) at the encrypted program distribution device;
  
  (d) generating an execution file of the program from the source file examined by the step (c), at the encrypted program distribution device, when the source file passes an examination by the step (c);
  
  (e) receiving a public key which is either unique to the execution file receiving device or unique to a processor of the execution file receiving device and which is from the execution file receiving device, at the encrypted program distribution device, when the source file passes an examination by the step (c);
  
  (f) encrypting at least a part of the execution file by using the public key received by the step (e), at the encrypted program distribution device, when the source file passes an examination by the step (c);
  
  (g) sending the execution file encrypted by the step (f) from the encrypted program distribution device to the execution file receiving device, when the source file passes an examination by the step (c);
  
  (h) receiving the execution file sent from the encrypted program distribution device at the execution file receiving device; and
  
  (i) decrypting the execution file received by the step (h) by using a secret key corresponding to the public key at the execution file receiving device.

27. A program distribution method in a program distribution system comprising a source file sending device, an encrypted program distribution device and an execution file receiving device, which are interconnected through a network, the method comprising:
- (a) sending a source file of a program from the source file sending device to the encrypted program distribution device;
  
  (b) receiving the source file sent from the source file sending device at the encrypted program distribution device;
  
  (c) examining the source file received by the step (b) at the encrypted program distribution device;
  
  (d) generating an execution file of the program from the source file examined by the step (c), at the encrypted program distribution device, when the source file passes an examination by the step (c);
  
  (e) encrypting at least a part of the execution file by using a prescribed secret key, at the encrypted program distribution device, when the source file passes an examination by the step (c);
  
  (f) receiving a public key which is either unique to the execution file receiving device or unique to a processor of the execution file receiving device and which is sent from the execution file receiving device, at the encrypted program distribution device, when the source file passes an examination by the step (c);
  
  (g) encrypting the prescribed secret key by using the public key received by the step (f), at the encrypted program distribution device, when the source file passes an examination by the step (c);
  
  (h) sending the execution file encrypted by the step (e) and the prescribed secret key encrypted by the step (g) from the encrypted program distribution device to the execution file receiving device, when the source file passes an examination by the step (c);
  
  (i) receiving the execution file and the prescribed secret key sent from the encrypted program distribution device at the execution file receiving device;
  
  (j) decrypting the prescribed secret key received by the step (i) by using a secret key corresponding to the public key at the execution file receiving device; and
  
  (k) decrypting the execution file received by the step (i) by using the prescribed secret key decrypted by the step (j) at the execution file receiving device.

28. A program distribution method, comprising:
- (a) receiving a source file of a program sent from a source file sending device through a network;
  
  (b) examining the source file received by the step (a);
  
  (c) generating an execution file of the program from the source file examined by the step (b), when the source file passes an examination by the step (b);
  
  (d) receiving a public key which is either unique to an execution file receiving device or unique to a processor of the execution file receiving device, from the execution file receiving device through the network, when the source file passes an examination by the step (b);
  
  (e) encrypting at least a part of the execution file by using the public key received by the step (d), when the source file passes an examination by the step (b); and
  
  (f) sending the execution file encrypted by the step (e) to the execution file receiving device, when the source file passes an examination by the step (b).

29. A program distribution method, comprising:
- (a) receiving a source file of a program sent from a source file sending device through a network;
  
  (b) examining the source file received by the step (a);
  
  (c) generating an execution file of the program from the source file examined by the step (b), when the source file passes an examination by the step (b);
  
  (d) encrypting at least a part of the execution file by using a prescribed secret key, when the source file passes an examination by the step (b);
  
  (e) receiving a public key which is either unique to an execution file receiving device or unique to a processor of the execution file receiving device, from the execution file receiving device through the network, when the source file passes an examination by the step (b);
  
  (f) encrypting the prescribed secret key by using the public key received by the step (e), when the source file passes an examination by the step (b); and
  
  (g) sending the execution file encrypted by the step (d) and the prescribed secret key encrypted by the step (f) to the execution file receiving device, when the source file passes an examination by the step (b).

30. A computer program product for causing a computer to function as an encrypted program distribution device, the computer program product comprising:
- first computer program codes for causing the computer to receive a source file of a program sent from a source file sending device through a network;
  
  second computer program codes for causing the computer to examine the source file received by the first computer program codes;
  
  third computer program codes for causing the computer to generate an execution file of the program from the source file examined by the second computer program codes, when the source file passes an examination by the second computer program codes;
  
  fourth computer program codes for causing the computer to receive a public key which is either unique to an execution file receiving device or unique to a processor of the execution file receiving device, from the execution file receiving device through the network, when the source file passes an examination by the second computer program codes;
  
  fifth computer program codes for causing the computer to encrypt at least a part of the execution file by using the public key received by the fourth computer program codes, when the source file passes an examination by the second computer program codes; and
  
  sixth computer program codes for causing the computer to send the execution file encrypted by the fifth computer program codes to the execution file receiving device, when the source file passes an examination by the second computer program codes.

31. A computer program product for causing a computer to function as an encrypted program distribution device, the computer program product comprising:
- first computer program codes for causing the computer to receive a source file of a program sent from a source file sending device through a network;
  
  second computer program codes for causing the computer to examine the source file received by the first computer program codes;
  
  third computer program codes for causing the computer to generate an execution file of the program from the source file examined by the second computer program codes, when the source file passes an examination by the second computer program codes;
  
  fourth computer program codes for causing the computer to encrypt at least a part of the execution file by using a prescribed secret key, when the source file passes an examination by the second computer program codes;
  
  fifth computer program codes for causing the computer to receive a public key which is either unique to an execution file receiving device or unique to a processor of the execution file receiving device, from the execution file receiving device through the network, when the source file passes an examination by the second computer program codes;
  
  sixth computer program codes for causing the computer to encrypt the prescribed secret key by using the public key received by the fifth computer program codes, when the source file passes an examination by the second computer program codes; and
  
  seventh computer program codes for causing the computer to send the execution file encrypted by the fourth computer program codes and the prescribed secret key encrypted by the sixth computer program codes to the execution file receiving device, when the source file passes an examination by the second computer program codes.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Kabushiki Kaisha Toshiba (Toshiba Corporation)
Original Assignee
Kabushiki Kaisha Toshiba (Toshiba Corporation)
Inventors
Teramoto, Keiichi, Hashimoto, Mikio, Fujimoto, Kensaku, Ozaki, Satoshi, Shirakawa, Kenji, Shimojo, Yoshimitsu

Application Number

US09/984,717
Publication Number

US 20020053024A1
Time in Patent Office

Days
Field of Search
US Class Current

713/168
CPC Class Codes

G06F 21/125   by manipulating the program...

G06F 21/6254   by anonymising data, e.g. d...

G06F 2221/2135   Metering

H04L 63/0428   wherein the data content is...

H04L 63/0823   using certificates cryptogr...

H04L 63/123   received data contents, e.g...

H04L 67/06   specially adapted for file ...

Encrypted program distribution system using computer network

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

82 Citations

31 Claims

Specification

Solutions

Use Cases

Quick Links

Encrypted program distribution system using computer network

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

82 Citations

31 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links