Integrity checking for software downloaded from untrusted sources
First Claim
Patent Images
1. A method by which a software publisher prepares a target file to be downloaded quickly and securely from a source computer, said method comprising the steps of:
- breaking up the target file into a plurality of chunks; and
creating a manifest file comprising a digest for each chunk.
2 Assignments
0 Petitions
Accused Products
Abstract
Computer-implemented methods, apparati, data structures, and computer-readable media for downloading a target file (1) quickly and securely from a source computer (2). The target file (1) is broken up into a plurality of chunks (12). The integrity of each chunk (12) is verified (25) by calculating a digest for each chunk (12) and comparing the calculated digest with a prestored digest (32) for that chunk (12). In several embodiments, a manifest file (3) is created. In these embodiments, the manifest file (3) contains the digest (32) for each chunk (12).
-
Citations
41 Claims
-
1. A method by which a software publisher prepares a target file to be downloaded quickly and securely from a source computer, said method comprising the steps of:
-
breaking up the target file into a plurality of chunks; and
creating a manifest file comprising a digest for each chunk. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. A computer-readable medium containing computer program instructions for preparing a target file to be downloaded quickly and securely from a source computer, said computer program instructions performing the steps of:
-
breaking up the target file into a plurality of chunks; and
digitally signing each chunk. - View Dependent Claims (32)
-
-
33. A computer-readable medium containing computer program instructions for preparing a target file to be downloaded quickly and securely from a source computer, said computer program instructions performing the steps of:
-
breaking up the target file into a plurality of chunks; and
creating a manifest file containing a digest for each chunk. - View Dependent Claims (34, 35)
-
-
36. A method by which a downloading computer downloads a target file quickly and securely from a source computer, said method comprising the steps of:
-
piecewise downloading the target file in a plurality of chunks; and
verifying a digital signature for each chunk.
-
-
37. A method by which a downloading computer downloads a target file quickly and securely from a source computer, said method comprising the steps of:
-
piecewise downloading the target file in a plurality of chunks; and
verifying the integrity of each chunk by calculating a digest for each chunk and comparing the calculated digest with a prestored digest for that chunk.
-
-
38. A target computer file prepared for quick and secure download from a source computer, said target computer file comprising:
-
a plurality of chunks;
a digital signature affixed to each chunk; and
a header containing a chunk size and having a preselected maximum number of bytes.
-
-
39. A target computer file prepared for quick and secure download from a source computer, said target computer file comprising:
-
a plurality of chunks, each chunk except for a last chunk having N bytes, where N is an integer greater than 1; and
associated with the target file, a manifest file containing a digest for each chunk, and further containing N and an overall number of bytes S of the target file.
-
-
40. A method by which a software publisher prepares a target file to be downloaded quickly and securely from a source computer, said method comprising the steps of:
-
breaking up the target file into a plurality of chunks;
digitally signing each chunk;
placing a chunk size into a header of the target file; and
imposing a maximum on the number of bytes in the header. - View Dependent Claims (41)
-
Specification