Application program obfuscation

US 20050069138A1
Filed: 09/25/2003
Published: 03/31/2005
Est. Priority Date: 09/25/2003
Status: Abandoned Application

First Claim

Patent Images

1. A method for enrolling for receipt of one or more obfuscated application programs, the method comprising:

issuing an enrollment request comprising a target ID, said enrollment request for receipt of one or more obfuscated application programs controlled by an application program provider, said target ID specifying a user device configured to execute said one or more obfuscated application programs;

obtaining a secret in response to said issuing; and

associating said secret with said application program provider, said secret for use in executing said one or more obfuscated application programs received from said application program provider.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Obfuscating an application program comprises determining a current obfuscation method based at least in part on a target ID specifying a user device configured to execute the obfuscated application program, creating an obfuscated application program based at least in part on the current obfuscation method, and sending the obfuscated application program to the user device. Executing an obfuscated application program comprises receiving an application program obfuscated based at least in part on a target ID, determining a current obfuscation method based at least in part on the target ID, and interpreting the received application program based at least in part on the current obfuscation method.

131 Citations

View as Search Results

48 Claims

1. A method for enrolling for receipt of one or more obfuscated application programs, the method comprising:
- issuing an enrollment request comprising a target ID, said enrollment request for receipt of one or more obfuscated application programs controlled by an application program provider, said target ID specifying a user device configured to execute said one or more obfuscated application programs;
  
  obtaining a secret in response to said issuing; and
  
  associating said secret with said application program provider, said secret for use in executing said one or more obfuscated application programs received from said application program provider.
- View Dependent Claims (2)
- - 2. The method of claim 1 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

3. A method for enrolling for receipt of one or more obfuscated application programs, the method comprising:
- receiving an enrollment request comprising a target ID, said enrollment request for access by a user device to one or more obfuscated application programs, said target ID specifying said user device, said user device configured to execute said one or more obfuscated application programs;
  
  determining a secret in response to said request;
  
  associating said secret with said target ID; and
  
  transferring said secret to said user device.
- View Dependent Claims (4, 5)
- - 4. The method of claim 3 wherein said determining and said transferring form part of a key exchange protocol.
  - 5. The method of claim 3 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

6. A method for executing an obfuscated application program, the method comprising:
- receiving an application program obfuscated based at least in part on a target ID, said target ID specifying a user device configured to execute said obfuscated application program;
  
  determining a current obfuscation method based at least in part on said target ID; and
  
  interpreting said received application program based at least in part on said current obfuscation method.
- View Dependent Claims (7)
- - 7. The method of claim 6 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

8. A method for application program obfuscation, the method comprising:
- determining a current obfuscation method based at least in part on a target ID, said target ID specifying a user device configured to execute said obfuscated application program;
  
  creating an obfuscated application program based at least in part on said current obfuscation method; and
  
  sending said obfuscated application program to said user device.
- View Dependent Claims (9, 10, 11)
- - 9. The method of claim 8, further comprising receiving an application program request from said user device, said determining occurring in response to said receiving.
  - 10. The method of claim 8 wherein said method further comprises, after said creating, applying a cryptographic process to said obfuscated application program together with a cryptographic key to create an encrypted obfuscated application program;
    - and said sending comprises sending said encrypted obfuscated application program.
  - 11. The method of claim 8 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

12. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for enrolling for receipt of one or more obfuscated application programs, the method comprising:
- issuing an enrollment request comprising a target ID, said enrollment request for receipt of one or more obfuscated application programs controlled by an application program provider, said target ID specifying a user device configured to execute said one or more obfuscated application programs;
  
  obtaining a secret in response to said issuing; and
  
  associating said secret with said application program provider, said secret for use in executing said one or more obfuscated application programs received from said application program provider.
- View Dependent Claims (13)
- - 13. The program storage device of claim 12 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

14. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for enrolling for receipt of one or more obfuscated application programs, the method comprising:
- receiving an enrollment request comprising a target ID, said enrollment request for access by a user device to one or more obfuscated application programs, said target ID specifying said user device, said user device configured to execute said one or more obfuscated application programs;
  
  determining a secret in response to said request;
  
  associating said secret with said target ID; and
  
  transferring said secret to said user device.
- View Dependent Claims (15, 16)
- - 15. The program storage device of claim 14 wherein said determining and said transferring form part of a key exchange protocol.
  - 16. The program storage device of claim 14 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

17. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for executing an obfuscated application program, the method comprising:
- receiving an application program obfuscated based at least in part on a target ID, said target ID specifying a user device configured to execute said obfuscated application program;
  
  determining a current obfuscation method based at least in part on said target ID; and
  
  interpreting said received application program based at least in part on said current obfuscation method.
- View Dependent Claims (18)
- - 18. The program storage device of claim 17 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

19. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform a method for application program obfuscation, the method comprising:
- determining a current obfuscation method based at least in part on a target ID, said target ID specifying a user device configured to execute said obfuscated application program;
  
  creating an obfuscated application program based at least in part on said current obfuscation method; and
  
  sending said obfuscated application program to said user device.
- View Dependent Claims (20, 21, 22)
- - 20. The program storage device of claim 19, said method further comprising receiving an application program request from said user device, said determining occurring in response to said receiving.
  - 21. The program storage device of claim 19 wherein said method further comprises, after said creating, applying a cryptographic process to said obfuscated application program together with a cryptographic key to create an encrypted obfuscated application program;
    - and said sending comprises sending said encrypted obfuscated application program.
  - 22. The program storage device of claim 19 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

23. An apparatus for enrolling for receipt of one or more obfuscated application programs, the method comprising:
- means for issuing an enrollment request comprising a target ID, said enrollment request for receipt of one or more obfuscated application programs controlled by an application program provider, said target ID specifying a user device configured to execute said one or more obfuscated application programs;
  
  means for obtaining a secret in response to said issuing; and
  
  means for associating said secret with said application program provider, said secret for use in executing said one or more obfuscated application programs received from said application program provider.
- View Dependent Claims (24)
- - 24. The apparatus of claim 23 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

25. An apparatus for enrolling for receipt of one or more obfuscated application programs, the apparatus comprising:
- means for receiving an enrollment request comprising a target ID, said enrollment request for access by a user device to one or more obfuscated application programs, said target ID specifying said user device, said user device configured to execute said one or more obfuscated application programs;
  
  means for determining a secret in response to said request;
  
  means for associating said secret with said target ID; and
  
  means for transferring said secret to said user device.
- View Dependent Claims (26, 27)
- - 26. The apparatus of claim 25 wherein said determining and said transferring form part of a key exchange protocol.
  - 27. The apparatus of claim 25 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

28. An apparatus for executing an obfuscated application program, the apparatus comprising:
- means for receiving an application program obfuscated based at least in part on a target ID, said target ID specifying a user device configured to execute said obfuscated application program;
  
  means for determining a current obfuscation based at least in part on said target ID; and
  
  means for interpreting said received application program based at least in part on said current obfuscation method.
- View Dependent Claims (29)
- - 29. The apparatus of claim 28 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

30. An apparatus for application program obfuscation, the apparatus comprising:
- means for determining a current obfuscation method based at least in part on a target ID, said target ID specifying a user device configured to execute said obfuscated application program;
  
  means for creating an obfuscated application program based at least in part on said current obfuscation method; and
  
  means for sending said obfuscated application program to said user device.
- View Dependent Claims (31, 32, 33)
- - 31. The apparatus of claim 30, further comprising means for receiving an application program request from said user device, said determining occurring in response to said receiving.
  - 32. The apparatus of claim 30 wherein said apparatus further comprises means for applying a cryptographic process to said obfuscated application program together with a cryptographic key to create an encrypted obfuscated application program, said means for applying responsive to said creating;
    - and said means for sending comprises means for sending said encrypted obfuscated application program.
  - 33. The apparatus of claim 30 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

34. An apparatus for enrolling for receipt of one or more obfuscated application programs, the apparatus comprising a deobfuscator configured to:
- issue an enrollment request comprising a target ID, said enrollment request for receipt of one or more obfuscated application programs controlled by an application program provider, said target ID specifying a user device configured to execute said one or more obfuscated application programs;
  
  obtain a secret in response to said issuing; and
  
  associate said secret with said application program provider, said secret for use in executing said one or more obfuscated application programs received from said application program provider.
- View Dependent Claims (35)
- - 35. The apparatus of claim 34 wherein said apparatus comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

36. An apparatus for enrolling for receipt of one or more obfuscated application programs, the apparatus comprising an obfuscator configured to:
- receive an enrollment request comprising a target ID, said enrollment request for access by a user device to one or more obfuscated application programs, said target ID specifying said user device, said user device configured to execute said one or more obfuscated application programs;
  
  determine a secret in response to said request;
  
  associate said secret with said target ID; and
  
  transfer said secret to said user device.
- View Dependent Claims (37, 38)
- - 37. The apparatus of claim 36 wherein said determining and said transferring form part of a key exchange protocol.
  - 38. The apparatus of claim 36 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

39. An apparatus for executing an obfuscated application program, the apparatus comprising a deobfuscator configured to:
- receive an application program obfuscated based at least in part on a target ID, said target ID specifying a user device configured to execute said obfuscated application program;
  
  determine a current obfuscation method based at least in part on said target ID; and
  
  interpret said received application program based at least in part on said current obfuscation method.
- View Dependent Claims (40)
- - 40. The apparatus of claim 39 wherein said apparatus comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

41. An apparatus for application program obfuscation, the apparatus comprising an obfuscator configured to:
- determine a current obfuscation method based at least in part on a target ID, said target ID specifying a user device configured to execute said obfuscated application program;
  
  create an obfuscated application program based at least in part on said current obfuscation method; and
  
  send said obfuscated application program to said user device.
- View Dependent Claims (42, 43, 44)
- - 42. The apparatus of claim 41, said obfuscator further configured to receive an application program request from said user device and perform said determining in response to said receiving.
  - 43. The apparatus of claim 41 wherein said obfuscator is further configured to apply a cryptographic process to said obfuscated application program together with a cryptographic key to create an encrypted obfuscated application program;
    - and said obfuscator is further configured to send said encrypted obfuscated application program.
  - 44. The apparatus of claim 41 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.

45. A memory for storing data for access by an application program being executed on a data processing system, comprising:
- a data structure stored in said memory, said data structure including information used by said application program execute an obfuscated application program, said data structure comprising an application program obfuscated based at least in part on a target ID, said target ID specifying a user device configured to execute said obfuscated application program.
- View Dependent Claims (46, 47, 48)
- - 46. The memory of claim 45 wherein said user device comprises a virtual machine (VM);
    - and said target ID comprises a VM ID.
  - 47. The memory of claim 45 wherein said data structure further comprises a cryptographic key and protected data, said protected data encrypted using said cryptographic key.
  - 48. The memory of claim 45 wherein said data structure further comprises an obfuscation descriptor that indicates an obfuscation method used to create said obfuscated application program.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sun Microsystems Incorporated (Oracle Corporation)
Original Assignee
Sun Microsystems Incorporated (Oracle Corporation)
Inventors
de Jong, Eduard K.

Application Number

US10/672,698
Publication Number

US 20050069138A1
Time in Patent Office

Days
Field of Search
US Class Current

380/278
CPC Class Codes

G06F 21/101   by binding digital rights t...

G06F 21/14   against software analysis o...

G06F 9/3017   Runtime instruction transla...

G06F 9/30174   for non-native instruction ...

G06F 9/32   Address formation of the ne...

G06F 9/321   Program or instruction coun...

G06F 9/3836   Instruction issuing, e.g. d...

H04L 2209/16   Obfuscation or hiding, e.g....

H04L 2209/60   Digital content management,...

H04L 2209/80   Wireless network architectu...

H04L 9/0822   using key encryption key

Application program obfuscation

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

131 Citations

48 Claims

Specification

Solutions

Use Cases

Quick Links

Application program obfuscation

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

131 Citations

48 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links