Post-signing modification of software
First Claim
1. A computer program product having a computer-readable medium having computer program instructions recorded thereon for making a post-signing modification to a digitally-signed software application to be downloaded by a user onto a computer, the computer program instruction comprising instructions for:
- extending length of a signature section at an end of an executable file of the digitally-signed software application to form a storage section at an end of the signature section, wherein the executable file includes a digital signature in the signature section and a header describing sections of the executable file;
adjusting the header to indicate size of the storage section appended at the end of the executable file; and
inserting post-signing data into the storage section, wherein validity of the digital signature is maintained without requiring the file to be re-signed after insertion of the post-signing data.
2 Assignments
0 Petitions
Accused Products
Abstract
A technique for making post-signing modifications to a digitally-signed software application without invalidating the signature can be used to enhance a user experience when downloading the software application. An extension module extends the length of a signature section at the end of an executable file for the digitally-signed software application to form a storage section. A header adjustment module adjusts the header to indicate size of the storage section appended at the end of the executable file. A data insertion module inserts post-signing data into the storage section, and the validity of the digital signature is maintained without requiring the file to be re-signed after insertion of the post-signing data. Thus, a software vendor can add into the software user-specific data after the file has been signed, while still maintaining the signature'"'"'s validity, so the software can be downloaded with minimal interruption to the user.
26 Citations
20 Claims
-
1. A computer program product having a computer-readable medium having computer program instructions recorded thereon for making a post-signing modification to a digitally-signed software application to be downloaded by a user onto a computer, the computer program instruction comprising instructions for:
-
extending length of a signature section at an end of an executable file of the digitally-signed software application to form a storage section at an end of the signature section, wherein the executable file includes a digital signature in the signature section and a header describing sections of the executable file;
adjusting the header to indicate size of the storage section appended at the end of the executable file; and
inserting post-signing data into the storage section, wherein validity of the digital signature is maintained without requiring the file to be re-signed after insertion of the post-signing data. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method of making a post-signing modification to a digitally-signed software application to be downloaded by a user onto a computer, the method comprising:
-
extending length of a signature section at an end of an executable file of the digitally-signed software application to form a storage section at an end of the signature section, wherein the executable file includes a digital signature in the signature section and a header describing sections of the executable file;
adjusting the header to indicate size of the storage section appended at the end of the executable file; and
inserting post-signing data into the storage section, wherein validity of the digital signature is maintained without requiring the file to be re-signed after insertion of the post-signing data. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A system for making a post-signing modification to a digitally-signed software application to be downloaded by a user onto a computer, the system comprising:
-
an extension module for extending length of a signature section at an end of an executable file of the digitally-signed software application to form a storage section at an end of the signature section, wherein the executable file includes a digital signature in the signature section and a header describing sections of the executable file;
a header adjustment module for adjusting the header to indicate size of the storage section appended at the end of the executable file; and
a data insertion module for inserting post-signing data into the storage section, wherein validity of the digital signature is maintained without requiring the file to be re-signed after insertion of the post-signing data. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A system for making a post-signing modification to a digitally-signed software application to be downloaded by a user onto a computer, the system comprising:
-
means for extending length of a signature section at an end of an executable file of the digitally-signed software application to form a storage section at an end of the signature section, wherein the executable file includes a digital signature in the signature section and a header describing sections of the executable file;
means for adjusting the header to indicate size of the storage section appended at the end of the executable file; and
means for inserting post-signing data into the storage section, wherein validity of the digital signature is maintained without requiring the file to be re-signed after insertion of the post-signing data. - View Dependent Claims (20)
-
Specification