Software Signature Tracking

US 20110093701A1
Filed: 10/13/2010
Published: 04/21/2011
Est. Priority Date: 10/19/2009
Status: Active Grant

First Claim

Patent Images

1. A method for preventing unauthorized use of software, comprising:

recording, using a computer, an indication of at least one selected file of a software application in a memory location accessible to a security component of the software application, in which software application the security component is configured to cause a hash signature of the at least one selected file to be generated in response to a signal arising from use of the software application;

hashing the at least one selected file to generate a first file signature;

transmitting the first file signature to a secure network-accessible computer memory for storage and subsequent comparison to at least one subsequent file signature generated via operation of the security component on a client device;

comparing the first file signature to a second file signature generated by the security component in response to a signal arising from use of the software application on the client device; and

disabling the software application on the client device, in response to determining that the first file signature does not match the second file signature.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for preventing unauthorized use of software may be achieved by executing computer-readable code with instructions for recording an indication of at least one selected file of a software application in a memory location accessible to a security component of the software application, in which software application the security component is configured to cause a hash signature of the at least one selected file to be generated in response to a signal arising from use of the software application, hashing the at least one selected file to generate a first file signature, transmitting the first file signature to a secure network-accessible computer memory for storage and subsequent comparison to at least one subsequent file signature generated via operation of the security component on a client device, comparing the first file signature to a second file signature generated by the security component in response to a signal arising from use of the software application on the client device, and disabling the software application on the client device, in response to determining that the first file signature does not match the second file signature.

154 Citations

View as Search Results

20 Claims

1. A method for preventing unauthorized use of software, comprising:
- recording, using a computer, an indication of at least one selected file of a software application in a memory location accessible to a security component of the software application, in which software application the security component is configured to cause a hash signature of the at least one selected file to be generated in response to a signal arising from use of the software application;
  
  hashing the at least one selected file to generate a first file signature;
  
  transmitting the first file signature to a secure network-accessible computer memory for storage and subsequent comparison to at least one subsequent file signature generated via operation of the security component on a client device;
  
  comparing the first file signature to a second file signature generated by the security component in response to a signal arising from use of the software application on the client device; and
  
  disabling the software application on the client device, in response to determining that the first file signature does not match the second file signature.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, further comprising storing results from comparing the second file signature to the first file signature, in association with an identifier for the client device.
  - 3. The method of claim 1, further comprising transmitting the first file signature to the client device for comparison to the second file signature generated on the client device.
  - 4. The method of claim 1, further comprising comparing the second file signature to the first file signature using the security component of the software application.
  - 5. The method of claim 1, further comprising comparing the first file signature to the second file signature in response to a signal arising from use of the software application on the client device.
  - 6. The method of claim 5, wherein the signal is caused by installation of the software application on the client device.
  - 7. The method of claim 5, wherein the signal is caused by execution of the software application on the client device.
  - 8. The method of claim 1, further comprising storing metadata identifying the client device, the software application, and a date that the second file signature is generated, in a database of file signature data.
  - 9. The method of claim 8, further comprising generating a report tracking instances of generations of second file signatures for the software application across multiple client devices.

10. A method for preventing unauthorized use of software, comprising:
- generating a file signature of a designated executable file installed on a client device, using a hashing algorithm, in response to use of an application of which the designated executable file is a component;
  
  causing the file signature to be compared to an earlier file signature determined for the designated executable file to obtain comparison results indicating whether the file signature matches the earlier file signature; and
  
  disabling use of the application on the client device in response to the comparison results.
- View Dependent Claims (11, 12, 13, 14)
- - 11. The method of claim 10, wherein disabling use of the application further comprises disabling at least one function of the application in response to comparison results indicating that the file signature does not match the earlier file signature.
  - 12. The method of claim 10, wherein causing the file signature to be compared further comprises transmitting the file signature to a remote device for comparison to the earlier file signature, and receiving the comparison results in response.
  - 13. The method of claim 12, further comprising transmitting the file signature to the remote device with metadata indicating an identifier for the client device.
  - 14. The method of claim 12, further comprising transmitting the file signature to the remote device with metadata describing the application.

15. A computer-readable medium encoded with instructions, that when executed by a processor, cause a computer to:
- generate a file signature of a designated executable file installed on a client device, using a hashing algorithm, in response to use of an application of which the designated executable file is a component;
  
  initiate a comparison between the file signature and an earlier file signature determined for the designated executable file to obtain comparison results indicating whether the file signature matches the earlier file signature; and
  
  disable use of the application in response to the comparison results.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The computer-readable medium of claim 15, wherein the instructions are further configured to cause the computer to disable at least one function of the application in response to comparison results indicating that the file signature does not match the earlier file signature.
  - 17. The computer-readable medium of claim 15, wherein the instructions are further configured to cause the file signature to be compared by transmitting the file signature to a remote device for comparison to the earlier file signature, and receiving the comparison results in response.
  - 18. The computer-readable medium of claim 15, wherein the instructions are further configured to transmit the file signature to a remote device with metadata describing the application.
  - 19. The computer-readable medium of claim 15, wherein the instructions are further configured to transmit the file signature to a remote device with metadata indicating an identifier for the client device.
  - 20. The computer-readable medium of claim 15, wherein the instructions are further configured to generate the identifier for the client device from a combination of non-user-configurable device identifiers encoded by different manufacturers.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Atreus Labs LLC
Original Assignee
Uniloc Luxembourg S.à r.l. (f/k/a Uniloc Luxembourg S.A.) (Uniloc Corporation Pty. Limited)
Inventors
Etchegoyen, Craig S.

Granted Patent

US 8,769,296 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/165
CPC Class Codes

G06F 21/1078 Logging; Metering

G06F 21/121 Restricting unauthorised ex...

Software Signature Tracking

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

154 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Software Signature Tracking

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

154 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others