Computer file integrity verification
First Claim
1. A method for verifying the integrity of contents within a computer file, said method comprising the steps of:
- storing a security value S within the file, where S depends upon a verification function f, said file contents, and a preselected residual value r, where r is not stored within the file;
applying f against the entire contents of the file including S, to obtain results R;
comparing R against r; and
when R equals r, determining that the file has not been modified.
1 Assignment
0 Petitions
Accused Products
Abstract
System and method for verifying the integrity of contents within a computer file. A security value S is stored within the file. A verification function f is applied against the entire contents of the file including S, where f is a function of S. Results R of the applying step are compared against a preselected value r, where r is not stored within the file. When R equals r, a determination is made that the file has not been modified. f is typically a distributive invertible function such as the Cyclic Redundancy Check (CRC) function known as modulo p, where p is a prime number and is one bit greater than the length of S. Typically, the value of r is zero. Before executing the verification function f, a check generating program is first executed. This check generating program is executed by a computer that is remote from the file, further enhancing the security of the system.
-
Citations
11 Claims
-
1. A method for verifying the integrity of contents within a computer file, said method comprising the steps of:
-
storing a security value S within the file, where S depends upon a verification function f, said file contents, and a preselected residual value r, where r is not stored within the file; applying f against the entire contents of the file including S, to obtain results R; comparing R against r; and when R equals r, determining that the file has not been modified. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. Apparatus for safeguarding the integrity of contents within a computer file, said apparatus comprising:
-
a file associated with a first computer and containing data; a second computer located remote from the file, said second computer adapted to calculate a security value S, where S is based upon all the contents of the file and also depends upon a verification function f and a preselected residual value r, and to store S within a preselected location within the file; processing means for applying f against the entire contents of the file including S, to obtain results R; and means for comparing R against r, where r is not stored within the file; and means for determining that the file has not been modified, when R equals r.
-
-
11. A computer readable medium for storing a computer program that verifies the integrity of contents within a computer file by following the steps of:
-
storing a security value S within the file, where S depends upon a verification function f, said file contents, and a preselected residual value r, where r is not stored within the file; applying f against entire contents of the file including S, to obtain results R; comparing R against r; and when R equals r, determining that the file has not been modified.
-
Specification
-
- Resources
-
Current AssigneeSymantec Corporation (NortonLifeLock Inc.)
-
Original AssigneeSymantec Corporation (NortonLifeLock Inc.)
-
InventorsMillard, John
-
Primary Examiner(s)De Cady, Albert
-
Assistant Examiner(s)LAMARRE, GUY J
-
Application NumberUS09/010,939Time in Patent Office971 DaysField of Search714/758, 713/200, 713/187, 713/201, 713/176, 713/202, 713/189, 709/229, 364/200, 380/3, 380/4, 380/25, 380/49, 380/51US Class Current713/187CPC Class CodesG06F 21/64 Protecting data integrity, ...
