Populating binary compatible resource-constrained devices with content verified using API definitions

US 6,981,245 B1
Filed: 09/14/2000
Issued: 12/27/2005
Est. Priority Date: 09/14/2000
Status: Expired due to Term

First Claim

Patent Images

1. A method for remote incremental program verification, said method comprising:

receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and a trusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations;

installing said content on a resource-constrained device;

issuing said resource-constrained device to an end user; and

allowing post-issuance installation of verified content on said resource-constrained device by said trusted post-issuance installer, said post-issuance installation occurring after said issuance.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Remote incremental program verification may be achieved by receiving content verified by at least one content provider, installing the content on a resource-constrained device, issuing the resource-constrained device to an end user, and allowing post-issuance installation of verified content on the resource-constrained device by a trusted post-issuance installer. The at least one content provider includes an applet provider, a device manufacturer, a device issuer, and a trusted post-issuance installer. The content includes at least one program unit, where each program unit comprises an Application Programming Interface (API) definition file and an implementation. Each API definition file defines items in its associated program unit that are made accessible to one or more other program units, and each implementation includes executable code corresponding to the API definition file. The executable code includes type-specific instructions and data. The verification includes determining binary compatibility of earlier program unit implementations with later program unit implementations.

121 Citations

View as Search Results

85 Claims

1. A method for remote incremental program verification, said method comprising:
- receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and a trusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations;
  
  installing said content on a resource-constrained device;
  
  issuing said resource-constrained device to an end user; and
  
  allowing post-issuance installation of verified content on said resource-constrained device by said trusted post-issuance installer, said post-issuance installation occurring after said issuance.

2. A method for remote incremental program verification, said method comprising:
- receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and a trusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations, said verification further comprising;
  
  receiving a second version of first program unit implementation and a second version of first program unit API definition file, said second version being a revised version of first version;
  
  verifying said second version of said first program unit implementation, includingindicating a verification error when said second version of said first program unit implementation is not internally consistent; and
  
  indicating a verification error when said second version of said first program unit implementation is inconsistent with said second version of said first program unit API definition file; and
  
  verifying said second version of said first program unit implementation is binary compatible with said first version of said first program unit implementation, including indicating a verification error when said first version of said first program unit API definition file is incompatible with said second version of said first program unit API definition file;
  
  installing said content on a resource-constrained device;
  
  issuing said resource-constrained device to an end user; and
  
  allowing post-issuance installation of verified content on said resource-constrained device by said trusted post-issuance installer, said post-issuance installation occurring after said issuance.
- View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 3. The method of claim 2, further comprising:
    - indicating a verification error when a second program unit implementation that references first program unit is inconsistent with said first version of said first program unit API definition file; and
      
      indicating said second program unit implementation is verified with said second version of said first program unit API definition file when said second version of said first program unit implementation is compatible with said first version of said first program unit implementation.
  - 4. The method of claim 3, further comprising:
    - indicating said second program unit implementation is verified with said second version of said first program unit implementation when said second program unit implementation is verified with said second version of said first program unit API definition file.
  - 5. The method of claim 2 wherein said first version of said first program unit API definition file is binary compatible with said second version of said first program unit API definition file when said second version of said first program unit API definition file includes a superset of each element in said first version of said first program unit API definition file.
  - 6. The method of claim 2 whereinsaid trusted post-issuance installer verifies a new program unit;
    - andsaid trusted post-issuance installer installs said verified new program unit on said resource-constrained device.
  - 7. The method of claim 6 wherein said verification is performed on a resource-rich device.
  - 8. The method of claim 6 wherein said verification is performed on a terminal device.
  - 9. The method of claim 6 wherein said verification is performed by a provider of said new program unit.
  - 10. The method of claim 6 wherein said verification is performed by said applet provider.
  - 11. The method of claim 6 wherein said verification is performed by said device manufacturer.
  - 12. The method of claim 6 wherein said verification is performed by said device issuer.
  - 13. The method of claim 6 wherein said verification is performed by said applet provider and said device manufacturer.
  - 14. The method of claim 6 wherein said verification is performed by said applet provider and said device issuer.
  - 15. The method of claim 6 wherein said verification is performed by said device manufacturer and said device issuer.
  - 16. The method of claim 6 wherein said verification is performed by said applet provider, said device manufacturer and said device issuer.
  - 17. The method of claim 6 wherein said verification is performed by said applet provider, said device manufacturer, said device issuer and said trusted post-issuance installer.
  - 18. The method of claim 6 wherein said verification is performed by said device manufacturer, said device issuer and said trusted post-issuance installer.
  - 19. The method of claim 6 wherein said verification is performed by said device manufacturer and said trusted post-issuance installer.
  - 20. The method of claim 6 wherein said verification is performed by said device issuer and said trusted post-issuance installer.
  - 21. The method of claim 6 wherein said verification is performed on a resource-rich device.
  - 22. The method of claim 6 wherein said verification is performed on a terminal device.

23. A method for remote incremental program verification, said method comprising:
- receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and an untrusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations;
  
  installing said content on a resource-constrained device;
  
  issuing said resource-constrained device to an end user; and
  
  allowing post-issuance installation of verified content on said resource-constrained device by said untrusted post-issuance installer, said post-issuance installation occurring after said issuance.

24. A method for remote incremental program verification, said method comprising:
- receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and an untrusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations, said verification further comprising;
  
  receiving a second version of first program unit implementation and a second version of first program unit API definition file, said second version being a revised version of first version; and
  
  verifying said second version of said first program unit implementation, includingdetermining whether said second version of said first program unit implementation is internally consistent; and
  
  determining whether said second version of said first program unit implementation is consistent with said second version of said first program unit API definition file; and
  
  verifying said second version of said first program unit implementation is binary compatible with said first version of said first program unit implementation by comparing said first version of said first program unit API definition file and said second version of said first program unit API definition file;
  
  installing said content on a resource-constrained device;
  
  issuing said resource-constrained device to an end user; and
  
  allowing post-issuance installation of verified content on said resource-constrained device by said untrusted post-issuance installer, said post-issuance installation occurring after said issuance.
- View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44)
- - 25. The method of claim 24, further comprising:
    - determining whether a second program unit implementation that references said first program unit is consistent with first version of said first program unit API definition file; and
      
      indicating said second program unit implementation is verified with said second version of said first program unit API definition file when said second version of said first program unit implementation is compatible with said first version of said first program unit implementation.
  - 26. The method of claim 25, further comprising:
    - indicating said second program unit implementation is verified with said second version of said first program unit implementation when said second program unit implementation is verified with said second version of said first program unit API definition file.
  - 27. The method of claim 24 wherein said first version of said first program unit API definition file is binary compatible with said second version of said first program unit API definition file when said second version of said first program unit API definition file includes a superset of each element in said first version of said first program unit API definition file.
  - 28. The method of claim 24 whereinsaid untrusted post-issuance installer verifies a new program unit;
    - andsaid untrusted post-issuance installer installs said verified new program unit on said resource-constrained device.
  - 29. The method of claim 24 wherein post-issuance verification is performed on a resource-rich device.
  - 30. The method of claim 24 wherein post-issuance verification is performed on a terminal device.
  - 31. The method of claim 24 wherein said verification is performed by the provider of said new program unit.
  - 32. The method of claim 24 wherein said verification is performed by said applet provider.
  - 33. The method of claim 24 wherein said verification is performed by said device manufacturer.
  - 34. The method of claim 24 wherein said verification is performed by said device issuer.
  - 35. The method of claim 24 wherein said verification is performed by said applet provider and said device manufacturer.
  - 36. The method of claim 24 wherein said verification is performed by said applet provider and said device issuer.
  - 37. The method of claim 24 wherein said verification is performed by said device manufacturer and said device issuer.
  - 38. The method of claim 24 wherein said verification is performed by said applet provider, said device manufacturer and said device issuer.
  - 39. The method of claim 24 wherein said verification is performed by said applet provider, said device manufacturer, said device issuer and said untrusted post-issuance installer.
  - 40. The method of claim 24 wherein said verification is performed by said device manufacturer, said device issuer and said untrusted post-issuance installer.
  - 41. The method of claim 24 wherein said verification is performed by said device manufacturer and said untrusted post-issuance installer.
  - 42. The method of claim 24 wherein said verification is performed by said device issuer and said untrusted post-issuance installer.
  - 43. The method of claim 24 wherein post-issuance verification is performed on a resource-rich device.
  - 44. The method of claim 24 wherein post-issuance verification is performed on a terminal device.

45. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform program verification, comprising:
- receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and a trusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations;
  
  installing said content on a resource-constrained device;
  
  issuing said resource-constrained device to an end user; and
  
  allowing post-issuance installation of verified content on said resource-constrained device by said trusted post-issuance installer, said post-issuance installation occurring after said issuance.

46. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform program verification, comprising:
- receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and a trusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations, said verification further comprising;
  
  receiving a second version of first program unit implementation and a second version of first program unit API definition file, said second version being a revised version of first version;
  
  verifying said second version of said first program unit implementation, including indicating a verification error when said second version of said first program unit implementation is not internally consistent; and
  
  indicating a verification error when said second version of said first program unit implementation is inconsistent with said second version of said first program unit API definition file; and
  
  verifying said second version of said first program unit implementation is binary compatible with said first version of said first program unit implementation including indicating a verification error when said first version of said first program unit API definition file is incompatible with said second version of said first program unit API definition file;
  
  installing said content on a resource-constrained device;
  
  issuing said resource-constrained device to an end user; and
  
  allowing post-issuance installation of verified content on said resource-constrained device by said trusted post-issuance installer, said post-issuance installation occurring after said issuance.
- View Dependent Claims (47, 48, 49, 50, 51, 52, 53)
- - 47. The program storage device of claim 46, further comprising:
    - indicating a verification error when a second program unit implementation that references first program unit is inconsistent with said first version of said first program unit API definition file; and
      
      indicating said second program unit implementation is verified with said second version of said first program unit API definition file when said second version of said first program unit implementation is compatible with said first version of said first program unit implementation.
  - 48. The program storage device of claim 47, further comprising:
    - indicating said second program unit implementation is verified with said second version of said first program unit implementation when said second program unit implementation is verified with said second version of said first program unit API definition file.
  - 49. The program storage device of claim 46 wherein said first version of said first program unit API definition file is binary compatible with said second version of said first program unit API definition file when said second version of said first program unit API definition file includes a superset of each element in said first version of said first program unit API definition file.
  - 50. The program storage device of claim 46 whereinsaid trusted post-issuance installer verifies a new program unit;
    - andsaid trusted post-issuance installer installs said verified new program unit on said resource-constrained device.
  - 51. The program storage device of claim 50 wherein said verification is performed on a resource-rich device.
  - 52. The program storage device of claim 50 wherein said verification is performed on a terminal device.
  - 53. The program storage device of claim 50 wherein said verification is performed by the provider of said new program unit.

54. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform program verification, comprising:
- receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and an untrusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations;
  
  installing said content on a resource-constrained device;
  
  issuing said resource-constrained device to an end user; and
  
  allowing post-issuance installation of verified content on said resource-constrained device by said untrusted post-issuance installer, said post-issuance installation occurring after said issuance.

55. A program storage device readable by a machine, embodying a program of instructions executable by the machine to perform program verification, comprising:
- receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and an untrusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations, said verification further comprising;
  
  receiving a second version of first program unit implementation and a second version of first program unit API definition file, said second version being a revised version of first version; and
  
  verifying said second version of said first program unit implementation, includingindicating a verification error when said second version of said first program unit implementation is not internally consistent; and
  
  indicating a verification error when said second version of said first program unit implementation is inconsistent with said second version of said first program unit API definition file; and
  
  verifying said second version of said first program unit implementation is binary compatible with said first version of said first program unit implementation including indicating a verification error when said first version of said first program unit API definition file is incompatible when said second version of said first program unit API definition file;
  
  installing said content on a resource-constrained device;
  
  issuing said resource-constrained device to an end user; and
  
  allowing post-issuance installation of verified content on said resource-constrained device by said untrusted post-issuance installer, said post-issuance installation occurring after said issuance.
- View Dependent Claims (56, 57, 58, 59, 60, 61, 62)
- - 56. The program storage device of claim 55, further comprising:
    - indicating a verification error when a second program unit implementation that references first program unit is inconsistent with said first version of said first program unit API definition file; and
      
      indicating said second program unit implementation is verified with said second version of said first program unit API definition file when said second version of said first program unit implementation is compatible with said first version of said first program unit implementation.
  - 57. The program storage device of claim 56, further comprising:
    - indicating said second program unit implementation is verified with said second version of said first program unit implementation when said second program unit implementation is verified with said second version of said first program unit API definition file.
  - 58. The program storage device of claim 55 wherein said first version of said first program unit API definition file is binary compatible with said second version of said first program unit API definition file when said second version of said first program unit API definition file includes a superset of each element in said first version of said first program unit API definition file.
  - 59. The program storage device of claim 55 whereinsaid untrusted post-issuance installer verifies a new program unit;
    - andsaid untrusted post-issuance installer installs said verified new program unit on said resource-constrained device.
  - 60. The program storage device of claim 55 wherein said verification is performed on a resource-rich device.
  - 61. The program storage device of claim 55 wherein said verification is performed on a terminal device.
  - 62. The program storage device of claim 55 wherein said verification is performed by the provider of said new program unit.

63. A system for executing a software application, the system comprising:
- a computing system that generates executable code, comprising means for receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and a trusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations;
  
  means for installing said content on a resource-constrained device;
  
  means for issuing said resource-constrained device to an end user; and
  
  means for allowing post-issuance installation of verified content on said resource-constrained device by said trusted post-issuance installation installer, said post-installation occurring after said issuance.

64. A system for executing a software application, the system comprising:
- a computing system that generates executable code, comprising means for receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and a trusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations, said computing system further comprising;
  
  means for receiving a second version of first program unit implementation and a second version of first program unit API definition file, said second version being a revised version of first version;
  
  means for verifying said second version of said first program unit implementation, including means for indicating a verification error when said second version of said first program unit implementation is not internally consistent; and
  
  means for indicating a verification error when said second version of said first program unit implementation is inconsistent with said second version of said first program unit API definition file; and
  
  means for verifying said second version of said first program unit implementation is binary compatible with said first version of said first program unit implementation including indicating a verification error when said first version of said first program unit API definition file is incompatible with said second version of said first program unit API definition file;
  
  means for installing said content on a resource-constrained device;
  
  means for issuing said resource-constrained device to an end user; and
  
  means for allowing post-issuance installation of verified content on said resource-constrained device by said trusted post-issuance installer, said post-issuance installation occurring after said issuance.
- View Dependent Claims (65, 66, 67, 68, 69, 70, 71, 72)
- - 65. The system of claim 64, further comprising:
    - means for indicating a verification error when a second program unit implementation that references first program unit is inconsistent with said first version of said first program unit API definition file; and
      
      means for indicating said second program unit implementation is verified with said second version of said first program unit API definition file when said second version of said first program unit implementation is compatible with said first version of said first program unit implementation.
  - 66. The system of claim 65, further comprising:
    - means for indicating said second program unit implementation is verified with said second version of said first program unit implementation when said second program unit implementation is verified with said second version of said first program unit API definition file.
  - 67. The system of claim 64 wherein said first version of said first program unit API definition file is binary compatible with said second version of said first program unit API definition file when said second version of said first program unit API definition file includes a superset of each element in said first version of said first program unit API definition file.
  - 68. The system of claim 64 whereinsaid trusted post-issuance installer verifies a new program unit;
    - andsaid trusted post-issuance installer installs said verified new program unit on said resource-constrained device.
  - 69. The system of claim 68 wherein post-issuance verification is performed on a resource-rich device.
  - 70. The system of claim 68 wherein post-issuance verification is performed on a terminal device.
  - 71. The system of claim 68 wherein said verification is performed by the provider of said new program unit.
  - 72. The system of claim 68 wherein said verification is performed by said applet provider.

73. A system for executing a software application, the system comprising:
- a computing system that generates executable code, comprising means for receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and an untrusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations;
  
  means for installing said content on a resource-constrained device;
  
  means for issuing said resource-constrained device to an end user; and
  
  means for allowing post-issuance installation of verified content on said resource-constrained device by said untrusted post-issuance installer, said post-issuance installation occurring after said issuance.

74. A system for executing a software application, the system comprising:
- a computing system that generates executable code, comprising means for receiving content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and an untrusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations, said computing system further comprising;
  
  means for receiving a second version of first program unit implementation and a second version of first program unit API definition file, said second version being a revised version of first version;
  
  means for verifying said second version of said first program unit implementation, including means for indicating a verification error when said second version of said first program unit implementation is not internally consistent; and
  
  means for indicating a verification error when said second version of said first program unit implementation is inconsistent with said second version of said first program unit API definition file; and
  
  means for verifying said second version of said first program unit implementation is binary compatible with said first version of said first program unit implementation including indicating a verification error when said first version of said first program unit API definition file is incompatible with said second version of said first program unit API definition file;
  
  means for installing said content on a resource-constrained device;
  
  means for issuing said resource-constrained device to an end user; and
  
  means for allowing post-issuance installation of verified content on said resource-constrained device by said untrusted post-issuance installer, said post-issuance installation occurring after said issuance.
- View Dependent Claims (75, 76, 77, 78, 79, 80, 81)
- - 75. The system of claim 74, further comprising:
    - means for indicating a verification error when a second program unit implementation that references said first program unit is inconsistent with said first version of said first program unit API definition file; and
      
      means for indicating said second program unit implementation is verified with said second;
      
      version of said first program unit API definition file when said second version of said first program unit implementation is compatible with said first version of said first program unit implementation.
  - 76. The system of claim 75, further comprising:
    - means for indicating said second program unit implementation is verified with said second version of said first program unit implementation when said second program unit implementation is verified with said second version of said first program unit API definition file.
  - 77. The system of claim 74 wherein said first version of said first program unit API definition file is binary compatible with said second version of said first program unit API definition file when said second version of said first program unit API definition file includes a superset of each element in said first version of said first program unit API definition file.
  - 78. The system of claim 74 whereinsaid untrusted post-issuance installer verifies a new program unit;
    - andsaid untrusted post-issuance installer installs said verified new program unit on said resource-constrained device.
  - 79. The system of claim 78 wherein said verification is performed by the provider of said new program unit.
  - 80. The system of claim 74 wherein said verification is performed on a resource-rich device.
  - 81. The system of claim 74 wherein said verification is performed on a terminal device.

82. A resource-constrained device, comprising:
- memory for providing content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and a trusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations;
  
  an installer device for installation of said content on said resource-constrained device, said installation including installation of initial content and installation of additional content by said trusted post-issuance installer after said resource-constrained device is issued to an end user; and
  
  a virtual machine that is capable of executing instructions included within said content.
- View Dependent Claims (83)
- - 83. The resource-constrained device of claim 82 wherein said resource-constrained device comprises a smart card.

84. A resource-constrained device, comprising:
- memory for providing content verified by at least one content provider, said at least one content provider including an applet provider, a device manufacturer, a device issuer and an untrusted post-issuance installer, said content including at least one program unit, each program unit comprising an Application Programming Interface (API) definition file and an implementation, each API definition file defining items in its associated program unit that are made accessible to one or more other program units, each implementation including executable code corresponding to said API definition file, said executable code including type specific instructions and data, said verification including determining binary compatibility of earlier program unit implementations with later program unit implementations;
  
  an installer device for installation of said content on said resource-constrained device, said installation including installation of initial content and installation of additional content by said untrusted post-issuance installer after said resource-constrained device is issued to an end user; and
  
  a virtual machine that is capable of executing instructions included within said content.
- View Dependent Claims (85)
- - 85. The resource-constrained device of claim 84 wherein said resource-constrained device comprises a smart card.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sun Microsystems Incorporated (Oracle Corporation)
Original Assignee
Sun Microsystems Incorporated (Oracle Corporation)
Inventors
Schwabe, Judith E.
Primary Examiner(s)
DAS, CHAMELI

Application Number

US09/661,582
Time in Patent Office

1,930 Days
Field of Search

717174-178, 717124-127, 717/108, 717/118, 717/165, 714/38, 714/52, 714/100, 707/1, 707/10, 713/155, 713/201, 710/8, 702/103
US Class Current

717/126
CPC Class Codes

G06F 9/44589 Program code verification, ...

Populating binary compatible resource-constrained devices with content verified using API definitions

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

121 Citations

85 Claims

Specification

Solutions

Use Cases

Quick Links

Populating binary compatible resource-constrained devices with content verified using API definitions

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

121 Citations

85 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links