Shared names

US 7,117,371 B1
Filed: 06/28/2000
Issued: 10/03/2006
Est. Priority Date: 06/28/2000
Status: Active Grant

First Claim

Patent Images

1. A method for facilitating a secured name space for an assembly employable by application programs during runtime, comprising the steps of:

providing a key pair having a public key and a private key;

providing the assembly with a manifest that contains the public key;

hashing the assembly;

encrypting the hash of the assembly with the private key;

relating the encrypted hash to the assembly; and

referencing the assembly with a manifest of a referencing assembly that contains a token of the public key that is computed by a hash function, the assembly is referenced by comparing the token of the public key in the manifest of the referencing assembly with the public key contained in the manifest of the assembly.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method is provided for providing security to components or assemblies employed by application programs during runtime. The present invention employs digital signature keys to ensure that an assembly name that is published is unique because the assembly is published with a publisher'"'"'s public key. This prevents others from publishing an updated version of an assembly that claims to be published from the same publisher. The present invention guarantees name uniqueness and prevents name spoofing because the original publisher is the only one with the private key matching the public key related to a published assembly. Due to the fact that the public keys are stored in each reference, the caller can be assured that the assembly that the caller is binding to at runtime comes from the same publisher that owns the private key.

81 Citations

View as Search Results

17 Claims

1. A method for facilitating a secured name space for an assembly employable by application programs during runtime, comprising the steps of:
- providing a key pair having a public key and a private key;
  
  providing the assembly with a manifest that contains the public key;
  
  hashing the assembly;
  
  encrypting the hash of the assembly with the private key;
  
  relating the encrypted hash to the assembly; and
  
  referencing the assembly with a manifest of a referencing assembly that contains a token of the public key that is computed by a hash function, the assembly is referenced by comparing the token of the public key in the manifest of the referencing assembly with the public key contained in the manifest of the assembly.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, further comprising the step of determining if the contents of the assembly has been modified by decoding the encrypted hash value with the public key, determining an actual hash of the contents of the assembly and comparing the decoded encrypted hash with the actual hash.
  - 3. The method of claim 2, further comprising the step of determining if the publisher of the assembly is the owner of the private key.
  - 4. The method of claim 1, further comprising the step of determining if the contents of the assembly has been modified by decoding the encrypted hash value with the public key, determining an actual hash of the contents of the assembly and comparing the decoded encrypted hash with the actual hash.
  - 5. The method of claim 4, further comprising the step of determining if the publisher of the assembly is the original owner of the key pair.
  - 6. The method of claim 5, the step of determining if the publisher of the assembly is the original owner of the key pair comprising the step of storing the public key in a storage medium and comparing the public key in the storage medium with the public key in the manifest.

7. A computer readable medium having at least one computer executable component employable by an application program at runtime comprising:
- an assembly including a manifest that contains a public key and a hash of the contents of the assembly encrypted by a private key, the private key and the public key forming a key pair, the encrypted hash being referenced to the assembly, and a referencing assembly that references the assembly, the referencing assembly including a manifest that contains a token of the public key of the assembly, the assembly is referenced by comparing the public key contained in the manifest of the assembly with the token of the public key that is contained in the manifest of the referencing assembly.
- View Dependent Claims (8)
- - 8. The computer readable medium of claim 7, the assembly being a dynamically linked library.

9. A system for facilitating secured name spaces of assemblies employable by application programs at runtime, the system comprising:
- a first component adapted to provide a manifest within an assembly with a public key;
  
  a second component adapted to hash the contents of the assembly and encrypt the hash with a private key matching the public key;
  
  a third component that uses a hash function to compute a token of the public key associated with the manifest, the token is contained in a manifest of a referencing assembly; and
  
  a fourth component that references the assembly by comparing the public key in the manifest of the assembly with the token of the public key that is contained in the manifest of the referencing assembly.
- View Dependent Claims (10, 11, 12, 13)
- - 10. The system of claim 9, further comprising a verification component adapted to decode the encrypted hash with the public key and compare the decoded encrypted hash with an actual hash run on the assembly.
  - 11. The system of claim 9, further comprising a key pair generating component adapted to generate a key pair.
  - 12. The system of claim 9, further comprising a binding component adapted to provide binding policy information for determining a version of an assembly that an application program will run if another assembly having the same name resides on the system.
  - 13. The system of claim 9, further comprising a verification component adapted to decode the encrypted hash with the public key and compare the decoded encrypted hash with an actual hash run on the assembly.

14. A system for facilitating a secured name space of an assembly employable by application programs at runtime, the system comprising:
- means for providing a key pair having a public key and a private key;
  
  means for inserting a public key in a manifest of an assembly;
  
  means for hashing the assembly;
  
  means for encrypting the hash of the assembly with the private key;
  
  means for relating the encrypted hash to the assembly;
  
  means for hashing the public key;
  
  means for inserting a token of the public key into a manifest of a referencing assembly that references the assembly; and
  
  means for comparing the token of the public key in the manifest of the referencing assembly with the public key in the manifest of the assembly.
- View Dependent Claims (15, 16, 17)
- - 15. The system of claim 14, further comprising means for determining if the assembly has been modified.
  - 16. The system of claim 15, the means for determining if the assembly has been modified including means for decoding the encrypted hash with the public key, means for generating an actual hash value and means for comparing the generated hash value with the decoded encrypted hash value.
  - 17. The system of claim 14, at least one of the assembly and referencing assembly being a dynamically linked library.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Parthasarathy, Srivatsan, Pratschner, Steven J., Sinclair, Craig T.
Primary Examiner(s)
Arani, Taghi T.

Application Number

US09/605,602
Time in Patent Office

2,288 Days
Field of Search

713/189, 713/182, 713/200, 713/187, 713/150, 713/155, 713/156, 713/170, 713/176, 726/2, 717/167, 717/178, 380/30
US Class Current

713/187
CPC Class Codes

G06F 21/51 at application loading time...

Shared names

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

81 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Shared names

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

81 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links